Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected! Advanced System Protector and Reg Clean Pro


  • This topic is locked This topic is locked
12 replies to this topic

#1 incident

incident

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:13 AM

Posted 23 March 2014 - 05:10 PM

I started a full scan with Antimalwarebytes Free before i found this forum. It already survived a quickscan and restart. Help!!

 



BC AdBot (Login to Remove)

 


#2 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:13 AM

Posted 25 March 2014 - 09:56 AM

Hi there,
my name is Marius and I will assist you with your malware related problems.

Before we move on, please read the following points carefully.

  • First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while following my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or add/remove software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
  • My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.

 

 

 

 

Scan with FRST in normal mode

Please download Farbar's Recovery Scan Tool to your desktop: FRST 32bit or FRST 64bit (If not sure: Start --> Computer (right click) --> properties)

  • Run FRST.
  • Don´t change one of the checkboxes and hit Scan.
  • Logfiles are created on your desktop.
  • Poste the FRST.txt and (after the first scan only!) the Addition.txt.

 

 

 

Scan with TDSS-Killer

Please read and follow these instructions carefully. We do not want it to fix anything yet (if found), we need to see a report first.

Download TDSSKiller.zip and extract to your desktop

  • Execute TDSSKiller.exe by doubleclicking on it.
  • Press Start Scan
  • If Malicious objects are found, do NOT select Copy to quarantine. Change the action to Skip, and save the log.
  • Once complete, a log will be produced at the root drive which is typically C:\ ,for example, C:\TDSSKiller.<version_date_time>log.txt


Please post the contents of that log in your next reply.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#3 incident

incident
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:13 AM

Posted 26 March 2014 - 07:30 PM

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-03-2014
Ran by Administrator (administrator) on MY-PC on 26-03-2014 19:26:33
Running from C:\Users\Administrator.Chelsea-PC\Downloads
Windows 7 Ultimate Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\Hawkes Learning Systems\Hawkes Update Service Manager\srvany.exe
(Hawkes Learning Systems                                                                                                                                                                                                                                                                                     ) C:\Program Files (x86)\Hawkes Learning Systems\Hawkes Update Service Manager\HawkesUpdater.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin\ccSvcHst.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel® Corporation) C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Red Bend Ltd.) C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin\ccSvcHst.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin64\Smc.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.22.5\GoogleCrashHandler64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Autodesk Inc) C:\Program Files (x86)\Autodesk\SketchBook Express 6.2\SketchBookExpress.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Microsoft Corporation) C:\Windows\SYSTEM32\WISPTIS.EXE
(Microsoft Corporation) C:\Windows\SYSTEM32\WISPTIS.EXE
(Microsoft Corporation) C:\Windows\system32\taskmgr.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) c:\program files\windows defender\MpCmdRun.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [Energy Management] - C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [9437600 2012-05-01] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] - C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [5315488 2012-05-01] (Lenovo(beijing) Limited)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [499608 2011-06-16] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59280 2012-08-27] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [421776 2012-09-09] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [AdobeCS4ServiceManager] - C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [611712 2008-08-14] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SEP-x32: C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin\WinLogoutNotifier.dll [X]
HKU\S-1-5-21-3352250188-2419804836-1388346719-500\...\Run: [SUPERAntiSpyware] - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [6563608 2014-01-06] (SUPERAntiSpyware)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
 
==================== Internet (Whitelisted) ====================
 
ProxyEnable: Internet Explorer proxy is enabled.
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xDF4DBF3E820FCD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-US
SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = 
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Atomic Savings BHO - {FD54B52E-A521-4C98-A65E-2213146AE98D} - C:\Program Files (x86)\Atomic Savings\FrameworkBHO64.dll ()
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} -  No File
BHO-x32: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\bin\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Handler-x32: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files (x86)\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)
Hosts: 54.225.95.126 pmicfehfblhebdfbhfgmmfcaikafckac
Tcpip\Parameters: [DhcpNameServer] 192.168.254.254
 
FireFox:
========
FF ProfilePath: C:\Users\Administrator.Chelsea-PC\AppData\Roaming\Mozilla\Firefox\Profiles\5r8tr6aa.default
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.3 - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.13.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.13.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.3 - C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: wacom.com/WacomTabletPlugin - C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll (Wacom)
FF Extension: Atomic Savings - C:\Users\Administrator.Chelsea-PC\AppData\Roaming\Mozilla\Firefox\Profiles\5r8tr6aa.default\Extensions\{FC825475-1B74-1351-756C-C5208A052A02} [2014-03-23]
FF Extension: Java Console - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} [2012-03-31]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Data\IPSFF
FF Extension: Symantec Intrusion Prevention - C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Data\IPSFF [2014-03-02]
FF HKCU\...\Firefox\Extensions: [{77601b4f-338e-4abf-b114-dd2c0929031b}] - C:\Program Files (x86)\Re-markit-soft\157.xpi
 
Chrome: 
=======
CHR HomePage: hxxp://google.com/
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\gcswf32.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\4.1.10111.0\npctrl.dll No File
CHR Extension: (YouTube) - C:\Users\Administrator.Chelsea-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-07-23]
CHR Extension: (Google Search) - C:\Users\Administrator.Chelsea-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-07-23]
CHR Extension: (Google Wallet) - C:\Users\Administrator.Chelsea-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-28]
CHR Extension: (Gmail) - C:\Users\Administrator.Chelsea-PC\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-07-23]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
 
==================== Services (Whitelisted) =================
 
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-10] (SUPERAntiSpyware.com)
R2 AdobeActiveFileMonitor11.0; C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe [171600 2012-09-23] (Adobe Systems Incorporated)
R2 HawkesUpdater; C:\Program Files (x86)\Hawkes Learning Systems\Hawkes Update Service Manager\srvany.exe [8192 2003-04-18] ()
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 SepMasterService; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin\ccSvcHst.exe [137224 2011-10-30] (Symantec Corporation)
R3 SmcService; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin64\Smc.exe [2594816 2011-10-30] (Symantec Corporation)
S3 SNAC; C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin64\snac64.exe [324016 2011-10-30] (Symantec Corporation)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [621336 2013-12-04] (Wacom Technology, Corp.)
S2 ADVService; "C:\Program Files (x86)\Amazon\Amazon Unbox Video\ADVWindowsClientService.exe" [X]
 
==================== Drivers (Whitelisted) ====================
 
S3 2310_00; C:\Windows\system32\drivers\2310_00.sys [170528 2009-06-12] (HighPoint Technologies, Inc.)
S3 272x_1x; C:\Windows\system32\drivers\272x_1x.sys [608352 2011-09-04] (HighPoint Technologies, Inc.)
S3 274x_3x; C:\Windows\system32\drivers\274x_3x.sys [232544 2011-05-27] (HighPoint Technologies, Inc.)
S3 arcm_a64; C:\Windows\system32\drivers\arcm_a64.sys [52768 2009-11-08] (ARECA Technology Corporation)
S3 asahci64; C:\Windows\system32\drivers\asahci64.sys [36960 2011-05-04] (Asmedia Technology)
S3 b06diag; C:\Windows\system32\drivers\bxdiaga.sys [88104 2010-12-16] (Broadcom Corporation)
S3 BFN7x64; C:\Windows\system32\drivers\Xeno7x64.sys [157288 2011-01-14] (Bigfoot Networks, Inc.)
S3 BFNVis64; C:\Windows\system32\drivers\XenoVa64.sys [157288 2011-01-14] (Bigfoot Networks, Inc.)
R1 BHDrvx64; C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Data\Definitions\BASHDefs\20140304.011\BHDrvx64.sys [1526488 2014-01-21] (Symantec Corporation)
S3 BXOIS; C:\Windows\system32\drivers\bxois.sys [533544 2010-12-10] (Broadcom Corporation)
S3 cbaf; C:\Windows\System32\Drivers\cbaf.sys [15872 2008-01-09] (Intel Corp.)
S3 DC133; C:\Windows\system32\drivers\DC133.sys [39320 2011-05-02] (Dawicontrol GmbH)
S3 DC150; C:\Windows\system32\drivers\DC150.sys [39832 2011-05-02] (Dawicontrol GmbH)
S3 DC154; C:\Windows\system32\drivers\DC154.sys [48136 2011-05-02] (Dawicontrol GmbH)
S3 DC300e; C:\Windows\system32\drivers\DC300e.sys [40344 2011-05-02] (Dawicontrol GmbH)
S3 DC324e; C:\Windows\system32\drivers\DC324e.sys [49752 2011-05-02] (Dawicontrol GmbH)
R0 DC3410; C:\Windows\System32\drivers\DC3410.sys [48328 2011-05-02] (Dawicontrol GmbH)
S3 DC4300; C:\Windows\system32\drivers\DC4300.sys [48360 2011-05-02] (Dawicontrol GmbH)
S3 DC600e; C:\Windows\system32\drivers\DC600e.sys [40744 2011-05-02] (Dawicontrol GmbH)
S3 dfuuwb; C:\Windows\System32\Drivers\DfuUWB.sys [503296 2008-09-11] (Intel Corp.)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484952 2014-03-01] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [137648 2014-03-01] (Symantec Corporation)
S3 FLxHCIh; C:\Windows\system32\drivers\FLxHCIh.sys [65536 2012-03-02] (Fresco Logic)
S3 hptiop; C:\Windows\system32\drivers\hptiop.sys [17440 2009-05-25] (HighPoint Technologies, Inc.)
S3 hptmv; C:\Windows\system32\drivers\hptmv.sys [93472 2006-09-18] (HighPoint Technologies, Inc.)
S3 hptmv6; C:\Windows\system32\drivers\hptmv6.sys [152096 2007-11-01] (HighPoint Technologies, Inc.)
S3 HWA; C:\Windows\System32\Drivers\HWA.sys [61440 2008-09-29] (Intel Corp.)
S3 IAMTVE; C:\Windows\system32\drivers\IAMTVE.sys [43416 2007-04-11] (Intel Corporation)
S3 IAMTXPE; C:\Windows\system32\drivers\IAMTXPE.sys [51096 2007-04-11] (Intel Corporation)
R0 iaStorF; C:\Windows\System32\drivers\iaStorF.sys [24496 2011-12-19] (Intel Corporation)
S3 iaStorS; C:\Windows\system32\drivers\iaStorS.sys [637360 2011-12-19] (Intel Corporation)
R1 IDSVia64; C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Data\Definitions\IPSDefs\20140324.001\IDSvia64.sys [525016 2014-03-24] (Symantec Corporation)
S3 IFCoEMP; C:\Windows\system32\drivers\ifM60x64.sys [388368 2011-09-12] (Intel® Corporation)
S3 IFCoEVB; C:\Windows\system32\drivers\ifP60X64.sys [77584 2011-09-12] (Intel® Corporation)
S3 iteatapi; C:\Windows\system32\drivers\iteatapi.sys [38680 2008-05-14] (ITE Tech. Inc.)
S3 iteraid; C:\Windows\system32\drivers\iteraid.sys [32768 2007-05-01] (ITE Tech. Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 MegaSR1; C:\Windows\system32\drivers\MegaSR1.sys [461320 2009-04-16] (LSI Corporation, Inc.)
S3 mv61xx; C:\Windows\system32\drivers\mv61xx.sys [182576 2011-05-06] (Marvell Semiconductor, Inc.)
R3 NAVENG; C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Data\Definitions\VirusDefs\20140326.016\ENG64.SYS [126040 2014-03-01] (Symantec Corporation)
R3 NAVEX15; C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Data\Definitions\VirusDefs\20140326.016\EX64.SYS [2099288 2014-03-01] (Symantec Corporation)
S3 nvrd64; C:\Windows\system32\drivers\nvrd64.sys [175720 2010-04-08] (NVIDIA Corporation)
S3 O2MDRDR; C:\Windows\system32\drivers\o2mdx64.sys [58400 2009-07-26] (O2Micro )
S3 Pnp680; C:\Windows\system32\drivers\pnp680.sys [80424 2007-11-13] (Silicon Image, Inc)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-08-10] (Corel Corporation)
S3 rr172x; C:\Windows\system32\drivers\rr172x.sys [124448 2007-11-01] (HighPoint Technologies, Inc.)
S3 rr174x; C:\Windows\system32\drivers\rr174x.sys [159264 2007-11-01] (HighPoint Technologies, Inc.)
S3 rr2210; C:\Windows\system32\drivers\rr2210.sys [153632 2007-11-01] (HighPoint Technologies, Inc.)
S3 rr232x; C:\Windows\system32\drivers\rr232x.sys [152096 2008-05-05] (HighPoint Technologies, Inc.)
S3 rr2340; C:\Windows\system32\drivers\rr2340.sys [162400 2009-12-31] (HighPoint Technologies, Inc.)
S3 rr2522; C:\Windows\system32\drivers\rr2522.sys [168032 2009-12-31] (HighPoint Technologies, Inc.)
S3 rr276x; C:\Windows\system32\drivers\rr276x.sys [227424 2010-10-12] (HighPoint Technologies, Inc.)
S3 rr278x; C:\Windows\system32\drivers\rr278x.sys [232032 2011-05-16] (HighPoint Technologies, Inc.)
S3 rr62x; C:\Windows\system32\drivers\rr62x.sys [156256 2010-06-16] (HighPoint Technologies, Inc.)
S3 rusb3hub; C:\Windows\system32\drivers\rusb3hub.sys [100352 2011-09-15] (Renesas Electronics Corporation)
S3 rusb3xhc; C:\Windows\system32\drivers\rusb3xhc.sys [216064 2011-09-15] (Renesas Electronics Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 SI3112r; C:\Windows\system32\drivers\SI3112r.sys [164656 2007-02-01] (Silicon Image, Inc)
S3 SI3114; C:\Windows\system32\drivers\SI3114.sys [99120 2006-11-10] (Silicon Image, Inc.)
S3 SI3114r; C:\Windows\system32\drivers\SI3114R.sys [163632 2007-04-11] (Silicon Image, Inc)
S3 SI3124; C:\Windows\system32\drivers\SI3124.sys [113456 2006-11-02] (Silicon Image, Inc.)
S3 Si3124r5; C:\Windows\system32\drivers\Si3124r5.sys [334640 2006-09-20] (Silicon Image, Inc)
S3 SI3132; C:\Windows\system32\drivers\SI3132.sys [90664 2007-10-03] (Silicon Image, Inc)
S3 Si3531; C:\Windows\system32\drivers\Si3531.sys [333864 2009-02-09] (Silicon Image, Inc)
R0 SiFilter; C:\Windows\System32\drivers\SiWinAcc.sys [22056 2007-10-03] (Silicon Image, Inc)
R0 SiRemFil; C:\Windows\System32\drivers\SiRemFil.sys [17448 2007-10-03] (Silicon Image, Inc)
S3 SISAGP; C:\Windows\system32\drivers\SISAGPX.sys [67104 2009-08-01] (Silicon Integrated Systems Corporation)
S3 smwdm; C:\Windows\System32\drivers\smwdm.sys [348032 2005-11-30] (Analog Devices, Inc.)
R1 SRTSP; C:\Windows\System32\Drivers\SEP\0C0103E8\009D.105\x64\SRTSP64.SYS [678008 2011-10-30] (Symantec Corporation)
R1 SRTSPX; C:\Windows\System32\Drivers\SEP\0C0103E8\009D.105\x64\SRTSPX64.SYS [39032 2011-10-30] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\Drivers\SEP\0C0103E8\009D.105\x64\SYMDS64.SYS [451192 2011-10-30] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\Drivers\SEP\0C0103E8\009D.105\x64\SYMEFA64.SYS [931448 2011-10-30] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [174200 2012-03-31] (Symantec Corporation)
R1 SymIRON; C:\Windows\System32\Drivers\SEP\0C0103E8\009D.105\x64\Ironx64.SYS [171128 2011-10-30] (Symantec Corporation)
R1 SYMNETS; C:\Windows\System32\Drivers\SEP\0C0103E8\009D.105\x64\SYMNETS.SYS [386168 2011-10-30] (Symantec Corporation)
S3 uagp35; C:\Windows\system32\drivers\sisagpx.sys [67104 2009-08-01] (Silicon Integrated Systems Corporation)
S3 uwbusb; C:\Windows\System32\Drivers\usbuwbmini.sys [13312 2008-09-15] (Intel Corp.)
S3 vcrdrx64; C:\Windows\system32\drivers\vcrdrx64.sys [127088 2010-08-12] (VIA Technologies, Inc.)
S3 viaagp1; C:\Windows\system32\drivers\viaagp1.sys [59392 2005-09-22] (VIA Technologies, Inc.)
S3 viamrx64; C:\Windows\system32\drivers\viamrx64.sys [161904 2010-12-02] (VIA Technologies Inc.,Ltd)
S3 videX64; C:\Windows\system32\drivers\videX64.sys [15000 2010-02-11] (VIA Technologies, Inc.)
S3 VST64HWBS2; C:\Windows\System32\DRIVERS\VSTBS26.SYS [411136 2009-06-10] (Conexant Systems, Inc.)
S3 VST64_DPV; C:\Windows\System32\DRIVERS\VSTDPV6.SYS [1485312 2009-06-10] (Conexant Systems, Inc.)
S3 VUSB3HUB; C:\Windows\system32\drivers\ViaHub3.sys [205312 2012-01-20] (VIA Technologies, Inc.)
R0 xfiltx64; C:\Windows\System32\drivers\xfiltx64.sys [26776 2010-02-11] (VIA Technologies, Inc.)
S3 xhcdrv; C:\Windows\system32\drivers\xhcdrv.sys [254464 2012-01-20] (VIA Technologies, Inc.)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-03-26 19:26 - 2014-03-26 19:26 - 00025357 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\FRST.txt
2014-03-26 19:26 - 2014-03-26 19:26 - 00000000 ____D () C:\FRST
2014-03-26 19:25 - 2014-03-26 19:26 - 02157056 _____ (Farbar) C:\Users\Administrator.Chelsea-PC\Downloads\FRST64.exe
2014-03-24 09:36 - 2014-03-24 09:36 - 00002062 _____ () C:\Users\Administrator.Chelsea-PC\Desktop\JRT.txt
2014-03-24 09:30 - 2014-03-24 09:30 - 01950720 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\AdwCleaner (2).exe
2014-03-24 09:27 - 2014-03-24 09:27 - 01038974 _____ (Thisisu) C:\Users\Administrator.Chelsea-PC\Downloads\JRT.exe
2014-03-24 09:27 - 2014-03-24 09:27 - 00000000 ____D () C:\Windows\ERUNT
2014-03-24 09:26 - 2014-03-24 09:27 - 01950720 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\AdwCleaner (1).exe
2014-03-24 09:22 - 2014-03-24 09:22 - 00000000 ____D () C:\AdwCleaner
2014-03-24 09:21 - 2014-03-24 09:22 - 01950720 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\AdwCleaner.exe
2014-03-23 16:39 - 2014-03-23 16:39 - 00118668 _____ () C:\ProgramData\1395610696.bdinstall.bin
2014-03-23 16:12 - 2012-07-25 12:03 - 00016896 _____ () C:\Windows\system32\sasnative64.exe
2014-03-23 16:11 - 2014-03-23 16:14 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Local\Atomic Savings
2014-03-23 16:11 - 2014-03-23 16:11 - 00000000 ____D () C:\Program Files (x86)\Atomic Savings
2014-03-23 16:10 - 2014-03-23 16:46 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Local\af0db0fe-4dfe-49ef-34f1-d39a00e70f2a
2014-03-23 16:10 - 2014-03-23 16:11 - 00001062 __RSH () C:\ProgramData\ntuser.pol
2014-03-23 16:08 - 2014-03-23 16:08 - 00117624 _____ () C:\ProgramData\1395608135.bdinstall.bin
2014-03-23 15:55 - 2014-03-23 15:55 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\QuickScan
2014-03-23 15:54 - 2014-03-23 15:55 - 10447328 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\Antivirus_Free_Edition_x64.exe
2014-03-23 15:52 - 2014-03-23 15:52 - 00162208 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\Antivirus_Free_Edition.exe
2014-03-23 15:43 - 2014-03-23 15:43 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\Malwarebytes
2014-03-23 15:42 - 2014-03-23 15:43 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-03-23 15:42 - 2014-03-23 15:42 - 00001808 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2014-03-23 15:42 - 2014-03-23 15:42 - 00001109 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-03-23 15:42 - 2014-03-23 15:42 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\SUPERAntiSpyware.com
2014-03-23 15:42 - 2014-03-23 15:42 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-23 15:42 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-03-23 15:41 - 2014-03-23 15:42 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-03-23 15:41 - 2014-03-23 15:41 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-03-23 15:40 - 2014-03-23 15:41 - 18435176 _____ (SUPERAntiSpyware) C:\Users\Administrator.Chelsea-PC\Downloads\SUPERAntiSpyware.exe
2014-03-23 15:40 - 2014-03-23 15:41 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Administrator.Chelsea-PC\Downloads\mbam-setup-1.75.0.1300.exe
2014-03-23 03:10 - 2014-03-01 01:05 - 23133696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-23 03:10 - 2014-03-01 00:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-23 03:10 - 2014-03-01 00:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-03-23 03:10 - 2014-02-28 23:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-03-23 03:10 - 2014-02-28 23:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-03-23 03:10 - 2014-02-28 23:42 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-03-23 03:10 - 2014-02-28 23:40 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-03-23 03:10 - 2014-02-28 23:37 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-03-23 03:10 - 2014-02-28 23:33 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-03-23 03:10 - 2014-02-28 23:33 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-03-23 03:10 - 2014-02-28 23:32 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-03-23 03:10 - 2014-02-28 23:30 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-03-23 03:10 - 2014-02-28 23:23 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-03-23 03:10 - 2014-02-28 23:17 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-03-23 03:10 - 2014-02-28 23:11 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-03-23 03:10 - 2014-02-28 23:02 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-03-23 03:10 - 2014-02-28 22:54 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-03-23 03:10 - 2014-02-28 22:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-03-23 03:10 - 2014-02-28 22:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-03-23 03:10 - 2014-02-28 22:47 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-03-23 03:10 - 2014-02-28 22:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-03-23 03:10 - 2014-02-28 22:43 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-03-23 03:10 - 2014-02-28 22:42 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-03-23 03:10 - 2014-02-28 22:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-03-23 03:10 - 2014-02-28 22:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-03-23 03:10 - 2014-02-28 22:37 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-03-23 03:10 - 2014-02-28 22:35 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-03-23 03:10 - 2014-02-28 22:18 - 13051904 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-03-23 03:10 - 2014-02-28 22:16 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-03-23 03:10 - 2014-02-28 22:14 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-03-23 03:10 - 2014-02-28 22:10 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-03-23 03:10 - 2014-02-28 22:03 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-03-23 03:10 - 2014-02-28 22:00 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-03-23 03:10 - 2014-02-28 21:57 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-03-23 03:10 - 2014-02-28 21:38 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-03-23 03:10 - 2014-02-28 21:32 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-03-23 03:10 - 2014-02-28 21:27 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-03-23 03:10 - 2014-02-28 21:25 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-03-23 03:10 - 2014-02-28 21:25 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-03-23 03:10 - 2014-02-06 20:23 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-23 03:10 - 2014-01-28 21:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-03-23 03:10 - 2014-01-28 21:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-03-23 03:10 - 2014-01-27 21:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-03-23 03:07 - 2014-02-03 21:32 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-03-23 03:07 - 2014-02-03 21:32 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-23 03:07 - 2014-02-03 21:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-03-23 03:07 - 2014-02-03 21:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-03-15 17:04 - 2014-03-22 00:54 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\Desktop\MP3collection
2014-03-15 11:19 - 2014-03-16 23:05 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\Awesomium
2014-03-15 10:52 - 2014-03-15 10:52 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\Documents\Elder Scrolls Online
2014-03-15 10:52 - 2014-03-15 10:52 - 00000000 ____D () C:\ProgramData\Elder Scrolls Online
2014-03-15 02:05 - 2014-03-15 02:08 - 00000000 ____D () C:\Program Files (x86)\Zenimax Online
2014-03-11 23:21 - 2014-02-28 23:58 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-03-08 05:23 - 2014-03-08 05:23 - 00600538 ____N () C:\Users\Administrator.Chelsea-PC\Downloads\Seeds logo orange.eps
2014-03-08 05:23 - 2014-03-08 05:23 - 00597618 ____N () C:\Users\Administrator.Chelsea-PC\Downloads\Seeds logo green.eps
2014-03-08 04:42 - 2014-03-08 04:43 - 38552216 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\WacomTablet_6.3.7-6 (1).exe
2014-03-04 12:19 - 2014-03-04 12:19 - 00003512 _____ () C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-MY-PC-Administrator
2014-03-03 20:51 - 2014-03-03 20:51 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-03-03 19:48 - 2014-03-03 19:48 - 00000222 _____ () C:\Users\Administrator.Chelsea-PC\Desktop\Antichamber.url
2014-03-02 18:14 - 2014-03-02 18:14 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\Documents\My Games
2014-03-02 17:16 - 2014-03-02 17:16 - 00000222 _____ () C:\Users\Administrator.Chelsea-PC\Desktop\Path of Exile.url
2014-03-02 14:48 - 2010-06-02 05:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2014-03-02 14:48 - 2010-06-02 05:55 - 00518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2014-03-02 14:48 - 2010-06-02 05:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2014-03-02 14:48 - 2010-06-02 05:55 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2014-03-02 14:48 - 2010-06-02 05:55 - 00077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2014-03-02 14:48 - 2010-06-02 05:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2014-03-02 14:48 - 2010-05-26 12:41 - 02526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2014-03-02 14:48 - 2010-05-26 12:41 - 02401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2014-03-02 14:48 - 2010-05-26 12:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2014-03-02 14:48 - 2010-05-26 12:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2014-03-02 14:48 - 2010-05-26 12:41 - 01907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2014-03-02 14:48 - 2010-05-26 12:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2014-03-02 14:48 - 2010-05-26 12:41 - 00511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2014-03-02 14:48 - 2010-05-26 12:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2014-03-02 14:48 - 2010-05-26 12:41 - 00276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2014-03-02 14:48 - 2010-05-26 12:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2014-03-02 14:48 - 2010-02-04 11:01 - 00530776 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2014-03-02 14:48 - 2010-02-04 11:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_6.dll
2014-03-02 14:48 - 2010-02-04 11:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_6.dll
2014-03-02 14:48 - 2010-02-04 11:01 - 00176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2014-03-02 14:48 - 2010-02-04 11:01 - 00078680 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2014-03-02 14:48 - 2010-02-04 11:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_4.dll
2014-03-02 14:48 - 2010-02-04 11:01 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2014-03-02 14:48 - 2010-02-04 11:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_7.dll
2014-03-02 14:48 - 2009-09-04 18:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2014-03-02 14:48 - 2009-09-04 18:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2014-03-02 14:48 - 2009-09-04 18:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2014-03-02 14:48 - 2009-09-04 18:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2014-03-02 14:48 - 2009-09-04 18:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2014-03-02 14:48 - 2009-09-04 18:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2014-03-02 14:48 - 2009-09-04 18:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2014-03-02 14:48 - 2009-09-04 18:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2014-03-02 14:48 - 2009-09-04 18:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2014-03-02 14:48 - 2009-09-04 18:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2014-03-02 14:48 - 2009-09-04 18:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2014-03-02 14:48 - 2009-09-04 18:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2014-03-02 14:48 - 2009-09-04 18:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2014-03-02 14:48 - 2009-09-04 18:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2014-03-02 14:48 - 2009-09-04 18:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2014-03-02 14:48 - 2009-09-04 18:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2014-03-02 14:48 - 2009-03-16 15:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2014-03-02 14:48 - 2009-03-16 15:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2014-03-02 14:48 - 2009-03-16 15:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2014-03-02 14:48 - 2009-03-16 15:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2014-03-02 14:48 - 2009-03-16 15:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2014-03-02 14:48 - 2009-03-16 15:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2014-03-02 14:48 - 2009-03-09 16:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2014-03-02 14:48 - 2009-03-09 16:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2014-03-02 14:48 - 2009-03-09 16:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2014-03-02 14:48 - 2009-03-09 16:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2014-03-02 14:48 - 2009-03-09 16:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2014-03-02 14:48 - 2009-03-09 16:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2014-03-02 14:48 - 2008-10-27 11:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2014-03-02 14:48 - 2008-10-27 11:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2014-03-02 14:48 - 2008-10-27 11:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2014-03-02 14:48 - 2008-10-27 11:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2014-03-02 14:48 - 2008-10-27 11:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2014-03-02 14:48 - 2008-10-27 11:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2014-03-02 14:48 - 2008-10-27 11:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2014-03-02 14:48 - 2008-10-27 11:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2014-03-02 14:48 - 2008-10-15 07:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2014-03-02 14:48 - 2008-10-15 07:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2014-03-02 14:48 - 2008-10-15 07:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2014-03-02 14:48 - 2008-10-15 07:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2014-03-02 14:48 - 2008-10-15 07:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2014-03-02 14:48 - 2008-10-15 07:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2014-03-02 14:48 - 2008-07-31 11:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2014-03-02 14:48 - 2008-07-31 11:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2014-03-02 14:48 - 2008-07-31 11:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2014-03-02 14:48 - 2008-07-31 11:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2014-03-02 14:48 - 2008-07-31 11:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2014-03-02 14:48 - 2008-07-31 11:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2014-03-02 14:48 - 2008-07-10 12:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2014-03-02 14:48 - 2008-07-10 12:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2014-03-02 14:48 - 2008-07-10 12:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2014-03-02 14:48 - 2008-07-10 12:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2014-03-02 14:48 - 2008-07-10 12:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2014-03-02 14:48 - 2008-07-10 12:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2014-03-02 14:48 - 2008-05-30 15:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2014-03-02 14:48 - 2008-05-30 15:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2014-03-02 14:48 - 2008-05-30 15:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2014-03-02 14:48 - 2008-05-30 15:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2014-03-02 14:48 - 2008-05-30 15:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2014-03-02 14:48 - 2008-05-30 15:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2014-03-02 14:48 - 2008-05-30 15:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2014-03-02 14:48 - 2008-05-30 15:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2014-03-02 14:48 - 2008-05-30 15:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2014-03-02 14:48 - 2008-05-30 15:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2014-03-02 14:48 - 2008-05-30 15:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2014-03-02 14:48 - 2008-05-30 15:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2014-03-02 14:48 - 2008-05-30 15:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2014-03-02 14:48 - 2008-05-30 15:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2014-03-02 14:48 - 2008-03-05 17:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2014-03-02 14:48 - 2008-03-05 17:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2014-03-02 14:48 - 2008-03-05 17:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2014-03-02 14:48 - 2008-03-05 17:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2014-03-02 14:48 - 2008-03-05 17:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2014-03-02 14:48 - 2008-03-05 17:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2014-03-02 14:48 - 2008-03-05 16:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2014-03-02 14:48 - 2008-03-05 16:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2014-03-02 14:48 - 2008-03-05 16:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2014-03-02 14:48 - 2008-03-05 16:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2014-03-02 14:48 - 2008-02-06 00:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2014-03-02 14:48 - 2008-02-06 00:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2014-03-02 14:48 - 2007-10-22 04:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2014-03-02 14:48 - 2007-10-22 04:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2014-03-02 14:48 - 2007-10-22 04:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2014-03-02 14:48 - 2007-10-22 04:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2014-03-02 14:48 - 2007-10-12 16:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2014-03-02 14:48 - 2007-10-12 16:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2014-03-02 14:48 - 2007-10-12 16:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2014-03-02 14:48 - 2007-10-12 16:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2014-03-02 14:48 - 2007-10-02 10:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2014-03-02 14:48 - 2007-10-02 10:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2014-03-02 14:48 - 2007-07-20 01:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2014-03-02 14:48 - 2007-07-20 01:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2014-03-02 14:48 - 2007-07-19 19:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2014-03-02 14:48 - 2007-07-19 19:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2014-03-02 14:48 - 2007-07-19 19:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2014-03-02 14:48 - 2007-07-19 19:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2014-03-02 14:48 - 2007-07-19 19:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2014-03-02 14:48 - 2007-07-19 19:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2014-03-02 14:48 - 2007-06-20 21:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2014-03-02 14:48 - 2007-06-20 21:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2014-03-02 14:48 - 2007-05-16 17:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2014-03-02 14:48 - 2007-05-16 17:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2014-03-02 14:48 - 2007-05-16 17:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2014-03-02 14:48 - 2007-05-16 17:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2014-03-02 14:48 - 2007-05-16 17:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2014-03-02 14:48 - 2007-05-16 17:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2014-03-02 14:48 - 2007-04-04 19:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2014-03-02 14:48 - 2007-04-04 19:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2014-03-02 14:48 - 2007-04-04 19:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2014-03-02 14:48 - 2007-04-04 19:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2014-03-02 14:48 - 2007-03-15 17:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2014-03-02 14:48 - 2007-03-15 17:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2014-03-02 14:48 - 2007-03-12 17:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2014-03-02 14:48 - 2007-03-12 17:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2014-03-02 14:48 - 2007-03-12 17:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2014-03-02 14:48 - 2007-03-12 17:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2014-03-02 14:47 - 2014-03-03 20:50 - 00028424 _____ () C:\Windows\DirectX.log
2014-03-02 14:47 - 2007-03-05 13:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2014-03-02 14:47 - 2007-03-05 13:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2014-03-02 14:47 - 2007-01-24 16:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2014-03-02 14:47 - 2007-01-24 16:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2014-03-02 14:47 - 2006-12-08 13:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2014-03-02 14:47 - 2006-12-08 13:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2014-03-02 14:47 - 2006-11-29 14:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2014-03-02 14:47 - 2006-11-29 14:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2014-03-02 14:47 - 2006-11-29 14:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2014-03-02 14:47 - 2006-11-29 14:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2014-03-02 14:47 - 2006-09-28 17:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2014-03-02 14:47 - 2006-09-28 17:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2014-03-02 14:47 - 2006-09-28 17:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2014-03-02 14:47 - 2006-09-28 17:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2014-03-02 14:47 - 2006-07-28 10:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2014-03-02 14:47 - 2006-07-28 10:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2014-03-02 14:47 - 2006-07-28 10:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2014-03-02 14:47 - 2006-07-28 10:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2014-03-02 14:47 - 2006-05-31 08:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2014-03-02 14:47 - 2006-05-31 08:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2014-03-02 14:47 - 2006-03-31 13:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2014-03-02 14:47 - 2006-03-31 13:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2014-03-02 14:47 - 2006-03-31 13:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2014-03-02 14:47 - 2006-03-31 13:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2014-03-02 14:47 - 2006-03-31 13:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2014-03-02 14:47 - 2006-03-31 13:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2014-03-02 14:47 - 2006-02-03 09:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2014-03-02 14:47 - 2006-02-03 09:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2014-03-02 14:47 - 2006-02-03 09:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2014-03-02 14:47 - 2006-02-03 09:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2014-03-02 14:47 - 2006-02-03 09:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2014-03-02 14:47 - 2006-02-03 09:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2014-03-02 14:47 - 2005-12-05 19:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2014-03-02 14:47 - 2005-12-05 19:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2014-03-02 14:47 - 2005-07-22 20:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2014-03-02 14:47 - 2005-07-22 20:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2014-03-02 14:47 - 2005-05-26 16:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2014-03-02 14:47 - 2005-05-26 16:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2014-03-02 14:47 - 2005-03-18 18:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2014-03-02 14:47 - 2005-03-18 18:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2014-03-02 14:47 - 2005-02-05 20:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2014-03-02 14:47 - 2005-02-05 20:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2014-03-02 14:19 - 2014-03-02 14:30 - 00000000 ____D () C:\Windows\hsperfdata_Administrator
2014-03-02 14:19 - 2014-03-02 14:19 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\8BitMMO
2014-03-02 14:10 - 2014-03-03 19:48 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-03-02 14:10 - 2014-03-02 14:10 - 00000222 _____ () C:\Users\Administrator.Chelsea-PC\Desktop\8BitMMO.url
2014-03-02 13:51 - 2014-03-24 09:49 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-03-02 13:51 - 2014-03-02 13:51 - 00000963 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-03-02 13:50 - 2014-03-02 13:50 - 01141680 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\SteamSetup.exe
2014-03-02 04:01 - 2013-12-21 04:53 - 00548864 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-03-02 04:01 - 2013-12-21 03:56 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-03-01 12:33 - 2014-03-23 16:35 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\Desktop\Image Files
2014-03-01 10:02 - 2014-03-22 00:55 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-03-01 09:51 - 2014-03-01 09:53 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\Desktop\Adobe Illustrator CS6 16.0.0 (32-64 bit) [ChingLiu]
2014-03-01 09:48 - 2014-03-01 09:48 - 00000000 ____D () C:\Program Files\Adobe
2014-03-01 09:34 - 2014-03-01 09:34 - 00000000 ____D () C:\ProgramData\ALM
2014-03-01 09:26 - 2014-03-01 09:34 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Local\Microsoft Games
2014-03-01 09:25 - 2014-03-01 09:25 - 00000000 ____D () C:\Windows\SysWOW64\spool
2014-03-01 09:24 - 2014-03-01 09:24 - 00000000 ____D () C:\Program Files (x86)\Adobe Media Player
2014-03-01 09:19 - 2014-03-01 09:19 - 00000000 ____D () C:\Program Files\Common Files\Macrovision Shared
2014-02-28 22:55 - 2014-02-28 22:56 - 12787232 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\Jesus_Sewing_Sketch2.tif
2014-02-28 21:31 - 2014-02-28 21:31 - 00000664 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\[kickass.to]adobe.master.suite.cs4.keygen.torrent
2014-02-28 21:17 - 2014-02-28 21:17 - 02803718 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\Jesus_Sewing_Sketch1.tif
2014-02-28 04:54 - 2013-05-10 00:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2014-02-28 04:54 - 2013-05-10 00:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2014-02-28 04:54 - 2013-05-09 23:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2014-02-28 04:54 - 2013-05-09 23:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2014-02-28 04:51 - 2014-03-23 03:02 - 00000000 ____D () C:\Windows\system32\MRT
2014-02-28 04:48 - 2013-10-14 19:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-02-28 04:43 - 2014-02-28 04:43 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-02-28 04:43 - 2014-02-28 04:43 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-02-28 04:43 - 2014-02-28 04:43 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-02-28 04:43 - 2014-02-28 04:43 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-02-28 04:43 - 2014-02-28 04:43 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-02-28 04:43 - 2014-02-28 04:43 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-02-28 04:43 - 2014-02-28 04:43 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-02-28 04:43 - 2014-02-28 04:43 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-02-28 04:43 - 2014-02-28 04:43 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-02-28 04:43 - 2014-02-28 04:43 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-02-28 04:43 - 2014-02-28 04:43 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-02-28 04:43 - 2014-02-28 04:43 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-02-28 04:43 - 2014-02-28 04:43 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-02-28 04:43 - 2014-02-28 04:43 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-02-28 04:43 - 2014-02-28 04:43 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-02-28 04:43 - 2014-02-28 04:43 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-02-28 04:43 - 2014-02-28 04:43 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-02-28 04:43 - 2014-02-28 04:43 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-02-28 04:41 - 2014-02-28 04:48 - 00009168 _____ () C:\Windows\IE11_main.log
2014-02-28 01:03 - 2014-02-28 01:03 - 00007605 _____ () C:\Users\Administrator.Chelsea-PC\AppData\Local\Resmon.ResmonCfg
2014-02-27 19:16 - 2014-03-23 17:41 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\Documents\Outlook Files
2014-02-27 18:18 - 2013-12-31 18:05 - 00420008 _____ () C:\Windows\SysWOW64\locale.nls
2014-02-27 18:18 - 2013-12-31 18:04 - 00420008 _____ () C:\Windows\system32\locale.nls
2014-02-27 18:18 - 2013-11-23 13:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-02-27 18:18 - 2013-11-23 12:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-02-27 18:18 - 2013-10-29 21:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2014-02-27 18:18 - 2013-10-29 21:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2014-02-27 18:18 - 2013-10-03 21:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2014-02-27 18:18 - 2013-10-03 21:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2014-02-27 18:18 - 2013-10-03 21:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-02-27 18:18 - 2013-10-03 20:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2014-02-27 18:18 - 2013-10-03 20:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-02-27 18:18 - 2013-10-03 20:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2014-02-27 18:18 - 2013-07-09 00:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2014-02-27 18:18 - 2013-07-08 23:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2014-02-27 18:18 - 2013-07-04 07:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2014-02-27 18:18 - 2013-07-04 06:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2014-02-27 18:16 - 2013-09-24 21:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-02-27 18:16 - 2013-09-24 21:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-02-27 18:16 - 2013-09-24 21:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-02-27 18:16 - 2013-09-24 21:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-02-27 18:16 - 2013-09-24 21:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-02-27 18:16 - 2013-09-24 21:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-02-27 18:16 - 2013-09-24 21:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-02-27 18:16 - 2013-09-24 21:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-02-27 18:16 - 2013-09-24 20:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-02-27 18:16 - 2013-09-24 20:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-02-27 18:16 - 2013-09-24 20:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-02-27 18:16 - 2013-09-24 20:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-02-27 18:16 - 2013-09-24 20:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-02-27 18:16 - 2013-07-04 07:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-02-27 18:05 - 2013-10-05 15:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-02-27 18:05 - 2013-10-05 14:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-02-27 18:05 - 2013-07-09 00:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2014-02-27 18:05 - 2013-07-09 00:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2014-02-27 18:05 - 2013-07-08 23:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2014-02-27 18:05 - 2013-07-08 23:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2014-02-27 18:04 - 2013-12-05 21:30 - 01882112 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-02-27 18:04 - 2013-12-05 21:30 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-02-27 18:04 - 2013-12-05 21:02 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-02-27 18:04 - 2013-12-05 21:02 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-02-27 18:04 - 2013-11-11 21:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-02-27 18:04 - 2013-11-11 21:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-02-27 18:04 - 2013-10-18 21:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-02-27 18:04 - 2013-10-18 20:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-02-27 18:03 - 2013-10-03 21:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-02-27 18:03 - 2013-10-03 20:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-02-27 18:03 - 2013-09-27 20:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-02-27 18:03 - 2013-08-04 21:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-02-27 18:03 - 2013-06-06 00:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-02-27 18:03 - 2013-06-06 00:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-02-27 18:03 - 2013-06-06 00:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-02-27 18:03 - 2013-06-06 00:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-02-27 18:03 - 2013-06-05 23:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2014-02-27 18:03 - 2013-06-05 23:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2014-02-27 18:03 - 2013-06-05 23:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2014-02-27 18:03 - 2013-06-05 22:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-02-27 18:03 - 2013-06-05 22:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2014-02-27 18:03 - 2013-06-05 22:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2014-02-27 17:52 - 2013-12-03 21:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2014-02-27 17:52 - 2013-12-03 21:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2014-02-27 17:52 - 2013-12-03 21:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2014-02-27 17:52 - 2013-12-03 21:27 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2014-02-27 17:52 - 2013-12-03 21:26 - 00528384 _____ (Microsoft Corporation) C:\Windows\system32\msdrm.dll
2014-02-27 17:52 - 2013-12-03 21:16 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2014-02-27 17:52 - 2013-12-03 21:16 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2014-02-27 17:52 - 2013-12-03 21:16 - 00553984 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2014-02-27 17:52 - 2013-12-03 21:16 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2014-02-27 17:52 - 2013-12-03 21:03 - 00428032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2014-02-27 17:52 - 2013-12-03 21:03 - 00423936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2014-02-27 17:52 - 2013-12-03 21:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2014-02-27 17:52 - 2013-12-03 21:03 - 00087040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2014-02-27 17:52 - 2013-12-03 21:02 - 00390144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdrm.dll
2014-02-27 17:52 - 2013-12-03 20:54 - 00594944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2014-02-27 17:52 - 2013-12-03 20:54 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2014-02-27 17:52 - 2013-12-03 20:54 - 00510976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2014-02-27 17:52 - 2013-12-03 20:54 - 00508928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2014-02-27 17:50 - 2013-11-26 20:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-02-27 17:50 - 2013-11-26 20:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-02-27 17:50 - 2013-11-26 20:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-02-27 17:50 - 2013-11-26 20:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-02-27 17:50 - 2013-11-26 20:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-02-27 17:50 - 2013-11-26 20:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-02-27 17:50 - 2013-11-26 20:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-02-27 17:50 - 2013-08-01 21:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2014-02-27 17:50 - 2013-08-01 21:13 - 01161216 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-02-27 17:50 - 2013-08-01 21:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:50 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-02-27 17:50 - 2013-08-01 20:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 20:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2014-02-27 17:50 - 2013-08-01 19:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2014-02-27 17:50 - 2013-08-01 19:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 19:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 19:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2014-02-27 17:50 - 2013-08-01 19:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2014-02-27 17:50 - 2013-07-25 04:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2014-02-27 17:50 - 2013-07-25 03:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2014-02-27 17:47 - 2014-03-01 09:54 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-02-27 17:47 - 2014-02-27 17:47 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-02-27 17:45 - 2014-02-27 17:45 - 00001896 _____ () C:\Users\Public\Desktop\Adobe Photoshop Elements 11.lnk
2014-02-27 17:45 - 2012-08-10 04:01 - 00056336 ____N (Corel Corporation) C:\Windows\system32\Drivers\PxHlpa64.sys
2014-02-27 17:45 - 2012-04-24 04:01 - 00011376 ____N (Corel Corporation) C:\Windows\system32\Drivers\cdralw2k.sys
2014-02-27 17:45 - 2012-04-24 04:01 - 00010864 ____N (Corel Corporation) C:\Windows\system32\Drivers\cdr4_xp.sys
2014-02-27 17:39 - 2013-07-09 00:51 - 01217024 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-02-27 17:39 - 2013-07-08 23:52 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-02-27 17:39 - 2013-06-25 17:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2014-02-27 17:35 - 2014-02-27 19:37 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\Desktop\Adobe Photoshop Elements 11
2014-02-27 17:34 - 2013-07-12 05:41 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2014-02-27 17:34 - 2013-07-12 05:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-02-27 17:34 - 2013-07-12 05:40 - 00109824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBAUDIO.sys
2014-02-27 17:34 - 2013-07-04 07:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-02-27 17:34 - 2013-07-04 07:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-02-27 17:34 - 2013-07-04 06:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-02-27 17:34 - 2013-07-04 06:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-02-27 17:34 - 2013-07-04 05:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-02-27 17:34 - 2013-07-02 23:40 - 00042496 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbscan.sys
2014-02-27 17:34 - 2013-07-02 23:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-02-27 17:34 - 2013-07-02 23:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-02-27 17:28 - 2014-02-27 17:28 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\WTablet
2014-02-27 17:25 - 2014-03-08 04:43 - 00000000 ____D () C:\Program Files\Tablet
2014-02-27 17:25 - 2014-02-27 17:25 - 00000000 ____D () C:\Program Files\TabletPlugins
2014-02-27 17:25 - 2014-02-27 17:25 - 00000000 ____D () C:\Program Files (x86)\TabletPlugins
2014-02-27 17:25 - 2013-12-04 11:35 - 01945880 _____ (Wacom Technology, Corp.) C:\Windows\system32\Wacom_Tablet.dll
2014-02-27 17:25 - 2013-12-04 11:35 - 01938712 _____ (Wacom Technology, Corp.) C:\Windows\system32\Wacom_Touch_Tablet.dll
2014-02-27 17:25 - 2013-12-04 11:35 - 01808152 _____ (Wacom Technology, Corp.) C:\Windows\system32\Wintab32.dll
2014-02-27 17:25 - 2013-12-04 11:35 - 01805080 _____ (Wacom Technology, Corp.) C:\Windows\system32\WacomMT.dll
2014-02-27 17:25 - 2013-12-04 11:35 - 01604376 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\Wacom_Tablet.dll
2014-02-27 17:25 - 2013-12-04 11:35 - 01596696 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\Wacom_Touch_Tablet.dll
2014-02-27 17:25 - 2013-12-04 11:35 - 01483032 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\Wintab32.dll
2014-02-27 17:25 - 2013-12-04 11:35 - 01479960 _____ (Wacom Technology, Corp.) C:\Windows\SysWOW64\WacomMT.dll
2014-02-27 17:25 - 2013-11-11 19:16 - 00090424 _____ (Wacom Technology) C:\Windows\system32\Drivers\wachidrouter.sys
2014-02-27 17:25 - 2013-11-11 19:16 - 00015160 _____ (Wacom Technology) C:\Windows\system32\Drivers\wacomrouterfilter.sys
2014-02-27 17:24 - 2013-12-24 18:09 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-02-27 17:24 - 2013-12-24 17:48 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-02-27 17:24 - 2013-11-26 03:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-02-27 17:24 - 2013-11-22 17:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-02-27 17:23 - 2013-11-26 06:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-02-27 17:23 - 2013-10-02 21:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-02-27 17:23 - 2013-10-02 21:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-02-27 17:23 - 2013-09-07 21:30 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-02-27 17:23 - 2013-09-07 21:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2014-02-27 17:23 - 2013-09-07 21:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2014-02-27 17:23 - 2013-08-28 21:17 - 05549504 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-02-27 17:23 - 2013-08-28 21:16 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-02-27 17:23 - 2013-08-28 21:16 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2014-02-27 17:23 - 2013-08-28 21:16 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-02-27 17:23 - 2013-08-28 21:13 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2014-02-27 17:23 - 2013-08-28 20:51 - 03969472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-02-27 17:23 - 2013-08-28 20:51 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-02-27 17:23 - 2013-08-28 20:50 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-02-27 17:23 - 2013-08-28 20:50 - 00619520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdh.dll
2014-02-27 17:23 - 2013-08-28 20:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-02-27 17:23 - 2013-08-28 20:48 - 00640512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2014-02-27 17:23 - 2013-08-28 19:49 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-02-27 17:23 - 2013-08-28 19:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-02-27 17:23 - 2013-08-28 19:49 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-02-27 17:23 - 2013-08-28 19:49 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-02-27 17:23 - 2013-07-25 21:24 - 14172672 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-02-27 17:23 - 2013-07-25 21:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2014-02-27 17:23 - 2013-07-25 20:55 - 12872704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-02-27 17:23 - 2013-07-25 20:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2014-02-27 17:23 - 2013-07-20 05:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2014-02-27 17:23 - 2013-07-20 05:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2014-02-27 17:23 - 2013-06-14 23:35 - 01111552 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-02-27 17:23 - 2013-06-14 23:32 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-02-27 17:20 - 2014-02-27 17:23 - 38552216 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\WacomTablet_6.3.7-6.exe
2014-02-27 16:36 - 2014-02-27 16:36 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\Autodesk
2014-02-27 16:29 - 2014-02-27 16:29 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\Ambient Design
2014-02-27 16:29 - 2014-02-27 16:29 - 00000000 ____D () C:\ProgramData\Alias
2014-02-27 16:29 - 2014-02-27 16:29 - 00000000 ____D () C:\Program Files (x86)\Autodesk
2014-02-27 16:27 - 2014-02-27 16:27 - 00000000 ____D () C:\Program Files (x86)\Ambient Design
2014-02-27 16:19 - 2014-02-27 16:19 - 00003254 _____ () C:\Windows\System32\Tasks\{E4909F82-4A48-4F25-90EB-A1DD8BAABD79}
2014-02-27 16:13 - 2014-02-27 17:13 - 1060697786 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\Photoshop_Elements_11_T1.zip
2014-02-27 16:10 - 2014-02-27 16:13 - 50886397 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\SketchBook_Express_v6_2.zip
2014-02-27 16:00 - 2014-02-27 16:05 - 73516758 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\ArtRage_Studio_3_EN.zip
2014-02-27 16:00 - 2014-02-27 16:03 - 34915605 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\CEP_3_0_WacomEdition6_3_111.zip
2014-02-27 15:51 - 2013-10-11 21:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-02-27 15:51 - 2013-10-11 21:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-02-27 15:51 - 2013-10-11 21:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-02-27 15:51 - 2013-10-11 21:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-02-27 15:51 - 2013-10-11 21:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-02-27 15:51 - 2013-10-11 21:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2014-02-27 15:51 - 2013-10-11 21:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-02-27 15:51 - 2013-10-11 21:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-02-27 15:51 - 2013-10-11 21:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-02-27 15:51 - 2013-10-11 20:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-02-27 15:51 - 2013-10-11 20:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-02-27 15:51 - 2013-10-11 20:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2014-02-27 15:51 - 2013-10-11 20:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-02-27 15:51 - 2013-08-27 20:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-02-27 15:51 - 2013-08-01 07:09 - 00983488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-02-27 15:43 - 2014-02-27 15:43 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_wacomrouterfilter_01009.Wdf
2014-02-27 15:43 - 2014-02-27 15:43 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_wachidrouter_01009.Wdf
2014-02-27 15:43 - 2013-11-11 19:16 - 00014136 _____ (Windows ® Win 7 DDK provider) C:\Windows\system32\Drivers\hidkmdf.sys
2014-02-27 15:43 - 2012-12-11 17:12 - 01721576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wdfcoinstaller01009.dll
2014-02-27 13:29 - 2014-02-27 13:29 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Local\Apple Computer
 
==================== One Month Modified Files and Folders =======
 
2014-03-26 19:26 - 2014-03-26 19:26 - 00025357 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\FRST.txt
2014-03-26 19:26 - 2014-03-26 19:26 - 00000000 ____D () C:\FRST
2014-03-26 19:26 - 2014-03-26 19:25 - 02157056 _____ (Farbar) C:\Users\Administrator.Chelsea-PC\Downloads\FRST64.exe
2014-03-26 19:24 - 2012-03-31 16:12 - 00000912 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-03-26 19:23 - 2012-05-01 16:58 - 01160909 _____ () C:\Windows\WindowsUpdate.log
2014-03-26 18:53 - 2012-03-31 16:11 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-03-26 18:28 - 2012-05-07 16:50 - 00000936 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3352250188-2419804836-1388346719-1000UA.job
2014-03-26 07:59 - 2012-03-31 16:12 - 00000908 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-03-25 22:10 - 2012-05-07 16:50 - 00000914 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3352250188-2419804836-1388346719-1000Core.job
2014-03-25 08:37 - 2009-07-14 00:13 - 00730532 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-03-24 09:49 - 2014-03-02 13:51 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-03-24 09:36 - 2014-03-24 09:36 - 00002062 _____ () C:\Users\Administrator.Chelsea-PC\Desktop\JRT.txt
2014-03-24 09:32 - 2009-07-13 23:45 - 00026368 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-03-24 09:32 - 2009-07-13 23:45 - 00026368 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-03-24 09:30 - 2014-03-24 09:30 - 01950720 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\AdwCleaner (2).exe
2014-03-24 09:27 - 2014-03-24 09:27 - 01038974 _____ (Thisisu) C:\Users\Administrator.Chelsea-PC\Downloads\JRT.exe
2014-03-24 09:27 - 2014-03-24 09:27 - 00000000 ____D () C:\Windows\ERUNT
2014-03-24 09:27 - 2014-03-24 09:26 - 01950720 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\AdwCleaner (1).exe
2014-03-24 09:25 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-03-24 09:24 - 2012-03-31 17:17 - 00033207 _____ () C:\Windows\setupact.log
2014-03-24 09:22 - 2014-03-24 09:22 - 00000000 ____D () C:\AdwCleaner
2014-03-24 09:22 - 2014-03-24 09:21 - 01950720 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\AdwCleaner.exe
2014-03-24 03:22 - 2009-07-13 23:45 - 03827016 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-24 03:21 - 2013-03-20 21:00 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-03-24 03:21 - 2013-03-20 21:00 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-03-24 03:04 - 2012-03-31 15:34 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-03-23 17:41 - 2014-02-27 19:16 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\Documents\Outlook Files
2014-03-23 16:47 - 2012-07-25 10:20 - 00073436 _____ () C:\Windows\PFRO.log
2014-03-23 16:46 - 2014-03-23 16:10 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Local\af0db0fe-4dfe-49ef-34f1-d39a00e70f2a
2014-03-23 16:39 - 2014-03-23 16:39 - 00118668 _____ () C:\ProgramData\1395610696.bdinstall.bin
2014-03-23 16:35 - 2014-03-01 12:33 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\Desktop\Image Files
2014-03-23 16:14 - 2014-03-23 16:11 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Local\Atomic Savings
2014-03-23 16:11 - 2014-03-23 16:11 - 00000000 ____D () C:\Program Files (x86)\Atomic Savings
2014-03-23 16:11 - 2014-03-23 16:10 - 00001062 __RSH () C:\ProgramData\ntuser.pol
2014-03-23 16:10 - 2009-07-13 22:20 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2014-03-23 16:10 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-03-23 16:08 - 2014-03-23 16:08 - 00117624 _____ () C:\ProgramData\1395608135.bdinstall.bin
2014-03-23 15:55 - 2014-03-23 15:55 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\QuickScan
2014-03-23 15:55 - 2014-03-23 15:54 - 10447328 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\Antivirus_Free_Edition_x64.exe
2014-03-23 15:52 - 2014-03-23 15:52 - 00162208 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\Antivirus_Free_Edition.exe
2014-03-23 15:43 - 2014-03-23 15:43 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\Malwarebytes
2014-03-23 15:43 - 2014-03-23 15:42 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-03-23 15:42 - 2014-03-23 15:42 - 00001808 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2014-03-23 15:42 - 2014-03-23 15:42 - 00001109 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-03-23 15:42 - 2014-03-23 15:42 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\SUPERAntiSpyware.com
2014-03-23 15:42 - 2014-03-23 15:42 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-23 15:42 - 2014-03-23 15:41 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-03-23 15:41 - 2014-03-23 15:41 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-03-23 15:41 - 2014-03-23 15:40 - 18435176 _____ (SUPERAntiSpyware) C:\Users\Administrator.Chelsea-PC\Downloads\SUPERAntiSpyware.exe
2014-03-23 15:41 - 2014-03-23 15:40 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Administrator.Chelsea-PC\Downloads\mbam-setup-1.75.0.1300.exe
2014-03-23 03:02 - 2014-02-28 04:51 - 00000000 ____D () C:\Windows\system32\MRT
2014-03-23 03:01 - 2012-03-31 14:49 - 90015360 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-03-22 16:20 - 2012-03-31 16:11 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-22 16:20 - 2012-03-31 16:11 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-22 16:20 - 2012-03-31 16:11 - 00003768 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-03-22 00:58 - 2013-07-23 15:32 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC
2014-03-22 00:55 - 2014-03-01 10:02 - 00000000 ____D () C:\ProgramData\FLEXnet
2014-03-22 00:55 - 2013-07-23 15:33 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lenovo
2014-03-22 00:55 - 2012-05-01 16:59 - 00000000 ____D () C:\Users\Chelsea
2014-03-22 00:55 - 2012-03-31 16:11 - 00000000 ____D () C:\Windows\system32\Macromed
2014-03-22 00:55 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\L2Schemas
2014-03-22 00:55 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\AppCompat
2014-03-22 00:54 - 2014-03-15 17:04 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\Desktop\MP3collection
2014-03-22 00:54 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\registration
2014-03-22 00:53 - 2012-03-31 15:33 - 00000000 __RHD () C:\MSOCache
2014-03-16 23:05 - 2014-03-15 11:19 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\Awesomium
2014-03-15 10:52 - 2014-03-15 10:52 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\Documents\Elder Scrolls Online
2014-03-15 10:52 - 2014-03-15 10:52 - 00000000 ____D () C:\ProgramData\Elder Scrolls Online
2014-03-15 02:08 - 2014-03-15 02:05 - 00000000 ____D () C:\Program Files (x86)\Zenimax Online
2014-03-08 05:23 - 2014-03-08 05:23 - 00600538 ____N () C:\Users\Administrator.Chelsea-PC\Downloads\Seeds logo orange.eps
2014-03-08 05:23 - 2014-03-08 05:23 - 00597618 ____N () C:\Users\Administrator.Chelsea-PC\Downloads\Seeds logo green.eps
2014-03-08 04:43 - 2014-03-08 04:42 - 38552216 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\WacomTablet_6.3.7-6 (1).exe
2014-03-08 04:43 - 2014-02-27 17:25 - 00000000 ____D () C:\Program Files\Tablet
2014-03-05 14:38 - 2012-03-31 16:09 - 00000000 ____D () C:\ProgramData\Adobe
2014-03-04 12:19 - 2014-03-04 12:19 - 00003512 _____ () C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-MY-PC-Administrator
2014-03-04 12:12 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-03-03 20:51 - 2014-03-03 20:51 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-03-03 20:50 - 2014-03-02 14:47 - 00028424 _____ () C:\Windows\DirectX.log
2014-03-03 19:48 - 2014-03-03 19:48 - 00000222 _____ () C:\Users\Administrator.Chelsea-PC\Desktop\Antichamber.url
2014-03-03 19:48 - 2014-03-02 14:10 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-03-02 19:15 - 2013-07-23 15:32 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\Adobe
2014-03-02 18:14 - 2014-03-02 18:14 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\Documents\My Games
2014-03-02 17:16 - 2014-03-02 17:16 - 00000222 _____ () C:\Users\Administrator.Chelsea-PC\Desktop\Path of Exile.url
2014-03-02 14:30 - 2014-03-02 14:19 - 00000000 ____D () C:\Windows\hsperfdata_Administrator
2014-03-02 14:19 - 2014-03-02 14:19 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\8BitMMO
2014-03-02 14:18 - 2009-07-13 22:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-03-02 14:10 - 2014-03-02 14:10 - 00000222 _____ () C:\Users\Administrator.Chelsea-PC\Desktop\8BitMMO.url
2014-03-02 13:51 - 2014-03-02 13:51 - 00000963 _____ () C:\Users\Public\Desktop\Steam.lnk
2014-03-02 13:50 - 2014-03-02 13:50 - 01141680 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\SteamSetup.exe
2014-03-02 04:43 - 2009-07-14 00:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-03-01 16:05 - 2013-07-23 15:32 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Local\Adobe
2014-03-01 10:02 - 2013-07-23 15:33 - 00111144 _____ () C:\Users\Administrator.Chelsea-PC\AppData\Local\GDIPFONTCACHEV1.DAT
2014-03-01 09:54 - 2014-02-27 17:47 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-03-01 09:54 - 2012-03-31 16:09 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-03-01 09:53 - 2014-03-01 09:51 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\Desktop\Adobe Illustrator CS6 16.0.0 (32-64 bit) [ChingLiu]
2014-03-01 09:48 - 2014-03-01 09:48 - 00000000 ____D () C:\Program Files\Adobe
2014-03-01 09:34 - 2014-03-01 09:34 - 00000000 ____D () C:\ProgramData\ALM
2014-03-01 09:34 - 2014-03-01 09:26 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Local\Microsoft Games
2014-03-01 09:25 - 2014-03-01 09:25 - 00000000 ____D () C:\Windows\SysWOW64\spool
2014-03-01 09:24 - 2014-03-01 09:24 - 00000000 ____D () C:\Program Files (x86)\Adobe Media Player
2014-03-01 09:19 - 2014-03-01 09:19 - 00000000 ____D () C:\Program Files\Common Files\Macrovision Shared
2014-03-01 01:05 - 2014-03-23 03:10 - 23133696 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-03-01 00:17 - 2014-03-23 03:10 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-03-01 00:16 - 2014-03-23 03:10 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-02-28 23:58 - 2014-03-11 23:21 - 02765824 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-02-28 23:52 - 2014-03-23 03:10 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-02-28 23:51 - 2014-03-23 03:10 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-02-28 23:42 - 2014-03-23 03:10 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-02-28 23:40 - 2014-03-23 03:10 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-02-28 23:37 - 2014-03-23 03:10 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-02-28 23:33 - 2014-03-23 03:10 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-02-28 23:33 - 2014-03-23 03:10 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-02-28 23:32 - 2014-03-23 03:10 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-02-28 23:30 - 2014-03-23 03:10 - 17074688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-02-28 23:23 - 2014-03-23 03:10 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-02-28 23:17 - 2014-03-23 03:10 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-02-28 23:11 - 2014-03-23 03:10 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-02-28 23:02 - 2014-03-23 03:10 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-02-28 22:56 - 2014-02-28 22:55 - 12787232 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\Jesus_Sewing_Sketch2.tif
2014-02-28 22:54 - 2014-03-23 03:10 - 05768704 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-02-28 22:52 - 2014-03-23 03:10 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-02-28 22:51 - 2014-03-23 03:10 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-02-28 22:47 - 2014-03-23 03:10 - 02168320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-02-28 22:43 - 2014-03-23 03:10 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-02-28 22:43 - 2014-03-23 03:10 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-02-28 22:42 - 2014-03-23 03:10 - 00627200 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-02-28 22:40 - 2014-03-23 03:10 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-02-28 22:38 - 2014-03-23 03:10 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-02-28 22:37 - 2014-03-23 03:10 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-02-28 22:35 - 2014-03-23 03:10 - 02041856 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-02-28 22:18 - 2014-03-23 03:10 - 13051904 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-02-28 22:16 - 2014-03-23 03:10 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-02-28 22:14 - 2014-03-23 03:10 - 04244480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-02-28 22:10 - 2014-03-23 03:10 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-02-28 22:03 - 2014-03-23 03:10 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-02-28 22:00 - 2014-03-23 03:10 - 01964032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-02-28 21:57 - 2014-03-23 03:10 - 11266048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-02-28 21:38 - 2014-03-23 03:10 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-02-28 21:32 - 2014-03-23 03:10 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-02-28 21:31 - 2014-02-28 21:31 - 00000664 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\[kickass.to]adobe.master.suite.cs4.keygen.torrent
2014-02-28 21:27 - 2014-03-23 03:10 - 01156096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-02-28 21:25 - 2014-03-23 03:10 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-02-28 21:25 - 2014-03-23 03:10 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-02-28 21:17 - 2014-02-28 21:17 - 02803718 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\Jesus_Sewing_Sketch1.tif
2014-02-28 06:20 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache
2014-02-28 05:31 - 2013-07-23 15:33 - 00001413 _____ () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-02-28 05:31 - 2013-07-23 15:32 - 00000000 ___RD () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-02-28 05:31 - 2013-07-23 15:32 - 00000000 ___RD () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-02-28 05:29 - 2009-07-14 00:08 - 00032560 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-02-28 05:25 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-02-28 05:03 - 2009-07-13 21:34 - 00000540 _____ () C:\Windows\win.ini
2014-02-28 04:48 - 2014-02-28 04:41 - 00009168 _____ () C:\Windows\IE11_main.log
2014-02-28 04:43 - 2014-02-28 04:43 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-02-28 04:43 - 2014-02-28 04:43 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-02-28 04:43 - 2014-02-28 04:43 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-02-28 04:43 - 2014-02-28 04:43 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-02-28 04:43 - 2014-02-28 04:43 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-02-28 04:43 - 2014-02-28 04:43 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-02-28 04:43 - 2014-02-28 04:43 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-02-28 04:43 - 2014-02-28 04:43 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-02-28 04:43 - 2014-02-28 04:43 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-02-28 04:43 - 2014-02-28 04:43 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-02-28 04:43 - 2014-02-28 04:43 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-02-28 04:43 - 2014-02-28 04:43 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-02-28 04:43 - 2014-02-28 04:43 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-02-28 04:43 - 2014-02-28 04:43 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-02-28 04:43 - 2014-02-28 04:43 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-02-28 04:43 - 2014-02-28 04:43 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-02-28 04:43 - 2014-02-28 04:43 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-02-28 04:43 - 2014-02-28 04:43 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-02-28 04:43 - 2014-02-28 04:43 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-02-28 01:19 - 2012-03-31 16:12 - 00003908 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-02-28 01:19 - 2012-03-31 16:12 - 00003656 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-02-28 01:03 - 2014-02-28 01:03 - 00007605 _____ () C:\Users\Administrator.Chelsea-PC\AppData\Local\Resmon.ResmonCfg
2014-02-27 19:37 - 2014-02-27 17:35 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\Desktop\Adobe Photoshop Elements 11
2014-02-27 17:47 - 2014-02-27 17:47 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-02-27 17:45 - 2014-02-27 17:45 - 00001896 _____ () C:\Users\Public\Desktop\Adobe Photoshop Elements 11.lnk
2014-02-27 17:28 - 2014-02-27 17:28 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\WTablet
2014-02-27 17:25 - 2014-02-27 17:25 - 00000000 ____D () C:\Program Files\TabletPlugins
2014-02-27 17:25 - 2014-02-27 17:25 - 00000000 ____D () C:\Program Files (x86)\TabletPlugins
2014-02-27 17:23 - 2014-02-27 17:20 - 38552216 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\WacomTablet_6.3.7-6.exe
2014-02-27 17:13 - 2014-02-27 16:13 - 1060697786 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\Photoshop_Elements_11_T1.zip
2014-02-27 16:36 - 2014-02-27 16:36 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\Autodesk
2014-02-27 16:29 - 2014-02-27 16:29 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\Ambient Design
2014-02-27 16:29 - 2014-02-27 16:29 - 00000000 ____D () C:\ProgramData\Alias
2014-02-27 16:29 - 2014-02-27 16:29 - 00000000 ____D () C:\Program Files (x86)\Autodesk
2014-02-27 16:27 - 2014-02-27 16:27 - 00000000 ____D () C:\Program Files (x86)\Ambient Design
2014-02-27 16:19 - 2014-02-27 16:19 - 00003254 _____ () C:\Windows\System32\Tasks\{E4909F82-4A48-4F25-90EB-A1DD8BAABD79}
2014-02-27 16:13 - 2014-02-27 16:10 - 50886397 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\SketchBook_Express_v6_2.zip
2014-02-27 16:05 - 2014-02-27 16:00 - 73516758 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\ArtRage_Studio_3_EN.zip
2014-02-27 16:03 - 2014-02-27 16:00 - 34915605 _____ () C:\Users\Administrator.Chelsea-PC\Downloads\CEP_3_0_WacomEdition6_3_111.zip
2014-02-27 15:43 - 2014-02-27 15:43 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_wacomrouterfilter_01009.Wdf
2014-02-27 15:43 - 2014-02-27 15:43 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_wachidrouter_01009.Wdf
2014-02-27 15:36 - 2009-07-13 22:20 - 00000000 __RHD () C:\Users\Public\Libraries
2014-02-27 13:29 - 2014-02-27 13:29 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Local\Apple Computer
2014-02-27 13:29 - 2013-07-23 15:33 - 00000000 ____D () C:\Users\Administrator.Chelsea-PC\AppData\Roaming\Apple Computer
 
Some content of TEMP:
====================
C:\Users\Administrator.Chelsea-PC\AppData\Local\Temp\avira-2-0-1-4.exe
C:\Users\Administrator.Chelsea-PC\AppData\Local\Temp\dlLogic.exe
C:\Users\Administrator.Chelsea-PC\AppData\Local\Temp\f7f17e2a-07b0-4805-86cf-b6219009a2d8.exe
C:\Users\Administrator.Chelsea-PC\AppData\Local\Temp\GCVerifier.dll
C:\Users\Administrator.Chelsea-PC\AppData\Local\Temp\mpa04640.exe
C:\Users\Administrator.Chelsea-PC\AppData\Local\Temp\OfertaAtomic Savings.exe
C:\Users\Administrator.Chelsea-PC\AppData\Local\Temp\OfertaLauncher.exe
C:\Users\Administrator.Chelsea-PC\AppData\Local\Temp\Quarantine.exe
C:\Users\Administrator.Chelsea-PC\AppData\Local\Temp\readSTILog.dll
C:\Users\Administrator.Chelsea-PC\AppData\Local\Temp\Setup-Wacom.exe
C:\Users\Chelsea\AppData\Local\Temp\increBibar_install1003.exe
C:\Users\Chelsea\AppData\Local\Temp\installhelper.dll
C:\Users\Chelsea\AppData\Local\Temp\msnsearch.exe
C:\Users\Chelsea\AppData\Local\Temp\mtbres.dll
C:\Users\Chelsea\AppData\Local\Temp\mtbs.exe
C:\Users\Chelsea\AppData\Local\Temp\setup.exe
C:\Users\Chelsea\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Chelsea\AppData\Local\Temp\SpotifyUninstall.exe
C:\Users\Chelsea\AppData\Local\Temp\SRAssetsHelper.dll
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2014-03-20 15:55
 
==================== End Of Log ============================


#4 incident

incident
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:13 AM

Posted 26 March 2014 - 07:36 PM

TDSS Killer found nothing malicious. Don't know where there'd be a log of it.



#5 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:13 AM

Posted 27 March 2014 - 04:30 AM

You´ll find then log on your C drive´s root folder.

Please attach it to your next reply and post the content of teh addition.txt


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#6 incident

incident
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:13 AM

Posted 27 March 2014 - 01:45 PM

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014
Ran by Administrator at 2014-03-26 19:27:16
Running from C:\Users\Administrator.Chelsea-PC\Downloads
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
AV: Symantec Endpoint Protection (Enabled - Up to date) {63DF5164-9100-186D-2187-8DC619EFD8BF}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Symantec Endpoint Protection (Enabled - Up to date) {D8BEB080-B73A-17E3-1B37-B6B462689202}
 
==================== Installed Programs ======================
 
64 Bit HP CIO Components Installer (Version: 6.2.2 - Hewlett-Packard) Hidden
8BitMMO (HKLM-x32\...\Steam App 250420) (Version:  - Archive Entertainment)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.1.0.5790 - Adobe Systems Inc.)
Adobe AIR (x32 Version: 1.1.0.5790 - Adobe Systems Inc.) Hidden
Adobe Anchor Service CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Anchor Service x64 CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Bridge CS4 (x32 Version: 3 - Adobe Systems Incorporated) Hidden
Adobe CMaps CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe CMaps x64 CS4 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Color - Photoshop Specific CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Color EU Extra Settings CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Color JA Extra Settings CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Color NA Recommended Settings CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Color Video Profiles CS CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Creative Suite 4 Design Premium (HKLM-x32\...\Adobe_55230b0b70661df0f212e88f0b655f7) (Version: 4.0 - Adobe Systems Incorporated)
Adobe Creative Suite 4 Design Premium (x32 Version: 4.0 - Adobe Systems Incorporated) Hidden
Adobe CSI CS4 (x32 Version: 1 - Adobe Systems Incorporated) Hidden
Adobe CSI CS4 x64 (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Default Language CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Device Central CS4 (x32 Version: 2 - Adobe Systems Incorporated) Hidden
Adobe Drive CS4 (x32 Version: 1 - Adobe Systems Incorporated) Hidden
Adobe Drive CS4 x64 (Version: 1 - Adobe Systems Incorporated) Hidden
Adobe ExtendScript Toolkit CS4 (x32 Version: 3.0.0 - Adobe Systems Incorporated) Hidden
Adobe Extension Manager CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 12 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 12 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Fonts All (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Fonts All x64 (Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Illustrator CS4 (x32 Version: 14.0 - Adobe Systems Incorporated) Hidden
Adobe InDesign CS4 (x32 Version: 6.0 - Adobe Systems Incorporated) Hidden
Adobe InDesign CS4 Application Feature Set Files (Roman) (x32 Version: 6.0 - Adobe Systems Incorporated) Hidden
Adobe InDesign CS4 Common Base Files (x32 Version: 6.0 - Adobe Systems Incorporated) Hidden
Adobe InDesign CS4 Icon Handler (x32 Version: 6.0 - Adobe Systems Incorporated) Hidden
Adobe InDesign CS4 Icon Handler x64 (Version: 6.0 - Adobe Systems Incorporated) Hidden
Adobe Linguistics CS4 (x32 Version: 4.0.0 - Adobe Systems Incorporated) Hidden
Adobe Linguistics CS4 x64 (Version: 4.0.0 - Adobe Systems Incorporated) Hidden
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1 - Adobe Systems Incorporated)
Adobe Media Player (x32 Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Adobe Output Module (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe PDF Library Files CS4 (x32 Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe PDF Library Files x64 CS4 (Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS4 (64 Bit) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop CS4 Support (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop Elements 11 (HKLM-x32\...\Adobe Photoshop Elements 11) (Version: 11.0 - Adobe Systems Incorporated)
Adobe Photoshop Elements 11 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Adobe Reader X (10.1.2) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.2 - Adobe Systems Incorporated)
Adobe Search for Help (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Service Manager Extension (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
Adobe Setup (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe SGM CS4 (x32 Version: 3.0 - Adobe Systems Incorporated) Hidden
Adobe SING CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Adobe Type Support CS4 (x32 Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Type Support x64 CS4 (Version: 9.0 - Adobe Systems Incorporated) Hidden
Adobe Update Manager CS4 (x32 Version: 6.0.0 - Adobe Systems Incorporated) Hidden
Adobe WinSoft Linguistics Plugin (x32 Version: 1.1 - Adobe Systems Incorporated) Hidden
Adobe WinSoft Linguistics Plugin x64 (Version: 1.1 - Adobe Systems Incorporated) Hidden
Adobe XMP Panels CS4 (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
AdobeColorCommonSetCMYK (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
AdobeColorCommonSetRGB (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Amazon Unbox Video (HKLM-x32\...\InstallShield_{54A4839E-87F8-4BD1-9682-A349E9943F0A}) (Version: 2.2.0.153 - Amazon.com)
Amazon Unbox Video (x32 Version: 2.2.0.153 - Amazon.com) Hidden
Antichamber (HKLM-x32\...\Steam App 219890) (Version:  - Alexander Bruce)
Apple Application Support (HKLM-x32\...\{63EC2120-1742-4625-AA47-C6A8AEC9C64C}) (Version: 2.2.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{7446FE8D-C1F9-4D42-AAAE-5DBCE58605A6}) (Version: 6.0.0.59 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ArtRage Studio (HKLM-x32\...\{71C0F2FA-8AA8-482C-96E4-A8124F2DC84D}) (Version: 3.5.4 - Ambient Design)
Atomic Savings (HKLM-x32\...\38904_Atomic Savings) (Version: 1.0 - Smart Apps)
Autodesk SketchBook Express 6.2 (HKLM-x32\...\{34CBACD3-040E-43D6-86C1-9FBE44B180BF}) (Version: 6.2.0000 - Autodesk)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Connect (x32 Version: 1.0.0.1 - Adobe Systems Incorporated) Hidden
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{DC4BC0CC-A928-4C48-BA40-AC24784F46E5}) (Version:  - Microsoft)
EgisTec ES603 WDM Driver (HKLM-x32\...\InstallShield_{AE4167B0-F589-4D2A-BF05-E181D543C49F}) (Version: 3.0.10.4 - Egis Technology Inc.)
Elements 11 Organizer (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 6.0.1.1 - Lenovo)
Energy Management (x32 Version: 6.0.1.1 - Lenovo) Hidden
ES603 WDM Driver (x32 Version: 3.0.10.4 - Egis Technology Inc.) Hidden
Facebook Video Calling 1.2.0.287 (HKLM-x32\...\{B92C5909-1D37-4C51-8397-A28BB28E5DC3}) (Version: 1.2.287 - Skype Limited)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 33.0.1750.154 - Google Inc.)
Google Earth (HKLM-x32\...\{468D22C0-8080-11E2-B86E-B8AC6F98CCE3}) (Version: 7.0.3.8542 - Google)
Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden
Hawkes Update Service Manager (HKLM-x32\...\Hawkes Update Service Manager) (Version: 1.0.7 - Hawkes Learning Systems)
HP Photosmart D110 All-In-One Driver 14.0 Rel. 7 (HKLM\...\{14BC6853-A74E-4874-B50D-679889D1544D}) (Version: 14.0 - HP)
Intel PROSet Wireless (Version:  - ) Hidden
Intel® PROSet/Wireless WiMAX Software (HKLM\...\{5C1DA3D9-F590-4317-A4FB-274F658E504B}) (Version: 6.05.0000 - Intel Corporation)
iTunes (HKLM\...\{1493B2AE-0261-47D2-B1AA-F4DAD0F6C48B}) (Version: 10.7.0.21 - Apple Inc.)
Java 7 Update 13 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217013FF}) (Version: 7.0.130 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.0 - Sun Microsystems, Inc.) Hidden
Java™ 6 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216031FF}) (Version: 6.0.310 - Oracle)
kuler (x32 Version: 2.0 - Adobe Systems Incorporated) Hidden
Malwarebytes Anti-Malware version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Choice Guard (x32 Version: 2.0.48.0 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mozilla Firefox 11.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 11.0 (x86 en-US)) (Version: 11.0 - Mozilla)
MSVCRT (x32 Version: 14.0.1468.721 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
My Game Long Name (HKLM\...\UDK-568aedf3-a6a5-4b5f-90d8-f060d2820f16) (Version:  - Epic Games, Inc.)
Network64 (Version: 140.0.212.000 - Hewlett-Packard) Hidden
NVIDIA PhysX (HKLM-x32\...\{8A809006-C25A-4A3A-9DAB-94659BCDB107}) (Version: 9.10.0224 - NVIDIA Corporation)
Path of Exile (HKLM-x32\...\Steam App 238960) (Version:  - Grinding Gear Games)
PDF Settings CS4 (x32 Version: 9.0 - Adobe Systems Incorporated) Hidden
Photoshop Camera Raw (x32 Version: 5.0 - Adobe Systems Incorporated) Hidden
Photoshop Camera Raw_x64 (Version: 5.0 - Adobe Systems Incorporated) Hidden
PS_AIO_07_D110_SW_Min (x32 Version: 140.0.142.000 - Hewlett-Packard) Hidden
PSE11 STI Installer (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Realtek USB 2.0 Reader Driver (HKLM-x32\...\{62BBB2F0-E220-4821-A564-730807D2C34D}) (Version: 6.1.7600.10001 - Realtek Semiconductor Corp.)
Re-markit (HKLM-x32\...\3b3dfc7e-1400-4a43-9a58-11f6f943f8c8) (Version:  - Re-markit Software) <==== ATTENTION
Scan (x32 Version: 140.0.77.000 - Hewlett-Packard) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version:  - Microsoft) Hidden
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
Suite Shared Configuration CS4 (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.7.1018 - SUPERAntiSpyware.com)
Symantec Endpoint Protection (HKLM\...\{19B62EDC-C108-4393-B3F1-8A813096CC8E}) (Version: 12.1.1000.157 - Symantec Corporation)
Toolbox (x32 Version: 140.0.424.000 - Hewlett-Packard) Hidden
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2468871) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2533523) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2600217) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2836939) (Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (HKLM-x32\...\{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}.KB2836939v3) (Version: 3 - Microsoft Corporation)
Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{FEF4C57D-0975-4D3C-ACC7-DCD038C3788F}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2837594) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{99A0DB9A-71FC-4F98-BC1F-78A18195C677}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{DB0B0CDF-77EC-47B0-94E2-4738573A1E58}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817396) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{1AA82E2E-7DB7-4C70-910C-BBB657A6B3A5}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{79C725A1-3964-421C-A528-78C1C083C7C7}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{95BE5D45-A3DD-4CB1-8C35-D75DD7B4D862}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{95BE5D45-A3DD-4CB1-8C35-D75DD7B4D862}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{EBD18DE5-BC84-4B57-9A30-097044871F9A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{4AD36582-256B-433D-8593-F31773A15CA4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{4AD36582-256B-433D-8593-F31773A15CA4}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{F216169C-2B40-429B-8370-B5BA06EC5423}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{F216169C-2B40-429B-8370-B5BA06EC5423}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{B6AD7E27-012A-4B63-82BA-AF62893E5435}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{07DC9C6C-E916-4F42-8677-716930ED0393}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition (HKLM\...\{90140000-0044-0409-1000-0000000FF1CE}_Office14.PROPLUSR_{43F59F4D-7179-497E-BE99-BC6F7D1DDCBA}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{43F59F4D-7179-497E-BE99-BC6F7D1DDCBA}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 64-Bit Edition (HKLM\...\{90140000-001F-040C-1000-0000000FF1CE}_Office14.PROPLUSR_{9F6507AC-7D8F-46C1-B90F-59C7828E0E0D}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 64-Bit Edition (HKLM\...\{90140000-001F-0C0A-1000-0000000FF1CE}_Office14.PROPLUSR_{E84E9B25-BEB6-4F2F-84BB-755CDA8E89C0}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2863818) 64-Bit Edition (HKLM\...\{90140000-001F-0409-1000-0000000FF1CE}_Office14.PROPLUSR_{A9C4BE58-07E0-473D-AE68-ECBA13FBF77E}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{8A6BDA63-4D23-4485-A466-8979E10BCF49}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{8A6BDA63-4D23-4485-A466-8979E10BCF49}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{3029C408-1DD1-4273-8E58-87CB1B638FC8}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{3029C408-1DD1-4273-8E58-87CB1B638FC8}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition (HKLM\...\{90140000-001A-0409-1000-0000000FF1CE}_Office14.PROPLUSR_{DBAC8ED2-9287-499E-AD66-590C7413C7DE}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{DDDC32A5-9528-4771-B91A-97A8E1D7957B}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2553145) 64-Bit Edition (HKLM\...\{90140000-0018-0409-1000-0000000FF1CE}_Office14.PROPLUSR_{55C3C61D-31E9-4ECF-B29B-C1C6A8FB68FB}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2775360) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{BE1D254A-E5CD-4E76-9BE8-7B2E5FDBA6AF}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition (HKLM\...\{90140000-0043-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{77374F16-2DC6-4EEF-AFAD-C59FDA2E010D}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{77374F16-2DC6-4EEF-AFAD-C59FDA2E010D}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2878227) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{04DED3FB-DDB2-4C1E-A057-2A1FB97BE42D}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2810066) 64-Bit Edition (HKLM\...\{91140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{DF33B92A-5381-4F03-AB54-2D67086B357E}) (Version:  - Microsoft)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.7-6 - Wacom Technology Corp.)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.3 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.3 - Wacom Technology Corp.)
Windows Driver Package - Lenovo (ACPIVPC) System  (10/25/2010 6.1.0.1) (HKLM\...\EA8853A03D537A97526088F978DEB040DF596301) (Version: 10/25/2010 6.1.0.1 - Lenovo)
Windows Live Call (x32 Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Communications Platform (x32 Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Messenger (x32 Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Sign-in Assistant (HKLM-x32\...\{45338B07-A236-4270-9A77-EBB4115517B5}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Upload Tool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
 
==================== Restore Points  =========================
 
24-03-2014 08:00:28 Windows Update
 
==================== Hosts content: ==========================
 
2009-07-13 21:34 - 2014-03-23 16:11 - 00000872 ____A C:\Windows\system32\Drivers\etc\hosts
54.225.95.126 pmicfehfblhebdfbhfgmmfcaikafckac
 
==================== Scheduled Tasks (whitelisted) =============
 
Task: {326BF338-81AC-4E1D-9436-185C571BAC7D} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3352250188-2419804836-1388346719-1000Core => C:\Users\Chelsea\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-16] (Facebook Inc.)
Task: {448037FB-CE3D-4C86-9489-D401E83734A6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-22] (Adobe Systems Incorporated)
Task: {4B9BB0AF-8291-4553-BFBA-B2F27AE130D8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-03-31] (Google Inc.)
Task: {56392C75-68E1-43FB-B66C-A33CFC529810} - System32\Tasks\AdobeAAMUpdater-1.0-MY-PC-Administrator => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2011-06-16] (Adobe Systems Incorporated)
Task: {84E17CB9-E3C6-4BF3-9CA3-46ACDC8C5817} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-3352250188-2419804836-1388346719-1000UA => C:\Users\Chelsea\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-16] (Facebook Inc.)
Task: {8BC6C6BD-D15E-496B-A066-C3760CECB4EE} - System32\Tasks\Games\UpdateCheck_S-1-5-21-3352250188-2419804836-1388346719-1000
Task: {970E17CE-D87D-4132-966A-FE522E82C46C} - \Advanced System Protector_startup No Task File
Task: {9A671619-F3F8-4686-8AD0-0A654AD6D2A2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-03-31] (Google Inc.)
Task: {AA668648-E987-466B-91CB-B950A0E4D027} - \RegClean Pro No Task File
Task: {AEC4F236-2717-42BA-89AD-BC42B6FA6F93} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {ECDEDBED-A5EC-4917-AB89-37B488D09462} - \Advanced System Protector No Task File
Task: {F2679C97-7CC3-46D3-91D0-7B6033E087E9} - System32\Tasks\Microsoft\Windows\TabletPC\InputPersonalization => C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe [2009-07-13] (Microsoft Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3352250188-2419804836-1388346719-1000Core.job => C:\Users\Chelsea\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3352250188-2419804836-1388346719-1000UA.job => C:\Users\Chelsea\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (whitelisted) =============
 
2013-07-14 22:45 - 2003-04-18 18:06 - 00008192 _____ () C:\Program Files (x86)\Hawkes Learning Systems\Hawkes Update Service Manager\srvany.exe
2012-03-19 22:09 - 2012-03-19 22:09 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2008-12-20 03:20 - 2012-05-01 19:24 - 00054088 _____ () C:\Program Files (x86)\Lenovo\Energy Management\HookLib.dll
2014-02-27 17:25 - 2013-12-04 11:35 - 01185048 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
2013-09-05 01:17 - 2013-09-05 01:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 17:23 - 2010-10-20 17:23 - 08801632 _____ () C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2008-12-20 03:20 - 2012-05-01 19:24 - 00054088 _____ () C:\Program Files (x86)\Lenovo\Energy Management\kbdhook.dll
2012-02-20 21:29 - 2012-02-20 21:29 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2012-02-20 21:28 - 2012-02-20 21:28 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2013-07-14 22:45 - 2012-11-02 12:10 - 00583240 ____R () C:\Program Files (x86)\Hawkes Learning Systems\Hawkes Update Service Manager\mia.lib
2014-03-24 09:25 - 2012-09-02 17:35 - 00101888 _____ () C:\Windows\TEMP\mia43\mEXEFunc.dll
2014-03-02 13:52 - 2013-12-12 17:19 - 00142848 _____ () C:\Program Files (x86)\Steam\libavresample-1.dll
2014-03-02 13:52 - 2013-11-04 20:12 - 00890592 _____ () C:\Program Files (x86)\Steam\libavutil-52.dll
2014-03-02 13:52 - 2014-02-10 21:34 - 00751616 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2014-03-02 13:52 - 2014-02-25 16:57 - 01135296 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2014-03-02 13:52 - 2014-01-10 18:33 - 20625832 _____ () C:\Program Files (x86)\Steam\bin\libcef.dll
2014-03-02 13:52 - 2013-06-14 18:49 - 01100800 _____ () C:\Program Files (x86)\Steam\bin\avcodec-53.dll
2014-03-02 13:52 - 2013-06-14 18:49 - 00124416 _____ () C:\Program Files (x86)\Steam\bin\avutil-51.dll
2014-03-02 13:52 - 2013-06-14 18:49 - 00192000 _____ () C:\Program Files (x86)\Steam\bin\avformat-53.dll
2014-03-22 20:27 - 2014-03-14 19:50 - 00051016 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\chrome_elf.dll
2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2010-10-20 17:45 - 2010-10-20 17:45 - 08801120 _____ () C:\Program Files (x86)\Microsoft Office\Office14\1033\GrooveIntlResource.dll
2014-03-22 20:27 - 2014-03-14 19:50 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\libglesv2.dll
2014-03-22 20:27 - 2014-03-14 19:50 - 00100168 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\libegl.dll
2014-03-22 20:27 - 2014-03-14 19:50 - 04061000 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\pdf.dll
2014-03-22 20:27 - 2014-03-14 19:50 - 00394568 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll
2014-03-22 20:27 - 2014-03-14 19:50 - 01647432 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\ffmpegsumo.dll
2014-03-22 20:27 - 2014-03-14 19:50 - 13637448 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\PepperFlash\pepflashplayer.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
 
==================== Safe Mode (whitelisted) ===================
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SepMasterService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SmcService => ""="Service"
 
==================== Disabled items from MSCONFIG ==============
 
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (03/26/2014 06:30:43 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1014
 
Error: (03/26/2014 06:30:43 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1014
 
Error: (03/26/2014 06:30:43 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (03/26/2014 04:34:13 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7550
 
Error: (03/26/2014 04:34:13 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7550
 
Error: (03/26/2014 04:34:13 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (03/26/2014 04:34:10 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5038
 
Error: (03/26/2014 04:34:10 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5038
 
Error: (03/26/2014 04:34:10 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (03/26/2014 04:34:08 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2527
 
 
System errors:
=============
 
Microsoft Office Sessions:
=========================
Error: (03/26/2014 06:30:43 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1014
 
Error: (03/26/2014 06:30:43 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1014
 
Error: (03/26/2014 06:30:43 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (03/26/2014 04:34:13 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7550
 
Error: (03/26/2014 04:34:13 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 7550
 
Error: (03/26/2014 04:34:13 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (03/26/2014 04:34:10 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5038
 
Error: (03/26/2014 04:34:10 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5038
 
Error: (03/26/2014 04:34:10 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (03/26/2014 04:34:08 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 2527
 
 
==================== Memory info =========================== 
 
Percentage of memory in use: 40%
Total physical RAM: 6058.17 MB
Available physical RAM: 3609.11 MB
Total Pagefile: 12114.52 MB
Available Pagefile: 8659.77 MB
Total Virtual: 8192 MB
Available Virtual: 8191.82 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:596.17 GB) (Free:435.16 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596 GB) (Disk ID: 642386EB)
Partition 1: (Active) - (Size=596 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================


#7 incident

incident
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:13 AM

Posted 27 March 2014 - 01:46 PM

19:33:06.0553 0x1450  TDSS rootkit removing tool 3.0.0.26 Mar 24 2014 07:28:43
19:33:12.0701 0x1450  ============================================================
19:33:12.0701 0x1450  Current date / time: 2014/03/26 19:33:12.0701
19:33:12.0701 0x1450  SystemInfo:
19:33:12.0701 0x1450  
19:33:12.0701 0x1450  OS Version: 6.1.7601 ServicePack: 1.0
19:33:12.0701 0x1450  Product type: Workstation
19:33:12.0701 0x1450  ComputerName: MY-PC
19:33:12.0701 0x1450  UserName: Administrator
19:33:12.0701 0x1450  Windows directory: C:\Windows
19:33:12.0701 0x1450  System windows directory: C:\Windows
19:33:12.0701 0x1450  Running under WOW64
19:33:12.0701 0x1450  Processor architecture: Intel x64
19:33:12.0701 0x1450  Number of processors: 4
19:33:12.0701 0x1450  Page size: 0x1000
19:33:12.0701 0x1450  Boot type: Normal boot
19:33:12.0701 0x1450  ============================================================
19:33:14.0124 0x1450  KLMD registered as C:\Windows\system32\drivers\79353297.sys
19:33:14.0576 0x1450  System UUID: {EC2DF005-371E-7AF2-6857-40D72598A39F}
19:33:15.0895 0x1450  Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:33:15.0900 0x1450  ============================================================
19:33:15.0900 0x1450  \Device\Harddisk0\DR0:
19:33:15.0900 0x1450  MBR partitions:
19:33:15.0900 0x1450  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x4A857000
19:33:15.0900 0x1450  ============================================================
19:33:15.0926 0x1450  C: <-> \Device\Harddisk0\DR0\Partition1
19:33:15.0926 0x1450  ============================================================
19:33:15.0926 0x1450  Initialize success
19:33:15.0926 0x1450  ============================================================
19:33:18.0609 0x1470  ============================================================
19:33:18.0610 0x1470  Scan started
19:33:18.0610 0x1470  Mode: Manual; 
19:33:18.0610 0x1470  ============================================================
19:33:18.0610 0x1470  KSN ping started
19:33:21.0204 0x1470  KSN ping finished: true
19:33:21.0415 0x1470  ================ Scan system memory ========================
19:33:21.0415 0x1470  System memory - ok
19:33:21.0415 0x1470  ================ Scan services =============================
19:33:21.0576 0x1470  [ 620C92D6EEFA9853A3EAD41B5EB9B5FD, 72DD7297179AC6629B816DD9656D5EC3F02BE677EA01A05A5EB808180F0D775F ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
19:33:21.0579 0x1470  !SASCORE - ok
19:33:21.0775 0x1470  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
19:33:21.0780 0x1470  1394ohci - ok
19:33:21.0837 0x1470  [ EC6B48EF62C5AC40BB4CC1F3FBECF5A6, 9AA187451AB49A5802F5118994FCBDA68199D8EF3AC17B07E48494C1E4904414 ] 2310_00         C:\Windows\system32\drivers\2310_00.sys
19:33:21.0840 0x1470  2310_00 - ok
19:33:21.0883 0x1470  [ 573681817E6232BE9940ED2EDDE858ED, 4A2CD40D5E4A425B503FF4707A89BEAEE9B3155CA11E75AA43846CDC01BF57ED ] 272x_1x         C:\Windows\system32\drivers\272x_1x.sys
19:33:21.0893 0x1470  272x_1x - ok
19:33:21.0927 0x1470  [ 325CDF4A9C6192793BB4F5BC7E0A233D, DA02487E1C828DCE92FADB6D8FC1B327023AA21419AFA2FF8E5B7034A4AFE1A6 ] 274x_3x         C:\Windows\system32\drivers\274x_3x.sys
19:33:21.0931 0x1470  274x_3x - ok
19:33:21.0992 0x1470  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
19:33:21.0999 0x1470  ACPI - ok
19:33:22.0036 0x1470  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
19:33:22.0037 0x1470  AcpiPmi - ok
19:33:22.0078 0x1470  [ DEC67ABA46A8F0938A53B5F962F9166B, 8AFF73947AB3F4ECB3AC3CF4031C7C1AC877B54CD4B872140AB174B1F299A098 ] ACPIVPC         C:\Windows\system32\DRIVERS\AcpiVpc.sys
19:33:22.0079 0x1470  ACPIVPC - ok
19:33:22.0131 0x1470  [ 2F0683FD2DF1D92E891CACA14B45A8C1, B4A8D6A183FA0B7D642FAD6B51C19FEC998481E1C49480D2B391E5D8B55F5BBD ] adfs            C:\Windows\system32\drivers\adfs.sys
19:33:22.0133 0x1470  adfs - ok
19:33:22.0241 0x1470  [ 835CE0647E4E9F01BEB26201DA6705B4, C90CBED7E066ECE2F380CE84B95EAD0E120C02720DB31483BDF0E7EDF7FB4EE1 ] AdobeActiveFileMonitor11.0 C:\Program Files (x86)\Adobe\Elements 11 Organizer\PhotoshopElementsFileAgent.exe
19:33:22.0245 0x1470  AdobeActiveFileMonitor11.0 - ok
19:33:22.0324 0x1470  [ 62B7936F9036DD6ED36E6A7EFA805DC0, C58EA1B46CB3595386C9217A7785F2A436916FB1E0BDC0E4BE484292C55AA455 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:33:22.0325 0x1470  AdobeARMservice - ok
19:33:22.0488 0x1470  [ 9D96B0D5855FD1B98023B3EEC9F06786, E4C79233158BE8AA4E9C6DD71585E5D2703A5156531EB3D692D7D81BC443E844 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:33:22.0493 0x1470  AdobeFlashPlayerUpdateSvc - ok
19:33:22.0550 0x1470  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
19:33:22.0561 0x1470  adp94xx - ok
19:33:22.0590 0x1470  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
19:33:22.0598 0x1470  adpahci - ok
19:33:22.0649 0x1470  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
19:33:22.0654 0x1470  adpu320 - ok
19:33:22.0687 0x1470  ADVService - ok
19:33:22.0715 0x1470  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
19:33:22.0717 0x1470  AeLookupSvc - ok
19:33:22.0785 0x1470  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
19:33:22.0796 0x1470  AFD - ok
19:33:22.0841 0x1470  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
19:33:22.0843 0x1470  agp440 - ok
19:33:22.0897 0x1470  [ D9B3581490F2EB32402BEA5ABBDADF18, 1DED23649D7858A8AEE6A0CA5E2FBE89C69C8F1A704F256246B09262A95D8E2A ] ahcix64         C:\Windows\system32\drivers\ahcix64.sys
19:33:22.0903 0x1470  ahcix64 - ok
19:33:22.0970 0x1470  [ AF53917D9741A84627FA689EA622558A, 44DA81150854B126A460C2A1E6FB5427C9E3A77B81FFBC5BC7FD222BE4D6A313 ] ahcix64s        C:\Windows\system32\drivers\ahcix64s.sys
19:33:22.0975 0x1470  ahcix64s - ok
19:33:23.0019 0x1470  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
19:33:23.0021 0x1470  ALG - ok
19:33:23.0075 0x1470  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
19:33:23.0076 0x1470  aliide - ok
19:33:23.0118 0x1470  [ 30BFEEE0DFFD5BD79D29157CF080DEED, D3176AA5CFD43CAE7180E9E51A2C76DC2AC02897CA730391A54F647D263ED4E0 ] amdhub30        C:\Windows\system32\drivers\amdhub30.sys
19:33:23.0121 0x1470  amdhub30 - ok
19:33:23.0162 0x1470  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
19:33:23.0163 0x1470  amdide - ok
19:33:23.0203 0x1470  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
19:33:23.0205 0x1470  AmdK8 - ok
19:33:23.0223 0x1470  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
19:33:23.0225 0x1470  AmdPPM - ok
19:33:23.0266 0x1470  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
19:33:23.0269 0x1470  amdsata - ok
19:33:23.0284 0x1470  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
19:33:23.0288 0x1470  amdsbs - ok
19:33:23.0298 0x1470  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
19:33:23.0299 0x1470  amdxata - ok
19:33:23.0334 0x1470  [ 321533578132C811EC834A1B741C994C, 82B62C52018655B8A596E1E503CB31F0FA581780425A9FF44BE1248C0F3D4B3E ] amdxhc          C:\Windows\system32\drivers\amdxhc.sys
19:33:23.0339 0x1470  amdxhc - ok
19:33:23.0370 0x1470  [ 2FBB00A7616106B95104574C6CD640C2, 06DE79B42EBBBBA01DAB289D4280E131D780066CD7E4499229CD5EB1E597A017 ] amd_sata        C:\Windows\system32\drivers\amd_sata.sys
19:33:23.0373 0x1470  amd_sata - ok
19:33:23.0387 0x1470  [ 87D0D7645CB0D53220649BD5FE15D93E, 195B25BC640BE5D802F530FAA68D3325A6C076DE8A7E56833372C3B2B53B673B ] amd_xata        C:\Windows\system32\drivers\amd_xata.sys
19:33:23.0388 0x1470  amd_xata - ok
19:33:23.0432 0x1470  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
19:33:23.0434 0x1470  AppID - ok
19:33:23.0464 0x1470  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
19:33:23.0465 0x1470  AppIDSvc - ok
19:33:23.0521 0x1470  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
19:33:23.0523 0x1470  Appinfo - ok
19:33:23.0584 0x1470  [ A5299D04ED225D64CF07A568A3E1BF8C, 6F7E73893127BADC8C9815E9BCC0EB5F6584E254D0D09A0B6A680704C71E0A90 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:33:23.0585 0x1470  Apple Mobile Device - ok
19:33:23.0619 0x1470  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
19:33:23.0623 0x1470  AppMgmt - ok
19:33:23.0649 0x1470  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
19:33:23.0651 0x1470  arc - ok
19:33:23.0706 0x1470  [ 8D51C40AEE6E50EBD594B86571FABBDC, D3B84CC63C69CE02F0CFCB816223598D40869E9F02C04F50C438F84F625D555C ] arcm_a64        C:\Windows\system32\drivers\arcm_a64.sys
19:33:23.0707 0x1470  arcm_a64 - ok
19:33:23.0742 0x1470  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
19:33:23.0745 0x1470  arcsas - ok
19:33:23.0772 0x1470  [ B8CDFA4EA1836AA05014BC5DF22AC396, 021B4C2E311869B3306AD26E780E73B035513AA1F4D98312FA00877570CDA7BF ] asahci64        C:\Windows\system32\drivers\asahci64.sys
19:33:23.0773 0x1470  asahci64 - ok
19:33:23.0821 0x1470  [ 0D721BEDC99072972A1C09C9FE549B07, 1FAECF6BE04A8AA9B31AD155CECAE097E3FBF3AD90D3895CC8AAA12410966CF0 ] asmthub3        C:\Windows\system32\drivers\asmthub3.sys
19:33:23.0825 0x1470  asmthub3 - ok
19:33:23.0848 0x1470  [ C401B8F26490DC3E5E47D3A91F87CD00, 6B0EF7097C0644CD0D7BD254729E3C43027F8A02FE6A368382E44077AE5D2085 ] asmtxhci        C:\Windows\system32\drivers\asmtxhci.sys
19:33:23.0857 0x1470  asmtxhci - ok
19:33:23.0887 0x1470  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
19:33:23.0888 0x1470  AsyncMac - ok
19:33:23.0931 0x1470  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
19:33:23.0933 0x1470  atapi - ok
19:33:23.0998 0x1470  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:33:24.0012 0x1470  AudioEndpointBuilder - ok
19:33:24.0030 0x1470  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
19:33:24.0041 0x1470  AudioSrv - ok
19:33:24.0090 0x1470  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
19:33:24.0093 0x1470  AxInstSV - ok
19:33:24.0131 0x1470  [ 325A7296A859C2A70B8D71A59878F4E4, ED1E8A4CFD5263EA8CACDE60FD193BFAD5A190F3AF509659B4A264EBBF86EE9F ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
19:33:24.0142 0x1470  b06bdrv - ok
19:33:24.0164 0x1470  [ 8A991D132A40858D833D4D00FE7AD5E7, F4F0EB5F2BCD82A7DAF7C7350C6B0D2CFE97384E97F58DCD793C3A5B441ECDA2 ] b06diag         C:\Windows\system32\drivers\bxdiaga.sys
19:33:24.0167 0x1470  b06diag - ok
19:33:24.0211 0x1470  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
19:33:24.0217 0x1470  b57nd60a - ok
19:33:24.0259 0x1470  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
19:33:24.0262 0x1470  BDESVC - ok
19:33:24.0287 0x1470  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
19:33:24.0288 0x1470  Beep - ok
19:33:24.0352 0x1470  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
19:33:24.0368 0x1470  BFE - ok
19:33:24.0404 0x1470  [ 851BFC266AC6424F44F7DFB05DE4D803, 7DDD46AD32B6BF98095E691ABDCE59BFC8B7D84ED20779E48ECA052203939513 ] BFN7x64         C:\Windows\system32\drivers\Xeno7x64.sys
19:33:24.0407 0x1470  BFN7x64 - ok
19:33:24.0423 0x1470  [ 0B6EC39938EBCD40DBC3DE058C99DAEB, B353C4B7B709F73A59A57572BDB0B445E5FF87BBCC349845174BAE8FB1111EB3 ] BFNVis64        C:\Windows\system32\drivers\XenoVa64.sys
19:33:24.0427 0x1470  BFNVis64 - ok
19:33:24.0579 0x1470  [ F14F048B4D05FBCE536250EA74BF9FDC, 63E25E916209B6AF7AAC98B665E0128842F1EFDDEF95D50095514A9FDDC522A9 ] BHDrvx64        C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Data\Definitions\BASHDefs\20140304.011\BHDrvx64.sys
19:33:24.0611 0x1470  BHDrvx64 - ok
19:33:24.0667 0x1470  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
19:33:24.0686 0x1470  BITS - ok
19:33:24.0712 0x1470  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
19:33:24.0714 0x1470  blbdrive - ok
19:33:24.0772 0x1470  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:33:24.0781 0x1470  Bonjour Service - ok
19:33:24.0816 0x1470  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
19:33:24.0818 0x1470  bowser - ok
19:33:24.0864 0x1470  [ 56E4345F392F17D66683225E214840CB, 76B30C48BBF06B8A52F9E4502D10A776930C4F509C5493A63A846FD706DB41DB ] bpenum          C:\Windows\system32\DRIVERS\bpenum.sys
19:33:24.0866 0x1470  bpenum - ok
19:33:24.0892 0x1470  [ D50B07C4D7AFEC4CA6AC8FCB72583C5B, 57F6CE2984A74BBCBD4D4E70877896A327B3D2646ACAF8BC2B1927994A50F425 ] bpmp            C:\Windows\system32\DRIVERS\bpmp.sys
19:33:24.0895 0x1470  bpmp - ok
19:33:24.0936 0x1470  [ A85BA55E4FE9CB2F342F281AAF7DE810, 23B9BABB466B2B78AD830717F5A7159342F8ED7DB58C90F190CF22EAE144414D ] bpusb           C:\Windows\system32\Drivers\bpusb.sys
19:33:24.0939 0x1470  bpusb - ok
19:33:24.0958 0x1470  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
19:33:24.0959 0x1470  BrFiltLo - ok
19:33:24.0968 0x1470  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
19:33:24.0969 0x1470  BrFiltUp - ok
19:33:25.0005 0x1470  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
19:33:25.0008 0x1470  Browser - ok
19:33:25.0038 0x1470  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
19:33:25.0045 0x1470  Brserid - ok
19:33:25.0065 0x1470  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
19:33:25.0066 0x1470  BrSerWdm - ok
19:33:25.0104 0x1470  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
19:33:25.0105 0x1470  BrUsbMdm - ok
19:33:25.0119 0x1470  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
19:33:25.0120 0x1470  BrUsbSer - ok
19:33:25.0143 0x1470  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
19:33:25.0145 0x1470  BTHMODEM - ok
19:33:25.0188 0x1470  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
19:33:25.0191 0x1470  bthserv - ok
19:33:25.0236 0x1470  [ F4D9598BCCA9CB5F46C91E21FDE3AF8B, B7402156DC661512ED5A3712F1436F3C1C62682FE854B99327E24EE399D14FFD ] BXOIS           C:\Windows\system32\drivers\bxois.sys
19:33:25.0248 0x1470  BXOIS - ok
19:33:25.0270 0x1470  [ 5E7A5AED9CBCD743E568A40012D9C391, 98E7A8622CDD423D00FBD2B8B1ABDFFC10151AE706F73DD8B63EF56F12274769 ] cbaf            C:\Windows\System32\Drivers\cbaf.sys
19:33:25.0271 0x1470  cbaf - ok
19:33:25.0291 0x1470  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
19:33:25.0294 0x1470  cdfs - ok
19:33:25.0319 0x1470  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
19:33:25.0322 0x1470  cdrom - ok
19:33:25.0360 0x1470  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
19:33:25.0363 0x1470  CertPropSvc - ok
19:33:25.0398 0x1470  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
19:33:25.0400 0x1470  circlass - ok
19:33:25.0445 0x1470  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
19:33:25.0454 0x1470  CLFS - ok
19:33:25.0512 0x1470  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:33:25.0523 0x1470  clr_optimization_v2.0.50727_32 - ok
19:33:25.0538 0x1470  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:33:25.0541 0x1470  clr_optimization_v2.0.50727_64 - ok
19:33:25.0607 0x1470  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:33:25.0610 0x1470  clr_optimization_v4.0.30319_32 - ok
19:33:25.0644 0x1470  [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:33:25.0647 0x1470  clr_optimization_v4.0.30319_64 - ok
19:33:25.0673 0x1470  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
19:33:25.0674 0x1470  CmBatt - ok
19:33:25.0708 0x1470  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
19:33:25.0709 0x1470  cmdide - ok
19:33:25.0768 0x1470  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
19:33:25.0778 0x1470  CNG - ok
19:33:25.0827 0x1470  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
19:33:25.0828 0x1470  Compbatt - ok
19:33:25.0851 0x1470  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
19:33:25.0852 0x1470  CompositeBus - ok
19:33:25.0867 0x1470  COMSysApp - ok
19:33:25.0974 0x1470  [ F08C6020E57F5E5BF2FD034DB10BEDFB, 288EA64A57057EAD135685F2C46CA53BA0319EA28B7B7A2ECBE29E50ED807FCA ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe
19:33:25.0981 0x1470  cphs - ok
19:33:26.0011 0x1470  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
19:33:26.0012 0x1470  crcdisk - ok
19:33:26.0072 0x1470  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
19:33:26.0076 0x1470  CryptSvc - ok
19:33:26.0110 0x1470  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
19:33:26.0122 0x1470  CSC - ok
19:33:26.0186 0x1470  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
19:33:26.0201 0x1470  CscService - ok
19:33:26.0244 0x1470  [ E18992E1F86609988937B429E65D22A4, 6AA4313B58153301C5AE17E27581448E78141D0087FA74E86914C7264F6F4BAF ] DC133           C:\Windows\system32\drivers\DC133.sys
19:33:26.0245 0x1470  DC133 - ok
19:33:26.0273 0x1470  [ F29AE206F3801BA5ABFF9693B530153A, ED88FE0FA65A3228E05D27B51E9FAAF0157F7B0037689F17A950C11AA783D88A ] DC150           C:\Windows\system32\drivers\DC150.sys
19:33:26.0274 0x1470  DC150 - ok
19:33:26.0309 0x1470  [ 0DB1DA4C47B1838426CA198B300D3572, 0EA8E06683DB76A196F4AE2167A8ACECADCE6B5AFD1489F381BAD2D3F27E82D1 ] DC154           C:\Windows\system32\drivers\DC154.sys
19:33:26.0310 0x1470  DC154 - ok
19:33:26.0339 0x1470  [ 310D40EF34FA0E0158B2CB6A8821A925, DB59E9172E4701FBA868AFF11E1259AF594DC6859C2C667D9F2DE5F2E34325AC ] DC300e          C:\Windows\system32\drivers\DC300e.sys
19:33:26.0340 0x1470  DC300e - ok
19:33:26.0363 0x1470  [ 79BAFD4441106E1CC2DC725A873DCAE6, 44DF6DC42C3D33B73EEBED0776A753321066EBA5FD23F8D328A2BF909809FF4A ] DC324e          C:\Windows\system32\drivers\DC324e.sys
19:33:26.0364 0x1470  DC324e - ok
19:33:26.0376 0x1470  [ 566D0F1806A0B6D19BC5A1DC31CF8EAB, 0634535BD9F2A43F23D8D8466875A2D32538D1A67856BAEC0B1D2BD7274D3B15 ] DC3410          C:\Windows\system32\drivers\DC3410.sys
19:33:26.0377 0x1470  DC3410 - ok
19:33:26.0402 0x1470  [ 99C7D21AFD8A60F747F73161FEE1D2EA, 2C8AF8B2C8908EDF3ED31868F31EA058EEE78A686F93201154A2D9E8AE4C634E ] DC4300          C:\Windows\system32\drivers\DC4300.sys
19:33:26.0403 0x1470  DC4300 - ok
19:33:26.0418 0x1470  [ B5B5B28AEA415D441F42D9B21722966C, 3D703516657C87222405F6BFC829C4D9E0442872EA561D38DC07D3D1C807CDE7 ] DC600e          C:\Windows\system32\drivers\DC600e.sys
19:33:26.0419 0x1470  DC600e - ok
19:33:26.0482 0x1470  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
19:33:26.0492 0x1470  DcomLaunch - ok
19:33:26.0521 0x1470  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
19:33:26.0528 0x1470  defragsvc - ok
19:33:26.0560 0x1470  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
19:33:26.0563 0x1470  DfsC - ok
19:33:26.0602 0x1470  [ 568FEE3C53C545FAD4BBF2F56084F6C6, C72D7A2326956EFBD436D5D5E579828DFCD6CA1D5ED71AA7BD88FA54ACEA0100 ] dfuuwb          C:\Windows\System32\Drivers\DfuUWB.sys
19:33:26.0613 0x1470  dfuuwb - ok
19:33:26.0645 0x1470  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
19:33:26.0652 0x1470  Dhcp - ok
19:33:26.0674 0x1470  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
19:33:26.0676 0x1470  discache - ok
19:33:26.0729 0x1470  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
19:33:26.0731 0x1470  Disk - ok
19:33:26.0805 0x1470  [ 34C3575F9071C933856BD3DCC5A0473B, 38A8F26A815284791CE8D776B741EE253379286BE40445C2DA4DACA8B504C95F ] DMAgent         C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
19:33:26.0814 0x1470  DMAgent - ok
19:33:26.0863 0x1470  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
19:33:26.0865 0x1470  dmvsc - ok
19:33:26.0899 0x1470  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
19:33:26.0903 0x1470  Dnscache - ok
19:33:26.0917 0x1470  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
19:33:26.0923 0x1470  dot3svc - ok
19:33:26.0974 0x1470  [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys
19:33:26.0977 0x1470  Dot4 - ok
19:33:27.0017 0x1470  [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys
19:33:27.0018 0x1470  Dot4Print - ok
19:33:27.0055 0x1470  [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys
19:33:27.0057 0x1470  dot4usb - ok
19:33:27.0088 0x1470  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
19:33:27.0092 0x1470  DPS - ok
19:33:27.0140 0x1470  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
19:33:27.0141 0x1470  drmkaud - ok
19:33:27.0203 0x1470  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
19:33:27.0224 0x1470  DXGKrnl - ok
19:33:27.0270 0x1470  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
19:33:27.0273 0x1470  EapHost - ok
19:33:27.0366 0x1470  [ EF0462B50E3FDD5AAAA98279AF5B615C, 0C1ACD2381F9C470FBF013C0FC421D04065BE9EDF11C966B6661C7BF9A3CF129 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
19:33:27.0418 0x1470  ebdrv - ok
19:33:27.0509 0x1470  [ 1B7AA375F711F66D5FF2B855F9EC987F, 151E3897A31F0E828D08EBBB9C10A60047B48534BB38349EF1C8D9245524CA58 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
19:33:27.0519 0x1470  eeCtrl - ok
19:33:27.0554 0x1470  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\Windows\System32\lsass.exe
19:33:27.0555 0x1470  EFS - ok
19:33:27.0614 0x1470  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
19:33:27.0629 0x1470  ehRecvr - ok
19:33:27.0642 0x1470  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
19:33:27.0646 0x1470  ehSched - ok
19:33:27.0688 0x1470  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
19:33:27.0700 0x1470  elxstor - ok
19:33:27.0763 0x1470  [ 7230C8B80DDE1F0524C353240B78CC0E, 15F73EBFB9152010E7736AFE518A47C209E17DDB347A40C4CDA0D9BBD26D1176 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
19:33:27.0766 0x1470  EraserUtilRebootDrv - ok
19:33:27.0777 0x1470  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
19:33:27.0778 0x1470  ErrDev - ok
19:33:27.0819 0x1470  [ 6CF515B48E0692070EED439BB73A9949, 3E54ACDD1044935124392A0B69C2C9E28404998A0CD1B60338338DCCCDD3C549 ] EtronHub3       C:\Windows\System32\Drivers\EtronHub3.sys
19:33:27.0821 0x1470  EtronHub3 - ok
19:33:27.0835 0x1470  [ EEA621DB1DAC0AB1EE901140AC381952, 033A9A5AAC3540E5B8348EC79AB9C6254C576F208D2FBF3F145866729281F940 ] EtronXHCI       C:\Windows\System32\Drivers\EtronXHCI.sys
19:33:27.0837 0x1470  EtronXHCI - ok
19:33:27.0879 0x1470  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
19:33:27.0888 0x1470  EventSystem - ok
19:33:27.0938 0x1470  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
19:33:27.0943 0x1470  exfat - ok
19:33:27.0961 0x1470  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
19:33:27.0966 0x1470  fastfat - ok
19:33:28.0021 0x1470  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
19:33:28.0036 0x1470  Fax - ok
19:33:28.0062 0x1470  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
19:33:28.0063 0x1470  fdc - ok
19:33:28.0089 0x1470  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
19:33:28.0091 0x1470  fdPHost - ok
19:33:28.0108 0x1470  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
19:33:28.0109 0x1470  FDResPub - ok
19:33:28.0152 0x1470  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
19:33:28.0154 0x1470  FileInfo - ok
19:33:28.0165 0x1470  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
19:33:28.0167 0x1470  Filetrace - ok
19:33:28.0227 0x1470  [ 1F63900E2EB00101B9ACA2B7A870704E, 5AFE1FC852937FECE6B33147BD0110436FE97F33BFDA3F69B1F5EDAD6FFC09C6 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
19:33:28.0240 0x1470  FLEXnet Licensing Service - ok
19:33:28.0334 0x1470  [ 1C3FB052A0BB72EDAED90785C34D6EED, 5300A82D1A79EBA1768F545E73974E3B8CE189AB39CDF905BF42AFA2E497186B ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
19:33:28.0355 0x1470  FLEXnet Licensing Service 64 - ok
19:33:28.0381 0x1470  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
19:33:28.0382 0x1470  flpydisk - ok
19:33:28.0414 0x1470  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
19:33:28.0421 0x1470  FltMgr - ok
19:33:28.0458 0x1470  [ 0C8583071EBC32007C8304BA979170DB, AB59C291BE984EDFE115FD6BA0F5E892F916A6117A53580AD41D2117B7E7914A ] FLxHCIc         C:\Windows\system32\drivers\FLxHCIc.sys
19:33:28.0463 0x1470  FLxHCIc - ok
19:33:28.0489 0x1470  [ 1C6BEC5768486349394D0EA4796A3C61, C98FD27761E8F4C8571AEF12E089E95173298203F296C19501031BFEABCC83E5 ] FLxHCIh         C:\Windows\system32\drivers\FLxHCIh.sys
19:33:28.0491 0x1470  FLxHCIh - ok
19:33:28.0558 0x1470  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
19:33:28.0583 0x1470  FontCache - ok
19:33:28.0629 0x1470  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:33:28.0631 0x1470  FontCache3.0.0.0 - ok
19:33:28.0664 0x1470  [ 1899D0FB4C5AD0D6D0BFA258C54903F7, 017090A7DB940CA65A713415B922F36FA7E10EAD226ECB9350ED1D43FD625E0F ] FPSensor        C:\Windows\system32\Drivers\FPSensor.sys
19:33:28.0665 0x1470  FPSensor - ok
19:33:28.0683 0x1470  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
19:33:28.0685 0x1470  FsDepends - ok
19:33:28.0706 0x1470  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
19:33:28.0707 0x1470  Fs_Rec - ok
19:33:28.0747 0x1470  [ FA169871D8FADCC6539C4E8726610286, 14BF1C5225BD736C686FAC6393050BCFC5C43BC9557A78901CC98BC446A3894D ] FTDIBUS         C:\Windows\system32\drivers\ftdibus.sys
19:33:28.0749 0x1470  FTDIBUS - ok
19:33:28.0762 0x1470  [ 24237091348D1EFB5635A1CF9649E311, 23C66EEC336770E035825EEBABEB02258FFB1436A5CC0E26C267C470EA5B0D07 ] FTSER2K         C:\Windows\system32\drivers\ftser2k.sys
19:33:28.0765 0x1470  FTSER2K - ok
19:33:28.0800 0x1470  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
19:33:28.0805 0x1470  fvevol - ok
19:33:28.0829 0x1470  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
19:33:28.0831 0x1470  gagp30kx - ok
19:33:28.0864 0x1470  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:33:28.0865 0x1470  GEARAspiWDM - ok
19:33:28.0904 0x1470  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
19:33:28.0921 0x1470  gpsvc - ok
19:33:28.0979 0x1470  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:33:28.0982 0x1470  gupdate - ok
19:33:28.0991 0x1470  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:33:28.0994 0x1470  gupdatem - ok
19:33:29.0062 0x1470  [ 4635935FC972C582632BF45C26BFCB0E, ABD4AFD71B3C2BD3F741BBE3CEC52C4FA63AC78D353101D2E7DC4DE2725D1CA1 ] HawkesUpdater   C:\Program Files (x86)\Hawkes Learning Systems\Hawkes Update Service Manager\srvany.exe
19:33:29.0062 0x1470  HawkesUpdater - ok
19:33:29.0094 0x1470  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
19:33:29.0095 0x1470  hcw85cir - ok
19:33:29.0128 0x1470  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:33:29.0136 0x1470  HdAudAddService - ok
19:33:29.0167 0x1470  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
19:33:29.0170 0x1470  HDAudBus - ok
19:33:29.0201 0x1470  [ 6B01B7414A105B9E51652089A03027CF, 9B113DC22F7D0D0B376E577C6D7083F9EDC09BBFE47726393E16D4FDAAAE21FE ] HECIx64         C:\Windows\system32\drivers\HECIx64.sys
19:33:29.0203 0x1470  HECIx64 - ok
19:33:29.0216 0x1470  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
19:33:29.0218 0x1470  HidBatt - ok
19:33:29.0236 0x1470  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
19:33:29.0239 0x1470  HidBth - ok
19:33:29.0268 0x1470  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
19:33:29.0270 0x1470  HidIr - ok
19:33:29.0321 0x1470  [ 943B20F119F05BCAB4D2593E2D3D4278, 7056691C0EFF0AA236195BD254E452C026EEDFB2E257330F92A072D4CEC3B712 ] hidkmdf         C:\Windows\system32\DRIVERS\hidkmdf.sys
19:33:29.0321 0x1470  hidkmdf - ok
19:33:29.0343 0x1470  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
19:33:29.0345 0x1470  hidserv - ok
19:33:29.0394 0x1470  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
19:33:29.0395 0x1470  HidUsb - ok
19:33:29.0435 0x1470  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
19:33:29.0437 0x1470  hkmsvc - ok
19:33:29.0454 0x1470  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:33:29.0460 0x1470  HomeGroupListener - ok
19:33:29.0494 0x1470  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:33:29.0500 0x1470  HomeGroupProvider - ok
19:33:29.0531 0x1470  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
19:33:29.0534 0x1470  HpSAMD - ok
19:33:29.0640 0x1470  [ 5ECEC779312AD35B1B19951A4B53FAC1, 67F4D2603E233FA0C2957419BB196BE6273C02FF6AAA188BA613EF62E80BCBC1 ] HPSLPSVC        C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL
19:33:29.0662 0x1470  HPSLPSVC - ok
19:33:29.0684 0x1470  [ 0C7D692643F892B786A45CB9AFEE2729, 54C51CEA501A554ABA6DA56F766FCF7CA4E9FCCFC507220390C328FD283678F5 ] hptiop          C:\Windows\system32\drivers\hptiop.sys
19:33:29.0684 0x1470  hptiop - ok
19:33:29.0704 0x1470  [ 93850720522B3015CE0AB56C78C2B219, B100958333DEE817D2EBB87751D746678B114847434B2FAB33BCEB5FC7478790 ] hptmv           C:\Windows\system32\drivers\hptmv.sys
19:33:29.0706 0x1470  hptmv - ok
19:33:29.0728 0x1470  [ 99FA9A613B09A82340B39CA522F6AAAC, 61956E98E9859022ABDC9716EC07FBC2AC760A7D031A02BFD89E7F6D33E501B4 ] hptmv6          C:\Windows\system32\drivers\hptmv6.sys
19:33:29.0731 0x1470  hptmv6 - ok
19:33:29.0796 0x1470  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
19:33:29.0812 0x1470  HTTP - ok
19:33:29.0844 0x1470  [ 1BD894A82E408339AEE62A689D586AF3, 5B0BEE9D848A9EA4206EE9CCFEB6620A4AF033A19A6D753F1EE260926699787B ] HWA             C:\Windows\System32\Drivers\HWA.sys
19:33:29.0846 0x1470  HWA - ok
19:33:29.0870 0x1470  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
19:33:29.0870 0x1470  hwpolicy - ok
19:33:29.0900 0x1470  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
19:33:29.0903 0x1470  i8042prt - ok
19:33:29.0924 0x1470  [ 87A72502C8AC5E89B5A46FF6E874F5C5, A72C8C96BA29B5894A3085CA2ADB6343FEFA79534B334416F8D4751CF8A30008 ] IAMTVE          C:\Windows\system32\drivers\IAMTVE.sys
19:33:29.0925 0x1470  IAMTVE - ok
19:33:29.0965 0x1470  [ 5516F8E518A2F6A8755498F3E73957CF, 55CCE4501B44F756D31BA0E353597F0C9E12FDFF7205B05114A8CF1D7D506365 ] IAMTXPE         C:\Windows\system32\drivers\IAMTXPE.sys
19:33:29.0967 0x1470  IAMTXPE - ok
19:33:29.0997 0x1470  [ D1753C06EE17E29352B065EACF3F10D0, 4DD4C991FAA3CCF99DF8DC9F8F5DEEDEECD55977F0C3AA8C404DEFD21E32A62B ] iaStor          C:\Windows\system32\drivers\iaStor.sys
19:33:30.0007 0x1470  iaStor - ok
19:33:30.0039 0x1470  [ 3A2C1EBCC6E5A7540AF36C36208F87D2, 8B97521CAF158B74595286BA969024D5AC89CC40650482DB95EF654DC71CFCF3 ] iaStorA         C:\Windows\system32\drivers\iaStorA.sys
19:33:30.0051 0x1470  iaStorA - ok
19:33:30.0096 0x1470  [ 3900C23B300C05C74ABBFF8010897080, 3799340345E5D7F24B353CB9B34AA9DEC7399DA6C97F76F6AEC38399C2EE5683 ] iaStorF         C:\Windows\system32\drivers\iaStorF.sys
19:33:30.0097 0x1470  iaStorF - ok
19:33:30.0126 0x1470  [ E6A6A5462E693D63F7C6729945C48E9E, F6D278092F5CBF3A6C075839D4C937818A2C962884BF18C21C54243CC3AD6973 ] iaStorS         C:\Windows\system32\drivers\iaStorS.sys
19:33:30.0141 0x1470  iaStorS - ok
19:33:30.0172 0x1470  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
19:33:30.0181 0x1470  iaStorV - ok
19:33:30.0242 0x1470  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:33:30.0261 0x1470  idsvc - ok
19:33:30.0365 0x1470  [ F6F8CDA3CC5207BFD0B319A26E33ACD3, 6630DEE80A85DA972D3734A5D67E274AEE7042A73AB45E19E15DC989AE88459E ] IDSVia64        C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Data\Definitions\IPSDefs\20140324.001\IDSvia64.sys
19:33:30.0374 0x1470  IDSVia64 - ok
19:33:30.0392 0x1470  IEEtwCollectorService - ok
19:33:30.0430 0x1470  [ 69D9FF75F5EE1584DEB6EA30AC67381C, 46B7A2A96C8FBC413E5937CAAC8B0E50ACE6F01723841B7F3264DCB3C5919E68 ] IFCoEMP         C:\Windows\system32\drivers\ifM60x64.sys
19:33:30.0438 0x1470  IFCoEMP - ok
19:33:30.0479 0x1470  [ 7FF09DCBB1EE12CD5FE58C738E299D15, 841163A0C2E5B50D33841D3C0B700D7169E78AFFEF2A25B0396AF3F5A1528A56 ] IFCoEVB         C:\Windows\system32\drivers\ifP60X64.sys
19:33:30.0481 0x1470  IFCoEVB - ok
19:33:30.0926 0x1470  [ 371D7F91C0D2314EB984A4A6CBEABC92, DD4B04308596C1E6C75B8772D4421137F3A83285DBCFD4DF54166D2B0B45A317 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
19:33:31.0360 0x1470  igfx - ok
19:33:31.0419 0x1470  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
19:33:31.0421 0x1470  iirsp - ok
19:33:31.0475 0x1470  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
19:33:31.0494 0x1470  IKEEXT - ok
19:33:31.0533 0x1470  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
19:33:31.0534 0x1470  intelide - ok
19:33:31.0577 0x1470  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
19:33:31.0579 0x1470  intelppm - ok
19:33:31.0607 0x1470  [ E45575812630B049CE0F679D87561A4D, 2645B87960DAA51295530ECF5518E5872B17520293068E7DEA064FEAE3884E87 ] ioatdma1        C:\Windows\System32\Drivers\qd162x64.sys
19:33:31.0609 0x1470  ioatdma1 - ok
19:33:31.0634 0x1470  [ 2C23820DD9E81199E60F553EB50BC449, AF3847AD90A79E9D22DC67F4ED52B1D3FAF7C6420D60F2044C1FB49FD338BB70 ] ioatdma2        C:\Windows\System32\Drivers\qd262x64.sys
19:33:31.0635 0x1470  ioatdma2 - ok
19:33:31.0671 0x1470  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
19:33:31.0674 0x1470  IPBusEnum - ok
19:33:31.0690 0x1470  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:33:31.0693 0x1470  IpFilterDriver - ok
19:33:31.0743 0x1470  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
19:33:31.0756 0x1470  iphlpsvc - ok
19:33:31.0783 0x1470  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
19:33:31.0785 0x1470  IPMIDRV - ok
19:33:31.0799 0x1470  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
19:33:31.0802 0x1470  IPNAT - ok
19:33:31.0886 0x1470  [ 6E50CFA46527B39015B750AAD161C5CC, 93F99EF7771C56EBE41FBC0C668F686644FBDF94E31456D3F5A9A8AE2F70EAB6 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
19:33:31.0906 0x1470  iPod Service - ok
19:33:31.0945 0x1470  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
19:33:31.0946 0x1470  IRENUM - ok
19:33:31.0966 0x1470  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
19:33:31.0967 0x1470  isapnp - ok
19:33:31.0990 0x1470  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
19:33:31.0996 0x1470  iScsiPrt - ok
19:33:32.0012 0x1470  [ E6AA8E96567FFDB8794464BD07293317, 917818A0B3E359366ED98F33851B1FBFF73EA7C5539437945FD9A25BED9A22FC ] iteatapi        C:\Windows\system32\drivers\iteatapi.sys
19:33:32.0013 0x1470  iteatapi - ok
19:33:32.0028 0x1470  [ 149965167ED18C14F6E080A781684E13, A262E29490A3095EB6B098474788C06463206E82E9B082B4D10697B2B47532F5 ] iteraid         C:\Windows\system32\drivers\iteraid.sys
19:33:32.0029 0x1470  iteraid - ok
19:33:32.0061 0x1470  [ 846354992EBB373F452EB9182D501B08, 453459133DCA875E93CAAE9852E652F3794F8C31CE53526C47A181FDBABE6849 ] iusb3hcs        C:\Windows\system32\drivers\iusb3hcs.sys
19:33:32.0062 0x1470  iusb3hcs - ok
19:33:32.0082 0x1470  [ 1D88A23853387D34D52CC8F9DDBFC56C, D00083B61E93E7E1D247EAB332787912FCF7605AF7043F071238C50E4A15016B ] iusb3hub        C:\Windows\system32\drivers\iusb3hub.sys
19:33:32.0090 0x1470  iusb3hub - ok
19:33:32.0135 0x1470  [ FC5EFD7C797DF19DFB999F0605A7924E, C56CE3840F3B11D81BED38E5F59ABCA190DFB7127F06263193870312A83379AF ] iusb3xhc        C:\Windows\system32\drivers\iusb3xhc.sys
19:33:32.0152 0x1470  iusb3xhc - ok
19:33:32.0174 0x1470  [ C0D9BA660A41EE8A269EF804E6CD0D7B, B69B732FA7178F9FA97E16A1F99EED27ABDEDB37FB610F1D7A823BB24D08340B ] JRAID           C:\Windows\system32\drivers\jraid.sys
19:33:32.0177 0x1470  JRAID - ok
19:33:32.0218 0x1470  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
19:33:32.0220 0x1470  kbdclass - ok
19:33:32.0235 0x1470  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
19:33:32.0237 0x1470  kbdhid - ok
19:33:32.0254 0x1470  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\Windows\system32\lsass.exe
19:33:32.0256 0x1470  KeyIso - ok
19:33:32.0286 0x1470  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
19:33:32.0289 0x1470  KSecDD - ok
19:33:32.0307 0x1470  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
19:33:32.0310 0x1470  KSecPkg - ok
19:33:32.0337 0x1470  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
19:33:32.0338 0x1470  ksthunk - ok
19:33:32.0366 0x1470  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
19:33:32.0375 0x1470  KtmRm - ok
19:33:32.0427 0x1470  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
19:33:32.0433 0x1470  LanmanServer - ok
19:33:32.0455 0x1470  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:33:32.0459 0x1470  LanmanWorkstation - ok
19:33:32.0504 0x1470  [ BE166935083F9C38EDFDC21B9A7A679B, 89C64DBE58E1B974208AAAA5CC757C599B1439C205C3C48BF16BA054A06DBC94 ] LHDmgr          C:\Windows\system32\DRIVERS\LhdX64.sys
19:33:32.0506 0x1470  LHDmgr - ok
19:33:32.0520 0x1470  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
19:33:32.0522 0x1470  lltdio - ok
19:33:32.0554 0x1470  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
19:33:32.0561 0x1470  lltdsvc - ok
19:33:32.0587 0x1470  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
19:33:32.0589 0x1470  lmhosts - ok
19:33:32.0630 0x1470  [ D7B77B486804AF25838AA51734F65E2C, 2FE66BC391C664943CFB4263C463100CE40E828B2648D5BBF1108DE9C53BF5BC ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
19:33:32.0634 0x1470  LSI_FC - ok
19:33:32.0654 0x1470  [ 9EFB958D24DC05044AF90F6D548590CE, 3BEA575A5522FAC842B4B87D0883C5DC3D16C319B668710E6EDC7426D0AC12D8 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
19:33:32.0656 0x1470  LSI_SAS - ok
19:33:32.0691 0x1470  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
19:33:32.0693 0x1470  LSI_SAS2 - ok
19:33:32.0718 0x1470  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
19:33:32.0722 0x1470  LSI_SCSI - ok
19:33:32.0750 0x1470  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
19:33:32.0753 0x1470  luafv - ok
19:33:32.0796 0x1470  [ 0BB97D43299910CBFBA59C461B99B910, 27C22D9D9EE8A410D7396960DA93E9E260D4DCDD38DCE06E85E45C5E24C067DE ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
19:33:32.0797 0x1470  MBAMProtector - ok
19:33:32.0851 0x1470  [ 65085456FD9A74D7F1A999520C299ECB, EA564BC913EF1B8A4CAA9242FC70F525B68CF1F3CA462F63B0B7215B93FE8530 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
19:33:32.0860 0x1470  MBAMScheduler - ok
19:33:32.0921 0x1470  [ E0D7732F2D2E24B2DB3F67B6750295B8, AA5CA86AF1ACEC900F60339016B3DC55472DB40ADB99186005A7ABE67B7D66FC ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
19:33:32.0936 0x1470  MBAMService - ok
19:33:32.0970 0x1470  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
19:33:32.0972 0x1470  Mcx2Svc - ok
19:33:32.0995 0x1470  [ E2E92687F505BF15D07B4315866B4A44, 7DA7B0441A31D4CFAAE78D933C42EBADD86224592B934BF7F63D29F380E19E31 ] megasas         C:\Windows\system32\drivers\megasas.sys
19:33:32.0997 0x1470  megasas - ok
19:33:33.0039 0x1470  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
19:33:33.0045 0x1470  MegaSR - ok
19:33:33.0077 0x1470  [ 6D884467FDD4EA15040CA0D5D34C067C, A77B2F20577FE1DEA770600F331494D52A0E51F0F6FC653716431ADCE07A1F45 ] MegaSR1         C:\Windows\system32\drivers\MegaSR1.sys
19:33:33.0087 0x1470  MegaSR1 - ok
19:33:33.0123 0x1470  [ 6B01B7414A105B9E51652089A03027CF, 9B113DC22F7D0D0B376E577C6D7083F9EDC09BBFE47726393E16D4FDAAAE21FE ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
19:33:33.0124 0x1470  MEIx64 - ok
19:33:33.0187 0x1470  Microsoft SharePoint Workspace Audit Service - ok
19:33:33.0228 0x1470  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
19:33:33.0231 0x1470  MMCSS - ok
19:33:33.0258 0x1470  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
19:33:33.0260 0x1470  Modem - ok
19:33:33.0284 0x1470  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
19:33:33.0285 0x1470  monitor - ok
19:33:33.0312 0x1470  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
19:33:33.0314 0x1470  mouclass - ok
19:33:33.0335 0x1470  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
19:33:33.0337 0x1470  mouhid - ok
19:33:33.0365 0x1470  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
19:33:33.0367 0x1470  mountmgr - ok
19:33:33.0382 0x1470  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
19:33:33.0386 0x1470  mpio - ok
19:33:33.0419 0x1470  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
19:33:33.0421 0x1470  mpsdrv - ok
19:33:33.0471 0x1470  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
19:33:33.0490 0x1470  MpsSvc - ok
19:33:33.0527 0x1470  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
19:33:33.0530 0x1470  MRxDAV - ok
19:33:33.0553 0x1470  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
19:33:33.0557 0x1470  mrxsmb - ok
19:33:33.0574 0x1470  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:33:33.0580 0x1470  mrxsmb10 - ok
19:33:33.0604 0x1470  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:33:33.0607 0x1470  mrxsmb20 - ok
19:33:33.0629 0x1470  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
19:33:33.0631 0x1470  msahci - ok
19:33:33.0651 0x1470  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
19:33:33.0654 0x1470  msdsm - ok
19:33:33.0671 0x1470  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
19:33:33.0675 0x1470  MSDTC - ok
19:33:33.0709 0x1470  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
19:33:33.0710 0x1470  Msfs - ok
19:33:33.0725 0x1470  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
19:33:33.0726 0x1470  mshidkmdf - ok
19:33:33.0735 0x1470  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
19:33:33.0736 0x1470  msisadrv - ok
19:33:33.0772 0x1470  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
19:33:33.0777 0x1470  MSiSCSI - ok
19:33:33.0780 0x1470  msiserver - ok
19:33:33.0823 0x1470  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
19:33:33.0824 0x1470  MSKSSRV - ok
19:33:33.0842 0x1470  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
19:33:33.0843 0x1470  MSPCLOCK - ok
19:33:33.0858 0x1470  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
19:33:33.0859 0x1470  MSPQM - ok
19:33:33.0886 0x1470  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
19:33:33.0895 0x1470  MsRPC - ok
19:33:33.0924 0x1470  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
19:33:33.0925 0x1470  mssmbios - ok
19:33:33.0949 0x1470  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
19:33:33.0950 0x1470  MSTEE - ok
19:33:33.0963 0x1470  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
19:33:33.0964 0x1470  MTConfig - ok
19:33:33.0979 0x1470  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
19:33:33.0981 0x1470  Mup - ok
19:33:34.0007 0x1470  [ 7064F169A5E53B915091B55525D73483, 718902A37E98247A4A3A281763AC572C3FC7A5EAD9FA29132543B6B24F47F007 ] mv61xx          C:\Windows\system32\drivers\mv61xx.sys
19:33:34.0011 0x1470  mv61xx - ok
19:33:34.0021 0x1470  [ 3F70E83C6A9F617D649A82149D337724, A02B85852B5BDBCD5795593C3C031D9D45AFEE4A3C3473BF2B791CD0D1F2AB3B ] mv91cons        C:\Windows\system32\drivers\mv91cons.sys
19:33:34.0022 0x1470  mv91cons - ok
19:33:34.0045 0x1470  [ 611EBE534DF049AD9413552FA81ECF75, 2968E394E23142985539A8A0280780CA7E08709897CD82DF2F65F2D16DC050DA ] mv91xx          C:\Windows\system32\drivers\mv91xx.sys
19:33:34.0053 0x1470  mv91xx - ok
19:33:34.0096 0x1470  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
19:33:34.0107 0x1470  napagent - ok
19:33:34.0148 0x1470  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
19:33:34.0155 0x1470  NativeWifiP - ok
19:33:34.0224 0x1470  [ 702E07EC32F96ACDB873E9A5465D4401, 2C6B1C8BA0BF4791AEA064062DCA3678AE4443DF19DB37D6CB55BA6297D8A238 ] NAVENG          C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Data\Definitions\VirusDefs\20140326.016\ENG64.SYS
19:33:34.0226 0x1470  NAVENG - ok
19:33:34.0298 0x1470  [ 302EA314A1AF0D7CEF0A3D0195F79561, 046DBC2D9D028F2D2E8BAE745CA2ADEF42741689BFF743A13B81EA4228DDCDC6 ] NAVEX15         C:\ProgramData\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Data\Definitions\VirusDefs\20140326.016\EX64.SYS
19:33:34.0334 0x1470  NAVEX15 - ok
19:33:34.0409 0x1470  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
19:33:34.0429 0x1470  NDIS - ok
19:33:34.0470 0x1470  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
19:33:34.0471 0x1470  NdisCap - ok
19:33:34.0504 0x1470  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
19:33:34.0505 0x1470  NdisTapi - ok
19:33:34.0537 0x1470  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
19:33:34.0539 0x1470  Ndisuio - ok
19:33:34.0555 0x1470  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
19:33:34.0560 0x1470  NdisWan - ok
19:33:34.0579 0x1470  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
19:33:34.0581 0x1470  NDProxy - ok
19:33:34.0648 0x1470  [ DC6530A291D4BDF6DF399F1F128E7F8F, 85123D802063383646EEBC60F4ABBCDBA2AE3180E99A8A99C024B1EBB0C6690E ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
19:33:34.0651 0x1470  Net Driver HPZ12 - ok
19:33:34.0679 0x1470  [ 6F4607E2333FE21E9E3FF8133A88B35B, F7B7B262D85D03552A8D0F3F91E795B31E3D09020DDA1E3D62A4A3209D916BB6 ] Netaapl         C:\Windows\system32\DRIVERS\netaapl64.sys
19:33:34.0681 0x1470  Netaapl - ok
19:33:34.0712 0x1470  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
19:33:34.0714 0x1470  NetBIOS - ok
19:33:34.0726 0x1470  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
19:33:34.0732 0x1470  NetBT - ok
19:33:34.0754 0x1470  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\Windows\system32\lsass.exe
19:33:34.0755 0x1470  Netlogon - ok
19:33:34.0796 0x1470  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
19:33:34.0805 0x1470  Netman - ok
19:33:34.0834 0x1470  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
19:33:34.0845 0x1470  netprofm - ok
19:33:34.0870 0x1470  [ 3E5A36127E201DDF663176B66828FAFE, 5A08BA9EFB1A72DF1DD839BA5FA2B8994012BA62A515588FF62333B33B60045B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:33:34.0872 0x1470  NetTcpPortSharing - ok
19:33:35.0243 0x1470  [ B51E9AD4F4E4F8DBE0AB882756BC5DAB, 74E975F3BF39B360C466A0CEEEF545D1B814EE1AEFF6B2FCDD81A33FA276FBF3 ] NETwNs64        C:\Windows\system32\DRIVERS\NETwNs64.sys
19:33:35.0585 0x1470  NETwNs64 - ok
19:33:35.0621 0x1470  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
19:33:35.0622 0x1470  nfrd960 - ok
19:33:35.0658 0x1470  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
19:33:35.0666 0x1470  NlaSvc - ok
19:33:35.0680 0x1470  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
19:33:35.0682 0x1470  Npfs - ok
19:33:35.0712 0x1470  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
19:33:35.0714 0x1470  nsi - ok
19:33:35.0736 0x1470  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
19:33:35.0737 0x1470  nsiproxy - ok
19:33:35.0812 0x1470  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
19:33:35.0847 0x1470  Ntfs - ok
19:33:35.0877 0x1470  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
19:33:35.0878 0x1470  Null - ok
19:33:35.0913 0x1470  [ D584ABB6A308933A5F72B46C9E5A783F, 31922A27B3A9A64A9F71B7591FCAC6E0ACD15E36B9BFC4B4D75DE473E0F5CF6B ] nusb3hub        C:\Windows\system32\drivers\nusb3hub.sys
19:33:35.0916 0x1470  nusb3hub - ok
19:33:35.0940 0x1470  [ 345B9C04E2036DA4346E3249A5BDFD06, 2FCA4661757EC8E33F6D1E8066165C0E0A0D32649318412A79A915B83496236A ] nusb3xhc        C:\Windows\system32\drivers\nusb3xhc.sys
19:33:35.0945 0x1470  nusb3xhc - ok
19:33:35.0975 0x1470  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
19:33:35.0979 0x1470  nvraid - ok
19:33:36.0016 0x1470  [ 6F2D9D7F339F0C9EF358793F92BA3393, 4B60CCC842F9FAD5B62D76A2F8908A68114A71D258BE1D7713D774D9B785AF0C ] nvrd64          C:\Windows\system32\drivers\nvrd64.sys
19:33:36.0020 0x1470  nvrd64 - ok
19:33:36.0047 0x1470  [ 61A59FB62864EB3F32D24985A505CE03, 6D0690AE29828F8F41D87EFA0FCF185DF710D36CBF6A15D48E0A5C7A87A7593A ] nvsmu           C:\Windows\system32\drivers\nvsmu.sys
19:33:36.0049 0x1470  nvsmu - ok
19:33:36.0090 0x1470  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
19:33:36.0094 0x1470  nvstor - ok
19:33:36.0134 0x1470  [ A1578751D32B2CED76DCA2B20C2B22A5, 9FB35258E2E709E6E9BEAB5AC583BC05509CB1DEFDF81A161EC6530FD38259E6 ] nvstor64        C:\Windows\system32\drivers\nvstor64.sys
19:33:36.0140 0x1470  nvstor64 - ok
19:33:36.0168 0x1470  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
19:33:36.0171 0x1470  nv_agp - ok
19:33:36.0200 0x1470  [ AECFF27D5C70F295B09B85EFE3292ED1, 10EE366E4551EE0994B309AC30F5F619B6A4A0A9C8B55943D9FB5FA79A187568 ] O2MDRDR         C:\Windows\system32\drivers\o2mdx64.sys
19:33:36.0202 0x1470  O2MDRDR - ok
19:33:36.0223 0x1470  [ DF014C48015B637790BE3EDDD1384728, 3414A45709F33684945D61191E65163766A18B37CBC9D12CC56968A2A5F06467 ] O2SDRDR         C:\Windows\system32\drivers\o2sdx64.sys
19:33:36.0225 0x1470  O2SDRDR - ok
19:33:36.0252 0x1470  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
19:33:36.0255 0x1470  ohci1394 - ok
19:33:36.0309 0x1470  [ 4965B005492CBA7719E82B71E3245495, 52AD72C05FACC1E0E416A1FA25F34FDD3CB274FAB973BEAAE911A2FACA42B650 ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:33:36.0314 0x1470  ose64 - ok
19:33:36.0483 0x1470  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:33:36.0629 0x1470  osppsvc - ok
19:33:36.0677 0x1470  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
19:33:36.0685 0x1470  p2pimsvc - ok
19:33:36.0715 0x1470  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
19:33:36.0725 0x1470  p2psvc - ok
19:33:36.0762 0x1470  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
19:33:36.0765 0x1470  Parport - ok
19:33:36.0791 0x1470  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
19:33:36.0794 0x1470  partmgr - ok
19:33:36.0830 0x1470  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
19:33:36.0835 0x1470  PcaSvc - ok
19:33:36.0857 0x1470  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
19:33:36.0862 0x1470  pci - ok
19:33:36.0903 0x1470  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
19:33:36.0904 0x1470  pciide - ok
19:33:36.0936 0x1470  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
19:33:36.0941 0x1470  pcmcia - ok
19:33:36.0958 0x1470  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
19:33:36.0960 0x1470  pcw - ok
19:33:36.0991 0x1470  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
19:33:37.0006 0x1470  PEAUTH - ok
19:33:37.0070 0x1470  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
19:33:37.0100 0x1470  PeerDistSvc - ok
19:33:37.0199 0x1470  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
19:33:37.0201 0x1470  PerfHost - ok
19:33:37.0274 0x1470  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
19:33:37.0304 0x1470  pla - ok
19:33:37.0360 0x1470  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
19:33:37.0370 0x1470  PlugPlay - ok
19:33:37.0408 0x1470  [ 71F62C51DFDFBC04C83C5C64B2B8058E, CAB12E6D27BE421BD5A3CB04066EA50303A3210332ECC4B5C03B5F19735FC857 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
19:33:37.0411 0x1470  Pml Driver HPZ12 - ok
19:33:37.0445 0x1470  [ 608A144310828C21DDF745124B10F833, BCD9961AA0399F6A1A4FAC91771E8053A8E528D6D9673740DFFB936F83B126AD ] Pnp680          C:\Windows\system32\drivers\pnp680.sys
19:33:37.0447 0x1470  Pnp680 - ok
19:33:37.0476 0x1470  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
19:33:37.0478 0x1470  PNRPAutoReg - ok
19:33:37.0500 0x1470  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
19:33:37.0507 0x1470  PNRPsvc - ok
19:33:37.0559 0x1470  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
19:33:37.0571 0x1470  PolicyAgent - ok
19:33:37.0598 0x1470  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
19:33:37.0603 0x1470  Power - ok
19:33:37.0632 0x1470  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
19:33:37.0635 0x1470  PptpMiniport - ok
19:33:37.0651 0x1470  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
19:33:37.0653 0x1470  Processor - ok
19:33:37.0693 0x1470  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
19:33:37.0699 0x1470  ProfSvc - ok
19:33:37.0711 0x1470  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
19:33:37.0712 0x1470  ProtectedStorage - ok
19:33:37.0734 0x1470  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
19:33:37.0737 0x1470  Psched - ok
19:33:37.0806 0x1470  [ 07D57B890DD5693A6AB660CBAE8F91B4, 934895A41C116056E22FE3298418332A9F4280F96E96EEE06C977A4925395674 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
19:33:37.0808 0x1470  PxHlpa64 - ok
19:33:37.0885 0x1470  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
19:33:37.0917 0x1470  ql2300 - ok
19:33:37.0933 0x1470  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
19:33:37.0936 0x1470  ql40xx - ok
19:33:37.0967 0x1470  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
19:33:37.0973 0x1470  QWAVE - ok
19:33:37.0992 0x1470  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
19:33:37.0993 0x1470  QWAVEdrv - ok
19:33:38.0019 0x1470  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
19:33:38.0020 0x1470  RasAcd - ok
19:33:38.0065 0x1470  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
19:33:38.0067 0x1470  RasAgileVpn - ok
19:33:38.0097 0x1470  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
19:33:38.0100 0x1470  RasAuto - ok
19:33:38.0117 0x1470  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
19:33:38.0121 0x1470  Rasl2tp - ok
19:33:38.0150 0x1470  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
19:33:38.0159 0x1470  RasMan - ok
19:33:38.0174 0x1470  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
19:33:38.0177 0x1470  RasPppoe - ok
19:33:38.0208 0x1470  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
19:33:38.0210 0x1470  RasSstp - ok
19:33:38.0230 0x1470  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
19:33:38.0237 0x1470  rdbss - ok
19:33:38.0250 0x1470  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
19:33:38.0251 0x1470  rdpbus - ok
19:33:38.0277 0x1470  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
19:33:38.0278 0x1470  RDPCDD - ok
19:33:38.0297 0x1470  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
19:33:38.0302 0x1470  RDPDR - ok
19:33:38.0311 0x1470  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
19:33:38.0311 0x1470  RDPENCDD - ok
19:33:38.0344 0x1470  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
19:33:38.0344 0x1470  RDPREFMP - ok
19:33:38.0384 0x1470  [ 70CBA1A0C98600A2AA1863479B35CB90, 91A133297921B4955817176251AFC5283DA3C7D2099700C4C92ECC94DBE9A99E ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
19:33:38.0385 0x1470  RdpVideoMiniport - ok
19:33:38.0414 0x1470  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
19:33:38.0420 0x1470  RDPWD - ok
19:33:38.0462 0x1470  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
19:33:38.0467 0x1470  rdyboost - ok
19:33:38.0498 0x1470  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
19:33:38.0501 0x1470  RemoteAccess - ok
19:33:38.0537 0x1470  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
19:33:38.0541 0x1470  RemoteRegistry - ok
19:33:38.0561 0x1470  [ 6FAF5B04BEDC66D300D9D233B2D222F0, 26068A89DC00B8CC5A9CD840C16CA073D4290F25F8CE2CD418EFF0EDF2C6495E ] rimmptsk        C:\Windows\system32\drivers\rimmpx64.sys
19:33:38.0563 0x1470  rimmptsk - ok
19:33:38.0579 0x1470  [ 3DCA561AAF776AA2E356FB5B142AA5F8, E11F6776F02A09D64FDBB23D7169AB5467E0D8684AACB3D7CA8FAC42F3A02677 ] rimspci         C:\Windows\system32\drivers\rimspe64.sys
19:33:38.0581 0x1470  rimspci - ok
19:33:38.0598 0x1470  [ 67F50C31713106FD1B0F286F86AA2B2E, 8E1CAAA442C749396DBCE63F2A9D1C44AE84C48B8DD7EE400E24AA4AE041495E ] rimsptsk        C:\Windows\system32\drivers\rimspx64.sys
19:33:38.0600 0x1470  rimsptsk - ok
19:33:38.0619 0x1470  [ C4581F04AA130892555B821F1FBAA151, 8D517EE442A331AFE768A23067AAFE1491F94F66A58C5184823DF1CEB8DC53A0 ] risdpcie        C:\Windows\system32\drivers\risdpe64.sys
19:33:38.0622 0x1470  risdpcie - ok
19:33:38.0637 0x1470  [ 836A6B227DA12969E95480B244A6E548, 54966633C2F6EA71830FEFF9AC658D80BCD0AFBC0627D50F9AF117C8F4773240 ] risdxc          C:\Windows\system32\drivers\risdxc64.sys
19:33:38.0640 0x1470  risdxc - ok
19:33:38.0676 0x1470  [ 4D7EF3D46346EC4C58784DB964B365DE, 17AEE03C051998C5B50476AF43A95DC0A90AC08D07CED1172BEB2DD910762E19 ] rismxdp         C:\Windows\system32\drivers\rixdpx64.sys
19:33:38.0677 0x1470  rismxdp - ok
19:33:38.0701 0x1470  [ A4579105A3C5B6290701EAD0C153E07A, C1070C93309FBD3D67E8BAFDF2B8FFE83D4F877396B21816F8AAC0FDE68335CC ] rixdpcie        C:\Windows\system32\drivers\rixdpe64.sys
19:33:38.0703 0x1470  rixdpcie - ok
19:33:38.0727 0x1470  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
19:33:38.0730 0x1470  RpcEptMapper - ok
19:33:38.0754 0x1470  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
19:33:38.0755 0x1470  RpcLocator - ok
19:33:38.0784 0x1470  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
19:33:38.0793 0x1470  RpcSs - ok
19:33:38.0833 0x1470  [ C65DA638943DCC758B663C9C39470A40, 650D0DF1ACECF050B10919E130119DF9BE5054CD54EE6E710728E9728A778DEA ] rr172x          C:\Windows\system32\drivers\rr172x.sys
19:33:38.0835 0x1470  rr172x - ok
19:33:38.0852 0x1470  [ 20FE64775ABDD03D48F32C3C153595EE, 226675B6CF53E8B36E5456BD37299B785038E949638C618676120DF79CDA5477 ] rr174x          C:\Windows\system32\drivers\rr174x.sys
19:33:38.0856 0x1470  rr174x - ok
19:33:38.0897 0x1470  [ 74AC0A271E058F095134E73AE3821449, EE8E8C6512669F93F5A0D11C52CD20EE253CB417108115E8096747953EF6F802 ] rr2210          C:\Windows\system32\drivers\rr2210.sys
19:33:38.0900 0x1470  rr2210 - ok
19:33:38.0913 0x1470  [ C6972C4A30A8EB089A0DD74B440DBE8E, 9F1756C34EBD18F7932D3867FA3A81E46FB04E176B970325A23BC0E295637194 ] rr232x          C:\Windows\system32\drivers\rr232x.sys
19:33:38.0916 0x1470  rr232x - ok
19:33:38.0931 0x1470  [ 1853B57CDFF4A74616C9BFA36294852C, 8143FC24F59FD53FBE1078B916C1E1C02D2975AAB64C613CF654A0584CAA2CE4 ] rr2340          C:\Windows\system32\drivers\rr2340.sys
19:33:38.0934 0x1470  rr2340 - ok
19:33:38.0970 0x1470  [ 690C03513B27EE5CB1678498A0C80338, E3D3015EFBD3F38B2F2BC9D2060EB4CEA908C98D8B5847BE483EDCC74399E978 ] rr2522          C:\Windows\system32\drivers\rr2522.sys
19:33:38.0974 0x1470  rr2522 - ok
19:33:39.0010 0x1470  [ 8D837DBC94EFC1A1ADAF394A07435F5C, 91DE1D64E3D353FCA5B0F2BD31C8B55E9D49EAFD4B7B1B4AB48FED50BFEFE56A ] rr276x          C:\Windows\system32\drivers\rr276x.sys
19:33:39.0014 0x1470  rr276x - ok
19:33:39.0034 0x1470  [ 9B5F3CADBB182CFAB417C44367DAE9A4, A4A92A9949DFD5FAAA17DB59A8257A68F4933DEE2010465A1BF50FB515D89764 ] rr278x          C:\Windows\system32\drivers\rr278x.sys
19:33:39.0038 0x1470  rr278x - ok
19:33:39.0063 0x1470  [ DC37E853C300B6F45753F52A2EB71F23, F88D3334A7FF8AE840025314F93F8FBA7D5C5978FFEA3EB5F3D9273C29C00346 ] rr62x           C:\Windows\system32\drivers\rr62x.sys
19:33:39.0066 0x1470  rr62x - ok
19:33:39.0085 0x1470  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
19:33:39.0087 0x1470  rspndr - ok
19:33:39.0111 0x1470  [ BE29B0A3AC1E8BD02FFAB8CEE86BADFA, D6F76ECD30EDE1E5B1F01919B1492715947ACCA411D70BB2771427775736C055 ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys
19:33:39.0118 0x1470  RSUSBSTOR - ok
19:33:39.0181 0x1470  [ E57FAC2CDB73F06586ED2ED310B80932, 9BFC866E8AF555810127D1B95D1950BAC645C2553A46620417F6BA19FF5706B7 ] RSUSBVSTOR      C:\Windows\system32\Drivers\RtsUVStor.sys
19:33:39.0186 0x1470  RSUSBVSTOR - ok
19:33:39.0236 0x1470  [ A6284C8C29CCCCAD9109C4DA5CD916BD, 612A5E8CF0F591F217EF29EB34C08C9A6A295C26DD49D2F7D2BE0DD504A8F0F4 ] RTL8169         C:\Windows\system32\DRIVERS\Rtlh64.sys
19:33:39.0247 0x1470  RTL8169 - ok
19:33:39.0288 0x1470  [ CAB06CA598638E0457E1DCF8CA824EC2, 0193FC501E19104A1F71B240CD4E7093742F910A1A3CC3852CBCCE146C2167DB ] rusb3hub        C:\Windows\system32\drivers\rusb3hub.sys
19:33:39.0291 0x1470  rusb3hub - ok
19:33:39.0305 0x1470  [ F47E2920F2A8C34562AAE24B73800C5C, AE18CB3DD00A6C0582E561B22D1BE3ABF0A48E78A7536486102095E20A102844 ] rusb3xhc        C:\Windows\system32\drivers\rusb3xhc.sys
19:33:39.0310 0x1470  rusb3xhc - ok
19:33:39.0336 0x1470  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
19:33:39.0337 0x1470  s3cap - ok
19:33:39.0355 0x1470  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\Windows\system32\lsass.exe
19:33:39.0357 0x1470  SamSs - ok
19:33:39.0436 0x1470  [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
19:33:39.0436 0x1470  SASDIFSV - ok
19:33:39.0448 0x1470  [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
19:33:39.0449 0x1470  SASKUTIL - ok
19:33:39.0486 0x1470  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
19:33:39.0489 0x1470  sbp2port - ok
19:33:39.0535 0x1470  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
19:33:39.0541 0x1470  SCardSvr - ok
19:33:39.0555 0x1470  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
19:33:39.0556 0x1470  scfilter - ok
19:33:39.0604 0x1470  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
19:33:39.0628 0x1470  Schedule - ok
19:33:39.0651 0x1470  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
19:33:39.0652 0x1470  SCPolicySvc - ok
19:33:39.0687 0x1470  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
19:33:39.0692 0x1470  SDRSVC - ok
19:33:39.0737 0x1470  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
19:33:39.0738 0x1470  secdrv - ok
19:33:39.0759 0x1470  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
19:33:39.0761 0x1470  seclogon - ok
19:33:39.0779 0x1470  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
19:33:39.0782 0x1470  SENS - ok
19:33:39.0799 0x1470  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
19:33:39.0801 0x1470  SensrSvc - ok
19:33:39.0875 0x1470  [ 74885BDFF62E537F268EBF8E8CEC24BB, D49949C3ED3CE748FD5EF0CA4ECEA5F30B9EEAE365EBA7072A0BE203A84D8227 ] SepMasterService C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin\ccSvcHst.exe
19:33:39.0877 0x1470  SepMasterService - ok
19:33:39.0919 0x1470  [ 2C026132AA4AF6EBDA756F448707098E, 9118C7667375AF0753D3C9D02F341A354B25C2D6290EF821FC91EFEF318BB616 ] Ser2pl          C:\Windows\system32\drivers\ser2pl64.sys
19:33:39.0921 0x1470  Ser2pl - ok
19:33:39.0953 0x1470  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
19:33:39.0955 0x1470  Serenum - ok
19:33:39.0981 0x1470  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
19:33:39.0984 0x1470  Serial - ok
19:33:40.0013 0x1470  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
19:33:40.0014 0x1470  sermouse - ok
19:33:40.0053 0x1470  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
19:33:40.0057 0x1470  SessionEnv - ok
19:33:40.0074 0x1470  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
19:33:40.0075 0x1470  sffdisk - ok
19:33:40.0102 0x1470  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
19:33:40.0103 0x1470  sffp_mmc - ok
19:33:40.0112 0x1470  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
19:33:40.0118 0x1470  sffp_sd - ok
19:33:40.0137 0x1470  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
19:33:40.0138 0x1470  sfloppy - ok
19:33:40.0174 0x1470  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
19:33:40.0183 0x1470  SharedAccess - ok
19:33:40.0241 0x1470  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:33:40.0250 0x1470  ShellHWDetection - ok
19:33:40.0279 0x1470  [ E2512862265D97DB53DF788BFA9053A0, 7ADE2FDFAB75472D472BA42DCCD3E7C08BDB1B76FDB2AF0CD9E5E2B4FA28780F ] SI3112r         C:\Windows\system32\drivers\SI3112r.sys
19:33:40.0283 0x1470  SI3112r - ok
19:33:40.0322 0x1470  [ CA263222EB177E2E48B86D5EAA3FF75A, C0CDA12670EFD10DE53D7E13CB180ED9AB7C52CCDC7460D4B08419FFBBCD9435 ] SI3114          C:\Windows\system32\drivers\SI3114.sys
19:33:40.0325 0x1470  SI3114 - ok
19:33:40.0339 0x1470  [ 4891290048EC8F693FC6DF66B9CBDDDE, BC160D6648B0C30B4B9F4E00FEA497F1C7CF155126E8E72DB2AA3018879E3BCB ] SI3114r         C:\Windows\system32\drivers\SI3114R.sys
19:33:40.0343 0x1470  SI3114r - ok
19:33:40.0373 0x1470  [ 7FD4F1BB790D21EAEB2101C97178A501, 84B587317AB68B771D804338BECAFEE1F643BE7F6107C71CACE16BBBBA7ED87D ] SI3124          C:\Windows\system32\drivers\SI3124.sys
19:33:40.0376 0x1470  SI3124 - ok
19:33:40.0398 0x1470  [ 993E75B5952A642D8407ED252EFD8D82, D6E90D714D65A967EC96358896D2936687C6F4A2FA8015D629130411D5D2ED34 ] Si3124r5        C:\Windows\system32\drivers\Si3124r5.sys
19:33:40.0406 0x1470  Si3124r5 - ok
19:33:40.0421 0x1470  [ 0F498DEE92FD73DD999BAE4D506367F5, F85EC9A0D4A20D02B4DD30B489BA67E5C677B1DFD67EC7346083DAFB61B834C3 ] SI3132          C:\Windows\system32\drivers\SI3132.sys
19:33:40.0423 0x1470  SI3132 - ok
19:33:40.0457 0x1470  [ 1B731AE02FC0C1CCDC4B7D32FCC95660, F54D1B2D3F8C790D5D647D4A9A2E2F35E7CAD5B8DED08EC235300236B29298D2 ] Si3531          C:\Windows\system32\drivers\Si3531.sys
19:33:40.0464 0x1470  Si3531 - ok
19:33:40.0492 0x1470  [ 127CE10E01F53F2EDACA7FE42E5631EA, 665632BB4CCCEC92824F78985302588E09855B560E2D35273EAE36F45582B1F2 ] SiFilter        C:\Windows\system32\drivers\SiWinAcc.sys
19:33:40.0493 0x1470  SiFilter - ok
19:33:40.0502 0x1470  [ B742C37002B8EBEF6E230DF9B4B28546, E7DAF42E4C2A5E01218790AFDB54317448B9301FD8F874FDED853E5088E751CD ] SiRemFil        C:\Windows\system32\drivers\SiRemFil.sys
19:33:40.0504 0x1470  SiRemFil - ok
19:33:40.0523 0x1470  [ 5FF60B0A945343C05F929379B4089525, FFFA3B119687646F3F28B7017B943BCCAB8CD826DC3230D3ECF91F6FB976C596 ] SISAGP          C:\Windows\system32\drivers\SISAGPX.sys
19:33:40.0526 0x1470  SISAGP - ok
19:33:40.0550 0x1470  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
19:33:40.0551 0x1470  SiSRaid2 - ok
19:33:40.0577 0x1470  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
19:33:40.0580 0x1470  SiSRaid4 - ok
19:33:40.0617 0x1470  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
19:33:40.0620 0x1470  Smb - ok
19:33:40.0725 0x1470  [ B8EF6F1FAFBE89E24E152907605E7A25, B1771BB419265EFBA3185DA884FD921C66A86492C3DF19AB06E26010372C9442 ] SmcService      C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin64\Smc.exe
19:33:40.0791 0x1470  SmcService - ok
19:33:40.0848 0x1470  [ 6E4086FE8FDF101233D48EBC8107C98D, D6CBB304BA8F9DC908238CA59A3B4BC5137EC7540B69EE91A5B1E1F7195CD27E ] smwdm           C:\Windows\system32\drivers\smwdm.sys
19:33:40.0855 0x1470  smwdm - ok
19:33:40.0878 0x1470  [ 89733DCC3817455FBC3AB4A3C19EE765, 0D550153860D9557BC5E8B7B03CEF677FA4E24DB0A8F51F536B87D1CD0100A1C ] SNAC            C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin64\snac64.exe
19:33:40.0887 0x1470  SNAC - ok
19:33:40.0921 0x1470  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
19:33:40.0923 0x1470  SNMPTRAP - ok
19:33:40.0935 0x1470  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
19:33:40.0936 0x1470  spldr - ok
19:33:40.0978 0x1470  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
19:33:40.0990 0x1470  Spooler - ok
19:33:41.0115 0x1470  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
19:33:41.0212 0x1470  sppsvc - ok
19:33:41.0251 0x1470  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
19:33:41.0254 0x1470  sppuinotify - ok
19:33:41.0341 0x1470  [ 48FD53FED3C81726001E438A2201E9FF, 96CC81F74917960382101AD839D86DEA8B48BE7211A00BCC2AB400BA1E4CBCB1 ] SRTSP           C:\Windows\system32\Drivers\SEP\0C0103E8\009D.105\x64\SRTSP64.SYS
19:33:41.0355 0x1470  SRTSP - ok
19:33:41.0374 0x1470  [ 63199A936D9BDEA578DFB8F5E9A40095, B38593311A6ACCA1F3EE3F441A533DCB7639E6E6FCA4A83A5B11696A355CD533 ] SRTSPX          C:\Windows\system32\Drivers\SEP\0C0103E8\009D.105\x64\SRTSPX64.SYS
19:33:41.0375 0x1470  SRTSPX - ok
19:33:41.0398 0x1470  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
19:33:41.0408 0x1470  srv - ok
19:33:41.0447 0x1470  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
19:33:41.0456 0x1470  srv2 - ok
19:33:41.0474 0x1470  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
19:33:41.0478 0x1470  srvnet - ok
19:33:41.0507 0x1470  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
19:33:41.0513 0x1470  SSDPSRV - ok
19:33:41.0526 0x1470  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
19:33:41.0530 0x1470  SstpSvc - ok
19:33:41.0615 0x1470  [ 3F0826F632F66906CB3ED62202A6BAD7, CA21B038DD1A1BED7293A8DEEBE19D43D1C12378ED5C6B82D36900CD4FFF23B7 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
19:33:41.0624 0x1470  Steam Client Service - ok
19:33:41.0641 0x1470  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
19:33:41.0642 0x1470  stexstor - ok
19:33:41.0689 0x1470  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
19:33:41.0703 0x1470  stisvc - ok
19:33:41.0719 0x1470  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
19:33:41.0720 0x1470  storflt - ok
19:33:41.0761 0x1470  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
19:33:41.0762 0x1470  storvsc - ok
19:33:41.0776 0x1470  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
19:33:41.0777 0x1470  swenum - ok
19:33:41.0817 0x1470  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
19:33:41.0829 0x1470  swprv - ok
19:33:41.0866 0x1470  [ F017987B177F7BBC989318D59309D091, 3ED316AC86FB1F871B36ABA65E5B164B22D255B7509574A2CA8FC878A1142266 ] SymDS           C:\Windows\system32\Drivers\SEP\0C0103E8\009D.105\x64\SYMDS64.SYS
19:33:41.0876 0x1470  SymDS - ok
19:33:41.0901 0x1470  [ E7F25D768EE0CDF69D8B752398C262BB, D401B892EB4C7CFCEDBFB228EA8918513674A26516CA733F4777050F4F425D2A ] SymEFA          C:\Windows\system32\Drivers\SEP\0C0103E8\009D.105\x64\SYMEFA64.SYS
19:33:41.0920 0x1470  SymEFA - ok
19:33:41.0953 0x1470  [ 36B77F5C9E21F88A8C8EC67AD5415819, 0ECB96799F614C1C17F2D705A3C17E83078225A2350F3048A11F5C3164F7894A ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
19:33:41.0957 0x1470  SymEvent - ok
19:33:41.0992 0x1470  [ 1611FA7A95A48387DF22757FA81B46A9, B32C4D9FB9D35B5A37D9BF321F6BE2964EE536BADFFEB23C3D8693C08B35A795 ] SymIRON         C:\Windows\system32\Drivers\SEP\0C0103E8\009D.105\x64\Ironx64.SYS
19:33:41.0996 0x1470  SymIRON - ok
19:33:42.0014 0x1470  [ D41557715C1C792D1391DB5AA81A00DF, D08013347ED5F3CD62BF48075A2A5C71E2EE5E95A7BDB43F2435D5F0F19880D8 ] SYMNETS         C:\Windows\system32\Drivers\SEP\0C0103E8\009D.105\x64\SYMNETS.SYS
19:33:42.0022 0x1470  SYMNETS - ok
19:33:42.0050 0x1470  [ C3A39C4079305480972D29C44B868C78, 8F1BB75C743256F905EAEDE744B6082C53774C49126875FB4E4FBA30F5478B17 ] Synth3dVsc      C:\Windows\system32\drivers\Synth3dVsc.sys
19:33:42.0052 0x1470  Synth3dVsc - ok
19:33:42.0133 0x1470  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
19:33:42.0172 0x1470  SysMain - ok
19:33:42.0196 0x1470  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:33:42.0199 0x1470  TabletInputService - ok
19:33:42.0235 0x1470  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
19:33:42.0243 0x1470  TapiSrv - ok
19:33:42.0261 0x1470  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
19:33:42.0264 0x1470  TBS - ok
19:33:42.0345 0x1470  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
19:33:42.0384 0x1470  Tcpip - ok
19:33:42.0431 0x1470  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
19:33:42.0463 0x1470  TCPIP6 - ok
19:33:42.0498 0x1470  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
19:33:42.0499 0x1470  tcpipreg - ok
19:33:42.0519 0x1470  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
19:33:42.0520 0x1470  TDPIPE - ok
19:33:42.0537 0x1470  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
19:33:42.0538 0x1470  TDTCP - ok
19:33:42.0562 0x1470  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
19:33:42.0565 0x1470  tdx - ok
19:33:42.0583 0x1470  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
19:33:42.0585 0x1470  TermDD - ok
19:33:42.0610 0x1470  [ 2B5BDFF688EC9871D7EC5837833374E9, BD6C629FA2938987ABF95B790B20F0B7D4D023D5013E575F343A802D6213074E ] terminpt        C:\Windows\system32\drivers\terminpt.sys
19:33:42.0611 0x1470  terminpt - ok
19:33:42.0674 0x1470  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
19:33:42.0690 0x1470  TermService - ok
19:33:42.0700 0x1470  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
19:33:42.0703 0x1470  Themes - ok
19:33:42.0752 0x1470  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
19:33:42.0754 0x1470  THREADORDER - ok
19:33:42.0772 0x1470  [ BDFC55C2389D23C7E36A627BD580EE98, E25CF1C01CF90B348333A0CBAF26F8F5751AE725E6059C35C492E00479105B70 ] tihub3          C:\Windows\system32\drivers\tihub3.sys
19:33:42.0775 0x1470  tihub3 - ok
19:33:42.0805 0x1470  [ EBEDBC08C2E5EB4EC8E3DA4BF3D827B1, FC465EAF5C2E44F279B54B13C88ACCE565B1C9C6DDEB8D87FD0CD6CD3AA1AABC ] tixhci          C:\Windows\system32\drivers\tixhci.sys
19:33:42.0814 0x1470  tixhci - ok
19:33:42.0854 0x1470  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
19:33:42.0858 0x1470  TrkWks - ok
19:33:42.0914 0x1470  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:33:42.0918 0x1470  TrustedInstaller - ok
19:33:42.0949 0x1470  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
19:33:42.0950 0x1470  tssecsrv - ok
19:33:42.0964 0x1470  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
19:33:42.0966 0x1470  TsUsbFlt - ok
19:33:42.0984 0x1470  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
19:33:42.0985 0x1470  TsUsbGD - ok
19:33:43.0003 0x1470  [ E1748D04AE40118B62BC18AC86032192, A954B141D1B27272C771D14F3B40C7CC1F572DD72559F2C96182EFBE2B095FDE ] tsusbhub        C:\Windows\system32\drivers\tsusbhub.sys
19:33:43.0006 0x1470  tsusbhub - ok
19:33:43.0028 0x1470  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
19:33:43.0031 0x1470  tunnel - ok
19:33:43.0046 0x1470  [ 5FF60B0A945343C05F929379B4089525, FFFA3B119687646F3F28B7017B943BCCAB8CD826DC3230D3ECF91F6FB976C596 ] uagp35          C:\Windows\system32\drivers\sisagpx.sys
19:33:43.0047 0x1470  uagp35 - ok
19:33:43.0072 0x1470  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
19:33:43.0080 0x1470  udfs - ok
19:33:43.0103 0x1470  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
19:33:43.0106 0x1470  UI0Detect - ok
19:33:43.0131 0x1470  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
19:33:43.0133 0x1470  uliagpkx - ok
19:33:43.0170 0x1470  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
19:33:43.0172 0x1470  umbus - ok
19:33:43.0182 0x1470  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
19:33:43.0183 0x1470  UmPass - ok
19:33:43.0206 0x1470  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
19:33:43.0212 0x1470  UmRdpService - ok
19:33:43.0251 0x1470  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
19:33:43.0261 0x1470  upnphost - ok
19:33:43.0310 0x1470  [ AF1B9474D67897D0C2CFF58E0ACEACCC, 5ED9836EC7BEEB6706C327EF199E9B674863ED8C83890DDE5E5A6554C2DA5288 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
19:33:43.0312 0x1470  USBAAPL64 - ok
19:33:43.0373 0x1470  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
19:33:43.0377 0x1470  usbaudio - ok
19:33:43.0419 0x1470  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
19:33:43.0421 0x1470  usbccgp - ok
19:33:43.0450 0x1470  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
19:33:43.0453 0x1470  usbcir - ok
19:33:43.0475 0x1470  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
19:33:43.0477 0x1470  usbehci - ok
19:33:43.0486 0x1470  [ 573D192E268F0C5B486B7E96F661E538, 0F32BD82CA7B5D4DE234EFC6527EF4C854BD15B3057FE4A0151C70115493FFDC ] usbfilter       C:\Windows\system32\drivers\usbfilter.sys
19:33:43.0488 0x1470  usbfilter - ok
19:33:43.0520 0x1470  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
19:33:43.0528 0x1470  usbhub - ok
19:33:43.0550 0x1470  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
19:33:43.0552 0x1470  usbohci - ok
19:33:43.0579 0x1470  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
19:33:43.0581 0x1470  usbprint - ok
19:33:43.0607 0x1470  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
19:33:43.0609 0x1470  usbscan - ok
19:33:43.0643 0x1470  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:33:43.0646 0x1470  USBSTOR - ok
19:33:43.0694 0x1470  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
19:33:43.0695 0x1470  usbuhci - ok
19:33:43.0731 0x1470  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
19:33:43.0735 0x1470  usbvideo - ok
19:33:43.0763 0x1470  [ 3E870EE09E1C22651D51C88DC1BB38F6, 989ECC23FE8CA074BE8B4CB324AE0E99F278372A44E721A50AB26339E57B2FC4 ] uwbusb          C:\Windows\System32\Drivers\usbuwbmini.sys
19:33:43.0765 0x1470  uwbusb - ok
19:33:43.0798 0x1470  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
19:33:43.0801 0x1470  UxSms - ok
19:33:43.0833 0x1470  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\Windows\system32\lsass.exe
19:33:43.0835 0x1470  VaultSvc - ok
19:33:43.0879 0x1470  [ E1515114DED5ADD1B3730B409C22AE67, 15692BB67AF50D15DB7EF24C67A463019FE514CBF6CDAD125E8FFC406C88D585 ] vcrdrx64        C:\Windows\system32\drivers\vcrdrx64.sys
19:33:43.0881 0x1470  vcrdrx64 - ok
19:33:43.0919 0x1470  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
19:33:43.0920 0x1470  vdrvroot - ok
19:33:43.0956 0x1470  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
19:33:43.0968 0x1470  vds - ok
19:33:43.0992 0x1470  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
19:33:43.0994 0x1470  vga - ok
19:33:44.0004 0x1470  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
19:33:44.0006 0x1470  VgaSave - ok
19:33:44.0009 0x1470  VGPU - ok
19:33:44.0046 0x1470  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
19:33:44.0051 0x1470  vhdmp - ok
19:33:44.0064 0x1470  [ 8B1EA4185548812D8A4BBB7BF54BF2D5, 967FDB600440375F8CD6DD3FF85C75555A27577DE0162B5B66CEA926BDFD2144 ] viaagp1         C:\Windows\system32\drivers\viaagp1.sys
19:33:44.0066 0x1470  viaagp1 - ok
19:33:44.0108 0x1470  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
19:33:44.0109 0x1470  viaide - ok
19:33:44.0161 0x1470  [ 9BB08C0879CADDAD964F908B73BD5C7E, AB8C2EAE774810540983F49E752F10B9A4194738320223BBA17D1AB08F7E98D9 ] viamrx64        C:\Windows\system32\drivers\viamrx64.sys
19:33:44.0165 0x1470  viamrx64 - ok
19:33:44.0180 0x1470  [ FB2643A01A538C2E4625CDE64E51680F, 4AF760EB8512CCE9C8CCF37F9342BA3F80447B594BE32B19914EDF7F83FA8AF3 ] videX64         C:\Windows\system32\drivers\videX64.sys
19:33:44.0181 0x1470  videX64 - ok
19:33:44.0203 0x1470  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
19:33:44.0208 0x1470  vmbus - ok
19:33:44.0226 0x1470  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
19:33:44.0227 0x1470  VMBusHID - ok
19:33:44.0245 0x1470  [ F4DA273DB364B14877F28938DCD6C2C3, CDF7E1C0A295F61ACF7BD7ACD047D2AB0743FDB478C39BDFA4EE93ED8EA99F32 ] vmci            C:\Windows\system32\drivers\vmci.sys
19:33:44.0246 0x1470  vmci - ok
19:33:44.0266 0x1470  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
19:33:44.0269 0x1470  volmgr - ok
19:33:44.0300 0x1470  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
19:33:44.0308 0x1470  volmgrx - ok
19:33:44.0328 0x1470  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
19:33:44.0333 0x1470  volsnap - ok
19:33:44.0377 0x1470  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
19:33:44.0381 0x1470  vsmraid - ok
19:33:44.0455 0x1470  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
19:33:44.0488 0x1470  VSS - ok
19:33:44.0532 0x1470  [ 93132C69394A99D992095D8CFE464801, A76C0371E9E18B038B0745C3F38AC4E958D43CB87EAB358EB88F431A33EE1F6E ] VST64HWBS2      C:\Windows\system32\DRIVERS\VSTBS26.SYS
19:33:44.0541 0x1470  VST64HWBS2 - ok
19:33:44.0610 0x1470  [ 02071D207A9858FBE3A48CBFD59C4A04, FEA4DEBAEC3465E0C7C1E8B721805922F6BBCB96A60A193B11688F4252F4B89E ] VST64_DPV       C:\Windows\system32\DRIVERS\VSTDPV6.SYS
19:33:44.0641 0x1470  VST64_DPV - ok
19:33:44.0661 0x1470  [ 316A1762BD41C3DB06EB484527838E2D, D358F9008F347BCE673C9EA5027FE9A2C169943A775DF012364965643C9AB794 ] VUSB3HUB        C:\Windows\system32\drivers\ViaHub3.sys
19:33:44.0666 0x1470  VUSB3HUB - ok
19:33:44.0685 0x1470  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
19:33:44.0687 0x1470  vwifibus - ok
19:33:44.0699 0x1470  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
19:33:44.0701 0x1470  vwififlt - ok
19:33:44.0731 0x1470  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
19:33:44.0732 0x1470  vwifimp - ok
19:33:44.0767 0x1470  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
19:33:44.0777 0x1470  W32Time - ok
19:33:44.0816 0x1470  [ 0D67B715AE6729D0B518D20B7A7BAD1C, 05B044CB816CBF54DCB634AC765A5937C76B471722C6D6E1A9C27E7EBAB68913 ] WacHidRouter    C:\Windows\system32\DRIVERS\wachidrouter.sys
19:33:44.0818 0x1470  WacHidRouter - ok
19:33:44.0840 0x1470  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
19:33:44.0841 0x1470  WacomPen - ok
19:33:44.0857 0x1470  [ 1042B08B4336EF3CE34E09435BB33A4A, A42B447B4A9B364BAE329F75D36A906999E8CB754F1B10DE322B6611FF9764F7 ] wacomrouterfilter C:\Windows\system32\DRIVERS\wacomrouterfilter.sys
19:33:44.0858 0x1470  wacomrouterfilter - ok
19:33:44.0873 0x1470  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
19:33:44.0876 0x1470  WANARP - ok
19:33:44.0880 0x1470  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
19:33:44.0882 0x1470  Wanarpv6 - ok
19:33:44.0957 0x1470  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
19:33:44.0983 0x1470  WatAdminSvc - ok
19:33:45.0050 0x1470  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
19:33:45.0082 0x1470  wbengine - ok
19:33:45.0103 0x1470  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
19:33:45.0109 0x1470  WbioSrvc - ok
19:33:45.0149 0x1470  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
19:33:45.0158 0x1470  wcncsvc - ok
19:33:45.0182 0x1470  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:33:45.0184 0x1470  WcsPlugInService - ok
19:33:45.0212 0x1470  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
19:33:45.0214 0x1470  Wd - ok
19:33:45.0258 0x1470  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
19:33:45.0275 0x1470  Wdf01000 - ok
19:33:45.0298 0x1470  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
19:33:45.0301 0x1470  WdiServiceHost - ok
19:33:45.0306 0x1470  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
19:33:45.0309 0x1470  WdiSystemHost - ok
19:33:45.0345 0x1470  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
19:33:45.0352 0x1470  WebClient - ok
19:33:45.0381 0x1470  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
19:33:45.0387 0x1470  Wecsvc - ok
19:33:45.0396 0x1470  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
19:33:45.0399 0x1470  wercplsupport - ok
19:33:45.0426 0x1470  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
19:33:45.0429 0x1470  WerSvc - ok
19:33:45.0439 0x1470  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
19:33:45.0440 0x1470  WfpLwf - ok
19:33:45.0533 0x1470  [ CE397F3DDB8C5B54ED7B47527D88F754, D6317E221DB4F870A5F93131AE114D8CB740C37E0F7B465E4B41B4E97ACAFCD6 ] WiMAXAppSrv     C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
19:33:45.0550 0x1470  WiMAXAppSrv - ok
19:33:45.0578 0x1470  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
19:33:45.0579 0x1470  WIMMount - ok
19:33:45.0625 0x1470  [ 18E40C245DBFAF36FD0134A7EF2DF396, 0138A68958112101A5D3BD94114F320CE80B0C9A93E009AC78DE7415FCCC7DE7 ] winachsf        C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
19:33:45.0641 0x1470  winachsf - ok
19:33:45.0660 0x1470  WinDefend - ok
19:33:45.0670 0x1470  WinHttpAutoProxySvc - ok
19:33:45.0713 0x1470  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
19:33:45.0719 0x1470  Winmgmt - ok
19:33:45.0806 0x1470  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
19:33:45.0849 0x1470  WinRM - ok
19:33:45.0897 0x1470  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
19:33:45.0898 0x1470  WinUsb - ok
19:33:45.0941 0x1470  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
19:33:45.0961 0x1470  Wlansvc - ok
19:33:45.0995 0x1470  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
19:33:45.0996 0x1470  WmiAcpi - ok
19:33:46.0029 0x1470  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
19:33:46.0034 0x1470  wmiApSrv - ok
19:33:46.0070 0x1470  WMPNetworkSvc - ok
19:33:46.0102 0x1470  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
19:33:46.0104 0x1470  WPCSvc - ok
19:33:46.0122 0x1470  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
19:33:46.0126 0x1470  WPDBusEnum - ok
19:33:46.0162 0x1470  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
19:33:46.0163 0x1470  ws2ifsl - ok
19:33:46.0188 0x1470  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
19:33:46.0191 0x1470  wscsvc - ok
19:33:46.0194 0x1470  WSearch - ok
19:33:46.0320 0x1470  [ B3730C83E305A8D5E195EC5CAF508D06, 616116565252E866E429250C4131A0B0F86C43BE58B97A7B34DCED6CCC2DFD93 ] WTabletServicePro C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
19:33:46.0331 0x1470  WTabletServicePro - ok
19:33:46.0435 0x1470  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
19:33:46.0488 0x1470  wuauserv - ok
19:33:46.0533 0x1470  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
19:33:46.0536 0x1470  WudfPf - ok
19:33:46.0596 0x1470  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
19:33:46.0601 0x1470  WUDFRd - ok
19:33:46.0633 0x1470  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
19:33:46.0637 0x1470  wudfsvc - ok
19:33:46.0674 0x1470  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
19:33:46.0681 0x1470  WwanSvc - ok
19:33:46.0709 0x1470  [ FE48AE43D06C1CF6EC1244FA3562D203, 393EC249FC4814003699A8E0D47D6759C307F6BBB325AD9BF4D6EDB4FD2D5012 ] xfiltx64        C:\Windows\system32\drivers\xfiltx64.sys
19:33:46.0710 0x1470  xfiltx64 - ok
19:33:46.0736 0x1470  [ FFDB0ED9D1D453F7F19DE55FE0706195, 926982B6204B3820AF3F9FE5A423938587E07CE1832B103AD77C5AEC2762DF3E ] xhcdrv          C:\Windows\system32\drivers\xhcdrv.sys
19:33:46.0742 0x1470  xhcdrv - ok
19:33:46.0769 0x1470  ================ Scan global ===============================
19:33:46.0790 0x1470  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
19:33:46.0829 0x1470  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
19:33:46.0841 0x1470  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
19:33:46.0857 0x1470  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
19:33:46.0890 0x1470  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
19:33:46.0896 0x1470  [ Global ] - ok
19:33:46.0897 0x1470  ================ Scan MBR ==================================
19:33:46.0910 0x1470  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:33:47.0111 0x1470  \Device\Harddisk0\DR0 - ok
19:33:47.0112 0x1470  ================ Scan VBR ==================================
19:33:47.0114 0x1470  [ 56B47CCF08AF53DA6E4B0CBBEFA784EF ] \Device\Harddisk0\DR0\Partition1
19:33:47.0116 0x1470  \Device\Harddisk0\DR0\Partition1 - ok
19:33:47.0116 0x1470  Waiting for KSN requests completion. In queue: 172
19:33:48.0116 0x1470  Waiting for KSN requests completion. In queue: 172
19:33:49.0116 0x1470  Waiting for KSN requests completion. In queue: 172
19:33:50.0170 0x1470  AV detected via SS2: Symantec Endpoint Protection, C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.1000.157.105\Bin\WSCSavNotifier.exe ( 12.1.1000.157 ), 0x71000 ( enabled : updated )
19:33:50.0197 0x1470  Win FW state via NFP2: enabled
19:33:52.0821 0x1470  ============================================================
19:33:52.0821 0x1470  Scan finished
19:33:52.0821 0x1470  ============================================================
19:33:52.0828 0x01f8  Detected object count: 0
19:33:52.0828 0x01f8  Actual detected object count: 0
19:35:58.0498 0x1740  Deinitialize success


#8 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:13 AM

Posted 28 March 2014 - 04:22 AM

Add-/remove programms

Click on start-->control panel.

Vista/7: Open Programs and Features
XP: Open add/remove programs

Search for and remove the following programs
 

Re-markit
 


Close the window.

 

 

 

 

Fix with FRST (normal mode)

WARNING: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
 

  • Download the attached fixlist.txt and save it to the location where FRST is saved to.
  • Run FRST.exe (on 64bit, run FRST64.exe) and press the Fix button just once and wait.
  • The tool will make a log (Fixlog.txt) which you find where you saved FRST. Please post it to your reply.

 

 

 

 

Full System Scan with Malwarebytes Antimalware
 

  • If not existing, please download Malwarebytes Anti-Malware to your desktop.
  • Double-click mb3-setup-1878.1878-3.5.1.2522.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to the following:
    • Launch Malwarebytes Anti-Malware
    • A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.
  • Click Finish.

If the program is already installed:

  • Run Malwarebytes Antimalware
  • On the Dashboard, click the 'Update Now >>' link
  • After the update completes, click the 'Scan Now >>' button.
  • Or, on the Dashboard, click the Scan Now >> button.
  • If an update is available, click the Update Now button.
  • A Threat Scan will begin.
  • When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
  • In most cases, a restart will be required.
  • Wait for the prompt to restart the computer to appear, then click on Yes.

  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the scan log which shows the Date and time of the scan just performed.
  • Click 'Copy to Clipboard'
  • Paste the contents of the clipboard into your reply.

 

Attached Files


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#9 incident

incident
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:13 AM

Posted 31 March 2014 - 02:13 AM

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 13-03-2014
Ran by Administrator at 2014-03-31 02:03:33 Run:1
Running from C:\Users\Administrator.Chelsea-PC\Downloads
Boot Mode: Normal
==============================================
 
Content of fixlist:
*****************
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
SearchScopes: HKLM - DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} URL = 
Hosts: 54.225.95.126 pmicfehfblhebdfbhfgmmfcaikafckac
FF HKCU\...\Firefox\Extensions: [{77601b4f-338e-4abf-b114-dd2c0929031b}] - C:\Program Files (x86)\Re-markit-soft\157.xpi
 
C:\Program Files (x86)\Re-markit-soft
*****************
 
HKLM\SOFTWARE\Policies\Google => Key deleted successfully.
C:\Windows\system32\GroupPolicy\Machine => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\URL => Value deleted successfully.
HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\SuggestionsURL_JSON => Value deleted successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
HKCU\Software\Mozilla\Firefox\Extensions\\{77601b4f-338e-4abf-b114-dd2c0929031b} => Value deleted successfully.
"C:\Program Files (x86)\Re-markit-soft" => File/Directory not found.
 
 
The system needed a reboot. 
 
==== End of Fixlog ====
 
 
Running Malwarebytes, right now.


#10 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:13 AM

Posted 31 March 2014 - 03:12 AM

Are you still with me?


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#11 incident

incident
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:13 AM

Posted 31 March 2014 - 12:26 PM

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
 
Database version: v2014.03.25.02
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16521
Administrator :: MY-PC [administrator]
 
3/31/2014 2:08:13 AM
mbam-log-2014-03-31 (02-08-13).txt
 
Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 436172
Time elapsed: 1 hour(s), 12 minute(s), 40 second(s)
 
Memory Processes Detected: 2
C:\Program Files (x86)\Optimizer Pro\OptProSmartScan.exe (PUP.Optional.OptimizerPro) -> 3908 -> Delete on reboot.
C:\Program Files (x86)\Optimizer Pro\OptProReminder.exe (PUP.Optional.OptimizerPro) -> 3488 -> Delete on reboot.
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 3
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\TidyNetwork (PUP.Optional.TidyNetwork.A) -> Quarantined and deleted successfully.
HKCU\Software\TidyNetwork (PUP.Optional.TidyNetwork.A) -> Quarantined and deleted successfully.
HKCU\Software\AppDataLow\Software\TidyNetwork (PUP.Optional.TidyNetwork.A) -> Quarantined and deleted successfully.
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 1
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (PUP.Optional.Conduit.A) -> Bad: (http://search.conduit.com/?gd=&ctid=CT3321972&octid=EB_ORIGINAL_CTID&ISID=MC58BECC1-B246-44E6-8D2E-E72499B43EF8&SearchSource=55&CUI=&UM=5&UP=SP6645CB83-74B4-427B-83E0-49AADDC9D039&SSPV=) Good: (http://www.google.com) -> Quarantined and repaired successfully.
 
Folders Detected: 1
C:\Users\Administrator.Chelsea-PC\AppData\Local\TidyNetwork (PUP.Optional.TidyNetwork.A) -> Quarantined and deleted successfully.
 
Files Detected: 7
C:\Program Files (x86)\Optimizer Pro\OptProSmartScan.exe (PUP.Optional.OptimizerPro) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Optimizer Pro\OptProReminder.exe (PUP.Optional.OptimizerPro) -> Delete on reboot.
C:\Program Files (x86)\Optimizer Pro\OptProSchedule.exe (PUP.Optional.OptimizerPro) -> Quarantined and deleted successfully.
C:\Users\Administrator.Chelsea-PC\AppData\Local\TidyNetwork\sidTRUS29.tidy (PUP.Optional.TidyNetwork.A) -> Quarantined and deleted successfully.
C:\Users\Administrator.Chelsea-PC\AppData\Local\TidyNetwork\log.log (PUP.Optional.TidyNetwork.A) -> Quarantined and deleted successfully.
C:\Users\Administrator.Chelsea-PC\AppData\Local\TidyNetwork\petnupdate.exe (PUP.Optional.TidyNetwork.A) -> Quarantined and deleted successfully.
C:\Users\Administrator.Chelsea-PC\AppData\Local\TidyNetwork\TidyNetwork.exe (PUP.Optional.TidyNetwork.A) -> Quarantined and deleted successfully.
 
(end)
 
ran malewarebytes.
 
 
now i've got something similar called Optimizer Pro


#12 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:13 AM

Posted 01 April 2014 - 02:47 AM

Please uninstall Optimizer Pro.

Then update MBAM to the latest Version 2.0 and rescan following this tutorial:

 

 

Full System Scan with Malwarebytes Antimalware

  • If not existing, please download Malwarebytes Anti-Malware to your desktop.
  • Double-click mb3-setup-1878.1878-3.5.1.2522.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to the following:

    • Launch Malwarebytes Anti-Malware
    • A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.

  • Click Finish.


If the program is already installed:
  • Run Malwarebytes Antimalware
  • On the Dashboard, click the 'Update Now >>' link
  • After the update completes, click the 'Scan Now >>' button.
  • Or, on the Dashboard, click the Scan Now >> button.
  • If an update is available, click the Update Now button.
  • A Threat Scan will begin.
  • When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
  • In most cases, a restart will be required.
  • Wait for the prompt to restart the computer to appear, then click on Yes.


  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the scan log which shows the Date and time of the scan just performed.
  • Click 'Copy to Clipboard'
  • Paste the contents of the clipboard into your reply.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#13 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:08:13 AM

Posted 09 April 2014 - 03:40 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.
Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users