Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

My computer is infected [Solved]


  • This topic is locked This topic is locked

#1
Tony1604

Tony1604

    Member

  • Member
  • PipPip
  • 11 posts

Hello!

My computer seems to be infected with random popups while browsing, and Cryptographic Services uses a lot of cpu and slow down my PC a lot

I used a few maleware/adware removal tools but I can't remember with ones exacly, and also scanned whole pc for viruses, and found none, and also I had to disable  Cryptographic Service to be able to finish the scan

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 09-05-2015
Ran by Tony1604 (administrator) on TONYLAPTOP on 10-05-2015 23:33:02
Running from C:\Users\Tony1604\Desktop
Loaded Profiles: Tony1604 (Available profiles: Tony1604 & Ruža)
Platform: Windows 8.1 Pro (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Windows ® Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyConfigTDPService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\livecomm.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
() C:\Program Files (x86)\AULA\G2 Mouse\G2Monitor.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(mIRC Co. Ltd.) C:\Program Files (x86)\mIRC\mirc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\Windows\system32\DptfPolicyLpmServiceHelper.exe [114048 2013-10-18] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [G2 mouse] => C:\Program Files (x86)\AULA\G2 Mouse\G2Monitor.exe [495616 2013-06-01] ()
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle Corporation)
HKLM-x32\...\Run: [AVG_UI] => "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [134784 2014-02-25] (Qualcomm®Atheros®)
HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\MountPoints2: {d61458f1-0e41-11e4-8256-54271e8346a2} - "E:\setup.exe" 
Startup: C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Toolkit activator for all windows and office.lnk [2015-04-16]
ShortcutTarget: Microsoft Toolkit activator for all windows and office.lnk -> C:\ProgramData\{dc5de392-874e-fafd-dc5d-de3928748e4a}\Microsoft Toolkit activator for all windows and office.exe (No File)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2CF47E20-9948-43A2-A4E5-2899AA418659}: [NameServer] 192.255.160.0,192.255.168.0
 
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-04] ()
FF Plugin: @java.com/DTPlugin,version=10.75.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2015-03-08] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.75.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2015-03-08] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\Microsoft Office\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-04] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-30] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-30] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\Microsoft Office\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin HKU\S-1-5-21-1128951351-2712326424-2671060717-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Tony1604\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-03-24] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation)
 
Chrome: 
=======
CHR HomePage: Default -> https://www.google.hr/
CHR StartupUrls: Default -> "https://www.google.hr/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Angry Birds) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2015-04-16]
CHR Extension: (Facebook) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm [2014-12-08]
CHR Extension: (AdBlock) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-05-06]
CHR Extension: (Bookmark Manager) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-16]
CHR Extension: (Little Alchemy) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd [2015-04-16]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-07]
CHR Extension: (Google Wallet) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-17]
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
ATTENTION: => Could not perform signature verification. Cryptographic Service is not running.
 
R3 AeLookupSvc; C:\Windows\System32\aelupsvc.dll [208896 2014-03-18] (Microsoft Corporation) [File not signed]
S3 ALG; C:\Windows\System32\alg.exe [92672 2013-08-22] (Microsoft Corporation) [File not signed]
S3 AppIDSvc; C:\Windows\System32\appidsvc.dll [37888 2013-08-22] (Microsoft Corporation) [File not signed]
R3 Appinfo; C:\Windows\System32\appinfo.dll [109568 2014-03-18] (Microsoft Corporation) [File not signed]
S3 AppMgmt; C:\Windows\System32\appmgmts.dll [183296 2014-03-18] (Microsoft Corporation) [File not signed]
S3 AppMgmt; C:\Windows\SysWOW64\appmgmts.dll [151040 2014-03-18] (Microsoft Corporation) [File not signed]
S3 AppReadiness; C:\Windows\system32\AppReadiness.dll [530944 2014-03-18] (Microsoft Corporation) [File not signed]
S3 AppXSvc; C:\Windows\system32\appxdeploymentserver.dll [1306624 2014-03-08] (Microsoft Corporation) [File not signed]
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [319104 2014-02-25] (Windows ® Win 7 DDK provider) [File not signed]
R2 AudioEndpointBuilder; C:\Windows\System32\AudioEndpointBuilder.dll [201216 2014-04-06] (Microsoft Corporation) [File not signed]
R2 Audiosrv; C:\Windows\System32\Audiosrv.dll [834048 2014-04-06] (Microsoft Corporation) [File not signed]
S3 AxInstSV; C:\Windows\System32\AxInstSV.dll [109568 2014-03-18] (Microsoft Corporation) [File not signed]
S3 BDESVC; C:\Windows\System32\bdesvc.dll [339456 2014-04-26] (Microsoft Corporation) [File not signed]
R2 BFE; C:\Windows\System32\bfe.dll [827392 2014-04-30] (Microsoft Corporation) [File not signed]
R2 BITS; C:\Windows\System32\qmgr.dll [1017856 2013-08-22] (Microsoft Corporation) [File not signed]
R2 BrokerInfrastructure; C:\Windows\System32\bisrv.dll [269824 2014-03-18] (Microsoft Corporation) [File not signed]
S3 Browser; C:\Windows\System32\browser.dll [134144 2013-08-22] (Microsoft Corporation) [File not signed]
R3 bthserv; C:\Windows\system32\bthserv.dll [92160 2013-08-22] (Microsoft Corporation) [File not signed]
S4 CertPropSvc; C:\Windows\System32\certprop.dll [155136 2013-08-22] (Microsoft Corporation) [File not signed]
S2 CryptSvc; C:\Windows\system32\cryptsvc.dll [129536 2013-08-22] (Microsoft Corporation) [File not signed]
S4 CscService; C:\Windows\System32\cscsvc.dll [778240 2014-03-18] (Microsoft Corporation) [File not signed]
R2 DcomLaunch; C:\Windows\system32\rpcss.dll [753664 2014-03-18] (Microsoft Corporation) [File not signed]
S3 defragsvc; C:\Windows\System32\defragsvc.dll [449536 2014-04-11] (Microsoft Corporation) [File not signed]
R2 DeviceAssociationService; C:\Windows\system32\das.dll [399872 2014-03-18] (Microsoft Corporation) [File not signed]
R3 DeviceInstall; C:\Windows\system32\umpnpmgr.dll [115200 2014-03-06] (Microsoft Corporation) [File not signed]
R2 Dhcp; C:\Windows\system32\dhcpcore.dll [353280 2014-04-30] (Microsoft Corporation) [File not signed]
R2 Dhcp; C:\Windows\SysWOW64\dhcpcore.dll [285696 2014-04-30] (Microsoft Corporation) [File not signed]
S2 Dnscache; C:\Windows\System32\dnsrslvr.dll [254464 2014-03-04] (Microsoft Corporation) [File not signed]
S3 dot3svc; C:\Windows\System32\dot3svc.dll [258560 2013-08-22] (Microsoft Corporation) [File not signed]
R2 DPS; C:\Windows\system32\dps.dll [170496 2013-08-22] (Microsoft Corporation) [File not signed]
R2 DptfParticipantProcessorService; C:\Windows\system32\DptfParticipantProcessorService.exe [117704 2013-10-18] (Intel Corporation)
R2 DptfPolicyConfigTDPService; C:\Windows\system32\DptfPolicyConfigTDPService.exe [116680 2013-10-18] (Intel Corporation)
R2 DptfPolicyCriticalService; C:\Windows\system32\DptfPolicyCriticalService.exe [148160 2013-10-18] (Intel Corporation)
S4 DptfPolicyLpmService; C:\Windows\system32\DptfPolicyLpmService.exe [126952 2013-10-18] (Intel Corporation)
S3 DsmSvc; C:\Windows\System32\DeviceSetupManager.dll [201728 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Eaphost; C:\Windows\System32\eapsvc.dll [107008 2013-08-22] (Microsoft Corporation) [File not signed]
R2 EFS; C:\Windows\system32\efssvc.dll [40448 2013-08-22] (Microsoft Corporation) [File not signed]
R2 EventLog; C:\Windows\System32\wevtsvc.dll [1669632 2013-08-22] (Microsoft Corporation) [File not signed]
R2 EventSystem; C:\Windows\system32\es.dll [468992 2013-08-22] (Microsoft Corporation) [File not signed]
R2 EventSystem; C:\Windows\SysWOW64\es.dll [329728 2013-08-22] (Microsoft Corporation) [File not signed]
S4 EvoSvc; C:\Program Files\Echobit\Evolve\EvoSvc.exe [1583488 2015-04-22] (Echobit LLC)
S3 Fax; C:\Windows\system32\fxssvc.exe [655360 2013-08-22] (Microsoft Corporation) [File not signed]
R3 fdPHost; C:\Windows\system32\fdPHost.dll [21504 2013-08-22] (Microsoft Corporation) [File not signed]
R3 FDResPub; C:\Windows\system32\fdrespub.dll [33280 2013-08-22] (Microsoft Corporation) [File not signed]
S3 fhsvc; C:\Windows\system32\fhsvc.dll [118272 2013-08-22] (Microsoft Corporation) [File not signed]
R3 FontCache; C:\Windows\system32\FntCache.dll [1345536 2014-04-30] (Microsoft Corporation) [File not signed]
R2 gpsvc; C:\Windows\System32\gpsvc.dll [1308160 2014-03-31] (Microsoft Corporation) [File not signed]
R3 hidserv; C:\Windows\system32\hidserv.dll [32256 2013-08-22] (Microsoft Corporation) [File not signed]
R3 hidserv; C:\Windows\SysWOW64\hidserv.dll [29696 2013-08-22] (Microsoft Corporation) [File not signed]
S3 hkmsvc; C:\Windows\system32\kmsvc.dll [97792 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HomeGroupListener; C:\Windows\system32\ListSvc.dll [261632 2013-08-22] (Microsoft Corporation) [File not signed]
R3 HomeGroupProvider; C:\Windows\system32\provsvc.dll [405504 2014-03-18] (Microsoft Corporation) [File not signed]
R3 HomeGroupProvider; C:\Windows\SysWOW64\provsvc.dll [321536 2014-03-18] (Microsoft Corporation) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [111616 2014-02-06] (Microsoft Corporation) [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282072 2014-03-18] (Intel Corporation)
R2 IKEEXT; C:\Windows\System32\ikeext.dll [1063424 2014-04-30] (Microsoft Corporation) [File not signed]
S4 iphlpsvc; C:\Windows\System32\iphlpsvc.dll [903168 2014-03-18] (Microsoft Corporation) [File not signed]
S3 KeyIso; C:\Windows\system32\keyiso.dll [59392 2013-08-22] (Microsoft Corporation) [File not signed]
S3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [44032 2013-08-22] (Microsoft Corporation) [File not signed]
S3 KtmRm; C:\Windows\system32\msdtckrm.dll [357888 2013-08-22] (Microsoft Corporation) [File not signed]
R2 LanmanServer; C:\Windows\system32\srvsvc.dll [323072 2014-03-27] (Microsoft Corporation) [File not signed]
S2 LanmanWorkstation; C:\Windows\System32\wkssvc.dll [284160 2013-08-22] (Microsoft Corporation) [File not signed]
S3 lfsvc; C:\Windows\System32\GeofenceMonitorService.dll [491520 2014-03-14] (Microsoft Corporation) [File not signed]
S3 lfsvc; C:\Windows\SysWOW64\GeofenceMonitorService.dll [357376 2014-03-14] (Microsoft Corporation) [File not signed]
S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2585376 2015-04-26] (IObit)
S3 lltdsvc; C:\Windows\System32\lltdsvc.dll [269824 2013-08-22] (Microsoft Corporation) [File not signed]
R2 lmhosts; C:\Windows\System32\lmhsvc.dll [24576 2013-08-22] (Microsoft Corporation) [File not signed]
R2 LSM; C:\Windows\System32\lsm.dll [710656 2014-03-18] (Microsoft Corporation) [File not signed]
R2 MMCSS; C:\Windows\system32\mmcss.dll [70656 2013-08-22] (Microsoft Corporation) [File not signed]
R2 MpsSvc; C:\Windows\system32\mpssvc.dll [878080 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSDTC; C:\Windows\System32\msdtc.exe [142848 2013-08-22] (Microsoft Corporation) [File not signed]
S4 MSiSCSI; C:\Windows\system32\iscsiexe.dll [150528 2013-08-22] (Microsoft Corporation) [File not signed]
S3 msiserver; C:\Windows\System32\msiexec.exe [62464 2013-08-22] (Microsoft Corporation) [File not signed]
S3 msiserver; C:\Windows\SysWOW64\msiexec.exe [55808 2013-08-22] (Microsoft Corporation) [File not signed]
S4 napagent; C:\Windows\system32\qagentRT.dll [435200 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NcaSvc; C:\Windows\System32\ncasvc.dll [164352 2013-08-22] (Microsoft Corporation) [File not signed]
R3 NcbService; C:\Windows\System32\ncbservice.dll [151040 2013-08-22] (Microsoft Corporation) [File not signed]
R3 NcdAutoSetup; C:\Windows\System32\NcdAutoSetup.dll [73728 2013-08-22] (Microsoft Corporation) [File not signed]
S4 Netlogon; C:\Windows\system32\netlogon.dll [834560 2014-03-06] (Microsoft Corporation) [File not signed]
S4 Netlogon; C:\Windows\SysWOW64\netlogon.dll [688640 2014-03-06] (Microsoft Corporation) [File not signed]
S3 Netman; C:\Windows\System32\netman.dll [254976 2013-08-22] (Microsoft Corporation) [File not signed]
R3 netprofm; C:\Windows\System32\netprofmsvc.dll [525312 2013-08-22] (Microsoft Corporation) [File not signed]
S2 NlaSvc; C:\Windows\System32\nlasvc.dll [387584 2013-08-22] (Microsoft Corporation) [File not signed]
R2 nsi; C:\Windows\system32\nsisvc.dll [29184 2013-08-22] (Microsoft Corporation) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304 2015-05-01] (NVIDIA Corporation)
S3 p2pimsvc; C:\Windows\system32\pnrpsvc.dll [376320 2014-03-18] (Microsoft Corporation) [File not signed]
S3 p2psvc; C:\Windows\system32\p2psvc.dll [433664 2013-08-22] (Microsoft Corporation) [File not signed]
R2 PcaSvc; C:\Windows\System32\pcasvc.dll [471552 2014-03-18] (Microsoft Corporation) [File not signed]
S4 PeerDistSvc; C:\Windows\system32\peerdistsvc.dll [2176000 2014-03-18] (Microsoft Corporation) [File not signed]
S3 PerfHost; C:\Windows\SysWow64\perfhost.exe [21504 2013-08-22] (Microsoft Corporation) [File not signed]
S3 pla; C:\Windows\system32\pla.dll [1443840 2013-08-22] (Microsoft Corporation) [File not signed]
S3 pla; C:\Windows\SysWOW64\pla.dll [1477120 2013-08-22] (Microsoft Corporation) [File not signed]
R3 PlugPlay; C:\Windows\system32\umpnpmgr.dll [115200 2014-03-06] (Microsoft Corporation) [File not signed]
S3 PNRPAutoReg; C:\Windows\system32\pnrpauto.dll [25600 2013-08-22] (Microsoft Corporation) [File not signed]
S3 PNRPsvc; C:\Windows\system32\pnrpsvc.dll [376320 2014-03-18] (Microsoft Corporation) [File not signed]
R3 PolicyAgent; C:\Windows\System32\ipsecsvc.dll [403456 2013-08-22] (Microsoft Corporation) [File not signed]
R2 Power; C:\Windows\system32\umpo.dll [79360 2013-08-22] (Microsoft Corporation) [File not signed]
S3 PrintNotify; C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll [2899968 2013-08-22] (Microsoft Corporation) [File not signed]
R2 ProfSvc; C:\Windows\system32\profsvc.dll [220160 2014-03-04] (Microsoft Corporation) [File not signed]
S3 QWAVE; C:\Windows\system32\qwave.dll [297472 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasAuto; C:\Windows\System32\rasauto.dll [101376 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasMan; C:\Windows\System32\rasmans.dll [534528 2014-03-18] (Microsoft Corporation) [File not signed]
S4 RemoteAccess; C:\Windows\System32\mprdim.dll [223744 2013-08-22] (Microsoft Corporation) [File not signed]
S4 RemoteAccess; C:\Windows\SysWOW64\mprdim.dll [177664 2013-08-22] (Microsoft Corporation) [File not signed]
S4 RemoteRegistry; C:\Windows\system32\regsvc.dll [164864 2013-08-22] (Microsoft Corporation) [File not signed]
R2 RpcEptMapper; C:\Windows\System32\RpcEpMap.dll [79872 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RpcLocator; C:\Windows\system32\locator.exe [10240 2013-08-22] (Microsoft Corporation) [File not signed]
R2 RpcSs; C:\Windows\system32\rpcss.dll [753664 2014-03-18] (Microsoft Corporation) [File not signed]
S2 SCardSvr; C:\Windows\System32\SCardSvr.dll [188416 2013-08-22] (Microsoft Corporation) [File not signed]
S3 ScDeviceEnum; C:\Windows\System32\ScDeviceEnum.dll [130560 2013-08-22] (Microsoft Corporation) [File not signed]
R2 Schedule; C:\Windows\system32\schedsvc.dll [1214976 2014-03-18] (Microsoft Corporation) [File not signed]
S3 SCPolicySvc; C:\Windows\System32\certprop.dll [155136 2013-08-22] (Microsoft Corporation) [File not signed]
S3 seclogon; C:\Windows\system32\seclogon.dll [30720 2013-08-22] (Microsoft Corporation) [File not signed]
R2 SENS; C:\Windows\System32\sens.dll [71680 2013-08-22] (Microsoft Corporation) [File not signed]
S3 SensrSvc; C:\Windows\system32\sensrsvc.dll [220672 2014-03-18] (Microsoft Corporation) [File not signed]
S3 SessionEnv; C:\Windows\system32\sessenv.dll [324096 2014-03-06] (Microsoft Corporation) [File not signed]
S3 SessionEnv; C:\Windows\SysWOW64\sessenv.dll [280576 2014-03-06] (Microsoft Corporation) [File not signed]
S3 SharedAccess; C:\Windows\System32\ipnathlp.dll [433664 2014-03-18] (Microsoft Corporation) [File not signed]
R2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [629760 2013-08-22] (Microsoft Corporation) [File not signed]
R2 ShellHWDetection; C:\Windows\SysWOW64\shsvcs.dll [564736 2013-08-22] (Microsoft Corporation) [File not signed]
S3 smphost; C:\Windows\System32\smphost.dll [13312 2013-08-22] (Microsoft Corporation) [File not signed]
S3 smphost; C:\Windows\SysWOW64\smphost.dll [11776 2013-08-22] (Microsoft Corporation) [File not signed]
S4 SNMPTRAP; C:\Windows\System32\snmptrap.exe [14848 2013-08-22] (Microsoft Corporation) [File not signed]
R2 Spooler; C:\Windows\System32\spoolsv.exe [798208 2013-08-22] (Microsoft Corporation) [File not signed]
R3 SSDPSRV; C:\Windows\System32\ssdpsrv.dll [239616 2013-08-22] (Microsoft Corporation) [File not signed]
S3 SstpSvc; C:\Windows\system32\sstpsvc.dll [144384 2013-08-22] (Microsoft Corporation) [File not signed]
R2 stisvc; C:\Windows\System32\wiaservc.dll [634368 2013-08-22] (Microsoft Corporation) [File not signed]
S3 StorSvc; C:\Windows\system32\storsvc.dll [19968 2013-08-22] (Microsoft Corporation) [File not signed]
S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18944 2013-08-22] (Microsoft Corporation) [File not signed]
S3 svsvc; C:\Windows\system32\svsvc.dll [13312 2013-08-22] (Microsoft Corporation) [File not signed]
S4 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 swprv; C:\Windows\System32\swprv.dll [718336 2014-03-27] (Microsoft Corporation) [File not signed]
S4 SysMain; C:\Windows\system32\sysmain.dll [1192448 2014-03-18] (Microsoft Corporation) [File not signed]
R2 SystemEventsBroker; C:\Windows\System32\SystemEventsBrokerServer.dll [282112 2014-03-18] (Microsoft Corporation) [File not signed]
S3 TabletInputService; C:\Windows\System32\TabSvc.dll [147456 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TapiSrv; C:\Windows\System32\tapisrv.dll [306688 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TapiSrv; C:\Windows\SysWOW64\tapisrv.dll [248320 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TermService; C:\Windows\System32\termsrv.dll [1018880 2014-04-14] (Microsoft Corporation) [File not signed]
R2 Themes; C:\Windows\system32\themeservice.dll [50688 2013-08-22] (Microsoft Corporation) [File not signed]
S3 THREADORDER; C:\Windows\system32\mmcss.dll [70656 2013-08-22] (Microsoft Corporation) [File not signed]
R3 TimeBroker; C:\Windows\System32\TimeBrokerServer.dll [245760 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TrkWks; C:\Windows\System32\trkwks.dll [122368 2013-08-22] (Microsoft Corporation) [File not signed]
S4 TrustedInstaller; C:\Windows\servicing\TrustedInstaller.exe [99840 2014-03-18] (Microsoft Corporation) [File not signed]
S3 UI0Detect; C:\Windows\system32\UI0Detect.exe [40960 2013-08-22] (Microsoft Corporation) [File not signed]
S3 UmRdpService; C:\Windows\System32\umrdp.dll [289280 2014-03-18] (Microsoft Corporation) [File not signed]
S3 upnphost; C:\Windows\System32\upnphost.dll [436224 2013-08-22] (Microsoft Corporation) [File not signed]
S3 upnphost; C:\Windows\SysWOW64\upnphost.dll [307200 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VaultSvc; C:\Windows\System32\vaultsvc.dll [248832 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vds; C:\Windows\System32\vds.exe [1283584 2014-03-18] (Microsoft Corporation) [File not signed]
S3 vmicguestinterface; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmicheartbeat; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmickvpexchange; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmicrdv; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmicshutdown; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmictimesync; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmicvss; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VSS; C:\Windows\system32\vssvc.exe [1436160 2014-03-27] (Microsoft Corporation) [File not signed]
S3 W32Time; C:\Windows\system32\w32time.dll [404480 2013-08-22] (Microsoft Corporation) [File not signed]
S3 wbengine; C:\Windows\system32\wbengine.exe [1543680 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WbioSrvc; C:\Windows\System32\wbiosrvc.dll [453632 2014-03-18] (Microsoft Corporation) [File not signed]
R2 Wcmsvc; C:\Windows\System32\wcmsvc.dll [366080 2014-03-18] (Microsoft Corporation) [File not signed]
S3 wcncsvc; C:\Windows\System32\wcncsvc.dll [459776 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WcsPlugInService; C:\Windows\System32\WcsPlugInService.dll [41984 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WcsPlugInService; C:\Windows\SysWOW64\WcsPlugInService.dll [34304 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WdiServiceHost; C:\Windows\system32\wdi.dll [91136 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WdiServiceHost; C:\Windows\SysWOW64\wdi.dll [80896 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WdiSystemHost; C:\Windows\system32\wdi.dll [91136 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WdiSystemHost; C:\Windows\SysWOW64\wdi.dll [80896 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation)
S3 WebClient; C:\Windows\System32\webclnt.dll [226816 2014-04-09] (Microsoft Corporation) [File not signed]
S3 WebClient; C:\Windows\SysWOW64\webclnt.dll [198656 2014-04-09] (Microsoft Corporation) [File not signed]
S3 Wecsvc; C:\Windows\system32\wecsvc.dll [215040 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WEPHOSTSVC; C:\Windows\system32\wephostsvc.dll [24576 2013-08-22] (Microsoft Corporation) [File not signed]
S3 wercplsupport; C:\Windows\System32\wercplsupport.dll [81408 2014-03-18] (Microsoft Corporation) [File not signed]
R3 WerSvc; C:\Windows\System32\WerSvc.dll [107008 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WiaRpc; C:\Windows\System32\wiarpc.dll [66048 2013-08-22] (Microsoft Corporation) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation)
R3 WinHttpAutoProxySvc; C:\Windows\system32\winhttp.dll [786432 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WinHttpAutoProxySvc; C:\Windows\SysWOW64\winhttp.dll [589312 2013-08-22] (Microsoft Corporation) [File not signed]
R2 Winmgmt; C:\Windows\system32\wbem\WMIsvc.dll [220672 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WinRM; C:\Windows\system32\WsmSvc.dll [2479616 2014-03-06] (Microsoft Corporation) [File not signed]
S3 WinRM; C:\Windows\SysWOW64\WsmSvc.dll [2030080 2014-03-06] (Microsoft Corporation) [File not signed]
R2 WlanSvc; C:\Windows\System32\wlansvc.dll [1527296 2014-03-19] (Microsoft Corporation) [File not signed]
S3 wlidsvc; C:\Windows\system32\wlidsvc.dll [1576960 2014-03-18] (Microsoft Corporation) [File not signed]
S3 wmiApSrv; C:\Windows\system32\wbem\WmiApSrv.exe [195072 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [1403392 2014-03-18] (Microsoft Corporation) [File not signed]
S3 workfolderssvc; C:\Windows\system32\workfolderssvc.dll [1584128 2014-04-03] (Microsoft Corporation) [File not signed]
S3 WPCSvc; C:\Windows\System32\wpcsvc.dll [12288 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WPCSvc; C:\Windows\SysWOW64\wpcsvc.dll [11264 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WPDBusEnum; C:\Windows\system32\wpdbusenum.dll [84480 2013-08-22] (Microsoft Corporation) [File not signed]
R2 wscsvc; C:\Windows\System32\wscsvc.dll [135168 2014-04-09] (Microsoft Corporation) [File not signed]
R2 WSearch; C:\Windows\system32\SearchIndexer.exe [845824 2014-03-18] (Microsoft Corporation) [File not signed]
R2 WSearch; C:\Windows\SysWOW64\SearchIndexer.exe [658432 2014-03-18] (Microsoft Corporation) [File not signed]
R3 wuauserv; C:\Windows\system32\wuaueng.dll [3463680 2014-07-24] (Microsoft Corporation) [File not signed]
R3 wudfsvc; C:\Windows\System32\WUDFSvc.dll [99840 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WwanSvc; C:\Windows\System32\wwansvc.dll [510464 2013-08-22] (Microsoft Corporation) [File not signed]
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-02-25] (Atheros) [File not signed]
S2 AVGIDSAgent; No ImagePath
S2 avgwd; No ImagePath
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 1394ohci; C:\Windows\System32\drivers\1394ohci.sys [231424 2013-08-22] (Microsoft Corporation) [File not signed]
S3 acpipagr; C:\Windows\System32\drivers\acpipagr.sys [10240 2013-08-22] (Microsoft Corporation) [File not signed]
S3 AcpiPmi; C:\Windows\System32\drivers\acpipmi.sys [12288 2013-08-22] (Microsoft Corporation) [File not signed]
S3 acpitime; C:\Windows\System32\drivers\acpitime.sys [10752 2013-08-22] (Microsoft Corporation) [File not signed]
R1 AFD; C:\Windows\system32\drivers\afd.sys [563200 2014-05-30] (Microsoft Corporation) [File not signed]
R1 ahcache; C:\Windows\System32\DRIVERS\ahcache.sys [76800 2013-08-22] (Microsoft Corporation) [File not signed]
S3 AmdK8; C:\Windows\System32\drivers\amdk8.sys [95744 2013-08-22] (Microsoft Corporation) [File not signed]
S3 AmdPPM; C:\Windows\System32\drivers\amdppm.sys [98816 2013-08-22] (Microsoft Corporation) [File not signed]
S3 AppID; C:\Windows\system32\drivers\appid.sys [83456 2014-03-18] (Microsoft Corporation) [File not signed]
S3 AsyncMac; C:\Windows\system32\DRIVERS\asyncmac.sys [26624 2013-08-22] (Microsoft Corporation) [File not signed]
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3892224 2014-03-06] (Qualcomm Atheros Communications, Inc.) [File not signed]
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [69904 2014-03-31] (ASUS Corporation)
S3 avc3; C:\Windows\System32\DRIVERS\avc3.sys [727592 2015-01-06] (BitDefender)
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [261496 2015-01-06] (BitDefender)
S3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [601360 2015-01-06] (BitDefender)
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [21152 2015-03-27] (AVG Technologies CZ, s.r.o.)
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [162784 2015-03-11] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [284128 2015-04-09] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [213984 2015-03-11] (AVG Technologies CZ, s.r.o.)
R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [256992 2015-04-15] (AVG Technologies CZ, s.r.o.)
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [344544 2015-03-11] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [137184 2015-04-03] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [40928 2015-03-20] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [293856 2015-04-07] (AVG Technologies CZ, s.r.o.)
R1 BasicDisplay; C:\Windows\System32\drivers\BasicDisplay.sys [50688 2013-08-22] (Microsoft Corporation) [File not signed]
R1 BasicRender; C:\Windows\System32\drivers\BasicRender.sys [33280 2014-03-18] (Microsoft Corporation) [File not signed]
R3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [102912 2013-08-22] (Microsoft Corporation) [File not signed]
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2014-02-25] (Qualcomm Atheros)
S3 BthAvrcpTg; C:\Windows\System32\drivers\BthAvrcpTg.sys [36992 2013-08-22] (Microsoft Corporation) [File not signed]
R3 BthEnum; C:\Windows\System32\drivers\BthEnum.sys [53248 2013-08-22] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [57856 2013-08-22] (Microsoft Corporation) [File not signed]
S3 bthhfhid; C:\Windows\System32\drivers\BthHFHid.sys [30720 2013-08-22] (Microsoft Corporation) [File not signed]
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [64000 2014-03-18] (Microsoft Corporation) [File not signed]
R3 BthPan; C:\Windows\system32\DRIVERS\bthpan.sys [118272 2013-08-22] (Microsoft Corporation) [File not signed]
S3 BTHPORT; C:\Windows\System32\Drivers\BTHport.sys [1200128 2014-04-11] (Microsoft Corporation) [File not signed]
R3 BTHUSB; C:\Windows\System32\Drivers\BTHUSB.sys [81920 2014-03-18] (Microsoft Corporation) [File not signed]
S4 cdfs; C:\Windows\System32\DRIVERS\cdfs.sys [88576 2013-08-22] (Microsoft Corporation) [File not signed]
R1 cdrom; C:\Windows\System32\drivers\cdrom.sys [164352 2013-08-22] (Microsoft Corporation) [File not signed]
S3 circlass; C:\Windows\System32\drivers\circlass.sys [44032 2013-08-22] (Microsoft Corporation) [File not signed]
R3 CmBatt; C:\Windows\System32\drivers\CmBatt.sys [25472 2013-08-22] (Microsoft Corporation) [File not signed]
R3 CompositeBus; C:\Windows\System32\drivers\CompositeBus.sys [36352 2013-08-22] (Microsoft Corporation) [File not signed]
R3 condrv; C:\Windows\System32\drivers\condrv.sys [43008 2013-08-22] (Microsoft Corporation) [File not signed]
R1 CSC; C:\Windows\System32\drivers\csc.sys [559616 2014-03-18] (Microsoft Corporation) [File not signed]
R1 Dfsc; C:\Windows\System32\Drivers\dfsc.sys [134144 2014-03-06] (Microsoft Corporation) [File not signed]
S3 dmvsc; C:\Windows\System32\drivers\dmvsc.sys [29696 2013-08-22] (Microsoft Corporation) [File not signed]
R3 DptfDevDram; C:\Windows\system32\DRIVERS\DptfDevDram.sys [145640 2013-10-18] (Intel Corporation)
R3 DptfDevPch; C:\Windows\system32\DRIVERS\DptfDevPch.sys [116752 2013-10-18] (Intel Corporation)
R3 DptfDevProc; C:\Windows\system32\DRIVERS\DptfDevProc.sys [289744 2013-10-18] (Intel Corporation)
R3 DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [494296 2013-10-18] (Intel Corporation)
S3 ErrDev; C:\Windows\System32\drivers\errdev.sys [10240 2013-08-22] (Microsoft Corporation) [File not signed]
S3 exfat; C:\Windows\System32\Drivers\exfat.sys [200704 2013-08-22] (Microsoft Corporation) [File not signed]
S3 fdc; C:\Windows\System32\drivers\fdc.sys [30720 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Filetrace; C:\Windows\System32\drivers\filetrace.sys [34816 2013-08-22] (Microsoft Corporation) [File not signed]
S3 flpydisk; C:\Windows\System32\drivers\flpydisk.sys [25088 2013-08-22] (Microsoft Corporation) [File not signed]
S3 FxPPM; C:\Windows\System32\drivers\fxppm.sys [27136 2013-08-22] (Microsoft Corporation) [File not signed]
S3 gencounter; C:\Windows\System32\drivers\vmgencounter.sys [11264 2013-08-22] (Microsoft Corporation) [File not signed]
S3 ggsomc; C:\Windows\System32\drivers\ggsomc.sys [30424 2015-03-10] (Sony Mobile Communications)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45112 2014-12-13] (LogMeIn Inc.)
S3 HdAudAddService; C:\Windows\system32\drivers\HdAudio.sys [395776 2013-08-22] (Microsoft Corporation) [File not signed]
R3 HDAudBus; C:\Windows\System32\drivers\HDAudBus.sys [77312 2014-03-18] (Microsoft Corporation) [File not signed]
S3 HidBatt; C:\Windows\System32\drivers\HidBatt.sys [26624 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HidBth; C:\Windows\System32\drivers\hidbth.sys [96768 2013-08-22] (Microsoft Corporation) [File not signed]
S3 hidi2c; C:\Windows\System32\drivers\hidi2c.sys [41472 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HidIr; C:\Windows\System32\drivers\hidir.sys [45568 2013-08-22] (Microsoft Corporation) [File not signed]
R3 HidUsb; C:\Windows\System32\drivers\hidusb.sys [33280 2014-03-06] (Microsoft Corporation) [File not signed]
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-05-02] (REALiX™)
S3 hyperkbd; C:\Windows\System32\drivers\hyperkbd.sys [13824 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HyperVideo; C:\Windows\system32\DRIVERS\HyperVideo.sys [22016 2013-08-22] (Microsoft Corporation) [File not signed]
R3 i8042prt; C:\Windows\System32\drivers\i8042prt.sys [107520 2013-08-22] (Microsoft Corporation) [File not signed]
R3 igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [3729920 2014-03-18] (Intel Corporation) [File not signed]
R2 IntelHaxm; C:\Windows\system32\DRIVERS\IntelHaxm.sys [84992 2015-01-30] (Intel  Corporation) [File not signed]
R3 intelppm; C:\Windows\System32\drivers\intelppm.sys [98816 2013-08-22] (Microsoft Corporation) [File not signed]
S3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [84992 2013-08-22] (Microsoft Corporation) [File not signed]
S3 IPMIDRV; C:\Windows\System32\drivers\IPMIDrv.sys [79360 2014-03-06] (Microsoft Corporation) [File not signed]
S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [142848 2014-03-18] (Microsoft Corporation) [File not signed]
S3 IRENUM; C:\Windows\System32\drivers\irenum.sys [17920 2013-08-22] (Microsoft Corporation) [File not signed]
R3 kbdhid; C:\Windows\System32\drivers\kbdhid.sys [32256 2013-08-22] (Microsoft Corporation) [File not signed]
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( )
R3 kdnic; C:\Windows\system32\DRIVERS\kdnic.sys [19456 2013-08-22] (Microsoft Corporation) [File not signed]
R3 ksthunk; C:\Windows\system32\drivers\ksthunk.sys [21248 2013-08-22] (Microsoft Corporation) [File not signed]
R2 lltdio; C:\Windows\system32\DRIVERS\lltdio.sys [59392 2013-08-22] (Microsoft Corporation) [File not signed]
R2 luafv; C:\Windows\system32\drivers\luafv.sys [124416 2014-03-18] (Microsoft Corporation) [File not signed]
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2014-07-17] (Intel Corporation)
S3 Modem; C:\Windows\System32\drivers\modem.sys [40960 2013-08-22] (Microsoft Corporation) [File not signed]
R3 monitor; C:\Windows\System32\drivers\monitor.sys [30208 2013-08-22] (Microsoft Corporation) [File not signed]
R3 mouhid; C:\Windows\System32\drivers\mouhid.sys [30208 2013-08-22] (Microsoft Corporation) [File not signed]
R3 mpsdrv; C:\Windows\System32\drivers\mpsdrv.sys [74240 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [140288 2014-03-06] (Microsoft Corporation) [File not signed]
R3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [402432 2014-04-30] (Microsoft Corporation) [File not signed]
R2 mrxsmb10; C:\Windows\System32\DRIVERS\mrxsmb10.sys [283648 2014-03-06] (Microsoft Corporation) [File not signed]
R3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [206848 2014-05-31] (Microsoft Corporation) [File not signed]
S3 MsBridge; C:\Windows\system32\DRIVERS\bridge.sys [115712 2013-08-22] (Microsoft Corporation) [File not signed]
S3 mshidkmdf; C:\Windows\System32\drivers\mshidkmdf.sys [8192 2013-08-22] (Microsoft Corporation) [File not signed]
S3 mshidumdf; C:\Windows\System32\drivers\mshidumdf.sys [9728 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSKSSRV; C:\Windows\system32\drivers\MSKSSRV.sys [10624 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MsLldp; C:\Windows\system32\DRIVERS\mslldp.sys [66560 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSPCLOCK; C:\Windows\system32\drivers\MSPCLOCK.sys [7040 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSPQM; C:\Windows\system32\drivers\MSPQM.sys [6784 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSTEE; C:\Windows\system32\drivers\MSTEE.sys [7936 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MTConfig; C:\Windows\System32\drivers\MTConfig.sys [13312 2013-08-22] (Microsoft Corporation) [File not signed]
R3 NativeWifiP; C:\Windows\system32\DRIVERS\nwifi.sys [443904 2014-03-19] (Microsoft Corporation) [File not signed]
S3 NdisCap; C:\Windows\system32\DRIVERS\ndiscap.sys [43008 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NdisImPlatform; C:\Windows\system32\DRIVERS\NdisImPlatform.sys [124928 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NdisTapi; C:\Windows\system32\DRIVERS\ndistapi.sys [24576 2013-08-22] (Microsoft Corporation) [File not signed]
R3 Ndisuio; C:\Windows\system32\DRIVERS\ndisuio.sys [60416 2013-08-22] (Microsoft Corporation) [File not signed]
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NdisWan; C:\Windows\system32\DRIVERS\ndiswan.sys [220672 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NdisWanLegacy; C:\Windows\system32\DRIVERS\ndiswan.sys [220672 2013-08-22] (Microsoft Corporation) [File not signed]
R2 Ndu; C:\Windows\System32\drivers\Ndu.sys [103424 2013-08-22] (Microsoft Corporation) [File not signed]
R1 NetBIOS; C:\Windows\System32\DRIVERS\netbios.sys [48128 2013-08-22] (Microsoft Corporation) [File not signed]
R1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [282624 2013-08-22] (Microsoft Corporation) [File not signed]
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation) [File not signed]
R1 npsvctrig; C:\Windows\System32\drivers\npsvctrig.sys [23040 2013-08-22] (Microsoft Corporation) [File not signed]
R1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [39936 2013-08-22] (Microsoft Corporation) [File not signed]
R1 Null; C:\Windows\System32\Drivers\Null.sys [5632 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Parport; C:\Windows\System32\drivers\parport.sys [94208 2013-08-22] (Microsoft Corporation) [File not signed]
R2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [663040 2014-03-18] (Microsoft Corporation) [File not signed]
R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [14136 2014-01-03] (Windows ® Win 7 DDK provider)
S3 pneteth; C:\Windows\system32\DRIVERS\pneteth.sys [15360 2011-11-25] (June Fabrics Technology Inc.) [File not signed]
S3 PptpMiniport; C:\Windows\system32\DRIVERS\raspptp.sys [107520 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Processor; C:\Windows\System32\drivers\processr.sys [92160 2013-08-22] (Microsoft Corporation) [File not signed]
R1 Psched; C:\Windows\system32\DRIVERS\pacer.sys [151552 2013-08-22] (Microsoft Corporation) [File not signed]
S3 QWAVEdrv; C:\Windows\system32\drivers\qwavedrv.sys [47104 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasAcd; C:\Windows\System32\DRIVERS\rasacd.sys [17408 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasAgileVpn; C:\Windows\system32\DRIVERS\AgileVpn.sys [96768 2014-04-30] (Microsoft Corporation) [File not signed]
S3 Rasl2tp; C:\Windows\system32\DRIVERS\rasl2tp.sys [120832 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasPppoe; C:\Windows\system32\DRIVERS\raspppoe.sys [84992 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasSstp; C:\Windows\system32\DRIVERS\rassstp.sys [96256 2013-08-22] (Microsoft Corporation) [File not signed]
R1 rdbss; C:\Windows\System32\DRIVERS\rdbss.sys [408576 2014-03-18] (Microsoft Corporation) [File not signed]
R3 rdpbus; C:\Windows\System32\drivers\rdpbus.sys [22528 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RDPDR; C:\Windows\System32\drivers\rdpdr.sys [195584 2014-03-18] (Microsoft Corporation) [File not signed]
R3 RFCOMM; C:\Windows\system32\DRIVERS\rfcomm.sys [167424 2014-03-18] (Microsoft Corporation) [File not signed]
R2 rspndr; C:\Windows\system32\DRIVERS\rspndr.sys [80384 2013-08-22] (Microsoft Corporation) [File not signed]
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [423128 2014-07-18] (Realsil Semiconductor Corporation)
S3 s3cap; C:\Windows\System32\drivers\vms3cap.sys [7168 2013-08-22] (Microsoft Corporation) [File not signed]
S3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [40960 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Serenum; C:\Windows\System32\drivers\serenum.sys [23040 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Serial; C:\Windows\System32\drivers\serial.sys [83456 2013-08-22] (Microsoft Corporation) [File not signed]
S3 sermouse; C:\Windows\System32\drivers\sermouse.sys [26112 2013-08-22] (Microsoft Corporation) [File not signed]
S3 sfloppy; C:\Windows\System32\drivers\sfloppy.sys [17408 2013-08-22] (Microsoft Corporation) [File not signed]
R2 srv; C:\Windows\System32\DRIVERS\srv.sys [454656 2014-03-18] (Microsoft Corporation) [File not signed]
R3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [677376 2014-04-03] (Microsoft Corporation) [File not signed]
R3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [246272 2014-03-27] (Microsoft Corporation) [File not signed]
S3 storvsp; C:\Windows\System32\drivers\storvsp.sys [68608 2014-03-18] (Microsoft Corporation) [File not signed]
R2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [49152 2014-03-06] (Microsoft Corporation) [File not signed]
R1 tdx; C:\Windows\system32\DRIVERS\tdx.sys [107520 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [56320 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TsUsbGD; C:\Windows\System32\drivers\TsUsbGD.sys [29696 2013-08-22] (Microsoft Corporation) [File not signed]
S3 tunnel; C:\Windows\system32\DRIVERS\tunnel.sys [154112 2013-08-22] (Microsoft Corporation) [File not signed]
S4 udfs; C:\Windows\System32\DRIVERS\udfs.sys [316928 2013-08-22] (Microsoft Corporation) [File not signed]
R3 umbus; C:\Windows\System32\drivers\umbus.sys [46080 2013-08-22] (Microsoft Corporation) [File not signed]
S3 UmPass; C:\Windows\System32\drivers\umpass.sys [11776 2013-08-22] (Microsoft Corporation) [File not signed]
S3 usbcir; C:\Windows\System32\drivers\usbcir.sys [98304 2013-08-22] (Microsoft Corporation) [File not signed]
S3 usbohci; C:\Windows\System32\drivers\usbohci.sys [30208 2013-08-22] (Microsoft Corporation) [File not signed]
S3 usbprint; C:\Windows\System32\drivers\usbprint.sys [26112 2013-08-22] (Microsoft Corporation) [File not signed]
S3 usbser; C:\Windows\system32\DRIVERS\usbser.sys [33280 2013-08-22] (Microsoft Corporation) [File not signed]
S3 usbuhci; C:\Windows\System32\drivers\usbuhci.sys [37376 2014-05-31] (Microsoft Corporation) [File not signed]
R3 usbvideo; C:\Windows\System32\Drivers\usbvideo.sys [212224 2013-08-22] (Microsoft Corporation) [File not signed]
S3 usb_rndisx; C:\Windows\system32\DRIVERS\usb8023x.sys [20992 2013-08-22] (Microsoft Corporation) [File not signed]
R3 VClone; C:\Windows\System32\drivers\VClone.sys [34816 2013-07-24] (Elaborate Bytes AG) [File not signed]
S3 Vid; C:\Windows\System32\drivers\Vid.sys [220672 2014-03-18] (Microsoft Corporation) [File not signed]
S3 VMBusHID; C:\Windows\System32\drivers\VMBusHID.sys [21760 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmbusr; C:\Windows\System32\drivers\vmbusr.sys [129536 2014-03-18] (Microsoft Corporation) [File not signed]
S3 vpcivsp; C:\Windows\System32\drivers\vpcivsp.sys [65536 2014-03-18] (Microsoft Corporation) [File not signed]
R3 vwifibus; C:\Windows\System32\drivers\vwifibus.sys [24576 2013-08-22] (Microsoft Corporation) [File not signed]
R1 vwififlt; C:\Windows\system32\DRIVERS\vwififlt.sys [71680 2014-04-30] (Microsoft Corporation) [File not signed]
R3 vwifimp; C:\Windows\system32\DRIVERS\vwifimp.sys [38912 2014-04-30] (Microsoft Corporation) [File not signed]
S3 WacomPen; C:\Windows\System32\drivers\wacompen.sys [26752 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Wanarp; C:\Windows\system32\DRIVERS\wanarp.sys [79872 2013-08-22] (Microsoft Corporation) [File not signed]
R1 Wanarpv6; C:\Windows\system32\DRIVERS\wanarp.sys [79872 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation)
S3 WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [78848 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WmiAcpi; C:\Windows\System32\drivers\wmiacpi.sys [16384 2013-08-22] (Microsoft Corporation) [File not signed]
S4 ws2ifsl; C:\Windows\system32\drivers\ws2ifsl.sys [21504 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [110592 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WUDFRd; C:\Windows\System32\drivers\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WUDFSensorLP; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WUDFWpdFs; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WUDFWpdMtp; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation) [File not signed]
S1 BAPIDRV; system32\DRIVERS\BAPIDRV64.sys [X]
S3 cpuz137; \??\C:\Users\Tony1604\AppData\Local\Temp\cpuz137\cpuz137_x64.sys [X]
S3 NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [X]
S4 nvvad_WaveExtensible; \SystemRoot\system32\drivers\nvvad64v.sys [X]
S3 SzCCID; \SystemRoot\system32\DRIVERS\SzCCID.sys [X]
S3 VBoxNetFlt; \SystemRoot\system32\DRIVERS\VBoxNetFlt.sys [X]
S3 vpnva; \SystemRoot\system32\DRIVERS\vpnva64-6.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-05-10 23:33 - 2015-05-10 23:37 - 00054612 _____ () C:\Users\Tony1604\Desktop\FRST.txt
2015-05-10 23:32 - 2015-05-10 23:33 - 00000000 ____D () C:\FRST
2015-05-10 23:31 - 2015-05-10 23:31 - 00000000 ____D () C:\Windows\LastGood
2015-05-10 23:30 - 2015-05-10 23:31 - 02102784 _____ (Farbar) C:\Users\Tony1604\Desktop\FRST64.exe
2015-05-10 23:04 - 2015-05-10 23:24 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\mIRC
2015-05-10 23:04 - 2015-05-10 23:04 - 00000967 _____ () C:\Users\Public\Desktop\mIRC.lnk
2015-05-10 23:04 - 2015-05-10 23:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mIRC
2015-05-10 23:04 - 2015-05-10 23:04 - 00000000 ____D () C:\Program Files (x86)\mIRC
2015-05-10 23:01 - 2015-05-10 23:01 - 02469824 _____ (mIRC Co. Ltd.) C:\Users\Tony1604\Downloads\mirc741.exe
2015-05-10 22:50 - 2015-05-10 23:02 - 36664464 _____ (NVIDIA Corporation) C:\Users\Tony1604\Downloads\GeForce_Experience_v2.4.3.22.exe
2015-05-10 22:45 - 2015-05-10 23:09 - 286451987 _____ () C:\Users\Tony1604\Downloads\GTAV.Retail.to.Steam.rar
2015-05-10 22:45 - 2015-05-10 22:45 - 01977063 _____ () C:\Users\Tony1604\Downloads\GT4.5.CRK.RLD.rar
2015-05-10 22:30 - 2015-05-10 22:30 - 00000000 ____D () C:\Windows\LastGood.Tmp
2015-05-10 22:22 - 2015-05-10 22:22 - 00000000 ____D () C:\NVIDIA
2015-05-10 21:59 - 2015-05-10 22:21 - 283201840 _____ (NVIDIA Corporation) C:\Users\Tony1604\Downloads\350.12-notebook-win8-win7-64bit-international-whql.exe
2015-05-10 21:56 - 2015-05-10 22:30 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-05-10 21:56 - 2014-10-16 16:11 - 06883136 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-05-10 21:56 - 2014-10-16 16:11 - 03533632 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-05-10 21:56 - 2014-10-16 16:11 - 02559808 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-05-10 21:56 - 2014-10-16 16:11 - 01089736 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2015-05-10 21:56 - 2014-10-16 16:11 - 00933064 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-05-10 21:56 - 2014-10-16 16:11 - 00384200 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-05-10 21:56 - 2014-10-16 16:11 - 00067072 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2015-05-10 21:56 - 2014-10-16 16:11 - 00061640 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-05-10 21:56 - 2014-10-15 02:48 - 04047877 _____ () C:\Windows\system32\nvcoproc.bin
2015-05-10 21:36 - 2015-05-10 23:03 - 00000000 ____D () C:\NvidiaLogging
2015-05-10 21:31 - 2015-05-10 21:31 - 00000000 _____ () C:\Windows\setuperr.log
2015-05-10 21:31 - 2015-05-10 21:31 - 00000000 _____ () C:\Windows\setupact.log
2015-05-10 21:29 - 2015-05-10 21:44 - 00000000 ____D () C:\Users\Tony1604\Downloads\3DMGAME-Grand.Theft.Auto.V.Update.5(v1.0.350.2).and.Crack.v5-3DM
2015-05-05 22:56 - 2015-05-05 22:58 - 00000000 _____ () C:\Recovery.txt
2015-05-05 22:56 - 2015-05-05 22:56 - 00000000 __SHD () C:\Recovery
2015-05-05 21:00 - 2015-05-05 21:00 - 00000000 ___HD () C:\$SysReset
2015-05-05 15:29 - 2015-05-05 15:29 - 00000686 __RSH () C:\ProgramData\ntuser.pol
2015-05-05 13:12 - 2015-05-05 13:12 - 00002412 _____ () C:\Windows\System32\Tasks\Uninstaller_SkipUac_Tony1604
2015-05-05 13:12 - 2015-05-05 13:12 - 00000306 _____ () C:\Windows\Tasks\Uninstaller_SkipUac_Tony1604.job
2015-05-05 13:04 - 2015-05-05 13:04 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\TuneUp Software
2015-05-05 12:38 - 2015-05-05 12:38 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Apps\2.0
2015-05-05 10:16 - 2015-05-05 10:16 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\AVG2015
2015-05-05 10:12 - 2015-05-05 10:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-05-05 10:11 - 2015-05-05 14:47 - 00000000 ____D () C:\Program Files (x86)\AVG
2015-05-05 10:06 - 2015-05-05 10:06 - 00001760 _____ () C:\Users\Tony1604\Desktop\IObit Uninstaller.lnk
2015-05-05 10:00 - 2015-05-05 10:37 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Avg2015
2015-05-04 16:04 - 2015-05-04 18:53 - 3991994368 _____ () C:\Users\Tony1604\Downloads\WINDOWS 7 ALL IN ONE(PRE-ACTIVATED).ISO
2015-05-03 11:24 - 2015-05-03 11:24 - 00000000 ____D () C:\04ee0def8bac2efda312672267
2015-05-03 11:03 - 2015-05-03 11:03 - 00000000 ____D () C:\Users\Tony1604\Tracing
2015-05-03 11:02 - 2015-05-03 11:02 - 00000000 ____D () C:\Windows\en
2015-05-03 11:01 - 2015-05-03 11:01 - 00002506 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
2015-05-03 11:01 - 2015-05-03 11:01 - 00001478 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2015-05-03 11:01 - 2015-05-03 11:01 - 00001404 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2015-05-03 11:01 - 2015-05-03 11:01 - 00001331 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2015-05-03 11:01 - 2015-05-03 11:01 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-05-03 11:01 - 2015-05-03 11:01 - 00000000 ____D () C:\Program Files\Windows Live
2015-05-03 11:01 - 2015-05-03 11:01 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2015-05-03 10:59 - 2015-05-03 10:59 - 00003106 _____ () C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1128951351-2712326424-2671060717-1001
2015-05-03 10:59 - 2015-05-03 10:59 - 00000383 _____ () C:\Windows\DirectX.log
2015-05-03 10:59 - 2015-05-03 10:59 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2015-05-03 10:58 - 2015-05-03 11:03 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Windows Live
2015-05-03 10:57 - 2015-05-03 10:57 - 00000000 ____D () C:\fc7b9e2c3f4ba3c46771754f40
2015-05-03 10:38 - 2015-05-03 10:38 - 00002355 _____ () C:\Users\Ruža\Desktop\Pokretač aplikacija sustava Chrome.lnk
2015-05-03 10:38 - 2015-05-03 10:38 - 00000000 ____D () C:\Users\Ruža\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-05-03 10:38 - 2015-05-03 10:38 - 00000000 ____D () C:\Users\Ruža\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacije sustava Chrome
2015-05-02 23:24 - 2015-05-02 23:24 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Supremus Corporation
2015-05-02 11:36 - 2015-05-02 22:48 - 00002884 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (Tony1604)
2015-05-02 11:36 - 2015-05-02 11:36 - 00026528 _____ (REALiX™) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
2015-05-02 11:28 - 2015-05-08 07:28 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1128951351-2712326424-2671060717-1002
2015-05-02 11:11 - 2015-05-02 11:11 - 00000002 _____ () C:\Windows\AsCDProc.log
2015-05-02 11:07 - 2015-05-05 14:47 - 00013092 _____ () C:\Windows\PFRO.log
2015-05-02 10:27 - 2015-05-02 10:27 - 71720960 _____ () C:\Windows\system32\config\SOFTWARE.iobit
2015-05-02 10:27 - 2015-05-02 10:27 - 36741120 _____ () C:\Windows\system32\config\COMPONENTS.iobit
2015-05-02 10:27 - 2015-05-02 10:27 - 00466944 _____ () C:\Windows\system32\config\DEFAULT.iobit
2015-05-02 10:27 - 2015-05-02 10:27 - 00036864 _____ () C:\Windows\system32\config\SAM.iobit
2015-05-02 10:27 - 2015-05-02 10:27 - 00024576 _____ () C:\Windows\system32\config\SECURITY.iobit
2015-05-02 10:17 - 2015-05-02 10:17 - 00000000 ____D () C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-05-02 10:05 - 2015-05-10 22:42 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1128951351-2712326424-2671060717-1001
2015-05-02 10:00 - 2015-05-02 10:00 - 00000000 ____D () C:\Users\Tony1604\Downloads\Music for now
2015-05-02 10:00 - 2015-05-02 10:00 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-05-02 09:59 - 2015-05-02 09:59 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-TONYLAPTOP-Windows-8.1-Pro-(64-bit).dat
2015-05-02 09:27 - 2015-05-02 09:27 - 00000000 ____D () C:\Intel
2015-05-02 09:22 - 2015-05-02 09:22 - 00099384 _____ () C:\Users\Tony1604\AppData\Roaming\inst.exe
2015-05-02 09:22 - 2015-05-02 09:22 - 00082816 _____ (VSO Software) C:\Users\Tony1604\AppData\Roaming\pcouffin.sys
2015-05-02 09:22 - 2015-05-02 09:22 - 00007859 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.cat
2015-05-02 09:22 - 2015-05-02 09:22 - 00001256 _____ () C:\Users\Tony1604\Desktop\ConvertXToDVD 5.lnk
2015-05-02 09:22 - 2015-05-02 09:22 - 00000055 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.log
2015-05-02 09:22 - 2015-05-02 09:22 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Vso
2015-05-02 09:22 - 2015-05-02 09:22 - 00000000 ____D () C:\ProgramData\VSO
2015-05-02 09:22 - 2015-05-02 09:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO
2015-05-02 09:22 - 2015-05-02 09:22 - 00000000 ____D () C:\Program Files (x86)\VSO
2015-05-01 18:02 - 2015-05-01 18:02 - 00001903 _____ () C:\Users\Tony1604\Desktop\Grand Theft Auto V.lnk
2015-05-01 18:02 - 2015-05-01 18:02 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Grand Theft Auto V
2015-05-01 15:46 - 2015-05-01 15:46 - 01380448 _____ (Skype Technologies S.A.) C:\Users\Ruža\Downloads\SkypeSetup_7_2_103.exe
2015-05-01 15:46 - 2015-05-01 15:46 - 01380448 _____ (Skype Technologies S.A.) C:\Users\Ruža\Downloads\SkypeSetup_7_2_103 (1).exe
2015-05-01 15:43 - 2015-05-01 15:44 - 45346432 _____ (Skype Technologies S.A.) C:\Users\Ruža\Downloads\SkypeSetupFull.exe
2015-05-01 13:41 - 2015-05-08 05:38 - 00000020 _____ () C:\Users\Ruža\AppData\Roaming\appdataFr3.bin
2015-05-01 11:36 - 2015-05-10 21:18 - 00000020 _____ () C:\Users\Tony1604\AppData\Roaming\appdataFr3.bin
2015-05-01 11:36 - 2015-05-02 11:04 - 00000000 ____D () C:\ProgramData\Extreme Blocker
2015-04-28 10:01 - 2015-04-28 10:01 - 00000000 ____D () C:\Program Files (x86)\Kerkia
2015-04-28 00:03 - 2015-04-28 00:04 - 00000000 ____D () C:\Program Files\Sublime Text 3
2015-04-26 11:39 - 2015-04-26 11:39 - 00001290 _____ () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2015-04-26 11:38 - 2015-05-05 10:06 - 00000000 ____D () C:\Program Files (x86)\IObit
2015-04-26 11:06 - 2015-04-30 23:37 - 00000080 _____ () C:\Users\Tony1604\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-04-26 10:57 - 2015-05-02 11:39 - 00000000 ____D () C:\Program Files (x86)\Rockstar Games
2015-04-26 10:56 - 2015-05-02 11:39 - 00000000 ____D () C:\Program Files\Rockstar Games
2015-04-26 10:56 - 2015-04-26 10:56 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Rockstar Games
2015-04-26 10:55 - 2015-04-26 10:55 - 00000000 ____D () C:\Users\Tony1604\Documents\Rockstar Games
2015-04-26 10:53 - 2015-04-26 10:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grand Theft Auto V
2015-04-24 09:46 - 2015-04-26 00:26 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Warframe
2015-04-24 08:40 - 2015-04-24 08:40 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\MK10
2015-04-23 23:47 - 2015-04-23 23:47 - 00001221 _____ () C:\Users\Tony1604\Desktop\Mortal Kombat X Premium Edition.lnk
2015-04-23 23:47 - 2015-04-23 23:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2015-04-22 21:38 - 2015-04-22 21:38 - 00002043 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evolve.lnk
2015-04-22 21:38 - 2015-04-22 21:38 - 00002031 _____ () C:\Users\Public\Desktop\Evolve.lnk
2015-04-22 21:20 - 2015-04-22 21:20 - 00000000 ____D () C:\Program Files\Echobit
2015-04-22 21:19 - 2015-04-22 21:19 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Echobit
2015-04-22 21:19 - 2015-04-22 21:19 - 00000000 ____D () C:\ProgramData\Echobit
2015-04-22 21:09 - 2015-04-22 21:09 - 00000208 _____ () C:\Users\Tony1604\Desktop\Warframe.url
2015-04-22 18:47 - 2015-04-22 18:47 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Unity
2015-04-16 21:24 - 2014-08-01 00:44 - 00000716 _____ () C:\Users\Tony1604\Desktop\Steam.lnk
2015-04-16 20:49 - 2015-04-16 20:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2015-04-16 20:47 - 2015-04-16 20:47 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Lavasoft
2015-04-16 20:46 - 2015-04-16 20:46 - 00000000 ____D () C:\ProgramData\Lavasoft
2015-04-16 20:28 - 2015-05-02 11:06 - 00000000 ____D () C:\Program Files (x86)\SeekerModule
2015-04-16 20:27 - 2015-04-16 20:28 - 00000000 ____D () C:\ProgramData\367599667378516284
2015-04-15 13:06 - 2015-04-15 13:06 - 00256992 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgldx64.sys
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-05-10 23:31 - 2014-07-17 18:47 - 01861125 _____ () C:\Windows\WindowsUpdate.log
2015-05-10 23:29 - 2014-07-17 18:58 - 00003946 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{DF7559B6-7CAF-4147-9C0F-AAF1B6090DC8}
2015-05-10 23:06 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru
2015-05-10 22:54 - 2014-07-17 19:17 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-05-10 22:43 - 2014-03-18 12:04 - 00863592 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-10 22:39 - 2014-07-24 22:52 - 00000074 _____ () C:\Users\Tony1604\AppData\Roaming\sp_data.sys
2015-05-10 22:36 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-10 22:35 - 2014-07-17 20:13 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\uTorrent
2015-05-10 22:35 - 2013-08-22 15:25 - 00524288 ___SH () C:\Windows\system32\config\BBI
2015-05-10 21:56 - 2014-07-17 19:17 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-05-10 21:56 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Help
2015-05-10 21:52 - 2014-07-30 13:19 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-05-10 21:29 - 2014-07-30 21:59 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\NVIDIA Corporation
2015-05-10 21:25 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-05-08 20:09 - 2014-10-19 11:29 - 00000074 _____ () C:\Users\Ruža\AppData\Roaming\sp_data.sys
2015-05-08 13:23 - 2015-03-05 13:35 - 00003930 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{60F858EE-FDEE-4530-9461-88DCB778F7CA}
2015-05-08 00:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\NDF
2015-05-07 23:59 - 2014-07-23 01:24 - 00007593 _____ () C:\Users\Tony1604\AppData\Local\Resmon.ResmonCfg
2015-05-07 17:42 - 2014-07-27 18:35 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\CrashDumps
2015-05-06 05:01 - 2014-07-17 19:02 - 00000000 ____D () C:\ProgramData\ProductData
2015-05-05 15:14 - 2014-07-17 18:49 - 00000000 ____D () C:\Users\Tony1604
2015-05-05 15:08 - 2014-07-19 15:53 - 00000000 ____D () C:\Windows\system32\MRT
2015-05-05 14:38 - 2015-03-14 14:51 - 00000000 ___HD () C:\Windows\msdownld.tmp
2015-05-05 14:38 - 2014-07-17 21:55 - 00000000 ____D () C:\Windows\SysWOW64\directx
2015-05-05 13:18 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-05-05 13:04 - 2015-02-22 13:53 - 00000000 ____D () C:\ProgramData\MFAData
2015-05-05 13:02 - 2014-10-19 11:29 - 00000000 ____D () C:\Users\Ruža
2015-05-05 11:53 - 2014-07-17 20:46 - 00000000 ____D () C:\Users\Tony1604\Documents\my games
2015-05-05 11:52 - 2014-10-05 01:25 - 00000000 ____D () C:\Users\Tony1604\Documents\Electronic Arts
2015-05-05 11:27 - 2014-07-19 19:05 - 00000000 ____D () C:\Windows\pss
2015-05-05 10:48 - 2014-08-05 18:11 - 00000000 ____D () C:\Windows\Minidump
2015-05-05 10:47 - 2015-01-04 15:57 - 730668713 _____ () C:\Windows\MEMORY.DMP
2015-05-05 10:33 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2015-05-05 10:21 - 2015-02-22 13:29 - 00000000 ____D () C:\ProgramData\Package Cache
2015-05-05 10:12 - 2015-02-22 13:58 - 00000000 ___HD () C:\$AVG
2015-05-05 10:12 - 2015-02-22 13:58 - 00000000 ____D () C:\ProgramData\AVG2015
2015-05-05 10:12 - 2013-08-22 17:36 - 00000000 ___HD () C:\Windows\ELAMBKUP
2015-05-04 19:22 - 2014-10-25 17:52 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\vlc
2015-05-03 20:39 - 2014-12-03 16:32 - 00000000 ____D () C:\Users\Tony1604\Downloads\GamesInstall
2015-05-03 10:59 - 2014-07-30 22:18 - 00000000 _RHDO () C:\Users\Tony1604\OneDrive
2015-05-02 11:06 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Branding
2015-05-02 10:17 - 2014-07-17 19:03 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\ProductData
2015-05-02 10:02 - 2014-10-30 15:11 - 00001465 _____ () C:\Users\Tony1604\Desktop\Fallout New Vegas.lnk
2015-05-02 10:02 - 2014-07-17 18:49 - 00001446 _____ () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-05-01 18:02 - 2014-07-30 13:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2015-04-30 23:46 - 2014-07-17 20:46 - 00000000 ____D () C:\Games
2015-04-29 11:17 - 2014-08-01 00:44 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-04-28 00:04 - 2014-07-31 16:17 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Sublime Text 3
2015-04-19 20:34 - 2014-07-18 08:02 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-04-16 20:36 - 2015-03-05 13:38 - 00000000 ____D () C:\ProgramData\Cisco
2015-04-16 20:34 - 2015-02-25 00:23 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Dropbox
2015-04-16 20:23 - 2015-02-25 00:27 - 00000000 ___RD () C:\Users\Tony1604\Dropbox
 
==================== Files in the root of some directories =======
 
2015-05-01 11:36 - 2015-05-10 21:18 - 0000020 _____ () C:\Users\Tony1604\AppData\Roaming\appdataFr3.bin
2015-05-02 09:22 - 2015-05-02 09:22 - 0099384 _____ () C:\Users\Tony1604\AppData\Roaming\inst.exe
2014-07-24 22:54 - 2014-07-24 22:54 - 0000021 _____ () C:\Users\Tony1604\AppData\Roaming\my_intel.sys
2015-05-02 09:22 - 2015-05-02 09:22 - 0007859 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.cat
2015-05-02 09:22 - 2015-05-02 09:22 - 0001167 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.inf
2015-05-02 09:22 - 2015-05-02 09:22 - 0000055 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.log
2015-05-02 09:22 - 2015-05-02 09:22 - 0082816 _____ (VSO Software) C:\Users\Tony1604\AppData\Roaming\pcouffin.sys
2014-07-24 22:52 - 2015-05-10 22:39 - 0000074 _____ () C:\Users\Tony1604\AppData\Roaming\sp_data.sys
2014-07-23 01:24 - 2015-05-07 23:59 - 0007593 _____ () C:\Users\Tony1604\AppData\Local\Resmon.ResmonCfg
2015-04-16 20:31 - 2015-04-16 20:31 - 0000794 _____ () C:\Users\Tony1604\AppData\Local\Temp-log.txt
2014-07-17 19:23 - 2014-07-17 19:23 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
 
Some content of TEMP:
====================
C:\Users\Tony1604\AppData\Local\Temp\ASCSetup_572140.exe
C:\Users\Tony1604\AppData\Local\Temp\DseShExt-x64.dll
C:\Users\Tony1604\AppData\Local\Temp\DseShExt-x86.dll
C:\Users\Tony1604\AppData\Local\Temp\mirc741.exe
C:\Users\Tony1604\AppData\Local\Temp\Quarantine.exe
C:\Users\Tony1604\AppData\Local\Temp\SDShelEx-win32.dll
C:\Users\Tony1604\AppData\Local\Temp\SDShelEx-x64.dll
C:\Users\Tony1604\AppData\Local\Temp\sqlite3.dll
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2015-05-05 09:16
 
==================== End Of Log ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 09-05-2015
Ran by Tony1604 at 2015-05-10 23:38:17
Running from C:\Users\Tony1604\Desktop
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-1128951351-2712326424-2671060717-500 - Administrator - Disabled)
Guest (S-1-5-21-1128951351-2712326424-2671060717-501 - Limited - Disabled)
Ruža (S-1-5-21-1128951351-2712326424-2671060717-1002 - Limited - Enabled) => C:\Users\Ruža
Tony1604 (S-1-5-21-1128951351-2712326424-2671060717-1001 - Administrator - Enabled) => C:\Users\Tony1604
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
µTorrent (HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\uTorrent) (Version: 3.4.2.39710 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
AKDSHCard 1.20 (HKLM\...\AKDSHCard) (Version: 1.20 - AKD d.o.o.)
Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.)
Anno 2070 Complete Edition version 2.0.7780.0 (HKLM-x32\...\Anno 2070 Complete Edition_is1) (Version: 2.0.7780.0 - UBISoft)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.2.8 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 3.0.7 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 2.2.14 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 2.01.0021 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 3.1.9 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0033 - ASUS)
Battlefield 3 (HKLM-x32\...\Battlefield 3_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, DANTE2050)
Call of Duty Ghosts (HKLM-x32\...\Q2FsbG9mRHV0eUdob3N0cw==_is1) (Version: 1 - )
Call of Duty: Black Ops (HKLM-x32\...\Call of Duty: Black Ops_is1) (Version:  - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dead Space™ (HKLM-x32\...\{4D87DC92-C328-46EC-A7B4-9C88129DC696}) (Version: 1.0.222.0 - Electronic Arts)
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Evolve (HKLM\...\{670B1B49-9FD3-4827-9B41-471EFF580AA8}) (Version: 1.8.13 - Echobit, LLC)
Fallout (HKLM-x32\...\Fallout) (Version:  - )
Fallout 3 (HKLM-x32\...\{974C4B12-4D02-4879-85E0-61C95CC63E9E}) (Version: 1.00.0000 - Bethesda Softworks)
Fallout New Vegas  1.4 (HKLM-x32\...\Fallout New Vegas_is1) (Version: 1.4 - Bethesda Softworks)
Fallout2 (HKLM-x32\...\Fallout2) (Version:  - )
Flashtool (HKLM-x32\...\Flashtool) (Version: 0.9.18.5 - Androxyde)
G2 mouse Driver (HKLM-x32\...\{249B1212-3779-404F-80FC-F3B80FE265ED}) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.135 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\Grand Theft Auto V_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, ProZorg_tm)
Hotline Miami 2: Wrong Number (HKLM-x32\...\Hotline Miami 2: Wrong Number_is1) (Version:  - )
Intel® Dynamic Platform and Thermal Framework (HKLM-x32\...\FFD10ECE-F715-4a86-9BD8-F6F47DA5DA1C) (Version: 7.1.0.2105 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3496 - Intel Corporation)
Intel® Hardware Accelerated Execution Manager (HKLM\...\{ECCB31F5-435D-4F37-A98D-5854D3C62718}) (Version: 1.1.1 - Intel Corporation)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 4.3.0.118 - IObit)
Java 7 Update 75 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417075FF}) (Version: 7.0.750 - Oracle)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Java SE Development Kit 7 Update 75 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170750}) (Version: 1.7.0.750 - Oracle)
Java™ 6 Update 17 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216017FF}) (Version: 6.0.170 - Sun Microsystems, Inc.)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
K-Lite Codec Pack 9.9.5 (64-bit) (HKLM\...\KLiteCodecPack64_is1) (Version: 9.9.5 - )
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}) (Version: 1.2.0241 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\OneDriveSetup.exe) (Version: 17.0.4035.0328 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft1.8 (HKLM-x32\...\Minecraft1.8) (Version:  - )
mIRC (HKLM-x32\...\mIRC) (Version: 7.41 - mIRC Co. Ltd.)
Mortal Kombat X Premium Edition v.1.0 (HKLM-x32\...\Mortal Kombat X Premium Edition_is1) (Version:  - )
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
NVIDIA PhysX System Software 9.15.0324 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0324 - NVIDIA Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.8.0 - Prolific Technology INC)
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.2 - Power Software Ltd)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.318 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.21236 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7224 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.105 - Skype Technologies S.A.)
Skyrim - Legendary Edition (HKLM-x32\...\Skyrim - Legendary Edition_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, spider91)
Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.15.3.201502161538 - Sony Mobile Communications Inc.)
Sony PC Companion 2.10.251 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.251 - Sony)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Sublime Text Build 3059 (HKLM\...\Sublime Text 3_is1) (Version:  - Sublime HQ Pty Ltd)
System Requirements Lab (HKLM-x32\...\{0F659036-14C7-4622-9505-35A0DC93526A}) (Version: 6.1.3.0 - Husdawg, LLC)
Unity Web Player (HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\UnityWebPlayer) (Version: 4.6.4f1 - Unity Technologies ApS)
Universal Adb Driver (HKLM-x32\...\{D9C4202E-6D51-4B06-A8F1-22316E654BCA}) (Version: 1.0.0 - ClockworkMod)
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VSO ConvertXToDVD (HKLM-x32\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.3.0.2 - VSO Software)
Warcraft III eSK 1.26.0.6401 (HKLM-x32\...\Warcraft III eSK 1.26.0.6401) (Version:  - )
Warframe (HKLM-x32\...\Steam App 230410) (Version:  - Digital Extremes)
Windows Driver Package - ASUS (ATP) Mouse  (03/18/2014 6.0.0.35) (HKLM\...\DAA6E0EEB715139C1CEA332C78AB4609FB3C211B) (Version: 03/18/2014 6.0.0.35 - ASUS)
Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass  (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
CustomCLSID: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Tony1604\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\FileSyncApi64.dll (Microsoft Corporation)
 
==================== Restore Points  =========================
 
29-04-2015 07:32:24 Scheduled Checkpoint
01-05-2015 18:00:18 Installed DirectX
02-05-2015 14:15:55 Driver Booster : Adobe Flash Player NPAPI
05-05-2015 10:07:08 Installed AVG 2015
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 
==================== Scheduled Tasks (whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {1CFA0F40-DE11-4595-BFB6-ECEA8FE82038} - System32\Tasks\Driver Booster SkipUAC (Tony1604) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: {2445745D-5A73-45AD-B8EE-993AB773CB54} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2014-01-14] (ASUSTek Computer Inc.)
Task: {2BC41083-654D-4C4D-B7DC-ACC45BF0F3BA} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-04-01] (Microsoft Corporation)
Task: {35409942-2797-4ECD-A6B0-B65A7778A455} - System32\Tasks\{24AA0856-8362-4F8A-BBE3-3EC34AD2E47E} => pcalua.exe -a "C:\Users\Tony1604\AppData\Roaming\Arma III\Uninstall\unins000.exe"
Task: {35EDD4E1-7115-4945-B313-F02C6458B472} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {37456C40-6BC4-4BB8-A433-1C36D8439FC0} - System32\Tasks\Uninstaller_SkipUac_Tony1604 => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-04-26] (IObit)
Task: {37F1820E-9029-4588-8B73-AE23DC36FCB1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-17] (Google Inc.)
Task: {5392C948-AEAB-4B74-B484-B8F5413FD866} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {5C7B255E-3A0D-43CB-80F6-43645EFBC498} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {75470DD5-C4B3-4FE9-A8F6-2B021010E88A} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2013-10-07] (ASUS)
Task: {904542C6-9AC9-4970-AC46-E34642CB9C0C} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86) [2015-05-10] ()
Task: {931CC4AE-992B-4C21-BFE8-F8EC9CE4ECBA} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2014-03-11] ()
Task: {9F0D9D77-696D-4C1A-8F13-CDF45D911974} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2014-03-31] (AsusTek)
Task: {AD892BC4-B6A0-4834-8E6D-C97BA9EB1BC8} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-04-10] (Realtek Semiconductor)
Task: {C76131AE-CF71-49A4-B547-09952D9C63DF} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-04-15] (Realtek Semiconductor)
Task: {CAE48F53-2B7E-43C8-A070-168062BB9AFF} - System32\Tasks\ASUS Splendid ColorU => C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe [2013-10-07] (ASUSTeK Computer Inc.)
Task: {E2ABE2D4-938C-454F-8F7C-AFDF23AA1BA3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-17] (Google Inc.)
Task: {E2CD979B-D7EA-4B86-B5A0-D6BD0844A6A2} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2014-01-03] (ASUS)
Task: {E7076D0F-3865-457A-A022-31150384CB36} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-04] (Adobe Systems Incorporated)
Task: {E9C2FF41-C9EB-4F5F-8E30-B831989BF001} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86) [2015-05-10] ()
Task: {F958274D-0D58-4503-80BC-0984200CE77D} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1128951351-2712326424-2671060717-1001 => %localappdata%\Microsoft\SkyDrive\SkyDrive.exe
Task: {F9B10110-07F1-465E-BF63-3F65E9819998} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2014-03-27] (ASUSTek Computer Inc.)
Task: C:\Windows\Tasks\Uninstaller_SkipUac_Tony1604.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
 
==================== Loaded Modules (whitelisted) ==============
 
2014-01-03 17:26 - 2014-01-03 17:26 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2014-01-03 17:26 - 2014-01-03 17:26 - 00028672 _____ () C:\Program Files\ASUS\P4G\plctrl.dll
2012-10-01 20:36 - 2012-10-01 20:36 - 06522480 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2014-02-25 22:14 - 2014-02-25 22:14 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2014-02-25 22:11 - 2014-02-25 22:11 - 00086016 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll
2014-02-25 22:17 - 2014-02-25 22:17 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
2014-10-25 19:52 - 2013-06-01 09:04 - 00495616 _____ () C:\Program Files (x86)\AULA\G2 Mouse\G2Monitor.exe
2013-09-09 18:23 - 2013-09-09 18:23 - 00162816 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2013-10-08 20:41 - 2013-10-08 20:41 - 00037968 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2014-10-25 19:52 - 2012-06-09 07:38 - 00057344 _____ () C:\Program Files (x86)\AULA\G2 Mouse\lan.dll
2014-10-25 19:52 - 2013-02-20 14:17 - 00061440 _____ () C:\Program Files (x86)\AULA\G2 Mouse\hiddriver.dll
2015-05-05 12:16 - 2015-04-28 04:07 - 01252680 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\libglesv2.dll
2015-05-05 12:16 - 2015-04-28 04:07 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\libegl.dll
2015-05-05 12:16 - 2015-04-28 04:07 - 14980424 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\PepperFlash\pepflashplayer.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
AlternateDataStreams: C:\Users\Tony1604\OneDrive:ms-properties
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== EXE Association (whitelisted) ===============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, the associated entry will be removed from the registry.)
 
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\100sexlinks.com -> 100sexlinks.com
 
There are 4788 more restricted sites.
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Tony1604\Pictures\Asus\Asus.jpg
DNS Servers: 192.168.1.1
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: DptfPolicyLpmService => 2
MSCONFIG\Services: EvoSvc => 3
MSCONFIG\Services: gupdate => 3
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: LiveUpdateSvc => 2
MSCONFIG\Services: SkypeUpdate => 3
MSCONFIG\Services: Sony PC Companion => 3
MSCONFIG\Services: SwitchBoard => 3
MSCONFIG\Services: TunMirror => 2
MSCONFIG\startupreg: uTorrent => 
HKLM\...\StartupApproved\Run: => "XMouseButtonControl"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "VirtualCloneDrive"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKLM\...\StartupApproved\Run32: => "AVG_UI"
HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\StartupApproved\StartupFolder: => "Microsoft Toolkit activator for all windows and office.lnk"
HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\StartupApproved\Run: => "Advanced SystemCare 7"
HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\StartupApproved\Run: => "BugCD Pretrazivac"
 
==================== FirewallRules (whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [TCP Query User{EFBDA559-5F01-41D2-90E1-66CB94ECE889}C:\users\tony1604\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\tony1604\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{28D0801D-B62A-4976-914D-F2F4B46681D8}C:\users\tony1604\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\tony1604\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{9882CD90-9862-468E-BE7F-04F82AFFAF92}] => (Allow) C:\Games\Steam\Steam.exe
FirewallRules: [{027063E4-8FA3-494E-A4DC-983F6F9EDBA0}] => (Allow) C:\Games\Steam\Steam.exe
FirewallRules: [{13132ABE-2FEE-457A-9AA5-128869936A18}] => (Allow) C:\Games\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{9F298BCB-30A3-47B3-A24B-AF8E3FA08A9E}] => (Allow) C:\Games\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{759E48B1-4AE4-423B-8D77-9BA6B978954B}] => (Allow) C:\Games\Steam\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [{375B4CBD-98CF-44D3-A76E-B2CCF55BF0F6}] => (Allow) C:\Games\Steam\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [TCP Query User{4A53F76A-6FE4-4187-8549-6537815892E1}C:\games\warcraft iii frozen throne esk\war3.exe] => (Allow) C:\games\warcraft iii frozen throne esk\war3.exe
FirewallRules: [UDP Query User{D83711C2-3B77-42B2-BB7B-213E5506E22F}C:\games\warcraft iii frozen throne esk\war3.exe] => (Allow) C:\games\warcraft iii frozen throne esk\war3.exe
FirewallRules: [{64DC3204-AB82-4D01-B21F-C41F4ED5CA64}] => (Allow) LPort=1689
FirewallRules: [TCP Query User{3029AC85-6D48-4729-847B-7178817BB1ED}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{99D78BD5-9A0F-40E4-8C04-D2AD73C39392}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{A417F531-12F8-4B3C-8815-80DC62064320}C:\games\electronic arts\dead space\dead space.exe] => (Allow) C:\games\electronic arts\dead space\dead space.exe
FirewallRules: [UDP Query User{D4960254-D55F-40A7-A034-279B01B769E0}C:\games\electronic arts\dead space\dead space.exe] => (Allow) C:\games\electronic arts\dead space\dead space.exe
FirewallRules: [{22318933-5604-4224-949B-8B140A6C6A93}] => (Allow) C:\Games\Steam\bin\steamwebhelper.exe
FirewallRules: [{E3552054-0212-4857-8295-AD5A4115D3AD}] => (Allow) C:\Games\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{14C7F009-3709-4078-A558-3C75A8DFBABF}C:\games\activision\call of duty - black ops\blackops.exe] => (Allow) C:\games\activision\call of duty - black ops\blackops.exe
FirewallRules: [UDP Query User{3F1EBE76-CA90-4E12-A1A0-6475FEA31DEF}C:\games\activision\call of duty - black ops\blackops.exe] => (Allow) C:\games\activision\call of duty - black ops\blackops.exe
FirewallRules: [TCP Query User{5B70100C-0513-4AB2-AA5B-ED1856DA2C2E}C:\games\activision\call of duty - black ops\blackopsmp.exe] => (Block) C:\games\activision\call of duty - black ops\blackopsmp.exe
FirewallRules: [UDP Query User{E7C283DC-1336-4677-90D8-D05A3A28F622}C:\games\activision\call of duty - black ops\blackopsmp.exe] => (Block) C:\games\activision\call of duty - black ops\blackopsmp.exe
FirewallRules: [{5AECAA4A-A9E2-49C2-A1E2-B79D9EBB9D2F}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{77ED13ED-7543-468D-BB4E-C67D7337A7ED}] => (Allow) LPort=1688
FirewallRules: [{CB845972-3A93-4152-8D7C-0BBD68E7F4A2}] => (Allow) LPort=1689
FirewallRules: [{3C814925-B3A9-4253-AEB7-136E6249EA11}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{FC077D64-284B-4625-B4C6-114620C232F2}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{4E19D72F-3AA2-4E36-9A4B-3BF32ED31829}] => (Block) %SystemDrive%\Games\Anno 2070 Complete Edition\anno5.exe
FirewallRules: [{156BADFE-F9BE-4428-8026-2596965EEE8F}] => (Allow) C:\Program Files\Echobit\Evolve\EvoSvc.exe
FirewallRules: [{8762C84A-9008-4163-9B2E-DA470349380F}] => (Allow) C:\Program Files\Echobit\Evolve\EvolveClient.exe
FirewallRules: [{5A3D3472-3B06-475A-ACB2-71585B5A24C9}] => (Allow) C:\Games\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{BE638223-749F-4CF3-B5F2-AEA7AF65A2AB}] => (Allow) C:\Games\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{897E11B5-8B95-4EE0-8E1A-3E894AAEA349}] => (Allow) LPort=1688
FirewallRules: [{88257795-E970-4E85-9EC2-652E8F1B51A1}] => (Allow) LPort=1688
FirewallRules: [{A004CE90-028E-486F-B88F-8C6E5EE86DD4}] => (Allow) C:\Users\Tony1604\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{418800DD-1D42-4C79-B210-7211E20F3E87}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{9D420315-5C31-406D-AF7A-7AF28B89BB78}] => (Allow) LPort=2869
FirewallRules: [{E6C1179D-2A7A-425F-94FA-6B954749B44D}] => (Allow) LPort=1900
FirewallRules: [{AF75F87E-36BC-4D2B-B0F7-0BE2A0AEAD0D}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{0BB6E2DE-AE05-430B-803D-CB6463AD338F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{DCCA505E-F674-4588-B9ED-AB24C35FA9BF}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{75526F26-AACD-4093-8B16-D18CDF2A1877}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [TCP Query User{22277286-F3AE-4EB9-A822-68D05C74DA76}C:\program files (x86)\mirc\mirc.exe] => (Block) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [UDP Query User{109F927F-D084-49E0-8B81-3F3C7212E601}C:\program files (x86)\mirc\mirc.exe] => (Block) C:\program files (x86)\mirc\mirc.exe
 
==================== Faulty Device Manager Devices =============
 
Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (05/10/2015 11:07:28 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program rundll32.exe version 6.3.9600.16384 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 7c0
 
Start Time: 01d08b64fbbc5bfd
 
Termination Time: 4294967295
 
Application Path: C:\Windows\System32\rundll32.exe
 
Report Id: 8fec472f-f758-11e4-82b0-54271e8346a2
 
Faulting package full name: 
 
Faulting package-relative application ID:
 
Error: (05/10/2015 11:07:25 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program mirc.exe version 7.41.0.0 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 17b0
 
Start Time: 01d08b64dcc2991c
 
Termination Time: 4294967295
 
Application Path: C:\Program Files (x86)\mIRC\mirc.exe
 
Report Id: 8dbdf61f-f758-11e4-82b0-54271e8346a2
 
Faulting package full name: 
 
Faulting package-relative application ID:
 
Error: (05/10/2015 10:42:34 PM) (Source: DptfEvent) (EventID: 2) (User: )
Description: DptfPolicyLpmServiceHelper
WinMain:  CreateSharedMemory() failed.
Session ID = 1
 
Error: (05/10/2015 10:42:34 PM) (Source: DptfEvent) (EventID: 3) (User: )
Description: DptfPolicyLpmServiceHelper
CreateSharedMemory:  WaitForSingleObject() with g_pkeLpmSharedMemoryCreated failed
Last error = [0x00000102]
Session ID = 1
 
Error: (05/10/2015 10:00:54 PM) (Source: DptfEvent) (EventID: 2) (User: )
Description: DptfPolicyLpmServiceHelper
WinMain:  CreateSharedMemory() failed.
Session ID = 1
 
Error: (05/10/2015 10:00:54 PM) (Source: DptfEvent) (EventID: 3) (User: )
Description: DptfPolicyLpmServiceHelper
CreateSharedMemory:  WaitForSingleObject() with g_pkeLpmSharedMemoryCreated failed
Last error = [0x00000102]
Session ID = 1
 
Error: (05/10/2015 09:29:42 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcFailed continue stopping. [5]
 
Error: (05/10/2015 09:20:49 PM) (Source: DptfEvent) (EventID: 2) (User: )
Description: DptfPolicyLpmServiceHelper
WinMain:  CreateSharedMemory() failed.
Session ID = 7
 
Error: (05/10/2015 09:20:49 PM) (Source: DptfEvent) (EventID: 3) (User: )
Description: DptfPolicyLpmServiceHelper
CreateSharedMemory:  WaitForSingleObject() with g_pkeLpmSharedMemoryCreated failed
Last error = [0x00000102]
Session ID = 7
 
Error: (05/10/2015 09:15:23 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcFailed continue stopping. [5]
 
 
System errors:
=============
Error: (05/10/2015 11:37:24 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The DNS Client service terminated unexpectedly.  It has done this 15 time(s).
 
Error: (05/10/2015 11:37:24 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Cryptographic Services service terminated unexpectedly.  It has done this 16 time(s).
 
Error: (05/10/2015 11:35:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The DNS Client service terminated unexpectedly.  It has done this 14 time(s).
 
Error: (05/10/2015 11:35:59 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Cryptographic Services service terminated unexpectedly.  It has done this 15 time(s).
 
Error: (05/10/2015 11:32:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The DNS Client service terminated unexpectedly.  It has done this 13 time(s).
 
Error: (05/10/2015 11:32:51 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Cryptographic Services service terminated unexpectedly.  It has done this 14 time(s).
 
Error: (05/10/2015 11:31:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The DNS Client service terminated unexpectedly.  It has done this 12 time(s).
 
Error: (05/10/2015 11:31:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Cryptographic Services service terminated unexpectedly.  It has done this 13 time(s).
 
Error: (05/10/2015 11:13:55 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The DNS Client service terminated unexpectedly.  It has done this 11 time(s).
 
Error: (05/10/2015 11:13:55 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Cryptographic Services service terminated unexpectedly.  It has done this 12 time(s).
 
 
Microsoft Office Sessions:
=========================
Error: (05/10/2015 11:07:28 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: rundll32.exe6.3.9600.163847c001d08b64fbbc5bfd4294967295C:\Windows\System32\rundll32.exe8fec472f-f758-11e4-82b0-54271e8346a2
 
Error: (05/10/2015 11:07:25 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: mirc.exe7.41.0.017b001d08b64dcc2991c4294967295C:\Program Files (x86)\mIRC\mirc.exe8dbdf61f-f758-11e4-82b0-54271e8346a2
 
Error: (05/10/2015 10:42:34 PM) (Source: DptfEvent) (EventID: 2) (User: )
Description: DptfPolicyLpmServiceHelperWinMain:  CreateSharedMemory() failed.Session ID = 1
 
Error: (05/10/2015 10:42:34 PM) (Source: DptfEvent) (EventID: 3) (User: )
Description: DptfPolicyLpmServiceHelperCreateSharedMemory:  WaitForSingleObject() with g_pkeLpmSharedMemoryCreated failedLast error = [0x00000102]Session ID = 1
 
Error: (05/10/2015 10:00:54 PM) (Source: DptfEvent) (EventID: 2) (User: )
Description: DptfPolicyLpmServiceHelperWinMain:  CreateSharedMemory() failed.Session ID = 1
 
Error: (05/10/2015 10:00:54 PM) (Source: DptfEvent) (EventID: 3) (User: )
Description: DptfPolicyLpmServiceHelperCreateSharedMemory:  WaitForSingleObject() with g_pkeLpmSharedMemoryCreated failedLast error = [0x00000102]Session ID = 1
 
Error: (05/10/2015 09:29:42 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcFailed continue stopping. [5]
 
Error: (05/10/2015 09:20:49 PM) (Source: DptfEvent) (EventID: 2) (User: )
Description: DptfPolicyLpmServiceHelperWinMain:  CreateSharedMemory() failed.Session ID = 7
 
Error: (05/10/2015 09:20:49 PM) (Source: DptfEvent) (EventID: 3) (User: )
Description: DptfPolicyLpmServiceHelperCreateSharedMemory:  WaitForSingleObject() with g_pkeLpmSharedMemoryCreated failedLast error = [0x00000102]Session ID = 7
 
Error: (05/10/2015 09:15:23 PM) (Source: NvStreamSvc) (EventID: 2001) (User: )
Description: NvStreamSvcFailed continue stopping. [5]
 
 
CodeIntegrity Errors:
===================================
  Date: 2015-05-08 06:30:25.973
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-08 06:30:25.614
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-06 05:45:04.160
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-06 05:45:04.020
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-05 14:33:02.567
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-05 14:33:02.332
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-03 01:35:57.590
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-03 01:35:57.434
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-03 01:34:40.487
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-03 01:34:40.331
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i5-4200U CPU @ 1.60GHz
Percentage of memory in use: 26%
Total physical RAM: 6027.43 MB
Available physical RAM: 4456.55 MB
Total Pagefile: 12171.43 MB
Available Pagefile: 10256.46 MB
Total Virtual: 131072 MB
Available Virtual: 131071.78 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:698.29 GB) (Free:269.54 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 2BFB4DC8)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=698.3 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================

 


Edited by Tony1604, 10 May 2015 - 03:45 PM.

  • 0

Advertisements


#2
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Hi, are the popups in Chrome or all browsers ?

After this fix could you re-enable crypto services and then run a fresh FRST scan please

CAUTION : This fix is only valid for this specific machine, using it on another may break your computer

Open notepad and copy/paste the text in the quotebox below into it:
 

CreateRestorePoint:
HKLM\...\Run: [DptfPolicyLpmServiceHelper] => C:\Windows\system32\DptfPolicyLpmServiceHelper.exe [114048 2013-10-18] (Intel Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
Startup: C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft Toolkit activator for all windows and office.lnk [2015-04-16]
ShortcutTarget: Microsoft Toolkit activator for all windows and office.lnk -> C:\ProgramData\{dc5de392-874e-fafd-dc5d-de3928748e4a}\Microsoft Toolkit activator for all windows and office.exe (No File)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
Reg: reg delete HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f
Reg: reg add HKLM\SOFTWARE\Policies\Microsoft\Windows\IPSec\Policy\Local /f
RemoveProxy:
EmptyTemp:
CMD: bitsadmin /reset /allusers


Save this as fixlist.txt, in the same location as FRST.exe
FRSTfix.JPG
Run FRST and press Fix
On completion a log will be generated please post that
  • 0

#3
Tony1604

Tony1604

    Member

  • Topic Starter
  • Member
  • PipPip
  • 11 posts

I used Malwarebytes Anti-Malware,ADWCleaner and HitmanPro and removed all the maleware and pubs on my machine and i seems to work great, except crypthographic service still uses 25-30 percent of cpu at all times, and windows update doesn't work, and i re-enabled crypthographic service and re did the scan and also ran the Fix with FRST. Here are the resoults, thank you btw :D 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13-05-2015
Ran by Tony1604 (administrator) on TONYLAPTOP on 13-05-2015 20:05:47
Running from C:\Users\Tony1604\Desktop
Loaded Profiles: Tony1604 (Available profiles: Tony1604 & Ruža)
Platform: Windows 8.1 Pro (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Windows ® Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyConfigTDPService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\livecomm.exe
(NVIDIA Corporation) C:\Users\Tony1604\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\AULA\G2 Mouse\G2Monitor.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2685072 2015-05-01] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [G2 mouse] => C:\Program Files (x86)\AULA\G2 Mouse\G2Monitor.exe [495616 2013-06-01] ()
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle Corporation)
HKLM-x32\...\Run: [AVG_UI] => "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [134784 2014-02-25] (Qualcomm®Atheros®)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2CF47E20-9948-43A2-A4E5-2899AA418659}: [NameServer] 192.255.160.0,192.255.168.0
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
 
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-04] ()
FF Plugin: @java.com/DTPlugin,version=10.75.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2015-03-08] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.75.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2015-03-08] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\Microsoft Office\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-04] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-30] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-30] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\Microsoft Office\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin HKU\S-1-5-21-1128951351-2712326424-2671060717-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Tony1604\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-03-24] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation)
 
Chrome: 
=======
CHR HomePage: Default -> https://www.google.hr/
CHR StartupUrls: Default -> "https://www.google.hr/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Angry Birds) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2015-04-16]
CHR Extension: (Facebook) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm [2014-12-08]
CHR Extension: (AdBlock) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-05-06]
CHR Extension: (Bookmark Manager) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-16]
CHR Extension: (Little Alchemy) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd [2015-04-16]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-11]
CHR Extension: (Google Wallet) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-17]
StartMenuInternet: Google Chrome - Chrome.exe
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S4 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [267440 2015-02-04] (Adobe Systems Incorporated) [File not signed]
S3 AeLookupSvc; C:\Windows\System32\aelupsvc.dll [208896 2014-03-18] (Microsoft Corporation) [File not signed]
S3 ALG; C:\Windows\System32\alg.exe [92672 2013-08-22] (Microsoft Corporation) [File not signed]
S3 AppIDSvc; C:\Windows\System32\appidsvc.dll [37888 2013-08-22] (Microsoft Corporation) [File not signed]
R3 Appinfo; C:\Windows\System32\appinfo.dll [109568 2014-03-18] (Microsoft Corporation) [File not signed]
S3 AppMgmt; C:\Windows\System32\appmgmts.dll [183296 2014-03-18] (Microsoft Corporation) [File not signed]
S3 AppMgmt; C:\Windows\SysWOW64\appmgmts.dll [151040 2014-03-18] (Microsoft Corporation) [File not signed]
S3 AppReadiness; C:\Windows\system32\AppReadiness.dll [530944 2014-03-18] (Microsoft Corporation) [File not signed]
S3 AppXSvc; C:\Windows\system32\appxdeploymentserver.dll [1306624 2014-03-08] (Microsoft Corporation) [File not signed]
R2 ASLDRService; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe [115512 2014-02-18] (ASUSTek Computer Inc.) [File not signed]
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [319104 2014-02-25] (Windows ® Win 7 DDK provider) [File not signed]
R2 ATKGFNEXSrv; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896 2011-11-21] (ASUS) [File not signed]
R2 AudioEndpointBuilder; C:\Windows\System32\AudioEndpointBuilder.dll [201216 2014-04-06] (Microsoft Corporation) [File not signed]
R2 Audiosrv; C:\Windows\System32\Audiosrv.dll [834048 2014-04-06] (Microsoft Corporation) [File not signed]
S3 AxInstSV; C:\Windows\System32\AxInstSV.dll [109568 2014-03-18] (Microsoft Corporation) [File not signed]
S3 BDESVC; C:\Windows\System32\bdesvc.dll [339456 2014-04-26] (Microsoft Corporation) [File not signed]
R2 BFE; C:\Windows\System32\bfe.dll [827392 2014-04-30] (Microsoft Corporation) [File not signed]
S2 BITS; C:\Windows\System32\qmgr.dll [1017856 2013-08-22] (Microsoft Corporation) [File not signed]
R2 BrokerInfrastructure; C:\Windows\System32\bisrv.dll [269824 2014-03-18] (Microsoft Corporation) [File not signed]
S3 Browser; C:\Windows\System32\browser.dll [134144 2013-08-22] (Microsoft Corporation) [File not signed]
R3 bthserv; C:\Windows\system32\bthserv.dll [92160 2013-08-22] (Microsoft Corporation) [File not signed]
S4 CertPropSvc; C:\Windows\System32\certprop.dll [155136 2013-08-22] (Microsoft Corporation) [File not signed]
S3 cphs; C:\Windows\SysWow64\IntelCpHeciSvc.exe [279000 2014-03-18] (Intel Corporation) [File not signed]
R2 CryptSvc; C:\Windows\system32\cryptsvc.dll [129536 2013-08-22] (Microsoft Corporation) [File not signed]
S4 CscService; C:\Windows\System32\cscsvc.dll [778240 2014-03-18] (Microsoft Corporation) [File not signed]
R2 DcomLaunch; C:\Windows\system32\rpcss.dll [753664 2014-03-18] (Microsoft Corporation) [File not signed]
S3 defragsvc; C:\Windows\System32\defragsvc.dll [449536 2014-04-11] (Microsoft Corporation) [File not signed]
R2 DeviceAssociationService; C:\Windows\system32\das.dll [399872 2014-03-18] (Microsoft Corporation) [File not signed]
S3 DeviceInstall; C:\Windows\system32\umpnpmgr.dll [115200 2014-03-06] (Microsoft Corporation) [File not signed]
R2 Dhcp; C:\Windows\system32\dhcpcore.dll [353280 2014-04-30] (Microsoft Corporation) [File not signed]
R2 Dhcp; C:\Windows\SysWOW64\dhcpcore.dll [285696 2014-04-30] (Microsoft Corporation) [File not signed]
R2 Dnscache; C:\Windows\System32\dnsrslvr.dll [254464 2014-03-04] (Microsoft Corporation) [File not signed]
S3 dot3svc; C:\Windows\System32\dot3svc.dll [258560 2013-08-22] (Microsoft Corporation) [File not signed]
R2 DPS; C:\Windows\system32\dps.dll [170496 2013-08-22] (Microsoft Corporation) [File not signed]
R2 DptfParticipantProcessorService; C:\Windows\system32\DptfParticipantProcessorService.exe [117704 2013-10-18] (Intel Corporation) [File not signed]
R2 DptfPolicyConfigTDPService; C:\Windows\system32\DptfPolicyConfigTDPService.exe [116680 2013-10-18] (Intel Corporation) [File not signed]
R2 DptfPolicyCriticalService; C:\Windows\system32\DptfPolicyCriticalService.exe [148160 2013-10-18] (Intel Corporation) [File not signed]
R2 DptfPolicyLpmService; C:\Windows\system32\DptfPolicyLpmService.exe [126952 2013-10-18] (Intel Corporation) [File not signed]
R3 DsmSvc; C:\Windows\System32\DeviceSetupManager.dll [201728 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Eaphost; C:\Windows\System32\eapsvc.dll [107008 2013-08-22] (Microsoft Corporation) [File not signed]
R2 EFS; C:\Windows\system32\efssvc.dll [40448 2013-08-22] (Microsoft Corporation) [File not signed]
R2 EventLog; C:\Windows\System32\wevtsvc.dll [1669632 2013-08-22] (Microsoft Corporation) [File not signed]
R2 EventSystem; C:\Windows\system32\es.dll [468992 2013-08-22] (Microsoft Corporation) [File not signed]
R2 EventSystem; C:\Windows\SysWOW64\es.dll [329728 2013-08-22] (Microsoft Corporation) [File not signed]
S4 EvoSvc; C:\Program Files\Echobit\Evolve\EvoSvc.exe [1583488 2015-04-22] (Echobit LLC) [File not signed]
S3 Fax; C:\Windows\system32\fxssvc.exe [655360 2013-08-22] (Microsoft Corporation) [File not signed]
S3 fdPHost; C:\Windows\system32\fdPHost.dll [21504 2013-08-22] (Microsoft Corporation) [File not signed]
S3 FDResPub; C:\Windows\system32\fdrespub.dll [33280 2013-08-22] (Microsoft Corporation) [File not signed]
S3 fhsvc; C:\Windows\system32\fhsvc.dll [118272 2013-08-22] (Microsoft Corporation) [File not signed]
R3 FontCache; C:\Windows\system32\FntCache.dll [1345536 2014-04-30] (Microsoft Corporation) [File not signed]
R3 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [43696 2013-08-03] (Microsoft Corporation) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-01] (NVIDIA Corporation) [File not signed]
R2 gpsvc; C:\Windows\System32\gpsvc.dll [1308160 2014-03-31] (Microsoft Corporation) [File not signed]
S4 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648 2014-07-17] (Google Inc.) [File not signed]
S4 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648 2014-07-17] (Google Inc.) [File not signed]
R3 hidserv; C:\Windows\system32\hidserv.dll [32256 2013-08-22] (Microsoft Corporation) [File not signed]
R3 hidserv; C:\Windows\SysWOW64\hidserv.dll [29696 2013-08-22] (Microsoft Corporation) [File not signed]
S3 hkmsvc; C:\Windows\system32\kmsvc.dll [97792 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HomeGroupListener; C:\Windows\system32\ListSvc.dll [261632 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HomeGroupProvider; C:\Windows\system32\provsvc.dll [405504 2014-03-18] (Microsoft Corporation) [File not signed]
S3 HomeGroupProvider; C:\Windows\SysWOW64\provsvc.dll [321536 2014-03-18] (Microsoft Corporation) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [111616 2014-02-06] (Microsoft Corporation) [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282072 2014-03-18] (Intel Corporation) [File not signed]
R2 IKEEXT; C:\Windows\System32\ikeext.dll [1063424 2014-04-30] (Microsoft Corporation) [File not signed]
S4 iphlpsvc; C:\Windows\System32\iphlpsvc.dll [903168 2014-03-18] (Microsoft Corporation) [File not signed]
S3 KeyIso; C:\Windows\system32\keyiso.dll [59392 2013-08-22] (Microsoft Corporation) [File not signed]
S3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [44032 2013-08-22] (Microsoft Corporation) [File not signed]
S3 KtmRm; C:\Windows\system32\msdtckrm.dll [357888 2013-08-22] (Microsoft Corporation) [File not signed]
R2 LanmanServer; C:\Windows\system32\srvsvc.dll [323072 2014-03-27] (Microsoft Corporation) [File not signed]
R2 LanmanWorkstation; C:\Windows\System32\wkssvc.dll [284160 2013-08-22] (Microsoft Corporation) [File not signed]
S3 lfsvc; C:\Windows\System32\GeofenceMonitorService.dll [491520 2014-03-14] (Microsoft Corporation) [File not signed]
S3 lfsvc; C:\Windows\SysWOW64\GeofenceMonitorService.dll [357376 2014-03-14] (Microsoft Corporation) [File not signed]
S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2585376 2015-04-26] (IObit) [File not signed]
S3 lltdsvc; C:\Windows\System32\lltdsvc.dll [269824 2013-08-22] (Microsoft Corporation) [File not signed]
R2 lmhosts; C:\Windows\System32\lmhsvc.dll [24576 2013-08-22] (Microsoft Corporation) [File not signed]
R2 LSM; C:\Windows\System32\lsm.dll [710656 2014-03-18] (Microsoft Corporation) [File not signed]
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation) [File not signed]
R2 MMCSS; C:\Windows\system32\mmcss.dll [70656 2013-08-22] (Microsoft Corporation) [File not signed]
R2 MpsSvc; C:\Windows\system32\mpssvc.dll [878080 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSDTC; C:\Windows\System32\msdtc.exe [142848 2013-08-22] (Microsoft Corporation) [File not signed]
S4 MSiSCSI; C:\Windows\system32\iscsiexe.dll [150528 2013-08-22] (Microsoft Corporation) [File not signed]
S3 msiserver; C:\Windows\System32\msiexec.exe [62464 2013-08-22] (Microsoft Corporation) [File not signed]
S3 msiserver; C:\Windows\SysWOW64\msiexec.exe [55808 2013-08-22] (Microsoft Corporation) [File not signed]
S4 MsKeyboardFilter; C:\Windows\System32\KeyboardFilterSvc.dll [90464 2014-03-18] (Microsoft Corporation) [File not signed]
S4 napagent; C:\Windows\system32\qagentRT.dll [435200 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NcaSvc; C:\Windows\System32\ncasvc.dll [164352 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NcbService; C:\Windows\System32\ncbservice.dll [151040 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NcdAutoSetup; C:\Windows\System32\NcdAutoSetup.dll [73728 2013-08-22] (Microsoft Corporation) [File not signed]
S4 Netlogon; C:\Windows\system32\netlogon.dll [834560 2014-03-06] (Microsoft Corporation) [File not signed]
S4 Netlogon; C:\Windows\SysWOW64\netlogon.dll [688640 2014-03-06] (Microsoft Corporation) [File not signed]
S3 Netman; C:\Windows\System32\netman.dll [254976 2013-08-22] (Microsoft Corporation) [File not signed]
S3 netprofm; C:\Windows\System32\netprofmsvc.dll [525312 2013-08-22] (Microsoft Corporation) [File not signed]
S4 NetTcpPortSharing; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139856 2013-08-10] (Microsoft Corporation) [File not signed]
S2 NlaSvc; C:\Windows\System32\nlasvc.dll [387584 2013-08-22] (Microsoft Corporation) [File not signed]
R2 nsi; C:\Windows\system32\nsisvc.dll [29184 2013-08-22] (Microsoft Corporation) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304 2015-05-01] (NVIDIA Corporation) [File not signed]
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22997648 2015-05-01] (NVIDIA Corporation) [File not signed]
R2 nvsvc; C:\Windows\system32\nvvsvc.exe [936264 2015-04-08] (NVIDIA Corporation) [File not signed]
S3 ose64; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [178824 2012-10-01] (Microsoft Corporation) [File not signed]
S3 p2pimsvc; C:\Windows\system32\pnrpsvc.dll [376320 2014-03-18] (Microsoft Corporation) [File not signed]
S3 p2psvc; C:\Windows\system32\p2psvc.dll [433664 2013-08-22] (Microsoft Corporation) [File not signed]
R2 PcaSvc; C:\Windows\System32\pcasvc.dll [471552 2014-03-18] (Microsoft Corporation) [File not signed]
S4 PeerDistSvc; C:\Windows\system32\peerdistsvc.dll [2176000 2014-03-18] (Microsoft Corporation) [File not signed]
S3 PerfHost; C:\Windows\SysWow64\perfhost.exe [21504 2013-08-22] (Microsoft Corporation) [File not signed]
S3 pla; C:\Windows\system32\pla.dll [1443840 2013-08-22] (Microsoft Corporation) [File not signed]
S3 pla; C:\Windows\SysWOW64\pla.dll [1477120 2013-08-22] (Microsoft Corporation) [File not signed]
R3 PlugPlay; C:\Windows\system32\umpnpmgr.dll [115200 2014-03-06] (Microsoft Corporation) [File not signed]
S3 PNRPAutoReg; C:\Windows\system32\pnrpauto.dll [25600 2013-08-22] (Microsoft Corporation) [File not signed]
S3 PNRPsvc; C:\Windows\system32\pnrpsvc.dll [376320 2014-03-18] (Microsoft Corporation) [File not signed]
R3 PolicyAgent; C:\Windows\System32\ipsecsvc.dll [403456 2013-08-22] (Microsoft Corporation) [File not signed]
R2 Power; C:\Windows\system32\umpo.dll [79360 2013-08-22] (Microsoft Corporation) [File not signed]
S3 PrintNotify; C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll [2899968 2013-08-22] (Microsoft Corporation) [File not signed]
R2 ProfSvc; C:\Windows\system32\profsvc.dll [220160 2014-03-04] (Microsoft Corporation) [File not signed]
S3 QWAVE; C:\Windows\system32\qwave.dll [297472 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasAuto; C:\Windows\System32\rasauto.dll [101376 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasMan; C:\Windows\System32\rasmans.dll [534528 2014-03-18] (Microsoft Corporation) [File not signed]
S4 RemoteAccess; C:\Windows\System32\mprdim.dll [223744 2013-08-22] (Microsoft Corporation) [File not signed]
S4 RemoteAccess; C:\Windows\SysWOW64\mprdim.dll [177664 2013-08-22] (Microsoft Corporation) [File not signed]
S4 RemoteRegistry; C:\Windows\system32\regsvc.dll [164864 2013-08-22] (Microsoft Corporation) [File not signed]
R2 RpcEptMapper; C:\Windows\System32\RpcEpMap.dll [79872 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RpcLocator; C:\Windows\system32\locator.exe [10240 2013-08-22] (Microsoft Corporation) [File not signed]
R2 RpcSs; C:\Windows\system32\rpcss.dll [753664 2014-03-18] (Microsoft Corporation) [File not signed]
R2 SamSs; C:\Windows\system32\lsass.exe [45008 2013-08-22] (Microsoft Corporation) [File not signed]
S2 SCardSvr; C:\Windows\System32\SCardSvr.dll [188416 2013-08-22] (Microsoft Corporation) [File not signed]
S3 ScDeviceEnum; C:\Windows\System32\ScDeviceEnum.dll [130560 2013-08-22] (Microsoft Corporation) [File not signed]
R2 Schedule; C:\Windows\system32\schedsvc.dll [1214976 2014-03-18] (Microsoft Corporation) [File not signed]
S3 SCPolicySvc; C:\Windows\System32\certprop.dll [155136 2013-08-22] (Microsoft Corporation) [File not signed]
S3 seclogon; C:\Windows\system32\seclogon.dll [30720 2013-08-22] (Microsoft Corporation) [File not signed]
R2 SENS; C:\Windows\System32\sens.dll [71680 2013-08-22] (Microsoft Corporation) [File not signed]
S3 SensrSvc; C:\Windows\system32\sensrsvc.dll [220672 2014-03-18] (Microsoft Corporation) [File not signed]
S3 SessionEnv; C:\Windows\system32\sessenv.dll [324096 2014-03-06] (Microsoft Corporation) [File not signed]
S3 SessionEnv; C:\Windows\SysWOW64\sessenv.dll [280576 2014-03-06] (Microsoft Corporation) [File not signed]
S3 SharedAccess; C:\Windows\System32\ipnathlp.dll [433664 2014-03-18] (Microsoft Corporation) [File not signed]
R2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [629760 2013-08-22] (Microsoft Corporation) [File not signed]
R2 ShellHWDetection; C:\Windows\SysWOW64\shsvcs.dll [564736 2013-08-22] (Microsoft Corporation) [File not signed]
S4 SkypeUpdate; C:\Program Files (x86)\Skype\Updater\Updater.exe [315008 2014-04-03] (Skype Technologies) [File not signed]
S3 smphost; C:\Windows\System32\smphost.dll [13312 2013-08-22] (Microsoft Corporation) [File not signed]
S3 smphost; C:\Windows\SysWOW64\smphost.dll [11776 2013-08-22] (Microsoft Corporation) [File not signed]
S4 SNMPTRAP; C:\Windows\System32\snmptrap.exe [14848 2013-08-22] (Microsoft Corporation) [File not signed]
S4 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software) [File not signed]
R2 Spooler; C:\Windows\System32\spoolsv.exe [798208 2013-08-22] (Microsoft Corporation) [File not signed]
S2 sppsvc; C:\Windows\system32\sppsvc.exe [6353960 2014-03-18] (Microsoft Corporation) [File not signed]
R3 SSDPSRV; C:\Windows\System32\ssdpsrv.dll [239616 2013-08-22] (Microsoft Corporation) [File not signed]
S3 SstpSvc; C:\Windows\system32\sstpsvc.dll [144384 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [836288 2015-04-14] (Valve Corporation) [File not signed]
R2 stisvc; C:\Windows\System32\wiaservc.dll [634368 2013-08-22] (Microsoft Corporation) [File not signed]
S3 StorSvc; C:\Windows\system32\storsvc.dll [19968 2013-08-22] (Microsoft Corporation) [File not signed]
S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18944 2013-08-22] (Microsoft Corporation) [File not signed]
S3 svsvc; C:\Windows\system32\svsvc.dll [13312 2013-08-22] (Microsoft Corporation) [File not signed]
S4 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 swprv; C:\Windows\System32\swprv.dll [718336 2014-03-27] (Microsoft Corporation) [File not signed]
R2 SysMain; C:\Windows\system32\sysmain.dll [1192448 2014-03-18] (Microsoft Corporation) [File not signed]
R2 SystemEventsBroker; C:\Windows\System32\SystemEventsBrokerServer.dll [282112 2014-03-18] (Microsoft Corporation) [File not signed]
S3 TabletInputService; C:\Windows\System32\TabSvc.dll [147456 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TapiSrv; C:\Windows\System32\tapisrv.dll [306688 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TapiSrv; C:\Windows\SysWOW64\tapisrv.dll [248320 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TermService; C:\Windows\System32\termsrv.dll [1018880 2014-04-14] (Microsoft Corporation) [File not signed]
R2 Themes; C:\Windows\system32\themeservice.dll [50688 2013-08-22] (Microsoft Corporation) [File not signed]
S3 THREADORDER; C:\Windows\system32\mmcss.dll [70656 2013-08-22] (Microsoft Corporation) [File not signed]
R3 TimeBroker; C:\Windows\System32\TimeBrokerServer.dll [245760 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TrkWks; C:\Windows\System32\trkwks.dll [122368 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TrustedInstaller; C:\Windows\servicing\TrustedInstaller.exe [99840 2014-03-18] (Microsoft Corporation) [File not signed]
S3 UI0Detect; C:\Windows\system32\UI0Detect.exe [40960 2013-08-22] (Microsoft Corporation) [File not signed]
S3 UmRdpService; C:\Windows\System32\umrdp.dll [289280 2014-03-18] (Microsoft Corporation) [File not signed]
S3 upnphost; C:\Windows\System32\upnphost.dll [436224 2013-08-22] (Microsoft Corporation) [File not signed]
S3 upnphost; C:\Windows\SysWOW64\upnphost.dll [307200 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VaultSvc; C:\Windows\System32\vaultsvc.dll [248832 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vds; C:\Windows\System32\vds.exe [1283584 2014-03-18] (Microsoft Corporation) [File not signed]
S3 vmicguestinterface; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmicheartbeat; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmickvpexchange; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmicrdv; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmicshutdown; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmictimesync; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmicvss; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VSS; C:\Windows\system32\vssvc.exe [1436160 2014-03-27] (Microsoft Corporation) [File not signed]
S3 W32Time; C:\Windows\system32\w32time.dll [404480 2013-08-22] (Microsoft Corporation) [File not signed]
S3 wbengine; C:\Windows\system32\wbengine.exe [1543680 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WbioSrvc; C:\Windows\System32\wbiosrvc.dll [453632 2014-03-18] (Microsoft Corporation) [File not signed]
R2 Wcmsvc; C:\Windows\System32\wcmsvc.dll [366080 2014-03-18] (Microsoft Corporation) [File not signed]
S3 wcncsvc; C:\Windows\System32\wcncsvc.dll [459776 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WcsPlugInService; C:\Windows\System32\WcsPlugInService.dll [41984 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WcsPlugInService; C:\Windows\SysWOW64\WcsPlugInService.dll [34304 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WdiServiceHost; C:\Windows\system32\wdi.dll [91136 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WdiServiceHost; C:\Windows\SysWOW64\wdi.dll [80896 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WdiSystemHost; C:\Windows\system32\wdi.dll [91136 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WdiSystemHost; C:\Windows\SysWOW64\wdi.dll [80896 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation) [File not signed]
S3 WebClient; C:\Windows\System32\webclnt.dll [226816 2014-04-09] (Microsoft Corporation) [File not signed]
S3 WebClient; C:\Windows\SysWOW64\webclnt.dll [198656 2014-04-09] (Microsoft Corporation) [File not signed]
S3 Wecsvc; C:\Windows\system32\wecsvc.dll [215040 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WEPHOSTSVC; C:\Windows\system32\wephostsvc.dll [24576 2013-08-22] (Microsoft Corporation) [File not signed]
S3 wercplsupport; C:\Windows\System32\wercplsupport.dll [81408 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WerSvc; C:\Windows\System32\WerSvc.dll [107008 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WiaRpc; C:\Windows\System32\wiarpc.dll [66048 2013-08-22] (Microsoft Corporation) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation) [File not signed]
R3 WinHttpAutoProxySvc; C:\Windows\system32\winhttp.dll [786432 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WinHttpAutoProxySvc; C:\Windows\SysWOW64\winhttp.dll [589312 2013-08-22] (Microsoft Corporation) [File not signed]
R2 Winmgmt; C:\Windows\system32\wbem\WMIsvc.dll [220672 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WinRM; C:\Windows\system32\WsmSvc.dll [2479616 2014-03-06] (Microsoft Corporation) [File not signed]
S3 WinRM; C:\Windows\SysWOW64\WsmSvc.dll [2030080 2014-03-06] (Microsoft Corporation) [File not signed]
R2 WlanSvc; C:\Windows\System32\wlansvc.dll [1527296 2014-03-19] (Microsoft Corporation) [File not signed]
S3 wlidsvc; C:\Windows\system32\wlidsvc.dll [1576960 2014-03-18] (Microsoft Corporation) [File not signed]
S3 wmiApSrv; C:\Windows\system32\wbem\WmiApSrv.exe [195072 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [1403392 2014-03-18] (Microsoft Corporation) [File not signed]
S3 workfolderssvc; C:\Windows\system32\workfolderssvc.dll [1584128 2014-04-03] (Microsoft Corporation) [File not signed]
S3 WPCSvc; C:\Windows\System32\wpcsvc.dll [12288 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WPCSvc; C:\Windows\SysWOW64\wpcsvc.dll [11264 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WPDBusEnum; C:\Windows\system32\wpdbusenum.dll [84480 2013-08-22] (Microsoft Corporation) [File not signed]
R2 wscsvc; C:\Windows\System32\wscsvc.dll [135168 2014-04-09] (Microsoft Corporation) [File not signed]
R2 WSearch; C:\Windows\system32\SearchIndexer.exe [845824 2014-03-18] (Microsoft Corporation) [File not signed]
R2 WSearch; C:\Windows\SysWOW64\SearchIndexer.exe [658432 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WSService; C:\Windows\System32\WSService.dll [3394384 2014-03-18] (Microsoft Corporation) [File not signed]
R2 wuauserv; C:\Windows\system32\wuaueng.dll [3463680 2014-07-24] (Microsoft Corporation) [File not signed]
R3 wudfsvc; C:\Windows\System32\WUDFSvc.dll [99840 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WwanSvc; C:\Windows\System32\wwansvc.dll [510464 2013-08-22] (Microsoft Corporation) [File not signed]
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-02-25] (Atheros) [File not signed]
S2 AVGIDSAgent; No ImagePath
S2 avgwd; No ImagePath
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 1394ohci; C:\Windows\System32\drivers\1394ohci.sys [231424 2013-08-22] (Microsoft Corporation) [File not signed]
S0 3ware; C:\Windows\System32\drivers\3ware.sys [108896 2013-08-22] (LSI) [File not signed]
R0 ACPI; C:\Windows\System32\drivers\ACPI.sys [539992 2014-03-18] (Microsoft Corporation) [File not signed]
R0 acpiex; C:\Windows\System32\Drivers\acpiex.sys [79712 2013-08-22] (Microsoft Corporation) [File not signed]
S3 acpipagr; C:\Windows\System32\drivers\acpipagr.sys [10240 2013-08-22] (Microsoft Corporation) [File not signed]
S3 AcpiPmi; C:\Windows\System32\drivers\acpipmi.sys [12288 2013-08-22] (Microsoft Corporation) [File not signed]
S3 acpitime; C:\Windows\System32\drivers\acpitime.sys [10752 2013-08-22] (Microsoft Corporation) [File not signed]
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra) [File not signed]
R1 AFD; C:\Windows\system32\drivers\afd.sys [563200 2014-05-30] (Microsoft Corporation) [File not signed]
S0 agp440; C:\Windows\System32\drivers\agp440.sys [62304 2013-08-22] (Microsoft Corporation) [File not signed]
R1 ahcache; C:\Windows\System32\DRIVERS\ahcache.sys [76800 2013-08-22] (Microsoft Corporation) [File not signed]
R3 AiCharger; C:\Windows\system32\DRIVERS\AiCharger.sys [17152 2014-03-27] (ASUSTek Computer Inc.) [File not signed]
S3 AmdK8; C:\Windows\System32\drivers\amdk8.sys [95744 2013-08-22] (Microsoft Corporation) [File not signed]
S3 AmdPPM; C:\Windows\System32\drivers\amdppm.sys [98816 2013-08-22] (Microsoft Corporation) [File not signed]
S0 amdsata; C:\Windows\System32\drivers\amdsata.sys [79200 2013-08-22] (Advanced Micro Devices) [File not signed]
S0 amdsbs; C:\Windows\System32\drivers\amdsbs.sys [259424 2013-08-22] (AMD Technologies Inc.) [File not signed]
S0 amdxata; C:\Windows\System32\drivers\amdxata.sys [25952 2013-08-22] (Advanced Micro Devices) [File not signed]
S3 AppID; C:\Windows\system32\drivers\appid.sys [83456 2014-03-18] (Microsoft Corporation) [File not signed]
S0 arcsas; C:\Windows\System32\drivers\arcsas.sys [114016 2013-08-22] (PMC-Sierra, Inc.) [File not signed]
R2 ASMMAP64; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [15416 2009-07-02] (ASUS) [File not signed]
S3 AsyncMac; C:\Windows\system32\DRIVERS\asyncmac.sys [26624 2013-08-22] (Microsoft Corporation) [File not signed]
S0 atapi; C:\Windows\System32\drivers\atapi.sys [26464 2013-08-22] (Microsoft Corporation) [File not signed]
R3 AthBTPort; C:\Windows\system32\DRIVERS\btath_flt.sys [89800 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3892224 2014-03-06] (Qualcomm Atheros Communications, Inc.) [File not signed]
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [19768 2013-07-02] (ASUSTek Computer Inc.) [File not signed]
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [69904 2014-03-31] (ASUS Corporation) [File not signed]
S3 avc3; C:\Windows\System32\DRIVERS\avc3.sys [727592 2015-01-06] (BitDefender) [File not signed]
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [261496 2015-01-06] (BitDefender) [File not signed]
S3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [601360 2015-01-06] (BitDefender) [File not signed]
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [21152 2015-03-27] (AVG Technologies CZ, s.r.o.) [File not signed]
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [162784 2015-03-11] (AVG Technologies CZ, s.r.o.) [File not signed]
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [284128 2015-04-09] (AVG Technologies CZ, s.r.o.) [File not signed]
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [213984 2015-03-11] (AVG Technologies CZ, s.r.o.) [File not signed]
S1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [256992 2015-04-15] (AVG Technologies CZ, s.r.o.) [File not signed]
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [344544 2015-03-11] (AVG Technologies CZ, s.r.o.) [File not signed]
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [137184 2015-04-03] (AVG Technologies CZ, s.r.o.) [File not signed]
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [40928 2015-03-20] (AVG Technologies CZ, s.r.o.) [File not signed]
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [293856 2015-04-07] (AVG Technologies CZ, s.r.o.) [File not signed]
S0 b06bdrv; C:\Windows\System32\drivers\bxvbda.sys [531296 2013-08-22] (Broadcom Corporation) [File not signed]
R1 BasicDisplay; C:\Windows\System32\drivers\BasicDisplay.sys [50688 2013-08-22] (Microsoft Corporation) [File not signed]
R1 BasicRender; C:\Windows\System32\drivers\BasicRender.sys [33280 2014-03-18] (Microsoft Corporation) [File not signed]
U5 BattC; C:\Windows\System32\Drivers\BattC.sys [35168 2013-08-22] (Microsoft Corporation) [File not signed]
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows ® Win 7 DDK provider) [File not signed]
R3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [102912 2013-08-22] (Microsoft Corporation) [File not signed]
R3 BTATH_A2DP; C:\Windows\system32\drivers\btath_a2dp.sys [355528 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 btath_avdt; C:\Windows\system32\drivers\btath_avdt.sys [118984 2014-02-25] (Qualcomm Atheros) [File not signed]
R0 BTATH_BUS; C:\Windows\System32\drivers\btath_bus.sys [35016 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 BTATH_HCRP; C:\Windows\System32\drivers\btath_hcrp.sys [179432 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 BTATH_RCP; C:\Windows\System32\drivers\btath_rcp.sys [137928 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [598216 2014-02-25] (Qualcomm Atheros) [File not signed]
S3 BthAvrcpTg; C:\Windows\System32\drivers\BthAvrcpTg.sys [36992 2013-08-22] (Microsoft Corporation) [File not signed]
R3 BthEnum; C:\Windows\System32\drivers\BthEnum.sys [53248 2013-08-22] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [57856 2013-08-22] (Microsoft Corporation) [File not signed]
S3 bthhfhid; C:\Windows\System32\drivers\BthHFHid.sys [30720 2013-08-22] (Microsoft Corporation) [File not signed]
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [64000 2014-03-18] (Microsoft Corporation) [File not signed]
R3 BthPan; C:\Windows\system32\DRIVERS\bthpan.sys [118272 2013-08-22] (Microsoft Corporation) [File not signed]
S3 BTHPORT; C:\Windows\System32\Drivers\BTHport.sys [1200128 2014-04-11] (Microsoft Corporation) [File not signed]
R3 BTHUSB; C:\Windows\System32\Drivers\BTHUSB.sys [81920 2014-03-18] (Microsoft Corporation) [File not signed]
S4 cdfs; C:\Windows\System32\DRIVERS\cdfs.sys [88576 2013-08-22] (Microsoft Corporation) [File not signed]
R1 cdrom; C:\Windows\System32\drivers\cdrom.sys [164352 2013-08-22] (Microsoft Corporation) [File not signed]
S3 circlass; C:\Windows\System32\drivers\circlass.sys [44032 2013-08-22] (Microsoft Corporation) [File not signed]
R0 CLFS; C:\Windows\System32\drivers\CLFS.sys [376152 2014-03-20] (Microsoft Corporation) [File not signed]
R3 CmBatt; C:\Windows\System32\drivers\CmBatt.sys [25472 2013-08-22] (Microsoft Corporation) [File not signed]
R0 CNG; C:\Windows\System32\Drivers\cng.sys [565576 2014-05-29] (Microsoft Corporation) [File not signed]
R3 CompositeBus; C:\Windows\System32\drivers\CompositeBus.sys [36352 2013-08-22] (Microsoft Corporation) [File not signed]
R3 condrv; C:\Windows\System32\drivers\condrv.sys [43008 2013-08-22] (Microsoft Corporation) [File not signed]
R1 CSC; C:\Windows\System32\drivers\csc.sys [559616 2014-03-18] (Microsoft Corporation) [File not signed]
S1 dam; C:\Windows\System32\drivers\dam.sys [57696 2013-08-22] (Microsoft Corporation) [File not signed]
R1 Dfsc; C:\Windows\System32\Drivers\dfsc.sys [134144 2014-03-06] (Microsoft Corporation) [File not signed]
R0 disk; C:\Windows\System32\drivers\disk.sys [100192 2013-08-22] (Microsoft Corporation) [File not signed]
S3 dmvsc; C:\Windows\System32\drivers\dmvsc.sys [29696 2013-08-22] (Microsoft Corporation) [File not signed]
R3 DptfDevDram; C:\Windows\system32\DRIVERS\DptfDevDram.sys [145640 2013-10-18] (Intel Corporation) [File not signed]
R3 DptfDevPch; C:\Windows\system32\DRIVERS\DptfDevPch.sys [116752 2013-10-18] (Intel Corporation) [File not signed]
R3 DptfDevProc; C:\Windows\system32\DRIVERS\DptfDevProc.sys [289744 2013-10-18] (Intel Corporation) [File not signed]
R3 DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [494296 2013-10-18] (Intel Corporation) [File not signed]
S3 drmkaud; C:\Windows\system32\drivers\drmkaud.sys [14560 2013-08-22] (Microsoft Corporation) [File not signed]
R3 DXGKrnl; C:\Windows\System32\drivers\dxgkrnl.sys [1557848 2014-03-06] (Microsoft Corporation) [File not signed]
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) [File not signed]
R0 EhStorClass; C:\Windows\System32\drivers\EhStorClass.sys [82784 2013-08-22] (Microsoft Corporation) [File not signed]
S0 EhStorTcgDrv; C:\Windows\System32\drivers\EhStorTcgDrv.sys [114016 2013-08-22] (Microsoft Corporation) [File not signed]
R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [40344 2013-03-04] (Elaborate Bytes AG) [File not signed]
S3 ErrDev; C:\Windows\System32\drivers\errdev.sys [10240 2013-08-22] (Microsoft Corporation) [File not signed]
S3 exfat; C:\Windows\System32\Drivers\exfat.sys [200704 2013-08-22] (Microsoft Corporation) [File not signed]
S3 fastfat; C:\Windows\System32\Drivers\fastfat.sys [217952 2013-08-22] (Microsoft Corporation) [File not signed]
S3 fdc; C:\Windows\System32\drivers\fdc.sys [30720 2013-08-22] (Microsoft Corporation) [File not signed]
R0 FileInfo; C:\Windows\System32\drivers\fileinfo.sys [79192 2014-03-18] (Microsoft Corporation) [File not signed]
S3 Filetrace; C:\Windows\System32\drivers\filetrace.sys [34816 2013-08-22] (Microsoft Corporation) [File not signed]
S3 flpydisk; C:\Windows\System32\drivers\flpydisk.sys [25088 2013-08-22] (Microsoft Corporation) [File not signed]
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [360792 2014-04-06] (Microsoft Corporation) [File not signed]
S3 FsDepends; C:\Windows\System32\drivers\FsDepends.sys [56672 2013-08-22] (Microsoft Corporation) [File not signed]
R0 fvevol; C:\Windows\System32\DRIVERS\fvevol.sys [589656 2014-04-08] (Microsoft Corporation) [File not signed]
S3 FxPPM; C:\Windows\System32\drivers\fxppm.sys [27136 2013-08-22] (Microsoft Corporation) [File not signed]
S0 gagp30kx; C:\Windows\System32\drivers\gagp30kx.sys [65888 2013-08-22] (Microsoft Corporation) [File not signed]
S3 gencounter; C:\Windows\System32\drivers\vmgencounter.sys [11264 2013-08-22] (Microsoft Corporation) [File not signed]
S3 ggflt; C:\Windows\System32\drivers\ggflt.sys [16088 2015-03-10] (Sony Mobile Communications) [File not signed]
S3 ggsomc; C:\Windows\System32\drivers\ggsomc.sys [30424 2015-03-10] (Sony Mobile Communications) [File not signed]
S3 GPIOClx0101; C:\Windows\System32\Drivers\msgpioclx.sys [146776 2014-03-18] (Microsoft Corporation) [File not signed]
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45112 2014-12-13] (LogMeIn Inc.) [File not signed]
S3 HdAudAddService; C:\Windows\system32\drivers\HdAudio.sys [395776 2013-08-22] (Microsoft Corporation) [File not signed]
R3 HDAudBus; C:\Windows\System32\drivers\HDAudBus.sys [77312 2014-03-18] (Microsoft Corporation) [File not signed]
S3 HidBatt; C:\Windows\System32\drivers\HidBatt.sys [26624 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HidBth; C:\Windows\System32\drivers\hidbth.sys [96768 2013-08-22] (Microsoft Corporation) [File not signed]
S3 hidi2c; C:\Windows\System32\drivers\hidi2c.sys [41472 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HidIr; C:\Windows\System32\drivers\hidir.sys [45568 2013-08-22] (Microsoft Corporation) [File not signed]
R3 HIDSwitch; C:\Windows\System32\drivers\AsHIDSwitch64.sys [20280 2013-11-04] (ASUS) [File not signed]
R3 HidUsb; C:\Windows\System32\drivers\hidusb.sys [33280 2014-03-06] (Microsoft Corporation) [File not signed]
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [43664 2015-05-11] () [File not signed]
S0 HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys [64352 2013-08-22] (Hewlett-Packard Company) [File not signed]
R3 HTTP; C:\Windows\System32\drivers\HTTP.sys [994136 2014-03-18] (Microsoft Corporation) [File not signed]
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-05-02] (REALiX™) [File not signed]
S0 hwpolicy; C:\Windows\System32\drivers\hwpolicy.sys [24416 2013-08-22] (Microsoft Corporation) [File not signed]
S3 hyperkbd; C:\Windows\System32\drivers\hyperkbd.sys [13824 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HyperVideo; C:\Windows\system32\DRIVERS\HyperVideo.sys [22016 2013-08-22] (Microsoft Corporation) [File not signed]
R3 i8042prt; C:\Windows\System32\drivers\i8042prt.sys [107520 2013-08-22] (Microsoft Corporation) [File not signed]
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation) [File not signed]
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation) [File not signed]
R0 iaStorA; C:\Windows\System32\drivers\iaStorA.sys [644968 2013-08-09] (Intel Corporation) [File not signed]
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation) [File not signed]
S0 iaStorV; C:\Windows\System32\drivers\iaStorV.sys [412000 2013-08-22] (Intel Corporation) [File not signed]
R3 igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [3729920 2014-03-18] (Intel Corporation) [File not signed]
S3 intaud_WaveExtensible; C:\Windows\system32\drivers\intelaud.sys [38296 2014-03-01] (Intel Corporation) [File not signed]
R3 IntcAzAudAddService; C:\Windows\system32\drivers\RTKVHD64.sys [3932120 2014-04-15] (Realtek Semiconductor Corp.) [File not signed]
S3 IntcDAud; C:\Windows\system32\DRIVERS\IntcDAud.sys [450520 2014-03-17] (Intel® Corporation) [File not signed]
S0 intelide; C:\Windows\System32\drivers\intelide.sys [18272 2013-08-22] (Microsoft Corporation) [File not signed]
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-03-18] (Microsoft Corporation) [File not signed]
R3 intelppm; C:\Windows\System32\drivers\intelppm.sys [98816 2013-08-22] (Microsoft Corporation) [File not signed]
S3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [84992 2013-08-22] (Microsoft Corporation) [File not signed]
S3 IPMIDRV; C:\Windows\System32\drivers\IPMIDrv.sys [79360 2014-03-06] (Microsoft Corporation) [File not signed]
S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [142848 2014-03-18] (Microsoft Corporation) [File not signed]
S3 IRENUM; C:\Windows\System32\drivers\irenum.sys [17920 2013-08-22] (Microsoft Corporation) [File not signed]
S0 isapnp; C:\Windows\System32\drivers\isapnp.sys [21856 2013-08-22] (Microsoft Corporation) [File not signed]
S3 iScsiPrt; C:\Windows\System32\drivers\msiscsi.sys [275800 2014-04-06] (Microsoft Corporation) [File not signed]
R3 iwdbus; C:\Windows\System32\drivers\iwdbus.sys [27032 2014-03-01] (Intel Corporation) [File not signed]
R3 kbdclass; C:\Windows\System32\drivers\kbdclass.sys [58208 2013-08-22] (Microsoft Corporation) [File not signed]
R3 kbdhid; C:\Windows\System32\drivers\kbdhid.sys [32256 2013-08-22] (Microsoft Corporation) [File not signed]
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( ) [File not signed]
S3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [22272 2014-03-18] (Microsoft Corporation) [File not signed]
R3 kdnic; C:\Windows\system32\DRIVERS\kdnic.sys [19456 2013-08-22] (Microsoft Corporation) [File not signed]
R0 KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [101208 2014-03-18] (Microsoft Corporation) [File not signed]
R0 KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [180056 2014-03-08] (Microsoft Corporation) [File not signed]
R3 ksthunk; C:\Windows\system32\drivers\ksthunk.sys [21248 2013-08-22] (Microsoft Corporation) [File not signed]
R2 lltdio; C:\Windows\system32\DRIVERS\lltdio.sys [59392 2013-08-22] (Microsoft Corporation) [File not signed]
S0 LSI_SAS; C:\Windows\System32\drivers\lsi_sas.sys [109408 2013-08-22] (LSI Corporation) [File not signed]
S0 LSI_SAS2; C:\Windows\System32\drivers\lsi_sas2.sys [93536 2013-08-22] (LSI Corporation) [File not signed]
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation) [File not signed]
S0 LSI_SSS; C:\Windows\System32\drivers\lsi_sss.sys [82784 2013-08-22] (LSI Corporation) [File not signed]
R2 luafv; C:\Windows\system32\drivers\luafv.sys [124416 2014-03-18] (Microsoft Corporation) [File not signed]
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation) [File not signed]
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation) [File not signed]
S0 megasas; C:\Windows\System32\drivers\megasas.sys [56672 2013-08-22] (LSI Corporation) [File not signed]
S0 megasr; C:\Windows\System32\drivers\megasr.sys [575840 2013-08-22] (LSI Corporation, Inc.) [File not signed]
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2014-07-17] (Intel Corporation) [File not signed]
S3 Modem; C:\Windows\System32\drivers\modem.sys [40960 2013-08-22] (Microsoft Corporation) [File not signed]
R3 monitor; C:\Windows\System32\drivers\monitor.sys [30208 2013-08-22] (Microsoft Corporation) [File not signed]
R3 mouclass; C:\Windows\System32\drivers\mouclass.sys [51040 2013-08-22] (Microsoft Corporation) [File not signed]
R3 mouhid; C:\Windows\System32\drivers\mouhid.sys [30208 2013-08-22] (Microsoft Corporation) [File not signed]
R0 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [101728 2013-08-22] (Microsoft Corporation) [File not signed]
R3 mpsdrv; C:\Windows\System32\drivers\mpsdrv.sys [74240 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [140288 2014-03-06] (Microsoft Corporation) [File not signed]
R3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [402432 2014-04-30] (Microsoft Corporation) [File not signed]
R2 mrxsmb10; C:\Windows\System32\DRIVERS\mrxsmb10.sys [283648 2014-03-06] (Microsoft Corporation) [File not signed]
R3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [206848 2014-05-31] (Microsoft Corporation) [File not signed]
S3 MsBridge; C:\Windows\system32\DRIVERS\bridge.sys [115712 2013-08-22] (Microsoft Corporation) [File not signed]
S3 msgpiowin32; C:\Windows\System32\drivers\msgpiowin32.sys [41824 2013-08-22] (Microsoft Corporation) [File not signed]
S3 mshidkmdf; C:\Windows\System32\drivers\mshidkmdf.sys [8192 2013-08-22] (Microsoft Corporation) [File not signed]
S3 mshidumdf; C:\Windows\System32\drivers\mshidumdf.sys [9728 2013-08-22] (Microsoft Corporation) [File not signed]
R0 msisadrv; C:\Windows\System32\drivers\msisadrv.sys [17248 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSKSSRV; C:\Windows\system32\drivers\MSKSSRV.sys [10624 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MsLldp; C:\Windows\system32\DRIVERS\mslldp.sys [66560 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSPCLOCK; C:\Windows\system32\drivers\MSPCLOCK.sys [7040 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSPQM; C:\Windows\system32\drivers\MSPQM.sys [6784 2013-08-22] (Microsoft Corporation) [File not signed]
R1 mssmbios; C:\Windows\System32\drivers\mssmbios.sys [37728 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSTEE; C:\Windows\system32\drivers\MSTEE.sys [7936 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MTConfig; C:\Windows\System32\drivers\MTConfig.sys [13312 2013-08-22] (Microsoft Corporation) [File not signed]
R0 Mup; C:\Windows\System32\Drivers\mup.sys [78688 2013-08-22] (Microsoft Corporation) [File not signed]
S0 mvumis; C:\Windows\System32\drivers\mvumis.sys [63840 2013-08-22] (Marvell Semiconductor, Inc.) [File not signed]
R3 NativeWifiP; C:\Windows\system32\DRIVERS\nwifi.sys [443904 2014-03-19] (Microsoft Corporation) [File not signed]
R0 NDIS; C:\Windows\System32\drivers\ndis.sys [1118552 2014-03-18] (Microsoft Corporation) [File not signed]
S3 NdisCap; C:\Windows\system32\DRIVERS\ndiscap.sys [43008 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NdisImPlatform; C:\Windows\system32\DRIVERS\NdisImPlatform.sys [124928 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NdisTapi; C:\Windows\system32\DRIVERS\ndistapi.sys [24576 2013-08-22] (Microsoft Corporation) [File not signed]
R3 Ndisuio; C:\Windows\system32\DRIVERS\ndisuio.sys [60416 2013-08-22] (Microsoft Corporation) [File not signed]
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NdisWan; C:\Windows\system32\DRIVERS\ndiswan.sys [220672 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NdisWanLegacy; C:\Windows\system32\DRIVERS\ndiswan.sys [220672 2013-08-22] (Microsoft Corporation) [File not signed]
R2 Ndu; C:\Windows\System32\drivers\Ndu.sys [103424 2013-08-22] (Microsoft Corporation) [File not signed]
R1 NetBIOS; C:\Windows\System32\DRIVERS\netbios.sys [48128 2013-08-22] (Microsoft Corporation) [File not signed]
R1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [282624 2013-08-22] (Microsoft Corporation) [File not signed]
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation) [File not signed]
R1 npsvctrig; C:\Windows\System32\drivers\npsvctrig.sys [23040 2013-08-22] (Microsoft Corporation) [File not signed]
R1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [39936 2013-08-22] (Microsoft Corporation) [File not signed]
R1 Null; C:\Windows\System32\Drivers\Null.sys [5632 2013-08-22] (Microsoft Corporation) [File not signed]
R3 nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [10423952 2015-04-09] (NVIDIA Corporation) [File not signed]
S0 nvraid; C:\Windows\System32\drivers\nvraid.sys [150368 2013-08-22] (NVIDIA Corporation) [File not signed]
S0 nvstor; C:\Windows\System32\drivers\nvstor.sys [168288 2013-08-22] (NVIDIA Corporation) [File not signed]
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-01] (NVIDIA Corporation) [File not signed]
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation) [File not signed]
S0 nv_agp; C:\Windows\System32\drivers\nv_agp.sys [124768 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Parport; C:\Windows\System32\drivers\parport.sys [94208 2013-08-22] (Microsoft Corporation) [File not signed]
R0 partmgr; C:\Windows\System32\drivers\partmgr.sys [88928 2013-08-22] (Microsoft Corporation) [File not signed]
R0 pci; C:\Windows\System32\drivers\pci.sys [280920 2014-03-18] (Microsoft Corporation) [File not signed]
S0 pciide; C:\Windows\System32\drivers\pciide.sys [14688 2013-08-22] (Microsoft Corporation) [File not signed]
S0 pcmcia; C:\Windows\System32\drivers\pcmcia.sys [114528 2013-08-22] (Microsoft Corporation) [File not signed]
R0 pcw; C:\Windows\System32\drivers\pcw.sys [50016 2013-08-22] (Microsoft Corporation) [File not signed]
R0 pdc; C:\Windows\System32\drivers\pdc.sys [86872 2014-03-18] (Microsoft Corporation) [File not signed]
R2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [663040 2014-03-18] (Microsoft Corporation) [File not signed]
R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [14136 2014-01-03] (Windows ® Win 7 DDK provider) [File not signed]
S3 pneteth; C:\Windows\system32\DRIVERS\pneteth.sys [15360 2011-11-25] (June Fabrics Technology Inc.) [File not signed]
S3 PptpMiniport; C:\Windows\system32\DRIVERS\raspptp.sys [107520 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Processor; C:\Windows\System32\drivers\processr.sys [92160 2013-08-22] (Microsoft Corporation) [File not signed]
R1 Psched; C:\Windows\system32\DRIVERS\pacer.sys [151552 2013-08-22] (Microsoft Corporation) [File not signed]
S3 QWAVEdrv; C:\Windows\system32\drivers\qwavedrv.sys [47104 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasAcd; C:\Windows\System32\DRIVERS\rasacd.sys [17408 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasAgileVpn; C:\Windows\system32\DRIVERS\AgileVpn.sys [96768 2014-04-30] (Microsoft Corporation) [File not signed]
S3 Rasl2tp; C:\Windows\system32\DRIVERS\rasl2tp.sys [120832 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasPppoe; C:\Windows\system32\DRIVERS\raspppoe.sys [84992 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasSstp; C:\Windows\system32\DRIVERS\rassstp.sys [96256 2013-08-22] (Microsoft Corporation) [File not signed]
R1 rdbss; C:\Windows\System32\DRIVERS\rdbss.sys [408576 2014-03-18] (Microsoft Corporation) [File not signed]
R3 rdpbus; C:\Windows\System32\drivers\rdpbus.sys [22528 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RDPDR; C:\Windows\System32\drivers\rdpdr.sys [195584 2014-03-18] (Microsoft Corporation) [File not signed]
S3 RdpVideoMiniport; C:\Windows\System32\drivers\rdpvideominiport.sys [27488 2014-03-18] (Microsoft Corporation) [File not signed]
R0 rdyboost; C:\Windows\System32\drivers\rdyboost.sys [249688 2014-03-18] (Microsoft Corporation) [File not signed]
R3 RFCOMM; C:\Windows\system32\DRIVERS\rfcomm.sys [167424 2014-03-18] (Microsoft Corporation) [File not signed]
R2 rspndr; C:\Windows\system32\DRIVERS\rspndr.sys [80384 2013-08-22] (Microsoft Corporation) [File not signed]
R3 RTL8168; C:\Windows\system32\DRIVERS\Rt630x64.sys [871640 2014-07-17] (Realtek                                            ) [File not signed]
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [423128 2014-07-18] (Realsil Semiconductor Corporation) [File not signed]
S3 s3cap; C:\Windows\System32\drivers\vms3cap.sys [7168 2013-08-22] (Microsoft Corporation) [File not signed]
S0 sbp2port; C:\Windows\System32\drivers\sbp2port.sys [107872 2013-08-22] (Microsoft Corporation) [File not signed]
S3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [40960 2013-08-22] (Microsoft Corporation) [File not signed]
S3 sdbus; C:\Windows\System32\drivers\sdbus.sys [236888 2014-03-18] (Microsoft Corporation) [File not signed]
S3 sdstor; C:\Windows\System32\drivers\sdstor.sys [79192 2014-03-18] (Microsoft Corporation) [File not signed]
S3 SerCx; C:\Windows\System32\drivers\SerCx.sys [69472 2013-08-22] (Microsoft Corporation) [File not signed]
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-03-18] (Microsoft Corporation) [File not signed]
S3 Serenum; C:\Windows\System32\drivers\serenum.sys [23040 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Serial; C:\Windows\System32\drivers\serial.sys [83456 2013-08-22] (Microsoft Corporation) [File not signed]
S3 sermouse; C:\Windows\System32\drivers\sermouse.sys [26112 2013-08-22] (Microsoft Corporation) [File not signed]
S3 sfloppy; C:\Windows\System32\drivers\sfloppy.sys [17408 2013-08-22] (Microsoft Corporation) [File not signed]
S0 SiSRaid2; C:\Windows\System32\drivers\SiSRaid2.sys [44896 2013-08-22] (Silicon Integrated Systems Corp.) [File not signed]
S0 SiSRaid4; C:\Windows\System32\drivers\sisraid4.sys [81760 2013-08-22] (Silicon Integrated Systems) [File not signed]
R0 spaceport; C:\Windows\System32\drivers\spaceport.sys [384856 2014-04-01] (Microsoft Corporation) [File not signed]
S3 SpbCx; C:\Windows\System32\drivers\SpbCx.sys [72032 2013-08-22] (Microsoft Corporation) [File not signed]
R2 srv; C:\Windows\System32\DRIVERS\srv.sys [454656 2014-03-18] (Microsoft Corporation) [File not signed]
R3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [677376 2014-04-03] (Microsoft Corporation) [File not signed]
R3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [246272 2014-03-27] (Microsoft Corporation) [File not signed]
S0 stexstor; C:\Windows\System32\drivers\stexstor.sys [31072 2013-08-22] (Promise Technology, Inc.) [File not signed]
S0 storahci; C:\Windows\System32\drivers\storahci.sys [107872 2013-08-22] (Microsoft Corporation) [File not signed]
S0 storflt; C:\Windows\System32\DRIVERS\vmstorfl.sys [49984 2013-08-22] (Microsoft Corporation) [File not signed]
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2014-03-18] (Microsoft Corporation) [File not signed]
S0 storvsc; C:\Windows\System32\drivers\storvsc.sys [45888 2013-08-22] (Microsoft Corporation) [File not signed]
S3 storvsp; C:\Windows\System32\drivers\storvsp.sys [68608 2014-03-18] (Microsoft Corporation) [File not signed]
R3 swenum; C:\Windows\System32\drivers\swenum.sys [14176 2013-08-22] (Microsoft Corporation) [File not signed]
S3 tap0901; C:\Windows\system32\DRIVERS\tap0901.sys [40664 2013-08-22] (The OpenVPN Project) [File not signed]
R0 Tcpip; C:\Windows\System32\drivers\tcpip.sys [2518360 2014-05-27] (Microsoft Corporation) [File not signed]
S3 TCPIP6; C:\Windows\system32\DRIVERS\tcpip.sys [2518360 2014-05-27] (Microsoft Corporation) [File not signed]
R2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [49152 2014-03-06] (Microsoft Corporation) [File not signed]
R1 tdx; C:\Windows\system32\DRIVERS\tdx.sys [107520 2013-08-22] (Microsoft Corporation) [File not signed]
S3 terminpt; C:\Windows\System32\drivers\terminpt.sys [37216 2014-03-18] (Microsoft Corporation) [File not signed]
S3 TPM; C:\Windows\system32\drivers\tpm.sys [159584 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [56320 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TsUsbGD; C:\Windows\System32\drivers\TsUsbGD.sys [29696 2013-08-22] (Microsoft Corporation) [File not signed]
S3 tunnel; C:\Windows\system32\DRIVERS\tunnel.sys [154112 2013-08-22] (Microsoft Corporation) [File not signed]
S0 uagp35; C:\Windows\System32\drivers\uagp35.sys [64864 2013-08-22] (Microsoft Corporation) [File not signed]
S3 UASPStor; C:\Windows\System32\drivers\uaspstor.sys [74080 2013-08-22] (Microsoft Corporation) [File not signed]
R3 UCX01000; C:\Windows\System32\drivers\ucx01000.sys [189784 2014-03-18] (Microsoft Corporation) [File not signed]
S4 udfs; C:\Windows\System32\DRIVERS\udfs.sys [316928 2013-08-22] (Microsoft Corporation) [File not signed]
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation) [File not signed]
S0 uliagpkx; C:\Windows\System32\drivers\uliagpkx.sys [65888 2013-08-22] (Microsoft Corporation) [File not signed]
R3 umbus; C:\Windows\System32\drivers\umbus.sys [46080 2013-08-22] (Microsoft Corporation) [File not signed]
S3 UmPass; C:\Windows\System32\drivers\umpass.sys [11776 2013-08-22] (Microsoft Corporation) [File not signed]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] () [File not signed]
R3 usbccgp; C:\Windows\System32\drivers\usbccgp.sys [155480 2014-03-18] (Microsoft Corporation) [File not signed]
S3 usbcir; C:\Windows\System32\drivers\usbcir.sys [98304 2013-08-22] (Microsoft Corporation) [File not signed]
R3 usbehci; C:\Windows\System32\drivers\usbehci.sys [89944 2014-05-31] (Microsoft Corporation) [File not signed]
R3 usbhub; C:\Windows\System32\drivers\usbhub.sys [419672 2014-05-31] (Microsoft Corporation) [File not signed]
R3 USBHUB3; C:\Windows\System32\drivers\UsbHub3.sys [467800 2014-05-31] (Microsoft Corporation) [File not signed]
S3 usbohci; C:\Windows\System32\drivers\usbohci.sys [30208 2013-08-22] (Microsoft Corporation) [File not signed]
S3 usbprint; C:\Windows\System32\drivers\usbprint.sys [26112 2013-08-22] (Microsoft Corporation) [File not signed]
S3 usbser; C:\Windows\system32\DRIVERS\usbser.sys [33280 2013-08-22] (Microsoft Corporation) [File not signed]
S3 USBSTOR; C:\Windows\System32\drivers\USBSTOR.SYS [148824 2014-03-18] (Microsoft Corporation) [File not signed]
S3 usbuhci; C:\Windows\System32\drivers\usbuhci.sys [37376 2014-05-31] (Microsoft Corporation) [File not signed]
R3 usbvideo; C:\Windows\System32\Drivers\usbvideo.sys [212224 2013-08-22] (Microsoft Corporation) [File not signed]
R3 USBXHCI; C:\Windows\System32\drivers\USBXHCI.SYS [325464 2014-03-18] (Microsoft Corporation) [File not signed]
S3 usb_rndisx; C:\Windows\system32\DRIVERS\usb8023x.sys [20992 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [141440 2015-03-02] (Oracle Corporation) [File not signed]
R3 VClone; C:\Windows\System32\drivers\VClone.sys [34816 2013-07-24] (Elaborate Bytes AG) [File not signed]
R0 vdrvroot; C:\Windows\System32\drivers\vdrvroot.sys [37728 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VerifierExt; C:\Windows\System32\drivers\VerifierExt.sys [175960 2014-03-18] (Microsoft Corporation) [File not signed]
S3 vhdmp; C:\Windows\System32\drivers\vhdmp.sys [551256 2014-03-18] (Microsoft Corporation) [File not signed]
S0 viaide; C:\Windows\System32\drivers\viaide.sys [19808 2013-08-22] (VIA Technologies, Inc.) [File not signed]
S3 Vid; C:\Windows\System32\drivers\Vid.sys [220672 2014-03-18] (Microsoft Corporation) [File not signed]
S0 vmbus; C:\Windows\System32\drivers\vmbus.sys [97088 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VMBusHID; C:\Windows\System32\drivers\VMBusHID.sys [21760 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmbusr; C:\Windows\System32\drivers\vmbusr.sys [129536 2014-03-18] (Microsoft Corporation) [File not signed]
R0 volmgr; C:\Windows\System32\drivers\volmgr.sys [73568 2013-08-22] (Microsoft Corporation) [File not signed]
R0 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [377696 2013-08-22] (Microsoft Corporation) [File not signed]
R0 volsnap; C:\Windows\System32\drivers\volsnap.sys [310616 2014-03-06] (Microsoft Corporation) [File not signed]
S3 vpci; C:\Windows\System32\drivers\vpci.sys [69472 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vpcivsp; C:\Windows\System32\drivers\vpcivsp.sys [65536 2014-03-18] (Microsoft Corporation) [File not signed]
S0 vsmraid; C:\Windows\System32\drivers\vsmraid.sys [168800 2013-08-22] (VIA Technologies Inc.,Ltd) [File not signed]
S0 VSTXRAID; C:\Windows\System32\drivers\vstxraid.sys [305504 2013-08-22] (VIA Corporation) [File not signed]
R3 vwifibus; C:\Windows\System32\drivers\vwifibus.sys [24576 2013-08-22] (Microsoft Corporation) [File not signed]
R1 vwififlt; C:\Windows\system32\DRIVERS\vwififlt.sys [71680 2014-04-30] (Microsoft Corporation) [File not signed]
R3 vwifimp; C:\Windows\system32\DRIVERS\vwifimp.sys [38912 2014-04-30] (Microsoft Corporation) [File not signed]
S3 WacomPen; C:\Windows\System32\drivers\wacompen.sys [26752 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Wanarp; C:\Windows\system32\DRIVERS\wanarp.sys [79872 2013-08-22] (Microsoft Corporation) [File not signed]
R1 Wanarpv6; C:\Windows\system32\DRIVERS\wanarp.sys [79872 2013-08-22] (Microsoft Corporation) [File not signed]
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [35856 2014-03-24] (Microsoft Corporation) [File not signed]
R0 Wdf01000; C:\Windows\System32\drivers\Wdf01000.sys [839488 2013-08-22] (Microsoft Corporation) [File not signed]
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [257880 2014-03-24] (Microsoft Corporation) [File not signed]
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation) [File not signed]
R0 WFPLWFS; C:\Windows\System32\DRIVERS\wfplwfs.sys [136024 2014-03-08] (Microsoft Corporation) [File not signed]
S3 WIMMount; C:\Windows\System32\drivers\wimmount.sys [33632 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [78848 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WmiAcpi; C:\Windows\System32\drivers\wmiacpi.sys [16384 2013-08-22] (Microsoft Corporation) [File not signed]
S3 wpcfltr; C:\Windows\System32\DRIVERS\wpcfltr.sys [55328 2014-07-24] (Microsoft Corporation) [File not signed]
S3 WpdUpFltr; C:\Windows\System32\drivers\WpdUpFltr.sys [26976 2013-08-22] (Microsoft Corporation) [File not signed]
S4 ws2ifsl; C:\Windows\system32\drivers\ws2ifsl.sys [21504 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [110592 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WUDFRd; C:\Windows\System32\drivers\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WUDFSensorLP; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WUDFWpdFs; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WUDFWpdMtp; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation) [File not signed]
S1 BAPIDRV; system32\DRIVERS\BAPIDRV64.sys [X]
S3 cpuz137; \??\C:\Users\Tony1604\AppData\Local\Temp\cpuz137\cpuz137_x64.sys [X]
S3 SzCCID; \SystemRoot\system32\DRIVERS\SzCCID.sys [X]
S3 VBoxNetFlt; \SystemRoot\system32\DRIVERS\VBoxNetFlt.sys [X]
S3 vpnva; \SystemRoot\system32\DRIVERS\vpnva64-6.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-05-13 20:05 - 2015-05-13 20:06 - 00074474 _____ () C:\Users\Tony1604\Desktop\Main.txt
2015-05-13 19:58 - 2015-05-13 19:58 - 02104832 _____ (Farbar) C:\Users\Tony1604\Desktop\FRST64.exe
2015-05-13 19:58 - 2015-05-13 19:58 - 00000000 ____D () C:\Users\Tony1604\Desktop\FRST-OlderVersion
2015-05-13 19:53 - 2015-05-13 19:53 - 00005538 _____ () C:\Users\Tony1604\Downloads\Cryptographic_Services.reg
2015-05-13 13:09 - 2015-05-13 13:09 - 00003106 _____ () C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1128951351-2712326424-2671060717-1001
2015-05-12 15:13 - 2015-05-12 18:05 - 00000000 ____D () C:\Users\Tony1604\Downloads\Grand.Theft.Auto.V-RELOADED
2015-05-12 15:09 - 2015-05-12 15:09 - 00002412 _____ () C:\Windows\System32\Tasks\Uninstaller_SkipUac_Tony1604
2015-05-12 15:09 - 2015-05-12 15:09 - 00000306 _____ () C:\Windows\Tasks\Uninstaller_SkipUac_Tony1604.job
2015-05-11 23:51 - 2015-05-11 23:51 - 00009964 _____ () C:\Users\Tony1604\Desktop\Praksa.xlsx
2015-05-11 21:25 - 2015-05-11 21:34 - 00000000 ____D () C:\Users\Tony1604\Desktop\271590
2015-05-11 12:48 - 2015-05-11 12:48 - 00043664 _____ () C:\Windows\system32\Drivers\hitmanpro37.sys
2015-05-11 12:47 - 2015-05-11 12:47 - 00004610 _____ () C:\Windows\system32\.crusader
2015-05-11 12:37 - 2015-05-11 12:47 - 00000000 ____D () C:\ProgramData\HitmanPro
2015-05-11 12:35 - 2015-05-11 12:35 - 00001010 _____ () C:\Users\Tony1604\Desktop\Fallout New Vegas.lnk
2015-05-11 12:35 - 2015-05-11 12:35 - 00001007 _____ () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-05-11 12:33 - 2015-05-11 12:35 - 00000000 ____D () C:\AdwCleaner
2015-05-11 11:44 - 2015-05-13 19:58 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-05-11 11:43 - 2015-05-11 11:43 - 00001134 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-05-11 11:43 - 2015-05-11 11:43 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2015-05-11 11:43 - 2015-05-11 11:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-05-11 11:43 - 2015-05-11 11:43 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-05-11 11:43 - 2015-05-11 11:43 - 00000000 ____D () C:\Program Files\Unlocker
2015-05-11 11:43 - 2015-05-11 11:43 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-05-11 11:43 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-05-11 11:43 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-05-11 11:43 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-05-11 01:39 - 2015-05-13 20:05 - 00000000 ____D () C:\FRST
2015-05-11 01:17 - 2015-05-11 01:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-05-11 01:17 - 2015-05-01 18:51 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-05-11 01:17 - 2015-05-01 18:51 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-05-11 01:17 - 2015-05-01 18:50 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-05-11 01:17 - 2015-05-01 18:50 - 01570672 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-05-11 01:17 - 2014-11-22 12:46 - 00038032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2015-05-11 01:17 - 2014-11-22 12:46 - 00035472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2015-05-11 01:17 - 2014-11-22 12:46 - 00032400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2015-05-11 01:16 - 2015-05-12 13:59 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\NVIDIA
2015-05-11 01:13 - 2015-04-09 02:58 - 31570064 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 30397072 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 25375048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 24053576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 17176128 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 15818528 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 15716232 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 14617288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 14006752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 12852784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 12689592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 11380728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 10423952 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-05-11 01:13 - 2015-04-09 02:58 - 03317344 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 02935416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 02896528 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 02573456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 01895568 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435012.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435012.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 01047368 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 01037640 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00970568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00962192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00499344 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00402576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00390472 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00346256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00175880 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00029329 _____ () C:\Windows\system32\nvinfo.pb
2015-05-11 00:40 - 2015-05-11 00:40 - 00001740 __RSH () C:\ProgramData\ntuser.pol
2015-05-11 00:15 - 2015-05-11 00:15 - 00000000 _____ () C:\Windows\system32\sfcdetails.txt
2015-05-10 23:04 - 2015-05-11 12:58 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\mIRC
2015-05-10 23:04 - 2015-05-10 23:04 - 00000967 _____ () C:\Users\Public\Desktop\mIRC.lnk
2015-05-10 23:04 - 2015-05-10 23:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mIRC
2015-05-10 23:04 - 2015-05-10 23:04 - 00000000 ____D () C:\Program Files (x86)\mIRC
2015-05-10 21:56 - 2015-05-11 01:16 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-05-10 21:56 - 2015-04-08 23:30 - 06841488 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 03478344 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 01047696 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 00936264 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-05-10 21:56 - 2015-04-08 23:30 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 00075080 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-05-10 21:56 - 2015-04-08 19:52 - 04336074 _____ () C:\Windows\system32\nvcoproc.bin
2015-05-10 21:36 - 2015-05-10 23:03 - 00000000 ____D () C:\NvidiaLogging
2015-05-10 21:31 - 2015-05-11 01:17 - 00000103 _____ () C:\Windows\setupact.log
2015-05-10 21:31 - 2015-05-10 21:31 - 00000000 _____ () C:\Windows\setuperr.log
2015-05-05 22:56 - 2015-05-13 00:35 - 00000000 _____ () C:\Recovery.txt
2015-05-05 22:56 - 2015-05-05 22:56 - 00000000 __SHD () C:\Recovery
2015-05-05 13:04 - 2015-05-05 13:04 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\TuneUp Software
2015-05-05 12:38 - 2015-05-05 12:38 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Apps\2.0
2015-05-05 10:16 - 2015-05-05 10:16 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\AVG2015
2015-05-05 10:12 - 2015-05-05 10:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-05-05 10:06 - 2015-05-05 10:06 - 00001760 _____ () C:\Users\Tony1604\Desktop\IObit Uninstaller.lnk
2015-05-05 10:00 - 2015-05-05 10:37 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Avg2015
2015-05-03 11:24 - 2015-05-03 11:24 - 00000000 ____D () C:\04ee0def8bac2efda312672267
2015-05-03 11:03 - 2015-05-03 11:03 - 00000000 ____D () C:\Users\Tony1604\Tracing
2015-05-03 11:02 - 2015-05-03 11:02 - 00000000 ____D () C:\Windows\en
2015-05-03 11:01 - 2015-05-03 11:01 - 00002506 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
2015-05-03 11:01 - 2015-05-03 11:01 - 00001478 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2015-05-03 11:01 - 2015-05-03 11:01 - 00001404 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2015-05-03 11:01 - 2015-05-03 11:01 - 00001331 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2015-05-03 11:01 - 2015-05-03 11:01 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-05-03 11:01 - 2015-05-03 11:01 - 00000000 ____D () C:\Program Files\Windows Live
2015-05-03 11:01 - 2015-05-03 11:01 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2015-05-03 10:59 - 2015-05-12 14:10 - 00000769 _____ () C:\Windows\DirectX.log
2015-05-03 10:59 - 2015-05-03 10:59 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2015-05-03 10:58 - 2015-05-03 11:03 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Windows Live
2015-05-03 10:57 - 2015-05-03 10:57 - 00000000 ____D () C:\fc7b9e2c3f4ba3c46771754f40
2015-05-03 10:38 - 2015-05-03 10:38 - 00002355 _____ () C:\Users\Ruža\Desktop\Pokretač aplikacija sustava Chrome.lnk
2015-05-03 10:38 - 2015-05-03 10:38 - 00000000 ____D () C:\Users\Ruža\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-05-03 10:38 - 2015-05-03 10:38 - 00000000 ____D () C:\Users\Ruža\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacije sustava Chrome
2015-05-02 23:24 - 2015-05-02 23:24 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Supremus Corporation
2015-05-02 11:36 - 2015-05-02 22:48 - 00002884 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (Tony1604)
2015-05-02 11:36 - 2015-05-02 11:36 - 00026528 _____ (REALiX™) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
2015-05-02 11:28 - 2015-05-13 06:26 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1128951351-2712326424-2671060717-1002
2015-05-02 11:11 - 2015-05-02 11:11 - 00000002 _____ () C:\Windows\AsCDProc.log
2015-05-02 11:07 - 2015-05-13 20:00 - 00033554 _____ () C:\Windows\PFRO.log
2015-05-02 10:27 - 2015-05-02 10:27 - 71720960 _____ () C:\Windows\system32\config\SOFTWARE.iobit
2015-05-02 10:27 - 2015-05-02 10:27 - 36741120 _____ () C:\Windows\system32\config\COMPONENTS.iobit
2015-05-02 10:27 - 2015-05-02 10:27 - 00466944 _____ () C:\Windows\system32\config\DEFAULT.iobit
2015-05-02 10:27 - 2015-05-02 10:27 - 00036864 _____ () C:\Windows\system32\config\SAM.iobit
2015-05-02 10:27 - 2015-05-02 10:27 - 00024576 _____ () C:\Windows\system32\config\SECURITY.iobit
2015-05-02 10:17 - 2015-05-02 10:17 - 00000000 ____D () C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-05-02 10:05 - 2015-05-12 18:44 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1128951351-2712326424-2671060717-1001
2015-05-02 10:00 - 2015-05-12 00:01 - 00000000 ____D () C:\Users\Tony1604\Downloads\Music for now
2015-05-02 09:59 - 2015-05-02 09:59 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-TONYLAPTOP-Windows-8.1-Pro-(64-bit).dat
2015-05-02 09:27 - 2015-05-02 09:27 - 00000000 ____D () C:\Intel
2015-05-02 09:22 - 2015-05-02 09:22 - 00099384 _____ () C:\Users\Tony1604\AppData\Roaming\inst.exe
2015-05-02 09:22 - 2015-05-02 09:22 - 00082816 _____ (VSO Software) C:\Users\Tony1604\AppData\Roaming\pcouffin.sys
2015-05-02 09:22 - 2015-05-02 09:22 - 00007859 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.cat
2015-05-02 09:22 - 2015-05-02 09:22 - 00001256 _____ () C:\Users\Tony1604\Desktop\ConvertXToDVD 5.lnk
2015-05-02 09:22 - 2015-05-02 09:22 - 00000055 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.log
2015-05-02 09:22 - 2015-05-02 09:22 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Vso
2015-05-02 09:22 - 2015-05-02 09:22 - 00000000 ____D () C:\ProgramData\VSO
2015-05-02 09:22 - 2015-05-02 09:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO
2015-05-02 09:22 - 2015-05-02 09:22 - 00000000 ____D () C:\Program Files (x86)\VSO
2015-05-01 15:46 - 2015-05-01 15:46 - 01380448 _____ (Skype Technologies S.A.) C:\Users\Ruža\Downloads\SkypeSetup_7_2_103.exe
2015-05-01 15:46 - 2015-05-01 15:46 - 01380448 _____ (Skype Technologies S.A.) C:\Users\Ruža\Downloads\SkypeSetup_7_2_103 (1).exe
2015-05-01 15:43 - 2015-05-01 15:44 - 45346432 _____ (Skype Technologies S.A.) C:\Users\Ruža\Downloads\SkypeSetupFull.exe
2015-05-01 13:41 - 2015-05-12 21:06 - 00000020 _____ () C:\Users\Ruža\AppData\Roaming\appdataFr3.bin
2015-05-01 11:36 - 2015-05-11 11:40 - 00000020 _____ () C:\Users\Tony1604\AppData\Roaming\appdataFr3.bin
2015-04-28 00:03 - 2015-04-28 00:04 - 00000000 ____D () C:\Program Files\Sublime Text 3
2015-04-26 11:39 - 2015-04-26 11:39 - 00001290 _____ () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2015-04-26 11:38 - 2015-05-05 10:06 - 00000000 ____D () C:\Program Files (x86)\IObit
2015-04-26 11:06 - 2015-05-11 11:57 - 00000080 _____ () C:\Users\Tony1604\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-04-26 10:56 - 2015-04-26 10:56 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Rockstar Games
2015-04-24 09:46 - 2015-04-26 00:26 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Warframe
2015-04-24 08:40 - 2015-04-24 08:40 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\MK10
2015-04-23 23:47 - 2015-04-23 23:47 - 00001221 _____ () C:\Users\Tony1604\Desktop\Mortal Kombat X Premium Edition.lnk
2015-04-23 23:47 - 2015-04-23 23:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2015-04-22 21:38 - 2015-04-22 21:38 - 00002043 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evolve.lnk
2015-04-22 21:38 - 2015-04-22 21:38 - 00002031 _____ () C:\Users\Public\Desktop\Evolve.lnk
2015-04-22 21:20 - 2015-04-22 21:20 - 00000000 ____D () C:\Program Files\Echobit
2015-04-22 21:19 - 2015-04-22 21:19 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Echobit
2015-04-22 21:19 - 2015-04-22 21:19 - 00000000 ____D () C:\ProgramData\Echobit
2015-04-22 21:09 - 2015-04-22 21:09 - 00000208 _____ () C:\Users\Tony1604\Desktop\Warframe.url
2015-04-22 18:47 - 2015-04-22 18:47 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Unity
2015-04-16 21:24 - 2014-08-01 00:44 - 00000716 _____ () C:\Users\Tony1604\Desktop\Steam.lnk
2015-04-16 20:49 - 2015-04-16 20:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2015-04-16 20:47 - 2015-04-16 20:47 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Lavasoft
2015-04-16 20:46 - 2015-04-16 20:46 - 00000000 ____D () C:\ProgramData\Lavasoft
2015-04-16 20:28 - 2015-05-02 11:06 - 00000000 ____D () C:\Program Files (x86)\SeekerModule
2015-04-16 20:27 - 2015-04-16 20:28 - 00000000 ____D () C:\ProgramData\367599667378516284
2015-04-15 13:06 - 2015-04-15 13:06 - 00256992 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgldx64.sys
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-05-13 20:05 - 2014-07-17 18:58 - 00003946 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{DF7559B6-7CAF-4147-9C0F-AAF1B6090DC8}
2015-05-13 20:04 - 2014-07-24 22:52 - 00000074 _____ () C:\Users\Tony1604\AppData\Roaming\sp_data.sys
2015-05-13 20:01 - 2014-07-17 18:47 - 01336051 _____ () C:\Windows\WindowsUpdate.log
2015-05-13 20:01 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-13 20:00 - 2014-07-17 20:13 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\uTorrent
2015-05-13 20:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru
2015-05-13 20:00 - 2013-08-22 15:25 - 00524288 ___SH () C:\Windows\system32\config\BBI
2015-05-13 13:09 - 2014-07-30 22:18 - 00000000 _RHDO () C:\Users\Tony1604\OneDrive
2015-05-13 06:14 - 2014-10-19 11:29 - 00000074 _____ () C:\Users\Ruža\AppData\Roaming\sp_data.sys
2015-05-12 23:37 - 2014-12-03 16:32 - 00000000 ____D () C:\Users\Tony1604\Downloads\GamesInstall
2015-05-12 15:10 - 2014-07-30 13:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2015-05-12 14:29 - 2014-07-17 18:49 - 00000000 ____D () C:\Users\Tony1604
2015-05-12 14:17 - 2015-03-14 14:51 - 00000000 ___HD () C:\Windows\msdownld.tmp
2015-05-12 14:17 - 2014-07-17 21:55 - 00000000 ____D () C:\Windows\SysWOW64\directx
2015-05-12 14:08 - 2015-02-22 13:29 - 00000000 ____D () C:\ProgramData\Package Cache
2015-05-11 21:17 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\NDF
2015-05-11 14:01 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-05-11 12:35 - 2015-02-20 22:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Build and Shoot
2015-05-11 12:35 - 2014-12-03 18:27 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-05-11 12:35 - 2014-07-17 21:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-05-11 01:37 - 2014-07-17 19:02 - 00000000 ____D () C:\ProgramData\IObit
2015-05-11 01:21 - 2014-07-17 19:17 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-05-11 01:17 - 2014-07-30 21:59 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\NVIDIA Corporation
2015-05-11 01:17 - 2014-07-30 13:19 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-05-11 01:17 - 2014-07-17 19:17 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-05-11 01:04 - 2014-03-18 12:04 - 00863592 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-11 00:38 - 2015-03-08 23:01 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Android
2015-05-11 00:38 - 2014-07-17 19:27 - 00000000 ____D () C:\Program Files\Intel
2015-05-11 00:35 - 2015-03-08 23:00 - 00000000 ____D () C:\Program Files\Android
2015-05-11 00:34 - 2015-03-10 18:53 - 00000000 ____D () C:\Flashtool
2015-05-11 00:26 - 2009-08-18 09:31 - 00147456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\initpki.dll
2015-05-11 00:25 - 2009-08-18 09:31 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\initpki.dll
2015-05-10 21:56 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Help
2015-05-10 21:25 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-05-08 13:23 - 2015-03-05 13:35 - 00003930 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{60F858EE-FDEE-4530-9461-88DCB778F7CA}
2015-05-07 23:59 - 2014-07-23 01:24 - 00007593 _____ () C:\Users\Tony1604\AppData\Local\Resmon.ResmonCfg
2015-05-07 17:42 - 2014-07-27 18:35 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\CrashDumps
2015-05-06 05:01 - 2014-07-17 19:02 - 00000000 ____D () C:\ProgramData\ProductData
2015-05-05 15:08 - 2014-07-19 15:53 - 00000000 ____D () C:\Windows\system32\MRT
2015-05-05 13:04 - 2015-02-22 13:53 - 00000000 ____D () C:\ProgramData\MFAData
2015-05-05 13:02 - 2014-10-19 11:29 - 00000000 ____D () C:\Users\Ruža
2015-05-05 11:53 - 2014-07-17 20:46 - 00000000 ____D () C:\Users\Tony1604\Documents\my games
2015-05-05 11:52 - 2014-10-05 01:25 - 00000000 ____D () C:\Users\Tony1604\Documents\Electronic Arts
2015-05-05 11:27 - 2014-07-19 19:05 - 00000000 ____D () C:\Windows\pss
2015-05-05 10:48 - 2014-08-05 18:11 - 00000000 ____D () C:\Windows\Minidump
2015-05-05 10:47 - 2015-01-04 15:57 - 730668713 _____ () C:\Windows\MEMORY.DMP
2015-05-05 10:33 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2015-05-05 10:12 - 2015-02-22 13:58 - 00000000 ___HD () C:\$AVG
2015-05-05 10:12 - 2013-08-22 17:36 - 00000000 ___HD () C:\Windows\ELAMBKUP
2015-05-04 19:22 - 2014-10-25 17:52 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\vlc
2015-05-02 11:06 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Branding
2015-05-02 10:17 - 2014-07-17 19:03 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\ProductData
2015-04-30 23:46 - 2014-07-17 20:46 - 00000000 ____D () C:\Games
2015-04-29 11:17 - 2014-08-01 00:44 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-04-28 00:04 - 2014-07-31 16:17 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Sublime Text 3
2015-04-19 20:34 - 2014-07-18 08:02 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-04-16 20:34 - 2015-02-25 00:23 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Dropbox
2015-04-16 20:23 - 2015-02-25 00:27 - 00000000 ___RD () C:\Users\Tony1604\Dropbox
 
==================== Files in the root of some directories =======
 
2015-05-01 11:36 - 2015-05-11 11:40 - 0000020 _____ () C:\Users\Tony1604\AppData\Roaming\appdataFr3.bin
2015-05-02 09:22 - 2015-05-02 09:22 - 0099384 _____ () C:\Users\Tony1604\AppData\Roaming\inst.exe
2014-07-24 22:54 - 2014-07-24 22:54 - 0000021 _____ () C:\Users\Tony1604\AppData\Roaming\my_intel.sys
2015-05-02 09:22 - 2015-05-02 09:22 - 0007859 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.cat
2015-05-02 09:22 - 2015-05-02 09:22 - 0001167 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.inf
2015-05-02 09:22 - 2015-05-02 09:22 - 0000055 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.log
2015-05-02 09:22 - 2015-05-02 09:22 - 0082816 _____ (VSO Software) C:\Users\Tony1604\AppData\Roaming\pcouffin.sys
2014-07-24 22:52 - 2015-05-13 20:04 - 0000074 _____ () C:\Users\Tony1604\AppData\Roaming\sp_data.sys
2014-07-23 01:24 - 2015-05-07 23:59 - 0007593 _____ () C:\Users\Tony1604\AppData\Local\Resmon.ResmonCfg
2015-04-16 20:31 - 2015-04-16 20:31 - 0000794 _____ () C:\Users\Tony1604\AppData\Local\Temp-log.txt
2014-07-17 19:23 - 2014-07-17 19:23 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2015-05-05 09:16
 
==================== End Of Log ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13-05-2015
Ran by Tony1604 (administrator) on TONYLAPTOP on 13-05-2015 20:05:47
Running from C:\Users\Tony1604\Desktop
Loaded Profiles: Tony1604 (Available profiles: Tony1604 & Ruža)
Platform: Windows 8.1 Pro (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Windows ® Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyConfigTDPService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\livecomm.exe
(NVIDIA Corporation) C:\Users\Tony1604\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\AULA\G2 Mouse\G2Monitor.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2685072 2015-05-01] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [G2 mouse] => C:\Program Files (x86)\AULA\G2 Mouse\G2Monitor.exe [495616 2013-06-01] ()
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle Corporation)
HKLM-x32\...\Run: [AVG_UI] => "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [134784 2014-02-25] (Qualcomm®Atheros®)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2CF47E20-9948-43A2-A4E5-2899AA418659}: [NameServer] 192.255.160.0,192.255.168.0
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
 
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-04] ()
FF Plugin: @java.com/DTPlugin,version=10.75.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2015-03-08] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.75.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2015-03-08] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\Microsoft Office\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-04] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-30] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-30] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\Microsoft Office\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin HKU\S-1-5-21-1128951351-2712326424-2671060717-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Tony1604\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-03-24] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation)
 
Chrome: 
=======
CHR HomePage: Default -> https://www.google.hr/
CHR StartupUrls: Default -> "https://www.google.hr/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Angry Birds) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2015-04-16]
CHR Extension: (Facebook) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm [2014-12-08]
CHR Extension: (AdBlock) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-05-06]
CHR Extension: (Bookmark Manager) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-16]
CHR Extension: (Little Alchemy) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd [2015-04-16]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-11]
CHR Extension: (Google Wallet) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-17]
StartMenuInternet: Google Chrome - Chrome.exe
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S4 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [267440 2015-02-04] (Adobe Systems Incorporated) [File not signed]
S3 AeLookupSvc; C:\Windows\System32\aelupsvc.dll [208896 2014-03-18] (Microsoft Corporation) [File not signed]
S3 ALG; C:\Windows\System32\alg.exe [92672 2013-08-22] (Microsoft Corporation) [File not signed]
S3 AppIDSvc; C:\Windows\System32\appidsvc.dll [37888 2013-08-22] (Microsoft Corporation) [File not signed]
R3 Appinfo; C:\Windows\System32\appinfo.dll [109568 2014-03-18] (Microsoft Corporation) [File not signed]
S3 AppMgmt; C:\Windows\System32\appmgmts.dll [183296 2014-03-18] (Microsoft Corporation) [File not signed]
S3 AppMgmt; C:\Windows\SysWOW64\appmgmts.dll [151040 2014-03-18] (Microsoft Corporation) [File not signed]
S3 AppReadiness; C:\Windows\system32\AppReadiness.dll [530944 2014-03-18] (Microsoft Corporation) [File not signed]
S3 AppXSvc; C:\Windows\system32\appxdeploymentserver.dll [1306624 2014-03-08] (Microsoft Corporation) [File not signed]
R2 ASLDRService; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe [115512 2014-02-18] (ASUSTek Computer Inc.) [File not signed]
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [319104 2014-02-25] (Windows ® Win 7 DDK provider) [File not signed]
R2 ATKGFNEXSrv; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896 2011-11-21] (ASUS) [File not signed]
R2 AudioEndpointBuilder; C:\Windows\System32\AudioEndpointBuilder.dll [201216 2014-04-06] (Microsoft Corporation) [File not signed]
R2 Audiosrv; C:\Windows\System32\Audiosrv.dll [834048 2014-04-06] (Microsoft Corporation) [File not signed]
S3 AxInstSV; C:\Windows\System32\AxInstSV.dll [109568 2014-03-18] (Microsoft Corporation) [File not signed]
S3 BDESVC; C:\Windows\System32\bdesvc.dll [339456 2014-04-26] (Microsoft Corporation) [File not signed]
R2 BFE; C:\Windows\System32\bfe.dll [827392 2014-04-30] (Microsoft Corporation) [File not signed]
S2 BITS; C:\Windows\System32\qmgr.dll [1017856 2013-08-22] (Microsoft Corporation) [File not signed]
R2 BrokerInfrastructure; C:\Windows\System32\bisrv.dll [269824 2014-03-18] (Microsoft Corporation) [File not signed]
S3 Browser; C:\Windows\System32\browser.dll [134144 2013-08-22] (Microsoft Corporation) [File not signed]
R3 bthserv; C:\Windows\system32\bthserv.dll [92160 2013-08-22] (Microsoft Corporation) [File not signed]
S4 CertPropSvc; C:\Windows\System32\certprop.dll [155136 2013-08-22] (Microsoft Corporation) [File not signed]
S3 cphs; C:\Windows\SysWow64\IntelCpHeciSvc.exe [279000 2014-03-18] (Intel Corporation) [File not signed]
R2 CryptSvc; C:\Windows\system32\cryptsvc.dll [129536 2013-08-22] (Microsoft Corporation) [File not signed]
S4 CscService; C:\Windows\System32\cscsvc.dll [778240 2014-03-18] (Microsoft Corporation) [File not signed]
R2 DcomLaunch; C:\Windows\system32\rpcss.dll [753664 2014-03-18] (Microsoft Corporation) [File not signed]
S3 defragsvc; C:\Windows\System32\defragsvc.dll [449536 2014-04-11] (Microsoft Corporation) [File not signed]
R2 DeviceAssociationService; C:\Windows\system32\das.dll [399872 2014-03-18] (Microsoft Corporation) [File not signed]
S3 DeviceInstall; C:\Windows\system32\umpnpmgr.dll [115200 2014-03-06] (Microsoft Corporation) [File not signed]
R2 Dhcp; C:\Windows\system32\dhcpcore.dll [353280 2014-04-30] (Microsoft Corporation) [File not signed]
R2 Dhcp; C:\Windows\SysWOW64\dhcpcore.dll [285696 2014-04-30] (Microsoft Corporation) [File not signed]
R2 Dnscache; C:\Windows\System32\dnsrslvr.dll [254464 2014-03-04] (Microsoft Corporation) [File not signed]
S3 dot3svc; C:\Windows\System32\dot3svc.dll [258560 2013-08-22] (Microsoft Corporation) [File not signed]
R2 DPS; C:\Windows\system32\dps.dll [170496 2013-08-22] (Microsoft Corporation) [File not signed]
R2 DptfParticipantProcessorService; C:\Windows\system32\DptfParticipantProcessorService.exe [117704 2013-10-18] (Intel Corporation) [File not signed]
R2 DptfPolicyConfigTDPService; C:\Windows\system32\DptfPolicyConfigTDPService.exe [116680 2013-10-18] (Intel Corporation) [File not signed]
R2 DptfPolicyCriticalService; C:\Windows\system32\DptfPolicyCriticalService.exe [148160 2013-10-18] (Intel Corporation) [File not signed]
R2 DptfPolicyLpmService; C:\Windows\system32\DptfPolicyLpmService.exe [126952 2013-10-18] (Intel Corporation) [File not signed]
R3 DsmSvc; C:\Windows\System32\DeviceSetupManager.dll [201728 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Eaphost; C:\Windows\System32\eapsvc.dll [107008 2013-08-22] (Microsoft Corporation) [File not signed]
R2 EFS; C:\Windows\system32\efssvc.dll [40448 2013-08-22] (Microsoft Corporation) [File not signed]
R2 EventLog; C:\Windows\System32\wevtsvc.dll [1669632 2013-08-22] (Microsoft Corporation) [File not signed]
R2 EventSystem; C:\Windows\system32\es.dll [468992 2013-08-22] (Microsoft Corporation) [File not signed]
R2 EventSystem; C:\Windows\SysWOW64\es.dll [329728 2013-08-22] (Microsoft Corporation) [File not signed]
S4 EvoSvc; C:\Program Files\Echobit\Evolve\EvoSvc.exe [1583488 2015-04-22] (Echobit LLC) [File not signed]
S3 Fax; C:\Windows\system32\fxssvc.exe [655360 2013-08-22] (Microsoft Corporation) [File not signed]
S3 fdPHost; C:\Windows\system32\fdPHost.dll [21504 2013-08-22] (Microsoft Corporation) [File not signed]
S3 FDResPub; C:\Windows\system32\fdrespub.dll [33280 2013-08-22] (Microsoft Corporation) [File not signed]
S3 fhsvc; C:\Windows\system32\fhsvc.dll [118272 2013-08-22] (Microsoft Corporation) [File not signed]
R3 FontCache; C:\Windows\system32\FntCache.dll [1345536 2014-04-30] (Microsoft Corporation) [File not signed]
R3 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [43696 2013-08-03] (Microsoft Corporation) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-01] (NVIDIA Corporation) [File not signed]
R2 gpsvc; C:\Windows\System32\gpsvc.dll [1308160 2014-03-31] (Microsoft Corporation) [File not signed]
S4 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648 2014-07-17] (Google Inc.) [File not signed]
S4 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648 2014-07-17] (Google Inc.) [File not signed]
R3 hidserv; C:\Windows\system32\hidserv.dll [32256 2013-08-22] (Microsoft Corporation) [File not signed]
R3 hidserv; C:\Windows\SysWOW64\hidserv.dll [29696 2013-08-22] (Microsoft Corporation) [File not signed]
S3 hkmsvc; C:\Windows\system32\kmsvc.dll [97792 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HomeGroupListener; C:\Windows\system32\ListSvc.dll [261632 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HomeGroupProvider; C:\Windows\system32\provsvc.dll [405504 2014-03-18] (Microsoft Corporation) [File not signed]
S3 HomeGroupProvider; C:\Windows\SysWOW64\provsvc.dll [321536 2014-03-18] (Microsoft Corporation) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [111616 2014-02-06] (Microsoft Corporation) [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282072 2014-03-18] (Intel Corporation) [File not signed]
R2 IKEEXT; C:\Windows\System32\ikeext.dll [1063424 2014-04-30] (Microsoft Corporation) [File not signed]
S4 iphlpsvc; C:\Windows\System32\iphlpsvc.dll [903168 2014-03-18] (Microsoft Corporation) [File not signed]
S3 KeyIso; C:\Windows\system32\keyiso.dll [59392 2013-08-22] (Microsoft Corporation) [File not signed]
S3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [44032 2013-08-22] (Microsoft Corporation) [File not signed]
S3 KtmRm; C:\Windows\system32\msdtckrm.dll [357888 2013-08-22] (Microsoft Corporation) [File not signed]
R2 LanmanServer; C:\Windows\system32\srvsvc.dll [323072 2014-03-27] (Microsoft Corporation) [File not signed]
R2 LanmanWorkstation; C:\Windows\System32\wkssvc.dll [284160 2013-08-22] (Microsoft Corporation) [File not signed]
S3 lfsvc; C:\Windows\System32\GeofenceMonitorService.dll [491520 2014-03-14] (Microsoft Corporation) [File not signed]
S3 lfsvc; C:\Windows\SysWOW64\GeofenceMonitorService.dll [357376 2014-03-14] (Microsoft Corporation) [File not signed]
S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2585376 2015-04-26] (IObit) [File not signed]
S3 lltdsvc; C:\Windows\System32\lltdsvc.dll [269824 2013-08-22] (Microsoft Corporation) [File not signed]
R2 lmhosts; C:\Windows\System32\lmhsvc.dll [24576 2013-08-22] (Microsoft Corporation) [File not signed]
R2 LSM; C:\Windows\System32\lsm.dll [710656 2014-03-18] (Microsoft Corporation) [File not signed]
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation) [File not signed]
R2 MMCSS; C:\Windows\system32\mmcss.dll [70656 2013-08-22] (Microsoft Corporation) [File not signed]
R2 MpsSvc; C:\Windows\system32\mpssvc.dll [878080 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSDTC; C:\Windows\System32\msdtc.exe [142848 2013-08-22] (Microsoft Corporation) [File not signed]
S4 MSiSCSI; C:\Windows\system32\iscsiexe.dll [150528 2013-08-22] (Microsoft Corporation) [File not signed]
S3 msiserver; C:\Windows\System32\msiexec.exe [62464 2013-08-22] (Microsoft Corporation) [File not signed]
S3 msiserver; C:\Windows\SysWOW64\msiexec.exe [55808 2013-08-22] (Microsoft Corporation) [File not signed]
S4 MsKeyboardFilter; C:\Windows\System32\KeyboardFilterSvc.dll [90464 2014-03-18] (Microsoft Corporation) [File not signed]
S4 napagent; C:\Windows\system32\qagentRT.dll [435200 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NcaSvc; C:\Windows\System32\ncasvc.dll [164352 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NcbService; C:\Windows\System32\ncbservice.dll [151040 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NcdAutoSetup; C:\Windows\System32\NcdAutoSetup.dll [73728 2013-08-22] (Microsoft Corporation) [File not signed]
S4 Netlogon; C:\Windows\system32\netlogon.dll [834560 2014-03-06] (Microsoft Corporation) [File not signed]
S4 Netlogon; C:\Windows\SysWOW64\netlogon.dll [688640 2014-03-06] (Microsoft Corporation) [File not signed]
S3 Netman; C:\Windows\System32\netman.dll [254976 2013-08-22] (Microsoft Corporation) [File not signed]
S3 netprofm; C:\Windows\System32\netprofmsvc.dll [525312 2013-08-22] (Microsoft Corporation) [File not signed]
S4 NetTcpPortSharing; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139856 2013-08-10] (Microsoft Corporation) [File not signed]
S2 NlaSvc; C:\Windows\System32\nlasvc.dll [387584 2013-08-22] (Microsoft Corporation) [File not signed]
R2 nsi; C:\Windows\system32\nsisvc.dll [29184 2013-08-22] (Microsoft Corporation) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304 2015-05-01] (NVIDIA Corporation) [File not signed]
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22997648 2015-05-01] (NVIDIA Corporation) [File not signed]
R2 nvsvc; C:\Windows\system32\nvvsvc.exe [936264 2015-04-08] (NVIDIA Corporation) [File not signed]
S3 ose64; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [178824 2012-10-01] (Microsoft Corporation) [File not signed]
S3 p2pimsvc; C:\Windows\system32\pnrpsvc.dll [376320 2014-03-18] (Microsoft Corporation) [File not signed]
S3 p2psvc; C:\Windows\system32\p2psvc.dll [433664 2013-08-22] (Microsoft Corporation) [File not signed]
R2 PcaSvc; C:\Windows\System32\pcasvc.dll [471552 2014-03-18] (Microsoft Corporation) [File not signed]
S4 PeerDistSvc; C:\Windows\system32\peerdistsvc.dll [2176000 2014-03-18] (Microsoft Corporation) [File not signed]
S3 PerfHost; C:\Windows\SysWow64\perfhost.exe [21504 2013-08-22] (Microsoft Corporation) [File not signed]
S3 pla; C:\Windows\system32\pla.dll [1443840 2013-08-22] (Microsoft Corporation) [File not signed]
S3 pla; C:\Windows\SysWOW64\pla.dll [1477120 2013-08-22] (Microsoft Corporation) [File not signed]
R3 PlugPlay; C:\Windows\system32\umpnpmgr.dll [115200 2014-03-06] (Microsoft Corporation) [File not signed]
S3 PNRPAutoReg; C:\Windows\system32\pnrpauto.dll [25600 2013-08-22] (Microsoft Corporation) [File not signed]
S3 PNRPsvc; C:\Windows\system32\pnrpsvc.dll [376320 2014-03-18] (Microsoft Corporation) [File not signed]
R3 PolicyAgent; C:\Windows\System32\ipsecsvc.dll [403456 2013-08-22] (Microsoft Corporation) [File not signed]
R2 Power; C:\Windows\system32\umpo.dll [79360 2013-08-22] (Microsoft Corporation) [File not signed]
S3 PrintNotify; C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll [2899968 2013-08-22] (Microsoft Corporation) [File not signed]
R2 ProfSvc; C:\Windows\system32\profsvc.dll [220160 2014-03-04] (Microsoft Corporation) [File not signed]
S3 QWAVE; C:\Windows\system32\qwave.dll [297472 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasAuto; C:\Windows\System32\rasauto.dll [101376 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasMan; C:\Windows\System32\rasmans.dll [534528 2014-03-18] (Microsoft Corporation) [File not signed]
S4 RemoteAccess; C:\Windows\System32\mprdim.dll [223744 2013-08-22] (Microsoft Corporation) [File not signed]
S4 RemoteAccess; C:\Windows\SysWOW64\mprdim.dll [177664 2013-08-22] (Microsoft Corporation) [File not signed]
S4 RemoteRegistry; C:\Windows\system32\regsvc.dll [164864 2013-08-22] (Microsoft Corporation) [File not signed]
R2 RpcEptMapper; C:\Windows\System32\RpcEpMap.dll [79872 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RpcLocator; C:\Windows\system32\locator.exe [10240 2013-08-22] (Microsoft Corporation) [File not signed]
R2 RpcSs; C:\Windows\system32\rpcss.dll [753664 2014-03-18] (Microsoft Corporation) [File not signed]
R2 SamSs; C:\Windows\system32\lsass.exe [45008 2013-08-22] (Microsoft Corporation) [File not signed]
S2 SCardSvr; C:\Windows\System32\SCardSvr.dll [188416 2013-08-22] (Microsoft Corporation) [File not signed]
S3 ScDeviceEnum; C:\Windows\System32\ScDeviceEnum.dll [130560 2013-08-22] (Microsoft Corporation) [File not signed]
R2 Schedule; C:\Windows\system32\schedsvc.dll [1214976 2014-03-18] (Microsoft Corporation) [File not signed]
S3 SCPolicySvc; C:\Windows\System32\certprop.dll [155136 2013-08-22] (Microsoft Corporation) [File not signed]
S3 seclogon; C:\Windows\system32\seclogon.dll [30720 2013-08-22] (Microsoft Corporation) [File not signed]
R2 SENS; C:\Windows\System32\sens.dll [71680 2013-08-22] (Microsoft Corporation) [File not signed]
S3 SensrSvc; C:\Windows\system32\sensrsvc.dll [220672 2014-03-18] (Microsoft Corporation) [File not signed]
S3 SessionEnv; C:\Windows\system32\sessenv.dll [324096 2014-03-06] (Microsoft Corporation) [File not signed]
S3 SessionEnv; C:\Windows\SysWOW64\sessenv.dll [280576 2014-03-06] (Microsoft Corporation) [File not signed]
S3 SharedAccess; C:\Windows\System32\ipnathlp.dll [433664 2014-03-18] (Microsoft Corporation) [File not signed]
R2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [629760 2013-08-22] (Microsoft Corporation) [File not signed]
R2 ShellHWDetection; C:\Windows\SysWOW64\shsvcs.dll [564736 2013-08-22] (Microsoft Corporation) [File not signed]
S4 SkypeUpdate; C:\Program Files (x86)\Skype\Updater\Updater.exe [315008 2014-04-03] (Skype Technologies) [File not signed]
S3 smphost; C:\Windows\System32\smphost.dll [13312 2013-08-22] (Microsoft Corporation) [File not signed]
S3 smphost; C:\Windows\SysWOW64\smphost.dll [11776 2013-08-22] (Microsoft Corporation) [File not signed]
S4 SNMPTRAP; C:\Windows\System32\snmptrap.exe [14848 2013-08-22] (Microsoft Corporation) [File not signed]
S4 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software) [File not signed]
R2 Spooler; C:\Windows\System32\spoolsv.exe [798208 2013-08-22] (Microsoft Corporation) [File not signed]
S2 sppsvc; C:\Windows\system32\sppsvc.exe [6353960 2014-03-18] (Microsoft Corporation) [File not signed]
R3 SSDPSRV; C:\Windows\System32\ssdpsrv.dll [239616 2013-08-22] (Microsoft Corporation) [File not signed]
S3 SstpSvc; C:\Windows\system32\sstpsvc.dll [144384 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [836288 2015-04-14] (Valve Corporation) [File not signed]
R2 stisvc; C:\Windows\System32\wiaservc.dll [634368 2013-08-22] (Microsoft Corporation) [File not signed]
S3 StorSvc; C:\Windows\system32\storsvc.dll [19968 2013-08-22] (Microsoft Corporation) [File not signed]
S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18944 2013-08-22] (Microsoft Corporation) [File not signed]
S3 svsvc; C:\Windows\system32\svsvc.dll [13312 2013-08-22] (Microsoft Corporation) [File not signed]
S4 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 swprv; C:\Windows\System32\swprv.dll [718336 2014-03-27] (Microsoft Corporation) [File not signed]
R2 SysMain; C:\Windows\system32\sysmain.dll [1192448 2014-03-18] (Microsoft Corporation) [File not signed]
R2 SystemEventsBroker; C:\Windows\System32\SystemEventsBrokerServer.dll [282112 2014-03-18] (Microsoft Corporation) [File not signed]
S3 TabletInputService; C:\Windows\System32\TabSvc.dll [147456 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TapiSrv; C:\Windows\System32\tapisrv.dll [306688 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TapiSrv; C:\Windows\SysWOW64\tapisrv.dll [248320 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TermService; C:\Windows\System32\termsrv.dll [1018880 2014-04-14] (Microsoft Corporation) [File not signed]
R2 Themes; C:\Windows\system32\themeservice.dll [50688 2013-08-22] (Microsoft Corporation) [File not signed]
S3 THREADORDER; C:\Windows\system32\mmcss.dll [70656 2013-08-22] (Microsoft Corporation) [File not signed]
R3 TimeBroker; C:\Windows\System32\TimeBrokerServer.dll [245760 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TrkWks; C:\Windows\System32\trkwks.dll [122368 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TrustedInstaller; C:\Windows\servicing\TrustedInstaller.exe [99840 2014-03-18] (Microsoft Corporation) [File not signed]
S3 UI0Detect; C:\Windows\system32\UI0Detect.exe [40960 2013-08-22] (Microsoft Corporation) [File not signed]
S3 UmRdpService; C:\Windows\System32\umrdp.dll [289280 2014-03-18] (Microsoft Corporation) [File not signed]
S3 upnphost; C:\Windows\System32\upnphost.dll [436224 2013-08-22] (Microsoft Corporation) [File not signed]
S3 upnphost; C:\Windows\SysWOW64\upnphost.dll [307200 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VaultSvc; C:\Windows\System32\vaultsvc.dll [248832 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vds; C:\Windows\System32\vds.exe [1283584 2014-03-18] (Microsoft Corporation) [File not signed]
S3 vmicguestinterface; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmicheartbeat; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmickvpexchange; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmicrdv; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmicshutdown; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmictimesync; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmicvss; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VSS; C:\Windows\system32\vssvc.exe [1436160 2014-03-27] (Microsoft Corporation) [File not signed]
S3 W32Time; C:\Windows\system32\w32time.dll [404480 2013-08-22] (Microsoft Corporation) [File not signed]
S3 wbengine; C:\Windows\system32\wbengine.exe [1543680 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WbioSrvc; C:\Windows\System32\wbiosrvc.dll [453632 2014-03-18] (Microsoft Corporation) [File not signed]
R2 Wcmsvc; C:\Windows\System32\wcmsvc.dll [366080 2014-03-18] (Microsoft Corporation) [File not signed]
S3 wcncsvc; C:\Windows\System32\wcncsvc.dll [459776 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WcsPlugInService; C:\Windows\System32\WcsPlugInService.dll [41984 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WcsPlugInService; C:\Windows\SysWOW64\WcsPlugInService.dll [34304 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WdiServiceHost; C:\Windows\system32\wdi.dll [91136 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WdiServiceHost; C:\Windows\SysWOW64\wdi.dll [80896 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WdiSystemHost; C:\Windows\system32\wdi.dll [91136 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WdiSystemHost; C:\Windows\SysWOW64\wdi.dll [80896 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation) [File not signed]
S3 WebClient; C:\Windows\System32\webclnt.dll [226816 2014-04-09] (Microsoft Corporation) [File not signed]
S3 WebClient; C:\Windows\SysWOW64\webclnt.dll [198656 2014-04-09] (Microsoft Corporation) [File not signed]
S3 Wecsvc; C:\Windows\system32\wecsvc.dll [215040 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WEPHOSTSVC; C:\Windows\system32\wephostsvc.dll [24576 2013-08-22] (Microsoft Corporation) [File not signed]
S3 wercplsupport; C:\Windows\System32\wercplsupport.dll [81408 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WerSvc; C:\Windows\System32\WerSvc.dll [107008 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WiaRpc; C:\Windows\System32\wiarpc.dll [66048 2013-08-22] (Microsoft Corporation) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation) [File not signed]
R3 WinHttpAutoProxySvc; C:\Windows\system32\winhttp.dll [786432 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WinHttpAutoProxySvc; C:\Windows\SysWOW64\winhttp.dll [589312 2013-08-22] (Microsoft Corporation) [File not signed]
R2 Winmgmt; C:\Windows\system32\wbem\WMIsvc.dll [220672 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WinRM; C:\Windows\system32\WsmSvc.dll [2479616 2014-03-06] (Microsoft Corporation) [File not signed]
S3 WinRM; C:\Windows\SysWOW64\WsmSvc.dll [2030080 2014-03-06] (Microsoft Corporation) [File not signed]
R2 WlanSvc; C:\Windows\System32\wlansvc.dll [1527296 2014-03-19] (Microsoft Corporation) [File not signed]
S3 wlidsvc; C:\Windows\system32\wlidsvc.dll [1576960 2014-03-18] (Microsoft Corporation) [File not signed]
S3 wmiApSrv; C:\Windows\system32\wbem\WmiApSrv.exe [195072 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [1403392 2014-03-18] (Microsoft Corporation) [File not signed]
S3 workfolderssvc; C:\Windows\system32\workfolderssvc.dll [1584128 2014-04-03] (Microsoft Corporation) [File not signed]
S3 WPCSvc; C:\Windows\System32\wpcsvc.dll [12288 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WPCSvc; C:\Windows\SysWOW64\wpcsvc.dll [11264 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WPDBusEnum; C:\Windows\system32\wpdbusenum.dll [84480 2013-08-22] (Microsoft Corporation) [File not signed]
R2 wscsvc; C:\Windows\System32\wscsvc.dll [135168 2014-04-09] (Microsoft Corporation) [File not signed]
R2 WSearch; C:\Windows\system32\SearchIndexer.exe [845824 2014-03-18] (Microsoft Corporation) [File not signed]
R2 WSearch; C:\Windows\SysWOW64\SearchIndexer.exe [658432 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WSService; C:\Windows\System32\WSService.dll [3394384 2014-03-18] (Microsoft Corporation) [File not signed]
R2 wuauserv; C:\Windows\system32\wuaueng.dll [3463680 2014-07-24] (Microsoft Corporation) [File not signed]
R3 wudfsvc; C:\Windows\System32\WUDFSvc.dll [99840 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WwanSvc; C:\Windows\System32\wwansvc.dll [510464 2013-08-22] (Microsoft Corporation) [File not signed]
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-02-25] (Atheros) [File not signed]
S2 AVGIDSAgent; No ImagePath
S2 avgwd; No ImagePath
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 1394ohci; C:\Windows\System32\drivers\1394ohci.sys [231424 2013-08-22] (Microsoft Corporation) [File not signed]
S0 3ware; C:\Windows\System32\drivers\3ware.sys [108896 2013-08-22] (LSI) [File not signed]
R0 ACPI; C:\Windows\System32\drivers\ACPI.sys [539992 2014-03-18] (Microsoft Corporation) [File not signed]
R0 acpiex; C:\Windows\System32\Drivers\acpiex.sys [79712 2013-08-22] (Microsoft Corporation) [File not signed]
S3 acpipagr; C:\Windows\System32\drivers\acpipagr.sys [10240 2013-08-22] (Microsoft Corporation) [File not signed]
S3 AcpiPmi; C:\Windows\System32\drivers\acpipmi.sys [12288 2013-08-22] (Microsoft Corporation) [File not signed]
S3 acpitime; C:\Windows\System32\drivers\acpitime.sys [10752 2013-08-22] (Microsoft Corporation) [File not signed]
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra) [File not signed]
R1 AFD; C:\Windows\system32\drivers\afd.sys [563200 2014-05-30] (Microsoft Corporation) [File not signed]
S0 agp440; C:\Windows\System32\drivers\agp440.sys [62304 2013-08-22] (Microsoft Corporation) [File not signed]
R1 ahcache; C:\Windows\System32\DRIVERS\ahcache.sys [76800 2013-08-22] (Microsoft Corporation) [File not signed]
R3 AiCharger; C:\Windows\system32\DRIVERS\AiCharger.sys [17152 2014-03-27] (ASUSTek Computer Inc.) [File not signed]
S3 AmdK8; C:\Windows\System32\drivers\amdk8.sys [95744 2013-08-22] (Microsoft Corporation) [File not signed]
S3 AmdPPM; C:\Windows\System32\drivers\amdppm.sys [98816 2013-08-22] (Microsoft Corporation) [File not signed]
S0 amdsata; C:\Windows\System32\drivers\amdsata.sys [79200 2013-08-22] (Advanced Micro Devices) [File not signed]
S0 amdsbs; C:\Windows\System32\drivers\amdsbs.sys [259424 2013-08-22] (AMD Technologies Inc.) [File not signed]
S0 amdxata; C:\Windows\System32\drivers\amdxata.sys [25952 2013-08-22] (Advanced Micro Devices) [File not signed]
S3 AppID; C:\Windows\system32\drivers\appid.sys [83456 2014-03-18] (Microsoft Corporation) [File not signed]
S0 arcsas; C:\Windows\System32\drivers\arcsas.sys [114016 2013-08-22] (PMC-Sierra, Inc.) [File not signed]
R2 ASMMAP64; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [15416 2009-07-02] (ASUS) [File not signed]
S3 AsyncMac; C:\Windows\system32\DRIVERS\asyncmac.sys [26624 2013-08-22] (Microsoft Corporation) [File not signed]
S0 atapi; C:\Windows\System32\drivers\atapi.sys [26464 2013-08-22] (Microsoft Corporation) [File not signed]
R3 AthBTPort; C:\Windows\system32\DRIVERS\btath_flt.sys [89800 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3892224 2014-03-06] (Qualcomm Atheros Communications, Inc.) [File not signed]
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [19768 2013-07-02] (ASUSTek Computer Inc.) [File not signed]
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [69904 2014-03-31] (ASUS Corporation) [File not signed]
S3 avc3; C:\Windows\System32\DRIVERS\avc3.sys [727592 2015-01-06] (BitDefender) [File not signed]
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [261496 2015-01-06] (BitDefender) [File not signed]
S3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [601360 2015-01-06] (BitDefender) [File not signed]
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [21152 2015-03-27] (AVG Technologies CZ, s.r.o.) [File not signed]
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [162784 2015-03-11] (AVG Technologies CZ, s.r.o.) [File not signed]
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [284128 2015-04-09] (AVG Technologies CZ, s.r.o.) [File not signed]
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [213984 2015-03-11] (AVG Technologies CZ, s.r.o.) [File not signed]
S1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [256992 2015-04-15] (AVG Technologies CZ, s.r.o.) [File not signed]
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [344544 2015-03-11] (AVG Technologies CZ, s.r.o.) [File not signed]
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [137184 2015-04-03] (AVG Technologies CZ, s.r.o.) [File not signed]
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [40928 2015-03-20] (AVG Technologies CZ, s.r.o.) [File not signed]
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [293856 2015-04-07] (AVG Technologies CZ, s.r.o.) [File not signed]
S0 b06bdrv; C:\Windows\System32\drivers\bxvbda.sys [531296 2013-08-22] (Broadcom Corporation) [File not signed]
R1 BasicDisplay; C:\Windows\System32\drivers\BasicDisplay.sys [50688 2013-08-22] (Microsoft Corporation) [File not signed]
R1 BasicRender; C:\Windows\System32\drivers\BasicRender.sys [33280 2014-03-18] (Microsoft Corporation) [File not signed]
U5 BattC; C:\Windows\System32\Drivers\BattC.sys [35168 2013-08-22] (Microsoft Corporation) [File not signed]
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows ® Win 7 DDK provider) [File not signed]
R3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [102912 2013-08-22] (Microsoft Corporation) [File not signed]
R3 BTATH_A2DP; C:\Windows\system32\drivers\btath_a2dp.sys [355528 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 btath_avdt; C:\Windows\system32\drivers\btath_avdt.sys [118984 2014-02-25] (Qualcomm Atheros) [File not signed]
R0 BTATH_BUS; C:\Windows\System32\drivers\btath_bus.sys [35016 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 BTATH_HCRP; C:\Windows\System32\drivers\btath_hcrp.sys [179432 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 BTATH_RCP; C:\Windows\System32\drivers\btath_rcp.sys [137928 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [598216 2014-02-25] (Qualcomm Atheros) [File not signed]
S3 BthAvrcpTg; C:\Windows\System32\drivers\BthAvrcpTg.sys [36992 2013-08-22] (Microsoft Corporation) [File not signed]
R3 BthEnum; C:\Windows\System32\drivers\BthEnum.sys [53248 2013-08-22] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [57856 2013-08-22] (Microsoft Corporation) [File not signed]
S3 bthhfhid; C:\Windows\System32\drivers\BthHFHid.sys [30720 2013-08-22] (Microsoft Corporation) [File not signed]
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [64000 2014-03-18] (Microsoft Corporation) [File not signed]
R3 BthPan; C:\Windows\system32\DRIVERS\bthpan.sys [118272 2013-08-22] (Microsoft Corporation) [File not signed]
S3 BTHPORT; C:\Windows\System32\Drivers\BTHport.sys [1200128 2014-04-11] (Microsoft Corporation) [File not signed]
R3 BTHUSB; C:\Windows\System32\Drivers\BTHUSB.sys [81920 2014-03-18] (Microsoft Corporation) [File not signed]
S4 cdfs; C:\Windows\System32\DRIVERS\cdfs.sys [88576 2013-08-22] (Microsoft Corporation) [File not signed]
R1 cdrom; C:\Windows\System32\drivers\cdrom.sys [164352 2013-08-22] (Microsoft Corporation) [File not signed]
S3 circlass; C:\Windows\System32\drivers\circlass.sys [44032 2013-08-22] (Microsoft Corporation) [File not signed]
R0 CLFS; C:\Windows\System32\drivers\CLFS.sys [376152 2014-03-20] (Microsoft Corporation) [File not signed]
R3 CmBatt; C:\Windows\System32\drivers\CmBatt.sys [25472 2013-08-22] (Microsoft Corporation) [File not signed]
R0 CNG; C:\Windows\System32\Drivers\cng.sys [565576 2014-05-29] (Microsoft Corporation) [File not signed]
R3 CompositeBus; C:\Windows\System32\drivers\CompositeBus.sys [36352 2013-08-22] (Microsoft Corporation) [File not signed]
R3 condrv; C:\Windows\System32\drivers\condrv.sys [43008 2013-08-22] (Microsoft Corporation) [File not signed]
R1 CSC; C:\Windows\System32\drivers\csc.sys [559616 2014-03-18] (Microsoft Corporation) [File not signed]
S1 dam; C:\Windows\System32\drivers\dam.sys [57696 2013-08-22] (Microsoft Corporation) [File not signed]
R1 Dfsc; C:\Windows\System32\Drivers\dfsc.sys [134144 2014-03-06] (Microsoft Corporation) [File not signed]
R0 disk; C:\Windows\System32\drivers\disk.sys [100192 2013-08-22] (Microsoft Corporation) [File not signed]
S3 dmvsc; C:\Windows\System32\drivers\dmvsc.sys [29696 2013-08-22] (Microsoft Corporation) [File not signed]
R3 DptfDevDram; C:\Windows\system32\DRIVERS\DptfDevDram.sys [145640 2013-10-18] (Intel Corporation) [File not signed]
R3 DptfDevPch; C:\Windows\system32\DRIVERS\DptfDevPch.sys [116752 2013-10-18] (Intel Corporation) [File not signed]
R3 DptfDevProc; C:\Windows\system32\DRIVERS\DptfDevProc.sys [289744 2013-10-18] (Intel Corporation) [File not signed]
R3 DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [494296 2013-10-18] (Intel Corporation) [File not signed]
S3 drmkaud; C:\Windows\system32\drivers\drmkaud.sys [14560 2013-08-22] (Microsoft Corporation) [File not signed]
R3 DXGKrnl; C:\Windows\System32\drivers\dxgkrnl.sys [1557848 2014-03-06] (Microsoft Corporation) [File not signed]
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) [File not signed]
R0 EhStorClass; C:\Windows\System32\drivers\EhStorClass.sys [82784 2013-08-22] (Microsoft Corporation) [File not signed]
S0 EhStorTcgDrv; C:\Windows\System32\drivers\EhStorTcgDrv.sys [114016 2013-08-22] (Microsoft Corporation) [File not signed]
R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [40344 2013-03-04] (Elaborate Bytes AG) [File not signed]
S3 ErrDev; C:\Windows\System32\drivers\errdev.sys [10240 2013-08-22] (Microsoft Corporation) [File not signed]
S3 exfat; C:\Windows\System32\Drivers\exfat.sys [200704 2013-08-22] (Microsoft Corporation) [File not signed]
S3 fastfat; C:\Windows\System32\Drivers\fastfat.sys [217952 2013-08-22] (Microsoft Corporation) [File not signed]
S3 fdc; C:\Windows\System32\drivers\fdc.sys [30720 2013-08-22] (Microsoft Corporation) [File not signed]
R0 FileInfo; C:\Windows\System32\drivers\fileinfo.sys [79192 2014-03-18] (Microsoft Corporation) [File not signed]
S3 Filetrace; C:\Windows\System32\drivers\filetrace.sys [34816 2013-08-22] (Microsoft Corporation) [File not signed]
S3 flpydisk; C:\Windows\System32\drivers\flpydisk.sys [25088 2013-08-22] (Microsoft Corporation) [File not signed]
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [360792 2014-04-06] (Microsoft Corporation) [File not signed]
S3 FsDepends; C:\Windows\System32\drivers\FsDepends.sys [56672 2013-08-22] (Microsoft Corporation) [File not signed]
R0 fvevol; C:\Windows\System32\DRIVERS\fvevol.sys [589656 2014-04-08] (Microsoft Corporation) [File not signed]
S3 FxPPM; C:\Windows\System32\drivers\fxppm.sys [27136 2013-08-22] (Microsoft Corporation) [File not signed]
S0 gagp30kx; C:\Windows\System32\drivers\gagp30kx.sys [65888 2013-08-22] (Microsoft Corporation) [File not signed]
S3 gencounter; C:\Windows\System32\drivers\vmgencounter.sys [11264 2013-08-22] (Microsoft Corporation) [File not signed]
S3 ggflt; C:\Windows\System32\drivers\ggflt.sys [16088 2015-03-10] (Sony Mobile Communications) [File not signed]
S3 ggsomc; C:\Windows\System32\drivers\ggsomc.sys [30424 2015-03-10] (Sony Mobile Communications) [File not signed]
S3 GPIOClx0101; C:\Windows\System32\Drivers\msgpioclx.sys [146776 2014-03-18] (Microsoft Corporation) [File not signed]
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45112 2014-12-13] (LogMeIn Inc.) [File not signed]
S3 HdAudAddService; C:\Windows\system32\drivers\HdAudio.sys [395776 2013-08-22] (Microsoft Corporation) [File not signed]
R3 HDAudBus; C:\Windows\System32\drivers\HDAudBus.sys [77312 2014-03-18] (Microsoft Corporation) [File not signed]
S3 HidBatt; C:\Windows\System32\drivers\HidBatt.sys [26624 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HidBth; C:\Windows\System32\drivers\hidbth.sys [96768 2013-08-22] (Microsoft Corporation) [File not signed]
S3 hidi2c; C:\Windows\System32\drivers\hidi2c.sys [41472 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HidIr; C:\Windows\System32\drivers\hidir.sys [45568 2013-08-22] (Microsoft Corporation) [File not signed]
R3 HIDSwitch; C:\Windows\System32\drivers\AsHIDSwitch64.sys [20280 2013-11-04] (ASUS) [File not signed]
R3 HidUsb; C:\Windows\System32\drivers\hidusb.sys [33280 2014-03-06] (Microsoft Corporation) [File not signed]
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [43664 2015-05-11] () [File not signed]
S0 HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys [64352 2013-08-22] (Hewlett-Packard Company) [File not signed]
R3 HTTP; C:\Windows\System32\drivers\HTTP.sys [994136 2014-03-18] (Microsoft Corporation) [File not signed]
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-05-02] (REALiX™) [File not signed]
S0 hwpolicy; C:\Windows\System32\drivers\hwpolicy.sys [24416 2013-08-22] (Microsoft Corporation) [File not signed]
S3 hyperkbd; C:\Windows\System32\drivers\hyperkbd.sys [13824 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HyperVideo; C:\Windows\system32\DRIVERS\HyperVideo.sys [22016 2013-08-22] (Microsoft Corporation) [File not signed]
R3 i8042prt; C:\Windows\System32\drivers\i8042prt.sys [107520 2013-08-22] (Microsoft Corporation) [File not signed]
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation) [File not signed]
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation) [File not signed]
R0 iaStorA; C:\Windows\System32\drivers\iaStorA.sys [644968 2013-08-09] (Intel Corporation) [File not signed]
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation) [File not signed]
S0 iaStorV; C:\Windows\System32\drivers\iaStorV.sys [412000 2013-08-22] (Intel Corporation) [File not signed]
R3 igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [3729920 2014-03-18] (Intel Corporation) [File not signed]
S3 intaud_WaveExtensible; C:\Windows\system32\drivers\intelaud.sys [38296 2014-03-01] (Intel Corporation) [File not signed]
R3 IntcAzAudAddService; C:\Windows\system32\drivers\RTKVHD64.sys [3932120 2014-04-15] (Realtek Semiconductor Corp.) [File not signed]
S3 IntcDAud; C:\Windows\system32\DRIVERS\IntcDAud.sys [450520 2014-03-17] (Intel® Corporation) [File not signed]
S0 intelide; C:\Windows\System32\drivers\intelide.sys [18272 2013-08-22] (Microsoft Corporation) [File not signed]
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-03-18] (Microsoft Corporation) [File not signed]
R3 intelppm; C:\Windows\System32\drivers\intelppm.sys [98816 2013-08-22] (Microsoft Corporation) [File not signed]
S3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [84992 2013-08-22] (Microsoft Corporation) [File not signed]
S3 IPMIDRV; C:\Windows\System32\drivers\IPMIDrv.sys [79360 2014-03-06] (Microsoft Corporation) [File not signed]
S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [142848 2014-03-18] (Microsoft Corporation) [File not signed]
S3 IRENUM; C:\Windows\System32\drivers\irenum.sys [17920 2013-08-22] (Microsoft Corporation) [File not signed]
S0 isapnp; C:\Windows\System32\drivers\isapnp.sys [21856 2013-08-22] (Microsoft Corporation) [File not signed]
S3 iScsiPrt; C:\Windows\System32\drivers\msiscsi.sys [275800 2014-04-06] (Microsoft Corporation) [File not signed]
R3 iwdbus; C:\Windows\System32\drivers\iwdbus.sys [27032 2014-03-01] (Intel Corporation) [File not signed]
R3 kbdclass; C:\Windows\System32\drivers\kbdclass.sys [58208 2013-08-22] (Microsoft Corporation) [File not signed]
R3 kbdhid; C:\Windows\System32\drivers\kbdhid.sys [32256 2013-08-22] (Microsoft Corporation) [File not signed]
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( ) [File not signed]
S3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [22272 2014-03-18] (Microsoft Corporation) [File not signed]
R3 kdnic; C:\Windows\system32\DRIVERS\kdnic.sys [19456 2013-08-22] (Microsoft Corporation) [File not signed]
R0 KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [101208 2014-03-18] (Microsoft Corporation) [File not signed]
R0 KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [180056 2014-03-08] (Microsoft Corporation) [File not signed]
R3 ksthunk; C:\Windows\system32\drivers\ksthunk.sys [21248 2013-08-22] (Microsoft Corporation) [File not signed]
R2 lltdio; C:\Windows\system32\DRIVERS\lltdio.sys [59392 2013-08-22] (Microsoft Corporation) [File not signed]
S0 LSI_SAS; C:\Windows\System32\drivers\lsi_sas.sys [109408 2013-08-22] (LSI Corporation) [File not signed]
S0 LSI_SAS2; C:\Windows\System32\drivers\lsi_sas2.sys [93536 2013-08-22] (LSI Corporation) [File not signed]
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation) [File not signed]
S0 LSI_SSS; C:\Windows\System32\drivers\lsi_sss.sys [82784 2013-08-22] (LSI Corporation) [File not signed]
R2 luafv; C:\Windows\system32\drivers\luafv.sys [124416 2014-03-18] (Microsoft Corporation) [File not signed]
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation) [File not signed]
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation) [File not signed]
S0 megasas; C:\Windows\System32\drivers\megasas.sys [56672 2013-08-22] (LSI Corporation) [File not signed]
S0 megasr; C:\Windows\System32\drivers\megasr.sys [575840 2013-08-22] (LSI Corporation, Inc.) [File not signed]
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2014-07-17] (Intel Corporation) [File not signed]
S3 Modem; C:\Windows\System32\drivers\modem.sys [40960 2013-08-22] (Microsoft Corporation) [File not signed]
R3 monitor; C:\Windows\System32\drivers\monitor.sys [30208 2013-08-22] (Microsoft Corporation) [File not signed]
R3 mouclass; C:\Windows\System32\drivers\mouclass.sys [51040 2013-08-22] (Microsoft Corporation) [File not signed]
R3 mouhid; C:\Windows\System32\drivers\mouhid.sys [30208 2013-08-22] (Microsoft Corporation) [File not signed]
R0 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [101728 2013-08-22] (Microsoft Corporation) [File not signed]
R3 mpsdrv; C:\Windows\System32\drivers\mpsdrv.sys [74240 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [140288 2014-03-06] (Microsoft Corporation) [File not signed]
R3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [402432 2014-04-30] (Microsoft Corporation) [File not signed]
R2 mrxsmb10; C:\Windows\System32\DRIVERS\mrxsmb10.sys [283648 2014-03-06] (Microsoft Corporation) [File not signed]
R3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [206848 2014-05-31] (Microsoft Corporation) [File not signed]
S3 MsBridge; C:\Windows\system32\DRIVERS\bridge.sys [115712 2013-08-22] (Microsoft Corporation) [File not signed]
S3 msgpiowin32; C:\Windows\System32\drivers\msgpiowin32.sys [41824 2013-08-22] (Microsoft Corporation) [File not signed]
S3 mshidkmdf; C:\Windows\System32\drivers\mshidkmdf.sys [8192 2013-08-22] (Microsoft Corporation) [File not signed]
S3 mshidumdf; C:\Windows\System32\drivers\mshidumdf.sys [9728 2013-08-22] (Microsoft Corporation) [File not signed]
R0 msisadrv; C:\Windows\System32\drivers\msisadrv.sys [17248 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSKSSRV; C:\Windows\system32\drivers\MSKSSRV.sys [10624 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MsLldp; C:\Windows\system32\DRIVERS\mslldp.sys [66560 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSPCLOCK; C:\Windows\system32\drivers\MSPCLOCK.sys [7040 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSPQM; C:\Windows\system32\drivers\MSPQM.sys [6784 2013-08-22] (Microsoft Corporation) [File not signed]
R1 mssmbios; C:\Windows\System32\drivers\mssmbios.sys [37728 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSTEE; C:\Windows\system32\drivers\MSTEE.sys [7936 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MTConfig; C:\Windows\System32\drivers\MTConfig.sys [13312 2013-08-22] (Microsoft Corporation) [File not signed]
R0 Mup; C:\Windows\System32\Drivers\mup.sys [78688 2013-08-22] (Microsoft Corporation) [File not signed]
S0 mvumis; C:\Windows\System32\drivers\mvumis.sys [63840 2013-08-22] (Marvell Semiconductor, Inc.) [File not signed]
R3 NativeWifiP; C:\Windows\system32\DRIVERS\nwifi.sys [443904 2014-03-19] (Microsoft Corporation) [File not signed]
R0 NDIS; C:\Windows\System32\drivers\ndis.sys [1118552 2014-03-18] (Microsoft Corporation) [File not signed]
S3 NdisCap; C:\Windows\system32\DRIVERS\ndiscap.sys [43008 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NdisImPlatform; C:\Windows\system32\DRIVERS\NdisImPlatform.sys [124928 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NdisTapi; C:\Windows\system32\DRIVERS\ndistapi.sys [24576 2013-08-22] (Microsoft Corporation) [File not signed]
R3 Ndisuio; C:\Windows\system32\DRIVERS\ndisuio.sys [60416 2013-08-22] (Microsoft Corporation) [File not signed]
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NdisWan; C:\Windows\system32\DRIVERS\ndiswan.sys [220672 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NdisWanLegacy; C:\Windows\system32\DRIVERS\ndiswan.sys [220672 2013-08-22] (Microsoft Corporation) [File not signed]
R2 Ndu; C:\Windows\System32\drivers\Ndu.sys [103424 2013-08-22] (Microsoft Corporation) [File not signed]
R1 NetBIOS; C:\Windows\System32\DRIVERS\netbios.sys [48128 2013-08-22] (Microsoft Corporation) [File not signed]
R1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [282624 2013-08-22] (Microsoft Corporation) [File not signed]
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation) [File not signed]
R1 npsvctrig; C:\Windows\System32\drivers\npsvctrig.sys [23040 2013-08-22] (Microsoft Corporation) [File not signed]
R1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [39936 2013-08-22] (Microsoft Corporation) [File not signed]
R1 Null; C:\Windows\System32\Drivers\Null.sys [5632 2013-08-22] (Microsoft Corporation) [File not signed]
R3 nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [10423952 2015-04-09] (NVIDIA Corporation) [File not signed]
S0 nvraid; C:\Windows\System32\drivers\nvraid.sys [150368 2013-08-22] (NVIDIA Corporation) [File not signed]
S0 nvstor; C:\Windows\System32\drivers\nvstor.sys [168288 2013-08-22] (NVIDIA Corporation) [File not signed]
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-01] (NVIDIA Corporation) [File not signed]
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation) [File not signed]
S0 nv_agp; C:\Windows\System32\drivers\nv_agp.sys [124768 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Parport; C:\Windows\System32\drivers\parport.sys [94208 2013-08-22] (Microsoft Corporation) [File not signed]
R0 partmgr; C:\Windows\System32\drivers\partmgr.sys [88928 2013-08-22] (Microsoft Corporation) [File not signed]
R0 pci; C:\Windows\System32\drivers\pci.sys [280920 2014-03-18] (Microsoft Corporation) [File not signed]
S0 pciide; C:\Windows\System32\drivers\pciide.sys [14688 2013-08-22] (Microsoft Corporation) [File not signed]
S0 pcmcia; C:\Windows\System32\drivers\pcmcia.sys [114528 2013-08-22] (Microsoft Corporation) [File not signed]
R0 pcw; C:\Windows\System32\drivers\pcw.sys [50016 2013-08-22] (Microsoft Corporation) [File not signed]
R0 pdc; C:\Windows\System32\drivers\pdc.sys [86872 2014-03-18] (Microsoft Corporation) [File not signed]
R2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [663040 2014-03-18] (Microsoft Corporation) [File not signed]
R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [14136 2014-01-03] (Windows ® Win 7 DDK provider) [File not signed]
S3 pneteth; C:\Windows\system32\DRIVERS\pneteth.sys [15360 2011-11-25] (June Fabrics Technology Inc.) [File not signed]
S3 PptpMiniport; C:\Windows\system32\DRIVERS\raspptp.sys [107520 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Processor; C:\Windows\System32\drivers\processr.sys [92160 2013-08-22] (Microsoft Corporation) [File not signed]
R1 Psched; C:\Windows\system32\DRIVERS\pacer.sys [151552 2013-08-22] (Microsoft Corporation) [File not signed]
S3 QWAVEdrv; C:\Windows\system32\drivers\qwavedrv.sys [47104 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasAcd; C:\Windows\System32\DRIVERS\rasacd.sys [17408 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasAgileVpn; C:\Windows\system32\DRIVERS\AgileVpn.sys [96768 2014-04-30] (Microsoft Corporation) [File not signed]
S3 Rasl2tp; C:\Windows\system32\DRIVERS\rasl2tp.sys [120832 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasPppoe; C:\Windows\system32\DRIVERS\raspppoe.sys [84992 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasSstp; C:\Windows\system32\DRIVERS\rassstp.sys [96256 2013-08-22] (Microsoft Corporation) [File not signed]
R1 rdbss; C:\Windows\System32\DRIVERS\rdbss.sys [408576 2014-03-18] (Microsoft Corporation) [File not signed]
R3 rdpbus; C:\Windows\System32\drivers\rdpbus.sys [22528 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RDPDR; C:\Windows\System32\drivers\rdpdr.sys [195584 2014-03-18] (Microsoft Corporation) [File not signed]
S3 RdpVideoMiniport; C:\Windows\System32\drivers\rdpvideominiport.sys [27488 2014-03-18] (Microsoft Corporation) [File not signed]
R0 rdyboost; C:\Windows\System32\drivers\rdyboost.sys [249688 2014-03-18] (Microsoft Corporation) [File not signed]
R3 RFCOMM; C:\Windows\system32\DRIVERS\rfcomm.sys [167424 2014-03-18] (Microsoft Corporation) [File not signed]
R2 rspndr; C:\Windows\system32\DRIVERS\rspndr.sys [80384 2013-08-22] (Microsoft Corporation) [File not signed]
R3 RTL8168; C:\Windows\system32\DRIVERS\Rt630x64.sys [871640 2014-07-17] (Realtek                                            ) [File not signed]
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [423128 2014-07-18] (Realsil Semiconductor Corporation) [File not signed]
S3 s3cap; C:\Windows\System32\drivers\vms3cap.sys [7168 2013-08-22] (Microsoft Corporation) [File not signed]
S0 sbp2port; C:\Windows\System32\drivers\sbp2port.sys [107872 2013-08-22] (Microsoft Corporation) [File not signed]
S3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [40960 2013-08-22] (Microsoft Corporation) [File not signed]
S3 sdbus; C:\Windows\System32\drivers\sdbus.sys [236888 2014-03-18] (Microsoft Corporation) [File not signed]
S3 sdstor; C:\Windows\System32\drivers\sdstor.sys [79192 2014-03-18] (Microsoft Corporation) [File not signed]
S3 SerCx; C:\Windows\System32\drivers\SerCx.sys [69472 2013-08-22] (Microsoft Corporation) [File not signed]
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-03-18] (Microsoft Corporation) [File not signed]
S3 Serenum; C:\Windows\System32\drivers\serenum.sys [23040 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Serial; C:\Windows\System32\drivers\serial.sys [83456 2013-08-22] (Microsoft Corporation) [File not signed]
S3 sermouse; C:\Windows\System32\drivers\sermouse.sys [26112 2013-08-22] (Microsoft Corporation) [File not signed]
S3 sfloppy; C:\Windows\System32\drivers\sfloppy.sys [17408 2013-08-22] (Microsoft Corporation) [File not signed]
S0 SiSRaid2; C:\Windows\System32\drivers\SiSRaid2.sys [44896 2013-08-22] (Silicon Integrated Systems Corp.) [File not signed]
S0 SiSRaid4; C:\Windows\System32\drivers\sisraid4.sys [81760 2013-08-22] (Silicon Integrated Systems) [File not signed]
R0 spaceport; C:\Windows\System32\drivers\spaceport.sys [384856 2014-04-01] (Microsoft Corporation) [File not signed]
S3 SpbCx; C:\Windows\System32\drivers\SpbCx.sys [72032 2013-08-22] (Microsoft Corporation) [File not signed]
R2 srv; C:\Windows\System32\DRIVERS\srv.sys [454656 2014-03-18] (Microsoft Corporation) [File not signed]
R3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [677376 2014-04-03] (Microsoft Corporation) [File not signed]
R3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [246272 2014-03-27] (Microsoft Corporation) [File not signed]
S0 stexstor; C:\Windows\System32\drivers\stexstor.sys [31072 2013-08-22] (Promise Technology, Inc.) [File not signed]
S0 storahci; C:\Windows\System32\drivers\storahci.sys [107872 2013-08-22] (Microsoft Corporation) [File not signed]
S0 storflt; C:\Windows\System32\DRIVERS\vmstorfl.sys [49984 2013-08-22] (Microsoft Corporation) [File not signed]
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2014-03-18] (Microsoft Corporation) [File not signed]
S0 storvsc; C:\Windows\System32\drivers\storvsc.sys [45888 2013-08-22] (Microsoft Corporation) [File not signed]
S3 storvsp; C:\Windows\System32\drivers\storvsp.sys [68608 2014-03-18] (Microsoft Corporation) [File not signed]
R3 swenum; C:\Windows\System32\drivers\swenum.sys [14176 2013-08-22] (Microsoft Corporation) [File not signed]
S3 tap0901; C:\Windows\system32\DRIVERS\tap0901.sys [40664 2013-08-22] (The OpenVPN Project) [File not signed]
R0 Tcpip; C:\Windows\System32\drivers\tcpip.sys [2518360 2014-05-27] (Microsoft Corporation) [File not signed]
S3 TCPIP6; C:\Windows\system32\DRIVERS\tcpip.sys [2518360 2014-05-27] (Microsoft Corporation) [File not signed]
R2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [49152 2014-03-06] (Microsoft Corporation) [File not signed]
R1 tdx; C:\Windows\system32\DRIVERS\tdx.sys [107520 2013-08-22] (Microsoft Corporation) [File not signed]
S3 terminpt; C:\Windows\System32\drivers\terminpt.sys [37216 2014-03-18] (Microsoft Corporation) [File not signed]
S3 TPM; C:\Windows\system32\drivers\tpm.sys [159584 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [56320 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TsUsbGD; C:\Windows\System32\drivers\TsUsbGD.sys [29696 2013-08-22] (Microsoft Corporation) [File not signed]
S3 tunnel; C:\Windows\system32\DRIVERS\tunnel.sys [154112 2013-08-22] (Microsoft Corporation) [File not signed]
S0 uagp35; C:\Windows\System32\drivers\uagp35.sys [64864 2013-08-22] (Microsoft Corporation) [File not signed]
S3 UASPStor; C:\Windows\System32\drivers\uaspstor.sys [74080 2013-08-22] (Microsoft Corporation) [File not signed]
R3 UCX01000; C:\Windows\System32\drivers\ucx01000.sys [189784 2014-03-18] (Microsoft Corporation) [File not signed]
S4 udfs; C:\Windows\System32\DRIVERS\udfs.sys [316928 2013-08-22] (Microsoft Corporation) [File not signed]
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation) [File not signed]
S0 uliagpkx; C:\Windows\System32\drivers\uliagpkx.sys [65888 2013-08-22] (Microsoft Corporation) [File not signed]
R3 umbus; C:\Windows\System32\drivers\umbus.sys [46080 2013-08-22] (Microsoft Corporation) [File not signed]
S3 UmPass; C:\Windows\System32\drivers\umpass.sys [11776 2013-08-22] (Microsoft Corporation) [File not signed]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] () [File not signed]
R3 usbccgp; C:\Windows\System32\drivers\usbccgp.sys [155480 2014-03-18] (Microsoft Corporation) [File not signed]
S3 usbcir; C:\Windows\System32\drivers\usbcir.sys [98304 2013-08-22] (Microsoft Corporation) [File not signed]
R3 usbehci; C:\Windows\System32\drivers\usbehci.sys [89944 2014-05-31] (Microsoft Corporation) [File not signed]
R3 usbhub; C:\Windows\System32\drivers\usbhub.sys [419672 2014-05-31] (Microsoft Corporation) [File not signed]
R3 USBHUB3; C:\Windows\System32\drivers\UsbHub3.sys [467800 2014-05-31] (Microsoft Corporation) [File not signed]
S3 usbohci; C:\Windows\System32\drivers\usbohci.sys [30208 2013-08-22] (Microsoft Corporation) [File not signed]
S3 usbprint; C:\Windows\System32\drivers\usbprint.sys [26112 2013-08-22] (Microsoft Corporation) [File not signed]
S3 usbser; C:\Windows\system32\DRIVERS\usbser.sys [33280 2013-08-22] (Microsoft Corporation) [File not signed]
S3 USBSTOR; C:\Windows\System32\drivers\USBSTOR.SYS [148824 2014-03-18] (Microsoft Corporation) [File not signed]
S3 usbuhci; C:\Windows\System32\drivers\usbuhci.sys [37376 2014-05-31] (Microsoft Corporation) [File not signed]
R3 usbvideo; C:\Windows\System32\Drivers\usbvideo.sys [212224 2013-08-22] (Microsoft Corporation) [File not signed]
R3 USBXHCI; C:\Windows\System32\drivers\USBXHCI.SYS [325464 2014-03-18] (Microsoft Corporation) [File not signed]
S3 usb_rndisx; C:\Windows\system32\DRIVERS\usb8023x.sys [20992 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [141440 2015-03-02] (Oracle Corporation) [File not signed]
R3 VClone; C:\Windows\System32\drivers\VClone.sys [34816 2013-07-24] (Elaborate Bytes AG) [File not signed]
R0 vdrvroot; C:\Windows\System32\drivers\vdrvroot.sys [37728 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VerifierExt; C:\Windows\System32\drivers\VerifierExt.sys [175960 2014-03-18] (Microsoft Corporation) [File not signed]
S3 vhdmp; C:\Windows\System32\drivers\vhdmp.sys [551256 2014-03-18] (Microsoft Corporation) [File not signed]
S0 viaide; C:\Windows\System32\drivers\viaide.sys [19808 2013-08-22] (VIA Technologies, Inc.) [File not signed]
S3 Vid; C:\Windows\System32\drivers\Vid.sys [220672 2014-03-18] (Microsoft Corporation) [File not signed]
S0 vmbus; C:\Windows\System32\drivers\vmbus.sys [97088 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VMBusHID; C:\Windows\System32\drivers\VMBusHID.sys [21760 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmbusr; C:\Windows\System32\drivers\vmbusr.sys [129536 2014-03-18] (Microsoft Corporation) [File not signed]
R0 volmgr; C:\Windows\System32\drivers\volmgr.sys [73568 2013-08-22] (Microsoft Corporation) [File not signed]
R0 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [377696 2013-08-22] (Microsoft Corporation) [File not signed]
R0 volsnap; C:\Windows\System32\drivers\volsnap.sys [310616 2014-03-06] (Microsoft Corporation) [File not signed]
S3 vpci; C:\Windows\System32\drivers\vpci.sys [69472 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vpcivsp; C:\Windows\System32\drivers\vpcivsp.sys [65536 2014-03-18] (Microsoft Corporation) [File not signed]
S0 vsmraid; C:\Windows\System32\drivers\vsmraid.sys [168800 2013-08-22] (VIA Technologies Inc.,Ltd) [File not signed]
S0 VSTXRAID; C:\Windows\System32\drivers\vstxraid.sys [305504 2013-08-22] (VIA Corporation) [File not signed]
R3 vwifibus; C:\Windows\System32\drivers\vwifibus.sys [24576 2013-08-22] (Microsoft Corporation) [File not signed]
R1 vwififlt; C:\Windows\system32\DRIVERS\vwififlt.sys [71680 2014-04-30] (Microsoft Corporation) [File not signed]
R3 vwifimp; C:\Windows\system32\DRIVERS\vwifimp.sys [38912 2014-04-30] (Microsoft Corporation) [File not signed]
S3 WacomPen; C:\Windows\System32\drivers\wacompen.sys [26752 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Wanarp; C:\Windows\system32\DRIVERS\wanarp.sys [79872 2013-08-22] (Microsoft Corporation) [File not signed]
R1 Wanarpv6; C:\Windows\system32\DRIVERS\wanarp.sys [79872 2013-08-22] (Microsoft Corporation) [File not signed]
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [35856 2014-03-24] (Microsoft Corporation) [File not signed]
R0 Wdf01000; C:\Windows\System32\drivers\Wdf01000.sys [839488 2013-08-22] (Microsoft Corporation) [File not signed]
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [257880 2014-03-24] (Microsoft Corporation) [File not signed]
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation) [File not signed]
R0 WFPLWFS; C:\Windows\System32\DRIVERS\wfplwfs.sys [136024 2014-03-08] (Microsoft Corporation) [File not signed]
S3 WIMMount; C:\Windows\System32\drivers\wimmount.sys [33632 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [78848 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WmiAcpi; C:\Windows\System32\drivers\wmiacpi.sys [16384 2013-08-22] (Microsoft Corporation) [File not signed]
S3 wpcfltr; C:\Windows\System32\DRIVERS\wpcfltr.sys [55328 2014-07-24] (Microsoft Corporation) [File not signed]
S3 WpdUpFltr; C:\Windows\System32\drivers\WpdUpFltr.sys [26976 2013-08-22] (Microsoft Corporation) [File not signed]
S4 ws2ifsl; C:\Windows\system32\drivers\ws2ifsl.sys [21504 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [110592 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WUDFRd; C:\Windows\System32\drivers\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WUDFSensorLP; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WUDFWpdFs; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WUDFWpdMtp; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation) [File not signed]
S1 BAPIDRV; system32\DRIVERS\BAPIDRV64.sys [X]
S3 cpuz137; \??\C:\Users\Tony1604\AppData\Local\Temp\cpuz137\cpuz137_x64.sys [X]
S3 SzCCID; \SystemRoot\system32\DRIVERS\SzCCID.sys [X]
S3 VBoxNetFlt; \SystemRoot\system32\DRIVERS\VBoxNetFlt.sys [X]
S3 vpnva; \SystemRoot\system32\DRIVERS\vpnva64-6.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-05-13 20:05 - 2015-05-13 20:06 - 00074474 _____ () C:\Users\Tony1604\Desktop\Main.txt
2015-05-13 19:58 - 2015-05-13 19:58 - 02104832 _____ (Farbar) C:\Users\Tony1604\Desktop\FRST64.exe
2015-05-13 19:58 - 2015-05-13 19:58 - 00000000 ____D () C:\Users\Tony1604\Desktop\FRST-OlderVersion
2015-05-13 19:53 - 2015-05-13 19:53 - 00005538 _____ () C:\Users\Tony1604\Downloads\Cryptographic_Services.reg
2015-05-13 13:09 - 2015-05-13 13:09 - 00003106 _____ () C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1128951351-2712326424-2671060717-1001
2015-05-12 15:13 - 2015-05-12 18:05 - 00000000 ____D () C:\Users\Tony1604\Downloads\Grand.Theft.Auto.V-RELOADED
2015-05-12 15:09 - 2015-05-12 15:09 - 00002412 _____ () C:\Windows\System32\Tasks\Uninstaller_SkipUac_Tony1604
2015-05-12 15:09 - 2015-05-12 15:09 - 00000306 _____ () C:\Windows\Tasks\Uninstaller_SkipUac_Tony1604.job
2015-05-11 23:51 - 2015-05-11 23:51 - 00009964 _____ () C:\Users\Tony1604\Desktop\Praksa.xlsx
2015-05-11 21:25 - 2015-05-11 21:34 - 00000000 ____D () C:\Users\Tony1604\Desktop\271590
2015-05-11 12:48 - 2015-05-11 12:48 - 00043664 _____ () C:\Windows\system32\Drivers\hitmanpro37.sys
2015-05-11 12:47 - 2015-05-11 12:47 - 00004610 _____ () C:\Windows\system32\.crusader
2015-05-11 12:37 - 2015-05-11 12:47 - 00000000 ____D () C:\ProgramData\HitmanPro
2015-05-11 12:35 - 2015-05-11 12:35 - 00001010 _____ () C:\Users\Tony1604\Desktop\Fallout New Vegas.lnk
2015-05-11 12:35 - 2015-05-11 12:35 - 00001007 _____ () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-05-11 12:33 - 2015-05-11 12:35 - 00000000 ____D () C:\AdwCleaner
2015-05-11 11:44 - 2015-05-13 19:58 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-05-11 11:43 - 2015-05-11 11:43 - 00001134 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-05-11 11:43 - 2015-05-11 11:43 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2015-05-11 11:43 - 2015-05-11 11:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-05-11 11:43 - 2015-05-11 11:43 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-05-11 11:43 - 2015-05-11 11:43 - 00000000 ____D () C:\Program Files\Unlocker
2015-05-11 11:43 - 2015-05-11 11:43 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-05-11 11:43 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-05-11 11:43 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-05-11 11:43 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-05-11 01:39 - 2015-05-13 20:05 - 00000000 ____D () C:\FRST
2015-05-11 01:17 - 2015-05-11 01:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-05-11 01:17 - 2015-05-01 18:51 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-05-11 01:17 - 2015-05-01 18:51 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-05-11 01:17 - 2015-05-01 18:50 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-05-11 01:17 - 2015-05-01 18:50 - 01570672 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-05-11 01:17 - 2014-11-22 12:46 - 00038032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2015-05-11 01:17 - 2014-11-22 12:46 - 00035472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2015-05-11 01:17 - 2014-11-22 12:46 - 00032400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2015-05-11 01:16 - 2015-05-12 13:59 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\NVIDIA
2015-05-11 01:13 - 2015-04-09 02:58 - 31570064 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 30397072 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 25375048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 24053576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 17176128 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 15818528 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 15716232 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 14617288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 14006752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 12852784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 12689592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 11380728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 10423952 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-05-11 01:13 - 2015-04-09 02:58 - 03317344 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 02935416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 02896528 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 02573456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 01895568 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435012.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435012.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 01047368 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 01037640 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00970568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00962192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00499344 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00402576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00390472 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00346256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00175880 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00029329 _____ () C:\Windows\system32\nvinfo.pb
2015-05-11 00:40 - 2015-05-11 00:40 - 00001740 __RSH () C:\ProgramData\ntuser.pol
2015-05-11 00:15 - 2015-05-11 00:15 - 00000000 _____ () C:\Windows\system32\sfcdetails.txt
2015-05-10 23:04 - 2015-05-11 12:58 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\mIRC
2015-05-10 23:04 - 2015-05-10 23:04 - 00000967 _____ () C:\Users\Public\Desktop\mIRC.lnk
2015-05-10 23:04 - 2015-05-10 23:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mIRC
2015-05-10 23:04 - 2015-05-10 23:04 - 00000000 ____D () C:\Program Files (x86)\mIRC
2015-05-10 21:56 - 2015-05-11 01:16 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-05-10 21:56 - 2015-04-08 23:30 - 06841488 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 03478344 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 01047696 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 00936264 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-05-10 21:56 - 2015-04-08 23:30 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 00075080 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-05-10 21:56 - 2015-04-08 19:52 - 04336074 _____ () C:\Windows\system32\nvcoproc.bin
2015-05-10 21:36 - 2015-05-10 23:03 - 00000000 ____D () C:\NvidiaLogging
2015-05-10 21:31 - 2015-05-11 01:17 - 00000103 _____ () C:\Windows\setupact.log
2015-05-10 21:31 - 2015-05-10 21:31 - 00000000 _____ () C:\Windows\setuperr.log
2015-05-05 22:56 - 2015-05-13 00:35 - 00000000 _____ () C:\Recovery.txt
2015-05-05 22:56 - 2015-05-05 22:56 - 00000000 __SHD () C:\Recovery
2015-05-05 13:04 - 2015-05-05 13:04 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\TuneUp Software
2015-05-05 12:38 - 2015-05-05 12:38 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Apps\2.0
2015-05-05 10:16 - 2015-05-05 10:16 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\AVG2015
2015-05-05 10:12 - 2015-05-05 10:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-05-05 10:06 - 2015-05-05 10:06 - 00001760 _____ () C:\Users\Tony1604\Desktop\IObit Uninstaller.lnk
2015-05-05 10:00 - 2015-05-05 10:37 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Avg2015
2015-05-03 11:24 - 2015-05-03 11:24 - 00000000 ____D () C:\04ee0def8bac2efda312672267
2015-05-03 11:03 - 2015-05-03 11:03 - 00000000 ____D () C:\Users\Tony1604\Tracing
2015-05-03 11:02 - 2015-05-03 11:02 - 00000000 ____D () C:\Windows\en
2015-05-03 11:01 - 2015-05-03 11:01 - 00002506 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
2015-05-03 11:01 - 2015-05-03 11:01 - 00001478 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2015-05-03 11:01 - 2015-05-03 11:01 - 00001404 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2015-05-03 11:01 - 2015-05-03 11:01 - 00001331 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2015-05-03 11:01 - 2015-05-03 11:01 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-05-03 11:01 - 2015-05-03 11:01 - 00000000 ____D () C:\Program Files\Windows Live
2015-05-03 11:01 - 2015-05-03 11:01 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2015-05-03 10:59 - 2015-05-12 14:10 - 00000769 _____ () C:\Windows\DirectX.log
2015-05-03 10:59 - 2015-05-03 10:59 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2015-05-03 10:58 - 2015-05-03 11:03 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Windows Live
2015-05-03 10:57 - 2015-05-03 10:57 - 00000000 ____D () C:\fc7b9e2c3f4ba3c46771754f40
2015-05-03 10:38 - 2015-05-03 10:38 - 00002355 _____ () C:\Users\Ruža\Desktop\Pokretač aplikacija sustava Chrome.lnk
2015-05-03 10:38 - 2015-05-03 10:38 - 00000000 ____D () C:\Users\Ruža\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-05-03 10:38 - 2015-05-03 10:38 - 00000000 ____D () C:\Users\Ruža\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacije sustava Chrome
2015-05-02 23:24 - 2015-05-02 23:24 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Supremus Corporation
2015-05-02 11:36 - 2015-05-02 22:48 - 00002884 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (Tony1604)
2015-05-02 11:36 - 2015-05-02 11:36 - 00026528 _____ (REALiX™) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
2015-05-02 11:28 - 2015-05-13 06:26 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1128951351-2712326424-2671060717-1002
2015-05-02 11:11 - 2015-05-02 11:11 - 00000002 _____ () C:\Windows\AsCDProc.log
2015-05-02 11:07 - 2015-05-13 20:00 - 00033554 _____ () C:\Windows\PFRO.log
2015-05-02 10:27 - 2015-05-02 10:27 - 71720960 _____ () C:\Windows\system32\config\SOFTWARE.iobit
2015-05-02 10:27 - 2015-05-02 10:27 - 36741120 _____ () C:\Windows\system32\config\COMPONENTS.iobit
2015-05-02 10:27 - 2015-05-02 10:27 - 00466944 _____ () C:\Windows\system32\config\DEFAULT.iobit
2015-05-02 10:27 - 2015-05-02 10:27 - 00036864 _____ () C:\Windows\system32\config\SAM.iobit
2015-05-02 10:27 - 2015-05-02 10:27 - 00024576 _____ () C:\Windows\system32\config\SECURITY.iobit
2015-05-02 10:17 - 2015-05-02 10:17 - 00000000 ____D () C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-05-02 10:05 - 2015-05-12 18:44 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1128951351-2712326424-2671060717-1001
2015-05-02 10:00 - 2015-05-12 00:01 - 00000000 ____D () C:\Users\Tony1604\Downloads\Music for now
2015-05-02 09:59 - 2015-05-02 09:59 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-TONYLAPTOP-Windows-8.1-Pro-(64-bit).dat
2015-05-02 09:27 - 2015-05-02 09:27 - 00000000 ____D () C:\Intel
2015-05-02 09:22 - 2015-05-02 09:22 - 00099384 _____ () C:\Users\Tony1604\AppData\Roaming\inst.exe
2015-05-02 09:22 - 2015-05-02 09:22 - 00082816 _____ (VSO Software) C:\Users\Tony1604\AppData\Roaming\pcouffin.sys
2015-05-02 09:22 - 2015-05-02 09:22 - 00007859 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.cat
2015-05-02 09:22 - 2015-05-02 09:22 - 00001256 _____ () C:\Users\Tony1604\Desktop\ConvertXToDVD 5.lnk
2015-05-02 09:22 - 2015-05-02 09:22 - 00000055 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.log
2015-05-02 09:22 - 2015-05-02 09:22 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Vso
2015-05-02 09:22 - 2015-05-02 09:22 - 00000000 ____D () C:\ProgramData\VSO
2015-05-02 09:22 - 2015-05-02 09:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO
2015-05-02 09:22 - 2015-05-02 09:22 - 00000000 ____D () C:\Program Files (x86)\VSO
2015-05-01 15:46 - 2015-05-01 15:46 - 01380448 _____ (Skype Technologies S.A.) C:\Users\Ruža\Downloads\SkypeSetup_7_2_103.exe
2015-05-01 15:46 - 2015-05-01 15:46 - 01380448 _____ (Skype Technologies S.A.) C:\Users\Ruža\Downloads\SkypeSetup_7_2_103 (1).exe
2015-05-01 15:43 - 2015-05-01 15:44 - 45346432 _____ (Skype Technologies S.A.) C:\Users\Ruža\Downloads\SkypeSetupFull.exe
2015-05-01 13:41 - 2015-05-12 21:06 - 00000020 _____ () C:\Users\Ruža\AppData\Roaming\appdataFr3.bin
2015-05-01 11:36 - 2015-05-11 11:40 - 00000020 _____ () C:\Users\Tony1604\AppData\Roaming\appdataFr3.bin
2015-04-28 00:03 - 2015-04-28 00:04 - 00000000 ____D () C:\Program Files\Sublime Text 3
2015-04-26 11:39 - 2015-04-26 11:39 - 00001290 _____ () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2015-04-26 11:38 - 2015-05-05 10:06 - 00000000 ____D () C:\Program Files (x86)\IObit
2015-04-26 11:06 - 2015-05-11 11:57 - 00000080 _____ () C:\Users\Tony1604\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-04-26 10:56 - 2015-04-26 10:56 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Rockstar Games
2015-04-24 09:46 - 2015-04-26 00:26 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Warframe
2015-04-24 08:40 - 2015-04-24 08:40 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\MK10
2015-04-23 23:47 - 2015-04-23 23:47 - 00001221 _____ () C:\Users\Tony1604\Desktop\Mortal Kombat X Premium Edition.lnk
2015-04-23 23:47 - 2015-04-23 23:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2015-04-22 21:38 - 2015-04-22 21:38 - 00002043 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evolve.lnk
2015-04-22 21:38 - 2015-04-22 21:38 - 00002031 _____ () C:\Users\Public\Desktop\Evolve.lnk
2015-04-22 21:20 - 2015-04-22 21:20 - 00000000 ____D () C:\Program Files\Echobit
2015-04-22 21:19 - 2015-04-22 21:19 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Echobit
2015-04-22 21:19 - 2015-04-22 21:19 - 00000000 ____D () C:\ProgramData\Echobit
2015-04-22 21:09 - 2015-04-22 21:09 - 00000208 _____ () C:\Users\Tony1604\Desktop\Warframe.url
2015-04-22 18:47 - 2015-04-22 18:47 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Unity
2015-04-16 21:24 - 2014-08-01 00:44 - 00000716 _____ () C:\Users\Tony1604\Desktop\Steam.lnk
2015-04-16 20:49 - 2015-04-16 20:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2015-04-16 20:47 - 2015-04-16 20:47 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Lavasoft
2015-04-16 20:46 - 2015-04-16 20:46 - 00000000 ____D () C:\ProgramData\Lavasoft
2015-04-16 20:28 - 2015-05-02 11:06 - 00000000 ____D () C:\Program Files (x86)\SeekerModule
2015-04-16 20:27 - 2015-04-16 20:28 - 00000000 ____D () C:\ProgramData\367599667378516284
2015-04-15 13:06 - 2015-04-15 13:06 - 00256992 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgldx64.sys
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-05-13 20:05 - 2014-07-17 18:58 - 00003946 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{DF7559B6-7CAF-4147-9C0F-AAF1B6090DC8}
2015-05-13 20:04 - 2014-07-24 22:52 - 00000074 _____ () C:\Users\Tony1604\AppData\Roaming\sp_data.sys
2015-05-13 20:01 - 2014-07-17 18:47 - 01336051 _____ () C:\Windows\WindowsUpdate.log
2015-05-13 20:01 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-13 20:00 - 2014-07-17 20:13 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\uTorrent
2015-05-13 20:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru
2015-05-13 20:00 - 2013-08-22 15:25 - 00524288 ___SH () C:\Windows\system32\config\BBI
2015-05-13 13:09 - 2014-07-30 22:18 - 00000000 _RHDO () C:\Users\Tony1604\OneDrive
2015-05-13 06:14 - 2014-10-19 11:29 - 00000074 _____ () C:\Users\Ruža\AppData\Roaming\sp_data.sys
2015-05-12 23:37 - 2014-12-03 16:32 - 00000000 ____D () C:\Users\Tony1604\Downloads\GamesInstall
2015-05-12 15:10 - 2014-07-30 13:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2015-05-12 14:29 - 2014-07-17 18:49 - 00000000 ____D () C:\Users\Tony1604
2015-05-12 14:17 - 2015-03-14 14:51 - 00000000 ___HD () C:\Windows\msdownld.tmp
2015-05-12 14:17 - 2014-07-17 21:55 - 00000000 ____D () C:\Windows\SysWOW64\directx
2015-05-12 14:08 - 2015-02-22 13:29 - 00000000 ____D () C:\ProgramData\Package Cache
2015-05-11 21:17 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\NDF
2015-05-11 14:01 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-05-11 12:35 - 2015-02-20 22:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Build and Shoot
2015-05-11 12:35 - 2014-12-03 18:27 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-05-11 12:35 - 2014-07-17 21:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-05-11 01:37 - 2014-07-17 19:02 - 00000000 ____D () C:\ProgramData\IObit
2015-05-11 01:21 - 2014-07-17 19:17 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-05-11 01:17 - 2014-07-30 21:59 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\NVIDIA Corporation
2015-05-11 01:17 - 2014-07-30 13:19 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-05-11 01:17 - 2014-07-17 19:17 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-05-11 01:04 - 2014-03-18 12:04 - 00863592 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-11 00:38 - 2015-03-08 23:01 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Android
2015-05-11 00:38 - 2014-07-17 19:27 - 00000000 ____D () C:\Program Files\Intel
2015-05-11 00:35 - 2015-03-08 23:00 - 00000000 ____D () C:\Program Files\Android
2015-05-11 00:34 - 2015-03-10 18:53 - 00000000 ____D () C:\Flashtool
2015-05-11 00:26 - 2009-08-18 09:31 - 00147456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\initpki.dll
2015-05-11 00:25 - 2009-08-18 09:31 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\initpki.dll
2015-05-10 21:56 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Help
2015-05-10 21:25 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-05-08 13:23 - 2015-03-05 13:35 - 00003930 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{60F858EE-FDEE-4530-9461-88DCB778F7CA}
2015-05-07 23:59 - 2014-07-23 01:24 - 00007593 _____ () C:\Users\Tony1604\AppData\Local\Resmon.ResmonCfg
2015-05-07 17:42 - 2014-07-27 18:35 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\CrashDumps
2015-05-06 05:01 - 2014-07-17 19:02 - 00000000 ____D () C:\ProgramData\ProductData
2015-05-05 15:08 - 2014-07-19 15:53 - 00000000 ____D () C:\Windows\system32\MRT
2015-05-05 13:04 - 2015-02-22 13:53 - 00000000 ____D () C:\ProgramData\MFAData
2015-05-05 13:02 - 2014-10-19 11:29 - 00000000 ____D () C:\Users\Ruža
2015-05-05 11:53 - 2014-07-17 20:46 - 00000000 ____D () C:\Users\Tony1604\Documents\my games
2015-05-05 11:52 - 2014-10-05 01:25 - 00000000 ____D () C:\Users\Tony1604\Documents\Electronic Arts
2015-05-05 11:27 - 2014-07-19 19:05 - 00000000 ____D () C:\Windows\pss
2015-05-05 10:48 - 2014-08-05 18:11 - 00000000 ____D () C:\Windows\Minidump
2015-05-05 10:47 - 2015-01-04 15:57 - 730668713 _____ () C:\Windows\MEMORY.DMP
2015-05-05 10:33 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2015-05-05 10:12 - 2015-02-22 13:58 - 00000000 ___HD () C:\$AVG
2015-05-05 10:12 - 2013-08-22 17:36 - 00000000 ___HD () C:\Windows\ELAMBKUP
2015-05-04 19:22 - 2014-10-25 17:52 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\vlc
2015-05-02 11:06 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Branding
2015-05-02 10:17 - 2014-07-17 19:03 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\ProductData
2015-04-30 23:46 - 2014-07-17 20:46 - 00000000 ____D () C:\Games
2015-04-29 11:17 - 2014-08-01 00:44 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-04-28 00:04 - 2014-07-31 16:17 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Sublime Text 3
2015-04-19 20:34 - 2014-07-18 08:02 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-04-16 20:34 - 2015-02-25 00:23 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Dropbox
2015-04-16 20:23 - 2015-02-25 00:27 - 00000000 ___RD () C:\Users\Tony1604\Dropbox
 
==================== Files in the root of some directories =======
 
2015-05-01 11:36 - 2015-05-11 11:40 - 0000020 _____ () C:\Users\Tony1604\AppData\Roaming\appdataFr3.bin
2015-05-02 09:22 - 2015-05-02 09:22 - 0099384 _____ () C:\Users\Tony1604\AppData\Roaming\inst.exe
2014-07-24 22:54 - 2014-07-24 22:54 - 0000021 _____ () C:\Users\Tony1604\AppData\Roaming\my_intel.sys
2015-05-02 09:22 - 2015-05-02 09:22 - 0007859 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.cat
2015-05-02 09:22 - 2015-05-02 09:22 - 0001167 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.inf
2015-05-02 09:22 - 2015-05-02 09:22 - 0000055 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.log
2015-05-02 09:22 - 2015-05-02 09:22 - 0082816 _____ (VSO Software) C:\Users\Tony1604\AppData\Roaming\pcouffin.sys
2014-07-24 22:52 - 2015-05-13 20:04 - 0000074 _____ () C:\Users\Tony1604\AppData\Roaming\sp_data.sys
2014-07-23 01:24 - 2015-05-07 23:59 - 0007593 _____ () C:\Users\Tony1604\AppData\Local\Resmon.ResmonCfg
2015-04-16 20:31 - 2015-04-16 20:31 - 0000794 _____ () C:\Users\Tony1604\AppData\Local\Temp-log.txt
2014-07-17 19:23 - 2014-07-17 19:23 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2015-05-05 09:16
 
==================== End Of Log ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-05-2015
Ran by Tony1604 at 2015-05-13 20:07:00
Running from C:\Users\Tony1604\Desktop
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-1128951351-2712326424-2671060717-500 - Administrator - Disabled)
Guest (S-1-5-21-1128951351-2712326424-2671060717-501 - Limited - Disabled)
Ruža (S-1-5-21-1128951351-2712326424-2671060717-1002 - Limited - Enabled) => C:\Users\Ruža
Tony1604 (S-1-5-21-1128951351-2712326424-2671060717-1001 - Administrator - Enabled) => C:\Users\Tony1604
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
µTorrent (HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
AKDSHCard 1.20 (HKLM\...\AKDSHCard) (Version: 1.20 - AKD d.o.o.)
Anno 2070 Complete Edition version 2.0.7780.0 (HKLM-x32\...\Anno 2070 Complete Edition_is1) (Version: 2.0.7780.0 - UBISoft)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.2.8 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 3.0.7 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 2.2.14 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 2.01.0021 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 3.1.9 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0033 - ASUS)
Battlefield 3 (HKLM-x32\...\Battlefield 3_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, DANTE2050)
Call of Duty Ghosts (HKLM-x32\...\Q2FsbG9mRHV0eUdob3N0cw==_is1) (Version: 1 - )
Call of Duty: Black Ops (HKLM-x32\...\Call of Duty: Black Ops_is1) (Version:  - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dead Space™ (HKLM-x32\...\{4D87DC92-C328-46EC-A7B4-9C88129DC696}) (Version: 1.0.222.0 - Electronic Arts)
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Evolve (HKLM\...\{670B1B49-9FD3-4827-9B41-471EFF580AA8}) (Version: 1.8.13 - Echobit, LLC)
Fallout (HKLM-x32\...\Fallout) (Version:  - )
Fallout 3 (HKLM-x32\...\{974C4B12-4D02-4879-85E0-61C95CC63E9E}) (Version: 1.00.0000 - Bethesda Softworks)
Fallout New Vegas  1.4 (HKLM-x32\...\Fallout New Vegas_is1) (Version: 1.4 - Bethesda Softworks)
Fallout2 (HKLM-x32\...\Fallout2) (Version:  - )
G2 mouse Driver (HKLM-x32\...\{249B1212-3779-404F-80FC-F3B80FE265ED}) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.135 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Hotline Miami 2: Wrong Number (HKLM-x32\...\Hotline Miami 2: Wrong Number_is1) (Version:  - )
Intel® Dynamic Platform and Thermal Framework (HKLM-x32\...\FFD10ECE-F715-4a86-9BD8-F6F47DA5DA1C) (Version: 7.1.0.2105 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3496 - Intel Corporation)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 4.3.0.118 - IObit)
Java 7 Update 75 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417075FF}) (Version: 7.0.750 - Oracle)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Java SE Development Kit 7 Update 75 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170750}) (Version: 1.7.0.750 - Oracle)
Java™ 6 Update 17 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216017FF}) (Version: 6.0.170 - Sun Microsystems, Inc.)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
K-Lite Codec Pack 9.9.5 (64-bit) (HKLM\...\KLiteCodecPack64_is1) (Version: 9.9.5 - )
Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}) (Version: 1.2.0241 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\OneDriveSetup.exe) (Version: 17.3.5849.0427 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft1.8 (HKLM-x32\...\Minecraft1.8) (Version:  - )
mIRC (HKLM-x32\...\mIRC) (Version: 7.41 - mIRC Co. Ltd.)
Mortal Kombat X Premium Edition v.1.0 (HKLM-x32\...\Mortal Kombat X Premium Edition_is1) (Version:  - )
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
NVIDIA GeForce Experience 2.4.3.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.3.22 - NVIDIA Corporation)
NVIDIA Graphics Driver 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 350.12 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0324 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0324 - NVIDIA Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.8.0 - Prolific Technology INC)
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.2 - Power Software Ltd)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.318 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.21236 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7224 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.3.22 - NVIDIA Corporation) Hidden
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.105 - Skype Technologies S.A.)
Skyrim - Legendary Edition (HKLM-x32\...\Skyrim - Legendary Edition_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, spider91)
Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.15.3.201502161538 - Sony Mobile Communications Inc.)
Sony PC Companion 2.10.251 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.251 - Sony)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Sublime Text Build 3059 (HKLM\...\Sublime Text 3_is1) (Version:  - Sublime HQ Pty Ltd)
System Requirements Lab (HKLM-x32\...\{0F659036-14C7-4622-9505-35A0DC93526A}) (Version: 6.1.3.0 - Husdawg, LLC)
Unity Web Player (HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\UnityWebPlayer) (Version: 4.6.4f1 - Unity Technologies ApS)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VSO ConvertXToDVD (HKLM-x32\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.3.0.2 - VSO Software)
Warcraft III eSK 1.26.0.6401 (HKLM-x32\...\Warcraft III eSK 1.26.0.6401) (Version:  - )
Warframe (HKLM-x32\...\Steam App 230410) (Version:  - Digital Extremes)
Windows Driver Package - ASUS (ATP) Mouse  (03/18/2014 6.0.0.35) (HKLM\...\DAA6E0EEB715139C1CEA332C78AB4609FB3C211B) (Version: 03/18/2014 6.0.0.35 - ASUS)
Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass  (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
CustomCLSID: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Tony1604\AppData\Local\Microsoft\OneDrive\17.3.5849.0427\amd64\FileSyncApi64.dll (Microsoft Corporation)
 
==================== Restore Points  =========================
 
05-05-2015 10:07:08 Installed AVG 2015
11-05-2015 00:32:58 Removed Universal Adb Driver
12-05-2015 13:59:34 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
13-05-2015 19:58:43 Restore Point Created by FRST
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 
==================== Scheduled Tasks (whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {1CFA0F40-DE11-4595-BFB6-ECEA8FE82038} - System32\Tasks\Driver Booster SkipUAC (Tony1604) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: {2445745D-5A73-45AD-B8EE-993AB773CB54} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2014-01-14] (ASUSTek Computer Inc.)
Task: {24C68C18-615B-4C94-9C49-EC9A41B2C5D8} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1128951351-2712326424-2671060717-1001 => %localappdata%\Microsoft\OneDrive\OneDrive.exe
Task: {2BC41083-654D-4C4D-B7DC-ACC45BF0F3BA} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-04-01] (Microsoft Corporation)
Task: {35409942-2797-4ECD-A6B0-B65A7778A455} - System32\Tasks\{24AA0856-8362-4F8A-BBE3-3EC34AD2E47E} => pcalua.exe -a "C:\Users\Tony1604\AppData\Roaming\Arma III\Uninstall\unins000.exe"
Task: {35EDD4E1-7115-4945-B313-F02C6458B472} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {37F1820E-9029-4588-8B73-AE23DC36FCB1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-17] (Google Inc.)
Task: {4D498A8A-A968-4B7B-8D45-4204E79C0B23} - System32\Tasks\Uninstaller_SkipUac_Tony1604 => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-04-26] (IObit)
Task: {5392C948-AEAB-4B74-B484-B8F5413FD866} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {5C7B255E-3A0D-43CB-80F6-43645EFBC498} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {75470DD5-C4B3-4FE9-A8F6-2B021010E88A} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2013-10-07] (ASUS)
Task: {904542C6-9AC9-4970-AC46-E34642CB9C0C} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86) [2015-05-12] ()
Task: {931CC4AE-992B-4C21-BFE8-F8EC9CE4ECBA} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2014-03-11] ()
Task: {9F0D9D77-696D-4C1A-8F13-CDF45D911974} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2014-03-31] (AsusTek)
Task: {AD892BC4-B6A0-4834-8E6D-C97BA9EB1BC8} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-04-10] (Realtek Semiconductor)
Task: {C76131AE-CF71-49A4-B547-09952D9C63DF} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-04-15] (Realtek Semiconductor)
Task: {CAE48F53-2B7E-43C8-A070-168062BB9AFF} - System32\Tasks\ASUS Splendid ColorU => C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe [2013-10-07] (ASUSTeK Computer Inc.)
Task: {E2ABE2D4-938C-454F-8F7C-AFDF23AA1BA3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-17] (Google Inc.)
Task: {E2CD979B-D7EA-4B86-B5A0-D6BD0844A6A2} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2014-01-03] (ASUS)
Task: {E7076D0F-3865-457A-A022-31150384CB36} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-04] (Adobe Systems Incorporated)
Task: {E9C2FF41-C9EB-4F5F-8E30-B831989BF001} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86) [2015-05-12] ()
Task: {F9B10110-07F1-465E-BF63-3F65E9819998} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2014-03-27] (ASUSTek Computer Inc.)
Task: C:\Windows\Tasks\Uninstaller_SkipUac_Tony1604.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
 
==================== Loaded Modules (whitelisted) ==============
 
2015-05-10 21:56 - 2015-04-08 23:30 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-01-03 17:26 - 2014-01-03 17:26 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2014-01-03 17:26 - 2014-01-03 17:26 - 00028672 _____ () C:\Program Files\ASUS\P4G\plctrl.dll
2012-10-01 20:36 - 2012-10-01 20:36 - 06522480 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2014-02-25 22:14 - 2014-02-25 22:14 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2014-02-25 22:11 - 2014-02-25 22:11 - 00086016 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll
2014-10-25 19:52 - 2013-06-01 09:04 - 00495616 _____ () C:\Program Files (x86)\AULA\G2 Mouse\G2Monitor.exe
2014-02-25 22:17 - 2014-02-25 22:17 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
2013-09-09 18:23 - 2013-09-09 18:23 - 00162816 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2013-10-08 20:41 - 2013-10-08 20:41 - 00037968 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2015-05-11 01:16 - 2015-05-01 18:52 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2014-10-25 19:52 - 2012-06-09 07:38 - 00057344 _____ () C:\Program Files (x86)\AULA\G2 Mouse\lan.dll
2014-10-25 19:52 - 2013-02-20 14:17 - 00061440 _____ () C:\Program Files (x86)\AULA\G2 Mouse\hiddriver.dll
2015-05-05 12:16 - 2015-04-28 04:07 - 01252680 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\libglesv2.dll
2015-05-05 12:16 - 2015-04-28 04:07 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\libegl.dll
2015-05-05 12:16 - 2015-04-28 04:07 - 14980424 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\PepperFlash\pepflashplayer.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
AlternateDataStreams: C:\Users\Tony1604\OneDrive:ms-properties
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== EXE Association (whitelisted) ===============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, the associated entry will be removed from the registry.)
 
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\100sexlinks.com -> 100sexlinks.com
 
There are 4788 more restricted sites.
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Tony1604\Pictures\Asus\Asus.jpg
DNS Servers: 192.168.1.1
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: DptfPolicyLpmService => 2
MSCONFIG\Services: EvoSvc => 3
MSCONFIG\Services: gupdate => 3
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: LiveUpdateSvc => 2
MSCONFIG\Services: SkypeUpdate => 3
MSCONFIG\Services: Sony PC Companion => 3
MSCONFIG\Services: SwitchBoard => 3
MSCONFIG\Services: TunMirror => 2
MSCONFIG\startupreg: uTorrent => 
HKLM\...\StartupApproved\Run: => "XMouseButtonControl"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "VirtualCloneDrive"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKLM\...\StartupApproved\Run32: => "AVG_UI"
HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\StartupApproved\StartupFolder: => "Microsoft Toolkit activator for all windows and office.lnk"
HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\StartupApproved\Run: => "Advanced SystemCare 7"
HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\StartupApproved\Run: => "BugCD Pretrazivac"
 
==================== FirewallRules (whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
FirewallRules: [TCP Query User{EFBDA559-5F01-41D2-90E1-66CB94ECE889}C:\users\tony1604\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\tony1604\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{28D0801D-B62A-4976-914D-F2F4B46681D8}C:\users\tony1604\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\tony1604\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{9882CD90-9862-468E-BE7F-04F82AFFAF92}] => (Allow) C:\Games\Steam\Steam.exe
FirewallRules: [{027063E4-8FA3-494E-A4DC-983F6F9EDBA0}] => (Allow) C:\Games\Steam\Steam.exe
FirewallRules: [{13132ABE-2FEE-457A-9AA5-128869936A18}] => (Allow) C:\Games\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{9F298BCB-30A3-47B3-A24B-AF8E3FA08A9E}] => (Allow) C:\Games\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{759E48B1-4AE4-423B-8D77-9BA6B978954B}] => (Allow) C:\Games\Steam\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [{375B4CBD-98CF-44D3-A76E-B2CCF55BF0F6}] => (Allow) C:\Games\Steam\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [TCP Query User{4A53F76A-6FE4-4187-8549-6537815892E1}C:\games\warcraft iii frozen throne esk\war3.exe] => (Allow) C:\games\warcraft iii frozen throne esk\war3.exe
FirewallRules: [UDP Query User{D83711C2-3B77-42B2-BB7B-213E5506E22F}C:\games\warcraft iii frozen throne esk\war3.exe] => (Allow) C:\games\warcraft iii frozen throne esk\war3.exe
FirewallRules: [{64DC3204-AB82-4D01-B21F-C41F4ED5CA64}] => (Allow) LPort=1689
FirewallRules: [TCP Query User{3029AC85-6D48-4729-847B-7178817BB1ED}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{99D78BD5-9A0F-40E4-8C04-D2AD73C39392}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{A417F531-12F8-4B3C-8815-80DC62064320}C:\games\electronic arts\dead space\dead space.exe] => (Allow) C:\games\electronic arts\dead space\dead space.exe
FirewallRules: [UDP Query User{D4960254-D55F-40A7-A034-279B01B769E0}C:\games\electronic arts\dead space\dead space.exe] => (Allow) C:\games\electronic arts\dead space\dead space.exe
FirewallRules: [{22318933-5604-4224-949B-8B140A6C6A93}] => (Allow) C:\Games\Steam\bin\steamwebhelper.exe
FirewallRules: [{E3552054-0212-4857-8295-AD5A4115D3AD}] => (Allow) C:\Games\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{14C7F009-3709-4078-A558-3C75A8DFBABF}C:\games\activision\call of duty - black ops\blackops.exe] => (Allow) C:\games\activision\call of duty - black ops\blackops.exe
FirewallRules: [UDP Query User{3F1EBE76-CA90-4E12-A1A0-6475FEA31DEF}C:\games\activision\call of duty - black ops\blackops.exe] => (Allow) C:\games\activision\call of duty - black ops\blackops.exe
FirewallRules: [TCP Query User{5B70100C-0513-4AB2-AA5B-ED1856DA2C2E}C:\games\activision\call of duty - black ops\blackopsmp.exe] => (Block) C:\games\activision\call of duty - black ops\blackopsmp.exe
FirewallRules: [UDP Query User{E7C283DC-1336-4677-90D8-D05A3A28F622}C:\games\activision\call of duty - black ops\blackopsmp.exe] => (Block) C:\games\activision\call of duty - black ops\blackopsmp.exe
FirewallRules: [{5AECAA4A-A9E2-49C2-A1E2-B79D9EBB9D2F}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{77ED13ED-7543-468D-BB4E-C67D7337A7ED}] => (Allow) LPort=1688
FirewallRules: [{CB845972-3A93-4152-8D7C-0BBD68E7F4A2}] => (Allow) LPort=1689
FirewallRules: [{3C814925-B3A9-4253-AEB7-136E6249EA11}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{FC077D64-284B-4625-B4C6-114620C232F2}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{4E19D72F-3AA2-4E36-9A4B-3BF32ED31829}] => (Block) %SystemDrive%\Games\Anno 2070 Complete Edition\anno5.exe
FirewallRules: [{156BADFE-F9BE-4428-8026-2596965EEE8F}] => (Allow) C:\Program Files\Echobit\Evolve\EvoSvc.exe
FirewallRules: [{8762C84A-9008-4163-9B2E-DA470349380F}] => (Allow) C:\Program Files\Echobit\Evolve\EvolveClient.exe
FirewallRules: [{5A3D3472-3B06-475A-ACB2-71585B5A24C9}] => (Allow) C:\Games\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{BE638223-749F-4CF3-B5F2-AEA7AF65A2AB}] => (Allow) C:\Games\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{897E11B5-8B95-4EE0-8E1A-3E894AAEA349}] => (Allow) LPort=1688
FirewallRules: [{88257795-E970-4E85-9EC2-652E8F1B51A1}] => (Allow) LPort=1688
FirewallRules: [{A004CE90-028E-486F-B88F-8C6E5EE86DD4}] => (Allow) C:\Users\Tony1604\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{418800DD-1D42-4C79-B210-7211E20F3E87}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{9D420315-5C31-406D-AF7A-7AF28B89BB78}] => (Allow) LPort=2869
FirewallRules: [{E6C1179D-2A7A-425F-94FA-6B954749B44D}] => (Allow) LPort=1900
FirewallRules: [{AF75F87E-36BC-4D2B-B0F7-0BE2A0AEAD0D}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{0BB6E2DE-AE05-430B-803D-CB6463AD338F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{22277286-F3AE-4EB9-A822-68D05C74DA76}C:\program files (x86)\mirc\mirc.exe] => (Block) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [UDP Query User{109F927F-D084-49E0-8B81-3F3C7212E601}C:\program files (x86)\mirc\mirc.exe] => (Block) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [{8FC5D6EE-B411-4E81-99BF-D850BBA5DCF7}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{0367F41D-1A5B-4DE1-A19A-6AEAE0FC6053}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{1742DFE3-9BC4-4AEA-A125-9031621C5FE2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{B9C5FD66-8DCE-4A55-ABE1-C45D52098FBE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{E85987AA-EFB1-48C3-B33F-7ED093AF7FFD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{86BD9DF1-A896-4938-92EB-33595BDCF9FB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{790838AD-CBAF-47BF-955C-1CC5C587CCDC}C:\games\activision\call of duty - black ops\blackops.exe] => (Allow) C:\games\activision\call of duty - black ops\blackops.exe
FirewallRules: [UDP Query User{9FC7C5E3-6F31-402B-BF76-50313B4D5B13}C:\games\activision\call of duty - black ops\blackops.exe] => (Allow) C:\games\activision\call of duty - black ops\blackops.exe
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (05/13/2015 08:01:24 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TONYLAPTOP)
Description: Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (05/13/2015 08:01:24 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TONYLAPTOP)
Description: Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (05/12/2015 02:17:43 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: Unexpected or missing value (name: 'PackageCode', value: 'GUID') in key 'HKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219'
 
Error: (05/12/2015 02:17:33 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: Unexpected or missing value (name: 'PackageCode', value: 'GUID') in key 'HKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219'
 
Error: (05/12/2015 02:12:33 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program GTA5.exe version 1.0.335.2 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 17c8
 
Start Time: 01d08cacce119de2
 
Termination Time: 4294967295
 
Application Path: C:\Games\R.G. Mechanics\Grand Theft Auto V\GTA5.exe
 
Report Id: 2a7742d2-f8a0-11e4-82ba-54271e8346a2
 
Faulting package full name: 
 
Faulting package-relative application ID:
 
Error: (05/12/2015 02:08:21 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: Unexpected or missing value (name: 'PackageCode', value: 'GUID') in key 'HKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219'
 
Error: (05/12/2015 02:08:20 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: Unexpected or missing value (name: 'PackageCode', value: 'GUID') in key 'HKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219'
 
Error: (05/12/2015 01:59:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program vcredist_x64_2012.exe version 2.0.1.3 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 12c4
 
Start Time: 01d08cab13827003
 
Termination Time: 4294967295
 
Application Path: C:\Users\Tony1604\Downloads\GamesInstall\[R.G. Mechanics] Grand Theft Auto V\Redist\vcredist_x64_2012.exe
 
Report Id: 65822a9b-f89e-11e4-82ba-54271e8346a2
 
Faulting package full name: 
 
Faulting package-relative application ID:
 
Error: (05/12/2015 01:59:23 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: Unexpected or missing value (name: 'PackageCode', value: 'GUID') in key 'HKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219'
 
Error: (05/12/2015 01:59:21 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: Unexpected or missing value (name: 'PackageCode', value: 'GUID') in key 'HKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219'
 
 
System errors:
=============
Error: (05/13/2015 08:06:52 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The Network Location Awareness service terminated with the following service-specific error: 
%%3221226008
 
Error: (05/13/2015 08:06:52 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: 1068netprofmUnavailable{A47979D2-C419-11D9-A5B4-001185AD2B89}
 
Error: (05/13/2015 08:06:52 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: 
%%1062
 
Error: (05/13/2015 08:06:52 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: 1068netprofmUnavailable{A47979D2-C419-11D9-A5B4-001185AD2B89}
 
Error: (05/13/2015 08:06:52 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: 
%%1062
 
Error: (05/13/2015 08:06:52 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: 1068netprofmUnavailable{A47979D2-C419-11D9-A5B4-001185AD2B89}
 
Error: (05/13/2015 08:06:52 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: 
%%1062
 
Error: (05/13/2015 08:06:52 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: 1068netprofmUnavailable{A47979D2-C419-11D9-A5B4-001185AD2B89}
 
Error: (05/13/2015 08:06:52 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: 
%%1062
 
Error: (05/13/2015 08:06:52 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: 1068netprofmUnavailable{A47979D2-C419-11D9-A5B4-001185AD2B89}
 
 
Microsoft Office Sessions:
=========================
Error: (05/13/2015 08:01:24 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TONYLAPTOP)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2144927141
 
Error: (05/13/2015 08:01:24 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TONYLAPTOP)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2144927141
 
Error: (05/12/2015 02:17:43 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: PackageCodeGUIDHKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219(NULL)(NULL)(NULL)
 
Error: (05/12/2015 02:17:33 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: PackageCodeGUIDHKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219(NULL)(NULL)(NULL)
 
Error: (05/12/2015 02:12:33 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: GTA5.exe1.0.335.217c801d08cacce119de24294967295C:\Games\R.G. Mechanics\Grand Theft Auto V\GTA5.exe2a7742d2-f8a0-11e4-82ba-54271e8346a2
 
Error: (05/12/2015 02:08:21 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: PackageCodeGUIDHKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219(NULL)(NULL)(NULL)
 
Error: (05/12/2015 02:08:20 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: PackageCodeGUIDHKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219(NULL)(NULL)(NULL)
 
Error: (05/12/2015 01:59:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: vcredist_x64_2012.exe2.0.1.312c401d08cab138270034294967295C:\Users\Tony1604\Downloads\GamesInstall\[R.G. Mechanics] Grand Theft Auto V\Redist\vcredist_x64_2012.exe65822a9b-f89e-11e4-82ba-54271e8346a2
 
Error: (05/12/2015 01:59:23 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: PackageCodeGUIDHKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219(NULL)(NULL)(NULL)
 
Error: (05/12/2015 01:59:21 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: PackageCodeGUIDHKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219(NULL)(NULL)(NULL)
 
 
CodeIntegrity Errors:
===================================
  Date: 2015-05-13 02:57:07.231
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-13 02:57:07.043
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-12 04:30:31.117
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-12 04:30:30.929
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-11 14:04:31.495
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-11 14:04:31.276
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-08 06:30:25.973
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-08 06:30:25.614
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-06 05:45:04.160
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-06 05:45:04.020
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i5-4200U CPU @ 1.60GHz
Percentage of memory in use: 29%
Total physical RAM: 6027.43 MB
Available physical RAM: 4262.15 MB
Total Pagefile: 12171.43 MB
Available Pagefile: 10211.99 MB
Total Virtual: 131072 MB
Available Virtual: 131071.84 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:698.29 GB) (Free:361.69 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 2BFB4DC8)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=698.3 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================
 
 
So the first log is "FRST", second log is "Main" and third log is "Additional" 

  • 0

#4
Tony1604

Tony1604

    Member

  • Topic Starter
  • Member
  • PipPip
  • 11 posts

I used Malwarebytes Anti-Malware,ADWCleaner and HitmanPro and removed all the maleware and pubs on my machine and i seems to work great, except crypthographic service still uses 25-30 percent of cpu at all times, and windows update doesn't work, and i re-enabled crypthographic service and re did the scan and also ran the Fix with FRST. Here are the resoults, thank you btw :D 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13-05-2015
Ran by Tony1604 (administrator) on TONYLAPTOP on 13-05-2015 20:05:47
Running from C:\Users\Tony1604\Desktop
Loaded Profiles: Tony1604 (Available profiles: Tony1604 & Ruža)
Platform: Windows 8.1 Pro (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Windows ® Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyConfigTDPService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\livecomm.exe
(NVIDIA Corporation) C:\Users\Tony1604\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\AULA\G2 Mouse\G2Monitor.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2685072 2015-05-01] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [G2 mouse] => C:\Program Files (x86)\AULA\G2 Mouse\G2Monitor.exe [495616 2013-06-01] ()
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle Corporation)
HKLM-x32\...\Run: [AVG_UI] => "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [134784 2014-02-25] (Qualcomm®Atheros®)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2CF47E20-9948-43A2-A4E5-2899AA418659}: [NameServer] 192.255.160.0,192.255.168.0
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
 
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-04] ()
FF Plugin: @java.com/DTPlugin,version=10.75.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2015-03-08] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.75.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2015-03-08] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\Microsoft Office\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-04] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-30] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-30] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\Microsoft Office\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin HKU\S-1-5-21-1128951351-2712326424-2671060717-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Tony1604\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-03-24] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation)
 
Chrome: 
=======
CHR HomePage: Default -> https://www.google.hr/
CHR StartupUrls: Default -> "https://www.google.hr/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Angry Birds) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2015-04-16]
CHR Extension: (Facebook) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm [2014-12-08]
CHR Extension: (AdBlock) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-05-06]
CHR Extension: (Bookmark Manager) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-16]
CHR Extension: (Little Alchemy) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd [2015-04-16]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-11]
CHR Extension: (Google Wallet) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-17]
StartMenuInternet: Google Chrome - Chrome.exe
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S4 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [267440 2015-02-04] (Adobe Systems Incorporated) [File not signed]
S3 AeLookupSvc; C:\Windows\System32\aelupsvc.dll [208896 2014-03-18] (Microsoft Corporation) [File not signed]
S3 ALG; C:\Windows\System32\alg.exe [92672 2013-08-22] (Microsoft Corporation) [File not signed]
S3 AppIDSvc; C:\Windows\System32\appidsvc.dll [37888 2013-08-22] (Microsoft Corporation) [File not signed]
R3 Appinfo; C:\Windows\System32\appinfo.dll [109568 2014-03-18] (Microsoft Corporation) [File not signed]
S3 AppMgmt; C:\Windows\System32\appmgmts.dll [183296 2014-03-18] (Microsoft Corporation) [File not signed]
S3 AppMgmt; C:\Windows\SysWOW64\appmgmts.dll [151040 2014-03-18] (Microsoft Corporation) [File not signed]
S3 AppReadiness; C:\Windows\system32\AppReadiness.dll [530944 2014-03-18] (Microsoft Corporation) [File not signed]
S3 AppXSvc; C:\Windows\system32\appxdeploymentserver.dll [1306624 2014-03-08] (Microsoft Corporation) [File not signed]
R2 ASLDRService; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe [115512 2014-02-18] (ASUSTek Computer Inc.) [File not signed]
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [319104 2014-02-25] (Windows ® Win 7 DDK provider) [File not signed]
R2 ATKGFNEXSrv; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896 2011-11-21] (ASUS) [File not signed]
R2 AudioEndpointBuilder; C:\Windows\System32\AudioEndpointBuilder.dll [201216 2014-04-06] (Microsoft Corporation) [File not signed]
R2 Audiosrv; C:\Windows\System32\Audiosrv.dll [834048 2014-04-06] (Microsoft Corporation) [File not signed]
S3 AxInstSV; C:\Windows\System32\AxInstSV.dll [109568 2014-03-18] (Microsoft Corporation) [File not signed]
S3 BDESVC; C:\Windows\System32\bdesvc.dll [339456 2014-04-26] (Microsoft Corporation) [File not signed]
R2 BFE; C:\Windows\System32\bfe.dll [827392 2014-04-30] (Microsoft Corporation) [File not signed]
S2 BITS; C:\Windows\System32\qmgr.dll [1017856 2013-08-22] (Microsoft Corporation) [File not signed]
R2 BrokerInfrastructure; C:\Windows\System32\bisrv.dll [269824 2014-03-18] (Microsoft Corporation) [File not signed]
S3 Browser; C:\Windows\System32\browser.dll [134144 2013-08-22] (Microsoft Corporation) [File not signed]
R3 bthserv; C:\Windows\system32\bthserv.dll [92160 2013-08-22] (Microsoft Corporation) [File not signed]
S4 CertPropSvc; C:\Windows\System32\certprop.dll [155136 2013-08-22] (Microsoft Corporation) [File not signed]
S3 cphs; C:\Windows\SysWow64\IntelCpHeciSvc.exe [279000 2014-03-18] (Intel Corporation) [File not signed]
R2 CryptSvc; C:\Windows\system32\cryptsvc.dll [129536 2013-08-22] (Microsoft Corporation) [File not signed]
S4 CscService; C:\Windows\System32\cscsvc.dll [778240 2014-03-18] (Microsoft Corporation) [File not signed]
R2 DcomLaunch; C:\Windows\system32\rpcss.dll [753664 2014-03-18] (Microsoft Corporation) [File not signed]
S3 defragsvc; C:\Windows\System32\defragsvc.dll [449536 2014-04-11] (Microsoft Corporation) [File not signed]
R2 DeviceAssociationService; C:\Windows\system32\das.dll [399872 2014-03-18] (Microsoft Corporation) [File not signed]
S3 DeviceInstall; C:\Windows\system32\umpnpmgr.dll [115200 2014-03-06] (Microsoft Corporation) [File not signed]
R2 Dhcp; C:\Windows\system32\dhcpcore.dll [353280 2014-04-30] (Microsoft Corporation) [File not signed]
R2 Dhcp; C:\Windows\SysWOW64\dhcpcore.dll [285696 2014-04-30] (Microsoft Corporation) [File not signed]
R2 Dnscache; C:\Windows\System32\dnsrslvr.dll [254464 2014-03-04] (Microsoft Corporation) [File not signed]
S3 dot3svc; C:\Windows\System32\dot3svc.dll [258560 2013-08-22] (Microsoft Corporation) [File not signed]
R2 DPS; C:\Windows\system32\dps.dll [170496 2013-08-22] (Microsoft Corporation) [File not signed]
R2 DptfParticipantProcessorService; C:\Windows\system32\DptfParticipantProcessorService.exe [117704 2013-10-18] (Intel Corporation) [File not signed]
R2 DptfPolicyConfigTDPService; C:\Windows\system32\DptfPolicyConfigTDPService.exe [116680 2013-10-18] (Intel Corporation) [File not signed]
R2 DptfPolicyCriticalService; C:\Windows\system32\DptfPolicyCriticalService.exe [148160 2013-10-18] (Intel Corporation) [File not signed]
R2 DptfPolicyLpmService; C:\Windows\system32\DptfPolicyLpmService.exe [126952 2013-10-18] (Intel Corporation) [File not signed]
R3 DsmSvc; C:\Windows\System32\DeviceSetupManager.dll [201728 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Eaphost; C:\Windows\System32\eapsvc.dll [107008 2013-08-22] (Microsoft Corporation) [File not signed]
R2 EFS; C:\Windows\system32\efssvc.dll [40448 2013-08-22] (Microsoft Corporation) [File not signed]
R2 EventLog; C:\Windows\System32\wevtsvc.dll [1669632 2013-08-22] (Microsoft Corporation) [File not signed]
R2 EventSystem; C:\Windows\system32\es.dll [468992 2013-08-22] (Microsoft Corporation) [File not signed]
R2 EventSystem; C:\Windows\SysWOW64\es.dll [329728 2013-08-22] (Microsoft Corporation) [File not signed]
S4 EvoSvc; C:\Program Files\Echobit\Evolve\EvoSvc.exe [1583488 2015-04-22] (Echobit LLC) [File not signed]
S3 Fax; C:\Windows\system32\fxssvc.exe [655360 2013-08-22] (Microsoft Corporation) [File not signed]
S3 fdPHost; C:\Windows\system32\fdPHost.dll [21504 2013-08-22] (Microsoft Corporation) [File not signed]
S3 FDResPub; C:\Windows\system32\fdrespub.dll [33280 2013-08-22] (Microsoft Corporation) [File not signed]
S3 fhsvc; C:\Windows\system32\fhsvc.dll [118272 2013-08-22] (Microsoft Corporation) [File not signed]
R3 FontCache; C:\Windows\system32\FntCache.dll [1345536 2014-04-30] (Microsoft Corporation) [File not signed]
R3 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [43696 2013-08-03] (Microsoft Corporation) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-01] (NVIDIA Corporation) [File not signed]
R2 gpsvc; C:\Windows\System32\gpsvc.dll [1308160 2014-03-31] (Microsoft Corporation) [File not signed]
S4 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648 2014-07-17] (Google Inc.) [File not signed]
S4 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648 2014-07-17] (Google Inc.) [File not signed]
R3 hidserv; C:\Windows\system32\hidserv.dll [32256 2013-08-22] (Microsoft Corporation) [File not signed]
R3 hidserv; C:\Windows\SysWOW64\hidserv.dll [29696 2013-08-22] (Microsoft Corporation) [File not signed]
S3 hkmsvc; C:\Windows\system32\kmsvc.dll [97792 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HomeGroupListener; C:\Windows\system32\ListSvc.dll [261632 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HomeGroupProvider; C:\Windows\system32\provsvc.dll [405504 2014-03-18] (Microsoft Corporation) [File not signed]
S3 HomeGroupProvider; C:\Windows\SysWOW64\provsvc.dll [321536 2014-03-18] (Microsoft Corporation) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [111616 2014-02-06] (Microsoft Corporation) [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282072 2014-03-18] (Intel Corporation) [File not signed]
R2 IKEEXT; C:\Windows\System32\ikeext.dll [1063424 2014-04-30] (Microsoft Corporation) [File not signed]
S4 iphlpsvc; C:\Windows\System32\iphlpsvc.dll [903168 2014-03-18] (Microsoft Corporation) [File not signed]
S3 KeyIso; C:\Windows\system32\keyiso.dll [59392 2013-08-22] (Microsoft Corporation) [File not signed]
S3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [44032 2013-08-22] (Microsoft Corporation) [File not signed]
S3 KtmRm; C:\Windows\system32\msdtckrm.dll [357888 2013-08-22] (Microsoft Corporation) [File not signed]
R2 LanmanServer; C:\Windows\system32\srvsvc.dll [323072 2014-03-27] (Microsoft Corporation) [File not signed]
R2 LanmanWorkstation; C:\Windows\System32\wkssvc.dll [284160 2013-08-22] (Microsoft Corporation) [File not signed]
S3 lfsvc; C:\Windows\System32\GeofenceMonitorService.dll [491520 2014-03-14] (Microsoft Corporation) [File not signed]
S3 lfsvc; C:\Windows\SysWOW64\GeofenceMonitorService.dll [357376 2014-03-14] (Microsoft Corporation) [File not signed]
S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2585376 2015-04-26] (IObit) [File not signed]
S3 lltdsvc; C:\Windows\System32\lltdsvc.dll [269824 2013-08-22] (Microsoft Corporation) [File not signed]
R2 lmhosts; C:\Windows\System32\lmhsvc.dll [24576 2013-08-22] (Microsoft Corporation) [File not signed]
R2 LSM; C:\Windows\System32\lsm.dll [710656 2014-03-18] (Microsoft Corporation) [File not signed]
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation) [File not signed]
R2 MMCSS; C:\Windows\system32\mmcss.dll [70656 2013-08-22] (Microsoft Corporation) [File not signed]
R2 MpsSvc; C:\Windows\system32\mpssvc.dll [878080 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSDTC; C:\Windows\System32\msdtc.exe [142848 2013-08-22] (Microsoft Corporation) [File not signed]
S4 MSiSCSI; C:\Windows\system32\iscsiexe.dll [150528 2013-08-22] (Microsoft Corporation) [File not signed]
S3 msiserver; C:\Windows\System32\msiexec.exe [62464 2013-08-22] (Microsoft Corporation) [File not signed]
S3 msiserver; C:\Windows\SysWOW64\msiexec.exe [55808 2013-08-22] (Microsoft Corporation) [File not signed]
S4 MsKeyboardFilter; C:\Windows\System32\KeyboardFilterSvc.dll [90464 2014-03-18] (Microsoft Corporation) [File not signed]
S4 napagent; C:\Windows\system32\qagentRT.dll [435200 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NcaSvc; C:\Windows\System32\ncasvc.dll [164352 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NcbService; C:\Windows\System32\ncbservice.dll [151040 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NcdAutoSetup; C:\Windows\System32\NcdAutoSetup.dll [73728 2013-08-22] (Microsoft Corporation) [File not signed]
S4 Netlogon; C:\Windows\system32\netlogon.dll [834560 2014-03-06] (Microsoft Corporation) [File not signed]
S4 Netlogon; C:\Windows\SysWOW64\netlogon.dll [688640 2014-03-06] (Microsoft Corporation) [File not signed]
S3 Netman; C:\Windows\System32\netman.dll [254976 2013-08-22] (Microsoft Corporation) [File not signed]
S3 netprofm; C:\Windows\System32\netprofmsvc.dll [525312 2013-08-22] (Microsoft Corporation) [File not signed]
S4 NetTcpPortSharing; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139856 2013-08-10] (Microsoft Corporation) [File not signed]
S2 NlaSvc; C:\Windows\System32\nlasvc.dll [387584 2013-08-22] (Microsoft Corporation) [File not signed]
R2 nsi; C:\Windows\system32\nsisvc.dll [29184 2013-08-22] (Microsoft Corporation) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304 2015-05-01] (NVIDIA Corporation) [File not signed]
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22997648 2015-05-01] (NVIDIA Corporation) [File not signed]
R2 nvsvc; C:\Windows\system32\nvvsvc.exe [936264 2015-04-08] (NVIDIA Corporation) [File not signed]
S3 ose64; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [178824 2012-10-01] (Microsoft Corporation) [File not signed]
S3 p2pimsvc; C:\Windows\system32\pnrpsvc.dll [376320 2014-03-18] (Microsoft Corporation) [File not signed]
S3 p2psvc; C:\Windows\system32\p2psvc.dll [433664 2013-08-22] (Microsoft Corporation) [File not signed]
R2 PcaSvc; C:\Windows\System32\pcasvc.dll [471552 2014-03-18] (Microsoft Corporation) [File not signed]
S4 PeerDistSvc; C:\Windows\system32\peerdistsvc.dll [2176000 2014-03-18] (Microsoft Corporation) [File not signed]
S3 PerfHost; C:\Windows\SysWow64\perfhost.exe [21504 2013-08-22] (Microsoft Corporation) [File not signed]
S3 pla; C:\Windows\system32\pla.dll [1443840 2013-08-22] (Microsoft Corporation) [File not signed]
S3 pla; C:\Windows\SysWOW64\pla.dll [1477120 2013-08-22] (Microsoft Corporation) [File not signed]
R3 PlugPlay; C:\Windows\system32\umpnpmgr.dll [115200 2014-03-06] (Microsoft Corporation) [File not signed]
S3 PNRPAutoReg; C:\Windows\system32\pnrpauto.dll [25600 2013-08-22] (Microsoft Corporation) [File not signed]
S3 PNRPsvc; C:\Windows\system32\pnrpsvc.dll [376320 2014-03-18] (Microsoft Corporation) [File not signed]
R3 PolicyAgent; C:\Windows\System32\ipsecsvc.dll [403456 2013-08-22] (Microsoft Corporation) [File not signed]
R2 Power; C:\Windows\system32\umpo.dll [79360 2013-08-22] (Microsoft Corporation) [File not signed]
S3 PrintNotify; C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll [2899968 2013-08-22] (Microsoft Corporation) [File not signed]
R2 ProfSvc; C:\Windows\system32\profsvc.dll [220160 2014-03-04] (Microsoft Corporation) [File not signed]
S3 QWAVE; C:\Windows\system32\qwave.dll [297472 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasAuto; C:\Windows\System32\rasauto.dll [101376 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasMan; C:\Windows\System32\rasmans.dll [534528 2014-03-18] (Microsoft Corporation) [File not signed]
S4 RemoteAccess; C:\Windows\System32\mprdim.dll [223744 2013-08-22] (Microsoft Corporation) [File not signed]
S4 RemoteAccess; C:\Windows\SysWOW64\mprdim.dll [177664 2013-08-22] (Microsoft Corporation) [File not signed]
S4 RemoteRegistry; C:\Windows\system32\regsvc.dll [164864 2013-08-22] (Microsoft Corporation) [File not signed]
R2 RpcEptMapper; C:\Windows\System32\RpcEpMap.dll [79872 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RpcLocator; C:\Windows\system32\locator.exe [10240 2013-08-22] (Microsoft Corporation) [File not signed]
R2 RpcSs; C:\Windows\system32\rpcss.dll [753664 2014-03-18] (Microsoft Corporation) [File not signed]
R2 SamSs; C:\Windows\system32\lsass.exe [45008 2013-08-22] (Microsoft Corporation) [File not signed]
S2 SCardSvr; C:\Windows\System32\SCardSvr.dll [188416 2013-08-22] (Microsoft Corporation) [File not signed]
S3 ScDeviceEnum; C:\Windows\System32\ScDeviceEnum.dll [130560 2013-08-22] (Microsoft Corporation) [File not signed]
R2 Schedule; C:\Windows\system32\schedsvc.dll [1214976 2014-03-18] (Microsoft Corporation) [File not signed]
S3 SCPolicySvc; C:\Windows\System32\certprop.dll [155136 2013-08-22] (Microsoft Corporation) [File not signed]
S3 seclogon; C:\Windows\system32\seclogon.dll [30720 2013-08-22] (Microsoft Corporation) [File not signed]
R2 SENS; C:\Windows\System32\sens.dll [71680 2013-08-22] (Microsoft Corporation) [File not signed]
S3 SensrSvc; C:\Windows\system32\sensrsvc.dll [220672 2014-03-18] (Microsoft Corporation) [File not signed]
S3 SessionEnv; C:\Windows\system32\sessenv.dll [324096 2014-03-06] (Microsoft Corporation) [File not signed]
S3 SessionEnv; C:\Windows\SysWOW64\sessenv.dll [280576 2014-03-06] (Microsoft Corporation) [File not signed]
S3 SharedAccess; C:\Windows\System32\ipnathlp.dll [433664 2014-03-18] (Microsoft Corporation) [File not signed]
R2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [629760 2013-08-22] (Microsoft Corporation) [File not signed]
R2 ShellHWDetection; C:\Windows\SysWOW64\shsvcs.dll [564736 2013-08-22] (Microsoft Corporation) [File not signed]
S4 SkypeUpdate; C:\Program Files (x86)\Skype\Updater\Updater.exe [315008 2014-04-03] (Skype Technologies) [File not signed]
S3 smphost; C:\Windows\System32\smphost.dll [13312 2013-08-22] (Microsoft Corporation) [File not signed]
S3 smphost; C:\Windows\SysWOW64\smphost.dll [11776 2013-08-22] (Microsoft Corporation) [File not signed]
S4 SNMPTRAP; C:\Windows\System32\snmptrap.exe [14848 2013-08-22] (Microsoft Corporation) [File not signed]
S4 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software) [File not signed]
R2 Spooler; C:\Windows\System32\spoolsv.exe [798208 2013-08-22] (Microsoft Corporation) [File not signed]
S2 sppsvc; C:\Windows\system32\sppsvc.exe [6353960 2014-03-18] (Microsoft Corporation) [File not signed]
R3 SSDPSRV; C:\Windows\System32\ssdpsrv.dll [239616 2013-08-22] (Microsoft Corporation) [File not signed]
S3 SstpSvc; C:\Windows\system32\sstpsvc.dll [144384 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [836288 2015-04-14] (Valve Corporation) [File not signed]
R2 stisvc; C:\Windows\System32\wiaservc.dll [634368 2013-08-22] (Microsoft Corporation) [File not signed]
S3 StorSvc; C:\Windows\system32\storsvc.dll [19968 2013-08-22] (Microsoft Corporation) [File not signed]
S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18944 2013-08-22] (Microsoft Corporation) [File not signed]
S3 svsvc; C:\Windows\system32\svsvc.dll [13312 2013-08-22] (Microsoft Corporation) [File not signed]
S4 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 swprv; C:\Windows\System32\swprv.dll [718336 2014-03-27] (Microsoft Corporation) [File not signed]
R2 SysMain; C:\Windows\system32\sysmain.dll [1192448 2014-03-18] (Microsoft Corporation) [File not signed]
R2 SystemEventsBroker; C:\Windows\System32\SystemEventsBrokerServer.dll [282112 2014-03-18] (Microsoft Corporation) [File not signed]
S3 TabletInputService; C:\Windows\System32\TabSvc.dll [147456 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TapiSrv; C:\Windows\System32\tapisrv.dll [306688 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TapiSrv; C:\Windows\SysWOW64\tapisrv.dll [248320 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TermService; C:\Windows\System32\termsrv.dll [1018880 2014-04-14] (Microsoft Corporation) [File not signed]
R2 Themes; C:\Windows\system32\themeservice.dll [50688 2013-08-22] (Microsoft Corporation) [File not signed]
S3 THREADORDER; C:\Windows\system32\mmcss.dll [70656 2013-08-22] (Microsoft Corporation) [File not signed]
R3 TimeBroker; C:\Windows\System32\TimeBrokerServer.dll [245760 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TrkWks; C:\Windows\System32\trkwks.dll [122368 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TrustedInstaller; C:\Windows\servicing\TrustedInstaller.exe [99840 2014-03-18] (Microsoft Corporation) [File not signed]
S3 UI0Detect; C:\Windows\system32\UI0Detect.exe [40960 2013-08-22] (Microsoft Corporation) [File not signed]
S3 UmRdpService; C:\Windows\System32\umrdp.dll [289280 2014-03-18] (Microsoft Corporation) [File not signed]
S3 upnphost; C:\Windows\System32\upnphost.dll [436224 2013-08-22] (Microsoft Corporation) [File not signed]
S3 upnphost; C:\Windows\SysWOW64\upnphost.dll [307200 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VaultSvc; C:\Windows\System32\vaultsvc.dll [248832 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vds; C:\Windows\System32\vds.exe [1283584 2014-03-18] (Microsoft Corporation) [File not signed]
S3 vmicguestinterface; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmicheartbeat; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmickvpexchange; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmicrdv; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmicshutdown; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmictimesync; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmicvss; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VSS; C:\Windows\system32\vssvc.exe [1436160 2014-03-27] (Microsoft Corporation) [File not signed]
S3 W32Time; C:\Windows\system32\w32time.dll [404480 2013-08-22] (Microsoft Corporation) [File not signed]
S3 wbengine; C:\Windows\system32\wbengine.exe [1543680 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WbioSrvc; C:\Windows\System32\wbiosrvc.dll [453632 2014-03-18] (Microsoft Corporation) [File not signed]
R2 Wcmsvc; C:\Windows\System32\wcmsvc.dll [366080 2014-03-18] (Microsoft Corporation) [File not signed]
S3 wcncsvc; C:\Windows\System32\wcncsvc.dll [459776 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WcsPlugInService; C:\Windows\System32\WcsPlugInService.dll [41984 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WcsPlugInService; C:\Windows\SysWOW64\WcsPlugInService.dll [34304 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WdiServiceHost; C:\Windows\system32\wdi.dll [91136 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WdiServiceHost; C:\Windows\SysWOW64\wdi.dll [80896 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WdiSystemHost; C:\Windows\system32\wdi.dll [91136 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WdiSystemHost; C:\Windows\SysWOW64\wdi.dll [80896 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation) [File not signed]
S3 WebClient; C:\Windows\System32\webclnt.dll [226816 2014-04-09] (Microsoft Corporation) [File not signed]
S3 WebClient; C:\Windows\SysWOW64\webclnt.dll [198656 2014-04-09] (Microsoft Corporation) [File not signed]
S3 Wecsvc; C:\Windows\system32\wecsvc.dll [215040 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WEPHOSTSVC; C:\Windows\system32\wephostsvc.dll [24576 2013-08-22] (Microsoft Corporation) [File not signed]
S3 wercplsupport; C:\Windows\System32\wercplsupport.dll [81408 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WerSvc; C:\Windows\System32\WerSvc.dll [107008 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WiaRpc; C:\Windows\System32\wiarpc.dll [66048 2013-08-22] (Microsoft Corporation) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation) [File not signed]
R3 WinHttpAutoProxySvc; C:\Windows\system32\winhttp.dll [786432 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WinHttpAutoProxySvc; C:\Windows\SysWOW64\winhttp.dll [589312 2013-08-22] (Microsoft Corporation) [File not signed]
R2 Winmgmt; C:\Windows\system32\wbem\WMIsvc.dll [220672 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WinRM; C:\Windows\system32\WsmSvc.dll [2479616 2014-03-06] (Microsoft Corporation) [File not signed]
S3 WinRM; C:\Windows\SysWOW64\WsmSvc.dll [2030080 2014-03-06] (Microsoft Corporation) [File not signed]
R2 WlanSvc; C:\Windows\System32\wlansvc.dll [1527296 2014-03-19] (Microsoft Corporation) [File not signed]
S3 wlidsvc; C:\Windows\system32\wlidsvc.dll [1576960 2014-03-18] (Microsoft Corporation) [File not signed]
S3 wmiApSrv; C:\Windows\system32\wbem\WmiApSrv.exe [195072 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [1403392 2014-03-18] (Microsoft Corporation) [File not signed]
S3 workfolderssvc; C:\Windows\system32\workfolderssvc.dll [1584128 2014-04-03] (Microsoft Corporation) [File not signed]
S3 WPCSvc; C:\Windows\System32\wpcsvc.dll [12288 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WPCSvc; C:\Windows\SysWOW64\wpcsvc.dll [11264 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WPDBusEnum; C:\Windows\system32\wpdbusenum.dll [84480 2013-08-22] (Microsoft Corporation) [File not signed]
R2 wscsvc; C:\Windows\System32\wscsvc.dll [135168 2014-04-09] (Microsoft Corporation) [File not signed]
R2 WSearch; C:\Windows\system32\SearchIndexer.exe [845824 2014-03-18] (Microsoft Corporation) [File not signed]
R2 WSearch; C:\Windows\SysWOW64\SearchIndexer.exe [658432 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WSService; C:\Windows\System32\WSService.dll [3394384 2014-03-18] (Microsoft Corporation) [File not signed]
R2 wuauserv; C:\Windows\system32\wuaueng.dll [3463680 2014-07-24] (Microsoft Corporation) [File not signed]
R3 wudfsvc; C:\Windows\System32\WUDFSvc.dll [99840 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WwanSvc; C:\Windows\System32\wwansvc.dll [510464 2013-08-22] (Microsoft Corporation) [File not signed]
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-02-25] (Atheros) [File not signed]
S2 AVGIDSAgent; No ImagePath
S2 avgwd; No ImagePath
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 1394ohci; C:\Windows\System32\drivers\1394ohci.sys [231424 2013-08-22] (Microsoft Corporation) [File not signed]
S0 3ware; C:\Windows\System32\drivers\3ware.sys [108896 2013-08-22] (LSI) [File not signed]
R0 ACPI; C:\Windows\System32\drivers\ACPI.sys [539992 2014-03-18] (Microsoft Corporation) [File not signed]
R0 acpiex; C:\Windows\System32\Drivers\acpiex.sys [79712 2013-08-22] (Microsoft Corporation) [File not signed]
S3 acpipagr; C:\Windows\System32\drivers\acpipagr.sys [10240 2013-08-22] (Microsoft Corporation) [File not signed]
S3 AcpiPmi; C:\Windows\System32\drivers\acpipmi.sys [12288 2013-08-22] (Microsoft Corporation) [File not signed]
S3 acpitime; C:\Windows\System32\drivers\acpitime.sys [10752 2013-08-22] (Microsoft Corporation) [File not signed]
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra) [File not signed]
R1 AFD; C:\Windows\system32\drivers\afd.sys [563200 2014-05-30] (Microsoft Corporation) [File not signed]
S0 agp440; C:\Windows\System32\drivers\agp440.sys [62304 2013-08-22] (Microsoft Corporation) [File not signed]
R1 ahcache; C:\Windows\System32\DRIVERS\ahcache.sys [76800 2013-08-22] (Microsoft Corporation) [File not signed]
R3 AiCharger; C:\Windows\system32\DRIVERS\AiCharger.sys [17152 2014-03-27] (ASUSTek Computer Inc.) [File not signed]
S3 AmdK8; C:\Windows\System32\drivers\amdk8.sys [95744 2013-08-22] (Microsoft Corporation) [File not signed]
S3 AmdPPM; C:\Windows\System32\drivers\amdppm.sys [98816 2013-08-22] (Microsoft Corporation) [File not signed]
S0 amdsata; C:\Windows\System32\drivers\amdsata.sys [79200 2013-08-22] (Advanced Micro Devices) [File not signed]
S0 amdsbs; C:\Windows\System32\drivers\amdsbs.sys [259424 2013-08-22] (AMD Technologies Inc.) [File not signed]
S0 amdxata; C:\Windows\System32\drivers\amdxata.sys [25952 2013-08-22] (Advanced Micro Devices) [File not signed]
S3 AppID; C:\Windows\system32\drivers\appid.sys [83456 2014-03-18] (Microsoft Corporation) [File not signed]
S0 arcsas; C:\Windows\System32\drivers\arcsas.sys [114016 2013-08-22] (PMC-Sierra, Inc.) [File not signed]
R2 ASMMAP64; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [15416 2009-07-02] (ASUS) [File not signed]
S3 AsyncMac; C:\Windows\system32\DRIVERS\asyncmac.sys [26624 2013-08-22] (Microsoft Corporation) [File not signed]
S0 atapi; C:\Windows\System32\drivers\atapi.sys [26464 2013-08-22] (Microsoft Corporation) [File not signed]
R3 AthBTPort; C:\Windows\system32\DRIVERS\btath_flt.sys [89800 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3892224 2014-03-06] (Qualcomm Atheros Communications, Inc.) [File not signed]
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [19768 2013-07-02] (ASUSTek Computer Inc.) [File not signed]
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [69904 2014-03-31] (ASUS Corporation) [File not signed]
S3 avc3; C:\Windows\System32\DRIVERS\avc3.sys [727592 2015-01-06] (BitDefender) [File not signed]
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [261496 2015-01-06] (BitDefender) [File not signed]
S3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [601360 2015-01-06] (BitDefender) [File not signed]
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [21152 2015-03-27] (AVG Technologies CZ, s.r.o.) [File not signed]
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [162784 2015-03-11] (AVG Technologies CZ, s.r.o.) [File not signed]
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [284128 2015-04-09] (AVG Technologies CZ, s.r.o.) [File not signed]
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [213984 2015-03-11] (AVG Technologies CZ, s.r.o.) [File not signed]
S1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [256992 2015-04-15] (AVG Technologies CZ, s.r.o.) [File not signed]
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [344544 2015-03-11] (AVG Technologies CZ, s.r.o.) [File not signed]
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [137184 2015-04-03] (AVG Technologies CZ, s.r.o.) [File not signed]
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [40928 2015-03-20] (AVG Technologies CZ, s.r.o.) [File not signed]
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [293856 2015-04-07] (AVG Technologies CZ, s.r.o.) [File not signed]
S0 b06bdrv; C:\Windows\System32\drivers\bxvbda.sys [531296 2013-08-22] (Broadcom Corporation) [File not signed]
R1 BasicDisplay; C:\Windows\System32\drivers\BasicDisplay.sys [50688 2013-08-22] (Microsoft Corporation) [File not signed]
R1 BasicRender; C:\Windows\System32\drivers\BasicRender.sys [33280 2014-03-18] (Microsoft Corporation) [File not signed]
U5 BattC; C:\Windows\System32\Drivers\BattC.sys [35168 2013-08-22] (Microsoft Corporation) [File not signed]
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows ® Win 7 DDK provider) [File not signed]
R3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [102912 2013-08-22] (Microsoft Corporation) [File not signed]
R3 BTATH_A2DP; C:\Windows\system32\drivers\btath_a2dp.sys [355528 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 btath_avdt; C:\Windows\system32\drivers\btath_avdt.sys [118984 2014-02-25] (Qualcomm Atheros) [File not signed]
R0 BTATH_BUS; C:\Windows\System32\drivers\btath_bus.sys [35016 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 BTATH_HCRP; C:\Windows\System32\drivers\btath_hcrp.sys [179432 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 BTATH_RCP; C:\Windows\System32\drivers\btath_rcp.sys [137928 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [598216 2014-02-25] (Qualcomm Atheros) [File not signed]
S3 BthAvrcpTg; C:\Windows\System32\drivers\BthAvrcpTg.sys [36992 2013-08-22] (Microsoft Corporation) [File not signed]
R3 BthEnum; C:\Windows\System32\drivers\BthEnum.sys [53248 2013-08-22] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [57856 2013-08-22] (Microsoft Corporation) [File not signed]
S3 bthhfhid; C:\Windows\System32\drivers\BthHFHid.sys [30720 2013-08-22] (Microsoft Corporation) [File not signed]
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [64000 2014-03-18] (Microsoft Corporation) [File not signed]
R3 BthPan; C:\Windows\system32\DRIVERS\bthpan.sys [118272 2013-08-22] (Microsoft Corporation) [File not signed]
S3 BTHPORT; C:\Windows\System32\Drivers\BTHport.sys [1200128 2014-04-11] (Microsoft Corporation) [File not signed]
R3 BTHUSB; C:\Windows\System32\Drivers\BTHUSB.sys [81920 2014-03-18] (Microsoft Corporation) [File not signed]
S4 cdfs; C:\Windows\System32\DRIVERS\cdfs.sys [88576 2013-08-22] (Microsoft Corporation) [File not signed]
R1 cdrom; C:\Windows\System32\drivers\cdrom.sys [164352 2013-08-22] (Microsoft Corporation) [File not signed]
S3 circlass; C:\Windows\System32\drivers\circlass.sys [44032 2013-08-22] (Microsoft Corporation) [File not signed]
R0 CLFS; C:\Windows\System32\drivers\CLFS.sys [376152 2014-03-20] (Microsoft Corporation) [File not signed]
R3 CmBatt; C:\Windows\System32\drivers\CmBatt.sys [25472 2013-08-22] (Microsoft Corporation) [File not signed]
R0 CNG; C:\Windows\System32\Drivers\cng.sys [565576 2014-05-29] (Microsoft Corporation) [File not signed]
R3 CompositeBus; C:\Windows\System32\drivers\CompositeBus.sys [36352 2013-08-22] (Microsoft Corporation) [File not signed]
R3 condrv; C:\Windows\System32\drivers\condrv.sys [43008 2013-08-22] (Microsoft Corporation) [File not signed]
R1 CSC; C:\Windows\System32\drivers\csc.sys [559616 2014-03-18] (Microsoft Corporation) [File not signed]
S1 dam; C:\Windows\System32\drivers\dam.sys [57696 2013-08-22] (Microsoft Corporation) [File not signed]
R1 Dfsc; C:\Windows\System32\Drivers\dfsc.sys [134144 2014-03-06] (Microsoft Corporation) [File not signed]
R0 disk; C:\Windows\System32\drivers\disk.sys [100192 2013-08-22] (Microsoft Corporation) [File not signed]
S3 dmvsc; C:\Windows\System32\drivers\dmvsc.sys [29696 2013-08-22] (Microsoft Corporation) [File not signed]
R3 DptfDevDram; C:\Windows\system32\DRIVERS\DptfDevDram.sys [145640 2013-10-18] (Intel Corporation) [File not signed]
R3 DptfDevPch; C:\Windows\system32\DRIVERS\DptfDevPch.sys [116752 2013-10-18] (Intel Corporation) [File not signed]
R3 DptfDevProc; C:\Windows\system32\DRIVERS\DptfDevProc.sys [289744 2013-10-18] (Intel Corporation) [File not signed]
R3 DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [494296 2013-10-18] (Intel Corporation) [File not signed]
S3 drmkaud; C:\Windows\system32\drivers\drmkaud.sys [14560 2013-08-22] (Microsoft Corporation) [File not signed]
R3 DXGKrnl; C:\Windows\System32\drivers\dxgkrnl.sys [1557848 2014-03-06] (Microsoft Corporation) [File not signed]
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) [File not signed]
R0 EhStorClass; C:\Windows\System32\drivers\EhStorClass.sys [82784 2013-08-22] (Microsoft Corporation) [File not signed]
S0 EhStorTcgDrv; C:\Windows\System32\drivers\EhStorTcgDrv.sys [114016 2013-08-22] (Microsoft Corporation) [File not signed]
R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [40344 2013-03-04] (Elaborate Bytes AG) [File not signed]
S3 ErrDev; C:\Windows\System32\drivers\errdev.sys [10240 2013-08-22] (Microsoft Corporation) [File not signed]
S3 exfat; C:\Windows\System32\Drivers\exfat.sys [200704 2013-08-22] (Microsoft Corporation) [File not signed]
S3 fastfat; C:\Windows\System32\Drivers\fastfat.sys [217952 2013-08-22] (Microsoft Corporation) [File not signed]
S3 fdc; C:\Windows\System32\drivers\fdc.sys [30720 2013-08-22] (Microsoft Corporation) [File not signed]
R0 FileInfo; C:\Windows\System32\drivers\fileinfo.sys [79192 2014-03-18] (Microsoft Corporation) [File not signed]
S3 Filetrace; C:\Windows\System32\drivers\filetrace.sys [34816 2013-08-22] (Microsoft Corporation) [File not signed]
S3 flpydisk; C:\Windows\System32\drivers\flpydisk.sys [25088 2013-08-22] (Microsoft Corporation) [File not signed]
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [360792 2014-04-06] (Microsoft Corporation) [File not signed]
S3 FsDepends; C:\Windows\System32\drivers\FsDepends.sys [56672 2013-08-22] (Microsoft Corporation) [File not signed]
R0 fvevol; C:\Windows\System32\DRIVERS\fvevol.sys [589656 2014-04-08] (Microsoft Corporation) [File not signed]
S3 FxPPM; C:\Windows\System32\drivers\fxppm.sys [27136 2013-08-22] (Microsoft Corporation) [File not signed]
S0 gagp30kx; C:\Windows\System32\drivers\gagp30kx.sys [65888 2013-08-22] (Microsoft Corporation) [File not signed]
S3 gencounter; C:\Windows\System32\drivers\vmgencounter.sys [11264 2013-08-22] (Microsoft Corporation) [File not signed]
S3 ggflt; C:\Windows\System32\drivers\ggflt.sys [16088 2015-03-10] (Sony Mobile Communications) [File not signed]
S3 ggsomc; C:\Windows\System32\drivers\ggsomc.sys [30424 2015-03-10] (Sony Mobile Communications) [File not signed]
S3 GPIOClx0101; C:\Windows\System32\Drivers\msgpioclx.sys [146776 2014-03-18] (Microsoft Corporation) [File not signed]
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45112 2014-12-13] (LogMeIn Inc.) [File not signed]
S3 HdAudAddService; C:\Windows\system32\drivers\HdAudio.sys [395776 2013-08-22] (Microsoft Corporation) [File not signed]
R3 HDAudBus; C:\Windows\System32\drivers\HDAudBus.sys [77312 2014-03-18] (Microsoft Corporation) [File not signed]
S3 HidBatt; C:\Windows\System32\drivers\HidBatt.sys [26624 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HidBth; C:\Windows\System32\drivers\hidbth.sys [96768 2013-08-22] (Microsoft Corporation) [File not signed]
S3 hidi2c; C:\Windows\System32\drivers\hidi2c.sys [41472 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HidIr; C:\Windows\System32\drivers\hidir.sys [45568 2013-08-22] (Microsoft Corporation) [File not signed]
R3 HIDSwitch; C:\Windows\System32\drivers\AsHIDSwitch64.sys [20280 2013-11-04] (ASUS) [File not signed]
R3 HidUsb; C:\Windows\System32\drivers\hidusb.sys [33280 2014-03-06] (Microsoft Corporation) [File not signed]
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [43664 2015-05-11] () [File not signed]
S0 HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys [64352 2013-08-22] (Hewlett-Packard Company) [File not signed]
R3 HTTP; C:\Windows\System32\drivers\HTTP.sys [994136 2014-03-18] (Microsoft Corporation) [File not signed]
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-05-02] (REALiX™) [File not signed]
S0 hwpolicy; C:\Windows\System32\drivers\hwpolicy.sys [24416 2013-08-22] (Microsoft Corporation) [File not signed]
S3 hyperkbd; C:\Windows\System32\drivers\hyperkbd.sys [13824 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HyperVideo; C:\Windows\system32\DRIVERS\HyperVideo.sys [22016 2013-08-22] (Microsoft Corporation) [File not signed]
R3 i8042prt; C:\Windows\System32\drivers\i8042prt.sys [107520 2013-08-22] (Microsoft Corporation) [File not signed]
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation) [File not signed]
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation) [File not signed]
R0 iaStorA; C:\Windows\System32\drivers\iaStorA.sys [644968 2013-08-09] (Intel Corporation) [File not signed]
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation) [File not signed]
S0 iaStorV; C:\Windows\System32\drivers\iaStorV.sys [412000 2013-08-22] (Intel Corporation) [File not signed]
R3 igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [3729920 2014-03-18] (Intel Corporation) [File not signed]
S3 intaud_WaveExtensible; C:\Windows\system32\drivers\intelaud.sys [38296 2014-03-01] (Intel Corporation) [File not signed]
R3 IntcAzAudAddService; C:\Windows\system32\drivers\RTKVHD64.sys [3932120 2014-04-15] (Realtek Semiconductor Corp.) [File not signed]
S3 IntcDAud; C:\Windows\system32\DRIVERS\IntcDAud.sys [450520 2014-03-17] (Intel® Corporation) [File not signed]
S0 intelide; C:\Windows\System32\drivers\intelide.sys [18272 2013-08-22] (Microsoft Corporation) [File not signed]
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-03-18] (Microsoft Corporation) [File not signed]
R3 intelppm; C:\Windows\System32\drivers\intelppm.sys [98816 2013-08-22] (Microsoft Corporation) [File not signed]
S3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [84992 2013-08-22] (Microsoft Corporation) [File not signed]
S3 IPMIDRV; C:\Windows\System32\drivers\IPMIDrv.sys [79360 2014-03-06] (Microsoft Corporation) [File not signed]
S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [142848 2014-03-18] (Microsoft Corporation) [File not signed]
S3 IRENUM; C:\Windows\System32\drivers\irenum.sys [17920 2013-08-22] (Microsoft Corporation) [File not signed]
S0 isapnp; C:\Windows\System32\drivers\isapnp.sys [21856 2013-08-22] (Microsoft Corporation) [File not signed]
S3 iScsiPrt; C:\Windows\System32\drivers\msiscsi.sys [275800 2014-04-06] (Microsoft Corporation) [File not signed]
R3 iwdbus; C:\Windows\System32\drivers\iwdbus.sys [27032 2014-03-01] (Intel Corporation) [File not signed]
R3 kbdclass; C:\Windows\System32\drivers\kbdclass.sys [58208 2013-08-22] (Microsoft Corporation) [File not signed]
R3 kbdhid; C:\Windows\System32\drivers\kbdhid.sys [32256 2013-08-22] (Microsoft Corporation) [File not signed]
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( ) [File not signed]
S3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [22272 2014-03-18] (Microsoft Corporation) [File not signed]
R3 kdnic; C:\Windows\system32\DRIVERS\kdnic.sys [19456 2013-08-22] (Microsoft Corporation) [File not signed]
R0 KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [101208 2014-03-18] (Microsoft Corporation) [File not signed]
R0 KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [180056 2014-03-08] (Microsoft Corporation) [File not signed]
R3 ksthunk; C:\Windows\system32\drivers\ksthunk.sys [21248 2013-08-22] (Microsoft Corporation) [File not signed]
R2 lltdio; C:\Windows\system32\DRIVERS\lltdio.sys [59392 2013-08-22] (Microsoft Corporation) [File not signed]
S0 LSI_SAS; C:\Windows\System32\drivers\lsi_sas.sys [109408 2013-08-22] (LSI Corporation) [File not signed]
S0 LSI_SAS2; C:\Windows\System32\drivers\lsi_sas2.sys [93536 2013-08-22] (LSI Corporation) [File not signed]
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation) [File not signed]
S0 LSI_SSS; C:\Windows\System32\drivers\lsi_sss.sys [82784 2013-08-22] (LSI Corporation) [File not signed]
R2 luafv; C:\Windows\system32\drivers\luafv.sys [124416 2014-03-18] (Microsoft Corporation) [File not signed]
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation) [File not signed]
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation) [File not signed]
S0 megasas; C:\Windows\System32\drivers\megasas.sys [56672 2013-08-22] (LSI Corporation) [File not signed]
S0 megasr; C:\Windows\System32\drivers\megasr.sys [575840 2013-08-22] (LSI Corporation, Inc.) [File not signed]
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2014-07-17] (Intel Corporation) [File not signed]
S3 Modem; C:\Windows\System32\drivers\modem.sys [40960 2013-08-22] (Microsoft Corporation) [File not signed]
R3 monitor; C:\Windows\System32\drivers\monitor.sys [30208 2013-08-22] (Microsoft Corporation) [File not signed]
R3 mouclass; C:\Windows\System32\drivers\mouclass.sys [51040 2013-08-22] (Microsoft Corporation) [File not signed]
R3 mouhid; C:\Windows\System32\drivers\mouhid.sys [30208 2013-08-22] (Microsoft Corporation) [File not signed]
R0 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [101728 2013-08-22] (Microsoft Corporation) [File not signed]
R3 mpsdrv; C:\Windows\System32\drivers\mpsdrv.sys [74240 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [140288 2014-03-06] (Microsoft Corporation) [File not signed]
R3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [402432 2014-04-30] (Microsoft Corporation) [File not signed]
R2 mrxsmb10; C:\Windows\System32\DRIVERS\mrxsmb10.sys [283648 2014-03-06] (Microsoft Corporation) [File not signed]
R3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [206848 2014-05-31] (Microsoft Corporation) [File not signed]
S3 MsBridge; C:\Windows\system32\DRIVERS\bridge.sys [115712 2013-08-22] (Microsoft Corporation) [File not signed]
S3 msgpiowin32; C:\Windows\System32\drivers\msgpiowin32.sys [41824 2013-08-22] (Microsoft Corporation) [File not signed]
S3 mshidkmdf; C:\Windows\System32\drivers\mshidkmdf.sys [8192 2013-08-22] (Microsoft Corporation) [File not signed]
S3 mshidumdf; C:\Windows\System32\drivers\mshidumdf.sys [9728 2013-08-22] (Microsoft Corporation) [File not signed]
R0 msisadrv; C:\Windows\System32\drivers\msisadrv.sys [17248 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSKSSRV; C:\Windows\system32\drivers\MSKSSRV.sys [10624 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MsLldp; C:\Windows\system32\DRIVERS\mslldp.sys [66560 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSPCLOCK; C:\Windows\system32\drivers\MSPCLOCK.sys [7040 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSPQM; C:\Windows\system32\drivers\MSPQM.sys [6784 2013-08-22] (Microsoft Corporation) [File not signed]
R1 mssmbios; C:\Windows\System32\drivers\mssmbios.sys [37728 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSTEE; C:\Windows\system32\drivers\MSTEE.sys [7936 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MTConfig; C:\Windows\System32\drivers\MTConfig.sys [13312 2013-08-22] (Microsoft Corporation) [File not signed]
R0 Mup; C:\Windows\System32\Drivers\mup.sys [78688 2013-08-22] (Microsoft Corporation) [File not signed]
S0 mvumis; C:\Windows\System32\drivers\mvumis.sys [63840 2013-08-22] (Marvell Semiconductor, Inc.) [File not signed]
R3 NativeWifiP; C:\Windows\system32\DRIVERS\nwifi.sys [443904 2014-03-19] (Microsoft Corporation) [File not signed]
R0 NDIS; C:\Windows\System32\drivers\ndis.sys [1118552 2014-03-18] (Microsoft Corporation) [File not signed]
S3 NdisCap; C:\Windows\system32\DRIVERS\ndiscap.sys [43008 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NdisImPlatform; C:\Windows\system32\DRIVERS\NdisImPlatform.sys [124928 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NdisTapi; C:\Windows\system32\DRIVERS\ndistapi.sys [24576 2013-08-22] (Microsoft Corporation) [File not signed]
R3 Ndisuio; C:\Windows\system32\DRIVERS\ndisuio.sys [60416 2013-08-22] (Microsoft Corporation) [File not signed]
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NdisWan; C:\Windows\system32\DRIVERS\ndiswan.sys [220672 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NdisWanLegacy; C:\Windows\system32\DRIVERS\ndiswan.sys [220672 2013-08-22] (Microsoft Corporation) [File not signed]
R2 Ndu; C:\Windows\System32\drivers\Ndu.sys [103424 2013-08-22] (Microsoft Corporation) [File not signed]
R1 NetBIOS; C:\Windows\System32\DRIVERS\netbios.sys [48128 2013-08-22] (Microsoft Corporation) [File not signed]
R1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [282624 2013-08-22] (Microsoft Corporation) [File not signed]
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation) [File not signed]
R1 npsvctrig; C:\Windows\System32\drivers\npsvctrig.sys [23040 2013-08-22] (Microsoft Corporation) [File not signed]
R1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [39936 2013-08-22] (Microsoft Corporation) [File not signed]
R1 Null; C:\Windows\System32\Drivers\Null.sys [5632 2013-08-22] (Microsoft Corporation) [File not signed]
R3 nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [10423952 2015-04-09] (NVIDIA Corporation) [File not signed]
S0 nvraid; C:\Windows\System32\drivers\nvraid.sys [150368 2013-08-22] (NVIDIA Corporation) [File not signed]
S0 nvstor; C:\Windows\System32\drivers\nvstor.sys [168288 2013-08-22] (NVIDIA Corporation) [File not signed]
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-01] (NVIDIA Corporation) [File not signed]
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation) [File not signed]
S0 nv_agp; C:\Windows\System32\drivers\nv_agp.sys [124768 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Parport; C:\Windows\System32\drivers\parport.sys [94208 2013-08-22] (Microsoft Corporation) [File not signed]
R0 partmgr; C:\Windows\System32\drivers\partmgr.sys [88928 2013-08-22] (Microsoft Corporation) [File not signed]
R0 pci; C:\Windows\System32\drivers\pci.sys [280920 2014-03-18] (Microsoft Corporation) [File not signed]
S0 pciide; C:\Windows\System32\drivers\pciide.sys [14688 2013-08-22] (Microsoft Corporation) [File not signed]
S0 pcmcia; C:\Windows\System32\drivers\pcmcia.sys [114528 2013-08-22] (Microsoft Corporation) [File not signed]
R0 pcw; C:\Windows\System32\drivers\pcw.sys [50016 2013-08-22] (Microsoft Corporation) [File not signed]
R0 pdc; C:\Windows\System32\drivers\pdc.sys [86872 2014-03-18] (Microsoft Corporation) [File not signed]
R2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [663040 2014-03-18] (Microsoft Corporation) [File not signed]
R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [14136 2014-01-03] (Windows ® Win 7 DDK provider) [File not signed]
S3 pneteth; C:\Windows\system32\DRIVERS\pneteth.sys [15360 2011-11-25] (June Fabrics Technology Inc.) [File not signed]
S3 PptpMiniport; C:\Windows\system32\DRIVERS\raspptp.sys [107520 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Processor; C:\Windows\System32\drivers\processr.sys [92160 2013-08-22] (Microsoft Corporation) [File not signed]
R1 Psched; C:\Windows\system32\DRIVERS\pacer.sys [151552 2013-08-22] (Microsoft Corporation) [File not signed]
S3 QWAVEdrv; C:\Windows\system32\drivers\qwavedrv.sys [47104 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasAcd; C:\Windows\System32\DRIVERS\rasacd.sys [17408 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasAgileVpn; C:\Windows\system32\DRIVERS\AgileVpn.sys [96768 2014-04-30] (Microsoft Corporation) [File not signed]
S3 Rasl2tp; C:\Windows\system32\DRIVERS\rasl2tp.sys [120832 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasPppoe; C:\Windows\system32\DRIVERS\raspppoe.sys [84992 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasSstp; C:\Windows\system32\DRIVERS\rassstp.sys [96256 2013-08-22] (Microsoft Corporation) [File not signed]
R1 rdbss; C:\Windows\System32\DRIVERS\rdbss.sys [408576 2014-03-18] (Microsoft Corporation) [File not signed]
R3 rdpbus; C:\Windows\System32\drivers\rdpbus.sys [22528 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RDPDR; C:\Windows\System32\drivers\rdpdr.sys [195584 2014-03-18] (Microsoft Corporation) [File not signed]
S3 RdpVideoMiniport; C:\Windows\System32\drivers\rdpvideominiport.sys [27488 2014-03-18] (Microsoft Corporation) [File not signed]
R0 rdyboost; C:\Windows\System32\drivers\rdyboost.sys [249688 2014-03-18] (Microsoft Corporation) [File not signed]
R3 RFCOMM; C:\Windows\system32\DRIVERS\rfcomm.sys [167424 2014-03-18] (Microsoft Corporation) [File not signed]
R2 rspndr; C:\Windows\system32\DRIVERS\rspndr.sys [80384 2013-08-22] (Microsoft Corporation) [File not signed]
R3 RTL8168; C:\Windows\system32\DRIVERS\Rt630x64.sys [871640 2014-07-17] (Realtek                                            ) [File not signed]
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [423128 2014-07-18] (Realsil Semiconductor Corporation) [File not signed]
S3 s3cap; C:\Windows\System32\drivers\vms3cap.sys [7168 2013-08-22] (Microsoft Corporation) [File not signed]
S0 sbp2port; C:\Windows\System32\drivers\sbp2port.sys [107872 2013-08-22] (Microsoft Corporation) [File not signed]
S3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [40960 2013-08-22] (Microsoft Corporation) [File not signed]
S3 sdbus; C:\Windows\System32\drivers\sdbus.sys [236888 2014-03-18] (Microsoft Corporation) [File not signed]
S3 sdstor; C:\Windows\System32\drivers\sdstor.sys [79192 2014-03-18] (Microsoft Corporation) [File not signed]
S3 SerCx; C:\Windows\System32\drivers\SerCx.sys [69472 2013-08-22] (Microsoft Corporation) [File not signed]
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-03-18] (Microsoft Corporation) [File not signed]
S3 Serenum; C:\Windows\System32\drivers\serenum.sys [23040 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Serial; C:\Windows\System32\drivers\serial.sys [83456 2013-08-22] (Microsoft Corporation) [File not signed]
S3 sermouse; C:\Windows\System32\drivers\sermouse.sys [26112 2013-08-22] (Microsoft Corporation) [File not signed]
S3 sfloppy; C:\Windows\System32\drivers\sfloppy.sys [17408 2013-08-22] (Microsoft Corporation) [File not signed]
S0 SiSRaid2; C:\Windows\System32\drivers\SiSRaid2.sys [44896 2013-08-22] (Silicon Integrated Systems Corp.) [File not signed]
S0 SiSRaid4; C:\Windows\System32\drivers\sisraid4.sys [81760 2013-08-22] (Silicon Integrated Systems) [File not signed]
R0 spaceport; C:\Windows\System32\drivers\spaceport.sys [384856 2014-04-01] (Microsoft Corporation) [File not signed]
S3 SpbCx; C:\Windows\System32\drivers\SpbCx.sys [72032 2013-08-22] (Microsoft Corporation) [File not signed]
R2 srv; C:\Windows\System32\DRIVERS\srv.sys [454656 2014-03-18] (Microsoft Corporation) [File not signed]
R3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [677376 2014-04-03] (Microsoft Corporation) [File not signed]
R3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [246272 2014-03-27] (Microsoft Corporation) [File not signed]
S0 stexstor; C:\Windows\System32\drivers\stexstor.sys [31072 2013-08-22] (Promise Technology, Inc.) [File not signed]
S0 storahci; C:\Windows\System32\drivers\storahci.sys [107872 2013-08-22] (Microsoft Corporation) [File not signed]
S0 storflt; C:\Windows\System32\DRIVERS\vmstorfl.sys [49984 2013-08-22] (Microsoft Corporation) [File not signed]
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2014-03-18] (Microsoft Corporation) [File not signed]
S0 storvsc; C:\Windows\System32\drivers\storvsc.sys [45888 2013-08-22] (Microsoft Corporation) [File not signed]
S3 storvsp; C:\Windows\System32\drivers\storvsp.sys [68608 2014-03-18] (Microsoft Corporation) [File not signed]
R3 swenum; C:\Windows\System32\drivers\swenum.sys [14176 2013-08-22] (Microsoft Corporation) [File not signed]
S3 tap0901; C:\Windows\system32\DRIVERS\tap0901.sys [40664 2013-08-22] (The OpenVPN Project) [File not signed]
R0 Tcpip; C:\Windows\System32\drivers\tcpip.sys [2518360 2014-05-27] (Microsoft Corporation) [File not signed]
S3 TCPIP6; C:\Windows\system32\DRIVERS\tcpip.sys [2518360 2014-05-27] (Microsoft Corporation) [File not signed]
R2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [49152 2014-03-06] (Microsoft Corporation) [File not signed]
R1 tdx; C:\Windows\system32\DRIVERS\tdx.sys [107520 2013-08-22] (Microsoft Corporation) [File not signed]
S3 terminpt; C:\Windows\System32\drivers\terminpt.sys [37216 2014-03-18] (Microsoft Corporation) [File not signed]
S3 TPM; C:\Windows\system32\drivers\tpm.sys [159584 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [56320 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TsUsbGD; C:\Windows\System32\drivers\TsUsbGD.sys [29696 2013-08-22] (Microsoft Corporation) [File not signed]
S3 tunnel; C:\Windows\system32\DRIVERS\tunnel.sys [154112 2013-08-22] (Microsoft Corporation) [File not signed]
S0 uagp35; C:\Windows\System32\drivers\uagp35.sys [64864 2013-08-22] (Microsoft Corporation) [File not signed]
S3 UASPStor; C:\Windows\System32\drivers\uaspstor.sys [74080 2013-08-22] (Microsoft Corporation) [File not signed]
R3 UCX01000; C:\Windows\System32\drivers\ucx01000.sys [189784 2014-03-18] (Microsoft Corporation) [File not signed]
S4 udfs; C:\Windows\System32\DRIVERS\udfs.sys [316928 2013-08-22] (Microsoft Corporation) [File not signed]
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation) [File not signed]
S0 uliagpkx; C:\Windows\System32\drivers\uliagpkx.sys [65888 2013-08-22] (Microsoft Corporation) [File not signed]
R3 umbus; C:\Windows\System32\drivers\umbus.sys [46080 2013-08-22] (Microsoft Corporation) [File not signed]
S3 UmPass; C:\Windows\System32\drivers\umpass.sys [11776 2013-08-22] (Microsoft Corporation) [File not signed]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] () [File not signed]
R3 usbccgp; C:\Windows\System32\drivers\usbccgp.sys [155480 2014-03-18] (Microsoft Corporation) [File not signed]
S3 usbcir; C:\Windows\System32\drivers\usbcir.sys [98304 2013-08-22] (Microsoft Corporation) [File not signed]
R3 usbehci; C:\Windows\System32\drivers\usbehci.sys [89944 2014-05-31] (Microsoft Corporation) [File not signed]
R3 usbhub; C:\Windows\System32\drivers\usbhub.sys [419672 2014-05-31] (Microsoft Corporation) [File not signed]
R3 USBHUB3; C:\Windows\System32\drivers\UsbHub3.sys [467800 2014-05-31] (Microsoft Corporation) [File not signed]
S3 usbohci; C:\Windows\System32\drivers\usbohci.sys [30208 2013-08-22] (Microsoft Corporation) [File not signed]
S3 usbprint; C:\Windows\System32\drivers\usbprint.sys [26112 2013-08-22] (Microsoft Corporation) [File not signed]
S3 usbser; C:\Windows\system32\DRIVERS\usbser.sys [33280 2013-08-22] (Microsoft Corporation) [File not signed]
S3 USBSTOR; C:\Windows\System32\drivers\USBSTOR.SYS [148824 2014-03-18] (Microsoft Corporation) [File not signed]
S3 usbuhci; C:\Windows\System32\drivers\usbuhci.sys [37376 2014-05-31] (Microsoft Corporation) [File not signed]
R3 usbvideo; C:\Windows\System32\Drivers\usbvideo.sys [212224 2013-08-22] (Microsoft Corporation) [File not signed]
R3 USBXHCI; C:\Windows\System32\drivers\USBXHCI.SYS [325464 2014-03-18] (Microsoft Corporation) [File not signed]
S3 usb_rndisx; C:\Windows\system32\DRIVERS\usb8023x.sys [20992 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [141440 2015-03-02] (Oracle Corporation) [File not signed]
R3 VClone; C:\Windows\System32\drivers\VClone.sys [34816 2013-07-24] (Elaborate Bytes AG) [File not signed]
R0 vdrvroot; C:\Windows\System32\drivers\vdrvroot.sys [37728 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VerifierExt; C:\Windows\System32\drivers\VerifierExt.sys [175960 2014-03-18] (Microsoft Corporation) [File not signed]
S3 vhdmp; C:\Windows\System32\drivers\vhdmp.sys [551256 2014-03-18] (Microsoft Corporation) [File not signed]
S0 viaide; C:\Windows\System32\drivers\viaide.sys [19808 2013-08-22] (VIA Technologies, Inc.) [File not signed]
S3 Vid; C:\Windows\System32\drivers\Vid.sys [220672 2014-03-18] (Microsoft Corporation) [File not signed]
S0 vmbus; C:\Windows\System32\drivers\vmbus.sys [97088 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VMBusHID; C:\Windows\System32\drivers\VMBusHID.sys [21760 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmbusr; C:\Windows\System32\drivers\vmbusr.sys [129536 2014-03-18] (Microsoft Corporation) [File not signed]
R0 volmgr; C:\Windows\System32\drivers\volmgr.sys [73568 2013-08-22] (Microsoft Corporation) [File not signed]
R0 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [377696 2013-08-22] (Microsoft Corporation) [File not signed]
R0 volsnap; C:\Windows\System32\drivers\volsnap.sys [310616 2014-03-06] (Microsoft Corporation) [File not signed]
S3 vpci; C:\Windows\System32\drivers\vpci.sys [69472 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vpcivsp; C:\Windows\System32\drivers\vpcivsp.sys [65536 2014-03-18] (Microsoft Corporation) [File not signed]
S0 vsmraid; C:\Windows\System32\drivers\vsmraid.sys [168800 2013-08-22] (VIA Technologies Inc.,Ltd) [File not signed]
S0 VSTXRAID; C:\Windows\System32\drivers\vstxraid.sys [305504 2013-08-22] (VIA Corporation) [File not signed]
R3 vwifibus; C:\Windows\System32\drivers\vwifibus.sys [24576 2013-08-22] (Microsoft Corporation) [File not signed]
R1 vwififlt; C:\Windows\system32\DRIVERS\vwififlt.sys [71680 2014-04-30] (Microsoft Corporation) [File not signed]
R3 vwifimp; C:\Windows\system32\DRIVERS\vwifimp.sys [38912 2014-04-30] (Microsoft Corporation) [File not signed]
S3 WacomPen; C:\Windows\System32\drivers\wacompen.sys [26752 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Wanarp; C:\Windows\system32\DRIVERS\wanarp.sys [79872 2013-08-22] (Microsoft Corporation) [File not signed]
R1 Wanarpv6; C:\Windows\system32\DRIVERS\wanarp.sys [79872 2013-08-22] (Microsoft Corporation) [File not signed]
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [35856 2014-03-24] (Microsoft Corporation) [File not signed]
R0 Wdf01000; C:\Windows\System32\drivers\Wdf01000.sys [839488 2013-08-22] (Microsoft Corporation) [File not signed]
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [257880 2014-03-24] (Microsoft Corporation) [File not signed]
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation) [File not signed]
R0 WFPLWFS; C:\Windows\System32\DRIVERS\wfplwfs.sys [136024 2014-03-08] (Microsoft Corporation) [File not signed]
S3 WIMMount; C:\Windows\System32\drivers\wimmount.sys [33632 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [78848 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WmiAcpi; C:\Windows\System32\drivers\wmiacpi.sys [16384 2013-08-22] (Microsoft Corporation) [File not signed]
S3 wpcfltr; C:\Windows\System32\DRIVERS\wpcfltr.sys [55328 2014-07-24] (Microsoft Corporation) [File not signed]
S3 WpdUpFltr; C:\Windows\System32\drivers\WpdUpFltr.sys [26976 2013-08-22] (Microsoft Corporation) [File not signed]
S4 ws2ifsl; C:\Windows\system32\drivers\ws2ifsl.sys [21504 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [110592 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WUDFRd; C:\Windows\System32\drivers\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WUDFSensorLP; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WUDFWpdFs; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WUDFWpdMtp; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation) [File not signed]
S1 BAPIDRV; system32\DRIVERS\BAPIDRV64.sys [X]
S3 cpuz137; \??\C:\Users\Tony1604\AppData\Local\Temp\cpuz137\cpuz137_x64.sys [X]
S3 SzCCID; \SystemRoot\system32\DRIVERS\SzCCID.sys [X]
S3 VBoxNetFlt; \SystemRoot\system32\DRIVERS\VBoxNetFlt.sys [X]
S3 vpnva; \SystemRoot\system32\DRIVERS\vpnva64-6.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-05-13 20:05 - 2015-05-13 20:06 - 00074474 _____ () C:\Users\Tony1604\Desktop\Main.txt
2015-05-13 19:58 - 2015-05-13 19:58 - 02104832 _____ (Farbar) C:\Users\Tony1604\Desktop\FRST64.exe
2015-05-13 19:58 - 2015-05-13 19:58 - 00000000 ____D () C:\Users\Tony1604\Desktop\FRST-OlderVersion
2015-05-13 19:53 - 2015-05-13 19:53 - 00005538 _____ () C:\Users\Tony1604\Downloads\Cryptographic_Services.reg
2015-05-13 13:09 - 2015-05-13 13:09 - 00003106 _____ () C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1128951351-2712326424-2671060717-1001
2015-05-12 15:13 - 2015-05-12 18:05 - 00000000 ____D () C:\Users\Tony1604\Downloads\Grand.Theft.Auto.V-RELOADED
2015-05-12 15:09 - 2015-05-12 15:09 - 00002412 _____ () C:\Windows\System32\Tasks\Uninstaller_SkipUac_Tony1604
2015-05-12 15:09 - 2015-05-12 15:09 - 00000306 _____ () C:\Windows\Tasks\Uninstaller_SkipUac_Tony1604.job
2015-05-11 23:51 - 2015-05-11 23:51 - 00009964 _____ () C:\Users\Tony1604\Desktop\Praksa.xlsx
2015-05-11 21:25 - 2015-05-11 21:34 - 00000000 ____D () C:\Users\Tony1604\Desktop\271590
2015-05-11 12:48 - 2015-05-11 12:48 - 00043664 _____ () C:\Windows\system32\Drivers\hitmanpro37.sys
2015-05-11 12:47 - 2015-05-11 12:47 - 00004610 _____ () C:\Windows\system32\.crusader
2015-05-11 12:37 - 2015-05-11 12:47 - 00000000 ____D () C:\ProgramData\HitmanPro
2015-05-11 12:35 - 2015-05-11 12:35 - 00001010 _____ () C:\Users\Tony1604\Desktop\Fallout New Vegas.lnk
2015-05-11 12:35 - 2015-05-11 12:35 - 00001007 _____ () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-05-11 12:33 - 2015-05-11 12:35 - 00000000 ____D () C:\AdwCleaner
2015-05-11 11:44 - 2015-05-13 19:58 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-05-11 11:43 - 2015-05-11 11:43 - 00001134 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-05-11 11:43 - 2015-05-11 11:43 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2015-05-11 11:43 - 2015-05-11 11:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-05-11 11:43 - 2015-05-11 11:43 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-05-11 11:43 - 2015-05-11 11:43 - 00000000 ____D () C:\Program Files\Unlocker
2015-05-11 11:43 - 2015-05-11 11:43 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-05-11 11:43 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-05-11 11:43 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-05-11 11:43 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-05-11 01:39 - 2015-05-13 20:05 - 00000000 ____D () C:\FRST
2015-05-11 01:17 - 2015-05-11 01:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-05-11 01:17 - 2015-05-01 18:51 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-05-11 01:17 - 2015-05-01 18:51 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-05-11 01:17 - 2015-05-01 18:50 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-05-11 01:17 - 2015-05-01 18:50 - 01570672 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-05-11 01:17 - 2014-11-22 12:46 - 00038032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2015-05-11 01:17 - 2014-11-22 12:46 - 00035472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2015-05-11 01:17 - 2014-11-22 12:46 - 00032400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2015-05-11 01:16 - 2015-05-12 13:59 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\NVIDIA
2015-05-11 01:13 - 2015-04-09 02:58 - 31570064 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 30397072 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 25375048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 24053576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 17176128 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 15818528 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 15716232 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 14617288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 14006752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 12852784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 12689592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 11380728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 10423952 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-05-11 01:13 - 2015-04-09 02:58 - 03317344 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 02935416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 02896528 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 02573456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 01895568 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435012.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435012.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 01047368 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 01037640 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00970568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00962192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00499344 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00402576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00390472 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00346256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00175880 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00029329 _____ () C:\Windows\system32\nvinfo.pb
2015-05-11 00:40 - 2015-05-11 00:40 - 00001740 __RSH () C:\ProgramData\ntuser.pol
2015-05-11 00:15 - 2015-05-11 00:15 - 00000000 _____ () C:\Windows\system32\sfcdetails.txt
2015-05-10 23:04 - 2015-05-11 12:58 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\mIRC
2015-05-10 23:04 - 2015-05-10 23:04 - 00000967 _____ () C:\Users\Public\Desktop\mIRC.lnk
2015-05-10 23:04 - 2015-05-10 23:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mIRC
2015-05-10 23:04 - 2015-05-10 23:04 - 00000000 ____D () C:\Program Files (x86)\mIRC
2015-05-10 21:56 - 2015-05-11 01:16 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-05-10 21:56 - 2015-04-08 23:30 - 06841488 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 03478344 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 01047696 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 00936264 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-05-10 21:56 - 2015-04-08 23:30 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 00075080 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-05-10 21:56 - 2015-04-08 19:52 - 04336074 _____ () C:\Windows\system32\nvcoproc.bin
2015-05-10 21:36 - 2015-05-10 23:03 - 00000000 ____D () C:\NvidiaLogging
2015-05-10 21:31 - 2015-05-11 01:17 - 00000103 _____ () C:\Windows\setupact.log
2015-05-10 21:31 - 2015-05-10 21:31 - 00000000 _____ () C:\Windows\setuperr.log
2015-05-05 22:56 - 2015-05-13 00:35 - 00000000 _____ () C:\Recovery.txt
2015-05-05 22:56 - 2015-05-05 22:56 - 00000000 __SHD () C:\Recovery
2015-05-05 13:04 - 2015-05-05 13:04 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\TuneUp Software
2015-05-05 12:38 - 2015-05-05 12:38 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Apps\2.0
2015-05-05 10:16 - 2015-05-05 10:16 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\AVG2015
2015-05-05 10:12 - 2015-05-05 10:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-05-05 10:06 - 2015-05-05 10:06 - 00001760 _____ () C:\Users\Tony1604\Desktop\IObit Uninstaller.lnk
2015-05-05 10:00 - 2015-05-05 10:37 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Avg2015
2015-05-03 11:24 - 2015-05-03 11:24 - 00000000 ____D () C:\04ee0def8bac2efda312672267
2015-05-03 11:03 - 2015-05-03 11:03 - 00000000 ____D () C:\Users\Tony1604\Tracing
2015-05-03 11:02 - 2015-05-03 11:02 - 00000000 ____D () C:\Windows\en
2015-05-03 11:01 - 2015-05-03 11:01 - 00002506 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
2015-05-03 11:01 - 2015-05-03 11:01 - 00001478 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2015-05-03 11:01 - 2015-05-03 11:01 - 00001404 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2015-05-03 11:01 - 2015-05-03 11:01 - 00001331 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2015-05-03 11:01 - 2015-05-03 11:01 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-05-03 11:01 - 2015-05-03 11:01 - 00000000 ____D () C:\Program Files\Windows Live
2015-05-03 11:01 - 2015-05-03 11:01 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2015-05-03 10:59 - 2015-05-12 14:10 - 00000769 _____ () C:\Windows\DirectX.log
2015-05-03 10:59 - 2015-05-03 10:59 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2015-05-03 10:58 - 2015-05-03 11:03 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Windows Live
2015-05-03 10:57 - 2015-05-03 10:57 - 00000000 ____D () C:\fc7b9e2c3f4ba3c46771754f40
2015-05-03 10:38 - 2015-05-03 10:38 - 00002355 _____ () C:\Users\Ruža\Desktop\Pokretač aplikacija sustava Chrome.lnk
2015-05-03 10:38 - 2015-05-03 10:38 - 00000000 ____D () C:\Users\Ruža\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-05-03 10:38 - 2015-05-03 10:38 - 00000000 ____D () C:\Users\Ruža\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacije sustava Chrome
2015-05-02 23:24 - 2015-05-02 23:24 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Supremus Corporation
2015-05-02 11:36 - 2015-05-02 22:48 - 00002884 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (Tony1604)
2015-05-02 11:36 - 2015-05-02 11:36 - 00026528 _____ (REALiX™) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
2015-05-02 11:28 - 2015-05-13 06:26 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1128951351-2712326424-2671060717-1002
2015-05-02 11:11 - 2015-05-02 11:11 - 00000002 _____ () C:\Windows\AsCDProc.log
2015-05-02 11:07 - 2015-05-13 20:00 - 00033554 _____ () C:\Windows\PFRO.log
2015-05-02 10:27 - 2015-05-02 10:27 - 71720960 _____ () C:\Windows\system32\config\SOFTWARE.iobit
2015-05-02 10:27 - 2015-05-02 10:27 - 36741120 _____ () C:\Windows\system32\config\COMPONENTS.iobit
2015-05-02 10:27 - 2015-05-02 10:27 - 00466944 _____ () C:\Windows\system32\config\DEFAULT.iobit
2015-05-02 10:27 - 2015-05-02 10:27 - 00036864 _____ () C:\Windows\system32\config\SAM.iobit
2015-05-02 10:27 - 2015-05-02 10:27 - 00024576 _____ () C:\Windows\system32\config\SECURITY.iobit
2015-05-02 10:17 - 2015-05-02 10:17 - 00000000 ____D () C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-05-02 10:05 - 2015-05-12 18:44 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1128951351-2712326424-2671060717-1001
2015-05-02 10:00 - 2015-05-12 00:01 - 00000000 ____D () C:\Users\Tony1604\Downloads\Music for now
2015-05-02 09:59 - 2015-05-02 09:59 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-TONYLAPTOP-Windows-8.1-Pro-(64-bit).dat
2015-05-02 09:27 - 2015-05-02 09:27 - 00000000 ____D () C:\Intel
2015-05-02 09:22 - 2015-05-02 09:22 - 00099384 _____ () C:\Users\Tony1604\AppData\Roaming\inst.exe
2015-05-02 09:22 - 2015-05-02 09:22 - 00082816 _____ (VSO Software) C:\Users\Tony1604\AppData\Roaming\pcouffin.sys
2015-05-02 09:22 - 2015-05-02 09:22 - 00007859 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.cat
2015-05-02 09:22 - 2015-05-02 09:22 - 00001256 _____ () C:\Users\Tony1604\Desktop\ConvertXToDVD 5.lnk
2015-05-02 09:22 - 2015-05-02 09:22 - 00000055 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.log
2015-05-02 09:22 - 2015-05-02 09:22 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Vso
2015-05-02 09:22 - 2015-05-02 09:22 - 00000000 ____D () C:\ProgramData\VSO
2015-05-02 09:22 - 2015-05-02 09:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO
2015-05-02 09:22 - 2015-05-02 09:22 - 00000000 ____D () C:\Program Files (x86)\VSO
2015-05-01 15:46 - 2015-05-01 15:46 - 01380448 _____ (Skype Technologies S.A.) C:\Users\Ruža\Downloads\SkypeSetup_7_2_103.exe
2015-05-01 15:46 - 2015-05-01 15:46 - 01380448 _____ (Skype Technologies S.A.) C:\Users\Ruža\Downloads\SkypeSetup_7_2_103 (1).exe
2015-05-01 15:43 - 2015-05-01 15:44 - 45346432 _____ (Skype Technologies S.A.) C:\Users\Ruža\Downloads\SkypeSetupFull.exe
2015-05-01 13:41 - 2015-05-12 21:06 - 00000020 _____ () C:\Users\Ruža\AppData\Roaming\appdataFr3.bin
2015-05-01 11:36 - 2015-05-11 11:40 - 00000020 _____ () C:\Users\Tony1604\AppData\Roaming\appdataFr3.bin
2015-04-28 00:03 - 2015-04-28 00:04 - 00000000 ____D () C:\Program Files\Sublime Text 3
2015-04-26 11:39 - 2015-04-26 11:39 - 00001290 _____ () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2015-04-26 11:38 - 2015-05-05 10:06 - 00000000 ____D () C:\Program Files (x86)\IObit
2015-04-26 11:06 - 2015-05-11 11:57 - 00000080 _____ () C:\Users\Tony1604\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-04-26 10:56 - 2015-04-26 10:56 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Rockstar Games
2015-04-24 09:46 - 2015-04-26 00:26 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Warframe
2015-04-24 08:40 - 2015-04-24 08:40 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\MK10
2015-04-23 23:47 - 2015-04-23 23:47 - 00001221 _____ () C:\Users\Tony1604\Desktop\Mortal Kombat X Premium Edition.lnk
2015-04-23 23:47 - 2015-04-23 23:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2015-04-22 21:38 - 2015-04-22 21:38 - 00002043 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evolve.lnk
2015-04-22 21:38 - 2015-04-22 21:38 - 00002031 _____ () C:\Users\Public\Desktop\Evolve.lnk
2015-04-22 21:20 - 2015-04-22 21:20 - 00000000 ____D () C:\Program Files\Echobit
2015-04-22 21:19 - 2015-04-22 21:19 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Echobit
2015-04-22 21:19 - 2015-04-22 21:19 - 00000000 ____D () C:\ProgramData\Echobit
2015-04-22 21:09 - 2015-04-22 21:09 - 00000208 _____ () C:\Users\Tony1604\Desktop\Warframe.url
2015-04-22 18:47 - 2015-04-22 18:47 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Unity
2015-04-16 21:24 - 2014-08-01 00:44 - 00000716 _____ () C:\Users\Tony1604\Desktop\Steam.lnk
2015-04-16 20:49 - 2015-04-16 20:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2015-04-16 20:47 - 2015-04-16 20:47 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Lavasoft
2015-04-16 20:46 - 2015-04-16 20:46 - 00000000 ____D () C:\ProgramData\Lavasoft
2015-04-16 20:28 - 2015-05-02 11:06 - 00000000 ____D () C:\Program Files (x86)\SeekerModule
2015-04-16 20:27 - 2015-04-16 20:28 - 00000000 ____D () C:\ProgramData\367599667378516284
2015-04-15 13:06 - 2015-04-15 13:06 - 00256992 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgldx64.sys
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-05-13 20:05 - 2014-07-17 18:58 - 00003946 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{DF7559B6-7CAF-4147-9C0F-AAF1B6090DC8}
2015-05-13 20:04 - 2014-07-24 22:52 - 00000074 _____ () C:\Users\Tony1604\AppData\Roaming\sp_data.sys
2015-05-13 20:01 - 2014-07-17 18:47 - 01336051 _____ () C:\Windows\WindowsUpdate.log
2015-05-13 20:01 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-13 20:00 - 2014-07-17 20:13 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\uTorrent
2015-05-13 20:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru
2015-05-13 20:00 - 2013-08-22 15:25 - 00524288 ___SH () C:\Windows\system32\config\BBI
2015-05-13 13:09 - 2014-07-30 22:18 - 00000000 _RHDO () C:\Users\Tony1604\OneDrive
2015-05-13 06:14 - 2014-10-19 11:29 - 00000074 _____ () C:\Users\Ruža\AppData\Roaming\sp_data.sys
2015-05-12 23:37 - 2014-12-03 16:32 - 00000000 ____D () C:\Users\Tony1604\Downloads\GamesInstall
2015-05-12 15:10 - 2014-07-30 13:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2015-05-12 14:29 - 2014-07-17 18:49 - 00000000 ____D () C:\Users\Tony1604
2015-05-12 14:17 - 2015-03-14 14:51 - 00000000 ___HD () C:\Windows\msdownld.tmp
2015-05-12 14:17 - 2014-07-17 21:55 - 00000000 ____D () C:\Windows\SysWOW64\directx
2015-05-12 14:08 - 2015-02-22 13:29 - 00000000 ____D () C:\ProgramData\Package Cache
2015-05-11 21:17 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\NDF
2015-05-11 14:01 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-05-11 12:35 - 2015-02-20 22:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Build and Shoot
2015-05-11 12:35 - 2014-12-03 18:27 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-05-11 12:35 - 2014-07-17 21:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-05-11 01:37 - 2014-07-17 19:02 - 00000000 ____D () C:\ProgramData\IObit
2015-05-11 01:21 - 2014-07-17 19:17 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-05-11 01:17 - 2014-07-30 21:59 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\NVIDIA Corporation
2015-05-11 01:17 - 2014-07-30 13:19 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-05-11 01:17 - 2014-07-17 19:17 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-05-11 01:04 - 2014-03-18 12:04 - 00863592 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-11 00:38 - 2015-03-08 23:01 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Android
2015-05-11 00:38 - 2014-07-17 19:27 - 00000000 ____D () C:\Program Files\Intel
2015-05-11 00:35 - 2015-03-08 23:00 - 00000000 ____D () C:\Program Files\Android
2015-05-11 00:34 - 2015-03-10 18:53 - 00000000 ____D () C:\Flashtool
2015-05-11 00:26 - 2009-08-18 09:31 - 00147456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\initpki.dll
2015-05-11 00:25 - 2009-08-18 09:31 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\initpki.dll
2015-05-10 21:56 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Help
2015-05-10 21:25 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-05-08 13:23 - 2015-03-05 13:35 - 00003930 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{60F858EE-FDEE-4530-9461-88DCB778F7CA}
2015-05-07 23:59 - 2014-07-23 01:24 - 00007593 _____ () C:\Users\Tony1604\AppData\Local\Resmon.ResmonCfg
2015-05-07 17:42 - 2014-07-27 18:35 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\CrashDumps
2015-05-06 05:01 - 2014-07-17 19:02 - 00000000 ____D () C:\ProgramData\ProductData
2015-05-05 15:08 - 2014-07-19 15:53 - 00000000 ____D () C:\Windows\system32\MRT
2015-05-05 13:04 - 2015-02-22 13:53 - 00000000 ____D () C:\ProgramData\MFAData
2015-05-05 13:02 - 2014-10-19 11:29 - 00000000 ____D () C:\Users\Ruža
2015-05-05 11:53 - 2014-07-17 20:46 - 00000000 ____D () C:\Users\Tony1604\Documents\my games
2015-05-05 11:52 - 2014-10-05 01:25 - 00000000 ____D () C:\Users\Tony1604\Documents\Electronic Arts
2015-05-05 11:27 - 2014-07-19 19:05 - 00000000 ____D () C:\Windows\pss
2015-05-05 10:48 - 2014-08-05 18:11 - 00000000 ____D () C:\Windows\Minidump
2015-05-05 10:47 - 2015-01-04 15:57 - 730668713 _____ () C:\Windows\MEMORY.DMP
2015-05-05 10:33 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2015-05-05 10:12 - 2015-02-22 13:58 - 00000000 ___HD () C:\$AVG
2015-05-05 10:12 - 2013-08-22 17:36 - 00000000 ___HD () C:\Windows\ELAMBKUP
2015-05-04 19:22 - 2014-10-25 17:52 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\vlc
2015-05-02 11:06 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Branding
2015-05-02 10:17 - 2014-07-17 19:03 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\ProductData
2015-04-30 23:46 - 2014-07-17 20:46 - 00000000 ____D () C:\Games
2015-04-29 11:17 - 2014-08-01 00:44 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-04-28 00:04 - 2014-07-31 16:17 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Sublime Text 3
2015-04-19 20:34 - 2014-07-18 08:02 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-04-16 20:34 - 2015-02-25 00:23 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Dropbox
2015-04-16 20:23 - 2015-02-25 00:27 - 00000000 ___RD () C:\Users\Tony1604\Dropbox
 
==================== Files in the root of some directories =======
 
2015-05-01 11:36 - 2015-05-11 11:40 - 0000020 _____ () C:\Users\Tony1604\AppData\Roaming\appdataFr3.bin
2015-05-02 09:22 - 2015-05-02 09:22 - 0099384 _____ () C:\Users\Tony1604\AppData\Roaming\inst.exe
2014-07-24 22:54 - 2014-07-24 22:54 - 0000021 _____ () C:\Users\Tony1604\AppData\Roaming\my_intel.sys
2015-05-02 09:22 - 2015-05-02 09:22 - 0007859 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.cat
2015-05-02 09:22 - 2015-05-02 09:22 - 0001167 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.inf
2015-05-02 09:22 - 2015-05-02 09:22 - 0000055 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.log
2015-05-02 09:22 - 2015-05-02 09:22 - 0082816 _____ (VSO Software) C:\Users\Tony1604\AppData\Roaming\pcouffin.sys
2014-07-24 22:52 - 2015-05-13 20:04 - 0000074 _____ () C:\Users\Tony1604\AppData\Roaming\sp_data.sys
2014-07-23 01:24 - 2015-05-07 23:59 - 0007593 _____ () C:\Users\Tony1604\AppData\Local\Resmon.ResmonCfg
2015-04-16 20:31 - 2015-04-16 20:31 - 0000794 _____ () C:\Users\Tony1604\AppData\Local\Temp-log.txt
2014-07-17 19:23 - 2014-07-17 19:23 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2015-05-05 09:16
 
==================== End Of Log ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13-05-2015
Ran by Tony1604 (administrator) on TONYLAPTOP on 13-05-2015 20:05:47
Running from C:\Users\Tony1604\Desktop
Loaded Profiles: Tony1604 (Available profiles: Tony1604 & Ruža)
Platform: Windows 8.1 Pro (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(Windows ® Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Intel Corporation) C:\Windows\System32\DptfParticipantProcessorService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyConfigTDPService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyCriticalService.exe
(Intel Corporation) C:\Windows\System32\DptfPolicyLpmService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\livecomm.exe
(NVIDIA Corporation) C:\Users\Tony1604\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Qualcomm®Atheros®) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\AULA\G2 Mouse\G2Monitor.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2685072 2015-05-01] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [G2 mouse] => C:\Program Files (x86)\AULA\G2 Mouse\G2Monitor.exe [495616 2013-06-01] ()
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [335232 2015-03-07] (Oracle Corporation)
HKLM-x32\...\Run: [AVG_UI] => "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [134784 2014-02-25] (Qualcomm®Atheros®)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2012-10-01] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2CF47E20-9948-43A2-A4E5-2899AA418659}: [NameServer] 192.255.160.0,192.255.168.0
StartMenuInternet: IEXPLORE.EXE - iexplore.exe
 
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll [2015-02-04] ()
FF Plugin: @java.com/DTPlugin,version=10.75.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2015-03-08] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.75.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2015-03-08] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\Microsoft Office\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll [2015-02-04] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\dtplugin\npDeployJava1.dll [2015-03-30] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.40.2 -> C:\Program Files (x86)\Java\jre1.8.0_40\bin\plugin2\npjp2.dll [2015-03-30] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\Microsoft Office\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-04] (Google Inc.)
FF Plugin HKU\S-1-5-21-1128951351-2712326424-2671060717-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Tony1604\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-03-24] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2012-10-01] (Microsoft Corporation)
 
Chrome: 
=======
CHR HomePage: Default -> https://www.google.hr/
CHR StartupUrls: Default -> "https://www.google.hr/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Angry Birds) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2015-04-16]
CHR Extension: (Facebook) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\boeajhmfdjldchidhphikilcgdacljfm [2014-12-08]
CHR Extension: (AdBlock) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-05-06]
CHR Extension: (Bookmark Manager) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-16]
CHR Extension: (Little Alchemy) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\knkapnclbofjjgicpkfoagdjohlfjhpd [2015-04-16]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-11]
CHR Extension: (Google Wallet) - C:\Users\Tony1604\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-07-17]
StartMenuInternet: Google Chrome - Chrome.exe
 
==================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S4 AdobeFlashPlayerUpdateSvc; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [267440 2015-02-04] (Adobe Systems Incorporated) [File not signed]
S3 AeLookupSvc; C:\Windows\System32\aelupsvc.dll [208896 2014-03-18] (Microsoft Corporation) [File not signed]
S3 ALG; C:\Windows\System32\alg.exe [92672 2013-08-22] (Microsoft Corporation) [File not signed]
S3 AppIDSvc; C:\Windows\System32\appidsvc.dll [37888 2013-08-22] (Microsoft Corporation) [File not signed]
R3 Appinfo; C:\Windows\System32\appinfo.dll [109568 2014-03-18] (Microsoft Corporation) [File not signed]
S3 AppMgmt; C:\Windows\System32\appmgmts.dll [183296 2014-03-18] (Microsoft Corporation) [File not signed]
S3 AppMgmt; C:\Windows\SysWOW64\appmgmts.dll [151040 2014-03-18] (Microsoft Corporation) [File not signed]
S3 AppReadiness; C:\Windows\system32\AppReadiness.dll [530944 2014-03-18] (Microsoft Corporation) [File not signed]
S3 AppXSvc; C:\Windows\system32\appxdeploymentserver.dll [1306624 2014-03-08] (Microsoft Corporation) [File not signed]
R2 ASLDRService; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe [115512 2014-02-18] (ASUSTek Computer Inc.) [File not signed]
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [319104 2014-02-25] (Windows ® Win 7 DDK provider) [File not signed]
R2 ATKGFNEXSrv; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [96896 2011-11-21] (ASUS) [File not signed]
R2 AudioEndpointBuilder; C:\Windows\System32\AudioEndpointBuilder.dll [201216 2014-04-06] (Microsoft Corporation) [File not signed]
R2 Audiosrv; C:\Windows\System32\Audiosrv.dll [834048 2014-04-06] (Microsoft Corporation) [File not signed]
S3 AxInstSV; C:\Windows\System32\AxInstSV.dll [109568 2014-03-18] (Microsoft Corporation) [File not signed]
S3 BDESVC; C:\Windows\System32\bdesvc.dll [339456 2014-04-26] (Microsoft Corporation) [File not signed]
R2 BFE; C:\Windows\System32\bfe.dll [827392 2014-04-30] (Microsoft Corporation) [File not signed]
S2 BITS; C:\Windows\System32\qmgr.dll [1017856 2013-08-22] (Microsoft Corporation) [File not signed]
R2 BrokerInfrastructure; C:\Windows\System32\bisrv.dll [269824 2014-03-18] (Microsoft Corporation) [File not signed]
S3 Browser; C:\Windows\System32\browser.dll [134144 2013-08-22] (Microsoft Corporation) [File not signed]
R3 bthserv; C:\Windows\system32\bthserv.dll [92160 2013-08-22] (Microsoft Corporation) [File not signed]
S4 CertPropSvc; C:\Windows\System32\certprop.dll [155136 2013-08-22] (Microsoft Corporation) [File not signed]
S3 cphs; C:\Windows\SysWow64\IntelCpHeciSvc.exe [279000 2014-03-18] (Intel Corporation) [File not signed]
R2 CryptSvc; C:\Windows\system32\cryptsvc.dll [129536 2013-08-22] (Microsoft Corporation) [File not signed]
S4 CscService; C:\Windows\System32\cscsvc.dll [778240 2014-03-18] (Microsoft Corporation) [File not signed]
R2 DcomLaunch; C:\Windows\system32\rpcss.dll [753664 2014-03-18] (Microsoft Corporation) [File not signed]
S3 defragsvc; C:\Windows\System32\defragsvc.dll [449536 2014-04-11] (Microsoft Corporation) [File not signed]
R2 DeviceAssociationService; C:\Windows\system32\das.dll [399872 2014-03-18] (Microsoft Corporation) [File not signed]
S3 DeviceInstall; C:\Windows\system32\umpnpmgr.dll [115200 2014-03-06] (Microsoft Corporation) [File not signed]
R2 Dhcp; C:\Windows\system32\dhcpcore.dll [353280 2014-04-30] (Microsoft Corporation) [File not signed]
R2 Dhcp; C:\Windows\SysWOW64\dhcpcore.dll [285696 2014-04-30] (Microsoft Corporation) [File not signed]
R2 Dnscache; C:\Windows\System32\dnsrslvr.dll [254464 2014-03-04] (Microsoft Corporation) [File not signed]
S3 dot3svc; C:\Windows\System32\dot3svc.dll [258560 2013-08-22] (Microsoft Corporation) [File not signed]
R2 DPS; C:\Windows\system32\dps.dll [170496 2013-08-22] (Microsoft Corporation) [File not signed]
R2 DptfParticipantProcessorService; C:\Windows\system32\DptfParticipantProcessorService.exe [117704 2013-10-18] (Intel Corporation) [File not signed]
R2 DptfPolicyConfigTDPService; C:\Windows\system32\DptfPolicyConfigTDPService.exe [116680 2013-10-18] (Intel Corporation) [File not signed]
R2 DptfPolicyCriticalService; C:\Windows\system32\DptfPolicyCriticalService.exe [148160 2013-10-18] (Intel Corporation) [File not signed]
R2 DptfPolicyLpmService; C:\Windows\system32\DptfPolicyLpmService.exe [126952 2013-10-18] (Intel Corporation) [File not signed]
R3 DsmSvc; C:\Windows\System32\DeviceSetupManager.dll [201728 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Eaphost; C:\Windows\System32\eapsvc.dll [107008 2013-08-22] (Microsoft Corporation) [File not signed]
R2 EFS; C:\Windows\system32\efssvc.dll [40448 2013-08-22] (Microsoft Corporation) [File not signed]
R2 EventLog; C:\Windows\System32\wevtsvc.dll [1669632 2013-08-22] (Microsoft Corporation) [File not signed]
R2 EventSystem; C:\Windows\system32\es.dll [468992 2013-08-22] (Microsoft Corporation) [File not signed]
R2 EventSystem; C:\Windows\SysWOW64\es.dll [329728 2013-08-22] (Microsoft Corporation) [File not signed]
S4 EvoSvc; C:\Program Files\Echobit\Evolve\EvoSvc.exe [1583488 2015-04-22] (Echobit LLC) [File not signed]
S3 Fax; C:\Windows\system32\fxssvc.exe [655360 2013-08-22] (Microsoft Corporation) [File not signed]
S3 fdPHost; C:\Windows\system32\fdPHost.dll [21504 2013-08-22] (Microsoft Corporation) [File not signed]
S3 FDResPub; C:\Windows\system32\fdrespub.dll [33280 2013-08-22] (Microsoft Corporation) [File not signed]
S3 fhsvc; C:\Windows\system32\fhsvc.dll [118272 2013-08-22] (Microsoft Corporation) [File not signed]
R3 FontCache; C:\Windows\system32\FntCache.dll [1345536 2014-04-30] (Microsoft Corporation) [File not signed]
R3 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [43696 2013-08-03] (Microsoft Corporation) [File not signed]
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1152656 2015-05-01] (NVIDIA Corporation) [File not signed]
R2 gpsvc; C:\Windows\System32\gpsvc.dll [1308160 2014-03-31] (Microsoft Corporation) [File not signed]
S4 gupdate; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648 2014-07-17] (Google Inc.) [File not signed]
S4 gupdatem; C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [116648 2014-07-17] (Google Inc.) [File not signed]
R3 hidserv; C:\Windows\system32\hidserv.dll [32256 2013-08-22] (Microsoft Corporation) [File not signed]
R3 hidserv; C:\Windows\SysWOW64\hidserv.dll [29696 2013-08-22] (Microsoft Corporation) [File not signed]
S3 hkmsvc; C:\Windows\system32\kmsvc.dll [97792 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HomeGroupListener; C:\Windows\system32\ListSvc.dll [261632 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HomeGroupProvider; C:\Windows\system32\provsvc.dll [405504 2014-03-18] (Microsoft Corporation) [File not signed]
S3 HomeGroupProvider; C:\Windows\SysWOW64\provsvc.dll [321536 2014-03-18] (Microsoft Corporation) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
S3 IEEtwCollectorService; C:\Windows\system32\IEEtwCollector.exe [111616 2014-02-06] (Microsoft Corporation) [File not signed]
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282072 2014-03-18] (Intel Corporation) [File not signed]
R2 IKEEXT; C:\Windows\System32\ikeext.dll [1063424 2014-04-30] (Microsoft Corporation) [File not signed]
S4 iphlpsvc; C:\Windows\System32\iphlpsvc.dll [903168 2014-03-18] (Microsoft Corporation) [File not signed]
S3 KeyIso; C:\Windows\system32\keyiso.dll [59392 2013-08-22] (Microsoft Corporation) [File not signed]
S3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [44032 2013-08-22] (Microsoft Corporation) [File not signed]
S3 KtmRm; C:\Windows\system32\msdtckrm.dll [357888 2013-08-22] (Microsoft Corporation) [File not signed]
R2 LanmanServer; C:\Windows\system32\srvsvc.dll [323072 2014-03-27] (Microsoft Corporation) [File not signed]
R2 LanmanWorkstation; C:\Windows\System32\wkssvc.dll [284160 2013-08-22] (Microsoft Corporation) [File not signed]
S3 lfsvc; C:\Windows\System32\GeofenceMonitorService.dll [491520 2014-03-14] (Microsoft Corporation) [File not signed]
S3 lfsvc; C:\Windows\SysWOW64\GeofenceMonitorService.dll [357376 2014-03-14] (Microsoft Corporation) [File not signed]
S4 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2585376 2015-04-26] (IObit) [File not signed]
S3 lltdsvc; C:\Windows\System32\lltdsvc.dll [269824 2013-08-22] (Microsoft Corporation) [File not signed]
R2 lmhosts; C:\Windows\System32\lmhsvc.dll [24576 2013-08-22] (Microsoft Corporation) [File not signed]
R2 LSM; C:\Windows\System32\lsm.dll [710656 2014-03-18] (Microsoft Corporation) [File not signed]
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation) [File not signed]
R2 MMCSS; C:\Windows\system32\mmcss.dll [70656 2013-08-22] (Microsoft Corporation) [File not signed]
R2 MpsSvc; C:\Windows\system32\mpssvc.dll [878080 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSDTC; C:\Windows\System32\msdtc.exe [142848 2013-08-22] (Microsoft Corporation) [File not signed]
S4 MSiSCSI; C:\Windows\system32\iscsiexe.dll [150528 2013-08-22] (Microsoft Corporation) [File not signed]
S3 msiserver; C:\Windows\System32\msiexec.exe [62464 2013-08-22] (Microsoft Corporation) [File not signed]
S3 msiserver; C:\Windows\SysWOW64\msiexec.exe [55808 2013-08-22] (Microsoft Corporation) [File not signed]
S4 MsKeyboardFilter; C:\Windows\System32\KeyboardFilterSvc.dll [90464 2014-03-18] (Microsoft Corporation) [File not signed]
S4 napagent; C:\Windows\system32\qagentRT.dll [435200 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NcaSvc; C:\Windows\System32\ncasvc.dll [164352 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NcbService; C:\Windows\System32\ncbservice.dll [151040 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NcdAutoSetup; C:\Windows\System32\NcdAutoSetup.dll [73728 2013-08-22] (Microsoft Corporation) [File not signed]
S4 Netlogon; C:\Windows\system32\netlogon.dll [834560 2014-03-06] (Microsoft Corporation) [File not signed]
S4 Netlogon; C:\Windows\SysWOW64\netlogon.dll [688640 2014-03-06] (Microsoft Corporation) [File not signed]
S3 Netman; C:\Windows\System32\netman.dll [254976 2013-08-22] (Microsoft Corporation) [File not signed]
S3 netprofm; C:\Windows\System32\netprofmsvc.dll [525312 2013-08-22] (Microsoft Corporation) [File not signed]
S4 NetTcpPortSharing; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [139856 2013-08-10] (Microsoft Corporation) [File not signed]
S2 NlaSvc; C:\Windows\System32\nlasvc.dll [387584 2013-08-22] (Microsoft Corporation) [File not signed]
R2 nsi; C:\Windows\system32\nsisvc.dll [29184 2013-08-22] (Microsoft Corporation) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1884304 2015-05-01] (NVIDIA Corporation) [File not signed]
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [22997648 2015-05-01] (NVIDIA Corporation) [File not signed]
R2 nvsvc; C:\Windows\system32\nvvsvc.exe [936264 2015-04-08] (NVIDIA Corporation) [File not signed]
S3 ose64; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [178824 2012-10-01] (Microsoft Corporation) [File not signed]
S3 p2pimsvc; C:\Windows\system32\pnrpsvc.dll [376320 2014-03-18] (Microsoft Corporation) [File not signed]
S3 p2psvc; C:\Windows\system32\p2psvc.dll [433664 2013-08-22] (Microsoft Corporation) [File not signed]
R2 PcaSvc; C:\Windows\System32\pcasvc.dll [471552 2014-03-18] (Microsoft Corporation) [File not signed]
S4 PeerDistSvc; C:\Windows\system32\peerdistsvc.dll [2176000 2014-03-18] (Microsoft Corporation) [File not signed]
S3 PerfHost; C:\Windows\SysWow64\perfhost.exe [21504 2013-08-22] (Microsoft Corporation) [File not signed]
S3 pla; C:\Windows\system32\pla.dll [1443840 2013-08-22] (Microsoft Corporation) [File not signed]
S3 pla; C:\Windows\SysWOW64\pla.dll [1477120 2013-08-22] (Microsoft Corporation) [File not signed]
R3 PlugPlay; C:\Windows\system32\umpnpmgr.dll [115200 2014-03-06] (Microsoft Corporation) [File not signed]
S3 PNRPAutoReg; C:\Windows\system32\pnrpauto.dll [25600 2013-08-22] (Microsoft Corporation) [File not signed]
S3 PNRPsvc; C:\Windows\system32\pnrpsvc.dll [376320 2014-03-18] (Microsoft Corporation) [File not signed]
R3 PolicyAgent; C:\Windows\System32\ipsecsvc.dll [403456 2013-08-22] (Microsoft Corporation) [File not signed]
R2 Power; C:\Windows\system32\umpo.dll [79360 2013-08-22] (Microsoft Corporation) [File not signed]
S3 PrintNotify; C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll [2899968 2013-08-22] (Microsoft Corporation) [File not signed]
R2 ProfSvc; C:\Windows\system32\profsvc.dll [220160 2014-03-04] (Microsoft Corporation) [File not signed]
S3 QWAVE; C:\Windows\system32\qwave.dll [297472 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasAuto; C:\Windows\System32\rasauto.dll [101376 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasMan; C:\Windows\System32\rasmans.dll [534528 2014-03-18] (Microsoft Corporation) [File not signed]
S4 RemoteAccess; C:\Windows\System32\mprdim.dll [223744 2013-08-22] (Microsoft Corporation) [File not signed]
S4 RemoteAccess; C:\Windows\SysWOW64\mprdim.dll [177664 2013-08-22] (Microsoft Corporation) [File not signed]
S4 RemoteRegistry; C:\Windows\system32\regsvc.dll [164864 2013-08-22] (Microsoft Corporation) [File not signed]
R2 RpcEptMapper; C:\Windows\System32\RpcEpMap.dll [79872 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RpcLocator; C:\Windows\system32\locator.exe [10240 2013-08-22] (Microsoft Corporation) [File not signed]
R2 RpcSs; C:\Windows\system32\rpcss.dll [753664 2014-03-18] (Microsoft Corporation) [File not signed]
R2 SamSs; C:\Windows\system32\lsass.exe [45008 2013-08-22] (Microsoft Corporation) [File not signed]
S2 SCardSvr; C:\Windows\System32\SCardSvr.dll [188416 2013-08-22] (Microsoft Corporation) [File not signed]
S3 ScDeviceEnum; C:\Windows\System32\ScDeviceEnum.dll [130560 2013-08-22] (Microsoft Corporation) [File not signed]
R2 Schedule; C:\Windows\system32\schedsvc.dll [1214976 2014-03-18] (Microsoft Corporation) [File not signed]
S3 SCPolicySvc; C:\Windows\System32\certprop.dll [155136 2013-08-22] (Microsoft Corporation) [File not signed]
S3 seclogon; C:\Windows\system32\seclogon.dll [30720 2013-08-22] (Microsoft Corporation) [File not signed]
R2 SENS; C:\Windows\System32\sens.dll [71680 2013-08-22] (Microsoft Corporation) [File not signed]
S3 SensrSvc; C:\Windows\system32\sensrsvc.dll [220672 2014-03-18] (Microsoft Corporation) [File not signed]
S3 SessionEnv; C:\Windows\system32\sessenv.dll [324096 2014-03-06] (Microsoft Corporation) [File not signed]
S3 SessionEnv; C:\Windows\SysWOW64\sessenv.dll [280576 2014-03-06] (Microsoft Corporation) [File not signed]
S3 SharedAccess; C:\Windows\System32\ipnathlp.dll [433664 2014-03-18] (Microsoft Corporation) [File not signed]
R2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [629760 2013-08-22] (Microsoft Corporation) [File not signed]
R2 ShellHWDetection; C:\Windows\SysWOW64\shsvcs.dll [564736 2013-08-22] (Microsoft Corporation) [File not signed]
S4 SkypeUpdate; C:\Program Files (x86)\Skype\Updater\Updater.exe [315008 2014-04-03] (Skype Technologies) [File not signed]
S3 smphost; C:\Windows\System32\smphost.dll [13312 2013-08-22] (Microsoft Corporation) [File not signed]
S3 smphost; C:\Windows\SysWOW64\smphost.dll [11776 2013-08-22] (Microsoft Corporation) [File not signed]
S4 SNMPTRAP; C:\Windows\System32\snmptrap.exe [14848 2013-08-22] (Microsoft Corporation) [File not signed]
S4 Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software) [File not signed]
R2 Spooler; C:\Windows\System32\spoolsv.exe [798208 2013-08-22] (Microsoft Corporation) [File not signed]
S2 sppsvc; C:\Windows\system32\sppsvc.exe [6353960 2014-03-18] (Microsoft Corporation) [File not signed]
R3 SSDPSRV; C:\Windows\System32\ssdpsrv.dll [239616 2013-08-22] (Microsoft Corporation) [File not signed]
S3 SstpSvc; C:\Windows\system32\sstpsvc.dll [144384 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [836288 2015-04-14] (Valve Corporation) [File not signed]
R2 stisvc; C:\Windows\System32\wiaservc.dll [634368 2013-08-22] (Microsoft Corporation) [File not signed]
S3 StorSvc; C:\Windows\system32\storsvc.dll [19968 2013-08-22] (Microsoft Corporation) [File not signed]
S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18944 2013-08-22] (Microsoft Corporation) [File not signed]
S3 svsvc; C:\Windows\system32\svsvc.dll [13312 2013-08-22] (Microsoft Corporation) [File not signed]
S4 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 swprv; C:\Windows\System32\swprv.dll [718336 2014-03-27] (Microsoft Corporation) [File not signed]
R2 SysMain; C:\Windows\system32\sysmain.dll [1192448 2014-03-18] (Microsoft Corporation) [File not signed]
R2 SystemEventsBroker; C:\Windows\System32\SystemEventsBrokerServer.dll [282112 2014-03-18] (Microsoft Corporation) [File not signed]
S3 TabletInputService; C:\Windows\System32\TabSvc.dll [147456 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TapiSrv; C:\Windows\System32\tapisrv.dll [306688 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TapiSrv; C:\Windows\SysWOW64\tapisrv.dll [248320 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TermService; C:\Windows\System32\termsrv.dll [1018880 2014-04-14] (Microsoft Corporation) [File not signed]
R2 Themes; C:\Windows\system32\themeservice.dll [50688 2013-08-22] (Microsoft Corporation) [File not signed]
S3 THREADORDER; C:\Windows\system32\mmcss.dll [70656 2013-08-22] (Microsoft Corporation) [File not signed]
R3 TimeBroker; C:\Windows\System32\TimeBrokerServer.dll [245760 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TrkWks; C:\Windows\System32\trkwks.dll [122368 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TrustedInstaller; C:\Windows\servicing\TrustedInstaller.exe [99840 2014-03-18] (Microsoft Corporation) [File not signed]
S3 UI0Detect; C:\Windows\system32\UI0Detect.exe [40960 2013-08-22] (Microsoft Corporation) [File not signed]
S3 UmRdpService; C:\Windows\System32\umrdp.dll [289280 2014-03-18] (Microsoft Corporation) [File not signed]
S3 upnphost; C:\Windows\System32\upnphost.dll [436224 2013-08-22] (Microsoft Corporation) [File not signed]
S3 upnphost; C:\Windows\SysWOW64\upnphost.dll [307200 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VaultSvc; C:\Windows\System32\vaultsvc.dll [248832 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vds; C:\Windows\System32\vds.exe [1283584 2014-03-18] (Microsoft Corporation) [File not signed]
S3 vmicguestinterface; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmicheartbeat; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmickvpexchange; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmicrdv; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmicshutdown; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmictimesync; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmicvss; C:\Windows\System32\ICSvc.dll [517120 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VSS; C:\Windows\system32\vssvc.exe [1436160 2014-03-27] (Microsoft Corporation) [File not signed]
S3 W32Time; C:\Windows\system32\w32time.dll [404480 2013-08-22] (Microsoft Corporation) [File not signed]
S3 wbengine; C:\Windows\system32\wbengine.exe [1543680 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WbioSrvc; C:\Windows\System32\wbiosrvc.dll [453632 2014-03-18] (Microsoft Corporation) [File not signed]
R2 Wcmsvc; C:\Windows\System32\wcmsvc.dll [366080 2014-03-18] (Microsoft Corporation) [File not signed]
S3 wcncsvc; C:\Windows\System32\wcncsvc.dll [459776 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WcsPlugInService; C:\Windows\System32\WcsPlugInService.dll [41984 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WcsPlugInService; C:\Windows\SysWOW64\WcsPlugInService.dll [34304 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WdiServiceHost; C:\Windows\system32\wdi.dll [91136 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WdiServiceHost; C:\Windows\SysWOW64\wdi.dll [80896 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WdiSystemHost; C:\Windows\system32\wdi.dll [91136 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WdiSystemHost; C:\Windows\SysWOW64\wdi.dll [80896 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347880 2014-03-24] (Microsoft Corporation) [File not signed]
S3 WebClient; C:\Windows\System32\webclnt.dll [226816 2014-04-09] (Microsoft Corporation) [File not signed]
S3 WebClient; C:\Windows\SysWOW64\webclnt.dll [198656 2014-04-09] (Microsoft Corporation) [File not signed]
S3 Wecsvc; C:\Windows\system32\wecsvc.dll [215040 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WEPHOSTSVC; C:\Windows\system32\wephostsvc.dll [24576 2013-08-22] (Microsoft Corporation) [File not signed]
S3 wercplsupport; C:\Windows\System32\wercplsupport.dll [81408 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WerSvc; C:\Windows\System32\WerSvc.dll [107008 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WiaRpc; C:\Windows\System32\wiarpc.dll [66048 2013-08-22] (Microsoft Corporation) [File not signed]
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2014-03-24] (Microsoft Corporation) [File not signed]
R3 WinHttpAutoProxySvc; C:\Windows\system32\winhttp.dll [786432 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WinHttpAutoProxySvc; C:\Windows\SysWOW64\winhttp.dll [589312 2013-08-22] (Microsoft Corporation) [File not signed]
R2 Winmgmt; C:\Windows\system32\wbem\WMIsvc.dll [220672 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WinRM; C:\Windows\system32\WsmSvc.dll [2479616 2014-03-06] (Microsoft Corporation) [File not signed]
S3 WinRM; C:\Windows\SysWOW64\WsmSvc.dll [2030080 2014-03-06] (Microsoft Corporation) [File not signed]
R2 WlanSvc; C:\Windows\System32\wlansvc.dll [1527296 2014-03-19] (Microsoft Corporation) [File not signed]
S3 wlidsvc; C:\Windows\system32\wlidsvc.dll [1576960 2014-03-18] (Microsoft Corporation) [File not signed]
S3 wmiApSrv; C:\Windows\system32\wbem\WmiApSrv.exe [195072 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WMPNetworkSvc; C:\Program Files\Windows Media Player\wmpnetwk.exe [1403392 2014-03-18] (Microsoft Corporation) [File not signed]
S3 workfolderssvc; C:\Windows\system32\workfolderssvc.dll [1584128 2014-04-03] (Microsoft Corporation) [File not signed]
S3 WPCSvc; C:\Windows\System32\wpcsvc.dll [12288 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WPCSvc; C:\Windows\SysWOW64\wpcsvc.dll [11264 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WPDBusEnum; C:\Windows\system32\wpdbusenum.dll [84480 2013-08-22] (Microsoft Corporation) [File not signed]
R2 wscsvc; C:\Windows\System32\wscsvc.dll [135168 2014-04-09] (Microsoft Corporation) [File not signed]
R2 WSearch; C:\Windows\system32\SearchIndexer.exe [845824 2014-03-18] (Microsoft Corporation) [File not signed]
R2 WSearch; C:\Windows\SysWOW64\SearchIndexer.exe [658432 2014-03-18] (Microsoft Corporation) [File not signed]
S3 WSService; C:\Windows\System32\WSService.dll [3394384 2014-03-18] (Microsoft Corporation) [File not signed]
R2 wuauserv; C:\Windows\system32\wuaueng.dll [3463680 2014-07-24] (Microsoft Corporation) [File not signed]
R3 wudfsvc; C:\Windows\System32\WUDFSvc.dll [99840 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WwanSvc; C:\Windows\System32\wwansvc.dll [510464 2013-08-22] (Microsoft Corporation) [File not signed]
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-02-25] (Atheros) [File not signed]
S2 AVGIDSAgent; No ImagePath
S2 avgwd; No ImagePath
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 1394ohci; C:\Windows\System32\drivers\1394ohci.sys [231424 2013-08-22] (Microsoft Corporation) [File not signed]
S0 3ware; C:\Windows\System32\drivers\3ware.sys [108896 2013-08-22] (LSI) [File not signed]
R0 ACPI; C:\Windows\System32\drivers\ACPI.sys [539992 2014-03-18] (Microsoft Corporation) [File not signed]
R0 acpiex; C:\Windows\System32\Drivers\acpiex.sys [79712 2013-08-22] (Microsoft Corporation) [File not signed]
S3 acpipagr; C:\Windows\System32\drivers\acpipagr.sys [10240 2013-08-22] (Microsoft Corporation) [File not signed]
S3 AcpiPmi; C:\Windows\System32\drivers\acpipmi.sys [12288 2013-08-22] (Microsoft Corporation) [File not signed]
S3 acpitime; C:\Windows\System32\drivers\acpitime.sys [10752 2013-08-22] (Microsoft Corporation) [File not signed]
S0 ADP80XX; C:\Windows\System32\drivers\ADP80XX.SYS [782176 2013-08-22] (PMC-Sierra) [File not signed]
R1 AFD; C:\Windows\system32\drivers\afd.sys [563200 2014-05-30] (Microsoft Corporation) [File not signed]
S0 agp440; C:\Windows\System32\drivers\agp440.sys [62304 2013-08-22] (Microsoft Corporation) [File not signed]
R1 ahcache; C:\Windows\System32\DRIVERS\ahcache.sys [76800 2013-08-22] (Microsoft Corporation) [File not signed]
R3 AiCharger; C:\Windows\system32\DRIVERS\AiCharger.sys [17152 2014-03-27] (ASUSTek Computer Inc.) [File not signed]
S3 AmdK8; C:\Windows\System32\drivers\amdk8.sys [95744 2013-08-22] (Microsoft Corporation) [File not signed]
S3 AmdPPM; C:\Windows\System32\drivers\amdppm.sys [98816 2013-08-22] (Microsoft Corporation) [File not signed]
S0 amdsata; C:\Windows\System32\drivers\amdsata.sys [79200 2013-08-22] (Advanced Micro Devices) [File not signed]
S0 amdsbs; C:\Windows\System32\drivers\amdsbs.sys [259424 2013-08-22] (AMD Technologies Inc.) [File not signed]
S0 amdxata; C:\Windows\System32\drivers\amdxata.sys [25952 2013-08-22] (Advanced Micro Devices) [File not signed]
S3 AppID; C:\Windows\system32\drivers\appid.sys [83456 2014-03-18] (Microsoft Corporation) [File not signed]
S0 arcsas; C:\Windows\System32\drivers\arcsas.sys [114016 2013-08-22] (PMC-Sierra, Inc.) [File not signed]
R2 ASMMAP64; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [15416 2009-07-02] (ASUS) [File not signed]
S3 AsyncMac; C:\Windows\system32\DRIVERS\asyncmac.sys [26624 2013-08-22] (Microsoft Corporation) [File not signed]
S0 atapi; C:\Windows\System32\drivers\atapi.sys [26464 2013-08-22] (Microsoft Corporation) [File not signed]
R3 AthBTPort; C:\Windows\system32\DRIVERS\btath_flt.sys [89800 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [3892224 2014-03-06] (Qualcomm Atheros Communications, Inc.) [File not signed]
R1 ATKWMIACPIIO; C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [19768 2013-07-02] (ASUSTek Computer Inc.) [File not signed]
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [69904 2014-03-31] (ASUS Corporation) [File not signed]
S3 avc3; C:\Windows\System32\DRIVERS\avc3.sys [727592 2015-01-06] (BitDefender) [File not signed]
R3 avchv; C:\Windows\system32\DRIVERS\avchv.sys [261496 2015-01-06] (BitDefender) [File not signed]
S3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [601360 2015-01-06] (BitDefender) [File not signed]
S0 Avgboota; C:\Windows\System32\DRIVERS\avgboota.sys [21152 2015-03-27] (AVG Technologies CZ, s.r.o.) [File not signed]
R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [162784 2015-03-11] (AVG Technologies CZ, s.r.o.) [File not signed]
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [284128 2015-04-09] (AVG Technologies CZ, s.r.o.) [File not signed]
R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [213984 2015-03-11] (AVG Technologies CZ, s.r.o.) [File not signed]
S1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [256992 2015-04-15] (AVG Technologies CZ, s.r.o.) [File not signed]
R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [344544 2015-03-11] (AVG Technologies CZ, s.r.o.) [File not signed]
R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [137184 2015-04-03] (AVG Technologies CZ, s.r.o.) [File not signed]
R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [40928 2015-03-20] (AVG Technologies CZ, s.r.o.) [File not signed]
R1 Avgwfpa; C:\Windows\system32\DRIVERS\avgwfpa.sys [293856 2015-04-07] (AVG Technologies CZ, s.r.o.) [File not signed]
S0 b06bdrv; C:\Windows\System32\drivers\bxvbda.sys [531296 2013-08-22] (Broadcom Corporation) [File not signed]
R1 BasicDisplay; C:\Windows\System32\drivers\BasicDisplay.sys [50688 2013-08-22] (Microsoft Corporation) [File not signed]
R1 BasicRender; C:\Windows\System32\drivers\BasicRender.sys [33280 2014-03-18] (Microsoft Corporation) [File not signed]
U5 BattC; C:\Windows\System32\Drivers\BattC.sys [35168 2013-08-22] (Microsoft Corporation) [File not signed]
S3 bcmfn2; C:\Windows\System32\drivers\bcmfn2.sys [17624 2013-08-13] (Windows ® Win 7 DDK provider) [File not signed]
R3 bowser; C:\Windows\System32\DRIVERS\bowser.sys [102912 2013-08-22] (Microsoft Corporation) [File not signed]
R3 BTATH_A2DP; C:\Windows\system32\drivers\btath_a2dp.sys [355528 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 btath_avdt; C:\Windows\system32\drivers\btath_avdt.sys [118984 2014-02-25] (Qualcomm Atheros) [File not signed]
R0 BTATH_BUS; C:\Windows\System32\drivers\btath_bus.sys [35016 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 BTATH_HCRP; C:\Windows\System32\drivers\btath_hcrp.sys [179432 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 BTATH_RCP; C:\Windows\System32\drivers\btath_rcp.sys [137928 2014-02-25] (Qualcomm Atheros) [File not signed]
R3 BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [598216 2014-02-25] (Qualcomm Atheros) [File not signed]
S3 BthAvrcpTg; C:\Windows\System32\drivers\BthAvrcpTg.sys [36992 2013-08-22] (Microsoft Corporation) [File not signed]
R3 BthEnum; C:\Windows\System32\drivers\BthEnum.sys [53248 2013-08-22] (Microsoft Corporation) [File not signed]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [57856 2013-08-22] (Microsoft Corporation) [File not signed]
S3 bthhfhid; C:\Windows\System32\drivers\BthHFHid.sys [30720 2013-08-22] (Microsoft Corporation) [File not signed]
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [226304 2014-03-18] (Microsoft Corporation) [File not signed]
S3 BTHMODEM; C:\Windows\System32\drivers\bthmodem.sys [64000 2014-03-18] (Microsoft Corporation) [File not signed]
R3 BthPan; C:\Windows\system32\DRIVERS\bthpan.sys [118272 2013-08-22] (Microsoft Corporation) [File not signed]
S3 BTHPORT; C:\Windows\System32\Drivers\BTHport.sys [1200128 2014-04-11] (Microsoft Corporation) [File not signed]
R3 BTHUSB; C:\Windows\System32\Drivers\BTHUSB.sys [81920 2014-03-18] (Microsoft Corporation) [File not signed]
S4 cdfs; C:\Windows\System32\DRIVERS\cdfs.sys [88576 2013-08-22] (Microsoft Corporation) [File not signed]
R1 cdrom; C:\Windows\System32\drivers\cdrom.sys [164352 2013-08-22] (Microsoft Corporation) [File not signed]
S3 circlass; C:\Windows\System32\drivers\circlass.sys [44032 2013-08-22] (Microsoft Corporation) [File not signed]
R0 CLFS; C:\Windows\System32\drivers\CLFS.sys [376152 2014-03-20] (Microsoft Corporation) [File not signed]
R3 CmBatt; C:\Windows\System32\drivers\CmBatt.sys [25472 2013-08-22] (Microsoft Corporation) [File not signed]
R0 CNG; C:\Windows\System32\Drivers\cng.sys [565576 2014-05-29] (Microsoft Corporation) [File not signed]
R3 CompositeBus; C:\Windows\System32\drivers\CompositeBus.sys [36352 2013-08-22] (Microsoft Corporation) [File not signed]
R3 condrv; C:\Windows\System32\drivers\condrv.sys [43008 2013-08-22] (Microsoft Corporation) [File not signed]
R1 CSC; C:\Windows\System32\drivers\csc.sys [559616 2014-03-18] (Microsoft Corporation) [File not signed]
S1 dam; C:\Windows\System32\drivers\dam.sys [57696 2013-08-22] (Microsoft Corporation) [File not signed]
R1 Dfsc; C:\Windows\System32\Drivers\dfsc.sys [134144 2014-03-06] (Microsoft Corporation) [File not signed]
R0 disk; C:\Windows\System32\drivers\disk.sys [100192 2013-08-22] (Microsoft Corporation) [File not signed]
S3 dmvsc; C:\Windows\System32\drivers\dmvsc.sys [29696 2013-08-22] (Microsoft Corporation) [File not signed]
R3 DptfDevDram; C:\Windows\system32\DRIVERS\DptfDevDram.sys [145640 2013-10-18] (Intel Corporation) [File not signed]
R3 DptfDevPch; C:\Windows\system32\DRIVERS\DptfDevPch.sys [116752 2013-10-18] (Intel Corporation) [File not signed]
R3 DptfDevProc; C:\Windows\system32\DRIVERS\DptfDevProc.sys [289744 2013-10-18] (Intel Corporation) [File not signed]
R3 DptfManager; C:\Windows\system32\DRIVERS\DptfManager.sys [494296 2013-10-18] (Intel Corporation) [File not signed]
S3 drmkaud; C:\Windows\system32\drivers\drmkaud.sys [14560 2013-08-22] (Microsoft Corporation) [File not signed]
R3 DXGKrnl; C:\Windows\System32\drivers\dxgkrnl.sys [1557848 2014-03-06] (Microsoft Corporation) [File not signed]
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation) [File not signed]
R0 EhStorClass; C:\Windows\System32\drivers\EhStorClass.sys [82784 2013-08-22] (Microsoft Corporation) [File not signed]
S0 EhStorTcgDrv; C:\Windows\System32\drivers\EhStorTcgDrv.sys [114016 2013-08-22] (Microsoft Corporation) [File not signed]
R1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [40344 2013-03-04] (Elaborate Bytes AG) [File not signed]
S3 ErrDev; C:\Windows\System32\drivers\errdev.sys [10240 2013-08-22] (Microsoft Corporation) [File not signed]
S3 exfat; C:\Windows\System32\Drivers\exfat.sys [200704 2013-08-22] (Microsoft Corporation) [File not signed]
S3 fastfat; C:\Windows\System32\Drivers\fastfat.sys [217952 2013-08-22] (Microsoft Corporation) [File not signed]
S3 fdc; C:\Windows\System32\drivers\fdc.sys [30720 2013-08-22] (Microsoft Corporation) [File not signed]
R0 FileInfo; C:\Windows\System32\drivers\fileinfo.sys [79192 2014-03-18] (Microsoft Corporation) [File not signed]
S3 Filetrace; C:\Windows\System32\drivers\filetrace.sys [34816 2013-08-22] (Microsoft Corporation) [File not signed]
S3 flpydisk; C:\Windows\System32\drivers\flpydisk.sys [25088 2013-08-22] (Microsoft Corporation) [File not signed]
R0 FltMgr; C:\Windows\System32\drivers\fltmgr.sys [360792 2014-04-06] (Microsoft Corporation) [File not signed]
S3 FsDepends; C:\Windows\System32\drivers\FsDepends.sys [56672 2013-08-22] (Microsoft Corporation) [File not signed]
R0 fvevol; C:\Windows\System32\DRIVERS\fvevol.sys [589656 2014-04-08] (Microsoft Corporation) [File not signed]
S3 FxPPM; C:\Windows\System32\drivers\fxppm.sys [27136 2013-08-22] (Microsoft Corporation) [File not signed]
S0 gagp30kx; C:\Windows\System32\drivers\gagp30kx.sys [65888 2013-08-22] (Microsoft Corporation) [File not signed]
S3 gencounter; C:\Windows\System32\drivers\vmgencounter.sys [11264 2013-08-22] (Microsoft Corporation) [File not signed]
S3 ggflt; C:\Windows\System32\drivers\ggflt.sys [16088 2015-03-10] (Sony Mobile Communications) [File not signed]
S3 ggsomc; C:\Windows\System32\drivers\ggsomc.sys [30424 2015-03-10] (Sony Mobile Communications) [File not signed]
S3 GPIOClx0101; C:\Windows\System32\Drivers\msgpioclx.sys [146776 2014-03-18] (Microsoft Corporation) [File not signed]
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45112 2014-12-13] (LogMeIn Inc.) [File not signed]
S3 HdAudAddService; C:\Windows\system32\drivers\HdAudio.sys [395776 2013-08-22] (Microsoft Corporation) [File not signed]
R3 HDAudBus; C:\Windows\System32\drivers\HDAudBus.sys [77312 2014-03-18] (Microsoft Corporation) [File not signed]
S3 HidBatt; C:\Windows\System32\drivers\HidBatt.sys [26624 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HidBth; C:\Windows\System32\drivers\hidbth.sys [96768 2013-08-22] (Microsoft Corporation) [File not signed]
S3 hidi2c; C:\Windows\System32\drivers\hidi2c.sys [41472 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HidIr; C:\Windows\System32\drivers\hidir.sys [45568 2013-08-22] (Microsoft Corporation) [File not signed]
R3 HIDSwitch; C:\Windows\System32\drivers\AsHIDSwitch64.sys [20280 2013-11-04] (ASUS) [File not signed]
R3 HidUsb; C:\Windows\System32\drivers\hidusb.sys [33280 2014-03-06] (Microsoft Corporation) [File not signed]
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [43664 2015-05-11] () [File not signed]
S0 HpSAMD; C:\Windows\System32\drivers\HpSAMD.sys [64352 2013-08-22] (Hewlett-Packard Company) [File not signed]
R3 HTTP; C:\Windows\System32\drivers\HTTP.sys [994136 2014-03-18] (Microsoft Corporation) [File not signed]
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-05-02] (REALiX™) [File not signed]
S0 hwpolicy; C:\Windows\System32\drivers\hwpolicy.sys [24416 2013-08-22] (Microsoft Corporation) [File not signed]
S3 hyperkbd; C:\Windows\System32\drivers\hyperkbd.sys [13824 2013-08-22] (Microsoft Corporation) [File not signed]
S3 HyperVideo; C:\Windows\system32\DRIVERS\HyperVideo.sys [22016 2013-08-22] (Microsoft Corporation) [File not signed]
R3 i8042prt; C:\Windows\System32\drivers\i8042prt.sys [107520 2013-08-22] (Microsoft Corporation) [File not signed]
S3 iaLPSSi_GPIO; C:\Windows\System32\drivers\iaLPSSi_GPIO.sys [24568 2013-07-30] (Intel Corporation) [File not signed]
S3 iaLPSSi_I2C; C:\Windows\System32\drivers\iaLPSSi_I2C.sys [99320 2013-07-25] (Intel Corporation) [File not signed]
R0 iaStorA; C:\Windows\System32\drivers\iaStorA.sys [644968 2013-08-09] (Intel Corporation) [File not signed]
S0 iaStorAV; C:\Windows\System32\drivers\iaStorAV.sys [651248 2013-08-10] (Intel Corporation) [File not signed]
S0 iaStorV; C:\Windows\System32\drivers\iaStorV.sys [412000 2013-08-22] (Intel Corporation) [File not signed]
R3 igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [3729920 2014-03-18] (Intel Corporation) [File not signed]
S3 intaud_WaveExtensible; C:\Windows\system32\drivers\intelaud.sys [38296 2014-03-01] (Intel Corporation) [File not signed]
R3 IntcAzAudAddService; C:\Windows\system32\drivers\RTKVHD64.sys [3932120 2014-04-15] (Realtek Semiconductor Corp.) [File not signed]
S3 IntcDAud; C:\Windows\system32\DRIVERS\IntcDAud.sys [450520 2014-03-17] (Intel® Corporation) [File not signed]
S0 intelide; C:\Windows\System32\drivers\intelide.sys [18272 2013-08-22] (Microsoft Corporation) [File not signed]
R0 intelpep; C:\Windows\System32\drivers\intelpep.sys [39768 2014-03-18] (Microsoft Corporation) [File not signed]
R3 intelppm; C:\Windows\System32\drivers\intelppm.sys [98816 2013-08-22] (Microsoft Corporation) [File not signed]
S3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [84992 2013-08-22] (Microsoft Corporation) [File not signed]
S3 IPMIDRV; C:\Windows\System32\drivers\IPMIDrv.sys [79360 2014-03-06] (Microsoft Corporation) [File not signed]
S3 IPNAT; C:\Windows\System32\drivers\ipnat.sys [142848 2014-03-18] (Microsoft Corporation) [File not signed]
S3 IRENUM; C:\Windows\System32\drivers\irenum.sys [17920 2013-08-22] (Microsoft Corporation) [File not signed]
S0 isapnp; C:\Windows\System32\drivers\isapnp.sys [21856 2013-08-22] (Microsoft Corporation) [File not signed]
S3 iScsiPrt; C:\Windows\System32\drivers\msiscsi.sys [275800 2014-04-06] (Microsoft Corporation) [File not signed]
R3 iwdbus; C:\Windows\System32\drivers\iwdbus.sys [27032 2014-03-01] (Intel Corporation) [File not signed]
R3 kbdclass; C:\Windows\System32\drivers\kbdclass.sys [58208 2013-08-22] (Microsoft Corporation) [File not signed]
R3 kbdhid; C:\Windows\System32\drivers\kbdhid.sys [32256 2013-08-22] (Microsoft Corporation) [File not signed]
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( ) [File not signed]
S3 kbldfltr; C:\Windows\System32\drivers\kbldfltr.sys [22272 2014-03-18] (Microsoft Corporation) [File not signed]
R3 kdnic; C:\Windows\system32\DRIVERS\kdnic.sys [19456 2013-08-22] (Microsoft Corporation) [File not signed]
R0 KSecDD; C:\Windows\System32\Drivers\ksecdd.sys [101208 2014-03-18] (Microsoft Corporation) [File not signed]
R0 KSecPkg; C:\Windows\System32\Drivers\ksecpkg.sys [180056 2014-03-08] (Microsoft Corporation) [File not signed]
R3 ksthunk; C:\Windows\system32\drivers\ksthunk.sys [21248 2013-08-22] (Microsoft Corporation) [File not signed]
R2 lltdio; C:\Windows\system32\DRIVERS\lltdio.sys [59392 2013-08-22] (Microsoft Corporation) [File not signed]
S0 LSI_SAS; C:\Windows\System32\drivers\lsi_sas.sys [109408 2013-08-22] (LSI Corporation) [File not signed]
S0 LSI_SAS2; C:\Windows\System32\drivers\lsi_sas2.sys [93536 2013-08-22] (LSI Corporation) [File not signed]
S0 LSI_SAS3; C:\Windows\System32\drivers\lsi_sas3.sys [81760 2013-08-22] (LSI Corporation) [File not signed]
S0 LSI_SSS; C:\Windows\System32\drivers\lsi_sss.sys [82784 2013-08-22] (LSI Corporation) [File not signed]
R2 luafv; C:\Windows\system32\drivers\luafv.sys [124416 2014-03-18] (Microsoft Corporation) [File not signed]
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation) [File not signed]
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation) [File not signed]
S0 megasas; C:\Windows\System32\drivers\megasas.sys [56672 2013-08-22] (LSI Corporation) [File not signed]
S0 megasr; C:\Windows\System32\drivers\megasr.sys [575840 2013-08-22] (LSI Corporation, Inc.) [File not signed]
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2014-07-17] (Intel Corporation) [File not signed]
S3 Modem; C:\Windows\System32\drivers\modem.sys [40960 2013-08-22] (Microsoft Corporation) [File not signed]
R3 monitor; C:\Windows\System32\drivers\monitor.sys [30208 2013-08-22] (Microsoft Corporation) [File not signed]
R3 mouclass; C:\Windows\System32\drivers\mouclass.sys [51040 2013-08-22] (Microsoft Corporation) [File not signed]
R3 mouhid; C:\Windows\System32\drivers\mouhid.sys [30208 2013-08-22] (Microsoft Corporation) [File not signed]
R0 mountmgr; C:\Windows\System32\drivers\mountmgr.sys [101728 2013-08-22] (Microsoft Corporation) [File not signed]
R3 mpsdrv; C:\Windows\System32\drivers\mpsdrv.sys [74240 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MRxDAV; C:\Windows\system32\drivers\mrxdav.sys [140288 2014-03-06] (Microsoft Corporation) [File not signed]
R3 mrxsmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [402432 2014-04-30] (Microsoft Corporation) [File not signed]
R2 mrxsmb10; C:\Windows\System32\DRIVERS\mrxsmb10.sys [283648 2014-03-06] (Microsoft Corporation) [File not signed]
R3 mrxsmb20; C:\Windows\System32\DRIVERS\mrxsmb20.sys [206848 2014-05-31] (Microsoft Corporation) [File not signed]
S3 MsBridge; C:\Windows\system32\DRIVERS\bridge.sys [115712 2013-08-22] (Microsoft Corporation) [File not signed]
S3 msgpiowin32; C:\Windows\System32\drivers\msgpiowin32.sys [41824 2013-08-22] (Microsoft Corporation) [File not signed]
S3 mshidkmdf; C:\Windows\System32\drivers\mshidkmdf.sys [8192 2013-08-22] (Microsoft Corporation) [File not signed]
S3 mshidumdf; C:\Windows\System32\drivers\mshidumdf.sys [9728 2013-08-22] (Microsoft Corporation) [File not signed]
R0 msisadrv; C:\Windows\System32\drivers\msisadrv.sys [17248 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSKSSRV; C:\Windows\system32\drivers\MSKSSRV.sys [10624 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MsLldp; C:\Windows\system32\DRIVERS\mslldp.sys [66560 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSPCLOCK; C:\Windows\system32\drivers\MSPCLOCK.sys [7040 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSPQM; C:\Windows\system32\drivers\MSPQM.sys [6784 2013-08-22] (Microsoft Corporation) [File not signed]
R1 mssmbios; C:\Windows\System32\drivers\mssmbios.sys [37728 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MSTEE; C:\Windows\system32\drivers\MSTEE.sys [7936 2013-08-22] (Microsoft Corporation) [File not signed]
S3 MTConfig; C:\Windows\System32\drivers\MTConfig.sys [13312 2013-08-22] (Microsoft Corporation) [File not signed]
R0 Mup; C:\Windows\System32\Drivers\mup.sys [78688 2013-08-22] (Microsoft Corporation) [File not signed]
S0 mvumis; C:\Windows\System32\drivers\mvumis.sys [63840 2013-08-22] (Marvell Semiconductor, Inc.) [File not signed]
R3 NativeWifiP; C:\Windows\system32\DRIVERS\nwifi.sys [443904 2014-03-19] (Microsoft Corporation) [File not signed]
R0 NDIS; C:\Windows\System32\drivers\ndis.sys [1118552 2014-03-18] (Microsoft Corporation) [File not signed]
S3 NdisCap; C:\Windows\system32\DRIVERS\ndiscap.sys [43008 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NdisImPlatform; C:\Windows\system32\DRIVERS\NdisImPlatform.sys [124928 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NdisTapi; C:\Windows\system32\DRIVERS\ndistapi.sys [24576 2013-08-22] (Microsoft Corporation) [File not signed]
R3 Ndisuio; C:\Windows\system32\DRIVERS\ndisuio.sys [60416 2013-08-22] (Microsoft Corporation) [File not signed]
R3 NdisVirtualBus; C:\Windows\System32\drivers\NdisVirtualBus.sys [16384 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NdisWan; C:\Windows\system32\DRIVERS\ndiswan.sys [220672 2013-08-22] (Microsoft Corporation) [File not signed]
S3 NdisWanLegacy; C:\Windows\system32\DRIVERS\ndiswan.sys [220672 2013-08-22] (Microsoft Corporation) [File not signed]
R2 Ndu; C:\Windows\System32\drivers\Ndu.sys [103424 2013-08-22] (Microsoft Corporation) [File not signed]
R1 NetBIOS; C:\Windows\System32\DRIVERS\netbios.sys [48128 2013-08-22] (Microsoft Corporation) [File not signed]
R1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [282624 2013-08-22] (Microsoft Corporation) [File not signed]
S3 netvsc; C:\Windows\system32\DRIVERS\netvsc63.sys [87040 2013-08-22] (Microsoft Corporation) [File not signed]
R1 npsvctrig; C:\Windows\System32\drivers\npsvctrig.sys [23040 2013-08-22] (Microsoft Corporation) [File not signed]
R1 nsiproxy; C:\Windows\System32\drivers\nsiproxy.sys [39936 2013-08-22] (Microsoft Corporation) [File not signed]
R1 Null; C:\Windows\System32\Drivers\Null.sys [5632 2013-08-22] (Microsoft Corporation) [File not signed]
R3 nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [10423952 2015-04-09] (NVIDIA Corporation) [File not signed]
S0 nvraid; C:\Windows\System32\drivers\nvraid.sys [150368 2013-08-22] (NVIDIA Corporation) [File not signed]
S0 nvstor; C:\Windows\System32\drivers\nvstor.sys [168288 2013-08-22] (NVIDIA Corporation) [File not signed]
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-05-01] (NVIDIA Corporation) [File not signed]
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2014-11-22] (NVIDIA Corporation) [File not signed]
S0 nv_agp; C:\Windows\System32\drivers\nv_agp.sys [124768 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Parport; C:\Windows\System32\drivers\parport.sys [94208 2013-08-22] (Microsoft Corporation) [File not signed]
R0 partmgr; C:\Windows\System32\drivers\partmgr.sys [88928 2013-08-22] (Microsoft Corporation) [File not signed]
R0 pci; C:\Windows\System32\drivers\pci.sys [280920 2014-03-18] (Microsoft Corporation) [File not signed]
S0 pciide; C:\Windows\System32\drivers\pciide.sys [14688 2013-08-22] (Microsoft Corporation) [File not signed]
S0 pcmcia; C:\Windows\System32\drivers\pcmcia.sys [114528 2013-08-22] (Microsoft Corporation) [File not signed]
R0 pcw; C:\Windows\System32\drivers\pcw.sys [50016 2013-08-22] (Microsoft Corporation) [File not signed]
R0 pdc; C:\Windows\System32\drivers\pdc.sys [86872 2014-03-18] (Microsoft Corporation) [File not signed]
R2 PEAUTH; C:\Windows\System32\drivers\peauth.sys [663040 2014-03-18] (Microsoft Corporation) [File not signed]
R2 plctrl; C:\Program Files\ASUS\P4G\plctrl.sys [14136 2014-01-03] (Windows ® Win 7 DDK provider) [File not signed]
S3 pneteth; C:\Windows\system32\DRIVERS\pneteth.sys [15360 2011-11-25] (June Fabrics Technology Inc.) [File not signed]
S3 PptpMiniport; C:\Windows\system32\DRIVERS\raspptp.sys [107520 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Processor; C:\Windows\System32\drivers\processr.sys [92160 2013-08-22] (Microsoft Corporation) [File not signed]
R1 Psched; C:\Windows\system32\DRIVERS\pacer.sys [151552 2013-08-22] (Microsoft Corporation) [File not signed]
S3 QWAVEdrv; C:\Windows\system32\drivers\qwavedrv.sys [47104 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasAcd; C:\Windows\System32\DRIVERS\rasacd.sys [17408 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasAgileVpn; C:\Windows\system32\DRIVERS\AgileVpn.sys [96768 2014-04-30] (Microsoft Corporation) [File not signed]
S3 Rasl2tp; C:\Windows\system32\DRIVERS\rasl2tp.sys [120832 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasPppoe; C:\Windows\system32\DRIVERS\raspppoe.sys [84992 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RasSstp; C:\Windows\system32\DRIVERS\rassstp.sys [96256 2013-08-22] (Microsoft Corporation) [File not signed]
R1 rdbss; C:\Windows\System32\DRIVERS\rdbss.sys [408576 2014-03-18] (Microsoft Corporation) [File not signed]
R3 rdpbus; C:\Windows\System32\drivers\rdpbus.sys [22528 2013-08-22] (Microsoft Corporation) [File not signed]
S3 RDPDR; C:\Windows\System32\drivers\rdpdr.sys [195584 2014-03-18] (Microsoft Corporation) [File not signed]
S3 RdpVideoMiniport; C:\Windows\System32\drivers\rdpvideominiport.sys [27488 2014-03-18] (Microsoft Corporation) [File not signed]
R0 rdyboost; C:\Windows\System32\drivers\rdyboost.sys [249688 2014-03-18] (Microsoft Corporation) [File not signed]
R3 RFCOMM; C:\Windows\system32\DRIVERS\rfcomm.sys [167424 2014-03-18] (Microsoft Corporation) [File not signed]
R2 rspndr; C:\Windows\system32\DRIVERS\rspndr.sys [80384 2013-08-22] (Microsoft Corporation) [File not signed]
R3 RTL8168; C:\Windows\system32\DRIVERS\Rt630x64.sys [871640 2014-07-17] (Realtek                                            ) [File not signed]
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [423128 2014-07-18] (Realsil Semiconductor Corporation) [File not signed]
S3 s3cap; C:\Windows\System32\drivers\vms3cap.sys [7168 2013-08-22] (Microsoft Corporation) [File not signed]
S0 sbp2port; C:\Windows\System32\drivers\sbp2port.sys [107872 2013-08-22] (Microsoft Corporation) [File not signed]
S3 scfilter; C:\Windows\System32\DRIVERS\scfilter.sys [40960 2013-08-22] (Microsoft Corporation) [File not signed]
S3 sdbus; C:\Windows\System32\drivers\sdbus.sys [236888 2014-03-18] (Microsoft Corporation) [File not signed]
S3 sdstor; C:\Windows\System32\drivers\sdstor.sys [79192 2014-03-18] (Microsoft Corporation) [File not signed]
S3 SerCx; C:\Windows\System32\drivers\SerCx.sys [69472 2013-08-22] (Microsoft Corporation) [File not signed]
S3 SerCx2; C:\Windows\System32\drivers\SerCx2.sys [146776 2014-03-18] (Microsoft Corporation) [File not signed]
S3 Serenum; C:\Windows\System32\drivers\serenum.sys [23040 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Serial; C:\Windows\System32\drivers\serial.sys [83456 2013-08-22] (Microsoft Corporation) [File not signed]
S3 sermouse; C:\Windows\System32\drivers\sermouse.sys [26112 2013-08-22] (Microsoft Corporation) [File not signed]
S3 sfloppy; C:\Windows\System32\drivers\sfloppy.sys [17408 2013-08-22] (Microsoft Corporation) [File not signed]
S0 SiSRaid2; C:\Windows\System32\drivers\SiSRaid2.sys [44896 2013-08-22] (Silicon Integrated Systems Corp.) [File not signed]
S0 SiSRaid4; C:\Windows\System32\drivers\sisraid4.sys [81760 2013-08-22] (Silicon Integrated Systems) [File not signed]
R0 spaceport; C:\Windows\System32\drivers\spaceport.sys [384856 2014-04-01] (Microsoft Corporation) [File not signed]
S3 SpbCx; C:\Windows\System32\drivers\SpbCx.sys [72032 2013-08-22] (Microsoft Corporation) [File not signed]
R2 srv; C:\Windows\System32\DRIVERS\srv.sys [454656 2014-03-18] (Microsoft Corporation) [File not signed]
R3 srv2; C:\Windows\System32\DRIVERS\srv2.sys [677376 2014-04-03] (Microsoft Corporation) [File not signed]
R3 srvnet; C:\Windows\System32\DRIVERS\srvnet.sys [246272 2014-03-27] (Microsoft Corporation) [File not signed]
S0 stexstor; C:\Windows\System32\drivers\stexstor.sys [31072 2013-08-22] (Promise Technology, Inc.) [File not signed]
S0 storahci; C:\Windows\System32\drivers\storahci.sys [107872 2013-08-22] (Microsoft Corporation) [File not signed]
S0 storflt; C:\Windows\System32\DRIVERS\vmstorfl.sys [49984 2013-08-22] (Microsoft Corporation) [File not signed]
S0 stornvme; C:\Windows\System32\drivers\stornvme.sys [57176 2014-03-18] (Microsoft Corporation) [File not signed]
S0 storvsc; C:\Windows\System32\drivers\storvsc.sys [45888 2013-08-22] (Microsoft Corporation) [File not signed]
S3 storvsp; C:\Windows\System32\drivers\storvsp.sys [68608 2014-03-18] (Microsoft Corporation) [File not signed]
R3 swenum; C:\Windows\System32\drivers\swenum.sys [14176 2013-08-22] (Microsoft Corporation) [File not signed]
S3 tap0901; C:\Windows\system32\DRIVERS\tap0901.sys [40664 2013-08-22] (The OpenVPN Project) [File not signed]
R0 Tcpip; C:\Windows\System32\drivers\tcpip.sys [2518360 2014-05-27] (Microsoft Corporation) [File not signed]
S3 TCPIP6; C:\Windows\system32\DRIVERS\tcpip.sys [2518360 2014-05-27] (Microsoft Corporation) [File not signed]
R2 tcpipreg; C:\Windows\System32\drivers\tcpipreg.sys [49152 2014-03-06] (Microsoft Corporation) [File not signed]
R1 tdx; C:\Windows\system32\DRIVERS\tdx.sys [107520 2013-08-22] (Microsoft Corporation) [File not signed]
S3 terminpt; C:\Windows\System32\drivers\terminpt.sys [37216 2014-03-18] (Microsoft Corporation) [File not signed]
S3 TPM; C:\Windows\system32\drivers\tpm.sys [159584 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TsUsbFlt; C:\Windows\System32\drivers\tsusbflt.sys [56320 2013-08-22] (Microsoft Corporation) [File not signed]
S3 TsUsbGD; C:\Windows\System32\drivers\TsUsbGD.sys [29696 2013-08-22] (Microsoft Corporation) [File not signed]
S3 tunnel; C:\Windows\system32\DRIVERS\tunnel.sys [154112 2013-08-22] (Microsoft Corporation) [File not signed]
S0 uagp35; C:\Windows\System32\drivers\uagp35.sys [64864 2013-08-22] (Microsoft Corporation) [File not signed]
S3 UASPStor; C:\Windows\System32\drivers\uaspstor.sys [74080 2013-08-22] (Microsoft Corporation) [File not signed]
R3 UCX01000; C:\Windows\System32\drivers\ucx01000.sys [189784 2014-03-18] (Microsoft Corporation) [File not signed]
S4 udfs; C:\Windows\System32\DRIVERS\udfs.sys [316928 2013-08-22] (Microsoft Corporation) [File not signed]
S3 UEFI; C:\Windows\System32\drivers\UEFI.sys [26976 2013-08-22] (Microsoft Corporation) [File not signed]
S0 uliagpkx; C:\Windows\System32\drivers\uliagpkx.sys [65888 2013-08-22] (Microsoft Corporation) [File not signed]
R3 umbus; C:\Windows\System32\drivers\umbus.sys [46080 2013-08-22] (Microsoft Corporation) [File not signed]
S3 UmPass; C:\Windows\System32\drivers\umpass.sys [11776 2013-08-22] (Microsoft Corporation) [File not signed]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] () [File not signed]
R3 usbccgp; C:\Windows\System32\drivers\usbccgp.sys [155480 2014-03-18] (Microsoft Corporation) [File not signed]
S3 usbcir; C:\Windows\System32\drivers\usbcir.sys [98304 2013-08-22] (Microsoft Corporation) [File not signed]
R3 usbehci; C:\Windows\System32\drivers\usbehci.sys [89944 2014-05-31] (Microsoft Corporation) [File not signed]
R3 usbhub; C:\Windows\System32\drivers\usbhub.sys [419672 2014-05-31] (Microsoft Corporation) [File not signed]
R3 USBHUB3; C:\Windows\System32\drivers\UsbHub3.sys [467800 2014-05-31] (Microsoft Corporation) [File not signed]
S3 usbohci; C:\Windows\System32\drivers\usbohci.sys [30208 2013-08-22] (Microsoft Corporation) [File not signed]
S3 usbprint; C:\Windows\System32\drivers\usbprint.sys [26112 2013-08-22] (Microsoft Corporation) [File not signed]
S3 usbser; C:\Windows\system32\DRIVERS\usbser.sys [33280 2013-08-22] (Microsoft Corporation) [File not signed]
S3 USBSTOR; C:\Windows\System32\drivers\USBSTOR.SYS [148824 2014-03-18] (Microsoft Corporation) [File not signed]
S3 usbuhci; C:\Windows\System32\drivers\usbuhci.sys [37376 2014-05-31] (Microsoft Corporation) [File not signed]
R3 usbvideo; C:\Windows\System32\Drivers\usbvideo.sys [212224 2013-08-22] (Microsoft Corporation) [File not signed]
R3 USBXHCI; C:\Windows\System32\drivers\USBXHCI.SYS [325464 2014-03-18] (Microsoft Corporation) [File not signed]
S3 usb_rndisx; C:\Windows\system32\DRIVERS\usb8023x.sys [20992 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [141440 2015-03-02] (Oracle Corporation) [File not signed]
R3 VClone; C:\Windows\System32\drivers\VClone.sys [34816 2013-07-24] (Elaborate Bytes AG) [File not signed]
R0 vdrvroot; C:\Windows\System32\drivers\vdrvroot.sys [37728 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VerifierExt; C:\Windows\System32\drivers\VerifierExt.sys [175960 2014-03-18] (Microsoft Corporation) [File not signed]
S3 vhdmp; C:\Windows\System32\drivers\vhdmp.sys [551256 2014-03-18] (Microsoft Corporation) [File not signed]
S0 viaide; C:\Windows\System32\drivers\viaide.sys [19808 2013-08-22] (VIA Technologies, Inc.) [File not signed]
S3 Vid; C:\Windows\System32\drivers\Vid.sys [220672 2014-03-18] (Microsoft Corporation) [File not signed]
S0 vmbus; C:\Windows\System32\drivers\vmbus.sys [97088 2013-08-22] (Microsoft Corporation) [File not signed]
S3 VMBusHID; C:\Windows\System32\drivers\VMBusHID.sys [21760 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vmbusr; C:\Windows\System32\drivers\vmbusr.sys [129536 2014-03-18] (Microsoft Corporation) [File not signed]
R0 volmgr; C:\Windows\System32\drivers\volmgr.sys [73568 2013-08-22] (Microsoft Corporation) [File not signed]
R0 volmgrx; C:\Windows\System32\drivers\volmgrx.sys [377696 2013-08-22] (Microsoft Corporation) [File not signed]
R0 volsnap; C:\Windows\System32\drivers\volsnap.sys [310616 2014-03-06] (Microsoft Corporation) [File not signed]
S3 vpci; C:\Windows\System32\drivers\vpci.sys [69472 2013-08-22] (Microsoft Corporation) [File not signed]
S3 vpcivsp; C:\Windows\System32\drivers\vpcivsp.sys [65536 2014-03-18] (Microsoft Corporation) [File not signed]
S0 vsmraid; C:\Windows\System32\drivers\vsmraid.sys [168800 2013-08-22] (VIA Technologies Inc.,Ltd) [File not signed]
S0 VSTXRAID; C:\Windows\System32\drivers\vstxraid.sys [305504 2013-08-22] (VIA Corporation) [File not signed]
R3 vwifibus; C:\Windows\System32\drivers\vwifibus.sys [24576 2013-08-22] (Microsoft Corporation) [File not signed]
R1 vwififlt; C:\Windows\system32\DRIVERS\vwififlt.sys [71680 2014-04-30] (Microsoft Corporation) [File not signed]
R3 vwifimp; C:\Windows\system32\DRIVERS\vwifimp.sys [38912 2014-04-30] (Microsoft Corporation) [File not signed]
S3 WacomPen; C:\Windows\System32\drivers\wacompen.sys [26752 2013-08-22] (Microsoft Corporation) [File not signed]
S3 Wanarp; C:\Windows\system32\DRIVERS\wanarp.sys [79872 2013-08-22] (Microsoft Corporation) [File not signed]
R1 Wanarpv6; C:\Windows\system32\DRIVERS\wanarp.sys [79872 2013-08-22] (Microsoft Corporation) [File not signed]
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [35856 2014-03-24] (Microsoft Corporation) [File not signed]
R0 Wdf01000; C:\Windows\System32\drivers\Wdf01000.sys [839488 2013-08-22] (Microsoft Corporation) [File not signed]
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [257880 2014-03-24] (Microsoft Corporation) [File not signed]
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [123224 2014-03-24] (Microsoft Corporation) [File not signed]
R0 WFPLWFS; C:\Windows\System32\DRIVERS\wfplwfs.sys [136024 2014-03-08] (Microsoft Corporation) [File not signed]
S3 WIMMount; C:\Windows\System32\drivers\wimmount.sys [33632 2013-08-22] (Microsoft Corporation) [File not signed]
S3 WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [78848 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WmiAcpi; C:\Windows\System32\drivers\wmiacpi.sys [16384 2013-08-22] (Microsoft Corporation) [File not signed]
S3 wpcfltr; C:\Windows\System32\DRIVERS\wpcfltr.sys [55328 2014-07-24] (Microsoft Corporation) [File not signed]
S3 WpdUpFltr; C:\Windows\System32\drivers\WpdUpFltr.sys [26976 2013-08-22] (Microsoft Corporation) [File not signed]
S4 ws2ifsl; C:\Windows\system32\drivers\ws2ifsl.sys [21504 2013-08-22] (Microsoft Corporation) [File not signed]
R3 WudfPf; C:\Windows\System32\drivers\WudfPf.sys [110592 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WUDFRd; C:\Windows\System32\drivers\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WUDFSensorLP; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WUDFWpdFs; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation) [File not signed]
S3 WUDFWpdMtp; C:\Windows\system32\DRIVERS\WUDFRd.sys [227840 2014-05-31] (Microsoft Corporation) [File not signed]
S1 BAPIDRV; system32\DRIVERS\BAPIDRV64.sys [X]
S3 cpuz137; \??\C:\Users\Tony1604\AppData\Local\Temp\cpuz137\cpuz137_x64.sys [X]
S3 SzCCID; \SystemRoot\system32\DRIVERS\SzCCID.sys [X]
S3 VBoxNetFlt; \SystemRoot\system32\DRIVERS\VBoxNetFlt.sys [X]
S3 vpnva; \SystemRoot\system32\DRIVERS\vpnva64-6.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-05-13 20:05 - 2015-05-13 20:06 - 00074474 _____ () C:\Users\Tony1604\Desktop\Main.txt
2015-05-13 19:58 - 2015-05-13 19:58 - 02104832 _____ (Farbar) C:\Users\Tony1604\Desktop\FRST64.exe
2015-05-13 19:58 - 2015-05-13 19:58 - 00000000 ____D () C:\Users\Tony1604\Desktop\FRST-OlderVersion
2015-05-13 19:53 - 2015-05-13 19:53 - 00005538 _____ () C:\Users\Tony1604\Downloads\Cryptographic_Services.reg
2015-05-13 13:09 - 2015-05-13 13:09 - 00003106 _____ () C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1128951351-2712326424-2671060717-1001
2015-05-12 15:13 - 2015-05-12 18:05 - 00000000 ____D () C:\Users\Tony1604\Downloads\Grand.Theft.Auto.V-RELOADED
2015-05-12 15:09 - 2015-05-12 15:09 - 00002412 _____ () C:\Windows\System32\Tasks\Uninstaller_SkipUac_Tony1604
2015-05-12 15:09 - 2015-05-12 15:09 - 00000306 _____ () C:\Windows\Tasks\Uninstaller_SkipUac_Tony1604.job
2015-05-11 23:51 - 2015-05-11 23:51 - 00009964 _____ () C:\Users\Tony1604\Desktop\Praksa.xlsx
2015-05-11 21:25 - 2015-05-11 21:34 - 00000000 ____D () C:\Users\Tony1604\Desktop\271590
2015-05-11 12:48 - 2015-05-11 12:48 - 00043664 _____ () C:\Windows\system32\Drivers\hitmanpro37.sys
2015-05-11 12:47 - 2015-05-11 12:47 - 00004610 _____ () C:\Windows\system32\.crusader
2015-05-11 12:37 - 2015-05-11 12:47 - 00000000 ____D () C:\ProgramData\HitmanPro
2015-05-11 12:35 - 2015-05-11 12:35 - 00001010 _____ () C:\Users\Tony1604\Desktop\Fallout New Vegas.lnk
2015-05-11 12:35 - 2015-05-11 12:35 - 00001007 _____ () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-05-11 12:33 - 2015-05-11 12:35 - 00000000 ____D () C:\AdwCleaner
2015-05-11 11:44 - 2015-05-13 19:58 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-05-11 11:43 - 2015-05-11 11:43 - 00001134 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-05-11 11:43 - 2015-05-11 11:43 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Unlocker
2015-05-11 11:43 - 2015-05-11 11:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-05-11 11:43 - 2015-05-11 11:43 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-05-11 11:43 - 2015-05-11 11:43 - 00000000 ____D () C:\Program Files\Unlocker
2015-05-11 11:43 - 2015-05-11 11:43 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-05-11 11:43 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-05-11 11:43 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-05-11 11:43 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-05-11 01:39 - 2015-05-13 20:05 - 00000000 ____D () C:\FRST
2015-05-11 01:17 - 2015-05-11 01:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-05-11 01:17 - 2015-05-01 18:51 - 01316184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2015-05-11 01:17 - 2015-05-01 18:51 - 01316000 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2015-05-11 01:17 - 2015-05-01 18:50 - 01756424 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2015-05-11 01:17 - 2015-05-01 18:50 - 01570672 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2015-05-11 01:17 - 2014-11-22 12:46 - 00038032 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2015-05-11 01:17 - 2014-11-22 12:46 - 00035472 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2015-05-11 01:17 - 2014-11-22 12:46 - 00032400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2015-05-11 01:16 - 2015-05-12 13:59 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\NVIDIA
2015-05-11 01:13 - 2015-04-09 02:58 - 31570064 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 30397072 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 25375048 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 24053576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 17176128 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 15818528 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 15716232 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 14617288 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 14006752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 12852784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 12689592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 11380728 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 10423952 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2015-05-11 01:13 - 2015-04-09 02:58 - 03317344 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 02935416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 02896528 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 02573456 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 01895568 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6435012.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6435012.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 01047368 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 01037640 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00970568 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00962192 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00499344 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00402576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00390472 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00346256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00175880 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00154256 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2015-05-11 01:13 - 2015-04-09 02:58 - 00029329 _____ () C:\Windows\system32\nvinfo.pb
2015-05-11 00:40 - 2015-05-11 00:40 - 00001740 __RSH () C:\ProgramData\ntuser.pol
2015-05-11 00:15 - 2015-05-11 00:15 - 00000000 _____ () C:\Windows\system32\sfcdetails.txt
2015-05-10 23:04 - 2015-05-11 12:58 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\mIRC
2015-05-10 23:04 - 2015-05-10 23:04 - 00000967 _____ () C:\Users\Public\Desktop\mIRC.lnk
2015-05-10 23:04 - 2015-05-10 23:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\mIRC
2015-05-10 23:04 - 2015-05-10 23:04 - 00000000 ____D () C:\Program Files (x86)\mIRC
2015-05-10 21:56 - 2015-05-11 01:16 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-05-10 21:56 - 2015-04-08 23:30 - 06841488 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 03478344 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 01047696 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 00936264 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-05-10 21:56 - 2015-04-08 23:30 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 00075080 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2015-05-10 21:56 - 2015-04-08 23:30 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-05-10 21:56 - 2015-04-08 19:52 - 04336074 _____ () C:\Windows\system32\nvcoproc.bin
2015-05-10 21:36 - 2015-05-10 23:03 - 00000000 ____D () C:\NvidiaLogging
2015-05-10 21:31 - 2015-05-11 01:17 - 00000103 _____ () C:\Windows\setupact.log
2015-05-10 21:31 - 2015-05-10 21:31 - 00000000 _____ () C:\Windows\setuperr.log
2015-05-05 22:56 - 2015-05-13 00:35 - 00000000 _____ () C:\Recovery.txt
2015-05-05 22:56 - 2015-05-05 22:56 - 00000000 __SHD () C:\Recovery
2015-05-05 13:04 - 2015-05-05 13:04 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\TuneUp Software
2015-05-05 12:38 - 2015-05-05 12:38 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Apps\2.0
2015-05-05 10:16 - 2015-05-05 10:16 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\AVG2015
2015-05-05 10:12 - 2015-05-05 10:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-05-05 10:06 - 2015-05-05 10:06 - 00001760 _____ () C:\Users\Tony1604\Desktop\IObit Uninstaller.lnk
2015-05-05 10:00 - 2015-05-05 10:37 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Avg2015
2015-05-03 11:24 - 2015-05-03 11:24 - 00000000 ____D () C:\04ee0def8bac2efda312672267
2015-05-03 11:03 - 2015-05-03 11:03 - 00000000 ____D () C:\Users\Tony1604\Tracing
2015-05-03 11:02 - 2015-05-03 11:02 - 00000000 ____D () C:\Windows\en
2015-05-03 11:01 - 2015-05-03 11:01 - 00002506 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Messenger.lnk
2015-05-03 11:01 - 2015-05-03 11:01 - 00001478 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live Mail.lnk
2015-05-03 11:01 - 2015-05-03 11:01 - 00001404 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2015-05-03 11:01 - 2015-05-03 11:01 - 00001331 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2015-05-03 11:01 - 2015-05-03 11:01 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-05-03 11:01 - 2015-05-03 11:01 - 00000000 ____D () C:\Program Files\Windows Live
2015-05-03 11:01 - 2015-05-03 11:01 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2015-05-03 10:59 - 2015-05-12 14:10 - 00000769 _____ () C:\Windows\DirectX.log
2015-05-03 10:59 - 2015-05-03 10:59 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2015-05-03 10:58 - 2015-05-03 11:03 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Windows Live
2015-05-03 10:57 - 2015-05-03 10:57 - 00000000 ____D () C:\fc7b9e2c3f4ba3c46771754f40
2015-05-03 10:38 - 2015-05-03 10:38 - 00002355 _____ () C:\Users\Ruža\Desktop\Pokretač aplikacija sustava Chrome.lnk
2015-05-03 10:38 - 2015-05-03 10:38 - 00000000 ____D () C:\Users\Ruža\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-05-03 10:38 - 2015-05-03 10:38 - 00000000 ____D () C:\Users\Ruža\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikacije sustava Chrome
2015-05-02 23:24 - 2015-05-02 23:24 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Supremus Corporation
2015-05-02 11:36 - 2015-05-02 22:48 - 00002884 _____ () C:\Windows\System32\Tasks\Driver Booster SkipUAC (Tony1604)
2015-05-02 11:36 - 2015-05-02 11:36 - 00026528 _____ (REALiX™) C:\Windows\SysWOW64\Drivers\HWiNFO64A.SYS
2015-05-02 11:28 - 2015-05-13 06:26 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1128951351-2712326424-2671060717-1002
2015-05-02 11:11 - 2015-05-02 11:11 - 00000002 _____ () C:\Windows\AsCDProc.log
2015-05-02 11:07 - 2015-05-13 20:00 - 00033554 _____ () C:\Windows\PFRO.log
2015-05-02 10:27 - 2015-05-02 10:27 - 71720960 _____ () C:\Windows\system32\config\SOFTWARE.iobit
2015-05-02 10:27 - 2015-05-02 10:27 - 36741120 _____ () C:\Windows\system32\config\COMPONENTS.iobit
2015-05-02 10:27 - 2015-05-02 10:27 - 00466944 _____ () C:\Windows\system32\config\DEFAULT.iobit
2015-05-02 10:27 - 2015-05-02 10:27 - 00036864 _____ () C:\Windows\system32\config\SAM.iobit
2015-05-02 10:27 - 2015-05-02 10:27 - 00024576 _____ () C:\Windows\system32\config\SECURITY.iobit
2015-05-02 10:17 - 2015-05-02 10:17 - 00000000 ____D () C:\ProgramData\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-05-02 10:05 - 2015-05-12 18:44 - 00003600 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1128951351-2712326424-2671060717-1001
2015-05-02 10:00 - 2015-05-12 00:01 - 00000000 ____D () C:\Users\Tony1604\Downloads\Music for now
2015-05-02 09:59 - 2015-05-02 09:59 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-TONYLAPTOP-Windows-8.1-Pro-(64-bit).dat
2015-05-02 09:27 - 2015-05-02 09:27 - 00000000 ____D () C:\Intel
2015-05-02 09:22 - 2015-05-02 09:22 - 00099384 _____ () C:\Users\Tony1604\AppData\Roaming\inst.exe
2015-05-02 09:22 - 2015-05-02 09:22 - 00082816 _____ (VSO Software) C:\Users\Tony1604\AppData\Roaming\pcouffin.sys
2015-05-02 09:22 - 2015-05-02 09:22 - 00007859 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.cat
2015-05-02 09:22 - 2015-05-02 09:22 - 00001256 _____ () C:\Users\Tony1604\Desktop\ConvertXToDVD 5.lnk
2015-05-02 09:22 - 2015-05-02 09:22 - 00000055 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.log
2015-05-02 09:22 - 2015-05-02 09:22 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Vso
2015-05-02 09:22 - 2015-05-02 09:22 - 00000000 ____D () C:\ProgramData\VSO
2015-05-02 09:22 - 2015-05-02 09:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VSO
2015-05-02 09:22 - 2015-05-02 09:22 - 00000000 ____D () C:\Program Files (x86)\VSO
2015-05-01 15:46 - 2015-05-01 15:46 - 01380448 _____ (Skype Technologies S.A.) C:\Users\Ruža\Downloads\SkypeSetup_7_2_103.exe
2015-05-01 15:46 - 2015-05-01 15:46 - 01380448 _____ (Skype Technologies S.A.) C:\Users\Ruža\Downloads\SkypeSetup_7_2_103 (1).exe
2015-05-01 15:43 - 2015-05-01 15:44 - 45346432 _____ (Skype Technologies S.A.) C:\Users\Ruža\Downloads\SkypeSetupFull.exe
2015-05-01 13:41 - 2015-05-12 21:06 - 00000020 _____ () C:\Users\Ruža\AppData\Roaming\appdataFr3.bin
2015-05-01 11:36 - 2015-05-11 11:40 - 00000020 _____ () C:\Users\Tony1604\AppData\Roaming\appdataFr3.bin
2015-04-28 00:03 - 2015-04-28 00:04 - 00000000 ____D () C:\Program Files\Sublime Text 3
2015-04-26 11:39 - 2015-04-26 11:39 - 00001290 _____ () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall Programs.lnk
2015-04-26 11:38 - 2015-05-05 10:06 - 00000000 ____D () C:\Program Files (x86)\IObit
2015-04-26 11:06 - 2015-05-11 11:57 - 00000080 _____ () C:\Users\Tony1604\AppData\Local剜捯獫慴⁲慇敭屳呇⁁屖湥楴汴浥湥⹴湩潦
2015-04-26 10:56 - 2015-04-26 10:56 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Rockstar Games
2015-04-24 09:46 - 2015-04-26 00:26 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Warframe
2015-04-24 08:40 - 2015-04-24 08:40 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\MK10
2015-04-23 23:47 - 2015-04-23 23:47 - 00001221 _____ () C:\Users\Tony1604\Desktop\Mortal Kombat X Premium Edition.lnk
2015-04-23 23:47 - 2015-04-23 23:47 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\by.xatab
2015-04-22 21:38 - 2015-04-22 21:38 - 00002043 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Evolve.lnk
2015-04-22 21:38 - 2015-04-22 21:38 - 00002031 _____ () C:\Users\Public\Desktop\Evolve.lnk
2015-04-22 21:20 - 2015-04-22 21:20 - 00000000 ____D () C:\Program Files\Echobit
2015-04-22 21:19 - 2015-04-22 21:19 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Echobit
2015-04-22 21:19 - 2015-04-22 21:19 - 00000000 ____D () C:\ProgramData\Echobit
2015-04-22 21:09 - 2015-04-22 21:09 - 00000208 _____ () C:\Users\Tony1604\Desktop\Warframe.url
2015-04-22 18:47 - 2015-04-22 18:47 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Unity
2015-04-16 21:24 - 2014-08-01 00:44 - 00000716 _____ () C:\Users\Tony1604\Desktop\Steam.lnk
2015-04-16 20:49 - 2015-04-16 20:49 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2015-04-16 20:47 - 2015-04-16 20:47 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Lavasoft
2015-04-16 20:46 - 2015-04-16 20:46 - 00000000 ____D () C:\ProgramData\Lavasoft
2015-04-16 20:28 - 2015-05-02 11:06 - 00000000 ____D () C:\Program Files (x86)\SeekerModule
2015-04-16 20:27 - 2015-04-16 20:28 - 00000000 ____D () C:\ProgramData\367599667378516284
2015-04-15 13:06 - 2015-04-15 13:06 - 00256992 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgldx64.sys
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2015-05-13 20:05 - 2014-07-17 18:58 - 00003946 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{DF7559B6-7CAF-4147-9C0F-AAF1B6090DC8}
2015-05-13 20:04 - 2014-07-24 22:52 - 00000074 _____ () C:\Users\Tony1604\AppData\Roaming\sp_data.sys
2015-05-13 20:01 - 2014-07-17 18:47 - 01336051 _____ () C:\Windows\WindowsUpdate.log
2015-05-13 20:01 - 2013-08-22 16:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-13 20:00 - 2014-07-17 20:13 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\uTorrent
2015-05-13 20:00 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\sru
2015-05-13 20:00 - 2013-08-22 15:25 - 00524288 ___SH () C:\Windows\system32\config\BBI
2015-05-13 13:09 - 2014-07-30 22:18 - 00000000 _RHDO () C:\Users\Tony1604\OneDrive
2015-05-13 06:14 - 2014-10-19 11:29 - 00000074 _____ () C:\Users\Ruža\AppData\Roaming\sp_data.sys
2015-05-12 23:37 - 2014-12-03 16:32 - 00000000 ____D () C:\Users\Tony1604\Downloads\GamesInstall
2015-05-12 15:10 - 2014-07-30 13:21 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2015-05-12 14:29 - 2014-07-17 18:49 - 00000000 ____D () C:\Users\Tony1604
2015-05-12 14:17 - 2015-03-14 14:51 - 00000000 ___HD () C:\Windows\msdownld.tmp
2015-05-12 14:17 - 2014-07-17 21:55 - 00000000 ____D () C:\Windows\SysWOW64\directx
2015-05-12 14:08 - 2015-02-22 13:29 - 00000000 ____D () C:\ProgramData\Package Cache
2015-05-11 21:17 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\system32\NDF
2015-05-11 14:01 - 2013-08-22 17:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-05-11 12:35 - 2015-02-20 22:59 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Build and Shoot
2015-05-11 12:35 - 2014-12-03 18:27 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-05-11 12:35 - 2014-07-17 21:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-05-11 01:37 - 2014-07-17 19:02 - 00000000 ____D () C:\ProgramData\IObit
2015-05-11 01:21 - 2014-07-17 19:17 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-05-11 01:17 - 2014-07-30 21:59 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\NVIDIA Corporation
2015-05-11 01:17 - 2014-07-30 13:19 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-05-11 01:17 - 2014-07-17 19:17 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-05-11 01:04 - 2014-03-18 12:04 - 00863592 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-11 00:38 - 2015-03-08 23:01 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Android
2015-05-11 00:38 - 2014-07-17 19:27 - 00000000 ____D () C:\Program Files\Intel
2015-05-11 00:35 - 2015-03-08 23:00 - 00000000 ____D () C:\Program Files\Android
2015-05-11 00:34 - 2015-03-10 18:53 - 00000000 ____D () C:\Flashtool
2015-05-11 00:26 - 2009-08-18 09:31 - 00147456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\initpki.dll
2015-05-11 00:25 - 2009-08-18 09:31 - 00147456 _____ (Microsoft Corporation) C:\Windows\system32\initpki.dll
2015-05-10 21:56 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Help
2015-05-10 21:25 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-05-08 13:23 - 2015-03-05 13:35 - 00003930 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{60F858EE-FDEE-4530-9461-88DCB778F7CA}
2015-05-07 23:59 - 2014-07-23 01:24 - 00007593 _____ () C:\Users\Tony1604\AppData\Local\Resmon.ResmonCfg
2015-05-07 17:42 - 2014-07-27 18:35 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\CrashDumps
2015-05-06 05:01 - 2014-07-17 19:02 - 00000000 ____D () C:\ProgramData\ProductData
2015-05-05 15:08 - 2014-07-19 15:53 - 00000000 ____D () C:\Windows\system32\MRT
2015-05-05 13:04 - 2015-02-22 13:53 - 00000000 ____D () C:\ProgramData\MFAData
2015-05-05 13:02 - 2014-10-19 11:29 - 00000000 ____D () C:\Users\Ruža
2015-05-05 11:53 - 2014-07-17 20:46 - 00000000 ____D () C:\Users\Tony1604\Documents\my games
2015-05-05 11:52 - 2014-10-05 01:25 - 00000000 ____D () C:\Users\Tony1604\Documents\Electronic Arts
2015-05-05 11:27 - 2014-07-19 19:05 - 00000000 ____D () C:\Windows\pss
2015-05-05 10:48 - 2014-08-05 18:11 - 00000000 ____D () C:\Windows\Minidump
2015-05-05 10:47 - 2015-01-04 15:57 - 730668713 _____ () C:\Windows\MEMORY.DMP
2015-05-05 10:33 - 2013-08-22 15:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2015-05-05 10:12 - 2015-02-22 13:58 - 00000000 ___HD () C:\$AVG
2015-05-05 10:12 - 2013-08-22 17:36 - 00000000 ___HD () C:\Windows\ELAMBKUP
2015-05-04 19:22 - 2014-10-25 17:52 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\vlc
2015-05-02 11:06 - 2013-08-22 17:36 - 00000000 ____D () C:\Windows\Branding
2015-05-02 10:17 - 2014-07-17 19:03 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\ProductData
2015-04-30 23:46 - 2014-07-17 20:46 - 00000000 ____D () C:\Games
2015-04-29 11:17 - 2014-08-01 00:44 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-04-28 00:04 - 2014-07-31 16:17 - 00000000 ____D () C:\Users\Tony1604\AppData\Local\Sublime Text 3
2015-04-19 20:34 - 2014-07-18 08:02 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-04-16 20:34 - 2015-02-25 00:23 - 00000000 ____D () C:\Users\Tony1604\AppData\Roaming\Dropbox
2015-04-16 20:23 - 2015-02-25 00:27 - 00000000 ___RD () C:\Users\Tony1604\Dropbox
 
==================== Files in the root of some directories =======
 
2015-05-01 11:36 - 2015-05-11 11:40 - 0000020 _____ () C:\Users\Tony1604\AppData\Roaming\appdataFr3.bin
2015-05-02 09:22 - 2015-05-02 09:22 - 0099384 _____ () C:\Users\Tony1604\AppData\Roaming\inst.exe
2014-07-24 22:54 - 2014-07-24 22:54 - 0000021 _____ () C:\Users\Tony1604\AppData\Roaming\my_intel.sys
2015-05-02 09:22 - 2015-05-02 09:22 - 0007859 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.cat
2015-05-02 09:22 - 2015-05-02 09:22 - 0001167 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.inf
2015-05-02 09:22 - 2015-05-02 09:22 - 0000055 _____ () C:\Users\Tony1604\AppData\Roaming\pcouffin.log
2015-05-02 09:22 - 2015-05-02 09:22 - 0082816 _____ (VSO Software) C:\Users\Tony1604\AppData\Roaming\pcouffin.sys
2014-07-24 22:52 - 2015-05-13 20:04 - 0000074 _____ () C:\Users\Tony1604\AppData\Roaming\sp_data.sys
2014-07-23 01:24 - 2015-05-07 23:59 - 0007593 _____ () C:\Users\Tony1604\AppData\Local\Resmon.ResmonCfg
2015-04-16 20:31 - 2015-04-16 20:31 - 0000794 _____ () C:\Users\Tony1604\AppData\Local\Temp-log.txt
2014-07-17 19:23 - 2014-07-17 19:23 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2015-05-05 09:16
 
==================== End Of Log ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-05-2015
Ran by Tony1604 at 2015-05-13 20:07:00
Running from C:\Users\Tony1604\Desktop
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-1128951351-2712326424-2671060717-500 - Administrator - Disabled)
Guest (S-1-5-21-1128951351-2712326424-2671060717-501 - Limited - Disabled)
Ruža (S-1-5-21-1128951351-2712326424-2671060717-1002 - Limited - Enabled) => C:\Users\Ruža
Tony1604 (S-1-5-21-1128951351-2712326424-2671060717-1001 - Administrator - Enabled) => C:\Users\Tony1604
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
µTorrent (HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\uTorrent) (Version: 3.4.3.40298 - BitTorrent Inc.)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
AKDSHCard 1.20 (HKLM\...\AKDSHCard) (Version: 1.20 - AKD d.o.o.)
Anno 2070 Complete Edition version 2.0.7780.0 (HKLM-x32\...\Anno 2070 Complete Edition_is1) (Version: 2.0.7780.0 - UBISoft)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.2.8 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 3.0.7 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 2.2.14 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 2.01.0021 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 3.1.9 - ASUS)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0033 - ASUS)
Battlefield 3 (HKLM-x32\...\Battlefield 3_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, DANTE2050)
Call of Duty Ghosts (HKLM-x32\...\Q2FsbG9mRHV0eUdob3N0cw==_is1) (Version: 1 - )
Call of Duty: Black Ops (HKLM-x32\...\Call of Duty: Black Ops_is1) (Version:  - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dead Space™ (HKLM-x32\...\{4D87DC92-C328-46EC-A7B4-9C88129DC696}) (Version: 1.0.222.0 - Electronic Arts)
Dota 2 (HKLM-x32\...\Steam App 570) (Version:  - Valve)
Evolve (HKLM\...\{670B1B49-9FD3-4827-9B41-471EFF580AA8}) (Version: 1.8.13 - Echobit, LLC)
Fallout (HKLM-x32\...\Fallout) (Version:  - )
Fallout 3 (HKLM-x32\...\{974C4B12-4D02-4879-85E0-61C95CC63E9E}) (Version: 1.00.0000 - Bethesda Softworks)
Fallout New Vegas  1.4 (HKLM-x32\...\Fallout New Vegas_is1) (Version: 1.4 - Bethesda Softworks)
Fallout2 (HKLM-x32\...\Fallout2) (Version:  - )
G2 mouse Driver (HKLM-x32\...\{249B1212-3779-404F-80FC-F3B80FE265ED}) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.135 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
Hotline Miami 2: Wrong Number (HKLM-x32\...\Hotline Miami 2: Wrong Number_is1) (Version:  - )
Intel® Dynamic Platform and Thermal Framework (HKLM-x32\...\FFD10ECE-F715-4a86-9BD8-F6F47DA5DA1C) (Version: 7.1.0.2105 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3496 - Intel Corporation)
IObit Uninstaller (HKLM-x32\...\IObitUninstall) (Version: 4.3.0.118 - IObit)
Java 7 Update 75 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417075FF}) (Version: 7.0.750 - Oracle)
Java 8 Update 40 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218040F0}) (Version: 8.0.400 - Oracle Corporation)
Java SE Development Kit 7 Update 75 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170750}) (Version: 1.7.0.750 - Oracle)
Java™ 6 Update 17 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216017FF}) (Version: 6.0.170 - Sun Microsystems, Inc.)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
K-Lite Codec Pack 9.9.5 (64-bit) (HKLM\...\KLiteCodecPack64_is1) (Version: 9.9.5 - )
Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}) (Version: 1.2.0241 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\OneDriveSetup.exe) (Version: 17.3.5849.0427 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Minecraft1.8 (HKLM-x32\...\Minecraft1.8) (Version:  - )
mIRC (HKLM-x32\...\mIRC) (Version: 7.41 - mIRC Co. Ltd.)
Mortal Kombat X Premium Edition v.1.0 (HKLM-x32\...\Mortal Kombat X Premium Edition_is1) (Version:  - )
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
NVIDIA GeForce Experience 2.4.3.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.3.22 - NVIDIA Corporation)
NVIDIA Graphics Driver 350.12 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 350.12 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0324 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0324 - NVIDIA Corporation)
Outils de vérification linguistique 2013 de Microsoft Office - Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.8.0 - Prolific Technology INC)
PowerISO (HKLM-x32\...\PowerISO) (Version: 6.2 - Power Software Ltd)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.318 - Qualcomm Atheros Communications)
Qualcomm Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 10.0 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.21236 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7224 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 4.1.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.3.22 - NVIDIA Corporation) Hidden
Skype™ 6.18 (HKLM-x32\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.18.105 - Skype Technologies S.A.)
Skyrim - Legendary Edition (HKLM-x32\...\Skyrim - Legendary Edition_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, spider91)
Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.15.3.201502161538 - Sony Mobile Communications Inc.)
Sony PC Companion 2.10.251 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.251 - Sony)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Sublime Text Build 3059 (HKLM\...\Sublime Text 3_is1) (Version:  - Sublime HQ Pty Ltd)
System Requirements Lab (HKLM-x32\...\{0F659036-14C7-4622-9505-35A0DC93526A}) (Version: 6.1.3.0 - Husdawg, LLC)
Unity Web Player (HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\UnityWebPlayer) (Version: 4.6.4f1 - Unity Technologies ApS)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Unturned (HKLM-x32\...\Steam App 304930) (Version:  - Nelson Sexton)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VSO ConvertXToDVD (HKLM-x32\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.3.0.2 - VSO Software)
Warcraft III eSK 1.26.0.6401 (HKLM-x32\...\Warcraft III eSK 1.26.0.6401) (Version:  - )
Warframe (HKLM-x32\...\Steam App 230410) (Version:  - Digital Extremes)
Windows Driver Package - ASUS (ATP) Mouse  (03/18/2014 6.0.0.35) (HKLM\...\DAA6E0EEB715139C1CEA332C78AB4609FB3C211B) (Version: 03/18/2014 6.0.0.35 - ASUS)
Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass  (08/28/2014 11.0.0000.00000) (HKLM\...\092555911492C6959D2596D612F52DCA71881CA2) (Version: 08/28/2014 11.0.0000.00000 - Google, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
CustomCLSID: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Tony1604\AppData\Local\Microsoft\OneDrive\17.3.5849.0427\amd64\FileSyncApi64.dll (Microsoft Corporation)
 
==================== Restore Points  =========================
 
05-05-2015 10:07:08 Installed AVG 2015
11-05-2015 00:32:58 Removed Universal Adb Driver
12-05-2015 13:59:34 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
13-05-2015 19:58:43 Restore Point Created by FRST
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 
==================== Scheduled Tasks (whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
 
Task: {1CFA0F40-DE11-4595-BFB6-ECEA8FE82038} - System32\Tasks\Driver Booster SkipUAC (Tony1604) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe
Task: {2445745D-5A73-45AD-B8EE-993AB773CB54} - System32\Tasks\ATK Package 36D18D69AFC3 => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\SimAppExec.exe [2014-01-14] (ASUSTek Computer Inc.)
Task: {24C68C18-615B-4C94-9C49-EC9A41B2C5D8} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1128951351-2712326424-2671060717-1001 => %localappdata%\Microsoft\OneDrive\OneDrive.exe
Task: {2BC41083-654D-4C4D-B7DC-ACC45BF0F3BA} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-04-01] (Microsoft Corporation)
Task: {35409942-2797-4ECD-A6B0-B65A7778A455} - System32\Tasks\{24AA0856-8362-4F8A-BBE3-3EC34AD2E47E} => pcalua.exe -a "C:\Users\Tony1604\AppData\Roaming\Arma III\Uninstall\unins000.exe"
Task: {35EDD4E1-7115-4945-B313-F02C6458B472} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {37F1820E-9029-4588-8B73-AE23DC36FCB1} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-17] (Google Inc.)
Task: {4D498A8A-A968-4B7B-8D45-4204E79C0B23} - System32\Tasks\Uninstaller_SkipUac_Tony1604 => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe [2015-04-26] (IObit)
Task: {5392C948-AEAB-4B74-B484-B8F5413FD866} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {5C7B255E-3A0D-43CB-80F6-43645EFBC498} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {75470DD5-C4B3-4FE9-A8F6-2B021010E88A} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2013-10-07] (ASUS)
Task: {904542C6-9AC9-4970-AC46-E34642CB9C0C} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86) [2015-05-12] ()
Task: {931CC4AE-992B-4C21-BFE8-F8EC9CE4ECBA} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2014-03-11] ()
Task: {9F0D9D77-696D-4C1A-8F13-CDF45D911974} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2014-03-31] (AsusTek)
Task: {AD892BC4-B6A0-4834-8E6D-C97BA9EB1BC8} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-04-10] (Realtek Semiconductor)
Task: {C76131AE-CF71-49A4-B547-09952D9C63DF} - System32\Tasks\RtHDVBg => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-04-15] (Realtek Semiconductor)
Task: {CAE48F53-2B7E-43C8-A070-168062BB9AFF} - System32\Tasks\ASUS Splendid ColorU => C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe [2013-10-07] (ASUSTeK Computer Inc.)
Task: {E2ABE2D4-938C-454F-8F7C-AFDF23AA1BA3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-07-17] (Google Inc.)
Task: {E2CD979B-D7EA-4B86-B5A0-D6BD0844A6A2} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2014-01-03] (ASUS)
Task: {E7076D0F-3865-457A-A022-31150384CB36} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-04] (Adobe Systems Incorporated)
Task: {E9C2FF41-C9EB-4F5F-8E30-B831989BF001} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86) [2015-05-12] ()
Task: {F9B10110-07F1-465E-BF63-3F65E9819998} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2014-03-27] (ASUSTek Computer Inc.)
Task: C:\Windows\Tasks\Uninstaller_SkipUac_Tony1604.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
 
==================== Loaded Modules (whitelisted) ==============
 
2015-05-10 21:56 - 2015-04-08 23:30 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-01-03 17:26 - 2014-01-03 17:26 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2014-01-03 17:26 - 2014-01-03 17:26 - 00028672 _____ () C:\Program Files\ASUS\P4G\plctrl.dll
2012-10-01 20:36 - 2012-10-01 20:36 - 06522480 _____ () C:\Program Files\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2014-02-25 22:14 - 2014-02-25 22:14 - 00011264 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\ActivateDesktopDebugger\ActivateDesktopDebugger.dll
2014-02-25 22:11 - 2014-02-25 22:11 - 00086016 _____ () C:\Program Files (x86)\Bluetooth Suite\Modules\Map\MAP.dll
2014-10-25 19:52 - 2013-06-01 09:04 - 00495616 _____ () C:\Program Files (x86)\AULA\G2 Mouse\G2Monitor.exe
2014-02-25 22:17 - 2014-02-25 22:17 - 00012928 _____ () C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
2013-09-09 18:23 - 2013-09-09 18:23 - 00162816 _____ () C:\Program Files (x86)\ASUS\Splendid\CCTAdjust.dll
2013-10-08 20:41 - 2013-10-08 20:41 - 00037968 _____ () C:\Program Files (x86)\ASUS\Splendid\DetectDisplayDC.dll
2015-05-11 01:16 - 2015-05-01 18:52 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2014-10-25 19:52 - 2012-06-09 07:38 - 00057344 _____ () C:\Program Files (x86)\AULA\G2 Mouse\lan.dll
2014-10-25 19:52 - 2013-02-20 14:17 - 00061440 _____ () C:\Program Files (x86)\AULA\G2 Mouse\hiddriver.dll
2015-05-05 12:16 - 2015-04-28 04:07 - 01252680 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\libglesv2.dll
2015-05-05 12:16 - 2015-04-28 04:07 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\libegl.dll
2015-05-05 12:16 - 2015-04-28 04:07 - 14980424 _____ () C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.135\PepperFlash\pepflashplayer.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
AlternateDataStreams: C:\Users\Tony1604\OneDrive:ms-properties
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== EXE Association (whitelisted) ===============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, the associated entry will be removed from the registry.)
 
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\100sexlinks.com -> 100sexlinks.com
 
There are 4788 more restricted sites.
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Tony1604\Pictures\Asus\Asus.jpg
DNS Servers: 192.168.1.1
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: DptfPolicyLpmService => 2
MSCONFIG\Services: EvoSvc => 3
MSCONFIG\Services: gupdate => 3
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: LiveUpdateSvc => 2
MSCONFIG\Services: SkypeUpdate => 3
MSCONFIG\Services: Sony PC Companion => 3
MSCONFIG\Services: SwitchBoard => 3
MSCONFIG\Services: TunMirror => 2
MSCONFIG\startupreg: uTorrent => 
HKLM\...\StartupApproved\Run: => "XMouseButtonControl"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "VirtualCloneDrive"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKLM\...\StartupApproved\Run32: => "AVG_UI"
HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\StartupApproved\StartupFolder: => "Microsoft Toolkit activator for all windows and office.lnk"
HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\StartupApproved\Run: => "Advanced SystemCare 7"
HKU\S-1-5-21-1128951351-2712326424-2671060717-1001\...\StartupApproved\Run: => "BugCD Pretrazivac"
 
==================== FirewallRules (whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
FirewallRules: [TCP Query User{EFBDA559-5F01-41D2-90E1-66CB94ECE889}C:\users\tony1604\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\tony1604\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{28D0801D-B62A-4976-914D-F2F4B46681D8}C:\users\tony1604\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\tony1604\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{9882CD90-9862-468E-BE7F-04F82AFFAF92}] => (Allow) C:\Games\Steam\Steam.exe
FirewallRules: [{027063E4-8FA3-494E-A4DC-983F6F9EDBA0}] => (Allow) C:\Games\Steam\Steam.exe
FirewallRules: [{13132ABE-2FEE-457A-9AA5-128869936A18}] => (Allow) C:\Games\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{9F298BCB-30A3-47B3-A24B-AF8E3FA08A9E}] => (Allow) C:\Games\Steam\SteamApps\common\dota 2 beta\dota.exe
FirewallRules: [{759E48B1-4AE4-423B-8D77-9BA6B978954B}] => (Allow) C:\Games\Steam\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [{375B4CBD-98CF-44D3-A76E-B2CCF55BF0F6}] => (Allow) C:\Games\Steam\SteamApps\common\Unturned\Unturned.exe
FirewallRules: [TCP Query User{4A53F76A-6FE4-4187-8549-6537815892E1}C:\games\warcraft iii frozen throne esk\war3.exe] => (Allow) C:\games\warcraft iii frozen throne esk\war3.exe
FirewallRules: [UDP Query User{D83711C2-3B77-42B2-BB7B-213E5506E22F}C:\games\warcraft iii frozen throne esk\war3.exe] => (Allow) C:\games\warcraft iii frozen throne esk\war3.exe
FirewallRules: [{64DC3204-AB82-4D01-B21F-C41F4ED5CA64}] => (Allow) LPort=1689
FirewallRules: [TCP Query User{3029AC85-6D48-4729-847B-7178817BB1ED}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{99D78BD5-9A0F-40E4-8C04-D2AD73C39392}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{A417F531-12F8-4B3C-8815-80DC62064320}C:\games\electronic arts\dead space\dead space.exe] => (Allow) C:\games\electronic arts\dead space\dead space.exe
FirewallRules: [UDP Query User{D4960254-D55F-40A7-A034-279B01B769E0}C:\games\electronic arts\dead space\dead space.exe] => (Allow) C:\games\electronic arts\dead space\dead space.exe
FirewallRules: [{22318933-5604-4224-949B-8B140A6C6A93}] => (Allow) C:\Games\Steam\bin\steamwebhelper.exe
FirewallRules: [{E3552054-0212-4857-8295-AD5A4115D3AD}] => (Allow) C:\Games\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{14C7F009-3709-4078-A558-3C75A8DFBABF}C:\games\activision\call of duty - black ops\blackops.exe] => (Allow) C:\games\activision\call of duty - black ops\blackops.exe
FirewallRules: [UDP Query User{3F1EBE76-CA90-4E12-A1A0-6475FEA31DEF}C:\games\activision\call of duty - black ops\blackops.exe] => (Allow) C:\games\activision\call of duty - black ops\blackops.exe
FirewallRules: [TCP Query User{5B70100C-0513-4AB2-AA5B-ED1856DA2C2E}C:\games\activision\call of duty - black ops\blackopsmp.exe] => (Block) C:\games\activision\call of duty - black ops\blackopsmp.exe
FirewallRules: [UDP Query User{E7C283DC-1336-4677-90D8-D05A3A28F622}C:\games\activision\call of duty - black ops\blackopsmp.exe] => (Block) C:\games\activision\call of duty - black ops\blackopsmp.exe
FirewallRules: [{5AECAA4A-A9E2-49C2-A1E2-B79D9EBB9D2F}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{77ED13ED-7543-468D-BB4E-C67D7337A7ED}] => (Allow) LPort=1688
FirewallRules: [{CB845972-3A93-4152-8D7C-0BBD68E7F4A2}] => (Allow) LPort=1689
FirewallRules: [{3C814925-B3A9-4253-AEB7-136E6249EA11}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{FC077D64-284B-4625-B4C6-114620C232F2}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{4E19D72F-3AA2-4E36-9A4B-3BF32ED31829}] => (Block) %SystemDrive%\Games\Anno 2070 Complete Edition\anno5.exe
FirewallRules: [{156BADFE-F9BE-4428-8026-2596965EEE8F}] => (Allow) C:\Program Files\Echobit\Evolve\EvoSvc.exe
FirewallRules: [{8762C84A-9008-4163-9B2E-DA470349380F}] => (Allow) C:\Program Files\Echobit\Evolve\EvolveClient.exe
FirewallRules: [{5A3D3472-3B06-475A-ACB2-71585B5A24C9}] => (Allow) C:\Games\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{BE638223-749F-4CF3-B5F2-AEA7AF65A2AB}] => (Allow) C:\Games\Steam\SteamApps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{897E11B5-8B95-4EE0-8E1A-3E894AAEA349}] => (Allow) LPort=1688
FirewallRules: [{88257795-E970-4E85-9EC2-652E8F1B51A1}] => (Allow) LPort=1688
FirewallRules: [{A004CE90-028E-486F-B88F-8C6E5EE86DD4}] => (Allow) C:\Users\Tony1604\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{418800DD-1D42-4C79-B210-7211E20F3E87}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{9D420315-5C31-406D-AF7A-7AF28B89BB78}] => (Allow) LPort=2869
FirewallRules: [{E6C1179D-2A7A-425F-94FA-6B954749B44D}] => (Allow) LPort=1900
FirewallRules: [{AF75F87E-36BC-4D2B-B0F7-0BE2A0AEAD0D}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{0BB6E2DE-AE05-430B-803D-CB6463AD338F}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{22277286-F3AE-4EB9-A822-68D05C74DA76}C:\program files (x86)\mirc\mirc.exe] => (Block) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [UDP Query User{109F927F-D084-49E0-8B81-3F3C7212E601}C:\program files (x86)\mirc\mirc.exe] => (Block) C:\program files (x86)\mirc\mirc.exe
FirewallRules: [{8FC5D6EE-B411-4E81-99BF-D850BBA5DCF7}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{0367F41D-1A5B-4DE1-A19A-6AEAE0FC6053}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{1742DFE3-9BC4-4AEA-A125-9031621C5FE2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{B9C5FD66-8DCE-4A55-ABE1-C45D52098FBE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{E85987AA-EFB1-48C3-B33F-7ED093AF7FFD}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{86BD9DF1-A896-4938-92EB-33595BDCF9FB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{790838AD-CBAF-47BF-955C-1CC5C587CCDC}C:\games\activision\call of duty - black ops\blackops.exe] => (Allow) C:\games\activision\call of duty - black ops\blackops.exe
FirewallRules: [UDP Query User{9FC7C5E3-6F31-402B-BF76-50313B4D5B13}C:\games\activision\call of duty - black ops\blackops.exe] => (Allow) C:\games\activision\call of duty - black ops\blackops.exe
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (05/13/2015 08:01:24 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TONYLAPTOP)
Description: Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (05/13/2015 08:01:24 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TONYLAPTOP)
Description: Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.
 
Error: (05/12/2015 02:17:43 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: Unexpected or missing value (name: 'PackageCode', value: 'GUID') in key 'HKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219'
 
Error: (05/12/2015 02:17:33 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: Unexpected or missing value (name: 'PackageCode', value: 'GUID') in key 'HKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219'
 
Error: (05/12/2015 02:12:33 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program GTA5.exe version 1.0.335.2 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 17c8
 
Start Time: 01d08cacce119de2
 
Termination Time: 4294967295
 
Application Path: C:\Games\R.G. Mechanics\Grand Theft Auto V\GTA5.exe
 
Report Id: 2a7742d2-f8a0-11e4-82ba-54271e8346a2
 
Faulting package full name: 
 
Faulting package-relative application ID:
 
Error: (05/12/2015 02:08:21 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: Unexpected or missing value (name: 'PackageCode', value: 'GUID') in key 'HKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219'
 
Error: (05/12/2015 02:08:20 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: Unexpected or missing value (name: 'PackageCode', value: 'GUID') in key 'HKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219'
 
Error: (05/12/2015 01:59:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: The program vcredist_x64_2012.exe version 2.0.1.3 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
 
Process ID: 12c4
 
Start Time: 01d08cab13827003
 
Termination Time: 4294967295
 
Application Path: C:\Users\Tony1604\Downloads\GamesInstall\[R.G. Mechanics] Grand Theft Auto V\Redist\vcredist_x64_2012.exe
 
Report Id: 65822a9b-f89e-11e4-82ba-54271e8346a2
 
Faulting package full name: 
 
Faulting package-relative application ID:
 
Error: (05/12/2015 01:59:23 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: Unexpected or missing value (name: 'PackageCode', value: 'GUID') in key 'HKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219'
 
Error: (05/12/2015 01:59:21 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: Unexpected or missing value (name: 'PackageCode', value: 'GUID') in key 'HKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219'
 
 
System errors:
=============
Error: (05/13/2015 08:06:52 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: The Network Location Awareness service terminated with the following service-specific error: 
%%3221226008
 
Error: (05/13/2015 08:06:52 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: 1068netprofmUnavailable{A47979D2-C419-11D9-A5B4-001185AD2B89}
 
Error: (05/13/2015 08:06:52 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: 
%%1062
 
Error: (05/13/2015 08:06:52 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: 1068netprofmUnavailable{A47979D2-C419-11D9-A5B4-001185AD2B89}
 
Error: (05/13/2015 08:06:52 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: 
%%1062
 
Error: (05/13/2015 08:06:52 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: 1068netprofmUnavailable{A47979D2-C419-11D9-A5B4-001185AD2B89}
 
Error: (05/13/2015 08:06:52 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: 
%%1062
 
Error: (05/13/2015 08:06:52 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: 1068netprofmUnavailable{A47979D2-C419-11D9-A5B4-001185AD2B89}
 
Error: (05/13/2015 08:06:52 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: 
%%1062
 
Error: (05/13/2015 08:06:52 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: 1068netprofmUnavailable{A47979D2-C419-11D9-A5B4-001185AD2B89}
 
 
Microsoft Office Sessions:
=========================
Error: (05/13/2015 08:01:24 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TONYLAPTOP)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2144927141
 
Error: (05/13/2015 08:01:24 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: TONYLAPTOP)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2144927141
 
Error: (05/12/2015 02:17:43 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: PackageCodeGUIDHKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219(NULL)(NULL)(NULL)
 
Error: (05/12/2015 02:17:33 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: PackageCodeGUIDHKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219(NULL)(NULL)(NULL)
 
Error: (05/12/2015 02:12:33 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: GTA5.exe1.0.335.217c801d08cacce119de24294967295C:\Games\R.G. Mechanics\Grand Theft Auto V\GTA5.exe2a7742d2-f8a0-11e4-82ba-54271e8346a2
 
Error: (05/12/2015 02:08:21 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: PackageCodeGUIDHKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219(NULL)(NULL)(NULL)
 
Error: (05/12/2015 02:08:20 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: PackageCodeGUIDHKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219(NULL)(NULL)(NULL)
 
Error: (05/12/2015 01:59:54 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: vcredist_x64_2012.exe2.0.1.312c401d08cab138270034294967295C:\Users\Tony1604\Downloads\GamesInstall\[R.G. Mechanics] Grand Theft Auto V\Redist\vcredist_x64_2012.exe65822a9b-f89e-11e4-82ba-54271e8346a2
 
Error: (05/12/2015 01:59:23 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: PackageCodeGUIDHKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219(NULL)(NULL)(NULL)
 
Error: (05/12/2015 01:59:21 PM) (Source: MsiInstaller) (EventID: 1002) (User: TONYLAPTOP)
Description: PackageCodeGUIDHKLM\Software\Classes\Installer\Products\B476F94747628E7478C965620AB6A219(NULL)(NULL)(NULL)
 
 
CodeIntegrity Errors:
===================================
  Date: 2015-05-13 02:57:07.231
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-13 02:57:07.043
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-12 04:30:31.117
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-12 04:30:30.929
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-11 14:04:31.495
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-11 14:04:31.276
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-08 06:30:25.973
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-08 06:30:25.614
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-06 05:45:04.160
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2015-05-06 05:45:04.020
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i5-4200U CPU @ 1.60GHz
Percentage of memory in use: 29%
Total physical RAM: 6027.43 MB
Available physical RAM: 4262.15 MB
Total Pagefile: 12171.43 MB
Available Pagefile: 10211.99 MB
Total Virtual: 131072 MB
Available Virtual: 131071.84 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:698.29 GB) (Free:361.69 GB) NTFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 2BFB4DC8)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=698.3 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================
 
 
So the first log is "FRST", second log is "Main" and third log is "Additional" 

  • 0

#5
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Hmm there is something amiss but I cannot yet put my finger on it

Download aswMBR.exe ( 4.5mb ) to your desktop.
Double click the aswMBR.exe to run it.
You may be offered the option of using virtualisation, accept that
When it offers to download the virus database allow that as well
Click the "Scan" button to start scan

AswMBR%20scan.JPG


On completion of the scan click save log, save it to your desktop and post in your next reply
  • 0

#6
Tony1604

Tony1604

    Member

  • Topic Starter
  • Member
  • PipPip
  • 11 posts

After I run the scan should I post results here?


  • 0

#7
Tony1604

Tony1604

    Member

  • Topic Starter
  • Member
  • PipPip
  • 11 posts

The scan program keeps crashing, but I already check for viruses with AVG Free and found none


  • 0

#8
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK are you still getting popups ? If so which browser do they appear in

Start an elevated command prompt :

Go Start > All Programs > Accessories
Right click Command Prompt
In the black box that opens type in the following command and press enter :

sfc /scannow

Once it has completed reboot the computer and let me know what the current problems are
  • 0

#9
Tony1604

Tony1604

    Member

  • Topic Starter
  • Member
  • PipPip
  • 11 posts

No more popups or ads or anything, "sfc /scannow" doesn't work it says "

sfc scannow found errors but could not fix"
  • 0

#10
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Have crypto services returned to normal levels now
  • 0

Advertisements


#11
Tony1604

Tony1604

    Member

  • Topic Starter
  • Member
  • PipPip
  • 11 posts

No, still around 25-30% cpu, and windows updates don't work error 800B0001 and also under "Updates were installed" it says "Never" but I did install updates before


  • 0

#12
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK lets check the services, we may need to run some repairs

Download and run farbar service scanner

fssscan.JPG

Tick "All" options.
Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.

Please copy and paste the log to your reply.
  • 0

#13
Tony1604

Tony1604

    Member

  • Topic Starter
  • Member
  • PipPip
  • 11 posts

I freezes when i try to run it while crypto services are running, it only works when i stop them and here are the results, i left it working for a while but it just says "not responding"

 

Farbar Service Scanner Version: 17-01-2015
Ran by Tony1604 (administrator) on 14-05-2015 at 00:38:06
Running from "C:\Users\Tony1604\Downloads"
Microsoft Windows 8.1 Pro  (X64)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
 
 
Windows Firewall:
=============
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
 
System Restore Policy: 
========================
 
 
Action Center:
============
 
 
Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.
 
BITS Service is not running. Checking service configuration:
The start type of BITS service is OK.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.
 
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Windows Defender:
==============
 
Other Services:
==============
 
 
File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll
[2014-07-27 08:19] - [2014-04-30 06:23] - 0353280 ____A (Microsoft Corporation) 05DE04005CE0D84D0E6AD21CAEB369C6
 
C:\Windows\System32\drivers\afd.sys
[2014-07-18 07:57] - [2014-05-30 05:03] - 0563200 ____A (Microsoft Corporation) 374E27295F0A9DCAA8FC96370F9BEEA5
 
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll
[2014-07-27 08:19] - [2014-04-30 06:14] - 0827392 ____A (Microsoft Corporation) 20FB137ADDE1255F15F265A7BD9579BE
 
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll
[2014-07-24 22:39] - [2014-07-24 22:39] - 3463680 ____A (Microsoft Corporation) E66AC3CA92FC471BFE69F61549193A64
 
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MsMpEng.exe => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
 
 
**** End of log ****

Edited by Tony1604, 13 May 2015 - 04:43 PM.

  • 0

#14
Tony1604

Tony1604

    Member

  • Topic Starter
  • Member
  • PipPip
  • 11 posts

So i used tweaking.com -windows repair, and redid the fss scan and it worked, even with cryptho services running, cpu usage of cryptho is down also, the only problem left is windows update not working, also BITS and wuauserv services are restored and working properly 

 

EDIT: Windows Update is working, it is just stuck at 0%,0kb

 

This is the new log:

Farbar Service Scanner Version: 17-01-2015

Ran by Tony1604 (administrator) on 14-05-2015 at 10:44:58
Running from "C:\Users\Tony1604\Downloads"
Microsoft Windows 8.1 Pro  (X64)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
 
 
Windows Firewall:
=============
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
 
System Restore Policy: 
========================
 
 
Action Center:
============
 
 
Windows Update:
============
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Windows Defender:
==============
 
Other Services:
==============
 
 
File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MsMpEng.exe => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
 
 
**** End of log ****

Edited by Tony1604, 14 May 2015 - 05:15 AM.

  • 0

#15
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK a bit ahead of me there are that was going to be the next step.. Did you run the windows all in one windows update repair, number 17 ?

waiorepair.JPG

If so what error do you get when you try to update or has the download now completed ?

What other problems are you experiencing ?
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP