Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Virus blocking me from doing almost anything [Closed]

Started by TheElderTrolls , Dec 16 2014 09:06 AM

  • This topic is locked This topic is locked

#16
Naathim
Posted 16 December 2014 - 01:55 PM

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts
See if you are able boot normally and what issues appear there.
  • 0

Advertisements

#17
TheElderTrolls
Posted 16 December 2014 - 02:16 PM

TheElderTrolls

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts

Sadly all issues continue to exist.


  • 0

#18
Naathim
Posted 17 December 2014 - 02:44 AM

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts

Hi :)

 

Something went wrong here. Please re-run FRST with the Scan option. It should generate a new FRST.txt logfile. Post it for me.


  • 0

#19
TheElderTrolls
Posted 17 December 2014 - 07:54 AM

TheElderTrolls

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 14-12-2014 01
Ran by SYSTEM on MININT-PNJPQ9D on 17-12-2014 14:51:57
Running from E:\
Platform: Windows 8.1 Pro (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Recovery
 
The current controlset is ControlSet001
ATTENTION!:=====> If the system is bootable FRST must be run from normal or Safe mode to create a complete log.
 
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\Mees\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3095840 2014-10-27] (Nota Inc.)
HKU\Mees\...\Run: [ASRockXTU] => [X]
HKU\Mees\...\Run: [f.lux] => C:\Users\Mees\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S4 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] ()
S2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2014-11-07] ()
S2 RadeonPro Support Service; D:\Program Files (x86)\RadeonPro\RadeonProSupport.exe [20608 2013-11-04] (Mr. John aka japamd)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
S2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-22] (Advanced Micro Devices, Inc.)
S0 AsrRamDisk; C:\Windows\System32\drivers\AsrRamDisk.sys [31016 2012-01-13] (ASRock Inc.)
S3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [223232 2014-06-21] (Advanced Micro Devices)
S3 atillk64; C:\Users\Mees\AppData\Local\Temp\RarSFX0\atillk64.sys [14608 2006-07-19] (ATI Technologies Inc.)
S3 cmudaxp; C:\Windows\system32\drivers\cmudaxp.sys [2735616 2013-12-11] (C-Media Inc)
S3 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [24824 2013-07-02] (ASUSTeK Computer Inc.)
S3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [47008 2013-07-30] ()
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2014-11-20] (Malwarebytes Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-21] (Microsoft Corporation)
S3 AxtuDrv; \??\C:\WINDOWS\SysWOW64\Drivers\AxtuDrv.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-12-17 14:46 - 2014-12-17 14:46 - 00000000 _____ () C:\Recovery.txt
2014-12-16 08:48 - 2014-12-16 08:48 - 00000674 _____ () C:\Users\Mees\Downloads\desktop.txt
2014-12-16 08:46 - 2014-12-16 08:46 - 00000590 _____ () C:\Users\Mees\Documents\desktop.txt
2014-12-16 08:26 - 2014-12-16 11:46 - 00000000 ____D () C:\FRST
2014-12-16 08:23 - 2014-12-16 11:52 - 00000783 _____ () C:\Users\Mees\Desktop\Malwarebytes Anti-Malware.lnk
2014-12-16 08:23 - 2014-12-16 11:52 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-12-16 08:23 - 2014-11-20 21:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbamchameleon.sys
2014-12-16 08:23 - 2014-11-20 21:14 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\mwac.sys
2014-12-16 08:23 - 2014-11-20 21:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys
2014-12-16 06:56 - 2014-12-16 06:50 - 00602112 _____ (OldTimer Tools) C:\Users\Mees\Desktop\OTL.exe
2014-12-16 06:26 - 2014-10-30 14:37 - 00129536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2014-12-16 06:26 - 2014-10-30 14:34 - 00146432 _____ (Microsoft Corporation) C:\Windows\System32\poqexec.exe
2014-12-16 06:13 - 2014-12-16 06:13 - 00000000 ____D () C:\Users\Mees\Desktop\New folder
2014-12-14 07:17 - 2014-12-14 07:05 - 01940728 _____ (Bleeping Computer, LLC) C:\Users\Mees\Desktop\rkill.exe
2014-12-14 07:08 - 2014-12-16 11:55 - 00004084 _____ () C:\Users\Mees\Desktop\Rkill.txt
2014-12-14 06:37 - 2014-12-14 06:37 - 00051022 _____ () C:\Users\Mees\Documents\run.reg
2014-12-14 06:33 - 2014-12-14 06:33 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3991032115-1765476521-650572198-1003
2014-12-14 06:27 - 2014-12-14 06:28 - 00000000 ____D () C:\Users\Admin\AppData\Local\Packages
2014-12-14 06:27 - 2014-12-14 06:27 - 00000020 ___SH () C:\Users\Admin\ntuser.ini
2014-12-14 06:27 - 2014-12-14 06:27 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Adobe
2014-12-14 06:27 - 2014-12-14 06:27 - 00000000 ____D () C:\Users\Admin\AppData\Local\VirtualStore
2014-12-14 06:27 - 2014-12-14 06:27 - 00000000 ____D () C:\users\Admin
2014-12-14 06:00 - 2014-12-14 06:00 - 00000000 ____D () C:\Users\Mees\AppData\Roaming\Malwarebytes
2014-12-13 07:54 - 2014-12-13 07:54 - 00000222 _____ () C:\Users\Mees\Desktop\Call of Duty Advanced Warfare - Multiplayer.url
2014-12-11 06:39 - 2014-12-11 06:39 - 09698760 _____ (Nota Inc. ) C:\Users\Mees\Downloads\Gyazo-2.3.0 (1).exe
2014-12-10 10:47 - 2014-12-10 10:47 - 00040545 _____ () C:\Users\Mees\Downloads\((demonoid.pw))-Katchafire_Discography.TORRENT
2014-12-10 10:18 - 2014-12-10 10:18 - 00018871 _____ () C:\Users\Mees\Downloads\[katproxy.com]the.long.dark.v1.56.windows.viruz.torrent
2014-12-10 07:04 - 2014-12-10 07:04 - 00000553 _____ () C:\Users\Mees\Downloads\viewport.txt
2014-12-10 05:26 - 2014-11-09 18:29 - 00034304 _____ (Microsoft Corporation) C:\Windows\System32\DeviceSetupStatusProvider.dll
2014-12-10 05:26 - 2014-11-09 17:51 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceSetupStatusProvider.dll
2014-12-10 05:26 - 2014-11-06 20:16 - 01762840 _____ (Microsoft Corporation) C:\Windows\System32\WindowsCodecs.dll
2014-12-10 05:26 - 2014-11-06 19:26 - 01489072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-12-10 05:26 - 2014-10-31 15:57 - 01091072 _____ (Microsoft Corporation) C:\Windows\System32\MrmCoreR.dll
2014-12-10 05:26 - 2014-10-31 15:47 - 00790528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2014-12-10 05:25 - 2014-11-21 19:13 - 25059840 _____ (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2014-12-10 05:25 - 2014-11-21 18:50 - 00580096 _____ (Microsoft Corporation) C:\Windows\System32\vbscript.dll
2014-12-10 05:25 - 2014-11-21 18:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2014-12-10 05:25 - 2014-11-21 18:49 - 00417280 _____ (Microsoft Corporation) C:\Windows\System32\html.iec
2014-12-10 05:25 - 2014-11-21 18:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\System32\MshtmlDac.dll
2014-12-10 05:25 - 2014-11-21 18:35 - 00812544 _____ (Microsoft Corporation) C:\Windows\System32\jscript.dll
2014-12-10 05:25 - 2014-11-21 18:34 - 06039552 _____ (Microsoft Corporation) C:\Windows\System32\jscript9.dll
2014-12-10 05:25 - 2014-11-21 18:22 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-12-10 05:25 - 2014-11-21 18:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2014-12-10 05:25 - 2014-11-21 18:07 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-12-10 05:25 - 2014-11-21 18:06 - 00340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-12-10 05:25 - 2014-11-21 18:06 - 00145408 _____ (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2014-12-10 05:25 - 2014-11-21 18:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\System32\dxtrans.dll
2014-12-10 05:25 - 2014-11-21 18:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-12-10 05:25 - 2014-11-21 18:01 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-12-10 05:25 - 2014-11-21 17:59 - 01032704 _____ (Microsoft Corporation) C:\Windows\System32\inetcomm.dll
2014-12-10 05:25 - 2014-11-21 17:55 - 00661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-12-10 05:25 - 2014-11-21 17:52 - 00262144 _____ (Microsoft Corporation) C:\Windows\System32\webcheck.dll
2014-12-10 05:25 - 2014-11-21 17:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2014-12-10 05:25 - 2014-11-21 17:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe
2014-12-10 05:25 - 2014-11-21 17:49 - 00373760 _____ (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll
2014-12-10 05:25 - 2014-11-21 17:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl
2014-12-10 05:25 - 2014-11-21 17:43 - 14412800 _____ (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2014-12-10 05:25 - 2014-11-21 17:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-12-10 05:25 - 2014-11-21 17:34 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-12-10 05:25 - 2014-11-21 17:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-12-10 05:25 - 2014-11-21 17:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-12-10 05:25 - 2014-11-21 17:29 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2014-12-10 05:25 - 2014-11-21 17:28 - 02358272 _____ (Microsoft Corporation) C:\Windows\System32\wininet.dll
2014-12-10 05:25 - 2014-11-21 17:25 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-12-10 05:25 - 2014-11-21 17:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-12-10 05:25 - 2014-11-21 17:23 - 00326656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-12-10 05:25 - 2014-11-21 17:22 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-12-10 05:25 - 2014-11-21 17:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2014-12-10 05:25 - 2014-11-21 17:13 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-12-10 05:25 - 2014-11-21 17:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2014-12-10 05:25 - 2014-11-21 17:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-12-10 05:25 - 2014-11-21 16:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-12-10 05:25 - 2014-11-21 16:54 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-12-10 05:25 - 2014-10-30 15:39 - 01970432 _____ (Microsoft Corporation) C:\Windows\System32\crypt32.dll
2014-12-10 05:25 - 2014-10-30 15:38 - 01612992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-12-10 05:25 - 2014-10-12 18:43 - 00238912 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\sdbus.sys
2014-12-10 05:25 - 2014-10-12 18:43 - 00153920 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\dumpsd.sys
2014-12-10 05:25 - 2014-10-12 18:43 - 00086336 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\pdc.sys
2014-12-10 05:25 - 2014-10-12 18:43 - 00039744 _____ (Microsoft Corporation) C:\Windows\System32\Drivers\intelpep.sys
2014-12-10 03:15 - 2014-12-10 03:15 - 00053564 _____ () C:\Windows\SysWOW64\CCCInstall_201412101215535028.log
2014-12-10 03:15 - 2014-12-10 03:15 - 00000000 ____D () C:\ProgramData\ATI
2014-12-10 03:15 - 2014-12-10 03:15 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-12-10 03:15 - 2014-12-10 03:15 - 00000000 ____D () C:\Program Files (x86)\AMD
2014-12-10 03:12 - 2014-12-10 03:13 - 302470552 _____ (AMD Inc.) C:\Users\Mees\Downloads\amd-catalyst-omega-14.12-with-dotnet45-win7-64bit.exe
2014-12-10 02:51 - 2014-12-10 02:51 - 00011310 _____ () C:\Users\Mees\Downloads\Battle-Royale-v050.torrent
2014-12-08 09:44 - 2014-10-24 14:48 - 01920512 _____ (LinGon) C:\Users\Mees\Desktop\DeadRising3+26Tr-LNG_v1.5.0.exe
2014-12-07 22:36 - 2013-07-02 07:29 - 00024824 _____ (ASUSTeK Computer Inc.) C:\Windows\System32\Drivers\IOMap64.sys
2014-12-07 12:01 - 2014-12-07 12:01 - 01760331 _____ () C:\Users\Mees\Downloads\DeadRising3+26Tr-LNG_v1.5.0.rar
2014-12-07 11:35 - 2014-12-07 11:35 - 00000030 _____ () C:\Users\Mees\Downloads\user (1).ini
2014-12-07 10:50 - 2014-12-07 10:50 - 00000028 _____ () C:\Users\Mees\Downloads\user.ini
2014-12-07 09:26 - 2014-12-07 09:36 - 00001042 _____ () C:\Users\Mees\Desktop\Dead Rising 3 Apocalypse Edition.lnk
2014-12-07 09:26 - 2014-12-07 09:26 - 00000000 ____D () C:\Users\Mees\AppData\Roaming\Dead Rising 3 Apocalypse Edition
2014-12-07 07:59 - 2014-12-07 07:59 - 13163326 _____ () C:\Users\Mees\Downloads\Realistic Shadows Mod-86-1-2.rar
2014-12-07 07:53 - 2014-12-07 07:53 - 18605140 _____ () C:\Users\Mees\Downloads\Cryengine MIX-14-0-0-2-1.rar
2014-12-07 07:43 - 2014-12-07 07:44 - 00133015 _____ () C:\Users\Mees\Downloads\New Amazing Effects EXPLOSIONS DUST SMOKE UPDATE-97-0-7Beta.zip
2014-12-07 07:42 - 2014-12-07 07:42 - 00001977 _____ () C:\Users\Public\Desktop\State of Decay - Lifeline.lnk
2014-12-07 06:24 - 2014-12-07 06:24 - 1208502997 _____ () C:\Users\Mees\Downloads\HL2EP2 Content Addon (Jul2014).rar
2014-12-07 06:23 - 2014-12-07 06:24 - 1500064412 _____ () C:\Users\Mees\Downloads\HL2+ Content Addon (Jul2014).rar
2014-12-07 06:22 - 2014-12-07 06:22 - 585937014 _____ () C:\Users\Mees\Downloads\HL2EP1 Content Addon (Jul2014).rar
2014-12-07 05:40 - 2014-12-07 05:40 - 00005640 _____ () C:\Users\Mees\Downloads\spawnlist_extract_v2p.zip
2014-12-07 05:35 - 2014-12-07 05:37 - 615532164 _____ () C:\Users\Mees\Downloads\hl2_episode_1and2_addon.zip
2014-12-07 05:30 - 2014-12-07 05:31 - 83854275 _____ () C:\Users\Mees\Downloads\extract-first-v2d.zip
2014-12-03 12:38 - 2014-12-03 12:38 - 00000570 _____ () C:\Users\Public\Desktop\Fraps.lnk
2014-12-03 12:38 - 2014-12-03 12:38 - 00000000 ____D () C:\Fraps
2014-12-03 12:36 - 2014-12-03 12:37 - 02326976 _____ (Beepa Pty Ltd) C:\Users\Mees\Downloads\setup (1).exe
2014-12-03 12:30 - 2014-12-03 12:31 - 00002507 _____ () C:\Users\Mees\Desktop\The Vanishing of Ethan Carter (x64).lnk
2014-12-03 12:30 - 2014-12-03 12:30 - 00002229 _____ () C:\Users\Mees\Desktop\The Vanishing of Ethan Carter (x32).lnk
2014-12-03 12:30 - 2014-12-03 12:30 - 00002014 _____ () C:\Users\Mees\Desktop\Launcher The Vanishing of Ethan Carter.lnk
2014-12-03 10:53 - 2014-12-03 10:53 - 00000220 _____ () C:\Users\Mees\Desktop\Garry's Mod.url
2014-12-03 06:42 - 2014-12-03 06:42 - 04552655 _____ () C:\Users\Mees\Downloads\Midhrastic ENB for Fallout 3 2.0a-18107-2-0a.7z
2014-12-03 06:35 - 2014-12-03 06:36 - 01975528 _____ () C:\Users\Mees\Downloads\enbseries_falloutnv_v0263.zip
2014-12-03 06:35 - 2014-12-03 06:35 - 01583397 _____ () C:\Users\Mees\Downloads\enbseries_fallout3_v0203enboost.zip
2014-12-03 06:30 - 2014-12-03 06:30 - 00330843 _____ () C:\Users\Mees\Downloads\Agoodstart-5325.rar
2014-12-03 06:25 - 2014-12-03 06:25 - 00284942 _____ () C:\Users\Mees\Downloads\FO3_3GB_ENABLER-6510.7z
2014-12-03 06:08 - 2014-12-03 06:10 - 209307929 _____ () C:\Users\Mees\Downloads\Fallout 3 Redesigned-6341-2-73.rar
2014-12-03 06:08 - 2014-12-03 06:08 - 00384875 _____ () C:\Users\Mees\Downloads\fose_v1_2_beta2.7z
2014-12-03 05:57 - 2014-12-03 05:57 - 00686405 _____ () C:\Users\Mees\Downloads\SweetFX_1-5-1 for Fallout 3-18362-1-0.7z
2014-12-03 05:57 - 2014-12-03 05:57 - 00686405 _____ () C:\Users\Mees\Downloads\SweetFX_1-5-1 for Fallout 3-18362-1-0 (1).7z
2014-12-03 05:53 - 2014-12-03 05:55 - 00000000 ____D () C:\Users\Mees\AppData\Local\Fallout3
2014-12-02 06:29 - 2014-12-02 06:29 - 00488228 _____ () C:\Users\Mees\Downloads\1417530515929.zip
2014-12-02 06:25 - 2014-12-02 06:25 - 00000000 ____D () C:\Users\Mees\AppData\Local\My Games
2014-12-02 06:25 - 2014-12-02 06:25 - 00000000 ____D () C:\ProgramData\Steam
2014-12-02 06:21 - 2014-12-02 06:21 - 00502106 _____ () C:\Users\Mees\Downloads\1417529950335.zip
2014-12-02 06:15 - 2014-12-02 06:15 - 00000719 _____ () C:\Users\Public\Desktop\Sid Meiers Civilization Beyond Earth.lnk
2014-12-01 11:09 - 2014-12-01 11:09 - 00000854 _____ () C:\Users\Public\Desktop\Fallout 3.lnk
2014-12-01 09:11 - 2014-12-01 09:11 - 00019277 _____ () C:\Users\Mees\Downloads\Epoch_0.2.5_RC1.zip.torrent
2014-12-01 09:09 - 2014-12-01 09:09 - 00001370 _____ () C:\Users\Mees\AppData\Roaming\BreakingPoint_Options.ini
2014-12-01 09:09 - 2014-12-01 09:09 - 00000309 _____ () C:\Users\Mees\AppData\Roaming\BreakingPoint_Login.ini
2014-12-01 08:55 - 2014-12-01 08:55 - 00000637 _____ () C:\Users\Mees\Desktop\Breaking Point.lnk
2014-12-01 08:49 - 2014-12-01 08:50 - 01543680 _____ (Alderon Games) C:\Users\Mees\Downloads\BP_Installer.exe
2014-11-30 12:50 - 2014-11-30 12:50 - 00000000 ____D () C:\Users\Mees\Documents\Rockstar Games
2014-11-30 12:50 - 2014-11-30 12:50 - 00000000 ____D () C:\Users\Mees\AppData\Local\Chromium
2014-11-30 12:42 - 2014-11-30 12:42 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games
2014-11-30 12:40 - 2014-11-30 12:40 - 00000796 _____ () C:\Users\Mees\Desktop\Max Payne 3.lnk
2014-11-30 12:40 - 2014-11-30 12:40 - 00000000 ____D () C:\Users\Mees\AppData\Roaming\Rockstar Games
2014-11-30 12:40 - 2014-11-30 12:40 - 00000000 ____D () C:\Users\Mees\AppData\Local\Rockstar Games
2014-11-30 12:40 - 2014-11-30 12:40 - 00000000 ____D () C:\ProgramData\Rockstar Games
2014-11-30 10:49 - 2014-11-30 10:49 - 01527455 _____ () C:\Users\Mees\Downloads\QuickSave (2).sav
2014-11-30 10:41 - 2014-11-30 10:41 - 01718760 _____ () C:\Users\Mees\Downloads\w2ee_16-06-13_+4tr.rar
2014-11-30 10:41 - 2013-06-15 15:37 - 00010593 _____ () C:\Users\Mees\Downloads\sILeNt heLLsCrEAm.nfo
2014-11-30 10:41 - 2007-12-22 06:09 - 00036548 _____ () C:\Users\Mees\Downloads\Play.dll
2014-11-30 09:32 - 2014-11-30 09:32 - 01411561 _____ () C:\Users\Mees\Downloads\w2eev3442+4tr.rar
2014-11-30 09:31 - 2014-11-30 09:31 - 03497031 _____ () C:\Users\Mees\Downloads\the-witcher-2-EE_trainer_by_airflyer13.rar
2014-11-30 09:24 - 2014-11-30 09:28 - 00000399 _____ () C:\Users\Mees\Desktop\config.ini
2014-11-30 09:24 - 2014-11-30 09:24 - 00554614 _____ () C:\Users\Mees\Downloads\WindowedBorderlessGaming_2.1.0.0.zip
2014-11-30 09:02 - 2014-11-30 09:02 - 00007795 _____ () C:\Users\Mees\Downloads\Extreme Quality Flora - Full Combat Rebalance - COMPATIBILITY FIX.rar
2014-11-30 08:38 - 2014-11-30 08:39 - 02085055 _____ () C:\Users\Mees\Downloads\QuickSave (1).sav
2014-11-30 08:38 - 2014-11-30 08:38 - 00232640 _____ () C:\Users\Mees\Downloads\Requiem ENB - Version 1.0-703-1-0.rar
2014-11-30 08:36 - 2014-11-30 08:36 - 00762507 _____ () C:\Users\Mees\Downloads\enbseries_witcher2_v0189.zip
2014-11-30 08:18 - 2014-11-30 08:18 - 00007602 _____ () C:\Users\Mees\AppData\Local\Resmon.ResmonCfg
2014-11-30 08:11 - 2014-11-30 08:34 - 00000000 ____D () C:\Users\Mees\Documents\Witcher 2
2014-11-30 08:11 - 2014-11-30 08:11 - 00000000 ____D () C:\Users\Mees\AppData\Local\The Witcher 2
2014-11-30 08:08 - 2014-11-30 08:08 - 00001790 _____ () C:\Users\Public\Desktop\The Witcher 2 - Assassins of Kings Enhanced Edition.lnk
2014-11-30 08:01 - 2014-11-30 08:13 - 814969599 _____ () C:\Users\Mees\Downloads\Better Texture Environment-158-2-0.zip
2014-11-30 08:01 - 2014-11-30 08:04 - 169522065 _____ () C:\Users\Mees\Downloads\High Texture Weapons-158-1-0.rar
2014-11-30 07:40 - 2014-11-30 07:40 - 02085055 _____ () C:\Users\Mees\Downloads\QuickSave.sav
2014-11-30 07:18 - 2014-11-30 07:18 - 00000000 ____D () C:\Users\Mees\Documents\Nexus Mod Manager
2014-11-30 07:18 - 2014-11-30 07:18 - 00000000 ____D () C:\Users\Mees\AppData\Local\Black_Tree_Gaming
2014-11-30 07:17 - 2014-11-30 07:17 - 00000762 _____ () C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2014-11-30 07:14 - 2014-11-30 07:15 - 04282672 _____ (Black Tree Gaming ) C:\Users\Mees\Downloads\Nexus Mod Manager-0.52.3.exe
2014-11-23 14:10 - 2014-11-23 14:10 - 00650981 _____ () C:\Users\Mees\Downloads\kaartjes.zip
2014-11-23 14:10 - 2014-11-23 14:10 - 00000000 ____D () C:\Users\Mees\Downloads\kaartjes
2014-11-23 12:42 - 2014-11-23 12:42 - 00012158 _____ () C:\Users\Mees\Downloads\ZSpawnV0.1.rar
2014-11-23 08:23 - 2014-11-23 09:46 - 00000000 ____D () C:\Users\Mees\Zomboid
2014-11-23 08:16 - 2014-11-23 08:16 - 00000968 _____ () C:\Users\Mees\Desktop\Project Zomboid Build 29.4.lnk
2014-11-23 07:06 - 2014-11-17 19:36 - 01922048 _____ (LinGon) C:\Users\Mees\Desktop\AC_UNITY+10Tr-LNG_v1.2.0_rev4.exe
2014-11-23 07:05 - 2014-11-23 07:05 - 01704650 _____ () C:\Users\Mees\Downloads\AC_UNITY+10Tr-LNG_v1.2.0_rev4.rar
2014-11-23 06:36 - 2014-12-01 14:08 - 00000000 ____D () C:\Users\Mees\AppData\Roaming\Skype
2014-11-23 06:36 - 2014-11-23 06:36 - 00002531 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-11-23 06:36 - 2014-11-23 06:36 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-11-23 06:36 - 2014-11-23 06:36 - 00000000 ____D () C:\Users\Mees\AppData\Local\Skype
2014-11-23 06:36 - 2014-11-23 06:36 - 00000000 ____D () C:\ProgramData\Skype
2014-11-23 06:35 - 2014-11-23 06:35 - 01546856 _____ (Skype Technologies S.A.) C:\Users\Mees\Downloads\SkypeSetup.exe
2014-11-22 12:23 - 2014-11-22 13:57 - 00000000 ___RD () C:\Users\Mees\Downloads\Microsoft.SkypeApp_kzf8qxf38zg5c!App
2014-11-21 18:24 - 2014-11-21 18:26 - 21348712 _____ () C:\Users\Mees\Downloads\detekt (1).exe
2014-11-21 07:53 - 2014-12-06 12:07 - 00000000 ____D () C:\Users\Mees\AppData\Roaming\vlc
2014-11-21 07:52 - 2014-11-21 07:52 - 24743106 _____ () C:\Users\Mees\Downloads\vlc-2.1.5-win32.exe
2014-11-21 07:52 - 2014-11-21 07:52 - 00000799 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-11-20 18:44 - 2014-11-20 18:44 - 00128384 _____ (Advanced Micro Devices, Inc.) C:\Windows\System32\amdhcp64.dll
2014-11-20 18:44 - 2014-11-20 18:44 - 00118096 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2014-11-20 18:44 - 2014-11-20 18:44 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\atimpc64.dll
2014-11-20 18:44 - 2014-11-20 18:44 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\amdpcom64.dll
2014-11-20 18:44 - 2014-11-20 18:44 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-11-20 18:44 - 2014-11-20 18:44 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-11-20 18:41 - 2014-11-20 18:41 - 00294600 _____ (Advanced Micro Devices) C:\Windows\System32\Drivers\amdacpksd.sys
2014-11-20 18:40 - 2014-11-20 18:40 - 18959360 _____ (Advanced Micro Devices, Inc.) C:\Windows\System32\Drivers\atikmdag.sys
2014-11-20 18:33 - 2014-11-20 18:33 - 47899136 _____ (Advanced Micro Devices Inc.) C:\Windows\System32\amdocl64.dll
2014-11-20 18:33 - 2014-11-20 18:33 - 00235008 _____ () C:\Windows\System32\clinfo.exe
2014-11-20 18:33 - 2014-11-20 18:33 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\System32\OpenVideo64.dll
2014-11-20 18:33 - 2014-11-20 18:33 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\System32\OVDecode64.dll
2014-11-20 18:33 - 2014-11-20 18:33 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-11-20 18:33 - 2014-11-20 18:33 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-11-20 18:32 - 2014-11-20 18:32 - 40987136 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-11-20 18:31 - 2014-11-20 18:31 - 00442368 _____ () C:\Windows\System32\amdmiracast.dll
2014-11-20 18:31 - 2014-11-20 18:31 - 00065024 _____ (Khronos Group) C:\Windows\System32\OpenCL.dll
2014-11-20 18:31 - 2014-11-20 18:31 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-11-20 18:25 - 2014-11-20 18:25 - 00134656 _____ () C:\Windows\System32\amdhdl64.dll
2014-11-20 18:25 - 2014-11-20 18:25 - 00123392 _____ () C:\Windows\SysWOW64\amdhdl32.dll
2014-11-20 18:24 - 2014-11-20 18:24 - 28354560 _____ (Advanced Micro Devices, Inc.) C:\Windows\System32\atio6axx.dll
2014-11-20 18:19 - 2014-11-20 18:19 - 00049664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\amdmmcl6.dll
2014-11-20 18:19 - 2014-11-20 18:19 - 00038912 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll
2014-11-20 18:18 - 2014-11-20 18:18 - 05837312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\amdmantle64.dll
2014-11-20 18:18 - 2014-11-20 18:18 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\mantle64.dll
2014-11-20 18:18 - 2014-11-20 18:18 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-11-20 18:17 - 2014-11-20 18:17 - 03437632 _____ () C:\Windows\System32\atiumd6a.cap
2014-11-20 18:17 - 2014-11-20 18:17 - 00631912 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-11-20 18:17 - 2014-11-20 18:17 - 00631912 _____ () C:\Windows\System32\atiapfxx.blb
2014-11-20 18:17 - 2014-11-20 18:17 - 00367104 _____ (Advanced Micro Devices, Inc.) C:\Windows\System32\atiapfxx.exe
2014-11-20 18:17 - 2014-11-20 18:17 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\System32\aticalrt64.dll
2014-11-20 18:17 - 2014-11-20 18:17 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-11-20 18:16 - 2014-11-20 18:16 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\System32\aticaldd64.dll
2014-11-20 18:16 - 2014-11-20 18:16 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-11-20 18:16 - 2014-11-20 18:16 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\System32\aticalcl64.dll
2014-11-20 18:16 - 2014-11-20 18:16 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-11-20 18:15 - 2014-11-20 18:15 - 04590592 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-11-20 18:13 - 2014-11-20 18:13 - 03471376 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-11-20 18:13 - 2014-11-20 18:13 - 00091648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\mantleaxl64.dll
2014-11-20 18:13 - 2014-11-20 18:13 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-11-20 18:12 - 2014-11-20 18:12 - 00774656 _____ (AMD) C:\Windows\System32\atieclxx.exe
2014-11-20 18:12 - 2014-11-20 18:12 - 00244736 _____ (AMD) C:\Windows\System32\atiesrxx.exe
2014-11-20 18:12 - 2014-11-20 18:12 - 00190976 _____ (AMD) C:\Windows\System32\atitmm64.dll
2014-11-20 18:12 - 2014-11-20 18:12 - 00031232 _____ (AMD) C:\Windows\System32\atimuixx.dll
2014-11-20 18:10 - 2014-11-20 18:10 - 00843776 _____ (AMD) C:\Windows\System32\coinst_14.50.dll
2014-11-20 18:09 - 2014-11-20 18:09 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\amdave64.dll
2014-11-20 18:09 - 2014-11-20 18:09 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2014-11-20 18:09 - 2014-11-20 18:09 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\atisamu64.dll
2014-11-20 18:09 - 2014-11-20 18:09 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2014-11-20 18:09 - 2014-11-20 18:09 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\atig6pxx.dll
2014-11-20 18:09 - 2014-11-20 18:09 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\atiglpxx.dll
2014-11-20 18:08 - 2014-11-20 18:08 - 00589312 _____ (Advanced Micro Devices, Inc.) C:\Windows\System32\Drivers\atikmpag.sys
2014-11-20 18:08 - 2014-11-20 18:08 - 00146944 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\atig6txx.dll
2014-11-20 18:08 - 2014-11-20 18:08 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\System32\Drivers\ati2erec.dll
2014-11-20 12:36 - 2014-11-20 12:36 - 00051200 _____ () C:\Windows\System32\kdbsdk64.dll
2014-11-20 12:35 - 2014-11-20 12:35 - 00038912 _____ () C:\Windows\SysWOW64\kdbsdk32.dll
2014-11-20 09:46 - 2014-11-21 18:34 - 00018019 _____ () C:\Users\Mees\Downloads\detekt.log
2014-11-20 09:45 - 2014-11-20 09:46 - 27810096 _____ () C:\Users\Mees\Downloads\detekt.exe
2014-11-19 09:17 - 2014-11-19 09:18 - 04107348 _____ () C:\Users\Mees\Downloads\This War Of Mine V1.00 Trainer +1 MrAntiFun.zip
2014-11-19 05:06 - 2014-11-09 15:19 - 00991232 _____ (Microsoft Corporation) C:\Windows\System32\kerberos.dll
2014-11-19 05:06 - 2014-11-09 15:19 - 00806400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-19 05:06 - 2014-11-09 15:18 - 00259584 _____ (Microsoft Corporation) C:\Windows\System32\pku2u.dll
2014-11-19 05:06 - 2014-11-09 15:18 - 00208896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2014-11-18 15:05 - 2014-11-18 15:05 - 00000000 ____D () C:\Program Files (x86)\This War of Mine
2014-11-18 15:01 - 2014-11-18 15:01 - 00000167 _____ () C:\Users\Mees\Downloads\this_war_of_mine_config.rar
2014-11-18 14:47 - 2014-11-18 15:05 - 00001115 _____ () C:\Users\Public\Desktop\This War of Mine.lnk
2014-11-18 14:47 - 2014-11-18 14:47 - 00000000 ____D () C:\Users\Mees\AppData\Roaming\11bitstudios
2014-11-18 05:45 - 2014-11-18 05:45 - 00056548 _____ () C:\Windows\SysWOW64\CCCInstall_201411181445058809.log
2014-11-18 05:37 - 2014-11-18 05:38 - 286063288 _____ (AMD Inc.) C:\Users\Mees\Downloads\AMD-Catalyst-14.11.2Beta-64Bit-Win8.1-Win7-Nov18.exe
2014-11-17 08:33 - 2014-11-17 08:34 - 1094731722 _____ () C:\Users\Mees\Downloads\Far.Cry.4.Update.v1.03.rar
2014-11-17 08:11 - 2014-12-12 16:15 - 00002223 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-11-17 08:10 - 2014-11-17 08:09 - 00880784 _____ (Google Inc.) C:\Users\Mees\Desktop\ChromeSetup.exe
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-12-16 14:00 - 2013-08-22 07:36 - 00000000 ____D () C:\Windows\System32\sru
2014-12-16 12:27 - 2014-11-05 21:10 - 01603453 _____ () C:\Windows\WindowsUpdate.log
2014-12-16 12:09 - 2014-11-05 12:38 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3991032115-1765476521-650572198-1001
2014-12-16 11:58 - 2014-11-05 12:34 - 00000000 __RDO () C:\Users\Mees\OneDrive
2014-12-16 11:58 - 2014-03-18 01:54 - 00014914 _____ () C:\Windows\PFRO.log
2014-12-16 11:58 - 2013-08-22 06:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-12-16 11:42 - 2014-11-05 12:28 - 00000000 ____D () C:\users\Mees
2014-12-16 08:27 - 2013-08-22 05:25 - 00262144 ___SH () C:\Windows\System32\config\BBI
2014-12-16 06:37 - 2013-08-22 07:20 - 00000000 ____D () C:\Windows\CbsTemp
2014-12-16 06:27 - 2013-08-22 07:36 - 00000000 ____D () C:\Windows\AppReadiness
2014-12-14 08:59 - 2014-11-05 14:43 - 00000000 ____D () C:\Users\Mees\AppData\Roaming\BitTorrent
2014-12-14 07:23 - 2014-11-05 13:23 - 00000000 ____D () C:\Users\Mees\AppData\Local\Google
2014-12-14 06:52 - 2014-11-05 14:02 - 00000000 ____D () C:\Program Files\UNi Xonar Audio
2014-12-14 06:35 - 2013-08-22 07:36 - 00000000 ____D () C:\Windows\rescache
2014-12-14 05:48 - 2014-11-06 07:38 - 00000972 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-12-13 09:39 - 2014-11-06 05:30 - 00000000 ____D () C:\Program Files (x86)\Gyazo
2014-12-13 07:29 - 2014-11-05 12:54 - 00000000 ____D () C:\Users\Mees\AppData\Roaming\Raptr
2014-12-11 22:08 - 2013-08-22 07:36 - 00000000 ____D () C:\Windows\System32\sr-Latn-RS
2014-12-11 22:08 - 2013-08-22 07:36 - 00000000 ____D () C:\Windows\System32\sr-Latn-CS
2014-12-11 22:08 - 2013-08-22 07:36 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-12-11 09:47 - 2014-11-07 09:31 - 00000000 ____D () C:\Windows\System32\MRT
2014-12-11 09:43 - 2014-11-07 09:31 - 112710672 _____ (Microsoft Corporation) C:\Windows\System32\MRT.exe
2014-12-11 07:32 - 2014-11-06 05:30 - 00000898 _____ () C:\Users\Public\Desktop\Gyazo.lnk
2014-12-11 06:39 - 2014-11-06 05:30 - 00003738 _____ () C:\Windows\System32\Tasks\GyazoUpdateTaskMachine
2014-12-11 06:39 - 2014-11-06 05:30 - 00000994 _____ () C:\Users\Public\Desktop\Gyazo GIF.lnk
2014-12-10 04:00 - 2013-08-22 06:46 - 00013491 _____ () C:\Windows\setupact.log
2014-12-10 03:58 - 2014-11-05 13:32 - 00000000 ____D () C:\Program Files\AMD
2014-12-10 03:56 - 2014-11-05 12:47 - 00000000 ____D () C:\AMD
2014-12-10 03:15 - 2014-11-05 12:53 - 00000000 ____D () C:\ProgramData\AMD
2014-12-08 22:53 - 2014-11-05 12:54 - 00000000 ____D () C:\Program Files (x86)\Raptr
2014-12-07 09:31 - 2014-11-07 10:46 - 00000000 ____D () C:\Users\Mees\Documents\My Games
2014-12-07 09:31 - 2014-11-06 08:39 - 00000000 ____D () C:\Users\Mees\AppData\Local\SKIDROW
2014-12-07 09:25 - 2014-11-06 08:33 - 00080595 _____ () C:\Windows\DirectX.log
2014-12-03 12:35 - 2014-11-06 08:32 - 00000000 ____D () C:\Program Files (x86)\RivaTuner Statistics Server
2014-12-01 09:24 - 2014-11-07 08:19 - 00000000 ____D () C:\Users\Mees\AppData\Local\Arma 3
2014-11-30 12:41 - 2014-11-06 08:33 - 00000000 ____D () C:\Windows\SysWOW64\directx
2014-11-30 09:24 - 2014-08-26 00:10 - 00973312 _____ (GameplayCrush) C:\Users\Mees\Desktop\WindowedBorderlessGaming.exe
2014-11-30 08:11 - 2014-11-09 06:14 - 00000000 ____D () C:\Users\Mees\AppData\Roaming\Notepad++
2014-11-26 13:10 - 2014-11-07 11:23 - 00714720 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-11-26 13:10 - 2014-11-07 11:23 - 00106976 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-23 15:01 - 2014-11-08 12:02 - 00000000 ____D () C:\Users\Mees\AppData\Roaming\TS3Client
2014-11-23 08:06 - 2014-11-05 12:30 - 00000000 ____D () C:\Users\Mees\AppData\Local\Packages
2014-11-20 18:44 - 2014-09-15 14:31 - 11076784 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\atidxx64.dll
2014-11-20 18:44 - 2014-09-15 14:31 - 09401480 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-11-20 18:44 - 2014-09-15 14:31 - 01348928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\aticfx64.dll
2014-11-20 18:44 - 2014-09-15 14:31 - 01127496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2014-11-20 18:44 - 2014-09-15 14:31 - 00144328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\atiuxp64.dll
2014-11-20 18:44 - 2014-09-15 14:31 - 00126848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-11-20 18:44 - 2014-09-15 14:31 - 00118096 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\atiu9p64.dll
2014-11-20 18:44 - 2014-09-15 14:31 - 00100032 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-11-20 18:43 - 2014-09-15 14:31 - 08379720 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\atiumd6a.dll
2014-11-20 18:43 - 2014-09-15 14:31 - 08369408 _____ (Advanced Micro Devices, Inc. ) C:\Windows\System32\atiumd64.dll
2014-11-20 18:43 - 2014-09-15 14:31 - 07558816 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2014-11-20 18:43 - 2014-09-15 14:31 - 07077776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2014-11-20 18:19 - 2014-09-15 14:08 - 23621632 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-11-20 18:12 - 2014-09-15 14:03 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\System32\atidemgy.dll
2014-11-20 18:09 - 2014-09-15 13:59 - 01214976 _____ (Advanced Micro Devices, Inc.) C:\Windows\System32\atiadlxx.dll
2014-11-20 18:09 - 2014-09-15 13:59 - 00903168 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-11-20 18:09 - 2014-09-15 13:59 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-11-20 18:08 - 2014-09-15 13:59 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-11-20 11:32 - 2014-11-06 08:31 - 00000000 ____D () C:\Program Files (x86)\MSI Afterburner
2014-11-17 08:10 - 2014-11-05 13:23 - 00000000 ____D () C:\Program Files (x86)\Google
 
Some content of TEMP:
====================
C:\Users\Mees\AppData\Local\Temp\Bass.dll
C:\Users\Mees\AppData\Local\Temp\Bass.Net.dll
C:\Users\Mees\AppData\Local\Temp\CH.dll
C:\Users\Mees\AppData\Local\Temp\Copy.dll
C:\Users\Mees\AppData\Local\Temp\dotnetfx45fullsetup.exe
C:\Users\Mees\AppData\Local\Temp\raptrpatch.exe
C:\Users\Mees\AppData\Local\Temp\raptr_stub.exe
C:\Users\Mees\AppData\Local\Temp\tmpC319.exe
C:\Users\Mees\AppData\Local\Temp\utt4326.tmp.exe
C:\Users\Mees\AppData\Local\Temp\xmlUpdater.exe
 
 
==================== Known DLLs (Whitelisted) ================
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe
[2014-11-07 08:37] - [2014-08-22 23:48] - 2374784 ____A (Microsoft Corporation) ACDBE1ED38167C8B01B8F63161BB2CEA
 
C:\Windows\SysWOW64\explorer.exe
[2014-11-07 08:37] - [2014-08-22 23:13] - 2084520 ____A (Microsoft Corporation) 195822ACCDAA2B4815DD01BAFC335595
 
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll
[2014-11-12 22:51] - [2014-09-21 20:38] - 1519488 ____A (Microsoft Corporation) F0A117D19873FCDF801F082F33BFBB6C
 
C:\Windows\SysWOW64\User32.dll
[2014-11-12 22:51] - [2014-09-18 16:16] - 1346048 ____A (Microsoft Corporation) 5F333FDBF392850373C89BDA31EBEC1B
 
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys
[2014-11-08 05:59] - [2014-06-18 18:13] - 0310080 ____A (Microsoft Corporation) 64CA2B4A49A8EAF495E435623ECCE7DB
 
 
 
testsigning: ==> Check for possible unsigned rootkit driver <===== ATTENTION!
 
==================== Restore Points  =========================
 
Restore point made on: 2014-12-11 09:39:19
Restore point made on: 2014-12-14 07:51:41
Restore point made on: 2014-12-16 06:04:12
 
==================== Memory info =========================== 
 
Percentage of memory in use: 9%
Total physical RAM: 8075.07 MB
Available physical RAM: 7329.36 MB
Total Pagefile: 8075.07 MB
Available Pagefile: 7351.83 MB
Total Virtual: 131072 MB
Available Virtual: 131071.88 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:194.51 GB) (Free:116.92 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:903.4 GB) (Free:440.29 GB) NTFS
Drive e: (UUI) (Removable) (Total:15.12 GB) (Free:0.39 GB) FAT32
Drive x: (Boot) (Fixed) (Total:0.5 GB) (Free:0.5 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 232.9 GB) (Disk ID: 826EBF27)
Partition 1: (Active) - (Size=194.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=954 MB) - (Type=05)
Partition 3: (Not Active) - (Size=37.4 GB) - (Type=83)
 
========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: C17BB783)
Partition 1: (Active) - (Size=903.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=28.1 GB) - (Type=83)
 
========================================================
Disk: 2 (Size: 15.1 GB) (Disk ID: 08DA58C2)
Partition 1: (Active) - (Size=15.1 GB) - (Type=0C)
 
 
LastRegBack: 2014-12-14 04:47
 
==================== End Of Log ============================

  • 0

#20
Naathim
Posted 17 December 2014 - 08:25 AM

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts
I don't see anything obviously bad here. Could you please reboot into safemode and repeat the scan from there?
  • 0

#21
TheElderTrolls
Posted 17 December 2014 - 08:31 AM

TheElderTrolls

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 14-12-2014 01
Ran by Mees (administrator) on MADMAX on 17-12-2014 15:29:27
Running from F:\
Loaded Profile: Mees (Available profiles: Mees & Admin)
Platform: Windows 8.1 Pro (X64) OS Language: English (United States)
Internet Explorer Version 11
Boot Mode: Safe Mode (minimal)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Microsoft Corporation) C:\Windows\HelpPane.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3991032115-1765476521-650572198-1001\...\Run: [Gyazo] => C:\Program Files (x86)\Gyazo\GyStation.exe [3095840 2014-10-27] (Nota Inc.)
HKU\S-1-5-21-3991032115-1765476521-650572198-1001\...\Run: [ASRockXTU] => [X]
HKU\S-1-5-21-3991032115-1765476521-650572198-1001\...\Run: [f.lux] => C:\Users\Mees\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-23] (Flux Software LLC)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
SearchScopes: HKLM-x32 -> DefaultScope value is missing.
SearchScopes: HKU\S-1-5-21-3991032115-1765476521-650572198-1001 -> DefaultScope {828B376B-F2F6-4778-928C-E29EC877535E} URL = http://www.google.co...rms}&gsc.page=1
SearchScopes: HKU\S-1-5-21-3991032115-1765476521-650572198-1001 -> {828B376B-F2F6-4778-928C-E29EC877535E} URL = http://www.google.co...rms}&gsc.page=1
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF StartMenuInternet: FIREFOX.EXE - firefox.exe
 
Chrome: 
=======
CHR Profile: C:\Users\Mees\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Presentaties) - C:\Users\Mees\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-11-05]
CHR Extension: (Google Documenten) - C:\Users\Mees\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-11-05]
CHR Extension: (Google Drive) - C:\Users\Mees\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-11-05]
CHR Extension: (YouTube) - C:\Users\Mees\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-11-05]
CHR Extension: (Adblock Plus) - C:\Users\Mees\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-11-18]
CHR Extension: (Google Zoeken) - C:\Users\Mees\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-11-05]
CHR Extension: (Disable Youtube™ HTML5 Player) - C:\Users\Mees\AppData\Local\Google\Chrome\User Data\Default\Extensions\enmofgaijnbjpblfljopnpdogpldapoc [2014-12-10]
CHR Extension: (Google Spreadsheets) - C:\Users\Mees\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-11-05]
CHR Extension: (Google Wallet) - C:\Users\Mees\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-11-05]
CHR Extension: (Gmail) - C:\Users\Mees\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-11-05]
CHR StartMenuInternet: Google Chrome - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S4 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] () [File not signed]
S2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [76888 2014-11-07] ()
S2 RadeonPro Support Service; D:\Program Files (x86)\RadeonPro\RadeonProSupport.exe [20608 2013-11-04] (Mr. John aka japamd) [File not signed]
S3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [833728 2014-11-18] (Valve Corporation) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [346872 2013-08-22] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23840 2013-08-22] (Microsoft Corporation)
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R0 AsrRamDisk; C:\Windows\System32\drivers\AsrRamDisk.sys [31016 2012-01-13] (ASRock Inc.)
S3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [223232 2014-06-21] (Advanced Micro Devices)
S3 atillk64; C:\Users\Mees\AppData\Local\Temp\RarSFX0\atillk64.sys [14608 2006-07-19] (ATI Technologies Inc.)
S3 cmudaxp; C:\Windows\system32\drivers\cmudaxp.sys [2735616 2013-12-11] (C-Media Inc)
S3 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [24824 2013-07-02] (ASUSTeK Computer Inc.)
R3 ISCT; C:\Windows\System32\drivers\ISCTD64.sys [47008 2013-07-30] ()
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2014-11-21] (Malwarebytes Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S3 AxtuDrv; \??\C:\WINDOWS\SysWOW64\Drivers\AxtuDrv.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-12-17 23:46 - 2014-12-17 23:46 - 00000000 _____ () C:\Recovery.txt
2014-12-16 20:52 - 2014-12-16 20:52 - 00000000 ____D () D:\Program Files\Malwarebytes Anti-Malware
2014-12-16 17:48 - 2014-12-16 17:48 - 00000674 _____ () C:\Users\Mees\Downloads\desktop.txt
2014-12-16 17:46 - 2014-12-16 17:46 - 00000590 _____ () C:\Users\Mees\Documents\desktop.txt
2014-12-16 17:26 - 2014-12-17 15:29 - 00000000 ____D () C:\FRST
2014-12-16 17:23 - 2014-12-16 20:52 - 00000783 _____ () C:\Users\Mees\Desktop\Malwarebytes Anti-Malware.lnk
2014-12-16 17:23 - 2014-12-16 20:52 - 00000000 ____D () C:\Users\Mees\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-12-16 17:23 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-12-16 17:23 - 2014-11-21 06:14 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2014-12-16 17:23 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-12-16 15:56 - 2014-12-16 15:50 - 00602112 _____ (OldTimer Tools) C:\Users\Mees\Desktop\OTL.exe
2014-12-16 15:26 - 2014-10-30 23:37 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2014-12-16 15:26 - 2014-10-30 23:34 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2014-12-16 15:13 - 2014-12-16 15:13 - 00000000 ____D () C:\Users\Mees\Desktop\New folder
2014-12-14 16:17 - 2014-12-14 16:05 - 01940728 _____ (Bleeping Computer, LLC) C:\Users\Mees\Desktop\rkill.exe
2014-12-14 16:08 - 2014-12-16 20:55 - 00004084 _____ () C:\Users\Mees\Desktop\Rkill.txt
2014-12-14 15:37 - 2014-12-14 15:37 - 00051022 _____ () C:\Users\Mees\Documents\run.reg
2014-12-14 15:33 - 2014-12-14 15:33 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3991032115-1765476521-650572198-1003
2014-12-14 15:27 - 2014-12-14 15:28 - 00000000 ____D () C:\Users\Admin\AppData\Local\Packages
2014-12-14 15:27 - 2014-12-14 15:27 - 00001276 _____ () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-12-14 15:27 - 2014-12-14 15:27 - 00000020 ___SH () C:\Users\Admin\ntuser.ini
2014-12-14 15:27 - 2014-12-14 15:27 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Adobe
2014-12-14 15:27 - 2014-12-14 15:27 - 00000000 ____D () C:\Users\Admin\AppData\Local\VirtualStore
2014-12-14 15:27 - 2014-12-14 15:27 - 00000000 ____D () C:\Users\Admin
2014-12-14 15:27 - 2014-11-14 02:34 - 00000000 ___RD () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-12-14 15:27 - 2014-11-13 00:25 - 00000000 ___RD () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-12-14 15:27 - 2014-03-18 11:15 - 00000369 _____ () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Pictures.lnk
2014-12-14 15:27 - 2014-03-18 11:15 - 00000369 _____ () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Documents.lnk
2014-12-14 15:27 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-14 15:27 - 2013-08-22 16:36 - 00000000 ____D () C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-12-14 15:00 - 2014-12-14 15:00 - 00000000 ____D () C:\Users\Mees\AppData\Roaming\Malwarebytes
2014-12-13 16:54 - 2014-12-13 16:54 - 00000222 _____ () C:\Users\Mees\Desktop\Call of Duty Advanced Warfare - Multiplayer.url
2014-12-11 15:39 - 2014-12-11 15:39 - 09698760 _____ (Nota Inc. ) C:\Users\Mees\Downloads\Gyazo-2.3.0 (1).exe
2014-12-10 19:47 - 2014-12-10 19:47 - 00040545 _____ () C:\Users\Mees\Downloads\((demonoid.pw))-Katchafire_Discography.TORRENT
2014-12-10 19:18 - 2014-12-10 19:18 - 00018871 _____ () C:\Users\Mees\Downloads\[katproxy.com]the.long.dark.v1.56.windows.viruz.torrent
2014-12-10 16:04 - 2014-12-10 16:04 - 00000553 _____ () C:\Users\Mees\Downloads\viewport.txt
2014-12-10 14:26 - 2014-11-10 03:29 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2014-12-10 14:26 - 2014-11-10 02:51 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceSetupStatusProvider.dll
2014-12-10 14:26 - 2014-11-07 05:16 - 01762840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2014-12-10 14:26 - 2014-11-07 04:26 - 01489072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2014-12-10 14:26 - 2014-11-01 00:57 - 01091072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-12-10 14:26 - 2014-11-01 00:47 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-12-10 14:25 - 2014-11-22 04:13 - 25059840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-12-10 14:25 - 2014-11-22 03:50 - 00580096 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-12-10 14:25 - 2014-11-22 03:49 - 02885120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-12-10 14:25 - 2014-11-22 03:49 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2014-12-10 14:25 - 2014-11-22 03:48 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2014-12-10 14:25 - 2014-11-22 03:35 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2014-12-10 14:25 - 2014-11-22 03:34 - 06039552 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-12-10 14:25 - 2014-11-22 03:22 - 19749376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-12-10 14:25 - 2014-11-22 03:08 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-12-10 14:25 - 2014-11-22 03:07 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-12-10 14:25 - 2014-11-22 03:06 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2014-12-10 14:25 - 2014-11-22 03:06 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2014-12-10 14:25 - 2014-11-22 03:05 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-12-10 14:25 - 2014-11-22 03:05 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-12-10 14:25 - 2014-11-22 03:01 - 02277888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-12-10 14:25 - 2014-11-22 02:59 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2014-12-10 14:25 - 2014-11-22 02:55 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2014-12-10 14:25 - 2014-11-22 02:52 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2014-12-10 14:25 - 2014-11-22 02:49 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-12-10 14:25 - 2014-11-22 02:49 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-12-10 14:25 - 2014-11-22 02:49 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-12-10 14:25 - 2014-11-22 02:46 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-12-10 14:25 - 2014-11-22 02:43 - 14412800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-12-10 14:25 - 2014-11-22 02:35 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-12-10 14:25 - 2014-11-22 02:34 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2014-12-10 14:25 - 2014-11-22 02:33 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-12-10 14:25 - 2014-11-22 02:29 - 04299264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-12-10 14:25 - 2014-11-22 02:29 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2014-12-10 14:25 - 2014-11-22 02:28 - 02358272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-12-10 14:25 - 2014-11-22 02:25 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2014-12-10 14:25 - 2014-11-22 02:23 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-12-10 14:25 - 2014-11-22 02:23 - 00326656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-12-10 14:25 - 2014-11-22 02:22 - 02052096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-12-10 14:25 - 2014-11-22 02:15 - 01548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-12-10 14:25 - 2014-11-22 02:13 - 12836864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-12-10 14:25 - 2014-11-22 02:03 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-12-10 14:25 - 2014-11-22 02:00 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-12-10 14:25 - 2014-11-22 01:56 - 01307136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-12-10 14:25 - 2014-11-22 01:54 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-12-10 14:25 - 2014-10-31 00:39 - 01970432 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2014-12-10 14:25 - 2014-10-31 00:38 - 01612992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2014-12-10 14:25 - 2014-10-13 03:43 - 00238912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2014-12-10 14:25 - 2014-10-13 03:43 - 00153920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2014-12-10 14:25 - 2014-10-13 03:43 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-12-10 14:25 - 2014-10-13 03:43 - 00039744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-12-10 12:15 - 2014-12-10 12:15 - 00053564 _____ () C:\WINDOWS\SysWOW64\CCCInstall_201412101215535028.log
2014-12-10 12:15 - 2014-12-10 12:15 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-12-10 12:15 - 2014-12-10 12:15 - 00000000 ____D () C:\ProgramData\ATI
2014-12-10 12:12 - 2014-12-10 12:13 - 302470552 _____ (AMD Inc.) C:\Users\Mees\Downloads\amd-catalyst-omega-14.12-with-dotnet45-win7-64bit.exe
2014-12-10 11:51 - 2014-12-10 11:51 - 00011310 _____ () C:\Users\Mees\Downloads\Battle-Royale-v050.torrent
2014-12-08 18:44 - 2014-10-24 23:48 - 01920512 _____ (LinGon) C:\Users\Mees\Desktop\DeadRising3+26Tr-LNG_v1.5.0.exe
2014-12-08 07:36 - 2013-07-02 16:29 - 00024824 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\system32\Drivers\IOMap64.sys
2014-12-07 21:01 - 2014-12-07 21:01 - 01760331 _____ () C:\Users\Mees\Downloads\DeadRising3+26Tr-LNG_v1.5.0.rar
2014-12-07 20:35 - 2014-12-07 20:35 - 00000030 _____ () C:\Users\Mees\Downloads\user (1).ini
2014-12-07 19:50 - 2014-12-07 19:50 - 00000028 _____ () C:\Users\Mees\Downloads\user.ini
2014-12-07 18:26 - 2014-12-07 18:36 - 00001042 _____ () C:\Users\Mees\Desktop\Dead Rising 3 Apocalypse Edition.lnk
2014-12-07 18:26 - 2014-12-07 18:26 - 00000000 ____D () C:\Users\Mees\AppData\Roaming\Dead Rising 3 Apocalypse Edition
2014-12-07 18:26 - 2014-12-07 18:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2014-12-07 17:41 - 2014-12-14 16:20 - 00000000 ____D () D:\Program Files (x86)\Dead Rising 3 Apocalypse Edition
2014-12-07 16:59 - 2014-12-07 16:59 - 13163326 _____ () C:\Users\Mees\Downloads\Realistic Shadows Mod-86-1-2.rar
2014-12-07 16:53 - 2014-12-07 16:53 - 18605140 _____ () C:\Users\Mees\Downloads\Cryengine MIX-14-0-0-2-1.rar
2014-12-07 16:43 - 2014-12-07 16:44 - 00133015 _____ () C:\Users\Mees\Downloads\New Amazing Effects EXPLOSIONS DUST SMOKE UPDATE-97-0-7Beta.zip
2014-12-07 16:42 - 2014-12-07 16:42 - 00001977 _____ () C:\Users\Public\Desktop\State of Decay - Lifeline.lnk
2014-12-07 16:42 - 2014-12-07 16:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Studios
2014-12-07 16:41 - 2014-12-07 16:41 - 00000000 ____D () D:\Program Files (x86)\Microsoft Studios
2014-12-07 15:24 - 2014-12-07 15:24 - 1208502997 _____ () C:\Users\Mees\Downloads\HL2EP2 Content Addon (Jul2014).rar
2014-12-07 15:23 - 2014-12-07 15:24 - 1500064412 _____ () C:\Users\Mees\Downloads\HL2+ Content Addon (Jul2014).rar
2014-12-07 15:22 - 2014-12-07 15:22 - 585937014 _____ () C:\Users\Mees\Downloads\HL2EP1 Content Addon (Jul2014).rar
2014-12-07 14:40 - 2014-12-07 14:40 - 00005640 _____ () C:\Users\Mees\Downloads\spawnlist_extract_v2p.zip
2014-12-07 14:35 - 2014-12-07 14:37 - 615532164 _____ () C:\Users\Mees\Downloads\hl2_episode_1and2_addon.zip
2014-12-07 14:30 - 2014-12-07 14:31 - 83854275 _____ () C:\Users\Mees\Downloads\extract-first-v2d.zip
2014-12-03 21:38 - 2014-12-03 21:38 - 00000570 _____ () C:\Users\Public\Desktop\Fraps.lnk
2014-12-03 21:38 - 2014-12-03 21:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2014-12-03 21:38 - 2014-12-03 21:38 - 00000000 ____D () C:\Fraps
2014-12-03 21:36 - 2014-12-03 21:37 - 02326976 _____ (Beepa Pty Ltd) C:\Users\Mees\Downloads\setup (1).exe
2014-12-03 21:30 - 2014-12-03 21:31 - 00002507 _____ () C:\Users\Mees\Desktop\The Vanishing of Ethan Carter (x64).lnk
2014-12-03 21:30 - 2014-12-03 21:30 - 00002229 _____ () C:\Users\Mees\Desktop\The Vanishing of Ethan Carter (x32).lnk
2014-12-03 21:30 - 2014-12-03 21:30 - 00002014 _____ () C:\Users\Mees\Desktop\Launcher The Vanishing of Ethan Carter.lnk
2014-12-03 21:30 - 2014-12-03 21:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GMT-MAX.ORG
2014-12-03 21:22 - 2014-12-03 21:30 - 00000000 ____D () D:\Program Files (x86)\The Vanishing of Ethan Carter
2014-12-03 19:53 - 2014-12-03 19:53 - 00000220 _____ () C:\Users\Mees\Desktop\Garry's Mod.url
2014-12-03 15:42 - 2014-12-03 15:42 - 04552655 _____ () C:\Users\Mees\Downloads\Midhrastic ENB for Fallout 3 2.0a-18107-2-0a.7z
2014-12-03 15:35 - 2014-12-03 15:36 - 01975528 _____ () C:\Users\Mees\Downloads\enbseries_falloutnv_v0263.zip
2014-12-03 15:35 - 2014-12-03 15:35 - 01583397 _____ () C:\Users\Mees\Downloads\enbseries_fallout3_v0203enboost.zip
2014-12-03 15:30 - 2014-12-03 15:30 - 00330843 _____ () C:\Users\Mees\Downloads\Agoodstart-5325.rar
2014-12-03 15:25 - 2014-12-03 15:25 - 00284942 _____ () C:\Users\Mees\Downloads\FO3_3GB_ENABLER-6510.7z
2014-12-03 15:08 - 2014-12-03 15:10 - 209307929 _____ () C:\Users\Mees\Downloads\Fallout 3 Redesigned-6341-2-73.rar
2014-12-03 15:08 - 2014-12-03 15:08 - 00384875 _____ () C:\Users\Mees\Downloads\fose_v1_2_beta2.7z
2014-12-03 14:57 - 2014-12-03 14:57 - 00686405 _____ () C:\Users\Mees\Downloads\SweetFX_1-5-1 for Fallout 3-18362-1-0.7z
2014-12-03 14:57 - 2014-12-03 14:57 - 00686405 _____ () C:\Users\Mees\Downloads\SweetFX_1-5-1 for Fallout 3-18362-1-0 (1).7z
2014-12-03 14:53 - 2014-12-03 14:55 - 00000000 ____D () C:\Users\Mees\AppData\Local\Fallout3
2014-12-02 15:29 - 2014-12-02 15:29 - 00488228 _____ () C:\Users\Mees\Downloads\1417530515929.zip
2014-12-02 15:25 - 2014-12-02 15:25 - 00000000 ____D () C:\Users\Mees\AppData\Local\My Games
2014-12-02 15:25 - 2014-12-02 15:25 - 00000000 ____D () C:\ProgramData\Steam
2014-12-02 15:21 - 2014-12-02 15:21 - 00502106 _____ () C:\Users\Mees\Downloads\1417529950335.zip
2014-12-02 15:15 - 2014-12-03 11:27 - 00000000 ____D () D:\Program Files (x86)\Sid Meiers Civilization Beyond Earth
2014-12-02 15:15 - 2014-12-02 15:15 - 00000719 _____ () C:\Users\Public\Desktop\Sid Meiers Civilization Beyond Earth.lnk
2014-12-02 15:15 - 2014-12-02 15:15 - 00000719 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sid Meiers Civilization Beyond Earth.lnk
2014-12-01 20:09 - 2014-12-01 20:09 - 00000854 _____ () C:\Users\Public\Desktop\Fallout 3.lnk
2014-12-01 20:09 - 2014-12-01 20:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fallout 3
2014-12-01 20:02 - 2014-12-03 15:43 - 00000000 ____D () D:\Program Files\Fallout 3
2014-12-01 18:11 - 2014-12-01 18:11 - 00019277 _____ () C:\Users\Mees\Downloads\Epoch_0.2.5_RC1.zip.torrent
2014-12-01 18:09 - 2014-12-01 18:09 - 00001370 _____ () C:\Users\Mees\AppData\Roaming\BreakingPoint_Options.ini
2014-12-01 18:09 - 2014-12-01 18:09 - 00000309 _____ () C:\Users\Mees\AppData\Roaming\BreakingPoint_Login.ini
2014-12-01 17:55 - 2014-12-01 17:55 - 00000637 _____ () C:\Users\Mees\Desktop\Breaking Point.lnk
2014-12-01 17:49 - 2014-12-01 17:50 - 01543680 _____ (Alderon Games) C:\Users\Mees\Downloads\BP_Installer.exe
2014-11-30 21:50 - 2014-11-30 21:50 - 00000000 ____D () C:\Users\Mees\Documents\Rockstar Games
2014-11-30 21:50 - 2014-11-30 21:50 - 00000000 ____D () C:\Users\Mees\AppData\Local\Chromium
2014-11-30 21:40 - 2014-11-30 21:40 - 00000796 _____ () C:\Users\Mees\Desktop\Max Payne 3.lnk
2014-11-30 21:40 - 2014-11-30 21:40 - 00000000 ____D () C:\Users\Mees\AppData\Roaming\Rockstar Games
2014-11-30 21:40 - 2014-11-30 21:40 - 00000000 ____D () C:\Users\Mees\AppData\Local\Rockstar Games
2014-11-30 21:40 - 2014-11-30 21:40 - 00000000 ____D () C:\ProgramData\Rockstar Games
2014-11-30 21:40 - 2014-11-30 21:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Max Payne 3
2014-11-30 19:49 - 2014-11-30 19:49 - 01527455 _____ () C:\Users\Mees\Downloads\QuickSave (2).sav
2014-11-30 19:41 - 2014-11-30 19:41 - 01718760 _____ () C:\Users\Mees\Downloads\w2ee_16-06-13_+4tr.rar
2014-11-30 19:41 - 2013-06-16 00:37 - 00010593 _____ () C:\Users\Mees\Downloads\sILeNt heLLsCrEAm.nfo
2014-11-30 19:41 - 2007-12-22 15:09 - 00036548 _____ () C:\Users\Mees\Downloads\Play.dll
2014-11-30 18:32 - 2014-11-30 18:32 - 01411561 _____ () C:\Users\Mees\Downloads\w2eev3442+4tr.rar
2014-11-30 18:31 - 2014-11-30 18:31 - 03497031 _____ () C:\Users\Mees\Downloads\the-witcher-2-EE_trainer_by_airflyer13.rar
2014-11-30 18:24 - 2014-11-30 18:28 - 00000399 _____ () C:\Users\Mees\Desktop\config.ini
2014-11-30 18:24 - 2014-11-30 18:24 - 00554614 _____ () C:\Users\Mees\Downloads\WindowedBorderlessGaming_2.1.0.0.zip
2014-11-30 18:02 - 2014-11-30 18:02 - 00007795 _____ () C:\Users\Mees\Downloads\Extreme Quality Flora - Full Combat Rebalance - COMPATIBILITY FIX.rar
2014-11-30 17:38 - 2014-11-30 17:39 - 02085055 _____ () C:\Users\Mees\Downloads\QuickSave (1).sav
2014-11-30 17:38 - 2014-11-30 17:38 - 00232640 _____ () C:\Users\Mees\Downloads\Requiem ENB - Version 1.0-703-1-0.rar
2014-11-30 17:36 - 2014-11-30 17:36 - 00762507 _____ () C:\Users\Mees\Downloads\enbseries_witcher2_v0189.zip
2014-11-30 17:18 - 2014-11-30 17:18 - 00007602 _____ () C:\Users\Mees\AppData\Local\Resmon.ResmonCfg
2014-11-30 17:11 - 2014-11-30 17:34 - 00000000 ____D () C:\Users\Mees\Documents\Witcher 2
2014-11-30 17:11 - 2014-11-30 17:11 - 00000000 ____D () C:\Users\Mees\AppData\Local\The Witcher 2
2014-11-30 17:08 - 2014-11-30 17:08 - 00001790 _____ () C:\Users\Public\Desktop\The Witcher 2 - Assassins of Kings Enhanced Edition.lnk
2014-11-30 17:08 - 2014-11-30 17:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2014-11-30 17:01 - 2014-11-30 17:13 - 814969599 _____ () C:\Users\Mees\Downloads\Better Texture Environment-158-2-0.zip
2014-11-30 17:01 - 2014-11-30 17:04 - 169522065 _____ () C:\Users\Mees\Downloads\High Texture Weapons-158-1-0.rar
2014-11-30 16:40 - 2014-11-30 16:40 - 02085055 _____ () C:\Users\Mees\Downloads\QuickSave.sav
2014-11-30 16:39 - 2014-11-30 18:09 - 00000000 ____D () D:\Program Files (x86)\The Witcher 2 Enhanced Edition
2014-11-30 16:18 - 2014-11-30 16:18 - 00000000 ____D () C:\Users\Mees\Documents\Nexus Mod Manager
2014-11-30 16:18 - 2014-11-30 16:18 - 00000000 ____D () C:\Users\Mees\AppData\Local\Black_Tree_Gaming
2014-11-30 16:17 - 2014-11-30 16:17 - 00000762 _____ () C:\Users\Public\Desktop\Nexus Mod Manager.lnk
2014-11-30 16:17 - 2014-11-30 16:17 - 00000000 ____D () D:\Program Files\Nexus Mod Manager
2014-11-30 16:17 - 2014-11-30 16:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexus Mod Manager
2014-11-30 16:14 - 2014-11-30 16:15 - 04282672 _____ (Black Tree Gaming ) C:\Users\Mees\Downloads\Nexus Mod Manager-0.52.3.exe
2014-11-23 23:10 - 2014-11-23 23:10 - 00650981 _____ () C:\Users\Mees\Downloads\kaartjes.zip
2014-11-23 23:10 - 2014-11-23 23:10 - 00000000 ____D () C:\Users\Mees\Downloads\kaartjes
2014-11-23 21:42 - 2014-11-23 21:42 - 00012158 _____ () C:\Users\Mees\Downloads\ZSpawnV0.1.rar
2014-11-23 17:23 - 2014-11-23 18:46 - 00000000 ____D () C:\Users\Mees\Zomboid
2014-11-23 17:16 - 2014-11-23 17:16 - 00000968 _____ () C:\Users\Mees\Desktop\Project Zomboid Build 29.4.lnk
2014-11-23 17:15 - 2014-11-23 17:16 - 00000000 ____D () D:\Program Files\Project Zomboid Build 29.4
2014-11-23 16:06 - 2014-11-18 04:36 - 01922048 _____ (LinGon) C:\Users\Mees\Desktop\AC_UNITY+10Tr-LNG_v1.2.0_rev4.exe
2014-11-23 16:05 - 2014-11-23 16:05 - 01704650 _____ () C:\Users\Mees\Downloads\AC_UNITY+10Tr-LNG_v1.2.0_rev4.rar
2014-11-23 15:36 - 2014-12-01 23:08 - 00000000 ____D () C:\Users\Mees\AppData\Roaming\Skype
2014-11-23 15:36 - 2014-11-23 15:36 - 00002531 _____ () C:\Users\Public\Desktop\Skype.lnk
2014-11-23 15:36 - 2014-11-23 15:36 - 00000000 ____D () C:\Users\Mees\AppData\Local\Skype
2014-11-23 15:36 - 2014-11-23 15:36 - 00000000 ____D () C:\ProgramData\Skype
2014-11-23 15:36 - 2014-11-23 15:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2014-11-23 15:35 - 2014-11-23 15:35 - 01546856 _____ (Skype Technologies S.A.) C:\Users\Mees\Downloads\SkypeSetup.exe
2014-11-22 21:23 - 2014-11-22 22:57 - 00000000 ___RD () C:\Users\Mees\Downloads\Microsoft.SkypeApp_kzf8qxf38zg5c!App
2014-11-22 03:24 - 2014-11-22 03:26 - 21348712 _____ () C:\Users\Mees\Downloads\detekt (1).exe
2014-11-21 16:53 - 2014-12-06 21:07 - 00000000 ____D () C:\Users\Mees\AppData\Roaming\vlc
2014-11-21 16:52 - 2014-11-21 16:52 - 24743106 _____ () C:\Users\Mees\Downloads\vlc-2.1.5-win32.exe
2014-11-21 16:52 - 2014-11-21 16:52 - 00000799 _____ () C:\Users\Public\Desktop\VLC media player.lnk
2014-11-21 16:52 - 2014-11-21 16:52 - 00000000 ____D () D:\Program Files (x86)\VideoLAN
2014-11-21 16:52 - 2014-11-21 16:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2014-11-21 03:44 - 2014-11-21 03:44 - 00128384 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\amdhcp64.dll
2014-11-21 03:44 - 2014-11-21 03:44 - 00118096 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\amdhcp32.dll
2014-11-21 03:44 - 2014-11-21 03:44 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atimpc64.dll
2014-11-21 03:44 - 2014-11-21 03:44 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdpcom64.dll
2014-11-21 03:44 - 2014-11-21 03:44 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atimpc32.dll
2014-11-21 03:44 - 2014-11-21 03:44 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdpcom32.dll
2014-11-21 03:41 - 2014-11-21 03:41 - 00294600 _____ (Advanced Micro Devices) C:\WINDOWS\system32\Drivers\amdacpksd.sys
2014-11-21 03:40 - 2014-11-21 03:40 - 18959360 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmdag.sys
2014-11-21 03:33 - 2014-11-21 03:33 - 47899136 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\amdocl64.dll
2014-11-21 03:33 - 2014-11-21 03:33 - 00235008 _____ () C:\WINDOWS\system32\clinfo.exe
2014-11-21 03:33 - 2014-11-21 03:33 - 00098816 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\OpenVideo64.dll
2014-11-21 03:33 - 2014-11-21 03:33 - 00086528 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\OVDecode64.dll
2014-11-21 03:33 - 2014-11-21 03:33 - 00083456 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\OpenVideo.dll
2014-11-21 03:33 - 2014-11-21 03:33 - 00073216 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\OVDecode.dll
2014-11-21 03:32 - 2014-11-21 03:32 - 40987136 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\amdocl.dll
2014-11-21 03:31 - 2014-11-21 03:31 - 00442368 _____ () C:\WINDOWS\system32\amdmiracast.dll
2014-11-21 03:31 - 2014-11-21 03:31 - 00065024 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2014-11-21 03:31 - 2014-11-21 03:31 - 00058880 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2014-11-21 03:25 - 2014-11-21 03:25 - 00134656 _____ () C:\WINDOWS\system32\amdhdl64.dll
2014-11-21 03:25 - 2014-11-21 03:25 - 00123392 _____ () C:\WINDOWS\SysWOW64\amdhdl32.dll
2014-11-21 03:24 - 2014-11-21 03:24 - 28354560 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atio6axx.dll
2014-11-21 03:19 - 2014-11-21 03:19 - 00049664 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmmcl6.dll
2014-11-21 03:19 - 2014-11-21 03:19 - 00038912 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmmcl.dll
2014-11-21 03:18 - 2014-11-21 03:18 - 05837312 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdmantle64.dll
2014-11-21 03:18 - 2014-11-21 03:18 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantle64.dll
2014-11-21 03:18 - 2014-11-21 03:18 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantle32.dll
2014-11-21 03:17 - 2014-11-21 03:17 - 03437632 _____ () C:\WINDOWS\system32\atiumd6a.cap
2014-11-21 03:17 - 2014-11-21 03:17 - 00631912 _____ () C:\WINDOWS\SysWOW64\atiapfxx.blb
2014-11-21 03:17 - 2014-11-21 03:17 - 00631912 _____ () C:\WINDOWS\system32\atiapfxx.blb
2014-11-21 03:17 - 2014-11-21 03:17 - 00367104 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiapfxx.exe
2014-11-21 03:17 - 2014-11-21 03:17 - 00062464 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalrt64.dll
2014-11-21 03:17 - 2014-11-21 03:17 - 00052224 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalrt.dll
2014-11-21 03:16 - 2014-11-21 03:16 - 15716352 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticaldd64.dll
2014-11-21 03:16 - 2014-11-21 03:16 - 14302208 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticaldd.dll
2014-11-21 03:16 - 2014-11-21 03:16 - 00055808 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\system32\aticalcl64.dll
2014-11-21 03:16 - 2014-11-21 03:16 - 00049152 _____ (Advanced Micro Devices Inc.) C:\WINDOWS\SysWOW64\aticalcl.dll
2014-11-21 03:15 - 2014-11-21 03:15 - 04590592 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdmantle32.dll
2014-11-21 03:13 - 2014-11-21 03:13 - 03471376 _____ () C:\WINDOWS\SysWOW64\atiumdva.cap
2014-11-21 03:13 - 2014-11-21 03:13 - 00091648 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\mantleaxl64.dll
2014-11-21 03:13 - 2014-11-21 03:13 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\mantleaxl32.dll
2014-11-21 03:12 - 2014-11-21 03:12 - 00774656 _____ (AMD) C:\WINDOWS\system32\atieclxx.exe
2014-11-21 03:12 - 2014-11-21 03:12 - 00244736 _____ (AMD) C:\WINDOWS\system32\atiesrxx.exe
2014-11-21 03:12 - 2014-11-21 03:12 - 00190976 _____ (AMD) C:\WINDOWS\system32\atitmm64.dll
2014-11-21 03:12 - 2014-11-21 03:12 - 00031232 _____ (AMD) C:\WINDOWS\system32\atimuixx.dll
2014-11-21 03:10 - 2014-11-21 03:10 - 00843776 _____ (AMD) C:\WINDOWS\system32\coinst_14.50.dll
2014-11-21 03:09 - 2014-11-21 03:09 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\amdave64.dll
2014-11-21 03:09 - 2014-11-21 03:09 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\amdave32.dll
2014-11-21 03:09 - 2014-11-21 03:09 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atisamu64.dll
2014-11-21 03:09 - 2014-11-21 03:09 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atisamu32.dll
2014-11-21 03:09 - 2014-11-21 03:09 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6pxx.dll
2014-11-21 03:09 - 2014-11-21 03:09 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiglpxx.dll
2014-11-21 03:08 - 2014-11-21 03:08 - 00589312 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\atikmpag.sys
2014-11-21 03:08 - 2014-11-21 03:08 - 00146944 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atig6txx.dll
2014-11-21 03:08 - 2014-11-21 03:08 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\Drivers\ati2erec.dll
2014-11-20 21:36 - 2014-11-20 21:36 - 00051200 _____ () C:\WINDOWS\system32\kdbsdk64.dll
2014-11-20 21:35 - 2014-11-20 21:35 - 00038912 _____ () C:\WINDOWS\SysWOW64\kdbsdk32.dll
2014-11-20 18:46 - 2014-11-22 03:34 - 00018019 _____ () C:\Users\Mees\Downloads\detekt.log
2014-11-20 18:45 - 2014-11-20 18:46 - 27810096 _____ () C:\Users\Mees\Downloads\detekt.exe
2014-11-19 18:17 - 2014-11-19 18:18 - 04107348 _____ () C:\Users\Mees\Downloads\This War Of Mine V1.00 Trainer +1 MrAntiFun.zip
2014-11-19 14:06 - 2014-11-10 00:19 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2014-11-19 14:06 - 2014-11-10 00:19 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2014-11-19 14:06 - 2014-11-10 00:18 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2014-11-19 14:06 - 2014-11-10 00:18 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2014-11-19 00:01 - 2014-11-19 00:01 - 00000167 _____ () C:\Users\Mees\Downloads\this_war_of_mine_config.rar
2014-11-18 23:47 - 2014-11-19 00:05 - 00001115 _____ () C:\Users\Public\Desktop\This War of Mine.lnk
2014-11-18 23:47 - 2014-11-19 00:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\This War of Mine
2014-11-18 23:47 - 2014-11-19 00:02 - 00000000 ____D () D:\Program Files (x86)\This War of Mine
2014-11-18 23:47 - 2014-11-18 23:47 - 00000000 ____D () C:\Users\Mees\AppData\Roaming\11bitstudios
2014-11-18 14:45 - 2014-11-18 14:45 - 00056548 _____ () C:\WINDOWS\SysWOW64\CCCInstall_201411181445058809.log
2014-11-18 14:37 - 2014-11-18 14:38 - 286063288 _____ (AMD Inc.) C:\Users\Mees\Downloads\AMD-Catalyst-14.11.2Beta-64Bit-Win8.1-Win7-Nov18.exe
2014-11-18 14:28 - 2014-11-18 14:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2014-11-17 17:33 - 2014-11-17 17:34 - 1094731722 _____ () C:\Users\Mees\Downloads\Far.Cry.4.Update.v1.03.rar
2014-11-17 17:11 - 2014-12-13 01:15 - 00002223 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-11-17 17:11 - 2014-11-17 17:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-11-17 17:10 - 2014-11-17 17:09 - 00880784 _____ (Google Inc.) C:\Users\Mees\Desktop\ChromeSetup.exe
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2014-12-16 23:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-12-16 21:27 - 2014-11-06 06:10 - 01603453 _____ () C:\WINDOWS\WindowsUpdate.log
2014-12-16 21:09 - 2014-11-05 21:38 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3991032115-1765476521-650572198-1001
2014-12-16 20:59 - 2014-11-06 15:11 - 00000000 ____D () D:\Program Files (x86)\Steam
2014-12-16 20:58 - 2014-11-05 21:34 - 00000000 __RDO () C:\Users\Mees\OneDrive
2014-12-16 20:58 - 2014-03-18 10:54 - 00014914 _____ () C:\WINDOWS\PFRO.log
2014-12-16 20:58 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-12-16 20:42 - 2014-11-05 21:28 - 00000000 ____D () C:\Users\Mees
2014-12-16 17:27 - 2013-08-22 14:25 - 00262144 ___SH () C:\WINDOWS\system32\config\BBI
2014-12-16 15:37 - 2013-08-22 16:20 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-12-16 15:27 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-12-14 17:59 - 2014-11-05 23:43 - 00000000 ____D () C:\Users\Mees\AppData\Roaming\BitTorrent
2014-12-14 16:23 - 2014-11-05 22:23 - 00000000 ____D () C:\Users\Mees\AppData\Local\Google
2014-12-14 15:35 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-12-14 14:48 - 2014-11-06 16:38 - 00000972 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-12-13 17:12 - 2014-11-07 16:25 - 00000000 ____D () C:\Users\Mees\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-12-13 16:29 - 2014-11-05 21:54 - 00000000 ____D () C:\Users\Mees\AppData\Roaming\Raptr
2014-12-12 07:08 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sr-Latn-RS
2014-12-12 07:08 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sr-Latn-CS
2014-12-12 07:08 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions
2014-12-11 18:47 - 2014-11-07 18:31 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-12-11 18:43 - 2014-11-07 18:31 - 112710672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-12-11 16:32 - 2014-11-06 14:30 - 00000898 _____ () C:\Users\Public\Desktop\Gyazo.lnk
2014-12-11 15:39 - 2014-11-06 14:30 - 00003738 _____ () C:\WINDOWS\System32\Tasks\GyazoUpdateTaskMachine
2014-12-11 15:39 - 2014-11-06 14:30 - 00000994 _____ () C:\Users\Public\Desktop\Gyazo GIF.lnk
2014-12-11 15:39 - 2014-11-06 14:30 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo
2014-12-10 13:00 - 2013-08-22 15:46 - 00013491 _____ () C:\WINDOWS\setupact.log
2014-12-10 12:56 - 2014-11-05 21:47 - 00000000 ____D () C:\AMD
2014-12-10 12:43 - 2014-11-06 14:29 - 00000000 ____D () D:\Program Files\AMD
2014-12-10 12:15 - 2014-11-05 21:53 - 00000000 ____D () C:\ProgramData\AMD
2014-12-07 20:33 - 2014-11-16 20:53 - 00000000 ____D () D:\Program Files (x86)\Dragon Age Inquisition
2014-12-07 18:31 - 2014-11-07 19:46 - 00000000 ____D () C:\Users\Mees\Documents\My Games
2014-12-07 18:31 - 2014-11-06 17:39 - 00000000 ____D () C:\Users\Mees\AppData\Local\SKIDROW
2014-12-07 18:25 - 2014-11-06 17:33 - 00080595 _____ () C:\WINDOWS\DirectX.log
2014-12-04 20:46 - 2014-11-06 16:38 - 00000000 ____D () D:\Program Files (x86)\Malwarebytes Anti-Malware
2014-12-04 20:46 - 2014-11-06 16:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-12-01 18:24 - 2014-11-07 17:19 - 00000000 ____D () C:\Users\Mees\AppData\Local\Arma 3
2014-11-30 21:41 - 2014-11-06 17:33 - 00000000 ____D () C:\WINDOWS\SysWOW64\directx
2014-11-30 18:24 - 2014-08-26 09:10 - 00973312 _____ (GameplayCrush) C:\Users\Mees\Desktop\WindowedBorderlessGaming.exe
2014-11-30 17:11 - 2014-11-09 15:14 - 00000000 ____D () C:\Users\Mees\AppData\Roaming\Notepad++
2014-11-26 22:10 - 2014-11-07 20:23 - 00714720 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-11-26 22:10 - 2014-11-07 20:23 - 00106976 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-24 00:01 - 2014-11-08 21:02 - 00000000 ____D () C:\Users\Mees\AppData\Roaming\TS3Client
2014-11-23 17:06 - 2014-11-05 21:30 - 00000000 ____D () C:\Users\Mees\AppData\Local\Packages
2014-11-21 03:44 - 2014-09-15 23:31 - 11076784 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atidxx64.dll
2014-11-21 03:44 - 2014-09-15 23:31 - 09401480 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atidxx32.dll
2014-11-21 03:44 - 2014-09-15 23:31 - 01348928 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\aticfx64.dll
2014-11-21 03:44 - 2014-09-15 23:31 - 01127496 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\aticfx32.dll
2014-11-21 03:44 - 2014-09-15 23:31 - 00144328 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiuxp64.dll
2014-11-21 03:44 - 2014-09-15 23:31 - 00126848 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiuxpag.dll
2014-11-21 03:44 - 2014-09-15 23:31 - 00118096 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiu9p64.dll
2014-11-21 03:44 - 2014-09-15 23:31 - 00100032 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiu9pag.dll
2014-11-21 03:43 - 2014-09-15 23:31 - 08379720 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd6a.dll
2014-11-21 03:43 - 2014-09-15 23:31 - 08369408 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\system32\atiumd64.dll
2014-11-21 03:43 - 2014-09-15 23:31 - 07558816 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdva.dll
2014-11-21 03:43 - 2014-09-15 23:31 - 07077776 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiumdag.dll
2014-11-21 03:19 - 2014-09-15 23:08 - 23621632 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atioglxx.dll
2014-11-21 03:12 - 2014-09-15 23:03 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atidemgy.dll
2014-11-21 03:09 - 2014-09-15 22:59 - 01214976 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\atiadlxx.dll
2014-11-21 03:09 - 2014-09-15 22:59 - 00903168 _____ (Advanced Micro Devices, Inc.) C:\WINDOWS\SysWOW64\atiadlxy.dll
2014-11-21 03:09 - 2014-09-15 22:59 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atiglpxx.dll
2014-11-21 03:08 - 2014-09-15 22:59 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\WINDOWS\SysWOW64\atigktxx.dll
 
Some content of TEMP:
====================
C:\Users\Mees\AppData\Local\Temp\Bass.dll
C:\Users\Mees\AppData\Local\Temp\Bass.Net.dll
C:\Users\Mees\AppData\Local\Temp\CH.dll
C:\Users\Mees\AppData\Local\Temp\Copy.dll
C:\Users\Mees\AppData\Local\Temp\dotnetfx45fullsetup.exe
C:\Users\Mees\AppData\Local\Temp\raptrpatch.exe
C:\Users\Mees\AppData\Local\Temp\raptr_stub.exe
C:\Users\Mees\AppData\Local\Temp\tmpC319.exe
C:\Users\Mees\AppData\Local\Temp\utt4326.tmp.exe
C:\Users\Mees\AppData\Local\Temp\xmlUpdater.exe
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
 
 
testsigning: ==> Check for possible unsigned rootkit driver <===== ATTENTION!
 
 
LastRegBack: 2014-12-14 13:47
 
==================== End Of Log ============================

  • 0

#22
Naathim
Posted 17 December 2014 - 03:25 PM

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts
This looks quite odd.

FRST.gif Fix with Farbar Recovery Scan Tool


icon_exclaim.gif This fix was created for this user for use on that particular machine. icon_exclaim.gif
icon_exclaim.gif Running it on another one may cause damage and render the system unstable. icon_exclaim.gif


On your clean machine:

Press the WindowsKey.png + R on your keyboard at the same time. Type Notepad and click OK.
  • Copy the entire content of the codebox below and paste into the Notepad document:
    start
S3 AxtuDrv; \??\C:\WINDOWS\SysWOW64\Drivers\AxtuDrv.sys [X]
testsigning: ==> Check for possible unsigned rootkit driver <===== ATTENTION!
end
  • Click File, Save As and type fixlist.txt as the File Name.
Save it to the root of your thumbdrive.
Both files, FRST and fixlist.txt have to be in the same location or the fix will not work!

Now again on your infected machine - please re-run FRST, but this time run the Fix option.
Upon completion a fixlog.txt file should appear on your thumbdrive. Paste it here.
  • 0

#23
TheElderTrolls
Posted 18 December 2014 - 11:28 AM

TheElderTrolls

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 17-12-2014
Ran by Mees at 2014-12-18 18:24:54 Run:2
Running from F:\
Loaded Profile: Mees (Available profiles: Mees & Admin)
Boot Mode: Safe Mode (minimal)
==============================================
 
Content of fixlist:
*****************
start
S3 AxtuDrv; \??\C:\WINDOWS\SysWOW64\Drivers\AxtuDrv.sys [X]
testsigning: ==> Check for possible unsigned rootkit driver <===== ATTENTION!
end
*****************
 
AxtuDrv => Service deleted successfully.
 
An error occurred while attempting to delete the specified data element.
Element not found.
 
==== End of Fixlog ====
 
AxtuDrv is related to ASRock Xtreme Tuning Utility, just saying.
Not that that piece of software runs in my computers current state though :P
If the next question is if the issue still persists, yes it does.

  • 0

#24
Naathim
Posted 19 December 2014 - 01:02 AM

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts
I know what is that driver, but it's the only one orphaned which could cause some issues. Please run this one for me:



TDSSKiller_Kaspersky.png Scan with TDSSKiller

Please download TDSSKiller by Kaspersky and save it to your desktop.
  • Right-click on TDSSKiller_Kaspersky.png icon and select RunAsAdmin.jpg Run as Administrator to start the tool.
  • Click on Change parameters and put a checkmark beside Loaded modules. A reboot will be needed to apply the changes, allow it to do so.
  • Your machine may appear very slow and unusable after that - it's normal.
  • TDSSKiller will run automaticaly. Click on Change parameters and click OK.
  • Make sure that Verify driver digital signatures & Detect TDLFS File System are marked and click OK.
  • Click the Start Scan button and wait patiently.
If anything will be found follow this guidelines:
  • If a suspicious object is detected, the default action will be Skip, click on Continue.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    > Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    > If Cure is not available, please choose Skip instead.
  • Do not choose Delete unless instructed!
A report will be created in your root directory, (usually C:\ drive) in the form of TDSSKiller.[Version]_[Date]_[Time]_log.txt. Please include the contents of that file in your next post.
  • 0

#25
TheElderTrolls
Posted 19 December 2014 - 10:15 AM

TheElderTrolls

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts
17:01:01.0434 0x04b4  TDSS rootkit removing tool 3.0.0.42 Dec 12 2014 00:35:20
17:01:04.0012 0x04b4  ============================================================
17:01:04.0012 0x04b4  Current date / time: 2014/12/19 17:01:04.0012
17:01:04.0012 0x04b4  SystemInfo:
17:01:04.0012 0x04b4  
17:01:04.0012 0x04b4  OS Version: 6.3.9600 ServicePack: 0.0
17:01:04.0012 0x04b4  Product type: Workstation
17:01:04.0012 0x04b4  ComputerName: MADMAX
17:01:04.0012 0x04b4  UserName: Mees
17:01:04.0012 0x04b4  Windows directory: C:\WINDOWS
17:01:04.0012 0x04b4  System windows directory: C:\WINDOWS
17:01:04.0012 0x04b4  Running under WOW64
17:01:04.0012 0x04b4  Processor architecture: Intel x64
17:01:04.0012 0x04b4  Number of processors: 4
17:01:04.0012 0x04b4  Page size: 0x1000
17:01:04.0012 0x04b4  Boot type: Safe boot
17:01:04.0012 0x04b4  ============================================================
17:01:04.0059 0x04b4  KLMD registered as C:\WINDOWS\system32\drivers\31580974.sys
17:01:04.0387 0x04b4  System UUID: {996FC515-4A68-CB54-725B-B0805B6B6CA4}
17:01:05.0137 0x04b4  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:01:05.0153 0x04b4  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:01:05.0184 0x04b4  Drive \Device\Harddisk2\DR2 - Size: 0x3C8C00000 ( 15.14 Gb ), SectorSize: 0x200, Cylinders: 0x7B7, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
17:01:05.0184 0x04b4  ============================================================
17:01:05.0184 0x04b4  \Device\Harddisk0\DR0:
17:01:05.0184 0x04b4  MBR partitions:
17:01:05.0184 0x04b4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x185066F1
17:01:05.0200 0x04b4  \Device\Harddisk1\DR1:
17:01:05.0200 0x04b4  MBR partitions:
17:01:05.0200 0x04b4  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x5E9D36AC
17:01:05.0200 0x04b4  \Device\Harddisk2\DR2:
17:01:05.0200 0x04b4  MBR partitions:
17:01:05.0200 0x04b4  \Device\Harddisk2\DR2\Partition1: MBR, Type 0xC, StartLBA 0x6D0, BlocksNum 0x1E45930
17:01:05.0200 0x04b4  ============================================================
17:01:05.0231 0x04b4  C: <-> \Device\Harddisk0\DR0\Partition1
17:01:05.0247 0x04b4  D: <-> \Device\Harddisk1\DR1\Partition1
17:01:05.0247 0x04b4  ============================================================
17:01:05.0247 0x04b4  Initialize success
17:01:05.0247 0x04b4  ============================================================
17:01:12.0591 0x01a0  ============================================================
17:01:12.0591 0x01a0  Scan started
17:01:12.0591 0x01a0  Mode: Manual; SigCheck; TDLFS; 
17:01:12.0591 0x01a0  ============================================================
17:01:12.0591 0x01a0  KSN ping started
17:01:12.0653 0x01a0  KSN ping finished: false
17:01:12.0856 0x01a0  ================ Scan system memory ========================
17:01:12.0856 0x01a0  System memory - ok
17:01:12.0856 0x01a0  ================ Scan services =============================
17:01:13.0075 0x01a0  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
17:01:13.0169 0x01a0  1394ohci - detected UnsignedFile.Multi.Generic ( 1 )
17:01:13.0263 0x01a0  1394ohci ( UnsignedFile.Multi.Generic ) - warning
17:01:13.0310 0x01a0  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
17:01:13.0325 0x01a0  3ware - detected UnsignedFile.Multi.Generic ( 1 )
17:01:13.0325 0x01a0  3ware ( UnsignedFile.Multi.Generic ) - warning
17:01:13.0435 0x01a0  [ 9539F7917B4B6D92C90F0FAA6B86C605, B4C284E8EECC2E7025053A3320EFDC9F47BCA9828853AD2A805DB826CA4AC27E ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
17:01:13.0450 0x01a0  ACPI - detected UnsignedFile.Multi.Generic ( 1 )
17:01:13.0450 0x01a0  Object is SCO, delete is not allowed
17:01:13.0450 0x01a0  ACPI ( UnsignedFile.Multi.Generic ) - warning
17:01:13.0466 0x01a0  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
17:01:13.0466 0x01a0  acpiex - detected UnsignedFile.Multi.Generic ( 1 )
17:01:13.0466 0x01a0  acpiex ( UnsignedFile.Multi.Generic ) - warning
17:01:13.0482 0x01a0  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
17:01:13.0482 0x01a0  acpipagr - detected UnsignedFile.Multi.Generic ( 1 )
17:01:13.0482 0x01a0  acpipagr ( UnsignedFile.Multi.Generic ) - warning
17:01:13.0482 0x01a0  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
17:01:13.0482 0x01a0  AcpiPmi - detected UnsignedFile.Multi.Generic ( 1 )
17:01:13.0482 0x01a0  AcpiPmi ( UnsignedFile.Multi.Generic ) - warning
17:01:13.0482 0x01a0  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
17:01:13.0482 0x01a0  acpitime - detected UnsignedFile.Multi.Generic ( 1 )
17:01:13.0482 0x01a0  acpitime ( UnsignedFile.Multi.Generic ) - warning
17:01:13.0482 0x01a0  Force sending object to P2P due to detect: acpitime
17:01:13.0497 0x01a0  Object send P2P result: false
17:01:13.0544 0x01a0  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
17:01:13.0575 0x01a0  ADP80XX - detected UnsignedFile.Multi.Generic ( 1 )
17:01:13.0575 0x01a0  ADP80XX ( UnsignedFile.Multi.Generic ) - warning
17:01:13.0607 0x01a0  [ 0F17D49BE041B7EFF1D33BF1414E7AC6, F8B536B60903814DF88DAF535753288537EF0993E42AA4E734EDA8D68B24C7AB ] AeLookupSvc     C:\WINDOWS\System32\aelupsvc.dll
17:01:13.0607 0x01a0  AeLookupSvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:13.0607 0x01a0  Object is SCO, delete is not allowed
17:01:13.0607 0x01a0  AeLookupSvc ( UnsignedFile.Multi.Generic ) - warning
17:01:13.0653 0x01a0  [ 374E27295F0A9DCAA8FC96370F9BEEA5, 51C394E0C2322D7D093941A1B8766171B5D1F47DF2FE0834209492891EA7D999 ] AFD             C:\WINDOWS\system32\drivers\afd.sys
17:01:13.0669 0x01a0  AFD - detected UnsignedFile.Multi.Generic ( 1 )
17:01:13.0669 0x01a0  Object is SCO, delete is not allowed
17:01:13.0669 0x01a0  AFD ( UnsignedFile.Multi.Generic ) - warning
17:01:13.0669 0x01a0  Force sending object to P2P due to detect: AFD
17:01:13.0669 0x01a0  Object send P2P result: false
17:01:13.0685 0x01a0  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
17:01:13.0700 0x01a0  agp440 - detected UnsignedFile.Multi.Generic ( 1 )
17:01:13.0700 0x01a0  Object is SCO, delete is not allowed
17:01:13.0700 0x01a0  agp440 ( UnsignedFile.Multi.Generic ) - warning
17:01:13.0716 0x01a0  [ 8E8E34B7BA059050EED827410D0697A2, 85B6684709F24729A6497563812A90A54068AC2DD9EEA03037CB1EEF5C85AAA9 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
17:01:13.0716 0x01a0  ahcache - detected UnsignedFile.Multi.Generic ( 1 )
17:01:13.0716 0x01a0  ahcache ( UnsignedFile.Multi.Generic ) - warning
17:01:13.0732 0x01a0  [ A91D8E1E433EFB32551BCE69037E1CE7, 41DFDD5B56918D19D09DFB3E4B07460AA85647A8647ABBBB906158D8D6653290 ] ALG             C:\WINDOWS\System32\alg.exe
17:01:13.0732 0x01a0  ALG - detected UnsignedFile.Multi.Generic ( 1 )
17:01:13.0732 0x01a0  ALG ( UnsignedFile.Multi.Generic ) - warning
17:01:13.0778 0x01a0  [ 2998362D1E550F0C990D77E34415BEB6, 36BBC575DFE0CBD5BC4AF9AD8B54DCEF950E93AF48884D6523457071296514CC ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
17:01:13.0810 0x01a0  AMD External Events Utility - detected UnsignedFile.Multi.Generic ( 1 )
17:01:13.0810 0x01a0  AMD External Events Utility ( UnsignedFile.Multi.Generic ) - warning
17:01:13.0857 0x01a0  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
17:01:13.0872 0x01a0  AmdK8 - detected UnsignedFile.Multi.Generic ( 1 )
17:01:13.0872 0x01a0  Object is SCO, delete is not allowed
17:01:13.0872 0x01a0  AmdK8 ( UnsignedFile.Multi.Generic ) - warning
17:01:13.0903 0x01a0  [ F2FF8C1B41B3784EDBD5C6D5397F403C, 104873700D2BDF4812DC48200B4609F46A63E7A50594A0599100EF1438863708 ] amdkmafd        C:\WINDOWS\system32\drivers\amdkmafd.sys
17:01:13.0903 0x01a0  amdkmafd - detected UnsignedFile.Multi.Generic ( 1 )
17:01:13.0903 0x01a0  amdkmafd ( UnsignedFile.Multi.Generic ) - warning
17:01:14.0403 0x01a0  [ A87FC6E3670DB55788184FE3A3808712, 2366E7423B4EBC6E12F0C172246E4D2D3BDD702193FA6955A08180FFFCB217B9 ] amdkmdag        C:\WINDOWS\system32\DRIVERS\atikmdag.sys
17:01:14.0950 0x01a0  amdkmdag - detected UnsignedFile.Multi.Generic ( 1 )
17:01:14.0950 0x01a0  amdkmdag ( UnsignedFile.Multi.Generic ) - warning
17:01:14.0950 0x01a0  Force sending object to P2P due to detect: amdkmdag
17:01:15.0013 0x01a0  Object send P2P result: false
17:01:15.0075 0x01a0  [ 971F3B12C24BB83B48F8CCA2ED019906, E4757480DFF2678E3C7897F6E720EEFF76D452707FC87401B209FE533BFC3210 ] amdkmdap        C:\WINDOWS\system32\DRIVERS\atikmpag.sys
17:01:15.0107 0x01a0  amdkmdap - detected UnsignedFile.Multi.Generic ( 1 )
17:01:15.0107 0x01a0  amdkmdap ( UnsignedFile.Multi.Generic ) - warning
17:01:15.0154 0x01a0  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
17:01:15.0154 0x01a0  AmdPPM - detected UnsignedFile.Multi.Generic ( 1 )
17:01:15.0154 0x01a0  AmdPPM ( UnsignedFile.Multi.Generic ) - warning
17:01:15.0169 0x01a0  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
17:01:15.0169 0x01a0  amdsata - detected UnsignedFile.Multi.Generic ( 1 )
17:01:15.0169 0x01a0  amdsata ( UnsignedFile.Multi.Generic ) - warning
17:01:15.0185 0x01a0  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
17:01:15.0200 0x01a0  amdsbs - detected UnsignedFile.Multi.Generic ( 1 )
17:01:15.0200 0x01a0  amdsbs ( UnsignedFile.Multi.Generic ) - warning
17:01:15.0216 0x01a0  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
17:01:15.0216 0x01a0  amdxata - detected UnsignedFile.Multi.Generic ( 1 )
17:01:15.0216 0x01a0  amdxata ( UnsignedFile.Multi.Generic ) - warning
17:01:15.0232 0x01a0  [ 04951A9A937CBE28A2D3FEEA360B6D1F, D8AAF000BE4FE4B203DC2EB2A64F780A542E5238CE3F9952FD03277379B11529 ] AppID           C:\WINDOWS\system32\drivers\appid.sys
17:01:15.0232 0x01a0  AppID - detected UnsignedFile.Multi.Generic ( 1 )
17:01:15.0232 0x01a0  AppID ( UnsignedFile.Multi.Generic ) - warning
17:01:15.0263 0x01a0  [ C0DC3F58214A227980AEB091CFD2F973, 0C3E8453C9F65ADA3E74C38C0E3AC3E0CBFD807B827097046265B38839E151E3 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
17:01:15.0263 0x01a0  AppIDSvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:15.0263 0x01a0  AppIDSvc ( UnsignedFile.Multi.Generic ) - warning
17:01:15.0279 0x01a0  [ 034ED41F13D9C1845C1E081F05B640DB, E4E17BA0B22C464DE60A6BF68D4D035D1B838DE4F0361029DED1AE00503E135C ] Appinfo         C:\WINDOWS\System32\appinfo.dll
17:01:15.0294 0x01a0  Appinfo - detected UnsignedFile.Multi.Generic ( 1 )
17:01:15.0294 0x01a0  Object is SCO, delete is not allowed
17:01:15.0294 0x01a0  Appinfo ( UnsignedFile.Multi.Generic ) - warning
17:01:15.0294 0x01a0  Force sending object to P2P due to detect: Appinfo
17:01:15.0294 0x01a0  Object send P2P result: false
17:01:15.0310 0x01a0  [ 8176FBA685178FB0F52D46693474FA50, 69FE3692C7FE24289A479ADD74F2C782B59A099B7B07FE5ACFC4DA899E40BFDE ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
17:01:15.0310 0x01a0  AppMgmt - detected UnsignedFile.Multi.Generic ( 1 )
17:01:15.0310 0x01a0  AppMgmt ( UnsignedFile.Multi.Generic ) - warning
17:01:15.0341 0x01a0  [ CB12C47647D8BDAFAA94C0856B14128B, 5590C98095357C92563EF94800107D3611AA6ECA1A70BE463C03B279E618A6C4 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
17:01:15.0357 0x01a0  AppReadiness - detected UnsignedFile.Multi.Generic ( 1 )
17:01:15.0357 0x01a0  AppReadiness ( UnsignedFile.Multi.Generic ) - warning
17:01:15.0419 0x01a0  [ F7529BD3FFAC9C33D15F6DE3B7353B03, 8EF0A84C9687A246B60939A326E498121039E9CC617A7ABBA933EDD327F3467E ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
17:01:15.0466 0x01a0  AppXSvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:15.0466 0x01a0  AppXSvc ( UnsignedFile.Multi.Generic ) - warning
17:01:15.0497 0x01a0  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
17:01:15.0497 0x01a0  arcsas - detected UnsignedFile.Multi.Generic ( 1 )
17:01:15.0497 0x01a0  Object is SCO, delete is not allowed
17:01:15.0497 0x01a0  arcsas ( UnsignedFile.Multi.Generic ) - warning
17:01:15.0575 0x01a0  [ E536856E96A7605EBF580D62A868E5FE, 70D0F6ECB05E923C1B274605CB3320091D35D7622003FF7E4806645519C70F01 ] ASGT            C:\Windows\SysWOW64\ASGT.exe
17:01:15.0591 0x01a0  ASGT - detected UnsignedFile.Multi.Generic ( 1 )
17:01:15.0591 0x01a0  ASGT ( UnsignedFile.Multi.Generic ) - warning
17:01:15.0622 0x01a0  [ 0C3F9E39C0B10D351026D580D9FF6F86, 0A19F09FD2EF200BED07CDBC4AAF41261A0C0468F680A5AAEBCD26B371676D53 ] AsrRamDisk      C:\WINDOWS\system32\drivers\AsrRamDisk.sys
17:01:15.0622 0x01a0  AsrRamDisk - detected UnsignedFile.Multi.Generic ( 1 )
17:01:15.0622 0x01a0  AsrRamDisk ( UnsignedFile.Multi.Generic ) - warning
17:01:15.0638 0x01a0  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
17:01:15.0638 0x01a0  atapi - detected UnsignedFile.Multi.Generic ( 1 )
17:01:15.0638 0x01a0  Object is SCO, delete is not allowed
17:01:15.0638 0x01a0  atapi ( UnsignedFile.Multi.Generic ) - warning
17:01:15.0669 0x01a0  [ 8523AA8BD207F937E8C047F8713D4788, EB131C38F51DEDCE2445648CAAE7B7F04F0009EB823A77D1D08B2E9CA8EC9B7D ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdWB6.sys
17:01:15.0669 0x01a0  AtiHDAudioService - detected UnsignedFile.Multi.Generic ( 1 )
17:01:15.0669 0x01a0  AtiHDAudioService ( UnsignedFile.Multi.Generic ) - warning
17:01:15.0794 0x01a0  [ 26D973D6D9A0D133DFDA7D8C1ADC04B7, AD40E6D0F77C0E579FB87C5106BF6DE3D1A9F30EE2FBF8C9C011F377FA05F173 ] atillk64        C:\Users\Mees\AppData\Local\Temp\RarSFX0\atillk64.sys
17:01:15.0794 0x01a0  atillk64 - detected UnsignedFile.Multi.Generic ( 1 )
17:01:15.0794 0x01a0  atillk64 ( UnsignedFile.Multi.Generic ) - warning
17:01:15.0825 0x01a0  [ 7F70B1044272982AAEA7C16E83424770, A7694D38DF5A0E1040688017DB811EF0788874FE505ADD572DE4D4647073DC12 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
17:01:15.0841 0x01a0  AudioEndpointBuilder - detected UnsignedFile.Multi.Generic ( 1 )
17:01:15.0841 0x01a0  AudioEndpointBuilder ( UnsignedFile.Multi.Generic ) - warning
17:01:15.0888 0x01a0  [ C0484CA5C7F87E38909746B63C7FC868, 65159639E2300AEA886184E9D47D449350DAF69A8AA2F9DBD6BD8A474BA73177 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
17:01:15.0919 0x01a0  Audiosrv - detected UnsignedFile.Multi.Generic ( 1 )
17:01:15.0919 0x01a0  Object is SCO, delete is not allowed
17:01:15.0919 0x01a0  Audiosrv ( UnsignedFile.Multi.Generic ) - warning
17:01:15.0950 0x01a0  [ 96E8CAF20FC4B6C31CAD7816A801EB78, E4870DB8FFBDCFEE98449338D0BDBF2DD0B5FEC75514E41C11A882BE6EB16833 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
17:01:15.0950 0x01a0  AxInstSV - detected UnsignedFile.Multi.Generic ( 1 )
17:01:15.0950 0x01a0  AxInstSV ( UnsignedFile.Multi.Generic ) - warning
17:01:15.0997 0x01a0  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
17:01:16.0013 0x01a0  b06bdrv - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0013 0x01a0  b06bdrv ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0013 0x01a0  Force sending object to P2P due to detect: b06bdrv
17:01:16.0013 0x01a0  Object send P2P result: false
17:01:16.0044 0x01a0  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
17:01:16.0044 0x01a0  BasicDisplay - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0044 0x01a0  BasicDisplay ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0044 0x01a0  [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
17:01:16.0044 0x01a0  BasicRender - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0044 0x01a0  BasicRender ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0060 0x01a0  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
17:01:16.0060 0x01a0  bcmfn2 - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0060 0x01a0  bcmfn2 ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0091 0x01a0  [ E07C80468D0C599BFF01D9D4EC7AEDC3, F675F455924DEC3FF69AD816DFEB6E74C804AEC3D3BFF7515953DB9D79C9B2D0 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
17:01:16.0107 0x01a0  BDESVC - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0107 0x01a0  BDESVC ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0122 0x01a0  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
17:01:16.0122 0x01a0  Beep - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0122 0x01a0  Beep ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0122 0x01a0  Force sending object to P2P due to detect: Beep
17:01:16.0122 0x01a0  Object send P2P result: false
17:01:16.0185 0x01a0  [ 20FB137ADDE1255F15F265A7BD9579BE, 87B4D5C91EFEAD987AAC3491A4360F82824C46AFF958B6F4CAED7C12224EF159 ] BFE             C:\WINDOWS\System32\bfe.dll
17:01:16.0216 0x01a0  BFE - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0216 0x01a0  Object is SCO, delete is not allowed
17:01:16.0216 0x01a0  BFE ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0263 0x01a0  [ 15225081966C785A9192782401643FD4, E2BA0C8D044556FDD9DD7A25F7F71553DE7A2924E78F9284413C2AC46F0BF4EB ] BITS            C:\WINDOWS\System32\qmgr.dll
17:01:16.0372 0x01a0  BITS - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0372 0x01a0  BITS ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0404 0x01a0  [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
17:01:16.0404 0x01a0  bowser - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0404 0x01a0  Object is SCO, delete is not allowed
17:01:16.0404 0x01a0  bowser ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0435 0x01a0  [ E325BCD68EC0CF2E2EDD0AB7CC17C698, 4DEDEF91F6BD1CC8DBE118AC28CA6BD874449A053B9CDE9FFEB1C7B98501D938 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
17:01:16.0450 0x01a0  BrokerInfrastructure - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0450 0x01a0  BrokerInfrastructure ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0482 0x01a0  [ 041A999E4FF9A7CDBE67357751881FB8, 356C52637EA715D6FA2B65BD311C9BF1635A582023434902EC2DE4A2448961F8 ] Browser         C:\WINDOWS\System32\browser.dll
17:01:16.0482 0x01a0  Browser - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0482 0x01a0  Browser ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0497 0x01a0  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
17:01:16.0497 0x01a0  BthAvrcpTg - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0497 0x01a0  BthAvrcpTg ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0513 0x01a0  [ 746B9F94214915AECDE4B7FEA5FF9664, EA2877D49DB4B7B9CE61653D63E8776DFF1CBCCAB12C14DB1D20DA44B8F06357 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
17:01:16.0513 0x01a0  BthHFEnum - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0513 0x01a0  BthHFEnum ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0513 0x01a0  Force sending object to P2P due to detect: BthHFEnum
17:01:16.0513 0x01a0  Object send P2P result: false
17:01:16.0529 0x01a0  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
17:01:16.0529 0x01a0  bthhfhid - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0529 0x01a0  bthhfhid ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0544 0x01a0  [ 66B791F6B11DC4303DD18A224A501542, 502AE4D6FFC6B0FCED081B0E0F61F699F96F20DFEE737B53828F5DEE3BD0FCB1 ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
17:01:16.0544 0x01a0  BTHMODEM - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0544 0x01a0  Object is SCO, delete is not allowed
17:01:16.0544 0x01a0  BTHMODEM ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0544 0x01a0  Force sending object to P2P due to detect: BTHMODEM
17:01:16.0544 0x01a0  Object send P2P result: false
17:01:16.0576 0x01a0  [ E5E48FEED73D463175EAB1542495191C, 0A8182F5BA7B694AB1DD3680F1194E4A568FE40DBA4BFDFF2EA09BAD045FFB29 ] bthserv         C:\WINDOWS\system32\bthserv.dll
17:01:16.0576 0x01a0  bthserv - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0576 0x01a0  Object is SCO, delete is not allowed
17:01:16.0576 0x01a0  bthserv ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0591 0x01a0  [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
17:01:16.0607 0x01a0  cdfs - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0607 0x01a0  Object is SCO, delete is not allowed
17:01:16.0607 0x01a0  cdfs ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0638 0x01a0  [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
17:01:16.0654 0x01a0  cdrom - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0654 0x01a0  Object is SCO, delete is not allowed
17:01:16.0654 0x01a0  cdrom ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0669 0x01a0  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
17:01:16.0669 0x01a0  CertPropSvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0669 0x01a0  Object is SCO, delete is not allowed
17:01:16.0669 0x01a0  CertPropSvc ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0685 0x01a0  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
17:01:16.0685 0x01a0  circlass - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0685 0x01a0  Object is SCO, delete is not allowed
17:01:16.0685 0x01a0  circlass ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0732 0x01a0  [ 179A41249055D5F039F1B6703F3B6D2B, 886CF715D9E85DB5C9B991EBCB9B12E27AA0EEE52528E222C80CA5B5B0A7AF52 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
17:01:16.0732 0x01a0  CLFS - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0732 0x01a0  Object is SCO, delete is not allowed
17:01:16.0732 0x01a0  CLFS ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0747 0x01a0  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
17:01:16.0747 0x01a0  CmBatt - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0747 0x01a0  Object is SCO, delete is not allowed
17:01:16.0747 0x01a0  CmBatt ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0872 0x01a0  [ 2A01CA9628F36208A7D188F34B295192, 336532A03600759C8D243A0E8AAE334EB741EFE89165C1BE08339AE1EC5838B1 ] cmudaxp         C:\WINDOWS\system32\drivers\cmudaxp.sys
17:01:16.0966 0x01a0  cmudaxp - detected UnsignedFile.Multi.Generic ( 1 )
17:01:16.0966 0x01a0  cmudaxp ( UnsignedFile.Multi.Generic ) - warning
17:01:16.0997 0x01a0  [ 4E1207CE16E615B0B7A70DC889F4500E, 1778D5AC0AF5F5DD1551192F4CDBCCB9878995155CF337EBB03460A6FD5C6B78 ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
17:01:17.0013 0x01a0  CNG - detected UnsignedFile.Multi.Generic ( 1 )
17:01:17.0013 0x01a0  CNG ( UnsignedFile.Multi.Generic ) - warning
17:01:17.0013 0x01a0  Force sending object to P2P due to detect: CNG
17:01:17.0013 0x01a0  Object send P2P result: false
17:01:17.0044 0x01a0  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\WINDOWS\System32\drivers\CompositeBus.sys
17:01:17.0044 0x01a0  CompositeBus - detected UnsignedFile.Multi.Generic ( 1 )
17:01:17.0044 0x01a0  CompositeBus ( UnsignedFile.Multi.Generic ) - warning
17:01:17.0044 0x01a0  COMSysApp - ok
17:01:17.0060 0x01a0  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
17:01:17.0060 0x01a0  condrv - detected UnsignedFile.Multi.Generic ( 1 )
17:01:17.0060 0x01a0  condrv ( UnsignedFile.Multi.Generic ) - warning
17:01:17.0138 0x01a0  [ 08F934092E0429BADF88E9F91DB0F61E, 6E9091C006FFFF261DC61C8E9A45219E47C351296E5355FC4B7242F30E1DDFE3 ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
17:01:17.0247 0x01a0  cphs - detected UnsignedFile.Multi.Generic ( 1 )
17:01:17.0247 0x01a0  cphs ( UnsignedFile.Multi.Generic ) - warning
17:01:17.0247 0x01a0  Force sending object to P2P due to detect: cphs
17:01:17.0247 0x01a0  Object send P2P result: false
17:01:17.0279 0x01a0  [ 0EFE4B5884A8032617826A4D76F80969, 083D296CC623C83D36A97AEE343ADF819B17E490F931DBE4D161BD1E8C289E02 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
17:01:17.0294 0x01a0  CryptSvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:17.0294 0x01a0  CryptSvc ( UnsignedFile.Multi.Generic ) - warning
17:01:17.0341 0x01a0  [ EE2F3C0D6ADBC975D6B621EC15ACF4E2, D158C0FACA6344BCD77616EC3D23212F9FD76D7D0C834ACA51998B80162106D5 ] CSC             C:\WINDOWS\system32\drivers\csc.sys
17:01:17.0357 0x01a0  CSC - detected UnsignedFile.Multi.Generic ( 1 )
17:01:17.0357 0x01a0  Object is SCO, delete is not allowed
17:01:17.0357 0x01a0  CSC ( UnsignedFile.Multi.Generic ) - warning
17:01:17.0388 0x01a0  [ 936D9E2871CEEFF6A33695D98374367B, C30D42E870F196C4FA20AF95C7B9D9C9C5414D6DDE71268F88C3FC5BF372E61B ] CscService      C:\WINDOWS\System32\cscsvc.dll
17:01:17.0419 0x01a0  CscService - detected UnsignedFile.Multi.Generic ( 1 )
17:01:17.0419 0x01a0  Object is SCO, delete is not allowed
17:01:17.0419 0x01a0  CscService ( UnsignedFile.Multi.Generic ) - warning
17:01:17.0435 0x01a0  [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam             C:\WINDOWS\system32\drivers\dam.sys
17:01:17.0435 0x01a0  dam - detected UnsignedFile.Multi.Generic ( 1 )
17:01:17.0435 0x01a0  dam ( UnsignedFile.Multi.Generic ) - warning
17:01:17.0435 0x01a0  Force sending object to P2P due to detect: dam
17:01:17.0435 0x01a0  Object send P2P result: false
17:01:17.0482 0x01a0  [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
17:01:17.0497 0x01a0  DcomLaunch - detected UnsignedFile.Multi.Generic ( 1 )
17:01:17.0497 0x01a0  Object is SCO, delete is not allowed
17:01:17.0497 0x01a0  DcomLaunch ( UnsignedFile.Multi.Generic ) - warning
17:01:17.0497 0x01a0  Force sending object to P2P due to detect: DcomLaunch
17:01:17.0497 0x01a0  Object send P2P result: false
17:01:17.0544 0x01a0  [ D249C3A58A4FCF755EF4C94F7047E015, 68C044CE2DB93FB502F85F6E081EA164F6E6DCBA6B3EE2A5CBDA122065E522F8 ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
17:01:17.0560 0x01a0  defragsvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:17.0560 0x01a0  defragsvc ( UnsignedFile.Multi.Generic ) - warning
17:01:17.0591 0x01a0  [ 8F387C2C99EE09C6E2AC316205F86A17, EC9E8AE72A21992AA118964E17090BA4503EB051273AD18185C95172F57328CE ] DeviceAssociationService C:\WINDOWS\system32\das.dll
17:01:17.0607 0x01a0  DeviceAssociationService - detected UnsignedFile.Multi.Generic ( 1 )
17:01:17.0607 0x01a0  DeviceAssociationService ( UnsignedFile.Multi.Generic ) - warning
17:01:17.0638 0x01a0  [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
17:01:17.0654 0x01a0  DeviceInstall - detected UnsignedFile.Multi.Generic ( 1 )
17:01:17.0654 0x01a0  Object is SCO, delete is not allowed
17:01:17.0654 0x01a0  DeviceInstall ( UnsignedFile.Multi.Generic ) - warning
17:01:17.0685 0x01a0  [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
17:01:17.0685 0x01a0  Dfsc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:17.0685 0x01a0  Object is SCO, delete is not allowed
17:01:17.0685 0x01a0  Dfsc ( UnsignedFile.Multi.Generic ) - warning
17:01:17.0716 0x01a0  [ 05DE04005CE0D84D0E6AD21CAEB369C6, E6704A2A685BCFD560796D7C328F8E53DF0793DBDA590598A492D9070D109298 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
17:01:17.0716 0x01a0  Dhcp - detected UnsignedFile.Multi.Generic ( 1 )
17:01:17.0716 0x01a0  Dhcp ( UnsignedFile.Multi.Generic ) - warning
17:01:17.0763 0x01a0  [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk            C:\WINDOWS\system32\drivers\disk.sys
17:01:17.0779 0x01a0  disk - detected UnsignedFile.Multi.Generic ( 1 )
17:01:17.0779 0x01a0  Object is SCO, delete is not allowed
17:01:17.0779 0x01a0  disk ( UnsignedFile.Multi.Generic ) - warning
17:01:17.0779 0x01a0  Force sending object to P2P due to detect: disk
17:01:17.0779 0x01a0  Object send P2P result: false
17:01:17.0779 0x01a0  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
17:01:17.0779 0x01a0  dmvsc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:17.0779 0x01a0  dmvsc ( UnsignedFile.Multi.Generic ) - warning
17:01:17.0779 0x01a0  Force sending object to P2P due to detect: dmvsc
17:01:17.0779 0x01a0  Object send P2P result: false
17:01:17.0794 0x01a0  [ FE7656474448BE6A6C68E5C9BEB7CA94, 8B9F04CAA29A6EEFCA3D1E7BAFE340D5CCA8AF665474E69B1DF7E2A518B83A89 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
17:01:17.0826 0x01a0  Dnscache - detected UnsignedFile.Multi.Generic ( 1 )
17:01:17.0826 0x01a0  Object is SCO, delete is not allowed
17:01:17.0826 0x01a0  Dnscache ( UnsignedFile.Multi.Generic ) - warning
17:01:17.0857 0x01a0  [ 50288EA079BB520C2B8C8A154202D518, 8916A9180CA009D124FFDFB4CCF5FDFEF7FA2FD37CBCD49FAD4C68E051B4734D ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
17:01:17.0857 0x01a0  dot3svc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:17.0857 0x01a0  Object is SCO, delete is not allowed
17:01:17.0857 0x01a0  dot3svc ( UnsignedFile.Multi.Generic ) - warning
17:01:17.0872 0x01a0  [ 281BEE07BA97E3E98D12A822D923D0D8, 6EB482B2D4D6048D145C3738B2B6FA27A90B5EA53E9167447820F9981B004E63 ] DPS             C:\WINDOWS\system32\dps.dll
17:01:17.0872 0x01a0  DPS - detected UnsignedFile.Multi.Generic ( 1 )
17:01:17.0872 0x01a0  Object is SCO, delete is not allowed
17:01:17.0872 0x01a0  DPS ( UnsignedFile.Multi.Generic ) - warning
17:01:17.0904 0x01a0  [ DDC11A202207C0400CBE07315B8FDE5E, 3ED0CA3A714582D92001BA3BFF78BE082F4DC8021298D5A2632F3B2B0A1C09DC ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
17:01:17.0904 0x01a0  drmkaud - detected UnsignedFile.Multi.Generic ( 1 )
17:01:17.0904 0x01a0  drmkaud ( UnsignedFile.Multi.Generic ) - warning
17:01:17.0919 0x01a0  [ 5B074F14F5DD6418F46EE4CA2DEB7EA8, B8223D73C3DE123759101F7D5D45C60BD12B221F09D349575A1044CE3F43CBC5 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
17:01:17.0919 0x01a0  DsmSvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:17.0919 0x01a0  DsmSvc ( UnsignedFile.Multi.Generic ) - warning
17:01:17.0997 0x01a0  [ 313DCE665B57000B18CB26C6B6A10DFE, 6C332D4AD13A316C192321AB7E7597E66AF8E1688101FFD851E06C52128DBA52 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
17:01:18.0060 0x01a0  DXGKrnl - detected UnsignedFile.Multi.Generic ( 1 )
17:01:18.0060 0x01a0  Object is SCO, delete is not allowed
17:01:18.0060 0x01a0  DXGKrnl ( UnsignedFile.Multi.Generic ) - warning
17:01:18.0076 0x01a0  [ 6073537F250B45E1CB2A02E97F0FE1B2, 653F3F2F2019168EDF225944A88AFDBF8393B62AA076BD19980691778F3DB67D ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
17:01:18.0076 0x01a0  Eaphost - detected UnsignedFile.Multi.Generic ( 1 )
17:01:18.0076 0x01a0  Object is SCO, delete is not allowed
17:01:18.0076 0x01a0  Eaphost ( UnsignedFile.Multi.Generic ) - warning
17:01:18.0201 0x01a0  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
17:01:18.0310 0x01a0  ebdrv - detected UnsignedFile.Multi.Generic ( 1 )
17:01:18.0310 0x01a0  ebdrv ( UnsignedFile.Multi.Generic ) - warning
17:01:18.0326 0x01a0  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] EFS             C:\WINDOWS\System32\lsass.exe
17:01:18.0326 0x01a0  EFS - detected UnsignedFile.Multi.Generic ( 1 )
17:01:18.0326 0x01a0  Object is SCO, delete is not allowed
17:01:18.0326 0x01a0  EFS ( UnsignedFile.Multi.Generic ) - warning
17:01:18.0341 0x01a0  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
17:01:18.0341 0x01a0  EhStorClass - detected UnsignedFile.Multi.Generic ( 1 )
17:01:18.0341 0x01a0  EhStorClass ( UnsignedFile.Multi.Generic ) - warning
17:01:18.0341 0x01a0  Force sending object to P2P due to detect: EhStorClass
17:01:18.0341 0x01a0  Object send P2P result: false
17:01:18.0388 0x01a0  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
17:01:18.0388 0x01a0  EhStorTcgDrv - detected UnsignedFile.Multi.Generic ( 1 )
17:01:18.0388 0x01a0  EhStorTcgDrv ( UnsignedFile.Multi.Generic ) - warning
17:01:18.0404 0x01a0  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
17:01:18.0404 0x01a0  ErrDev - detected UnsignedFile.Multi.Generic ( 1 )
17:01:18.0404 0x01a0  Object is SCO, delete is not allowed
17:01:18.0404 0x01a0  ErrDev ( UnsignedFile.Multi.Generic ) - warning
17:01:18.0451 0x01a0  [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3, 5264734F0572FAEDCCB008221C9982CCB7922C4FFC358605424EA413CDCDAE99 ] EventSystem     C:\WINDOWS\system32\es.dll
17:01:18.0466 0x01a0  EventSystem - detected UnsignedFile.Multi.Generic ( 1 )
17:01:18.0466 0x01a0  EventSystem ( UnsignedFile.Multi.Generic ) - warning
17:01:18.0498 0x01a0  [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
17:01:18.0498 0x01a0  exfat - detected UnsignedFile.Multi.Generic ( 1 )
17:01:18.0498 0x01a0  Object is SCO, delete is not allowed
17:01:18.0498 0x01a0  exfat ( UnsignedFile.Multi.Generic ) - warning
17:01:18.0529 0x01a0  [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
17:01:18.0529 0x01a0  fastfat - detected UnsignedFile.Multi.Generic ( 1 )
17:01:18.0529 0x01a0  Object is SCO, delete is not allowed
17:01:18.0529 0x01a0  fastfat ( UnsignedFile.Multi.Generic ) - warning
17:01:18.0576 0x01a0  [ 2BC8532ABF2B3756B78FA1DA54147DDE, DF65EE2AB0255A2CF3221085A6BE7C37E3DB6BFEED3BCADCDD69BB1049F6DCB1 ] Fax             C:\WINDOWS\system32\fxssvc.exe
17:01:18.0607 0x01a0  Fax - detected UnsignedFile.Multi.Generic ( 1 )
17:01:18.0607 0x01a0  Object is SCO, delete is not allowed
17:01:18.0607 0x01a0  Fax ( UnsignedFile.Multi.Generic ) - warning
17:01:18.0623 0x01a0  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
17:01:18.0623 0x01a0  fdc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:18.0623 0x01a0  Object is SCO, delete is not allowed
17:01:18.0623 0x01a0  fdc ( UnsignedFile.Multi.Generic ) - warning
17:01:18.0638 0x01a0  [ DC1A78BCCCB7EE53D6FD3BD615A8E222, EE16B6853185AAE779D7135035983938009901658F76A8856AAC12EBA15BB34E ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
17:01:18.0638 0x01a0  fdPHost - detected UnsignedFile.Multi.Generic ( 1 )
17:01:18.0638 0x01a0  Object is SCO, delete is not allowed
17:01:18.0638 0x01a0  fdPHost ( UnsignedFile.Multi.Generic ) - warning
17:01:18.0638 0x01a0  Force sending object to P2P due to detect: fdPHost
17:01:18.0638 0x01a0  Object send P2P result: false
17:01:18.0654 0x01a0  [ E5AD448F2DC84B1CF387FA7F2A3D1936, BBB29C79A085C503F5EFFB5144596D5DEC48A4EB34A049A4E7B38B27F6D92E0A ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
17:01:18.0654 0x01a0  FDResPub - detected UnsignedFile.Multi.Generic ( 1 )
17:01:18.0654 0x01a0  Object is SCO, delete is not allowed
17:01:18.0654 0x01a0  FDResPub ( UnsignedFile.Multi.Generic ) - warning
17:01:18.0669 0x01a0  [ 0046E0BD031213D37123876B0D0FA61C, A4FE17D56F0BAFB70D0D421ED9D1B6E50AF8ADAA4B59328A41AEC5B4C068A3CB ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
17:01:18.0669 0x01a0  fhsvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:18.0669 0x01a0  fhsvc ( UnsignedFile.Multi.Generic ) - warning
17:01:18.0685 0x01a0  [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
17:01:18.0701 0x01a0  FileInfo - detected UnsignedFile.Multi.Generic ( 1 )
17:01:18.0701 0x01a0  Object is SCO, delete is not allowed
17:01:18.0701 0x01a0  FileInfo ( UnsignedFile.Multi.Generic ) - warning
17:01:18.0701 0x01a0  Force sending object to P2P due to detect: FileInfo
17:01:18.0701 0x01a0  Object send P2P result: false
17:01:18.0716 0x01a0  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
17:01:18.0716 0x01a0  Filetrace - detected UnsignedFile.Multi.Generic ( 1 )
17:01:18.0716 0x01a0  Object is SCO, delete is not allowed
17:01:18.0716 0x01a0  Filetrace ( UnsignedFile.Multi.Generic ) - warning
17:01:18.0716 0x01a0  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
17:01:18.0716 0x01a0  flpydisk - detected UnsignedFile.Multi.Generic ( 1 )
17:01:18.0716 0x01a0  Object is SCO, delete is not allowed
17:01:18.0716 0x01a0  flpydisk ( UnsignedFile.Multi.Generic ) - warning
17:01:18.0716 0x01a0  Force sending object to P2P due to detect: flpydisk
17:01:18.0716 0x01a0  Object send P2P result: false
17:01:18.0763 0x01a0  [ 6592D192E2823C043EDBC010E7774053, C025A0EC5517DC3BD5D6656DC0F0F19021FB3D2EE90EC6194E1BD74E638EBBDC ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
17:01:18.0779 0x01a0  FltMgr - detected UnsignedFile.Multi.Generic ( 1 )
17:01:18.0779 0x01a0  Object is SCO, delete is not allowed
17:01:18.0779 0x01a0  FltMgr ( UnsignedFile.Multi.Generic ) - warning
17:01:18.0779 0x01a0  Force sending object to P2P due to detect: FltMgr
17:01:18.0779 0x01a0  Object send P2P result: false
17:01:18.0841 0x01a0  [ 3FA6DC6B29717E32E211C1FD821F2C75, E467F3775427C93CC2B87327B0A45669631A5FC460C558F6796BA26002A8BBFC ] FontCache       C:\WINDOWS\system32\FntCache.dll
17:01:18.0904 0x01a0  FontCache - detected UnsignedFile.Multi.Generic ( 1 )
17:01:18.0904 0x01a0  FontCache ( UnsignedFile.Multi.Generic ) - warning
17:01:18.0998 0x01a0  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:01:18.0998 0x01a0  FontCache3.0.0.0 - detected UnsignedFile.Multi.Generic ( 1 )
17:01:18.0998 0x01a0  FontCache3.0.0.0 ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0029 0x01a0  [ 35005534E600E993A90B036E4E599F2B, DA56FA3776FBD3D50276CB7410E0CB6F137DD8FCA84C0F3FEF8B1FEA5F6CA592 ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
17:01:19.0029 0x01a0  FsDepends - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0029 0x01a0  FsDepends ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0060 0x01a0  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:01:19.0060 0x01a0  Fs_Rec - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0060 0x01a0  Object is SCO, delete is not allowed
17:01:19.0060 0x01a0  Fs_Rec ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0091 0x01a0  [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
17:01:19.0138 0x01a0  fvevol - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0138 0x01a0  Object is SCO, delete is not allowed
17:01:19.0138 0x01a0  fvevol ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0138 0x01a0  Force sending object to P2P due to detect: fvevol
17:01:19.0138 0x01a0  Object send P2P result: false
17:01:19.0169 0x01a0  [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\WINDOWS\System32\drivers\fxppm.sys
17:01:19.0169 0x01a0  FxPPM - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0169 0x01a0  FxPPM ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0169 0x01a0  Force sending object to P2P due to detect: FxPPM
17:01:19.0169 0x01a0  Object send P2P result: false
17:01:19.0185 0x01a0  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
17:01:19.0185 0x01a0  gagp30kx - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0185 0x01a0  Object is SCO, delete is not allowed
17:01:19.0185 0x01a0  gagp30kx ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0216 0x01a0  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
17:01:19.0216 0x01a0  gencounter - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0216 0x01a0  gencounter ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0216 0x01a0  Force sending object to P2P due to detect: gencounter
17:01:19.0216 0x01a0  Object send P2P result: false
17:01:19.0248 0x01a0  [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
17:01:19.0248 0x01a0  GPIOClx0101 - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0248 0x01a0  GPIOClx0101 ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0310 0x01a0  [ 69DB09F0263C637DA8568D404842466A, D042194266978AAD31E04DAF7018CD50754077212DC74A4D8AFF6BFEE80CDD20 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
17:01:19.0341 0x01a0  gpsvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0341 0x01a0  Object is SCO, delete is not allowed
17:01:19.0341 0x01a0  gpsvc ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0451 0x01a0  [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\WINDOWS\system32\drivers\HdAudio.sys
17:01:19.0466 0x01a0  HdAudAddService - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0466 0x01a0  HdAudAddService ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0482 0x01a0  [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
17:01:19.0482 0x01a0  HDAudBus - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0482 0x01a0  Object is SCO, delete is not allowed
17:01:19.0482 0x01a0  HDAudBus ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0513 0x01a0  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
17:01:19.0513 0x01a0  HidBatt - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0513 0x01a0  HidBatt ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0544 0x01a0  [ 1EA1B4FABB8CC348E73CA90DBA22E104, 5C18C6BD499272F216DD4626B5E8D38181AEAC9AD917FBEB614A75B70467B258 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
17:01:19.0544 0x01a0  HidBth - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0544 0x01a0  Object is SCO, delete is not allowed
17:01:19.0544 0x01a0  HidBth ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0560 0x01a0  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
17:01:19.0560 0x01a0  hidi2c - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0560 0x01a0  hidi2c ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0560 0x01a0  Force sending object to P2P due to detect: hidi2c
17:01:19.0560 0x01a0  Object send P2P result: false
17:01:19.0576 0x01a0  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
17:01:19.0576 0x01a0  HidIr - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0576 0x01a0  Object is SCO, delete is not allowed
17:01:19.0576 0x01a0  HidIr ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0607 0x01a0  [ 449A20A674AA3FAA7F0DD4E33EE2DC20, 28B9BDA306456E8640C355718DE3477537B0FAF8C37F633C709129AAB64D9873 ] hidserv         C:\WINDOWS\system32\hidserv.dll
17:01:19.0607 0x01a0  hidserv - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0607 0x01a0  Object is SCO, delete is not allowed
17:01:19.0607 0x01a0  hidserv ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0607 0x01a0  Force sending object to P2P due to detect: hidserv
17:01:19.0607 0x01a0  Object send P2P result: false
17:01:19.0623 0x01a0  [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
17:01:19.0623 0x01a0  HidUsb - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0623 0x01a0  Object is SCO, delete is not allowed
17:01:19.0623 0x01a0  HidUsb ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0654 0x01a0  [ 7BF3ADCBD021D4F4A84CF40EB49C71B5, 5758A51FD2EBE67E6DBE3A298D714D351910F9E01C428D0C1359457C9242B298 ] hkmsvc          C:\WINDOWS\system32\kmsvc.dll
17:01:19.0654 0x01a0  hkmsvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0654 0x01a0  Object is SCO, delete is not allowed
17:01:19.0654 0x01a0  hkmsvc ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0669 0x01a0  [ 6CD9C3819BE8C0A3DACC82AE5D3C4F18, 46BF4A968E506DE17CA401401D716B444CDC10A5C60EB081890DD4B886AEDF5F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
17:01:19.0669 0x01a0  HomeGroupListener - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0669 0x01a0  HomeGroupListener ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0716 0x01a0  [ 1A4DA1D6287B99033D144B436C23B656, D4D1EEB372E61512EA36A33F095E68C225B8E6C72CC57ED8BD00533F88012F40 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
17:01:19.0732 0x01a0  HomeGroupProvider - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0732 0x01a0  HomeGroupProvider ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0763 0x01a0  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
17:01:19.0763 0x01a0  HpSAMD - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0763 0x01a0  HpSAMD ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0810 0x01a0  [ 9DDCA7F18983C5410DEFF79F819DF93C, CE97B4440377BFC5CA81BB600C3BD1DD9FB3951CA1EB70735F5E2050EBB74223 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
17:01:19.0857 0x01a0  HTTP - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0857 0x01a0  Object is SCO, delete is not allowed
17:01:19.0857 0x01a0  HTTP ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0873 0x01a0  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
17:01:19.0873 0x01a0  hwpolicy - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0873 0x01a0  hwpolicy ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0873 0x01a0  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
17:01:19.0888 0x01a0  hyperkbd - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0888 0x01a0  hyperkbd ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0888 0x01a0  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
17:01:19.0888 0x01a0  HyperVideo - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0888 0x01a0  HyperVideo ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0935 0x01a0  [ 84CFC5EFA97D0C965EDE1D56F116A541, 0155EA62BF07D99D98D1C9B6559C8E3301B016A20D03DF1EF64B2FAB8C37403B ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
17:01:19.0935 0x01a0  i8042prt - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0935 0x01a0  Object is SCO, delete is not allowed
17:01:19.0935 0x01a0  i8042prt ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0935 0x01a0  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
17:01:19.0935 0x01a0  iaLPSSi_GPIO - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0935 0x01a0  iaLPSSi_GPIO ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0951 0x01a0  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
17:01:19.0951 0x01a0  iaLPSSi_I2C - detected UnsignedFile.Multi.Generic ( 1 )
17:01:19.0951 0x01a0  iaLPSSi_I2C ( UnsignedFile.Multi.Generic ) - warning
17:01:19.0951 0x01a0  Force sending object to P2P due to detect: iaLPSSi_I2C
17:01:19.0951 0x01a0  Object send P2P result: false
17:01:19.0998 0x01a0  [ CCFA835960E35F30D28A868E0B3B8722, 47D95E75685F9D40229902A92426FBCB358EA929202EAFBBF79C72873B8B9032 ] iaStor          C:\WINDOWS\system32\drivers\iaStor.sys
17:01:20.0013 0x01a0  iaStor - detected UnsignedFile.Multi.Generic ( 1 )
17:01:20.0013 0x01a0  iaStor ( UnsignedFile.Multi.Generic ) - warning
17:01:20.0045 0x01a0  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
17:01:20.0076 0x01a0  iaStorAV - detected UnsignedFile.Multi.Generic ( 1 )
17:01:20.0076 0x01a0  iaStorAV ( UnsignedFile.Multi.Generic ) - warning
17:01:20.0091 0x01a0  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
17:01:20.0123 0x01a0  iaStorV - detected UnsignedFile.Multi.Generic ( 1 )
17:01:20.0123 0x01a0  Object is SCO, delete is not allowed
17:01:20.0123 0x01a0  iaStorV ( UnsignedFile.Multi.Generic ) - warning
17:01:20.0123 0x01a0  IEEtwCollectorService - ok
17:01:20.0295 0x01a0  [ 8C44E6B688790E2AD3846C97661C54F1, CB487D167EDA3C1E30BD5FB8F98C15EB9E75A6FB793009C2F1BBCAAB4285F772 ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
17:01:20.0466 0x01a0  igfx - detected UnsignedFile.Multi.Generic ( 1 )
17:01:20.0466 0x01a0  igfx ( UnsignedFile.Multi.Generic ) - warning
17:01:20.0513 0x01a0  [ DEA76F90F9777E3427D70E380222B23B, B917BA423896A12E45623E3D494CA03317A6FC612CA433C62C897524DC3E756B ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
17:01:20.0560 0x01a0  IKEEXT - detected UnsignedFile.Multi.Generic ( 1 )
17:01:20.0560 0x01a0  Object is SCO, delete is not allowed
17:01:20.0560 0x01a0  IKEEXT ( UnsignedFile.Multi.Generic ) - warning
17:01:20.0576 0x01a0  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
17:01:20.0576 0x01a0  intelide - detected UnsignedFile.Multi.Generic ( 1 )
17:01:20.0576 0x01a0  Object is SCO, delete is not allowed
17:01:20.0576 0x01a0  intelide ( UnsignedFile.Multi.Generic ) - warning
17:01:20.0607 0x01a0  [ A770340FC02B999EF0DE6C2A6BC8437C, 214567BE706B21BEA7EC13AF6B10FBFF658000511DBBA79BAA28D1D4EFD029A7 ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
17:01:20.0607 0x01a0  intelpep - detected UnsignedFile.Multi.Generic ( 1 )
17:01:20.0607 0x01a0  intelpep ( UnsignedFile.Multi.Generic ) - warning
17:01:20.0638 0x01a0  [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
17:01:20.0638 0x01a0  intelppm - detected UnsignedFile.Multi.Generic ( 1 )
17:01:20.0638 0x01a0  Object is SCO, delete is not allowed
17:01:20.0638 0x01a0  intelppm ( UnsignedFile.Multi.Generic ) - warning
17:01:20.0685 0x01a0  [ EBBB161339CC7D5FFC0749EB6BE8A126, 7FADF69EDE37BCB73FD869A60D95E1C454EBE93A0469E34EAE676BEE672EB440 ] IOMap           C:\WINDOWS\system32\drivers\IOMap64.sys
17:01:20.0685 0x01a0  IOMap - detected UnsignedFile.Multi.Generic ( 1 )
17:01:20.0685 0x01a0  IOMap ( UnsignedFile.Multi.Generic ) - warning
17:01:20.0701 0x01a0  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:01:20.0701 0x01a0  IpFilterDriver - detected UnsignedFile.Multi.Generic ( 1 )
17:01:20.0701 0x01a0  Object is SCO, delete is not allowed
17:01:20.0701 0x01a0  IpFilterDriver ( UnsignedFile.Multi.Generic ) - warning
17:01:20.0748 0x01a0  [ ACFEE9487693C2BD573DFCA71D98E17C, A347FD476147CD3568EEE6993B46AFC05A66A4269094CA51572D0FD013FCB535 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
17:01:20.0779 0x01a0  iphlpsvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:20.0779 0x01a0  Object is SCO, delete is not allowed
17:01:20.0779 0x01a0  iphlpsvc ( UnsignedFile.Multi.Generic ) - warning
17:01:20.0795 0x01a0  [ 9C096BF5E10CA8BFA56F32522A89FAF1, 6C1151160799338DA351C7237AB049926C6C15F24F5E154BBF5929B4A96C0B8D ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
17:01:20.0795 0x01a0  IPMIDRV - detected UnsignedFile.Multi.Generic ( 1 )
17:01:20.0795 0x01a0  Object is SCO, delete is not allowed
17:01:20.0795 0x01a0  IPMIDRV ( UnsignedFile.Multi.Generic ) - warning
17:01:20.0795 0x01a0  Force sending object to P2P due to detect: IPMIDRV
17:01:20.0810 0x01a0  Object send P2P result: false
17:01:20.0826 0x01a0  [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
17:01:20.0826 0x01a0  IPNAT - detected UnsignedFile.Multi.Generic ( 1 )
17:01:20.0826 0x01a0  Object is SCO, delete is not allowed
17:01:20.0826 0x01a0  IPNAT ( UnsignedFile.Multi.Generic ) - warning
17:01:20.0826 0x01a0  Force sending object to P2P due to detect: IPNAT
17:01:20.0826 0x01a0  Object send P2P result: false
17:01:20.0841 0x01a0  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
17:01:20.0841 0x01a0  IRENUM - detected UnsignedFile.Multi.Generic ( 1 )
17:01:20.0841 0x01a0  Object is SCO, delete is not allowed
17:01:20.0841 0x01a0  IRENUM ( UnsignedFile.Multi.Generic ) - warning
17:01:20.0857 0x01a0  [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
17:01:20.0857 0x01a0  isapnp - detected UnsignedFile.Multi.Generic ( 1 )
17:01:20.0857 0x01a0  Object is SCO, delete is not allowed
17:01:20.0857 0x01a0  isapnp ( UnsignedFile.Multi.Generic ) - warning
17:01:20.0857 0x01a0  Force sending object to P2P due to detect: isapnp
17:01:20.0857 0x01a0  Object send P2P result: false
17:01:20.0935 0x01a0  [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
17:01:20.0951 0x01a0  iScsiPrt - detected UnsignedFile.Multi.Generic ( 1 )
17:01:20.0951 0x01a0  Object is SCO, delete is not allowed
17:01:20.0951 0x01a0  iScsiPrt ( UnsignedFile.Multi.Generic ) - warning
17:01:20.0982 0x01a0  [ 1ECC1A421B0AEBF9A6934451FBFD7848, 1A8DDEC42831C12760CF27FA02EDD06D5CCE25A606E2DECB7D8487B5961B11AC ] ISCT            C:\WINDOWS\System32\drivers\ISCTD64.sys
17:01:20.0982 0x01a0  ISCT - detected UnsignedFile.Multi.Generic ( 1 )
17:01:20.0982 0x01a0  ISCT ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0013 0x01a0  [ 8BE92376799B6B44D543E8D07CDCF885, 425B8BB1BAF62F735B3CB5A002E6055879F02E7207E55942BFD37F1784F5F368 ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
17:01:21.0013 0x01a0  kbdclass - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0013 0x01a0  Object is SCO, delete is not allowed
17:01:21.0013 0x01a0  kbdclass ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0013 0x01a0  [ FB6E47E569D4872ABEB506BE03A45FBA, 5C4056CADA8F67587A119D9AE2A0EFAB30387CF6298F4019FF68AC92E2F6F54B ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
17:01:21.0029 0x01a0  kbdhid - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0029 0x01a0  Object is SCO, delete is not allowed
17:01:21.0029 0x01a0  kbdhid ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0045 0x01a0  [ DB7A09BC90DF20F44F16F8B0F9ED3491, 2DF5E042284D61368A5801B2557351B2C4B1044AA6F966DF4DDCE7B453D1B9AE ] kbldfltr        C:\WINDOWS\system32\drivers\kbldfltr.sys
17:01:21.0045 0x01a0  kbldfltr - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0045 0x01a0  kbldfltr ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0045 0x01a0  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\WINDOWS\system32\DRIVERS\kdnic.sys
17:01:21.0060 0x01a0  kdnic - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0060 0x01a0  kdnic ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0060 0x01a0  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] KeyIso          C:\WINDOWS\system32\lsass.exe
17:01:21.0076 0x01a0  KeyIso - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0076 0x01a0  Object is SCO, delete is not allowed
17:01:21.0076 0x01a0  KeyIso ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0091 0x01a0  [ ADDECBCC777665BD113BED437E602AB0, B6283475A1219CE44E9F683DD3BEB8C42DA0943297E5C4699B22176AD8A6A7ED ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
17:01:21.0091 0x01a0  KSecDD - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0091 0x01a0  Object is SCO, delete is not allowed
17:01:21.0091 0x01a0  KSecDD ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0123 0x01a0  [ 6D2EE96150E35B9EA49F2B481DE0369A, AC5915219FD81D89E444F6E86D71F7C495108FC35E7BD683321FC7006161AFE1 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
17:01:21.0138 0x01a0  KSecPkg - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0138 0x01a0  KSecPkg ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0154 0x01a0  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
17:01:21.0154 0x01a0  ksthunk - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0154 0x01a0  ksthunk ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0154 0x01a0  Force sending object to P2P due to detect: ksthunk
17:01:21.0154 0x01a0  Object send P2P result: false
17:01:21.0185 0x01a0  [ 32B1A8351160F307A8C66BCB0F94A9C2, 52F1DEC2BBD4D5DDBB85ED20B99D96BBA7EB83304D76F183A11FDAFDA364E873 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
17:01:21.0201 0x01a0  KtmRm - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0201 0x01a0  Object is SCO, delete is not allowed
17:01:21.0201 0x01a0  KtmRm ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0232 0x01a0  [ 793EACA6BAE9F481C2059BCB3743EB4A, 2624905C6B6A1227BD1CAC7D4FE55A5F6543E1278DAB31EC553748472D180D1D ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
17:01:21.0248 0x01a0  LanmanServer - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0248 0x01a0  Object is SCO, delete is not allowed
17:01:21.0248 0x01a0  LanmanServer ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0295 0x01a0  [ D0D9C2ECA4D03A8F06DCD91236B90C98, E2D1144DC8040EA5FEB0602A20BA4CB920B4BC86AD5AD05FC0DF7D74DC95DC66 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
17:01:21.0326 0x01a0  LanmanWorkstation - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0326 0x01a0  Object is SCO, delete is not allowed
17:01:21.0326 0x01a0  LanmanWorkstation ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0326 0x01a0  Force sending object to P2P due to detect: LanmanWorkstation
17:01:21.0326 0x01a0  Object send P2P result: false
17:01:21.0357 0x01a0  [ 626D19F1771E1AE72208AE9A8F3082F7, 78FDB64545ED2EAE9F51C08120E21D2C3285208F6846BD8BBA08CAA839E7A0C4 ] lfsvc           C:\WINDOWS\System32\GeofenceMonitorService.dll
17:01:21.0373 0x01a0  lfsvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0373 0x01a0  lfsvc ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0420 0x01a0  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\WINDOWS\system32\DRIVERS\lltdio.sys
17:01:21.0420 0x01a0  lltdio - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0420 0x01a0  Object is SCO, delete is not allowed
17:01:21.0420 0x01a0  lltdio ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0451 0x01a0  [ 00E070FC0C673311AFD4B068D1242780, 50B0E0E625361145332C849709498FF444E46578DCAD2536E6D0289E0125580F ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
17:01:21.0466 0x01a0  lltdsvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0466 0x01a0  Object is SCO, delete is not allowed
17:01:21.0466 0x01a0  lltdsvc ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0466 0x01a0  [ D113FAD71A5E67AA94B32A0F8828D265, 08DDB4BBDB570C59926DBF5E27FCF46DCDF8B8212BB9251E97837E0504516FB3 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
17:01:21.0466 0x01a0  lmhosts - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0466 0x01a0  Object is SCO, delete is not allowed
17:01:21.0466 0x01a0  lmhosts ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0498 0x01a0  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
17:01:21.0498 0x01a0  LSI_SAS - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0498 0x01a0  Object is SCO, delete is not allowed
17:01:21.0498 0x01a0  LSI_SAS ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0529 0x01a0  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\WINDOWS\system32\drivers\lsi_sas2.sys
17:01:21.0529 0x01a0  LSI_SAS2 - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0529 0x01a0  LSI_SAS2 ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0545 0x01a0  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\WINDOWS\system32\drivers\lsi_sas3.sys
17:01:21.0545 0x01a0  LSI_SAS3 - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0545 0x01a0  LSI_SAS3 ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0560 0x01a0  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
17:01:21.0560 0x01a0  LSI_SSS - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0560 0x01a0  LSI_SSS ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0560 0x01a0  Force sending object to P2P due to detect: LSI_SSS
17:01:21.0560 0x01a0  Object send P2P result: false
17:01:21.0607 0x01a0  [ 8EBB271E4588D835784A3FF7E80076A8, A508BE95F6F5063A76F4C8726D9425BB1F00DE803EFE73A0BE145DD9AB82FF0A ] LSM             C:\WINDOWS\System32\lsm.dll
17:01:21.0623 0x01a0  LSM - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0623 0x01a0  LSM ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0638 0x01a0  [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
17:01:21.0654 0x01a0  luafv - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0654 0x01a0  Object is SCO, delete is not allowed
17:01:21.0654 0x01a0  luafv ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0670 0x01a0  [ 9D7BFFDB5FA62B600DF1FCB4919D9D79, B610B18E25366F56A785C1BECE0EC534C836FAB0DF13E0BC3AF7A626E6CD6A5F ] MBAMWebAccessControl C:\WINDOWS\system32\drivers\mwac.sys
17:01:21.0670 0x01a0  MBAMWebAccessControl - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0670 0x01a0  MBAMWebAccessControl ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0670 0x01a0  Force sending object to P2P due to detect: MBAMWebAccessControl
17:01:21.0670 0x01a0  Object send P2P result: false
17:01:21.0685 0x01a0  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
17:01:21.0701 0x01a0  megasas - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0701 0x01a0  Object is SCO, delete is not allowed
17:01:21.0701 0x01a0  megasas ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0716 0x01a0  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
17:01:21.0732 0x01a0  megasr - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0732 0x01a0  Object is SCO, delete is not allowed
17:01:21.0732 0x01a0  megasr ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0732 0x01a0  Force sending object to P2P due to detect: megasr
17:01:21.0732 0x01a0  Object send P2P result: false
17:01:21.0763 0x01a0  [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
17:01:21.0763 0x01a0  MEIx64 - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0763 0x01a0  MEIx64 ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0763 0x01a0  Force sending object to P2P due to detect: MEIx64
17:01:21.0763 0x01a0  Object send P2P result: false
17:01:21.0795 0x01a0  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] MMCSS           C:\WINDOWS\system32\mmcss.dll
17:01:21.0810 0x01a0  MMCSS - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0810 0x01a0  Object is SCO, delete is not allowed
17:01:21.0810 0x01a0  MMCSS ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0826 0x01a0  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\WINDOWS\system32\drivers\modem.sys
17:01:21.0826 0x01a0  Modem - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0826 0x01a0  Object is SCO, delete is not allowed
17:01:21.0826 0x01a0  Modem ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0842 0x01a0  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
17:01:21.0842 0x01a0  monitor - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0842 0x01a0  Object is SCO, delete is not allowed
17:01:21.0842 0x01a0  monitor ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0873 0x01a0  [ CEAC6D40FE887CE8406C2393CF97DE06, 34E76908B802764FF0D7AB3AF89BE77BD35B44787983343FAD89891891C0A045 ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
17:01:21.0873 0x01a0  mouclass - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0873 0x01a0  Object is SCO, delete is not allowed
17:01:21.0873 0x01a0  mouclass ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0873 0x01a0  [ 02D98BF804084E9A0D69D1C69B02CCA9, EC5BC5D87043DFFD035FD4DD27B3D94E03119063519E4151BCC3522B613E2D7F ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
17:01:21.0888 0x01a0  mouhid - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0888 0x01a0  Object is SCO, delete is not allowed
17:01:21.0888 0x01a0  mouhid ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0888 0x01a0  [ 515549560D481138E6E21AF7C6998E56, C7E4B38D8CCAF15B9BDA63C8C8209F6193AD220DA02E1264F1B687AACD8F409F ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
17:01:21.0888 0x01a0  mountmgr - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0888 0x01a0  Object is SCO, delete is not allowed
17:01:21.0888 0x01a0  mountmgr ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0904 0x01a0  [ F170510BE94CF45E3C6274578F6204B2, 344C3DDE1D622607CA2ABECB2C47CB0166D2D258BD94A7960C45A5ADBB640566 ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
17:01:21.0904 0x01a0  mpsdrv - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0904 0x01a0  Object is SCO, delete is not allowed
17:01:21.0904 0x01a0  mpsdrv ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0951 0x01a0  [ D186C5844393252147BE934F3871DB7A, 30160F8268B9F46E82C5CB536867E0CF280DC98074A481595072E3320200E343 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
17:01:21.0982 0x01a0  MpsSvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:21.0982 0x01a0  Object is SCO, delete is not allowed
17:01:21.0982 0x01a0  MpsSvc ( UnsignedFile.Multi.Generic ) - warning
17:01:21.0998 0x01a0  [ 1D55DADC22D21883A2F80297F5A5AE48, B79DF4AFC2A9CBC54E74233596544D6E41C8CAA0516BD57CA695D051EC780265 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
17:01:22.0013 0x01a0  MRxDAV - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0013 0x01a0  Object is SCO, delete is not allowed
17:01:22.0013 0x01a0  MRxDAV ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0045 0x01a0  [ 7A1A3F213CDB3363D179D5014272025D, 6756F5B7D9FBF6839DB1FF4E94EA45B5499D7DF925E75581C96FBBA4BE131542 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:01:22.0060 0x01a0  mrxsmb - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0060 0x01a0  Object is SCO, delete is not allowed
17:01:22.0060 0x01a0  mrxsmb ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0076 0x01a0  [ 3E28B99198B514DFEB152EACF913025E, 6C1D8353DCD5F811F39C0C3CB5DF3D2457F0D17EE80FB06196AA169E3D19E9B2 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
17:01:22.0092 0x01a0  mrxsmb10 - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0092 0x01a0  Object is SCO, delete is not allowed
17:01:22.0092 0x01a0  mrxsmb10 ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0092 0x01a0  Force sending object to P2P due to detect: mrxsmb10
17:01:22.0092 0x01a0  Object send P2P result: false
17:01:22.0107 0x01a0  [ C910E5D18958914A66F0E45689D0B40A, AD7C91DD8A60A511E580DD56BACC97F85075A539E7C5D95040A8F870A621DAF4 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
17:01:22.0107 0x01a0  mrxsmb20 - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0107 0x01a0  Object is SCO, delete is not allowed
17:01:22.0107 0x01a0  mrxsmb20 ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0138 0x01a0  [ E0927EFA25D473367C3341B9F5969779, B77A162BD3334557623674373D8EC2BE7CC0B359DF06304E467ABFFEE0530271 ] MsBridge        C:\WINDOWS\system32\DRIVERS\bridge.sys
17:01:22.0138 0x01a0  MsBridge - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0138 0x01a0  Object is SCO, delete is not allowed
17:01:22.0138 0x01a0  MsBridge ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0170 0x01a0  [ A082C17D14D0790E27D064EA4B138AE1, 9A565ED885782D9D5135C8399C11C356DBF9EBF3B8EB4B4504BD2604AD0B45E6 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
17:01:22.0185 0x01a0  MSDTC - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0185 0x01a0  Object is SCO, delete is not allowed
17:01:22.0185 0x01a0  MSDTC ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0201 0x01a0  [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
17:01:22.0217 0x01a0  Msfs - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0217 0x01a0  Object is SCO, delete is not allowed
17:01:22.0217 0x01a0  Msfs ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0217 0x01a0  Force sending object to P2P due to detect: Msfs
17:01:22.0217 0x01a0  Object send P2P result: false
17:01:22.0232 0x01a0  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
17:01:22.0232 0x01a0  msgpiowin32 - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0232 0x01a0  msgpiowin32 ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0232 0x01a0  Force sending object to P2P due to detect: msgpiowin32
17:01:22.0232 0x01a0  Object send P2P result: false
17:01:22.0248 0x01a0  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
17:01:22.0248 0x01a0  mshidkmdf - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0248 0x01a0  mshidkmdf ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0248 0x01a0  Force sending object to P2P due to detect: mshidkmdf
17:01:22.0248 0x01a0  Object send P2P result: false
17:01:22.0248 0x01a0  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
17:01:22.0263 0x01a0  mshidumdf - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0263 0x01a0  mshidumdf ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0263 0x01a0  Force sending object to P2P due to detect: mshidumdf
17:01:22.0263 0x01a0  Object send P2P result: false
17:01:22.0279 0x01a0  [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
17:01:22.0295 0x01a0  msisadrv - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0295 0x01a0  Object is SCO, delete is not allowed
17:01:22.0295 0x01a0  msisadrv ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0310 0x01a0  [ 810F8A0A0680662BB0CE44D0E2CEF90C, 5631B07911B7EF378CB1583A480A3C5715E59A5488B33A528F4D7A2F849B9113 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
17:01:22.0310 0x01a0  MSiSCSI - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0310 0x01a0  Object is SCO, delete is not allowed
17:01:22.0310 0x01a0  MSiSCSI ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0310 0x01a0  msiserver - ok
17:01:22.0326 0x01a0  [ D22AE5313F6B7EFDDD8C117B5501F4A3, 1937EEE33BF9C4485F172B10FB17AEF3F3B8978371307F49C3338D74D96A8389 ] MsKeyboardFilter C:\WINDOWS\System32\KeyboardFilterSvc.dll
17:01:22.0326 0x01a0  MsKeyboardFilter - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0326 0x01a0  MsKeyboardFilter ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0342 0x01a0  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:01:22.0342 0x01a0  MSKSSRV - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0342 0x01a0  Object is SCO, delete is not allowed
17:01:22.0342 0x01a0  MSKSSRV ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0373 0x01a0  [ 375E44168F2DFB91A68B8A3F619C5A7C, AC243E02E9A39D0B4DE9571F196941700EE6EB5E94F5B0BA8994FB551E73A7A8 ] MsLldp          C:\WINDOWS\system32\DRIVERS\mslldp.sys
17:01:22.0373 0x01a0  MsLldp - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0373 0x01a0  MsLldp ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0373 0x01a0  Force sending object to P2P due to detect: MsLldp
17:01:22.0373 0x01a0  Object send P2P result: false
17:01:22.0373 0x01a0  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:01:22.0388 0x01a0  MSPCLOCK - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0388 0x01a0  Object is SCO, delete is not allowed
17:01:22.0388 0x01a0  MSPCLOCK ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0388 0x01a0  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
17:01:22.0388 0x01a0  MSPQM - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0388 0x01a0  Object is SCO, delete is not allowed
17:01:22.0388 0x01a0  MSPQM ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0388 0x01a0  Force sending object to P2P due to detect: MSPQM
17:01:22.0388 0x01a0  Object send P2P result: false
17:01:22.0420 0x01a0  [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
17:01:22.0435 0x01a0  MsRPC - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0435 0x01a0  Object is SCO, delete is not allowed
17:01:22.0435 0x01a0  MsRPC ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0451 0x01a0  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
17:01:22.0451 0x01a0  mssmbios - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0451 0x01a0  Object is SCO, delete is not allowed
17:01:22.0451 0x01a0  mssmbios ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0451 0x01a0  Force sending object to P2P due to detect: mssmbios
17:01:22.0451 0x01a0  Object send P2P result: false
17:01:22.0467 0x01a0  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
17:01:22.0467 0x01a0  MSTEE - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0467 0x01a0  Object is SCO, delete is not allowed
17:01:22.0467 0x01a0  MSTEE ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0467 0x01a0  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
17:01:22.0467 0x01a0  MTConfig - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0467 0x01a0  MTConfig ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0498 0x01a0  [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
17:01:22.0498 0x01a0  Mup - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0498 0x01a0  Object is SCO, delete is not allowed
17:01:22.0498 0x01a0  Mup ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0513 0x01a0  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
17:01:22.0513 0x01a0  mvumis - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0513 0x01a0  mvumis ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0545 0x01a0  [ 41A45D2A75494EABF2806EA051E00376, EB2497561C8E33A4297C044604C717FF854C7F046882A9E4A400AE7679BF5467 ] napagent        C:\WINDOWS\system32\qagentRT.dll
17:01:22.0560 0x01a0  napagent - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0560 0x01a0  Object is SCO, delete is not allowed
17:01:22.0560 0x01a0  napagent ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0607 0x01a0  [ 26ACA481FAFEC59FE311D719E3027BBA, 16A24CCA95A38BDFE970580159F6ACAA13FF1B74CF2290B1B020D909F90D3347 ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
17:01:22.0623 0x01a0  NativeWifiP - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0623 0x01a0  Object is SCO, delete is not allowed
17:01:22.0623 0x01a0  NativeWifiP ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0638 0x01a0  [ 71E3C0100AA19D11373CCEB2F51A6008, 58FBF35F5FE19BEABE483C11E9996BE93D76721C8C34465350FA98B465CA3672 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
17:01:22.0654 0x01a0  NcaSvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0654 0x01a0  NcaSvc ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0670 0x01a0  [ 51DF09CAB2CAC64FEE3E371D9028ED01, 9B81604D0D0359AF8F54FED6DA7116FFD2F40407895028EAD99FF1D7CFDC2D14 ] NcbService      C:\WINDOWS\System32\ncbservice.dll
17:01:22.0670 0x01a0  NcbService - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0670 0x01a0  NcbService ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0685 0x01a0  [ 2586C4C167499210DCBF3ECFD8CCE210, D8129FEDE9918BF4FB0057CC58700D4E08457060E810B9CC25CA0F598506ADB8 ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
17:01:22.0685 0x01a0  NcdAutoSetup - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0685 0x01a0  NcdAutoSetup ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0717 0x01a0  [ E4B4BE2D7750849C07589DA0B0AABA01, BB5AA727BA018A94B5DE2C4E0B594DD2E7A2B3457885446EE568F3A1E18AB3B0 ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
17:01:22.0763 0x01a0  NDIS - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0763 0x01a0  Object is SCO, delete is not allowed
17:01:22.0763 0x01a0  NDIS ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0763 0x01a0  Force sending object to P2P due to detect: NDIS
17:01:22.0763 0x01a0  Object send P2P result: false
17:01:22.0779 0x01a0  [ C6BB12BC35D1637CA17AE16D3A4725EB, 01C1D9FA738886A195166F88207EEB6715A1DE0608978ED6C5DC738AF5C02513 ] NdisCap         C:\WINDOWS\system32\DRIVERS\ndiscap.sys
17:01:22.0779 0x01a0  NdisCap - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0779 0x01a0  NdisCap ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0810 0x01a0  [ B1AA3B19A2E596A59224F893E01A5A75, E08696CA5E087E51AC3E64D4FB8490EEADD612DDF30C9A94DD1BD1BA124B71B7 ] NdisImPlatform  C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
17:01:22.0810 0x01a0  NdisImPlatform - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0810 0x01a0  NdisImPlatform ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0826 0x01a0  [ 9423421E735BD5394351E0C47C76BB92, 763E5D06F896C0EF8AD52515464F28BA85DB7A1560E451857AC9AA68FAFCBC66 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:01:22.0826 0x01a0  NdisTapi - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0826 0x01a0  Object is SCO, delete is not allowed
17:01:22.0826 0x01a0  NdisTapi ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0842 0x01a0  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:01:22.0842 0x01a0  Ndisuio - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0842 0x01a0  Object is SCO, delete is not allowed
17:01:22.0842 0x01a0  Ndisuio ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0857 0x01a0  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
17:01:22.0857 0x01a0  NdisVirtualBus - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0857 0x01a0  NdisVirtualBus ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0857 0x01a0  Force sending object to P2P due to detect: NdisVirtualBus
17:01:22.0857 0x01a0  Object send P2P result: false
17:01:22.0873 0x01a0  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:01:22.0873 0x01a0  NdisWan - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0873 0x01a0  Object is SCO, delete is not allowed
17:01:22.0873 0x01a0  NdisWan ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0888 0x01a0  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:01:22.0888 0x01a0  NdisWanLegacy - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0888 0x01a0  Object is SCO, delete is not allowed
17:01:22.0888 0x01a0  NdisWanLegacy ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0904 0x01a0  [ A5BD69A8812FA79D1A487691DD3FB244, 67B5EDE101943E0E8B8041DB2353D20C8B9F2D253E77964761CFE8F136C0BBC7 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
17:01:22.0904 0x01a0  NDProxy - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0904 0x01a0  Object is SCO, delete is not allowed
17:01:22.0904 0x01a0  NDProxy ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0920 0x01a0  [ 5A072F0B90C29C5233D78BE33EF5ED78, B32ED76A674B1FC743361FB7BBD4C915A78B14132AB056AADD445D5995AD4F32 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
17:01:22.0920 0x01a0  Ndu - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0920 0x01a0  Ndu ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0935 0x01a0  [ A83D67D347A684F10B7D3019C8A6380C, 2B86832967981C8C786BF24C1CF8E13E01745ACE3333CF5C821DD93D623B96E4 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
17:01:22.0951 0x01a0  NetBIOS - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0951 0x01a0  Object is SCO, delete is not allowed
17:01:22.0951 0x01a0  NetBIOS ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0967 0x01a0  [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
17:01:22.0982 0x01a0  NetBT - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0982 0x01a0  Object is SCO, delete is not allowed
17:01:22.0982 0x01a0  NetBT ( UnsignedFile.Multi.Generic ) - warning
17:01:22.0998 0x01a0  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] Netlogon        C:\WINDOWS\system32\lsass.exe
17:01:22.0998 0x01a0  Netlogon - detected UnsignedFile.Multi.Generic ( 1 )
17:01:22.0998 0x01a0  Object is SCO, delete is not allowed
17:01:22.0998 0x01a0  Netlogon ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0013 0x01a0  [ B7AD851A21FEBA3BA214972627614207, 29605320CCC3DAAD062CAECF0009DACBC2F6D28ED4E8AF7CE76132129F5572A0 ] Netman          C:\WINDOWS\System32\netman.dll
17:01:23.0029 0x01a0  Netman - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0029 0x01a0  Netman ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0060 0x01a0  [ F0F0A372C2EF6358399C4936F91B6131, CE596C71EB4D1A5E104D3148F2D0D8789882C59FD198DCF33CCAC7A08B50E4EE ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
17:01:23.0076 0x01a0  netprofm - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0076 0x01a0  netprofm ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0076 0x01a0  Force sending object to P2P due to detect: netprofm
17:01:23.0076 0x01a0  Object send P2P result: false
17:01:23.0123 0x01a0  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:01:23.0138 0x01a0  NetTcpPortSharing - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0138 0x01a0  NetTcpPortSharing ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0170 0x01a0  [ 70414DB660BFBB7BD58FCE8EA4364E1B, 6DFB3897CD55E22BA1EDF0AE672F4D7A6A1F512F8A0A26AF106765E6B1CF65AC ] netvsc          C:\WINDOWS\system32\DRIVERS\netvsc63.sys
17:01:23.0170 0x01a0  netvsc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0170 0x01a0  netvsc ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0201 0x01a0  [ 3A280F3B3C7A46E29C404ACD46ECBF5E, 81C3367A2A212DBCC65B8A0166FD092E3205AB31A146B4B737061335CEC51F9D ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
17:01:23.0217 0x01a0  NlaSvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0217 0x01a0  Object is SCO, delete is not allowed
17:01:23.0217 0x01a0  NlaSvc ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0217 0x01a0  [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
17:01:23.0232 0x01a0  Npfs - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0232 0x01a0  Object is SCO, delete is not allowed
17:01:23.0232 0x01a0  Npfs ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0232 0x01a0  Force sending object to P2P due to detect: Npfs
17:01:23.0232 0x01a0  Object send P2P result: false
17:01:23.0263 0x01a0  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
17:01:23.0263 0x01a0  npsvctrig - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0263 0x01a0  npsvctrig ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0279 0x01a0  [ 6E2271ED0C3E95B8E29F3752B91B9E84, 44026AD9757EA82967D7F7578455802FAD7FE0057EAC088E0AE207C15F594B86 ] nsi             C:\WINDOWS\system32\nsisvc.dll
17:01:23.0295 0x01a0  nsi - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0295 0x01a0  Object is SCO, delete is not allowed
17:01:23.0295 0x01a0  nsi ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0295 0x01a0  [ E490B459978CB87779E84C761D22B827, 1E5CA38626E41618E4CA16DD0C70EB2FA86E986F0CF21A749BDE2A17015DEEC6 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
17:01:23.0295 0x01a0  nsiproxy - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0295 0x01a0  Object is SCO, delete is not allowed
17:01:23.0295 0x01a0  nsiproxy ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0310 0x01a0  Force sending object to P2P due to detect: nsiproxy
17:01:23.0310 0x01a0  Object send P2P result: false
17:01:23.0388 0x01a0  [ 038C77D577900EE39410662478BB0D50, A33AAFD5750245C17A47EC71F3C6EAD2E0925CAD34C65AB3E6CEE44756C668E6 ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
17:01:23.0451 0x01a0  Ntfs - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0451 0x01a0  Object is SCO, delete is not allowed
17:01:23.0451 0x01a0  Ntfs ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0451 0x01a0  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\WINDOWS\system32\drivers\Null.sys
17:01:23.0467 0x01a0  Null - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0467 0x01a0  Object is SCO, delete is not allowed
17:01:23.0467 0x01a0  Null ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0467 0x01a0  Force sending object to P2P due to detect: Null
17:01:23.0467 0x01a0  Object send P2P result: false
17:01:23.0482 0x01a0  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
17:01:23.0498 0x01a0  nvraid - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0498 0x01a0  Object is SCO, delete is not allowed
17:01:23.0498 0x01a0  nvraid ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0498 0x01a0  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
17:01:23.0514 0x01a0  nvstor - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0514 0x01a0  Object is SCO, delete is not allowed
17:01:23.0514 0x01a0  nvstor ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0529 0x01a0  [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
17:01:23.0529 0x01a0  nv_agp - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0529 0x01a0  Object is SCO, delete is not allowed
17:01:23.0529 0x01a0  nv_agp ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0576 0x01a0  [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
17:01:23.0576 0x01a0  p2pimsvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0576 0x01a0  p2pimsvc ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0576 0x01a0  Force sending object to P2P due to detect: p2pimsvc
17:01:23.0592 0x01a0  Object send P2P result: false
17:01:23.0607 0x01a0  [ 2A57A937BC5B1B2D6AFE6A8C5925F50B, 00D84EFED5A7129AAD86945940030474795905C32D65CBD5B1A3EBADCED8F873 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
17:01:23.0623 0x01a0  p2psvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0623 0x01a0  Object is SCO, delete is not allowed
17:01:23.0623 0x01a0  p2psvc ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0654 0x01a0  [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
17:01:23.0654 0x01a0  Parport - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0654 0x01a0  Object is SCO, delete is not allowed
17:01:23.0654 0x01a0  Parport ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0685 0x01a0  [ EF0C1749C9A8CEE9A457473D433CC00F, A5FDAB5AD47471640D697C6CFBA6C67730878ABBA47D394EAA47C9733EDCE1F3 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
17:01:23.0685 0x01a0  partmgr - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0685 0x01a0  Object is SCO, delete is not allowed
17:01:23.0685 0x01a0  partmgr ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0701 0x01a0  [ 9A5309EF92F39346CFD5A4C2C3D1BFAD, 5908E0C9562F9CB24784491BD9AE7983A33A6BDF81AFA0A08045518A0C9BB2B1 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
17:01:23.0717 0x01a0  PcaSvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0717 0x01a0  Object is SCO, delete is not allowed
17:01:23.0717 0x01a0  PcaSvc ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0779 0x01a0  [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci             C:\WINDOWS\system32\drivers\pci.sys
17:01:23.0795 0x01a0  pci - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0795 0x01a0  Object is SCO, delete is not allowed
17:01:23.0795 0x01a0  pci ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0810 0x01a0  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
17:01:23.0810 0x01a0  pciide - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0810 0x01a0  Object is SCO, delete is not allowed
17:01:23.0810 0x01a0  pciide ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0857 0x01a0  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
17:01:23.0857 0x01a0  pcmcia - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0857 0x01a0  Object is SCO, delete is not allowed
17:01:23.0857 0x01a0  pcmcia ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0873 0x01a0  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
17:01:23.0873 0x01a0  pcw - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0873 0x01a0  pcw ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0904 0x01a0  [ 24A8DFC07E4BAF29AEA26E383D4CC886, 1B903FE52CD816662D37A8113930B4B7019B6996D49F1982D8F42933A3525A67 ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
17:01:23.0904 0x01a0  pdc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0904 0x01a0  pdc ( UnsignedFile.Multi.Generic ) - warning
17:01:23.0935 0x01a0  [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
17:01:23.0967 0x01a0  PEAUTH - detected UnsignedFile.Multi.Generic ( 1 )
17:01:23.0967 0x01a0  Object is SCO, delete is not allowed
17:01:23.0967 0x01a0  PEAUTH ( UnsignedFile.Multi.Generic ) - warning
17:01:24.0060 0x01a0  [ 084DE525DFE82AE7453DD527390FA110, 8216AE63AE740D97204CDED6543B66FC1FB55DB86D42FBA0EC629361C40F9EC0 ] PeerDistSvc     C:\WINDOWS\system32\peerdistsvc.dll
17:01:24.0154 0x01a0  PeerDistSvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:24.0154 0x01a0  PeerDistSvc ( UnsignedFile.Multi.Generic ) - warning
17:01:24.0232 0x01a0  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
17:01:24.0310 0x01a0  PerfHost - detected UnsignedFile.Multi.Generic ( 1 )
17:01:24.0310 0x01a0  PerfHost ( UnsignedFile.Multi.Generic ) - warning
17:01:24.0310 0x01a0  Force sending object to P2P due to detect: PerfHost
17:01:24.0310 0x01a0  Object send P2P result: false
17:01:24.0373 0x01a0  [ 928061178CD9856CA6B67FFFCE6BA766, 71DE3C7CA7F83EAAA550CD8A68FB67DE042B0AE51BFACB1ECB8852D502E11F50 ] pla             C:\WINDOWS\system32\pla.dll
17:01:24.0420 0x01a0  pla - detected UnsignedFile.Multi.Generic ( 1 )
17:01:24.0420 0x01a0  Object is SCO, delete is not allowed
17:01:24.0420 0x01a0  pla ( UnsignedFile.Multi.Generic ) - warning
17:01:24.0451 0x01a0  [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
17:01:24.0451 0x01a0  PlugPlay - detected UnsignedFile.Multi.Generic ( 1 )
17:01:24.0451 0x01a0  Object is SCO, delete is not allowed
17:01:24.0451 0x01a0  PlugPlay ( UnsignedFile.Multi.Generic ) - warning
17:01:24.0451 0x01a0  PnkBstrA - ok
17:01:24.0482 0x01a0  [ 045EB4F260606A03BE340D09DEAF3BA4, 6F34B8D414F7F69F4388F2F8A86E0F3AD179E423126990AF3E1EC4DCCB8E7693 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
17:01:24.0482 0x01a0  PNRPAutoReg - detected UnsignedFile.Multi.Generic ( 1 )
17:01:24.0482 0x01a0  PNRPAutoReg ( UnsignedFile.Multi.Generic ) - warning
17:01:24.0514 0x01a0  [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
17:01:24.0514 0x01a0  PNRPsvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:24.0514 0x01a0  PNRPsvc ( UnsignedFile.Multi.Generic ) - warning
17:01:24.0545 0x01a0  [ C16097D77A232A288D65F299E2E01105, 5CE4B44B06FD26569C0F92FF1D3991D0128D8444AE7BC9EBEF5A33811D721BE8 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
17:01:24.0576 0x01a0  PolicyAgent - detected UnsignedFile.Multi.Generic ( 1 )
17:01:24.0576 0x01a0  Object is SCO, delete is not allowed
17:01:24.0576 0x01a0  PolicyAgent ( UnsignedFile.Multi.Generic ) - warning
17:01:24.0592 0x01a0  [ 00E08B30E7F7C13ECE2CDF4F46A77311, 1807C0A64C1794E572C86730816C01DCF4D8F773ADE9CAEA3AC0658F7BD71A4E ] Power           C:\WINDOWS\system32\umpo.dll
17:01:24.0607 0x01a0  Power - detected UnsignedFile.Multi.Generic ( 1 )
17:01:24.0607 0x01a0  Power ( UnsignedFile.Multi.Generic ) - warning
17:01:24.0732 0x01a0  [ 3C96A45CA3403A276B0F045C448EC27B, C0011DB8C5A85817CAF815CC0095EE2C1CDD5964DCD8EAF4C35A2495D6A873CC ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
17:01:24.0857 0x01a0  PrintNotify - detected UnsignedFile.Multi.Generic ( 1 )
17:01:24.0857 0x01a0  PrintNotify ( UnsignedFile.Multi.Generic ) - warning
17:01:24.0889 0x01a0  [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
17:01:24.0904 0x01a0  Processor - detected UnsignedFile.Multi.Generic ( 1 )
17:01:24.0904 0x01a0  Object is SCO, delete is not allowed
17:01:24.0904 0x01a0  Processor ( UnsignedFile.Multi.Generic ) - warning
17:01:24.0904 0x01a0  Force sending object to P2P due to detect: Processor
17:01:24.0904 0x01a0  Object send P2P result: false
17:01:24.0951 0x01a0  [ EF1F8B57323E5D3FC6A0A25F98F90DBC, F50E81151604DCD59BB647FD6767C1631AE48B5FCA6D3423C4E32535C94D6369 ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
17:01:24.0951 0x01a0  ProfSvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:24.0951 0x01a0  Object is SCO, delete is not allowed
17:01:24.0951 0x01a0  ProfSvc ( UnsignedFile.Multi.Generic ) - warning
17:01:24.0967 0x01a0  [ 8528BB05E4D4E25945F78B00B2555FB7, FF8E0D4580F93CD348080967F52FE6C2C68B56DAEACAE2EAEF04E19412A953AE ] Psched          C:\WINDOWS\system32\DRIVERS\pacer.sys
17:01:24.0967 0x01a0  Psched - detected UnsignedFile.Multi.Generic ( 1 )
17:01:24.0967 0x01a0  Object is SCO, delete is not allowed
17:01:24.0967 0x01a0  Psched ( UnsignedFile.Multi.Generic ) - warning
17:01:24.0967 0x01a0  Force sending object to P2P due to detect: Psched
17:01:24.0967 0x01a0  Object send P2P result: false
17:01:25.0014 0x01a0  [ AF90BB44C99D6820BE52C9BBAA523283, 9772D9CC1666959EC8EE4ED740A5179473CE4F38762109F1123DD68010D20EA1 ] QWAVE           C:\WINDOWS\system32\qwave.dll
17:01:25.0029 0x01a0  QWAVE - detected UnsignedFile.Multi.Generic ( 1 )
17:01:25.0029 0x01a0  Object is SCO, delete is not allowed
17:01:25.0029 0x01a0  QWAVE ( UnsignedFile.Multi.Generic ) - warning
17:01:25.0029 0x01a0  Force sending object to P2P due to detect: QWAVE
17:01:25.0029 0x01a0  Object send P2P result: false
17:01:25.0029 0x01a0  [ 3FB466684609A4329858CF2EBD62E0FD, CFC8FBAB1436948F9D34CE6A2D6DE2F86F3E93E50B86851CED979C8CCE609798 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
17:01:25.0029 0x01a0  QWAVEdrv - detected UnsignedFile.Multi.Generic ( 1 )
17:01:25.0029 0x01a0  Object is SCO, delete is not allowed
17:01:25.0029 0x01a0  QWAVEdrv ( UnsignedFile.Multi.Generic ) - warning
17:01:25.0529 0x01a0  [ 16327C2B25A82ABD16F92DD72B26489D, F37F76222993938322FE3BD5494AA3CC9D4678F1E34FE5E0580515AA144048AF ] RadeonPro Support Service D:\Program Files (x86)\RadeonPro\RadeonProSupport.exe
17:01:25.0529 0x01a0  RadeonPro Support Service - detected UnsignedFile.Multi.Generic ( 1 )
17:01:25.0529 0x01a0  RadeonPro Support Service ( UnsignedFile.Multi.Generic ) - warning
17:01:25.0529 0x01a0  Force sending object to P2P due to detect: RadeonPro Support Service
17:01:25.0529 0x01a0  Object send P2P result: false
17:01:25.0529 0x01a0  [ 2C56F0EE27E4EF70CA4B4983D3638905, AFFDD686886CE982424B644D9168D61C6F86A5244FF97BC644DF75B321E415E5 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:01:25.0545 0x01a0  RasAcd - detected UnsignedFile.Multi.Generic ( 1 )
17:01:25.0545 0x01a0  Object is SCO, delete is not allowed
17:01:25.0545 0x01a0  RasAcd ( UnsignedFile.Multi.Generic ) - warning
17:01:25.0545 0x01a0  [ 5F061AC45266841A2860C1858ED863B8, 9E0D52BAC8A50225C32D0397C35350601B996443E2481C808CC59D3B0763FEF0 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
17:01:25.0561 0x01a0  RasAuto - detected UnsignedFile.Multi.Generic ( 1 )
17:01:25.0561 0x01a0  Object is SCO, delete is not allowed
17:01:25.0561 0x01a0  RasAuto ( UnsignedFile.Multi.Generic ) - warning
17:01:25.0576 0x01a0  [ 5C7B86EE33505E36026AFAAB62DA6364, 903BB1A355AC746BF09C2A7C87B068168648DB79DEF39AB1DC710B6A7A5F6556 ] RasMan          C:\WINDOWS\System32\rasmans.dll
17:01:25.0592 0x01a0  RasMan - detected UnsignedFile.Multi.Generic ( 1 )
17:01:25.0592 0x01a0  Object is SCO, delete is not allowed
17:01:25.0592 0x01a0  RasMan ( UnsignedFile.Multi.Generic ) - warning
17:01:25.0607 0x01a0  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:01:25.0607 0x01a0  RasPppoe - detected UnsignedFile.Multi.Generic ( 1 )
17:01:25.0607 0x01a0  Object is SCO, delete is not allowed
17:01:25.0607 0x01a0  RasPppoe ( UnsignedFile.Multi.Generic ) - warning
17:01:25.0639 0x01a0  [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:01:25.0670 0x01a0  rdbss - detected UnsignedFile.Multi.Generic ( 1 )
17:01:25.0670 0x01a0  Object is SCO, delete is not allowed
17:01:25.0670 0x01a0  rdbss ( UnsignedFile.Multi.Generic ) - warning
17:01:25.0670 0x01a0  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
17:01:25.0670 0x01a0  rdpbus - detected UnsignedFile.Multi.Generic ( 1 )
17:01:25.0670 0x01a0  rdpbus ( UnsignedFile.Multi.Generic ) - warning
17:01:25.0670 0x01a0  Force sending object to P2P due to detect: rdpbus
17:01:25.0670 0x01a0  Object send P2P result: false
17:01:25.0701 0x01a0  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
17:01:25.0701 0x01a0  RDPDR - detected UnsignedFile.Multi.Generic ( 1 )
17:01:25.0701 0x01a0  Object is SCO, delete is not allowed
17:01:25.0701 0x01a0  RDPDR ( UnsignedFile.Multi.Generic ) - warning
17:01:25.0732 0x01a0  [ 9F08A6608F98B5407E7DDBCF306573EF, 92812F97CFDB2EC128BC48143DE215B7D012B15D3FB4D2199222AD8C31DA5016 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
17:01:25.0732 0x01a0  RdpVideoMiniport - detected UnsignedFile.Multi.Generic ( 1 )
17:01:25.0732 0x01a0  RdpVideoMiniport ( UnsignedFile.Multi.Generic ) - warning
17:01:25.0748 0x01a0  [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
17:01:25.0764 0x01a0  rdyboost - detected UnsignedFile.Multi.Generic ( 1 )
17:01:25.0764 0x01a0  rdyboost ( UnsignedFile.Multi.Generic ) - warning
17:01:25.0795 0x01a0  [ E515A287C8FAE901EB8FB42F168E14F2, 9AE8D608587713FD18BB728BADD402C86FFF06A67359B22ED9431705522BC310 ] ReFS            C:\WINDOWS\system32\drivers\ReFS.sys
17:01:25.0826 0x01a0  ReFS - detected UnsignedFile.Multi.Generic ( 1 )
17:01:25.0826 0x01a0  ReFS ( UnsignedFile.Multi.Generic ) - warning
17:01:25.0857 0x01a0  [ BFFB40FBE6D2C3469F8D06EE5E4934AB, 5B6763F973A740DCD53CEA75156926457BED8B075965033C484877DDA8B97F39 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
17:01:25.0857 0x01a0  RemoteAccess - detected UnsignedFile.Multi.Generic ( 1 )
17:01:25.0857 0x01a0  Object is SCO, delete is not allowed
17:01:25.0857 0x01a0  RemoteAccess ( UnsignedFile.Multi.Generic ) - warning
17:01:25.0889 0x01a0  [ 4DCCABE03D06955ED61BABBD8EF9F30F, 531CD60315AAF283B73E0F6CF77D4DE093B809E73C44D2AC43B7247500B3485E ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
17:01:25.0889 0x01a0  RemoteRegistry - detected UnsignedFile.Multi.Generic ( 1 )
17:01:25.0889 0x01a0  RemoteRegistry ( UnsignedFile.Multi.Generic ) - warning
17:01:25.0920 0x01a0  [ D894CBD7DA753C881EE8D5E33B583225, DA4472A85F10A3DF8CE969F731E67FE7C75EE6095908AB8AC2C44851DC5A3F8B ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
17:01:25.0920 0x01a0  RpcEptMapper - detected UnsignedFile.Multi.Generic ( 1 )
17:01:25.0920 0x01a0  RpcEptMapper ( UnsignedFile.Multi.Generic ) - warning
17:01:25.0951 0x01a0  [ 5CAE8F47B31D5CFC322B5B898C19E0FE, FDB5F0B6EA36403E031D9147AB0519011FAAD3AC8190DE5B1F17FB5472D79D47 ] RpcLocator      C:\WINDOWS\system32\locator.exe
17:01:25.0951 0x01a0  RpcLocator - detected UnsignedFile.Multi.Generic ( 1 )
17:01:25.0951 0x01a0  RpcLocator ( UnsignedFile.Multi.Generic ) - warning
17:01:25.0998 0x01a0  [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
17:01:26.0014 0x01a0  RpcSs - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0014 0x01a0  Object is SCO, delete is not allowed
17:01:26.0014 0x01a0  RpcSs ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0029 0x01a0  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\WINDOWS\system32\DRIVERS\rspndr.sys
17:01:26.0029 0x01a0  rspndr - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0029 0x01a0  Object is SCO, delete is not allowed
17:01:26.0029 0x01a0  rspndr ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0076 0x01a0  [ 19764658C1468C2C0CEF133D28414A6B, 87AD4056F6C67052433A366B200B75613148B69B9B9D502AD926A7F7F037B8DE ] RTL8168         C:\WINDOWS\system32\DRIVERS\Rt630x64.sys
17:01:26.0107 0x01a0  RTL8168 - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0107 0x01a0  RTL8168 ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0123 0x01a0  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
17:01:26.0123 0x01a0  s3cap - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0123 0x01a0  s3cap ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0154 0x01a0  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] SamSs           C:\WINDOWS\system32\lsass.exe
17:01:26.0154 0x01a0  SamSs - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0154 0x01a0  Object is SCO, delete is not allowed
17:01:26.0154 0x01a0  SamSs ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0186 0x01a0  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
17:01:26.0186 0x01a0  sbp2port - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0186 0x01a0  Object is SCO, delete is not allowed
17:01:26.0186 0x01a0  sbp2port ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0217 0x01a0  [ 47C497FA4DDEA908633CAA60CEBE6805, 4DF5742D4C99D3F7B6A5671AEDB1E5E47D3399D36B28BA19C105FA604D8D5A1C ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
17:01:26.0232 0x01a0  SCardSvr - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0232 0x01a0  Object is SCO, delete is not allowed
17:01:26.0232 0x01a0  SCardSvr ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0232 0x01a0  [ E76C4E98302AE39CC6FA5D20FC8B5438, B6B6B59CF427515087689285797F4A5763103440EBE5D87A61FA74F80F895BD0 ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
17:01:26.0232 0x01a0  ScDeviceEnum - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0232 0x01a0  ScDeviceEnum ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0232 0x01a0  Force sending object to P2P due to detect: ScDeviceEnum
17:01:26.0232 0x01a0  Object send P2P result: false
17:01:26.0248 0x01a0  [ ABD0237B15DBD2B4695F4B7D734A58F7, D6831921F0CD3E03CBF1CA3ED5824EE0C75127842D12D4E897E74EC72B0792EB ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
17:01:26.0248 0x01a0  scfilter - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0248 0x01a0  scfilter ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0311 0x01a0  [ D3AE5DB16EAF913860EC28654CE00E6B, AD76B6044F7247C6E86F6DCB7CFD6B25BCA2B9F09A97A419F043A999E66726A2 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
17:01:26.0357 0x01a0  Schedule - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0357 0x01a0  Schedule ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0389 0x01a0  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
17:01:26.0389 0x01a0  SCPolicySvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0389 0x01a0  Object is SCO, delete is not allowed
17:01:26.0389 0x01a0  SCPolicySvc ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0451 0x01a0  [ 7B7C482CF48E6EE33664340D1A78E6FE, CE5077C4B0372F4F9F02B0B37AE58C0DAEFCA9D242065731A23F072506430575 ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
17:01:26.0467 0x01a0  sdbus - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0467 0x01a0  sdbus ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0498 0x01a0  [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
17:01:26.0498 0x01a0  sdstor - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0498 0x01a0  sdstor ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0514 0x01a0  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\WINDOWS\system32\drivers\secdrv.sys
17:01:26.0514 0x01a0  secdrv - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0529 0x01a0  secdrv ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0561 0x01a0  [ C49009F897BA4F2F4F31043663AA1485, 48C8BE1E3A4F150662AD012AF4E0357ABA792AD1147AB90EFF6CB2630E2501B6 ] seclogon        C:\WINDOWS\system32\seclogon.dll
17:01:26.0561 0x01a0  seclogon - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0561 0x01a0  Object is SCO, delete is not allowed
17:01:26.0561 0x01a0  seclogon ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0561 0x01a0  Force sending object to P2P due to detect: seclogon
17:01:26.0561 0x01a0  Object send P2P result: false
17:01:26.0576 0x01a0  [ A88882E64BDC1D8E8D6E727B71CCCC53, 12D2235F54D0CEEED8AA268C17CDE44020269F4FEFC70CE957DBBF99AF7F553D ] SENS            C:\WINDOWS\System32\sens.dll
17:01:26.0576 0x01a0  SENS - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0576 0x01a0  Object is SCO, delete is not allowed
17:01:26.0576 0x01a0  SENS ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0592 0x01a0  [ E66A7C8CE7ED22DED6DF1CA479FB4790, ADEB076F131E7A8C3AD96022B09BB33EB9AB26C9C831503B8C6960AA763B8975 ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
17:01:26.0592 0x01a0  SensrSvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0592 0x01a0  SensrSvc ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0623 0x01a0  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
17:01:26.0623 0x01a0  SerCx - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0623 0x01a0  SerCx ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0639 0x01a0  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
17:01:26.0639 0x01a0  SerCx2 - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0639 0x01a0  SerCx2 ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0654 0x01a0  [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
17:01:26.0654 0x01a0  Serenum - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0654 0x01a0  Object is SCO, delete is not allowed
17:01:26.0654 0x01a0  Serenum ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0701 0x01a0  [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial          C:\WINDOWS\System32\drivers\serial.sys
17:01:26.0701 0x01a0  Serial - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0701 0x01a0  Object is SCO, delete is not allowed
17:01:26.0701 0x01a0  Serial ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0701 0x01a0  [ 0BD2B65DCE756FDE95A2E5CCCBF7705D, F13FAFEC8FCF3E796196562717C433CE359A74A3E5876AB070647C717AF74028 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
17:01:26.0717 0x01a0  sermouse - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0717 0x01a0  Object is SCO, delete is not allowed
17:01:26.0717 0x01a0  sermouse ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0748 0x01a0  [ D5C3776CBD8BC307DCCA3FD4CE667A37, 98E4253B770C25914C91A6148E2EA15ED0EF37ADCB042A47252DBA135972BF74 ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
17:01:26.0764 0x01a0  SessionEnv - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0764 0x01a0  Object is SCO, delete is not allowed
17:01:26.0764 0x01a0  SessionEnv ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0764 0x01a0  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
17:01:26.0764 0x01a0  sfloppy - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0764 0x01a0  Object is SCO, delete is not allowed
17:01:26.0764 0x01a0  sfloppy ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0764 0x01a0  Force sending object to P2P due to detect: sfloppy
17:01:26.0764 0x01a0  Object send P2P result: false
17:01:26.0795 0x01a0  [ F4414F57DF2CECB8FC969AA43A6B0D50, AD09A6E1294721507DD6BE82B91F2EEB0FF0151B9BC14A75840CD657DBFDECEC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
17:01:26.0811 0x01a0  SharedAccess - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0811 0x01a0  Object is SCO, delete is not allowed
17:01:26.0811 0x01a0  SharedAccess ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0873 0x01a0  [ 0D190D8B4B20446BE6299AC734DFADF1, 6551095971F99820BBFC5FED8FAB9591A3F8ABFA0F027887F3B71B79325FF6D9 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
17:01:26.0889 0x01a0  ShellHWDetection - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0889 0x01a0  ShellHWDetection ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0904 0x01a0  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
17:01:26.0920 0x01a0  SiSRaid2 - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0920 0x01a0  Object is SCO, delete is not allowed
17:01:26.0920 0x01a0  SiSRaid2 ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0920 0x01a0  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
17:01:26.0920 0x01a0  SiSRaid4 - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0920 0x01a0  Object is SCO, delete is not allowed
17:01:26.0920 0x01a0  SiSRaid4 ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0982 0x01a0  [ 050A4112B00BCA2E13314CDE48C1DEEE, 86C679CD494DEEB984372BF954EFBB8982AC7995FBF89FCF83BC228991D1B825 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
17:01:26.0998 0x01a0  SkypeUpdate - detected UnsignedFile.Multi.Generic ( 1 )
17:01:26.0998 0x01a0  SkypeUpdate ( UnsignedFile.Multi.Generic ) - warning
17:01:26.0998 0x01a0  Force sending object to P2P due to detect: SkypeUpdate
17:01:26.0998 0x01a0  Object send P2P result: false
17:01:27.0029 0x01a0  [ 587ACA15210D1B01FBF272E07A08F91A, 1F3C13C218C5EA329C6E33E4AE7CFE88DAD59DA40F59FDE09D733AFD2E489000 ] smphost         C:\WINDOWS\System32\smphost.dll
17:01:27.0029 0x01a0  smphost - detected UnsignedFile.Multi.Generic ( 1 )
17:01:27.0029 0x01a0  smphost ( UnsignedFile.Multi.Generic ) - warning
17:01:27.0045 0x01a0  [ 49EEB92DE930B8566EF615D600781DB4, 0B7C929D24FAFC34F95BB4AA77DCBA29DDD8F1977EB42713B64228677D1FBFD3 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
17:01:27.0045 0x01a0  SNMPTRAP - detected UnsignedFile.Multi.Generic ( 1 )
17:01:27.0045 0x01a0  Object is SCO, delete is not allowed
17:01:27.0045 0x01a0  SNMPTRAP ( UnsignedFile.Multi.Generic ) - warning
17:01:27.0108 0x01a0  [ 240C5C3793206725AA05665851E8C214, 96ADFB85EB1623EB00C251C1C6A1F441A1795F0EBFD10B17DD1CA58E3AE8A90D ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
17:01:27.0123 0x01a0  spaceport - detected UnsignedFile.Multi.Generic ( 1 )
17:01:27.0123 0x01a0  spaceport ( UnsignedFile.Multi.Generic ) - warning
17:01:27.0123 0x01a0  Force sending object to P2P due to detect: spaceport
17:01:27.0123 0x01a0  Object send P2P result: false
17:01:27.0139 0x01a0  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
17:01:27.0139 0x01a0  SpbCx - detected UnsignedFile.Multi.Generic ( 1 )
17:01:27.0139 0x01a0  SpbCx ( UnsignedFile.Multi.Generic ) - warning
17:01:27.0170 0x01a0  [ 42FEA9E0BA9761D9E65A4F167D91515B, 9A34CE83F3ACD50608671BDABE5E475F8E0C8335D3B8B7B3D7E84B2A319FA29F ] Spooler         C:\WINDOWS\System32\spoolsv.exe
17:01:27.0201 0x01a0  Spooler - detected UnsignedFile.Multi.Generic ( 1 )
17:01:27.0201 0x01a0  Spooler ( UnsignedFile.Multi.Generic ) - warning
17:01:27.0404 0x01a0  [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
17:01:27.0592 0x01a0  sppsvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:27.0592 0x01a0  sppsvc ( UnsignedFile.Multi.Generic ) - warning
17:01:27.0639 0x01a0  [ 6416E79A58A8FCC33A447A4DDDD3BF04, 839E3107ACCD520C309BD6C8324DF7A8EB724EAD442AB1F1CACB0D83F84BE488 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
17:01:27.0654 0x01a0  srv - detected UnsignedFile.Multi.Generic ( 1 )
17:01:27.0654 0x01a0  Object is SCO, delete is not allowed
17:01:27.0654 0x01a0  srv ( UnsignedFile.Multi.Generic ) - warning
17:01:27.0686 0x01a0  [ 5BED3AB69797C8786EF70AEA8C33748B, 0474EE6C43D437CBA9848BCF25D1341B122D7E9F371A0FF3C62C83D14B2CB095 ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
17:01:27.0701 0x01a0  srv2 - detected UnsignedFile.Multi.Generic ( 1 )
17:01:27.0701 0x01a0  Object is SCO, delete is not allowed
17:01:27.0701 0x01a0  srv2 ( UnsignedFile.Multi.Generic ) - warning
17:01:27.0717 0x01a0  [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
17:01:27.0733 0x01a0  srvnet - detected UnsignedFile.Multi.Generic ( 1 )
17:01:27.0733 0x01a0  Object is SCO, delete is not allowed
17:01:27.0733 0x01a0  srvnet ( UnsignedFile.Multi.Generic ) - warning
17:01:27.0779 0x01a0  [ BB9ED3EDD8E85008215A7250D325A72E, D3404E31B7706B25CDEA7CB4260C343B5F090E8CCB9A5FA203B0F94A9112F1B3 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
17:01:27.0779 0x01a0  SSDPSRV - detected UnsignedFile.Multi.Generic ( 1 )
17:01:27.0779 0x01a0  SSDPSRV ( UnsignedFile.Multi.Generic ) - warning
17:01:27.0779 0x01a0  Force sending object to P2P due to detect: SSDPSRV
17:01:27.0779 0x01a0  Object send P2P result: false
17:01:27.0811 0x01a0  [ 3911418AFDE10EA6823B7799E4815524, A73517C4C1271E666B2B3A747756070098E923742B41572AA16573170440AA07 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
17:01:27.0811 0x01a0  SstpSvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:27.0811 0x01a0  Object is SCO, delete is not allowed
17:01:27.0811 0x01a0  SstpSvc ( UnsignedFile.Multi.Generic ) - warning
17:01:27.0873 0x01a0  [ CC7ED069C2FC82B5B1555C2044C765CC, CE43363544A3EE2C5133CD0D47BF34AFAFA4EAD6AC9EB9A772EE55E89D4D89D4 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
17:01:27.0920 0x01a0  Steam Client Service - detected UnsignedFile.Multi.Generic ( 1 )
17:01:27.0920 0x01a0  Steam Client Service ( UnsignedFile.Multi.Generic ) - warning
17:01:27.0920 0x01a0  Force sending object to P2P due to detect: Steam Client Service
17:01:27.0920 0x01a0  Object send P2P result: false
17:01:27.0936 0x01a0  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
17:01:27.0936 0x01a0  stexstor - detected UnsignedFile.Multi.Generic ( 1 )
17:01:27.0936 0x01a0  stexstor ( UnsignedFile.Multi.Generic ) - warning
17:01:27.0936 0x01a0  Force sending object to P2P due to detect: stexstor
17:01:27.0936 0x01a0  Object send P2P result: false
17:01:27.0998 0x01a0  [ D638904FE86A5FE542A1BA13A9D68E5C, 89A956F932316BC50DD99B54BAF4E2809DCAA084DBB04CB84D11E5470BEAF251 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
17:01:28.0014 0x01a0  stisvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:28.0014 0x01a0  Object is SCO, delete is not allowed
17:01:28.0014 0x01a0  stisvc ( UnsignedFile.Multi.Generic ) - warning
17:01:28.0076 0x01a0  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
17:01:28.0076 0x01a0  storahci - detected UnsignedFile.Multi.Generic ( 1 )
17:01:28.0076 0x01a0  storahci ( UnsignedFile.Multi.Generic ) - warning
17:01:28.0123 0x01a0  [ 7A08CEE1535F5A448215634C5EA74E50, 41529CDC08A3956F8FE9D5759B147E2E56E3305149EA415EB200249F7CD32094 ] storflt         C:\WINDOWS\system32\DRIVERS\vmstorfl.sys
17:01:28.0123 0x01a0  storflt - detected UnsignedFile.Multi.Generic ( 1 )
17:01:28.0123 0x01a0  storflt ( UnsignedFile.Multi.Generic ) - warning
17:01:28.0139 0x01a0  [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
17:01:28.0139 0x01a0  stornvme - detected UnsignedFile.Multi.Generic ( 1 )
17:01:28.0139 0x01a0  stornvme ( UnsignedFile.Multi.Generic ) - warning
17:01:28.0186 0x01a0  [ 3118058E3D07021A55324A943C6D722B, 0B255DF1977DADD2B9766EEEA814B464F0ABFA34D6439F3C453083850C121F16 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
17:01:28.0186 0x01a0  StorSvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:28.0186 0x01a0  StorSvc ( UnsignedFile.Multi.Generic ) - warning
17:01:28.0186 0x01a0  Force sending object to P2P due to detect: StorSvc
17:01:28.0186 0x01a0  Object send P2P result: false
17:01:28.0201 0x01a0  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
17:01:28.0201 0x01a0  storvsc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:28.0201 0x01a0  storvsc ( UnsignedFile.Multi.Generic ) - warning
17:01:28.0233 0x01a0  [ 03618F935379614837F915D04C45FC0E, 9CC0CBA7AFC58E7F921C13FA3F5269714F1F827535A311E11EA48689C4D539DE ] storvsp         C:\WINDOWS\System32\drivers\storvsp.sys
17:01:28.0233 0x01a0  storvsp - detected UnsignedFile.Multi.Generic ( 1 )
17:01:28.0233 0x01a0  storvsp ( UnsignedFile.Multi.Generic ) - warning
17:01:28.0248 0x01a0  [ D8E1AE075AB3E8AD56F69C44AA978596, CAFF5116DE7F0EEFFEBE38724BCEE7D11B44153AD35EE43E314C56D5E210758A ] svsvc           C:\WINDOWS\system32\svsvc.dll
17:01:28.0248 0x01a0  svsvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:28.0248 0x01a0  svsvc ( UnsignedFile.Multi.Generic ) - warning
17:01:28.0264 0x01a0  [ 84E0F5D41C138C5CC975137A2A98F6D3, 1E36CED05E4F4365C2AB020CAF920E3959995D7F89F3FABD7B2FB05985F85F38 ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
17:01:28.0264 0x01a0  swenum - detected UnsignedFile.Multi.Generic ( 1 )
17:01:28.0264 0x01a0  Object is SCO, delete is not allowed
17:01:28.0264 0x01a0  swenum ( UnsignedFile.Multi.Generic ) - warning
17:01:28.0264 0x01a0  Force sending object to P2P due to detect: swenum
17:01:28.0264 0x01a0  Object send P2P result: false
17:01:28.0311 0x01a0  [ 850EBB87584484DC16F917E7B6F4A304, C253D1DFFCDFB018432063602FB01DBCBDDD6E03458E5C366AABD4670F114B0C ] swprv           C:\WINDOWS\System32\swprv.dll
17:01:28.0358 0x01a0  swprv - detected UnsignedFile.Multi.Generic ( 1 )
17:01:28.0358 0x01a0  Object is SCO, delete is not allowed
17:01:28.0358 0x01a0  swprv ( UnsignedFile.Multi.Generic ) - warning
17:01:28.0436 0x01a0  [ 3DA26652B12E9AB43FD04976AC6DFD33, DEFE220D86197949E97342FE3487CD6A07DD2FFAF6D17A7C65419C2C1B9D1AB5 ] SysMain         C:\WINDOWS\system32\sysmain.dll
17:01:28.0498 0x01a0  SysMain - detected UnsignedFile.Multi.Generic ( 1 )
17:01:28.0498 0x01a0  Object is SCO, delete is not allowed
17:01:28.0498 0x01a0  SysMain ( UnsignedFile.Multi.Generic ) - warning
17:01:28.0529 0x01a0  [ FD4EA8E9232ADD51DC31C295DDEF2768, 3EA40D7376AB5AA5DA2BCF4745C79F7BF819363466967ECC3CD15ADECBFD7244 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
17:01:28.0545 0x01a0  SystemEventsBroker - detected UnsignedFile.Multi.Generic ( 1 )
17:01:28.0545 0x01a0  SystemEventsBroker ( UnsignedFile.Multi.Generic ) - warning
17:01:28.0561 0x01a0  [ BA6DD39266A5E15515C8C14DA2DA3E5C, 5BC917BA4E7281A67CC6CEF2F4D1972DF04DECBEFB6DED0B08FFBD06E15D4B4F ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
17:01:28.0561 0x01a0  TabletInputService - detected UnsignedFile.Multi.Generic ( 1 )
17:01:28.0561 0x01a0  Object is SCO, delete is not allowed
17:01:28.0561 0x01a0  TabletInputService ( UnsignedFile.Multi.Generic ) - warning
17:01:28.0561 0x01a0  [ B517410F157693043DACA21B19B258A6, 2224EECEB575CEA811036C43BB5B0A408DE5F59BC97235AB948968E4C3E438F2 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
17:01:28.0576 0x01a0  TapiSrv - detected UnsignedFile.Multi.Generic ( 1 )
17:01:28.0576 0x01a0  TapiSrv ( UnsignedFile.Multi.Generic ) - warning
17:01:28.0686 0x01a0  [ CCB3A2BB60FE5073F2DEA63FE83CF8FE, 02982136236DD595D8974E6645A008D663B4DD3BC3824721E4DE4377B97887C7 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
17:01:28.0779 0x01a0  Tcpip - detected UnsignedFile.Multi.Generic ( 1 )
17:01:28.0779 0x01a0  Object is SCO, delete is not allowed
17:01:28.0779 0x01a0  Tcpip ( UnsignedFile.Multi.Generic ) - warning
17:01:28.0873 0x01a0  [ CCB3A2BB60FE5073F2DEA63FE83CF8FE, 02982136236DD595D8974E6645A008D663B4DD3BC3824721E4DE4377B97887C7 ] TCPIP6          C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:01:28.0920 0x01a0  TCPIP6 - detected UnsignedFile.Multi.Generic ( 1 )
17:01:28.0920 0x01a0  Object is SCO, delete is not allowed
17:01:28.0920 0x01a0  TCPIP6 ( UnsignedFile.Multi.Generic ) - warning
17:01:28.0951 0x01a0  [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
17:01:28.0951 0x01a0  tcpipreg - detected UnsignedFile.Multi.Generic ( 1 )
17:01:28.0951 0x01a0  Object is SCO, delete is not allowed
17:01:28.0951 0x01a0  tcpipreg ( UnsignedFile.Multi.Generic ) - warning
17:01:28.0951 0x01a0  Force sending object to P2P due to detect: tcpipreg
17:01:28.0951 0x01a0  Object send P2P result: false
17:01:28.0967 0x01a0  [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
17:01:28.0983 0x01a0  tdx - detected UnsignedFile.Multi.Generic ( 1 )
17:01:28.0983 0x01a0  Object is SCO, delete is not allowed
17:01:28.0983 0x01a0  tdx ( UnsignedFile.Multi.Generic ) - warning
17:01:28.0998 0x01a0  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
17:01:28.0998 0x01a0  terminpt - detected UnsignedFile.Multi.Generic ( 1 )
17:01:28.0998 0x01a0  terminpt ( UnsignedFile.Multi.Generic ) - warning
17:01:28.0998 0x01a0  Force sending object to P2P due to detect: terminpt
17:01:28.0998 0x01a0  Object send P2P result: false
17:01:29.0045 0x01a0  [ 3D748E5558FD9A9F03182CB2330698DC, 70B2069AB7912EB49AB3ABD18D4B42CB94AC99CA6DE3F63F4888B8EAAC78AAA2 ] TermService     C:\WINDOWS\System32\termsrv.dll
17:01:29.0108 0x01a0  TermService - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0108 0x01a0  Object is SCO, delete is not allowed
17:01:29.0108 0x01a0  TermService ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0108 0x01a0  Force sending object to P2P due to detect: TermService
17:01:29.0108 0x01a0  Object send P2P result: false
17:01:29.0123 0x01a0  [ 05FBE1F7C13E87AF7A414CDF288B1F62, 24079E1A6B2E33A1A8E76A77F73473B93DD6B379E44C982CE50D6CEED9747838 ] Themes          C:\WINDOWS\system32\themeservice.dll
17:01:29.0139 0x01a0  Themes - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0139 0x01a0  Themes ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0139 0x01a0  Force sending object to P2P due to detect: Themes
17:01:29.0139 0x01a0  Object send P2P result: false
17:01:29.0170 0x01a0  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] THREADORDER     C:\WINDOWS\system32\mmcss.dll
17:01:29.0170 0x01a0  THREADORDER - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0170 0x01a0  Object is SCO, delete is not allowed
 
part1

  • 0

Advertisements

#26
TheElderTrolls
Posted 19 December 2014 - 10:16 AM

TheElderTrolls

    Member

  • Topic Starter
  • Member
  • PipPip
  • 14 posts
17:01:29.0170 0x01a0  THREADORDER ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0186 0x01a0  [ 347A3E49CE18402305B8119A6EC7CFEB, 6768B20EE577880B0353FE84B980D4A18D323929A63FAE41F7A55123BBFC8DBA ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
17:01:29.0201 0x01a0  TimeBroker - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0201 0x01a0  TimeBroker ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0233 0x01a0  [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
17:01:29.0248 0x01a0  TPM - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0248 0x01a0  TPM ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0280 0x01a0  [ C97E14BB6A196B0554D6EB67D8818175, C00588C94988F10507F84584DFA4C0A43B8648AD1AD35E9BAE14CDD21FCF7B90 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
17:01:29.0280 0x01a0  TrkWks - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0280 0x01a0  Object is SCO, delete is not allowed
17:01:29.0280 0x01a0  TrkWks ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0342 0x01a0  [ 887CC44830D3F367CAD17A0CA7CCA5C8, D4022A76433A11FD66D0F41A1EB4D6893BC5B22317E7E9E021739109EB493B44 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
17:01:29.0342 0x01a0  TrustedInstaller - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0342 0x01a0  Object is SCO, delete is not allowed
17:01:29.0342 0x01a0  TrustedInstaller ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0358 0x01a0  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
17:01:29.0358 0x01a0  TsUsbFlt - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0358 0x01a0  TsUsbFlt ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0389 0x01a0  [ E0088068DCE2EE82897027DDB8E05254, FA9C201D3C885DAD2ABE6A23343EDCC83CFB342EFF9E3005FA50B1D88B21D203 ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
17:01:29.0389 0x01a0  TsUsbGD - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0389 0x01a0  TsUsbGD ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0405 0x01a0  [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel          C:\WINDOWS\system32\DRIVERS\tunnel.sys
17:01:29.0405 0x01a0  tunnel - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0405 0x01a0  Object is SCO, delete is not allowed
17:01:29.0405 0x01a0  tunnel ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0420 0x01a0  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
17:01:29.0436 0x01a0  uagp35 - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0436 0x01a0  Object is SCO, delete is not allowed
17:01:29.0436 0x01a0  uagp35 ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0467 0x01a0  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
17:01:29.0467 0x01a0  UASPStor - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0467 0x01a0  UASPStor ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0514 0x01a0  [ B034A41891A36457B994307DFA772293, CA5E6500764A9777AE0E15B2AFB6F05982C90F01374E3F6DDC6DF3852282C66B ] UCX01000        C:\WINDOWS\System32\drivers\ucx01000.sys
17:01:29.0530 0x01a0  UCX01000 - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0530 0x01a0  UCX01000 ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0545 0x01a0  [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
17:01:29.0561 0x01a0  udfs - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0561 0x01a0  Object is SCO, delete is not allowed
17:01:29.0561 0x01a0  udfs ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0576 0x01a0  [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
17:01:29.0576 0x01a0  UEFI - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0576 0x01a0  UEFI ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0576 0x01a0  Force sending object to P2P due to detect: UEFI
17:01:29.0576 0x01a0  Object send P2P result: false
17:01:29.0608 0x01a0  [ 320878AFECDBBD61BBE98624A6CAAC08, 15C090EA32A24D976B5FCB1373B1281DCC2295C075299C814345D694AEB47CB9 ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
17:01:29.0608 0x01a0  UI0Detect - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0608 0x01a0  Object is SCO, delete is not allowed
17:01:29.0608 0x01a0  UI0Detect ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0623 0x01a0  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
17:01:29.0623 0x01a0  uliagpkx - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0623 0x01a0  Object is SCO, delete is not allowed
17:01:29.0623 0x01a0  uliagpkx ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0639 0x01a0  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
17:01:29.0639 0x01a0  umbus - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0639 0x01a0  Object is SCO, delete is not allowed
17:01:29.0639 0x01a0  umbus ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0639 0x01a0  Force sending object to P2P due to detect: umbus
17:01:29.0639 0x01a0  Object send P2P result: false
17:01:29.0655 0x01a0  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
17:01:29.0655 0x01a0  UmPass - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0655 0x01a0  Object is SCO, delete is not allowed
17:01:29.0655 0x01a0  UmPass ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0655 0x01a0  Force sending object to P2P due to detect: UmPass
17:01:29.0655 0x01a0  Object send P2P result: false
17:01:29.0686 0x01a0  [ E3DDF7D43E05784FAA5E042605EEE528, 8E20E880FAB09AF4FF5C438BF9EAE9970D46C05167870110869B744E498FD761 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
17:01:29.0701 0x01a0  UmRdpService - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0701 0x01a0  Object is SCO, delete is not allowed
17:01:29.0701 0x01a0  UmRdpService ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0701 0x01a0  Force sending object to P2P due to detect: UmRdpService
17:01:29.0701 0x01a0  Object send P2P result: false
17:01:29.0733 0x01a0  [ 4A2FFDAC45F317E17DF642C7160EB633, F1AB762912FAA5F469F322407DA37C91556086C42D1643AD27516C12A84F74D0 ] upnphost        C:\WINDOWS\System32\upnphost.dll
17:01:29.0748 0x01a0  upnphost - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0748 0x01a0  upnphost ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0748 0x01a0  Force sending object to P2P due to detect: upnphost
17:01:29.0748 0x01a0  Object send P2P result: false
17:01:29.0795 0x01a0  [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
17:01:29.0795 0x01a0  usbccgp - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0795 0x01a0  Object is SCO, delete is not allowed
17:01:29.0795 0x01a0  usbccgp ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0795 0x01a0  Force sending object to P2P due to detect: usbccgp
17:01:29.0795 0x01a0  Object send P2P result: false
17:01:29.0826 0x01a0  [ B3D6457D841A0CAEF4C52D88621715F2, CBDD76A8A28379B107B1FB530757B477B8AB74CD01F9F3CEDC7B1BA0C6E5A990 ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
17:01:29.0826 0x01a0  usbcir - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0826 0x01a0  Object is SCO, delete is not allowed
17:01:29.0826 0x01a0  usbcir ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0858 0x01a0  [ 48BA326A3DBA5B5BEB5F2777F4618696, B9EC8155F11A3A7644BD9DC8910681B46AE44AE3BF53F052DF50E9C5555E3229 ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
17:01:29.0873 0x01a0  usbehci - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0873 0x01a0  Object is SCO, delete is not allowed
17:01:29.0873 0x01a0  usbehci ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0905 0x01a0  [ FEF0BC107812B36849741C3211BA6B60, B3EF738BE1E6B6027F29C9713CD3F367EA067D2BE46580AFBC0FB58046EF6BBD ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
17:01:29.0920 0x01a0  usbhub - detected UnsignedFile.Multi.Generic ( 1 )
17:01:29.0920 0x01a0  Object is SCO, delete is not allowed
17:01:29.0920 0x01a0  usbhub ( UnsignedFile.Multi.Generic ) - warning
17:01:29.0920 0x01a0  Force sending object to P2P due to detect: usbhub
17:01:29.0920 0x01a0  Object send P2P result: false
17:01:30.0030 0x01a0  [ 65392F3F3F65E4C6CC82A0F4F8A0B051, C11B662A28D95820717DFFC6B76DBB755E4876009A2342E5E3992DE32D6BFF61 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
17:01:30.0045 0x01a0  USBHUB3 - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0045 0x01a0  USBHUB3 ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0092 0x01a0  [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
17:01:30.0092 0x01a0  usbohci - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0092 0x01a0  Object is SCO, delete is not allowed
17:01:30.0092 0x01a0  usbohci ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0108 0x01a0  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
17:01:30.0108 0x01a0  usbprint - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0108 0x01a0  Object is SCO, delete is not allowed
17:01:30.0108 0x01a0  usbprint ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0108 0x01a0  Force sending object to P2P due to detect: usbprint
17:01:30.0108 0x01a0  Object send P2P result: false
17:01:30.0139 0x01a0  [ 66732C13628BDB1AB0D6FD46027327C2, B582C0F348D8F79419CA5A58F10CA151E06D7CA3BE162344CADA46D9D7FED97C ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
17:01:30.0155 0x01a0  USBSTOR - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0155 0x01a0  USBSTOR ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0186 0x01a0  [ 064260B3A5868AC894A4943543BC7AB7, D3534E98B34C4AC9A430D7E0AB301A0E5E1511E3117C2FEA392636B0DE2C38E2 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
17:01:30.0186 0x01a0  usbuhci - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0186 0x01a0  Object is SCO, delete is not allowed
17:01:30.0186 0x01a0  usbuhci ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0186 0x01a0  Force sending object to P2P due to detect: usbuhci
17:01:30.0186 0x01a0  Object send P2P result: false
17:01:30.0217 0x01a0  [ 48430B0313FC1CFE3D2400553F1A93CD, 92994DE6B131E904AFF2C9C4FBB4E6B0D58525A1539763327373DA18C9F08193 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
17:01:30.0233 0x01a0  USBXHCI - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0233 0x01a0  USBXHCI ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0248 0x01a0  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
17:01:30.0264 0x01a0  VaultSvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0264 0x01a0  Object is SCO, delete is not allowed
17:01:30.0264 0x01a0  VaultSvc ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0264 0x01a0  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
17:01:30.0264 0x01a0  vdrvroot - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0264 0x01a0  Object is SCO, delete is not allowed
17:01:30.0264 0x01a0  vdrvroot ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0264 0x01a0  Force sending object to P2P due to detect: vdrvroot
17:01:30.0264 0x01a0  Object send P2P result: false
17:01:30.0342 0x01a0  [ E3EF58D4123B5AA29C8E19825AF84A5E, FB1046722BC643E955DBC3B1459DBF2A6D575EBA2BCF7B20A0FA51E3993835E2 ] vds             C:\WINDOWS\System32\vds.exe
17:01:30.0373 0x01a0  vds - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0373 0x01a0  Object is SCO, delete is not allowed
17:01:30.0373 0x01a0  vds ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0373 0x01a0  Force sending object to P2P due to detect: vds
17:01:30.0373 0x01a0  Object send P2P result: false
17:01:30.0405 0x01a0  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
17:01:30.0405 0x01a0  VerifierExt - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0405 0x01a0  VerifierExt ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0467 0x01a0  [ 52E483A3701A5A61A75A06993720347D, 689E812755E485DF6960D1E049740FBAFB812467D23B673DCAA40C03FEBB544F ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
17:01:30.0483 0x01a0  vhdmp - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0483 0x01a0  vhdmp ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0483 0x01a0  Force sending object to P2P due to detect: vhdmp
17:01:30.0483 0x01a0  Object send P2P result: false
17:01:30.0498 0x01a0  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\WINDOWS\system32\drivers\viaide.sys
17:01:30.0498 0x01a0  viaide - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0498 0x01a0  Object is SCO, delete is not allowed
17:01:30.0498 0x01a0  viaide ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0514 0x01a0  [ 3CE922E34DB12D9F3C0EA856BC09687C, E50A1885FBC775E49614989ECFEA4ACBBDDA16AF459CC5361EED9E23CC7CD42C ] Vid             C:\WINDOWS\System32\drivers\Vid.sys
17:01:30.0530 0x01a0  Vid - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0530 0x01a0  Vid ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0545 0x01a0  [ C6305BDFC4F7CE51F72BB072C03D4ACE, 73E62869CA3104F48CC3B0C45E69CE9BF4F8D7D06E29C2F049B9347ABB50554D ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
17:01:30.0545 0x01a0  vmbus - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0545 0x01a0  vmbus ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0561 0x01a0  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
17:01:30.0561 0x01a0  VMBusHID - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0561 0x01a0  VMBusHID ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0561 0x01a0  Force sending object to P2P due to detect: VMBusHID
17:01:30.0561 0x01a0  Object send P2P result: false
17:01:30.0577 0x01a0  [ 68F8C26DEA2D42E8DEC0778943433C80, 81E8F9D62815F94952CEEABD0689473CC330F7890F66872DCD35A43C06ED33CD ] vmbusr          C:\WINDOWS\System32\drivers\vmbusr.sys
17:01:30.0577 0x01a0  vmbusr - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0577 0x01a0  vmbusr ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0608 0x01a0  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
17:01:30.0623 0x01a0  vmicguestinterface - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0623 0x01a0  vmicguestinterface ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0639 0x01a0  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
17:01:30.0655 0x01a0  vmicheartbeat - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0655 0x01a0  vmicheartbeat ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0670 0x01a0  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
17:01:30.0686 0x01a0  vmickvpexchange - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0686 0x01a0  vmickvpexchange ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0686 0x01a0  Force sending object to P2P due to detect: vmickvpexchange
17:01:30.0686 0x01a0  Object send P2P result: false
17:01:30.0702 0x01a0  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
17:01:30.0717 0x01a0  vmicrdv - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0717 0x01a0  vmicrdv ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0748 0x01a0  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
17:01:30.0748 0x01a0  vmicshutdown - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0748 0x01a0  vmicshutdown ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0780 0x01a0  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
17:01:30.0780 0x01a0  vmictimesync - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0780 0x01a0  vmictimesync ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0780 0x01a0  Force sending object to P2P due to detect: vmictimesync
17:01:30.0780 0x01a0  Object send P2P result: false
17:01:30.0811 0x01a0  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
17:01:30.0827 0x01a0  vmicvss - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0827 0x01a0  vmicvss ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0858 0x01a0  [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
17:01:30.0858 0x01a0  volmgr - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0858 0x01a0  Object is SCO, delete is not allowed
17:01:30.0858 0x01a0  volmgr ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0889 0x01a0  [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
17:01:30.0905 0x01a0  volmgrx - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0905 0x01a0  Object is SCO, delete is not allowed
17:01:30.0905 0x01a0  volmgrx ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0983 0x01a0  [ 64CA2B4A49A8EAF495E435623ECCE7DB, 81151F295A54DE2B8B88C7F48C86BF58CDFF96F98493509C06D6F41484594386 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
17:01:30.0983 0x01a0  volsnap - detected UnsignedFile.Multi.Generic ( 1 )
17:01:30.0983 0x01a0  Object is SCO, delete is not allowed
17:01:30.0983 0x01a0  volsnap ( UnsignedFile.Multi.Generic ) - warning
17:01:30.0998 0x01a0  [ 01355C98B5C3ED1EC446743CDA848FCE, B9FCF558C20E05DD0F53FFB70BBEF873EA57801E13A16701E636128D625C4B67 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
17:01:31.0014 0x01a0  vpci - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0014 0x01a0  vpci ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0030 0x01a0  [ ADBE96C33D1A5BB1BBAF90B4BC84F523, 6E9C9ED3D51E4B6E494D42ECA6F824AD86D676C12C39BBE6B8BD96366BCB02DA ] vpcivsp         C:\WINDOWS\System32\drivers\vpcivsp.sys
17:01:31.0030 0x01a0  vpcivsp - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0030 0x01a0  vpcivsp ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0045 0x01a0  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
17:01:31.0061 0x01a0  vsmraid - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0061 0x01a0  Object is SCO, delete is not allowed
17:01:31.0061 0x01a0  vsmraid ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0123 0x01a0  [ E369C59F2C0852DDD090C07E0DDE0051, 4FAC94458EAAEED4F84A86FBAB8FBB332D0AF85BD528E63C0C058A2DA8E3011D ] VSS             C:\WINDOWS\system32\vssvc.exe
17:01:31.0186 0x01a0  VSS - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0186 0x01a0  Object is SCO, delete is not allowed
17:01:31.0186 0x01a0  VSS ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0202 0x01a0  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
17:01:31.0217 0x01a0  VSTXRAID - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0217 0x01a0  VSTXRAID ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0248 0x01a0  [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
17:01:31.0248 0x01a0  vwifibus - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0248 0x01a0  vwifibus ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0280 0x01a0  [ 7599E582CA3A6AAA95A18FFE1172D339, A0410778FBBC4302EA91CF24B944427410B4706535F1192504D4F34C3ED4503E ] W32Time         C:\WINDOWS\system32\w32time.dll
17:01:31.0295 0x01a0  W32Time - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0295 0x01a0  Object is SCO, delete is not allowed
17:01:31.0295 0x01a0  W32Time ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0311 0x01a0  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
17:01:31.0311 0x01a0  WacomPen - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0311 0x01a0  Object is SCO, delete is not allowed
17:01:31.0311 0x01a0  WacomPen ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0389 0x01a0  [ 61692DB39AD3DF2F29392D68EAA7BB93, 854D4B9C7DD1676968598ED973500650ECEC02C420E44C0B3957C24F073AA5FB ] wbengine        C:\WINDOWS\system32\wbengine.exe
17:01:31.0436 0x01a0  wbengine - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0436 0x01a0  Object is SCO, delete is not allowed
17:01:31.0436 0x01a0  wbengine ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0436 0x01a0  Force sending object to P2P due to detect: wbengine
17:01:31.0436 0x01a0  Object send P2P result: false
17:01:31.0452 0x01a0  [ 3BC1D1D56637A32CD91C8AE08E2484AA, 9EE1BD3FB0D289E25F3DDD0D8F67DC1C701A6B1D5418FADF348D0E642B1DEBEB ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
17:01:31.0483 0x01a0  WbioSrvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0483 0x01a0  WbioSrvc ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0483 0x01a0  Force sending object to P2P due to detect: WbioSrvc
17:01:31.0483 0x01a0  Object send P2P result: false
17:01:31.0498 0x01a0  [ A07CFC4B593D15B6BF06813C3B5B33BF, B57BD918E2AFF9943B51A24B95E0C4D3482B4DF73C0E2421E8CC67C2BC7A4C70 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
17:01:31.0498 0x01a0  Wcmsvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0498 0x01a0  Wcmsvc ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0561 0x01a0  [ D2726823DF7E19F213F4805A9D6D145F, A7F582C99918D204264D3B374F70D75984BDA5805203041E3DECB8153D16E102 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
17:01:31.0577 0x01a0  wcncsvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0577 0x01a0  Object is SCO, delete is not allowed
17:01:31.0577 0x01a0  wcncsvc ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0577 0x01a0  [ 846C02A8B48CBD921A3D6AB521AA0DC4, B07573A774A6C65D24E5718DC25DF378270EB5B40221CA5A53B21D47838381D3 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
17:01:31.0592 0x01a0  WcsPlugInService - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0592 0x01a0  Object is SCO, delete is not allowed
17:01:31.0592 0x01a0  WcsPlugInService ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0608 0x01a0  [ 0359607177E5E9F6041136CC0A5CB0B6, 16687BE2639648CF46E8768BA1798030472C525612C629BF134D053240E2195B ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
17:01:31.0608 0x01a0  WdBoot - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0608 0x01a0  WdBoot ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0608 0x01a0  Force sending object to P2P due to detect: WdBoot
17:01:31.0608 0x01a0  Object send P2P result: false
17:01:31.0670 0x01a0  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
17:01:31.0686 0x01a0  Wdf01000 - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0686 0x01a0  Object is SCO, delete is not allowed
17:01:31.0686 0x01a0  Wdf01000 ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0717 0x01a0  [ DE8D12B4C3F55FA2C5E9774314F6C58A, C3E835DC066A94E1431BCDC90D7EA27AAC6F82826F4A5527B37D865241D7A366 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
17:01:31.0733 0x01a0  WdFilter - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0733 0x01a0  WdFilter ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0733 0x01a0  Force sending object to P2P due to detect: WdFilter
17:01:31.0733 0x01a0  Object send P2P result: false
17:01:31.0748 0x01a0  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
17:01:31.0748 0x01a0  WdiServiceHost - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0748 0x01a0  Object is SCO, delete is not allowed
17:01:31.0748 0x01a0  WdiServiceHost ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0748 0x01a0  Force sending object to P2P due to detect: WdiServiceHost
17:01:31.0748 0x01a0  Object send P2P result: false
17:01:31.0764 0x01a0  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
17:01:31.0764 0x01a0  WdiSystemHost - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0764 0x01a0  Object is SCO, delete is not allowed
17:01:31.0764 0x01a0  WdiSystemHost ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0795 0x01a0  [ 4AD874CDC812EC156265E451B6B09DAB, 6E3E05B8301841425E9BB0D54B35EF386B78EEB307B5A6153FD1F366D30F23FA ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
17:01:31.0795 0x01a0  WdNisDrv - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0795 0x01a0  WdNisDrv ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0795 0x01a0  Force sending object to P2P due to detect: WdNisDrv
17:01:31.0795 0x01a0  Object send P2P result: false
17:01:31.0827 0x01a0  WdNisSvc - ok
17:01:31.0858 0x01a0  [ 91B18D7A1702ED589E67C6C81052B955, 5D1DA8B86106A28E50BBCCB36527CC130D41201F5BE1D3DC5F1D6F7ECCF807BA ] WebClient       C:\WINDOWS\System32\webclnt.dll
17:01:31.0873 0x01a0  WebClient - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0873 0x01a0  Object is SCO, delete is not allowed
17:01:31.0873 0x01a0  WebClient ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0905 0x01a0  [ 3274312F263882B51B964329FAF49734, 99A020377ACF0762BE5ECD2D68EB5E1497B9D59963247E725F7F96FB5DF41FAD ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
17:01:31.0905 0x01a0  Wecsvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0905 0x01a0  Object is SCO, delete is not allowed
17:01:31.0905 0x01a0  Wecsvc ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0920 0x01a0  [ 7CDD84E0023A0C5C230B06A7965EC65E, 6EC7DC18C76D66CF9A893C3DD20F9BE3ADD76546F9A9BA42CE4F24854709F9D9 ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
17:01:31.0920 0x01a0  WEPHOSTSVC - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0920 0x01a0  WEPHOSTSVC ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0936 0x01a0  [ 959534ACF085C137D2D094384EF89C45, D029F440789FE170A1C46217C6DE6D78DC0188A5CF33FCCC17FA65D3BC80C2B7 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
17:01:31.0936 0x01a0  wercplsupport - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0936 0x01a0  Object is SCO, delete is not allowed
17:01:31.0936 0x01a0  wercplsupport ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0936 0x01a0  Force sending object to P2P due to detect: wercplsupport
17:01:31.0936 0x01a0  Object send P2P result: false
17:01:31.0952 0x01a0  [ 82BCCF5FBE47AC9E8CBA2020994DFB3F, EA96C6BD98A701B465D0780EC10BDA92E45FE636D60C1385813AA3B456D8B931 ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
17:01:31.0952 0x01a0  WerSvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0952 0x01a0  Object is SCO, delete is not allowed
17:01:31.0952 0x01a0  WerSvc ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0983 0x01a0  [ BFBE1C5F57FE7A885673A1962D5532B7, F0BD05B257108699FE6AB32EF11F927C31932F27062A705B3FEFA4F5B4C0D8C3 ] WFPLWFS         C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
17:01:31.0983 0x01a0  WFPLWFS - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0983 0x01a0  WFPLWFS ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0998 0x01a0  [ E06AFE2F94BA7CFA2FE4FD2A449E60E2, 99A81E16366E9E77905D873B0246E4C11B383FE1E99E0E1D9A07FAD4E52EA9E4 ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
17:01:31.0998 0x01a0  WiaRpc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:31.0998 0x01a0  Object is SCO, delete is not allowed
17:01:31.0998 0x01a0  WiaRpc ( UnsignedFile.Multi.Generic ) - warning
17:01:31.0998 0x01a0  Force sending object to P2P due to detect: WiaRpc
17:01:31.0998 0x01a0  Object send P2P result: false
17:01:32.0030 0x01a0  [ 867BCC69ED9C31C501465EB0E8BA9DFA, 678B7FF4D4E8624514301956CDA7FB451159BBFC83FF2E4E5E7DADAE3C7AB2EC ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
17:01:32.0030 0x01a0  WIMMount - detected UnsignedFile.Multi.Generic ( 1 )
17:01:32.0030 0x01a0  WIMMount ( UnsignedFile.Multi.Generic ) - warning
17:01:32.0030 0x01a0  WinDefend - ok
17:01:32.0077 0x01a0  [ DD079EC8F44DCA3A176B345C6ADEFB66, 6CD9371B83EA23D2181891FAE1DB285BC111A78C35F374E57666ED09860C91A9 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
17:01:32.0108 0x01a0  WinHttpAutoProxySvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:32.0108 0x01a0  Object is SCO, delete is not allowed
17:01:32.0108 0x01a0  WinHttpAutoProxySvc ( UnsignedFile.Multi.Generic ) - warning
17:01:32.0170 0x01a0  [ 9DB490F3E823C5C3C070644B96CB9D59, 81937D0B331E43C7C61514E60B3AD51370C5201F7B4D12F8534840D91EDC32DD ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
17:01:32.0170 0x01a0  Winmgmt - detected UnsignedFile.Multi.Generic ( 1 )
17:01:32.0170 0x01a0  Object is SCO, delete is not allowed
17:01:32.0170 0x01a0  Winmgmt ( UnsignedFile.Multi.Generic ) - warning
17:01:32.0280 0x01a0  [ 9CE162EB9057CF079736F4DD00FC0D6C, 412C34557866D2A3B3CDAFA5A03B87C01AACF75E349802E511098B20137028D9 ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
17:01:32.0374 0x01a0  WinRM - detected UnsignedFile.Multi.Generic ( 1 )
17:01:32.0374 0x01a0  Object is SCO, delete is not allowed
17:01:32.0374 0x01a0  WinRM ( UnsignedFile.Multi.Generic ) - warning
17:01:32.0467 0x01a0  [ 3F5EF31C6AA204B099EE76497DF80A26, CBE648A4E7E1D98A3D8C72582C1CB3C2FD2329EAA24EE4DCAD271AAA6F4D82CE ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
17:01:32.0514 0x01a0  WlanSvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:32.0514 0x01a0  Object is SCO, delete is not allowed
17:01:32.0514 0x01a0  WlanSvc ( UnsignedFile.Multi.Generic ) - warning
17:01:32.0514 0x01a0  Force sending object to P2P due to detect: WlanSvc
17:01:32.0514 0x01a0  Object send P2P result: false
17:01:32.0592 0x01a0  [ 5F56C0DE776C7AE43AF749845BFAA1EF, 837993C5853B7E682C7FB8401B7F5D951FFD15E5659EBB1B01DC3F5719ACEE19 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
17:01:32.0639 0x01a0  wlidsvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:32.0639 0x01a0  wlidsvc ( UnsignedFile.Multi.Generic ) - warning
17:01:32.0655 0x01a0  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
17:01:32.0655 0x01a0  WmiAcpi - detected UnsignedFile.Multi.Generic ( 1 )
17:01:32.0655 0x01a0  Object is SCO, delete is not allowed
17:01:32.0655 0x01a0  WmiAcpi ( UnsignedFile.Multi.Generic ) - warning
17:01:32.0670 0x01a0  [ 7AFAC828F52D62F304A911EC32F42EEE, 4EDCF4149069413A166169F2E23F7505F47B39B7EC319E1EF6D2C46CD140AA24 ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
17:01:32.0686 0x01a0  wmiApSrv - detected UnsignedFile.Multi.Generic ( 1 )
17:01:32.0686 0x01a0  Object is SCO, delete is not allowed
17:01:32.0686 0x01a0  wmiApSrv ( UnsignedFile.Multi.Generic ) - warning
17:01:32.0686 0x01a0  WMPNetworkSvc - ok
17:01:32.0733 0x01a0  [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
17:01:32.0733 0x01a0  Wof - detected UnsignedFile.Multi.Generic ( 1 )
17:01:32.0733 0x01a0  Wof ( UnsignedFile.Multi.Generic ) - warning
17:01:32.0795 0x01a0  [ 61BF52E9FFAB27A0B6D621BE26088373, 81291D52C381360E69D51E7DEB05CFAC651A7E9EF781CA23062C0583D0C94708 ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
17:01:32.0842 0x01a0  workfolderssvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:32.0842 0x01a0  workfolderssvc ( UnsignedFile.Multi.Generic ) - warning
17:01:32.0842 0x01a0  Force sending object to P2P due to detect: workfolderssvc
17:01:32.0842 0x01a0  Object send P2P result: false
17:01:32.0874 0x01a0  [ 182561A14F2E93E81E66FE3700D17A5A, FB9A06058A8BCCEDCDC5BF8899D9B2FBA5752C262C5FC6D2B8338884F3303D12 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
17:01:32.0874 0x01a0  wpcfltr - detected UnsignedFile.Multi.Generic ( 1 )
17:01:32.0874 0x01a0  wpcfltr ( UnsignedFile.Multi.Generic ) - warning
17:01:32.0874 0x01a0  Force sending object to P2P due to detect: wpcfltr
17:01:32.0874 0x01a0  Object send P2P result: false
17:01:32.0889 0x01a0  [ 4E6A0F60DA7EF050D3D26417CD4D24E9, E6B3BFB007B641D41F8532ED086F92CB3D86E210023DBFAA9AD8152A9FD33CCA ] WPCSvc          C:\WINDOWS\System32\wpcsvc.dll
17:01:32.0889 0x01a0  WPCSvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:32.0889 0x01a0  Object is SCO, delete is not allowed
17:01:32.0889 0x01a0  WPCSvc ( UnsignedFile.Multi.Generic ) - warning
17:01:32.0920 0x01a0  [ 618A19EB31ECA7B7F2AA0207BAF598A5, CB18CF9B781EAB3D775F8201F294A7135E058D6C963D2CC759DCA14D95EED538 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
17:01:32.0920 0x01a0  WPDBusEnum - detected UnsignedFile.Multi.Generic ( 1 )
17:01:32.0920 0x01a0  Object is SCO, delete is not allowed
17:01:32.0920 0x01a0  WPDBusEnum ( UnsignedFile.Multi.Generic ) - warning
17:01:32.0952 0x01a0  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
17:01:32.0952 0x01a0  WpdUpFltr - detected UnsignedFile.Multi.Generic ( 1 )
17:01:32.0952 0x01a0  WpdUpFltr ( UnsignedFile.Multi.Generic ) - warning
17:01:32.0967 0x01a0  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
17:01:32.0967 0x01a0  ws2ifsl - detected UnsignedFile.Multi.Generic ( 1 )
17:01:32.0967 0x01a0  Object is SCO, delete is not allowed
17:01:32.0967 0x01a0  ws2ifsl ( UnsignedFile.Multi.Generic ) - warning
17:01:32.0999 0x01a0  [ 9654DE19551093CD73874281E1573C94, 5E3513EC0CB180D90904BE8970AB64A4434279E8C467AE2CF693254E47B1D11E ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
17:01:33.0014 0x01a0  wscsvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:33.0014 0x01a0  Object is SCO, delete is not allowed
17:01:33.0014 0x01a0  wscsvc ( UnsignedFile.Multi.Generic ) - warning
17:01:33.0014 0x01a0  Force sending object to P2P due to detect: wscsvc
17:01:33.0014 0x01a0  Object send P2P result: false
17:01:33.0014 0x01a0  WSearch - ok
17:01:33.0139 0x01a0  [ 95B6670E6933E1DEE19686C55BE709A0, 4B9EB8F1712B7959A71F6DA445D29BD09B25EEFC6B30D736EFE30163D79B233E ] WSService       C:\WINDOWS\System32\WSService.dll
17:01:33.0264 0x01a0  WSService - detected UnsignedFile.Multi.Generic ( 1 )
17:01:33.0264 0x01a0  WSService ( UnsignedFile.Multi.Generic ) - warning
17:01:33.0264 0x01a0  Force sending object to P2P due to detect: WSService
17:01:33.0264 0x01a0  Object send P2P result: false
17:01:33.0389 0x01a0  [ DCD090318EC800CF6275C6835900B0C6, 9E72762EEE46CC0606B909850E6D22E9C8E5C88E82F7C974B2B7C1E5160BEBA7 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
17:01:33.0499 0x01a0  wuauserv - detected UnsignedFile.Multi.Generic ( 1 )
17:01:33.0499 0x01a0  Object is SCO, delete is not allowed
17:01:33.0499 0x01a0  wuauserv ( UnsignedFile.Multi.Generic ) - warning
17:01:33.0530 0x01a0  [ D537815E450A149752C15868392AD1F3, 8788CE493349299DB36E409C8CC3C6EA08301FA492C95D9D556E00BC13A05F13 ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
17:01:33.0530 0x01a0  WudfPf - detected UnsignedFile.Multi.Generic ( 1 )
17:01:33.0530 0x01a0  Object is SCO, delete is not allowed
17:01:33.0530 0x01a0  WudfPf ( UnsignedFile.Multi.Generic ) - warning
17:01:33.0545 0x01a0  [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
17:01:33.0545 0x01a0  WUDFRd - detected UnsignedFile.Multi.Generic ( 1 )
17:01:33.0545 0x01a0  Object is SCO, delete is not allowed
17:01:33.0545 0x01a0  WUDFRd ( UnsignedFile.Multi.Generic ) - warning
17:01:33.0561 0x01a0  [ 9CDC2059A23E3C9B57696178508777E7, B680A2E2EDA5C8C6A547E7D9B2F2F8E6407C3EA0A01B82A4B88D48A27913A597 ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
17:01:33.0577 0x01a0  wudfsvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:33.0577 0x01a0  Object is SCO, delete is not allowed
17:01:33.0577 0x01a0  wudfsvc ( UnsignedFile.Multi.Generic ) - warning
17:01:33.0608 0x01a0  [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
17:01:33.0608 0x01a0  WUDFWpdFs - detected UnsignedFile.Multi.Generic ( 1 )
17:01:33.0608 0x01a0  Object is SCO, delete is not allowed
17:01:33.0608 0x01a0  WUDFWpdFs ( UnsignedFile.Multi.Generic ) - warning
17:01:33.0655 0x01a0  [ 2FA9794CA36147756F3FDFD6CA29B46F, 4B86DC38C2411C281686E9A4E64DA6FB2992E39391371F78E012D6D8BB85123F ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
17:01:33.0670 0x01a0  WwanSvc - detected UnsignedFile.Multi.Generic ( 1 )
17:01:33.0670 0x01a0  WwanSvc ( UnsignedFile.Multi.Generic ) - warning
17:01:33.0670 0x01a0  ================ Scan global ===============================
17:01:33.0702 0x01a0  [ C89780A6F58D113C28A96D85D1261DC5, 185114F33A60916C7904E4A0F278CA43258454343E614F01F0DAFA98BAC981B1 ] C:\WINDOWS\system32\basesrv.dll
17:01:33.0717 0x01a0  [ 00DD4D2ACC2E72155A8AAA82018BEC0D, 9D7CA68B4A81240477FCC85A3CC11EF986093F9D6228A6C5AC608EDAD664068C ] C:\WINDOWS\system32\winsrv.dll
17:01:33.0749 0x01a0  [ 9C1833ABD62876856836C5AE55C7CE86, 0A21E2C8B2FF3B0438C86DA7151A548F9C6F5C62CD402CBBEDB435994C8508F1 ] C:\WINDOWS\system32\sxssrv.dll
17:01:33.0780 0x01a0  [ 067CB90C277DB4A737D5DEABA3055972, C681BF013170F2D92A3FC4D783FC3F200CDC0C8173373B7ECC27FCF32A03CCBD ] C:\WINDOWS\system32\services.exe
17:01:33.0795 0x01a0  [ Global ] - ok
17:01:33.0795 0x01a0  ================ Scan MBR ==================================
17:01:33.0811 0x01a0  [ 8E734BD7AA1D4F7E9AF58DF495F6CF9E ] \Device\Harddisk0\DR0
17:01:33.0874 0x01a0  \Device\Harddisk0\DR0 - detected TDSS File System ( 1 )
17:01:33.0874 0x01a0  \Device\Harddisk0\DR0 ( TDSS File System ) - warning
17:01:33.0889 0x01a0  [ 042DF96C3F624CBB7E3574EC57B22B77 ] \Device\Harddisk1\DR1
17:01:33.0983 0x01a0  \Device\Harddisk1\DR1 - ok
17:01:33.0983 0x01a0  [ 23B571400A29918F5392F6E85EEB756E ] \Device\Harddisk2\DR2
17:01:34.0280 0x01a0  \Device\Harddisk2\DR2 - ok
17:01:34.0280 0x01a0  ================ Scan VBR ==================================
17:01:34.0280 0x01a0  [ 7FE0C3BAE926BD68A32AE1109601BC8F ] \Device\Harddisk0\DR0\Partition1
17:01:34.0296 0x01a0  \Device\Harddisk0\DR0\Partition1 - ok
17:01:34.0296 0x01a0  [ 539277926B03D0049EE3569142C7D379 ] \Device\Harddisk1\DR1\Partition1
17:01:34.0342 0x01a0  \Device\Harddisk1\DR1\Partition1 - ok
17:01:34.0342 0x01a0  [ D15229D066CA19342D4240330DDFFDD9 ] \Device\Harddisk2\DR2\Partition1
17:01:34.0342 0x01a0  \Device\Harddisk2\DR2\Partition1 - ok
17:01:34.0342 0x01a0  ================ Scan generic autorun ======================
17:01:34.0358 0x01a0  [ 28062B17191C9450BF6C6C3EF8C7EB27, 4859C5708DFD119021F7B7FFB38F0B316675E1E4D5D51A10D4265F712CF8CDB6 ] C:\WINDOWS\system32\igfxtray.exe
17:01:34.0374 0x01a0  IgfxTray - detected UnsignedFile.Multi.Generic ( 1 )
17:01:34.0374 0x01a0  IgfxTray ( UnsignedFile.Multi.Generic ) - warning
17:01:34.0389 0x01a0  [ 28FC280487F0BAAE5E8119257C4EEF8C, F574BC70B79B77912FC683B3EB0BE6929E7758284ED5B47008E18B0E4A4A09FD ] C:\WINDOWS\system32\hkcmd.exe
17:01:34.0389 0x01a0  HotKeysCmds - detected UnsignedFile.Multi.Generic ( 1 )
17:01:34.0389 0x01a0  HotKeysCmds ( UnsignedFile.Multi.Generic ) - warning
17:01:34.0421 0x01a0  [ F29BEA821C753E4F00177690F70CDC13, 0EDB40F4A4C23553C0288E6E3AD65E7B523F6764C87C6C36C3ECB0C1940C5176 ] C:\WINDOWS\system32\igfxpers.exe
17:01:34.0421 0x01a0  Persistence - detected UnsignedFile.Multi.Generic ( 1 )
17:01:34.0421 0x01a0  Persistence ( UnsignedFile.Multi.Generic ) - warning
17:01:34.0561 0x01a0  [ ACE61C698A49021FA1E2799275E88CC8, F0D03B836B14F0C78B48CBA0D87549D33F76B69EFB7759993982BF1849B532E7 ] C:\Program Files (x86)\Gyazo\GyStation.exe
17:01:34.0655 0x01a0  Gyazo - detected UnsignedFile.Multi.Generic ( 1 )
17:01:34.0655 0x01a0  Gyazo ( UnsignedFile.Multi.Generic ) - warning
17:01:34.0780 0x01a0  [ 44A9229022A519ED45294A1934C05EEC, 6DEF0DB5F9B50E9B0AFEE1CF50066BEB4FB7E15E2DC829A499509925660D6992 ] C:\Users\Mees\AppData\Local\FluxSoftware\Flux\flux.exe
17:01:34.0827 0x01a0  f.lux - detected UnsignedFile.Multi.Generic ( 1 )
17:01:34.0827 0x01a0  f.lux ( UnsignedFile.Multi.Generic ) - warning
17:01:34.0827 0x01a0  Force sending object to P2P due to detect: C:\Users\Mees\AppData\Local\FluxSoftware\Flux\flux.exe
17:01:34.0827 0x01a0  Object send P2P result: false
17:01:34.0999 0x01a0  Win FW state via NFP2: enabled
17:01:34.0999 0x01a0  ============================================================
17:01:34.0999 0x01a0  Scan finished
17:01:34.0999 0x01a0  ============================================================
17:01:34.0999 0x03ec  Detected object count: 441
17:01:34.0999 0x03ec  Actual detected object count: 441
17:03:26.0413 0x03ec  1394ohci ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0413 0x03ec  1394ohci ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0413 0x03ec  3ware ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0413 0x03ec  3ware ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0413 0x03ec  ACPI ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0413 0x03ec  ACPI ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  acpiex ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  acpiex ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  acpipagr ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  acpipagr ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  AcpiPmi ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  AcpiPmi ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  acpitime ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  acpitime ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  ADP80XX ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  ADP80XX ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  AeLookupSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  AeLookupSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  AFD ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  AFD ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  agp440 ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  agp440 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  ahcache ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  ahcache ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  ALG ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  ALG ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  AMD External Events Utility ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  AMD External Events Utility ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  AmdK8 ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  AmdK8 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  amdkmafd ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  amdkmafd ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  amdkmdag ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  amdkmdag ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  amdkmdap ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  amdkmdap ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  AmdPPM ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  AmdPPM ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  amdsata ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  amdsata ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  amdsbs ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  amdsbs ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  amdxata ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  amdxata ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  AppID ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  AppID ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  AppIDSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  AppIDSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  Appinfo ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  Appinfo ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  AppMgmt ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  AppMgmt ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  AppReadiness ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  AppReadiness ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  AppXSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  AppXSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0428 0x03ec  arcsas ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0428 0x03ec  arcsas ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  ASGT ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  ASGT ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  AsrRamDisk ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  AsrRamDisk ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  atapi ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  atapi ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  AtiHDAudioService ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  AtiHDAudioService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  atillk64 ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  atillk64 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  AudioEndpointBuilder ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  AudioEndpointBuilder ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  Audiosrv ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  Audiosrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  AxInstSV ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  AxInstSV ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  b06bdrv ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  b06bdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  BasicDisplay ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  BasicDisplay ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  BasicRender ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  BasicRender ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  bcmfn2 ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  bcmfn2 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  BDESVC ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  BDESVC ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  Beep ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  Beep ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  BFE ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  BFE ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  BITS ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  BITS ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  bowser ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  bowser ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  BrokerInfrastructure ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  BrokerInfrastructure ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  Browser ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  Browser ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  BthAvrcpTg ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  BthAvrcpTg ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  BthHFEnum ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  BthHFEnum ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  bthhfhid ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  bthhfhid ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  BTHMODEM ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  BTHMODEM ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  bthserv ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  bthserv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  cdfs ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  cdfs ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  cdrom ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  cdrom ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0444 0x03ec  CertPropSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0444 0x03ec  CertPropSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  circlass ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  circlass ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  CLFS ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  CLFS ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  CmBatt ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  CmBatt ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  cmudaxp ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  cmudaxp ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  CNG ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  CNG ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  CompositeBus ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  CompositeBus ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  condrv ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  condrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  cphs ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  cphs ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  CryptSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  CryptSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  CSC ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  CSC ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  CscService ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  CscService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  dam ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  dam ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  DcomLaunch ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  DcomLaunch ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  defragsvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  defragsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  DeviceAssociationService ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  DeviceAssociationService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  DeviceInstall ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  DeviceInstall ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  Dfsc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  Dfsc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  Dhcp ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  Dhcp ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  disk ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  disk ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  dmvsc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  dmvsc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  Dnscache ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  Dnscache ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  dot3svc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  dot3svc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  DPS ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  DPS ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  drmkaud ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  drmkaud ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  DsmSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  DsmSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  DXGKrnl ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  DXGKrnl ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  Eaphost ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  Eaphost ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0460 0x03ec  ebdrv ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0460 0x03ec  ebdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  EFS ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  EFS ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  EhStorClass ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  EhStorClass ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  EhStorTcgDrv ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  EhStorTcgDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  ErrDev ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  ErrDev ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  EventSystem ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  EventSystem ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  exfat ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  exfat ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  fastfat ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  fastfat ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  Fax ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  Fax ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  fdc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  fdc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  fdPHost ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  fdPHost ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  FDResPub ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  FDResPub ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  fhsvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  fhsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  FileInfo ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  FileInfo ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  Filetrace ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  Filetrace ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  flpydisk ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  flpydisk ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  FltMgr ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  FltMgr ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  FontCache ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  FontCache ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  FontCache3.0.0.0 ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  FontCache3.0.0.0 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  FsDepends ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  FsDepends ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  Fs_Rec ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  Fs_Rec ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  fvevol ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  fvevol ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  FxPPM ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  FxPPM ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  gagp30kx ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  gagp30kx ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  gencounter ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  gencounter ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  GPIOClx0101 ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  GPIOClx0101 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  gpsvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  gpsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0475 0x03ec  HdAudAddService ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0475 0x03ec  HdAudAddService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  HDAudBus ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  HDAudBus ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  HidBatt ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  HidBatt ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  HidBth ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  HidBth ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  hidi2c ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  hidi2c ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  HidIr ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  HidIr ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  hidserv ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  hidserv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  HidUsb ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  HidUsb ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  hkmsvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  hkmsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  HomeGroupListener ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  HomeGroupListener ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  HomeGroupProvider ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  HomeGroupProvider ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  HpSAMD ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  HpSAMD ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  HTTP ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  HTTP ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  hwpolicy ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  hwpolicy ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  hyperkbd ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  hyperkbd ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  HyperVideo ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  HyperVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  i8042prt ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  i8042prt ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  iaLPSSi_GPIO ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  iaLPSSi_GPIO ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  iaLPSSi_I2C ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  iaLPSSi_I2C ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  iaStor ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  iaStor ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  iaStorAV ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  iaStorAV ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  iaStorV ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  iaStorV ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  igfx ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  igfx ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  IKEEXT ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  IKEEXT ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  intelide ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  intelide ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  intelpep ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  intelpep ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  intelppm ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  intelppm ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0491 0x03ec  IOMap ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0491 0x03ec  IOMap ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  IpFilterDriver ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  IpFilterDriver ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  iphlpsvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  iphlpsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  IPMIDRV ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  IPMIDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  IPNAT ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  IPNAT ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  IRENUM ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  IRENUM ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  isapnp ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  isapnp ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  iScsiPrt ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  iScsiPrt ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  ISCT ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  ISCT ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  kbdclass ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  kbdclass ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  kbdhid ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  kbdhid ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  kbldfltr ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  kbldfltr ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  kdnic ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  kdnic ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  KeyIso ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  KeyIso ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  KSecDD ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  KSecDD ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  KSecPkg ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  KSecPkg ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  ksthunk ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  ksthunk ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  KtmRm ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  KtmRm ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  LanmanServer ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  LanmanServer ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  LanmanWorkstation ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  LanmanWorkstation ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  lfsvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  lfsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  lltdio ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  lltdio ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  lltdsvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  lltdsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  lmhosts ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  lmhosts ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  LSI_SAS ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  LSI_SAS ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  LSI_SAS2 ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  LSI_SAS2 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  LSI_SAS3 ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  LSI_SAS3 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0507 0x03ec  LSI_SSS ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0507 0x03ec  LSI_SSS ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  LSM ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  LSM ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  luafv ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  luafv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  MBAMWebAccessControl ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  MBAMWebAccessControl ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  megasas ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  megasas ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  megasr ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  megasr ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  MEIx64 ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  MEIx64 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  MMCSS ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  MMCSS ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  Modem ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  Modem ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  monitor ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  monitor ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  mouclass ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  mouclass ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  mouhid ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  mouhid ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  mountmgr ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  mountmgr ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  mpsdrv ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  mpsdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  MpsSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  MpsSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  MRxDAV ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  MRxDAV ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  mrxsmb ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  mrxsmb ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  mrxsmb10 ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  mrxsmb10 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  mrxsmb20 ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  mrxsmb20 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  MsBridge ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  MsBridge ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  MSDTC ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  MSDTC ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  Msfs ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  Msfs ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  msgpiowin32 ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  msgpiowin32 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  mshidkmdf ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  mshidkmdf ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  mshidumdf ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  mshidumdf ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  msisadrv ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  msisadrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  MSiSCSI ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  MSiSCSI ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  MsKeyboardFilter ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  MsKeyboardFilter ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0522 0x03ec  MSKSSRV ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0522 0x03ec  MSKSSRV ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  MsLldp ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  MsLldp ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  MSPCLOCK ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  MSPCLOCK ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  MSPQM ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  MSPQM ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  MsRPC ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  MsRPC ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  mssmbios ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  mssmbios ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  MSTEE ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  MSTEE ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  MTConfig ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  MTConfig ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  Mup ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  Mup ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  mvumis ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  mvumis ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  napagent ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  napagent ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  NativeWifiP ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  NativeWifiP ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  NcaSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  NcaSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  NcbService ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  NcbService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  NcdAutoSetup ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  NcdAutoSetup ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  NDIS ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  NDIS ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  NdisCap ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  NdisCap ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  NdisImPlatform ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  NdisImPlatform ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  NdisTapi ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  NdisTapi ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  Ndisuio ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  Ndisuio ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  NdisVirtualBus ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  NdisVirtualBus ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  NdisWan ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  NdisWan ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  NdisWanLegacy ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  NdisWanLegacy ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  NDProxy ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  NDProxy ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  Ndu ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  Ndu ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  NetBIOS ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  NetBIOS ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  NetBT ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  NetBT ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0538 0x03ec  Netlogon ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0538 0x03ec  Netlogon ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  Netman ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  Netman ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  netprofm ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  netprofm ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  NetTcpPortSharing ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  NetTcpPortSharing ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  netvsc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  netvsc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  NlaSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  NlaSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  Npfs ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  Npfs ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  npsvctrig ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  npsvctrig ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  nsi ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  nsi ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  nsiproxy ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  nsiproxy ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  Ntfs ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  Ntfs ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  Null ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  Null ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  nvraid ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  nvraid ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  nvstor ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  nvstor ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  nv_agp ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  nv_agp ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  p2pimsvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  p2pimsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  p2psvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  p2psvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  Parport ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  Parport ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  partmgr ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  partmgr ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  PcaSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  PcaSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  pci ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  pci ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  pciide ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  pciide ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  pcmcia ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  pcmcia ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  pcw ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  pcw ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  pdc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  pdc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  PEAUTH ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  PEAUTH ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  PeerDistSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  PeerDistSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0553 0x03ec  PerfHost ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0553 0x03ec  PerfHost ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  pla ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  pla ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  PlugPlay ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  PlugPlay ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  PNRPAutoReg ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  PNRPAutoReg ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  PNRPsvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  PNRPsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  PolicyAgent ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  PolicyAgent ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  Power ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  Power ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  PrintNotify ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  PrintNotify ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  Processor ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  Processor ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  ProfSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  ProfSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  Psched ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  Psched ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  QWAVE ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  QWAVE ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  QWAVEdrv ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  QWAVEdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  RadeonPro Support Service ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  RadeonPro Support Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  RasAcd ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  RasAcd ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  RasAuto ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  RasAuto ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  RasMan ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  RasMan ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  RasPppoe ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  RasPppoe ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  rdbss ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  rdbss ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  rdpbus ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  rdpbus ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  RDPDR ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  RDPDR ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  RdpVideoMiniport ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  RdpVideoMiniport ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  rdyboost ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  rdyboost ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  ReFS ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  ReFS ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  RemoteAccess ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  RemoteAccess ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  RemoteRegistry ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  RemoteRegistry ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  RpcEptMapper ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  RpcEptMapper ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0569 0x03ec  RpcLocator ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0569 0x03ec  RpcLocator ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  RpcSs ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  RpcSs ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  rspndr ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  rspndr ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  RTL8168 ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  RTL8168 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  s3cap ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  s3cap ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  SamSs ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  SamSs ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  sbp2port ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  sbp2port ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  SCardSvr ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  SCardSvr ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  ScDeviceEnum ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  ScDeviceEnum ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  scfilter ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  scfilter ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  Schedule ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  Schedule ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  SCPolicySvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  SCPolicySvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  sdbus ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  sdbus ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  sdstor ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  sdstor ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  secdrv ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  secdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  seclogon ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  seclogon ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  SENS ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  SENS ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  SensrSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  SensrSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  SerCx ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  SerCx ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  SerCx2 ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  SerCx2 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  Serenum ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  Serenum ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  Serial ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  Serial ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  sermouse ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  sermouse ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  SessionEnv ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  SessionEnv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  sfloppy ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  sfloppy ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  SharedAccess ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  SharedAccess ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  ShellHWDetection ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  ShellHWDetection ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0585 0x03ec  SiSRaid2 ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0585 0x03ec  SiSRaid2 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  SiSRaid4 ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  SiSRaid4 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  SkypeUpdate ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  SkypeUpdate ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  smphost ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  smphost ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  SNMPTRAP ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  SNMPTRAP ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  spaceport ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  spaceport ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  SpbCx ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  SpbCx ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  Spooler ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  Spooler ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  sppsvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  sppsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  srv ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  srv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  srv2 ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  srv2 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  srvnet ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  srvnet ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  SSDPSRV ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  SSDPSRV ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  SstpSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  SstpSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  Steam Client Service ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  Steam Client Service ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  stexstor ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  stexstor ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  stisvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  stisvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  storahci ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  storahci ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  storflt ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  storflt ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  stornvme ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  stornvme ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  StorSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  StorSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  storvsc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  storvsc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  storvsp ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  storvsp ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  svsvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  svsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  swenum ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  swenum ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  swprv ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  swprv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  SysMain ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  SysMain ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0600 0x03ec  SystemEventsBroker ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0600 0x03ec  SystemEventsBroker ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  TabletInputService ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  TabletInputService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  TapiSrv ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  TapiSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  Tcpip ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  Tcpip ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  TCPIP6 ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  TCPIP6 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  tcpipreg ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  tcpipreg ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  tdx ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  tdx ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  terminpt ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  terminpt ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  TermService ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  TermService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  Themes ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  Themes ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  THREADORDER ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  THREADORDER ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  TimeBroker ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  TimeBroker ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  TPM ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  TPM ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  TrkWks ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  TrkWks ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  TrustedInstaller ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  TrustedInstaller ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  TsUsbFlt ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  TsUsbFlt ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  TsUsbGD ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  TsUsbGD ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  tunnel ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  tunnel ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  uagp35 ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  uagp35 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  UASPStor ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  UASPStor ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  UCX01000 ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  UCX01000 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  udfs ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  udfs ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  UEFI ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  UEFI ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  UI0Detect ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  UI0Detect ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  uliagpkx ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  uliagpkx ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  umbus ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  umbus ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  UmPass ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  UmPass ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  UmRdpService ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  UmRdpService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0616 0x03ec  upnphost ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0616 0x03ec  upnphost ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  usbccgp ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  usbccgp ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  usbcir ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  usbcir ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  usbehci ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  usbehci ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  usbhub ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  usbhub ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  USBHUB3 ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  USBHUB3 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  usbohci ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  usbohci ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  usbprint ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  usbprint ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  USBSTOR ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  USBSTOR ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  usbuhci ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  usbuhci ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  USBXHCI ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  USBXHCI ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  VaultSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  VaultSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  vdrvroot ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  vdrvroot ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  vds ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  vds ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  VerifierExt ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  VerifierExt ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  vhdmp ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  vhdmp ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  viaide ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  viaide ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  Vid ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  Vid ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  vmbus ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  vmbus ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  VMBusHID ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  VMBusHID ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  vmbusr ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  vmbusr ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  vmicguestinterface ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  vmicguestinterface ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  vmicheartbeat ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  vmicheartbeat ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  vmickvpexchange ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  vmickvpexchange ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  vmicrdv ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  vmicrdv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  vmicshutdown ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  vmicshutdown ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  vmictimesync ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  vmictimesync ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0632 0x03ec  vmicvss ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0632 0x03ec  vmicvss ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  volmgr ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  volmgr ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  volmgrx ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  volmgrx ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  volsnap ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  volsnap ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  vpci ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  vpci ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  vpcivsp ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  vpcivsp ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  vsmraid ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  vsmraid ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  VSS ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  VSS ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  VSTXRAID ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  VSTXRAID ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  vwifibus ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  vwifibus ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  W32Time ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  W32Time ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  WacomPen ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  WacomPen ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  wbengine ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  wbengine ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  WbioSrvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  WbioSrvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  Wcmsvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  Wcmsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  wcncsvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  wcncsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  WcsPlugInService ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  WcsPlugInService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  WdBoot ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  WdBoot ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  Wdf01000 ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  Wdf01000 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  WdFilter ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  WdFilter ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  WdiServiceHost ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  WdiServiceHost ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  WdiSystemHost ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  WdiSystemHost ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  WdNisDrv ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  WdNisDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  WebClient ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  WebClient ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  Wecsvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  Wecsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  WEPHOSTSVC ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  WEPHOSTSVC ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  wercplsupport ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  wercplsupport ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0647 0x03ec  WerSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0647 0x03ec  WerSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  WFPLWFS ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  WFPLWFS ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  WiaRpc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  WiaRpc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  WIMMount ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  WIMMount ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  WinHttpAutoProxySvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  WinHttpAutoProxySvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  Winmgmt ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  Winmgmt ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  WinRM ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  WinRM ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  WlanSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  WlanSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  wlidsvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  wlidsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  WmiAcpi ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  WmiAcpi ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  wmiApSrv ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  wmiApSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  Wof ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  Wof ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  workfolderssvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  workfolderssvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  wpcfltr ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  wpcfltr ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  WPCSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  WPCSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  WPDBusEnum ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  WPDBusEnum ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  WpdUpFltr ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  WpdUpFltr ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  ws2ifsl ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  ws2ifsl ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  wscsvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  wscsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  WSService ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  WSService ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  wuauserv ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  wuauserv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  WudfPf ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  WudfPf ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  WUDFRd ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  WUDFRd ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  wudfsvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  wudfsvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  WUDFWpdFs ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  WUDFWpdFs ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  WwanSvc ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  WwanSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
17:03:26.0663 0x03ec  \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip 
17:03:26.0663 0x03ec  IgfxTray ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  IgfxTray ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0663 0x03ec  HotKeysCmds ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0663 0x03ec  HotKeysCmds ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0679 0x03ec  Persistence ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0679 0x03ec  Persistence ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0679 0x03ec  Gyazo ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0679 0x03ec  Gyazo ( UnsignedFile.Multi.Generic ) - User select action: Skip 
17:03:26.0679 0x03ec  f.lux ( UnsignedFile.Multi.Generic ) - skipped by user
17:03:26.0679 0x03ec  f.lux ( UnsignedFile.Multi.Generic ) - User select action: Skip 
 part 2

  • 0

#27
Naathim
Posted 21 December 2014 - 05:18 PM

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts
Hi,

I am sorry, weekends are ussually difficult for me to answer properly.

TDSSKiller looks even worse than FRST. Legitimate services are unsigned, what shouldn't happen on a x64 system. I'm gonna ask my colleagues about my doubts, please hold on a while more.
  • 0

#28
Naathim
Posted 22 December 2014 - 07:53 AM

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts
After the consult I'd like you to provede me a fresh FRST report with amended settings:



FRST.gif Scan with Farbar Recovery Scan Tool

Please re-run Farbar Recovery Scan Tool.
  • Right-click on FRST.gif icon and select RunAsAdmin.jpg Run as Administrator to start the tool.
    > XP users click run after receipt of Windows Security Warning - Open File.
    > 8 users will be prompted about Windows SmartScreen protection - click More information and Run.
  • Make sure that List BCD option checkbox is checked.
  • Press Scan button and wait.
  • The tool will produce a logfile on your desktop named FRST.txt.
Please include its content in your next reply.
  • 0

#29
Naathim
Posted 27 December 2014 - 08:53 AM

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP