Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Everything runs slow, long load up time, slow browsers


  • This topic is locked This topic is locked
13 replies to this topic

#1 MetalowaGlowa

MetalowaGlowa

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Poland
  • Local time:01:19 AM

Posted 30 September 2014 - 12:23 PM

Hello there!

I have posted a problem before - since it was in the wrong part of the forum I was redirected here.

The issue is that my laptop runs, how to say it....sluggish. On the one hand it's runnig but i feel like it's faaaaar from how it could run.

I have done few things already (mentioned here: http://www.bleepingcomputer.com/forums/t/550061/not-sure-what-is-happening-everything-is-slow/ ). None of them helped so You're my only hope :)

As mentioned in the PrepGuide...here is the dds.txt and attach.txt

 

Anxiously waiting for Your diagnose:)

 

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.17280  BrowserJavaVersion: 10.67.2
Run by metalowa_glowa at 19:03:06 on 2014-09-30
Microsoft Windows 7 Home Premium   6.1.7601.1.1250.48.1045.18.6038.4290 [GMT 2:00]
.
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\system32\Dwm.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\igfxtray.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Windows\LockStatusTray.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Windows\SysWOW64\PnkBstrA.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\Dell\Dell WWAN\WMCore\mini_WMCore.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe
C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.gazeta.pl/0,0.html?p=101
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
mRun: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
mRun: [LockStatusTray] C:\Windows\LockStatusTray.exe
mRun: [NSU_agent] "C:\Program Files (x86)\Nokia\Nokia Software Updater\nsu3ui_agent.exe"
mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: HideSCAHealth = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr/200
IE: E&ksportuj do programu Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
Trusted Zone: dell.com
TCP: NameServer = 62.179.1.61 62.179.1.63
TCP: Interfaces\{B82C5223-E8FA-4ACC-B18A-543C18D3A4DD} : DHCPNameServer = 62.179.1.61 62.179.1.63
TCP: Interfaces\{B82C5223-E8FA-4ACC-B18A-543C18D3A4DD}\0554E44514742514D4 : DHCPNameServer = 88.156.222.89 109.241.239.12 95.160.170.92
TCP: Interfaces\{B82C5223-E8FA-4ACC-B18A-543C18D3A4DD}\4505D2C494E4B4 : DHCPNameServer = 95.160.170.92 88.156.222.92
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
AppInit_DLLs= C:\Windows\SysWOW64\nvinit.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\37.0.2062.124\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [IgfxTray] "C:\Windows\System32\igfxtray.exe"
x64-Run: [HotKeysCmds] "C:\Windows\System32\hkcmd.exe"
x64-Run: [Persistence] "C:\Windows\System32\igfxpers.exe"
x64-Run: [BTMTrayAgent] rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
x64-Run: [XboxStat] "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun
x64-Run: [NvBackend] "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
x64-Run: [ShadowPlay] C:\Windows\System32\rundll32.exe C:\Windows\System32\nvspcap64.dll,ShadowPlayOnSystemStart
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\metalowa_glowa\AppData\Roaming\Mozilla\Firefox\Profiles\rc4ac450.default-1411298163740\
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\Users\metalowa_glowa\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2014-2-7 65776]
R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2014-2-7 224896]
R0 nvpciflt;nvpciflt;C:\Windows\System32\drivers\nvpciflt.sys [2014-9-21 32576]
R0 stdcfltn;Disk Class Filter Driver for Accelerometer;C:\Windows\System32\drivers\stdcfltn.sys [2012-7-25 21616]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswsnx.sys [2014-2-7 1041168]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswsp.sys [2014-2-7 427360]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2012-8-7 283200]
R1 nvkflt;nvkflt;C:\Windows\System32\drivers\nvkflt.sys [2014-9-21 299152]
R2 AERTFilters;Andrea RT Filters Service;C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2014-9-25 98208]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2013-4-11 772064]
R2 aswHwid;avast! HardwareID;C:\Windows\System32\drivers\aswHwid.sys [2014-4-24 29208]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2014-2-7 79184]
R2 aswStm;aswStm;C:\Windows\System32\drivers\aswstm.sys [2014-2-7 92008]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-7-11 50344]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor;C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-10-18 936272]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service;C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-10-18 1001808]
R2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® + High Speed Security Service;C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-9-12 135984]
R2 CodeMeter.exe;CodeMeter Runtime Server;C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe [2013-2-6 2568120]
R2 GfExperienceService;NVIDIA GeForce Experience Service;C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2014-9-21 1148744]
R2 NvNetworkService;NVIDIA Network Service;C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-1-8 1795912]
R2 NvStreamSvc;NVIDIA Streamer Service;C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-9-16 19439944]
R2 RtkAudioService;Realtek Audio Service;C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2014-9-25 290520]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-9-21 411968]
R2 WMCoreService;Mobile Broadband Service;C:\Program Files (x86)\Dell\Dell WWAN\WMCore\mini_WMCore.exe servicemode --> C:\Program Files (x86)\Dell\Dell WWAN\WMCore\mini_WMCore.exe servicemode [?]
R2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2013-4-18 3388144]
R3 Acceler;Accelerometer Service;C:\Windows\System32\drivers\Accelern.sys [2012-6-15 27760]
R3 AMPPAL;Karta wirtualna Intel® Centrino® Wireless Bluetooth® + High Speed;C:\Windows\System32\drivers\AmpPal.sys [2013-4-11 164832]
R3 Bluetooth Media Service;Bluetooth Media Service;C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-10-18 1354064]
R3 btmaux;Intel Bluetooth Auxiliary Service;C:\Windows\System32\drivers\btmaux.sys [2011-8-29 53760]
R3 btmhsf;btmhsf;C:\Windows\System32\drivers\btmhsf.sys [2011-10-10 288768]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver;C:\Windows\System32\drivers\CtClsFlt.sys [2012-9-3 172704]
R3 iBtFltCoex;iBtFltCoex;C:\Windows\System32\drivers\iBtFltCoex.sys [2011-10-11 59904]
R3 ICCS;Intel® Integrated Clock Controller Service - Intel® ICCS;C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe [2013-9-12 169752]
R3 IntcDAud;Audio dla wyświetlaczy Intel®;C:\Windows\System32\drivers\IntcDAud.sys [2013-7-1 342528]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2011-9-13 95744]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2011-9-13 212992]
R3 NvStreamKms;NvStreamKms;C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-9-16 19272]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);C:\Windows\System32\drivers\nvvad64v.sys [2014-9-21 38048]
R3 qicflt;upper Device Filter Driver;C:\Windows\System32\drivers\qicflt.sys [2012-7-25 29288]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2014-8-3 565352]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-10-23 172192]
S3 AMPPALP;Protokół Intel® Centrino® Wireless Bluetooth® + High Speed;C:\Windows\System32\drivers\AmpPal.sys [2013-4-11 164832]
S3 cpudrv64;cpudrv64;C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [2011-6-2 17864]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-9-21 111616]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-4-18 273136]
S3 nmwcdnsucx64;Nokia USB Flashing Generic;C:\Windows\System32\drivers\nmwcdnsucx64.sys [2013-1-23 12800]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent;C:\Windows\System32\drivers\nmwcdnsux64.sys [2013-1-23 171008]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2014-6-30 19456]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2014-6-30 56832]
S3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;C:\Windows\System32\Wat\WatAdminSvc.exe [2012-8-7 1255736]
S3 wdkmd;Intel WiDi KMD;C:\Windows\System32\drivers\WDKMD.sys [2011-5-17 42392]
.
=============== File Associations ===============
.
ShellExec: Opera.exe: open="C:\Program Files (x86)\Opera\Launcher.exe" "%1"
.
=============== Created Last 30 ================
.
2014-09-30 16:49:33    71344    ----a-w-    C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-09-30 16:49:33    701104    ----a-w-    C:\Windows\SysWow64\FlashPlayerApp.exe
2014-09-28 20:26:31    --------    d-----w-    C:\ProgramData\DAEMON Tools Lite
2014-09-28 20:07:03    --------    d-----w-    C:\Good.People.2014.HDRip.XViD-juggs[ETRG]
2014-09-28 17:29:23    --------    d-sh--w-    C:\$RECYCLE.BIN
2014-09-28 17:05:03    5582345    ------r-    C:\ComboFix.exe
2014-09-28 11:04:42    11578928    ----a-w-    C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E1EAB1A2-39A2-40E3-9263-48B3F45349B3}\mpengine.dll
2014-09-25 21:23:00    --------    d-----w-    C:\Windows\SysWow64\RTCOM
2014-09-25 21:23:00    --------    d-----w-    C:\Program Files\Realtek
2014-09-25 21:20:45    5632    ----a-w-    C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\DotNetInstaller.exe
2014-09-21 17:26:52    111016    ----a-w-    C:\Windows\System32\WindowsAccessBridge-64.dll
2014-09-21 14:37:42    --------    d-----w-    C:\Windows\ERUNT
2014-09-21 13:59:49    --------    d-----w-    C:\Program Files\My Dell
2014-09-21 13:54:29    --------    d-----w-    C:\ProgramData\Oracle
2014-09-21 13:53:37    98216    ----a-w-    C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2014-09-21 13:24:24    --------    d-----w-    C:\ProgramData\Malwarebytes
2014-09-21 13:12:43    613696    ----a-w-    C:\Windows\SysWow64\nvStreaming.exe
2014-09-21 13:12:34    --------    d-----w-    C:\Windows\SysWow64\NV
2014-09-21 13:12:34    --------    d-----w-    C:\Windows\System32\NV
2014-09-21 12:37:09    38048    ----a-w-    C:\Windows\System32\drivers\nvvad64v.sys
2014-09-21 12:37:09    32416    ----a-w-    C:\Windows\SysWow64\nvaudcap32v.dll
2014-09-21 11:28:55    2777088    ----a-w-    C:\Windows\System32\msmpeg2vdec.dll
2014-09-21 11:28:55    2285056    ----a-w-    C:\Windows\SysWow64\msmpeg2vdec.dll
2014-09-21 11:26:04    99480    ----a-w-    C:\Windows\SysWow64\infocardapi.dll
2014-09-21 11:26:04    619672    ----a-w-    C:\Windows\SysWow64\icardagt.exe
2014-09-21 11:26:04    171160    ----a-w-    C:\Windows\System32\infocardapi.dll
2014-09-21 11:26:04    1389208    ----a-w-    C:\Windows\System32\icardagt.exe
2014-09-21 11:26:00    8856    ----a-w-    C:\Windows\SysWow64\icardres.dll
2014-09-21 11:26:00    8856    ----a-w-    C:\Windows\System32\icardres.dll
2014-09-21 11:25:22    35480    ----a-w-    C:\Windows\SysWow64\TsWpfWrp.exe
2014-09-21 11:25:22    35480    ----a-w-    C:\Windows\System32\TsWpfWrp.exe
2014-09-21 11:07:56    6574592    ----a-w-    C:\Windows\System32\mstscax.dll
2014-09-21 11:06:57    2565120    ----a-w-    C:\Windows\System32\d3d10warp.dll
2014-09-21 11:05:38    497152    ----a-w-    C:\Windows\System32\drivers\afd.sys
2014-09-21 11:05:14    404480    ----a-w-    C:\Windows\System32\gdi32.dll
2014-09-21 11:05:14    3163648    ----a-w-    C:\Windows\System32\win32k.sys
2014-09-21 11:05:13    311808    ----a-w-    C:\Windows\SysWow64\gdi32.dll
2014-09-21 11:01:32    1216000    ----a-w-    C:\Windows\System32\rpcrt4.dll
2014-09-21 11:01:31    664064    ----a-w-    C:\Windows\SysWow64\rpcrt4.dll
2014-09-18 20:50:08    --------    d-----w-    C:\ProgramData\Orbit
2014-09-16 21:36:23    2799784    ----a-w-    C:\Windows\System32\nvspcap64.dll
2014-09-16 21:36:23    2193560    ----a-w-    C:\Windows\SysWow64\nvspcap.dll
2014-09-16 21:36:23    1715224    ----a-w-    C:\Windows\System32\nvspbridge64.dll
2014-09-16 21:36:23    1291280    ----a-w-    C:\Windows\SysWow64\nvspbridge.dll
2014-09-16 21:32:18    34976    ----a-w-    C:\Windows\System32\nvaudcap64v.dll
2014-09-16 21:32:16    1890080    ----a-w-    C:\Windows\System32\nvdispco6434052.dll
2014-09-16 21:32:16    16875856    ----a-w-    C:\Windows\SysWow64\nvd3dum.dll
2014-09-16 21:32:16    1539928    ----a-w-    C:\Windows\System32\nvdispgenco6434052.dll
2014-09-15 22:11:05    --------    d-----w-    C:\Users\metalowa_glowa\AppData\Local\Game Launcher
2014-09-12 16:18:05    --------    d-----w-    C:\ProgramData\WarThunder
2014-09-01 20:26:46    --------    d-----w-    C:\Users\metalowa_glowa\AppData\Local\Adobe
.
==================== Find3M  ====================
.
2014-09-15 07:06:02    278152    ------w-    C:\Windows\System32\MpSigStub.exe
2014-09-13 21:53:36    6890696    ----a-w-    C:\Windows\System32\nvcpl.dll
2014-09-13 21:53:36    3529872    ----a-w-    C:\Windows\System32\nvsvc64.dll
2014-09-13 21:53:34    934216    ----a-w-    C:\Windows\System32\nvvsvc.exe
2014-09-13 21:53:34    67072    ----a-w-    C:\Windows\System32\nv3dappshextr.dll
2014-09-13 21:53:34    62608    ----a-w-    C:\Windows\System32\nvshext.dll
2014-09-13 21:53:34    385168    ----a-w-    C:\Windows\System32\nvmctray.dll
2014-09-13 21:53:34    2557640    ----a-w-    C:\Windows\System32\nvsvcr.dll
2014-09-13 21:53:34    1087688    ----a-w-    C:\Windows\System32\nv3dappshext.dll
2014-09-11 15:37:55    3961833    ----a-w-    C:\Windows\System32\nvcoproc.bin
2014-08-18 22:29:49    2724864    ----a-w-    C:\Windows\System32\mshtml.tlb
2014-08-18 22:29:35    4096    ----a-w-    C:\Windows\System32\ieetwcollectorres.dll
2014-08-18 22:19:53    5833728    ----a-w-    C:\Windows\System32\jscript9.dll
2014-08-18 22:15:34    547328    ----a-w-    C:\Windows\System32\vbscript.dll
2014-08-18 22:15:09    66048    ----a-w-    C:\Windows\System32\iesetup.dll
2014-08-18 22:14:38    48640    ----a-w-    C:\Windows\System32\ieetwproxystub.dll
2014-08-18 22:14:10    83968    ----a-w-    C:\Windows\System32\MshtmlDac.dll
2014-08-18 22:08:55    4232704    ----a-w-    C:\Windows\SysWow64\jscript9.dll
2014-08-18 22:03:47    139264    ----a-w-    C:\Windows\System32\ieUnatt.exe
2014-08-18 22:03:37    111616    ----a-w-    C:\Windows\System32\ieetwcollector.exe
2014-08-18 22:03:01    758272    ----a-w-    C:\Windows\System32\jscript9diag.dll
2014-08-18 21:57:44    2724864    ----a-w-    C:\Windows\SysWow64\mshtml.tlb
2014-08-18 21:56:17    940032    ----a-w-    C:\Windows\System32\MsSpellCheckingFacility.exe
2014-08-18 21:46:26    454656    ----a-w-    C:\Windows\SysWow64\vbscript.dll
2014-08-18 21:45:23    61952    ----a-w-    C:\Windows\SysWow64\iesetup.dll
2014-08-18 21:45:12    72704    ----a-w-    C:\Windows\System32\JavaScriptCollectionAgent.dll
2014-08-18 21:44:44    51200    ----a-w-    C:\Windows\SysWow64\ieetwproxystub.dll
2014-08-18 21:44:09    61952    ----a-w-    C:\Windows\SysWow64\MshtmlDac.dll
2014-08-18 21:36:07    112128    ----a-w-    C:\Windows\SysWow64\ieUnatt.exe
2014-08-18 21:35:24    597504    ----a-w-    C:\Windows\SysWow64\jscript9diag.dll
2014-08-18 21:23:17    2104832    ----a-w-    C:\Windows\System32\inetcpl.cpl
2014-08-18 21:23:16    1249280    ----a-w-    C:\Windows\System32\mshtmlmedia.dll
2014-08-18 21:22:48    60416    ----a-w-    C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2014-08-18 21:15:13    2310656    ----a-w-    C:\Windows\System32\wininet.dll
2014-08-18 21:08:54    2014208    ----a-w-    C:\Windows\SysWow64\inetcpl.cpl
2014-08-18 21:07:44    1068032    ----a-w-    C:\Windows\SysWow64\mshtmlmedia.dll
2014-08-18 20:46:48    1812992    ----a-w-    C:\Windows\SysWow64\wininet.dll
2014-08-01 11:53:22    1031168    ----a-w-    C:\Windows\System32\TSWorkspace.dll
2014-08-01 11:35:06    793600    ----a-w-    C:\Windows\SysWow64\TSWorkspace.dll
2014-07-25 00:35:46    875688    ----a-w-    C:\Windows\SysWow64\msvcr120_clr0400.dll
2014-07-24 21:47:06    869544    ----a-w-    C:\Windows\System32\msvcr120_clr0400.dll
2014-07-16 03:23:41    2048    ----a-w-    C:\Windows\System32\tzres.dll
2014-07-16 02:46:02    2048    ----a-w-    C:\Windows\SysWow64\tzres.dll
2014-07-11 13:10:28    92008    ----a-w-    C:\Windows\System32\drivers\aswstm.sys
2014-07-11 13:10:28    79184    ----a-w-    C:\Windows\System32\drivers\aswMonFlt.sys
2014-07-11 13:10:28    65776    ----a-w-    C:\Windows\System32\drivers\aswRvrt.sys
2014-07-11 13:10:28    224896    ----a-w-    C:\Windows\System32\drivers\aswVmm.sys
2014-07-11 13:10:28    1041168    ----a-w-    C:\Windows\System32\drivers\aswsnx.sys
2014-07-11 13:10:27    93568    ----a-w-    C:\Windows\System32\drivers\aswRdr2.sys
2014-07-11 13:10:27    29208    ----a-w-    C:\Windows\System32\drivers\aswHwid.sys
2014-07-11 13:10:25    43152    ----a-w-    C:\Windows\avastSS.scr
2014-07-07 02:06:35    728064    ----a-w-    C:\Windows\System32\kerberos.dll
2014-07-07 02:06:35    1460736    ----a-w-    C:\Windows\System32\lsasrv.dll
2014-07-07 01:40:21    22016    ----a-w-    C:\Windows\SysWow64\secur32.dll
2014-07-07 01:40:12    550912    ----a-w-    C:\Windows\SysWow64\kerberos.dll
2014-07-07 01:39:16    96768    ----a-w-    C:\Windows\SysWow64\sspicli.dll
.
============= FINISH: 19:04:28,62 ===============
 

 

 

Attached Files



BC AdBot (Login to Remove)

 


#2 ken545

ken545

    Malware Response Team


  • Malware Response Team
  • 1,685 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Space Coast of Florida
  • Local time:07:19 PM

Posted 04 October 2014 - 07:10 PM

:welcome:

 

Lets run a different scanner that may show us more than DDS

 

 
1QYkxTZ.jpg Please download aswMBR to your desktop.
 
  • Double click the aswMBR icon to run it.
  • Click the Scan button to start scan.
  • If you are asked to update the Avast Virus database please allow it to do so.
  • When it finishes, press the save log button, save the logfile to your desktop and post its contents in your next reply.
 
I just want to see the report....Please Do Not Fix Anything
 
 
 
 
 
 

Please download Farbar Recovery Scan Tool and save it to your desktop.
 
Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
 
How to determine whether a computer is running a 32-bit version or 64-bit version of the Windows operating system
A simple way to check your system: Start --> Computer (right click) --> Properties
 
 
  •  
  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  • Please make sure All Users is checked
  • Do not check
*List BCD
*Drivers MD5
*Shortcut txt
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.
 
 

mvp_host.pngConsumer Security 2007-2008-2009-2010-2011-2012-2013-2014



donate.gif Please consider a donation to help me keep up my fight against malware.

 

Just a reminder that threads will be closed if no response in 3 days


#3 MetalowaGlowa

MetalowaGlowa
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Poland
  • Local time:01:19 AM

Posted 05 October 2014 - 12:23 PM

Hi Ken 545, below are the prescribed logs:)

Not sure if it's important but since You're the doctors here I guess You should know it.

During first scan with aswMBR i got a bluescreen and had to start again. Also at the start aswMBR asked "This computer supports virtualization technology. Would you like to use it for rootkit detection?" so I clicked "Yes".

There was also an infection detected with win32 evo gen (susp) in one of the tools downloaded from bleepingcomputer (I'm also very amazed by this fact:) ) but I guess it may be a false-positive reaction of the scanner.

Anyhow, here are the logs:

 

aswMBR version 1.0.1.2041 Copyright© 2014 AVAST Software
Run date: 2014-10-05 18:45:38
-----------------------------
18:45:38.926    OS Version: Windows x64 6.1.7601 Service Pack 1
18:45:38.926    Number of processors: 8 586 0x2A07
18:45:38.926    ComputerName: METALOWAGLOWA  UserName:
18:45:40.049    Initialize success
18:45:40.049    VM: initialized successfully
18:45:40.065    VM: Intel CPU supported virtualized
18:46:44.565    VM: supported disk I/O ataport.SYS
18:46:48.247    AVAST engine defs: 14100500
18:46:50.025    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
18:46:50.025    Disk 0 Vendor: WDC_WD7500BPKT-75PK4T0 01.01A01 Size: 715404MB BusType: 11
18:46:50.119    VM: Disk 0 MBR read successfully
18:46:50.119    Disk 0 MBR scan
18:46:50.135    Disk 0 Windows 7 default MBR code
18:46:50.135    Disk 0 Partition 1 00     DE Dell Utility Dell 8.0      101 MB offset 63
18:46:50.166    Disk 0 Partition 2 80 (A) 07    HPFS/NTFS NTFS          100 MB offset 208896
18:46:50.181    Disk 0 default boot code
18:46:50.213    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS       179902 MB offset 413696
18:46:50.244    Disk 0 Partition 4 00     07    HPFS/NTFS NTFS       526494 MB offset 368852992
18:46:50.805    Disk 0 scanning C:\Windows\system32\drivers
18:47:02.147    Service scanning
18:47:29.946    Modules scanning
18:47:29.962    Disk 0 trace - called modules:
18:47:29.977    ntoskrnl.exe CLASSPNP.SYS disk.sys stdcfltn.sys ataport.SYS PCIIDEX.SYS hal.dll msahci.sys
18:47:29.993    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800651e790]
18:47:29.993    3 CLASSPNP.SYS[fffff8800194a43f] -> nt!IofCallDriver -> [0xfffffa8006430cb0]
18:47:30.008    5 stdcfltn.sys[fffff88001476c52] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80062fb060]
18:47:30.586    AVAST engine scan C:\Windows
18:47:33.144    AVAST engine scan C:\Windows\system32
18:50:43.464    AVAST engine scan C:\Windows\system32\drivers
18:51:12.012    AVAST engine scan C:\Users\metalowa_glowa
19:02:31.362    File: C:\Users\metalowa_glowa\Downloads\dds.com  **INFECTED** Win32:Evo-gen [Susp]
19:03:31.999    AVAST engine scan C:\ProgramData
19:04:16.943    Scan finished successfully
19:05:06.520    Disk 0 MBR has been saved successfully to "C:\Users\metalowa_glowa\Desktop\MBR.dat"
19:05:06.520    The log file has been saved successfully to "C:\Users\metalowa_glowa\Desktop\aswMBR.txt"

 

 

 

and FRST:

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 05-10-2014
Ran by metalowa_glowa (administrator) on METALOWAGLOWA on 05-10-2014 19:11:12
Running from C:\Users\metalowa_glowa\Desktop
Loaded Profile: metalowa_glowa (Available profiles: metalowa_glowa)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Polski (Polska)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Logitech, Inc.) C:\Windows\LockStatusTray.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Ericsson AB) C:\Program Files (x86)\Dell\Dell WWAN\WMCore\mini_WMCore.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel® Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2370856 2010-09-24] (Synaptics Incorporated)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-09-30] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2460488 2014-09-17] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [LockStatusTray] => C:\Windows\LockStatusTray.exe [192512 2008-02-19] (Logitech, Inc.)
HKLM-x32\...\Run: [NSU_agent] => C:\Program Files (x86)\Nokia\Nokia Software Updater\nsu3ui_agent.exe [190768 2012-02-28] ()
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-01] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
AppInit_DLLs: C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [174856 2014-09-14] (NVIDIA Corporation)
AppInit_DLLs:  C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [174856 2014-09-14] (NVIDIA Corporation)
AppInit_DLLs:  C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [174856 2014-09-14] (NVIDIA Corporation)
AppInit_DLLs:  C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [174856 2014-09-14] (NVIDIA Corporation)
AppInit_DLLs:  C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [174856 2014-09-14] (NVIDIA Corporation)
AppInit_DLLs:  C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [174856 2014-09-14] (NVIDIA Corporation)
AppInit_DLLs:  C:\Windows\System32\nvinitx.dll => C:\Windows\System32\nvinitx.dll [174856 2014-09-14] (NVIDIA Corporation)
AppInit_DLLs: ,C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [174856 2014-09-14] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [156840 2014-09-14] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)
ShellIconOverlayIdentifiers: [GGDriveOverlay1] -> {E68D0A50-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.)
ShellIconOverlayIdentifiers: [GGDriveOverlay2] -> {E68D0A51-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.)
ShellIconOverlayIdentifiers: [GGDriveOverlay3] -> {E68D0A52-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.)
ShellIconOverlayIdentifiers: [GGDriveOverlay4] -> {E68D0A53-3C40-4712-B90D-DCFA93FF2534} => C:\ProgramData\GG\ggdrive\ggdrive-overlay.dll (GG Network S.A.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gazeta.pl/0,0.html?p=101
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} -  No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 62.179.1.61 62.179.1.63

FireFox:
========
FF ProfilePath: C:\Users\metalowa_glowa\AppData\Roaming\Mozilla\Firefox\Profiles\rc4ac450.default-1411298163740
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.2 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\metalowa_glowa\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKCU: ubisoft.com/uplaypc -> D:\Gry\trials evol\datapack\orbit\npuplaypc.dll No File
FF Extension: Adblock Plus - C:\Users\metalowa_glowa\AppData\Roaming\Mozilla\Firefox\Profiles\rc4ac450.default-1411298163740\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-09-24]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-02-07]

Chrome:
=======
CHR Profile: C:\Users\metalowa_glowa\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentacje Google) - C:\Users\metalowa_glowa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2014-09-10]
CHR Extension: (Dokumenty Google) - C:\Users\metalowa_glowa\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-09-10]
CHR Extension: (Dysk Google) - C:\Users\metalowa_glowa\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-09-10]
CHR Extension: (YouTube) - C:\Users\metalowa_glowa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-09-10]
CHR Extension: (Adblock Plus) - C:\Users\metalowa_glowa\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-09-10]
CHR Extension: (Szukaj w Google) - C:\Users\metalowa_glowa\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-09-10]
CHR Extension: (Arkusze Google) - C:\Users\metalowa_glowa\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-09-10]
CHR Extension: (avast! Online Security) - C:\Users\metalowa_glowa\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-09-10]
CHR Extension: (Google Wallet) - C:\Users\metalowa_glowa\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-09-10]
CHR Extension: (Gmail) - C:\Users\metalowa_glowa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-09-10]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-11]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-11] (AVAST Software)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2014-09-17] (NVIDIA Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-04-18] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-09-17] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19439944 2014-09-17] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [66872 2014-01-25] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2014-01-08] (Realtek Semiconductor)
R2 WMCoreService; C:\Program Files (x86)\Dell\Dell WWAN\WMCore\mini_WMCore.exe [463912 2010-06-09] (Ericsson AB)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3388144 2013-04-18] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-07-11] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-07-11] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-07-11] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-07-11] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-07-11] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-07-11] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-07-11] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-07-11] ()
S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2011-06-02] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2012-08-07] (DT Soft Ltd)
S3 hid7906; C:\Windows\SysWOW64\drivers\hid7906.sys [34793 2007-05-23] (Compuware Corporation) [File not signed]
R1 nvkflt; C:\Windows\System32\DRIVERS\nvkflt.sys [299152 2014-09-14] (NVIDIA Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19272 2014-09-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
S0 prohlp02; C:\Windows\SysWOW64\drivers\prohlp02.sys [114016 2004-08-09] (Protection Technology) [File not signed]
S0 prosync1; C:\Windows\SysWOW64\drivers\prosync1.sys [7040 2004-07-19] (Protection Technology) [File not signed]
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited)
S0 sfhlp01; C:\Windows\SysWOW64\drivers\sfhlp01.sys [4832 2003-12-01] (Protection Technology) [File not signed]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 intaud_WaveExtensible; system32\drivers\intelaud.sys [X]
S3 iwdbus; system32\DRIVERS\iwdbus.sys [X]
S1 prodrv06; \SystemRoot\System32\drivers\prodrv06.sys [X]
U3 aswMBR; \??\C:\Users\METALO~1\AppData\Local\Temp\aswMBR.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-05 19:11 - 2014-10-05 19:11 - 00018067 _____ () C:\Users\metalowa_glowa\Desktop\FRST.txt
2014-10-05 19:10 - 2014-10-05 19:11 - 00000000 ____D () C:\FRST
2014-10-05 19:06 - 2014-10-05 19:07 - 02109440 _____ (Farbar) C:\Users\metalowa_glowa\Desktop\FRST64.exe
2014-10-05 19:05 - 2014-10-05 19:05 - 00002468 _____ () C:\Users\metalowa_glowa\Desktop\aswMBR.txt
2014-10-05 19:05 - 2014-10-05 19:05 - 00000512 _____ () C:\Users\metalowa_glowa\Desktop\MBR.dat
2014-10-05 18:43 - 2014-10-05 18:43 - 00291624 _____ () C:\Windows\Minidump\100514-26754-01.dmp
2014-10-05 18:27 - 2014-10-05 18:27 - 05185536 _____ (AVAST Software) C:\Users\metalowa_glowa\Desktop\aswMBR.exe
2014-10-05 08:48 - 2014-10-05 18:25 - 00000228 _____ () C:\Users\metalowa_glowa\Desktop\Nowy dokument tekstowy (2).txt
2014-10-05 08:17 - 2014-10-05 08:17 - 00000000 ____H () C:\ProgramData\cm-lock
2014-10-04 18:14 - 2014-10-04 18:14 - 00000842 _____ () C:\Users\metalowa_glowa\Desktop\Real Boxing.lnk
2014-10-04 18:14 - 2014-10-04 18:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Steamgames
2014-10-04 10:06 - 2014-10-05 18:21 - 00000000 ____D () C:\Nowy folder
2014-10-04 01:39 - 2014-10-04 01:40 - 00000000 ____D () C:\Users\metalowa_glowa\Documents\ZootFly
2014-10-04 01:39 - 2014-10-04 01:39 - 00000000 ____D () C:\ProgramData\Steam
2014-10-04 01:28 - 2014-10-04 01:28 - 00000469 _____ () C:\Users\Public\Desktop\Narco Terror.lnk
2014-10-04 01:28 - 2014-10-04 01:28 - 00000469 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Narco Terror.lnk
2014-10-04 01:06 - 2014-10-04 01:06 - 00000000 ____D () C:\Users\metalowa_glowa\Documents\Tribute Games
2014-10-04 00:45 - 2014-10-04 00:45 - 00000000 ____D () C:\Windows\USB Vibration
2014-10-04 00:45 - 2007-05-23 17:18 - 00034793 _____ (Compuware Corporation) C:\Windows\SysWOW64\Drivers\hid7906.sys
2014-10-04 00:43 - 2014-10-04 00:43 - 00000000 ____D () C:\Program Files (x86)\USB Vibration
2014-10-04 00:19 - 2014-10-04 00:20 - 00000000 ____D () C:\Users\metalowa_glowa\Documents\How To Survive Saves
2014-10-04 00:18 - 2014-10-04 00:18 - 00000746 _____ () C:\Users\Public\Desktop\How to Survive.lnk
2014-10-04 00:18 - 2014-10-04 00:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\505 Games
2014-10-03 23:18 - 2014-10-04 01:03 - 00037174 _____ () C:\Windows\DirectX.log
2014-10-03 22:59 - 2014-10-03 23:03 - 00000000 ____D () C:\Users\metalowa_glowa\Documents\DeadHorde
2014-10-03 22:41 - 2014-10-03 22:41 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Roaming\Dustforce
2014-10-03 21:02 - 2014-10-03 21:02 - 00000696 _____ () C:\Users\Public\Desktop\Dustforce.lnk
2014-10-03 20:44 - 2014-10-03 20:44 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Cortex Command
2014-10-03 20:37 - 2014-10-03 20:40 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Roaming\AtomZombieData
2014-10-01 21:38 - 2014-10-01 21:38 - 00117136 _____ () C:\Users\metalowa_glowa\AppData\Local\GDIPFONTCACHEV1.DAT
2014-09-30 19:00 - 2014-09-30 19:00 - 00688992 _____ (Swearware) C:\Users\metalowa_glowa\Downloads\dds.com
2014-09-30 18:52 - 2014-09-30 18:52 - 01055936 _____ (Adobe) C:\Users\metalowa_glowa\Downloads\install_flashplayer15x32_mssd_aaa_aih.exe
2014-09-30 18:49 - 2014-09-30 18:51 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-09-30 18:49 - 2014-09-30 18:51 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-29 06:35 - 2014-10-05 18:44 - 00002824 _____ () C:\Windows\setupact.log
2014-09-29 06:35 - 2014-09-29 06:35 - 00441064 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-29 06:35 - 2014-09-29 06:35 - 00000546 _____ () C:\Windows\PFRO.log
2014-09-29 06:35 - 2014-09-29 06:35 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-28 22:30 - 2014-09-28 22:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PANZERS - Phase1
2014-09-28 22:30 - 2014-09-28 22:30 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PANZERS - Phase1
2014-09-28 22:26 - 2014-09-28 22:27 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-09-28 22:07 - 2014-09-28 22:30 - 00000000 ____D () C:\Good.People.2014.HDRip.XViD-juggs[ETRG]
2014-09-28 19:29 - 2014-09-28 19:29 - 00031046 _____ () C:\ComboFix.txt
2014-09-28 19:05 - 2014-09-28 19:06 - 05582345 ____R (Swearware) C:\ComboFix.exe
2014-09-28 11:11 - 2014-09-28 11:11 - 00000864 _____ () C:\Users\Public\Desktop\Constructor.lnk
2014-09-26 17:39 - 2014-09-26 17:39 - 00000874 _____ () C:\Users\Public\Desktop\The Settlers 3.lnk
2014-09-25 23:23 - 2014-09-25 23:23 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-09-25 23:23 - 2014-09-25 23:23 - 00000000 ____D () C:\Program Files\Realtek
2014-09-25 23:21 - 2014-05-14 18:37 - 03962840 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-09-25 23:21 - 2014-05-14 16:00 - 01099203 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-09-25 23:21 - 2014-05-12 20:11 - 60636160 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCORES64.dat
2014-09-25 23:21 - 2014-05-09 11:17 - 00628952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2014-09-25 23:21 - 2014-05-08 16:29 - 02000152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO264.dll
2014-09-25 23:21 - 2014-05-08 16:29 - 01728280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO232.dll
2014-09-25 23:21 - 2014-04-30 11:34 - 00948952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-09-25 23:21 - 2014-04-28 15:48 - 02800344 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2014-09-25 23:21 - 2014-04-25 13:51 - 02834648 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-09-25 23:21 - 2014-04-25 13:23 - 01022168 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-09-25 23:21 - 2014-04-10 12:20 - 01934424 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek264.dll
2014-09-25 23:21 - 2014-04-10 12:19 - 14863448 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioRealtek64.dll
2014-09-25 23:21 - 2014-04-10 12:19 - 02101848 _____ (Waves Audio Ltd.) C:\Windows\system32\WavesGUILib64.dll
2014-09-25 23:21 - 2014-04-10 12:19 - 02041432 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioEQ64.dll
2014-09-25 23:21 - 2014-04-10 12:19 - 01063512 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPOShell64.dll
2014-09-25 23:21 - 2014-03-06 16:35 - 01959128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-09-25 23:21 - 2014-02-18 17:04 - 02770976 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-09-25 23:21 - 2014-01-28 11:48 - 01286872 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-09-25 23:21 - 2014-01-08 15:25 - 00397592 _____ (Creative Technology Ltd.) C:\Windows\system32\MBWrp64.dll
2014-09-25 23:21 - 2013-10-16 03:43 - 00209096 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-09-25 23:21 - 2013-10-11 12:47 - 00113576 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-09-25 23:21 - 2013-08-14 15:36 - 00662784 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVolumeSDAPO.dll
2014-09-25 23:21 - 2013-08-14 15:35 - 00663296 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO30.dll
2014-09-25 23:21 - 2013-01-11 16:27 - 00628504 _____ (Creative Technology Ltd.) C:\Windows\system32\MBTHX64.dll
2014-09-25 23:21 - 2013-01-11 16:27 - 00563992 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBTHX32.dll
2014-09-25 23:21 - 2012-11-14 11:41 - 00378000 _____ (Realtek Semiconductor) C:\Windows\system32\RtkGuiCompLib.dll
2014-09-25 23:21 - 2012-06-08 16:21 - 00897152 _____ (Creative Technology Ltd.) C:\Windows\system32\MBAPO64.dll
2014-09-25 23:21 - 2012-06-08 16:21 - 00753280 _____ (Creative Technology Ltd.) C:\Windows\SysWOW64\MBAPO32.dll
2014-09-25 23:21 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-09-25 23:21 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-09-25 23:21 - 2011-12-16 14:57 - 00065112 _____ (Creative Technology Ltd.) C:\Windows\system32\MBppld64.dll
2014-09-25 23:21 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2014-09-25 23:21 - 2011-05-31 09:42 - 01756264 _____ (DTS) C:\Windows\system32\DTSS2SpeakerDLL64.dll
2014-09-25 23:21 - 2011-05-31 09:42 - 01568360 _____ (DTS) C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2014-09-25 23:21 - 2011-05-31 09:42 - 01486952 _____ (DTS) C:\Windows\system32\DTSBoostDLL64.dll
2014-09-25 23:21 - 2011-05-31 09:42 - 00728680 _____ (DTS) C:\Windows\system32\DTSBassEnhancementDLL64.dll
2014-09-25 23:21 - 2011-05-31 09:42 - 00712296 _____ (DTS) C:\Windows\system32\DTSSymmetryDLL64.dll
2014-09-25 23:21 - 2011-05-31 09:42 - 00693352 _____ (DTS) C:\Windows\system32\DTSVoiceClarityDLL64.dll
2014-09-25 23:21 - 2011-05-31 09:42 - 00491112 _____ (DTS) C:\Windows\system32\DTSNeoPCDLL64.dll
2014-09-25 23:21 - 2011-05-31 09:42 - 00432744 _____ (DTS) C:\Windows\system32\DTSLimiterDLL64.dll
2014-09-25 23:21 - 2011-05-31 09:42 - 00428648 _____ (DTS) C:\Windows\system32\DTSGainCompensatorDLL64.dll
2014-09-25 23:21 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSLFXAPO64.dll
2014-09-25 23:21 - 2011-05-31 09:42 - 00242792 _____ (DTS) C:\Windows\system32\DTSGFXAPO64.dll
2014-09-25 23:21 - 2011-05-31 09:42 - 00241768 _____ (DTS) C:\Windows\system32\DTSGFXAPONS64.dll
2014-09-25 23:21 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-09-25 23:21 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-09-25 23:21 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-09-25 23:21 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-09-25 23:21 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-09-25 23:21 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-09-25 23:21 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-09-25 23:21 - 2010-09-27 09:34 - 00318808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO20.dll
2014-09-25 23:21 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2014-09-25 23:21 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2014-09-25 23:21 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2014-09-25 23:21 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2014-09-25 23:21 - 2009-11-18 07:13 - 00060504 _____ (Creative Technology Ltd.) C:\Windows\system32\MBPPCn64.dll
2014-09-25 18:59 - 2014-09-25 23:05 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-09-25 18:40 - 2014-09-25 19:01 - 125683715 _____ (Realtek Semiconductor Corp.) C:\Users\metalowa_glowa\Downloads\64bit_Win7_Win8_Win81_R275.exe
2014-09-23 23:10 - 2014-09-23 23:10 - 00991232 _____ () C:\Users\metalowa_glowa\Downloads\MicrosoftFixit50267.msi
2014-09-21 19:27 - 2014-09-21 19:26 - 00319912 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-09-21 19:26 - 2014-09-21 19:26 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-09-21 19:26 - 2014-09-21 19:26 - 00189352 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-09-21 19:26 - 2014-09-21 19:26 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-09-21 19:26 - 2014-09-21 19:26 - 00000000 ____D () C:\Program Files\Java
2014-09-21 16:37 - 2014-09-21 16:37 - 00000000 ____D () C:\Windows\ERUNT
2014-09-21 16:34 - 2014-09-21 16:34 - 01944824 _____ (Bleeping Computer, LLC) C:\Users\metalowa_glowa\Downloads\rkill.com
2014-09-21 16:32 - 2014-09-21 16:32 - 04181856 _____ (Kaspersky Lab ZAO) C:\Users\metalowa_glowa\Downloads\tdsskiller.exe
2014-09-21 16:31 - 2014-09-21 16:31 - 01027006 _____ (Thisisu) C:\Users\metalowa_glowa\Downloads\JRT.exe
2014-09-21 15:59 - 2014-09-21 15:59 - 00000000 ____D () C:\Program Files\My Dell
2014-09-21 15:55 - 2014-09-21 15:55 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Roaming\Oracle
2014-09-21 15:54 - 2014-09-21 15:54 - 00000000 ____D () C:\ProgramData\Oracle
2014-09-21 15:53 - 2014-09-21 15:53 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-09-21 15:53 - 2014-09-21 15:53 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-09-21 15:53 - 2014-09-21 15:53 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-09-21 15:53 - 2014-09-21 15:53 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-09-21 15:53 - 2014-09-21 15:53 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-09-21 15:53 - 2014-09-21 15:53 - 00000000 ____D () C:\Program Files (x86)\Java
2014-09-21 15:52 - 2014-09-21 15:52 - 00000000 ____D () C:\ProgramData\Sun
2014-09-21 15:24 - 2014-09-21 15:24 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-21 15:13 - 2014-09-21 15:13 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-09-21 15:12 - 2014-09-21 15:12 - 00000000 ____D () C:\Windows\SysWOW64\NV
2014-09-21 15:12 - 2014-09-21 15:12 - 00000000 ____D () C:\Windows\system32\NV
2014-09-21 15:12 - 2014-09-13 22:13 - 00613696 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2014-09-21 15:09 - 2014-09-14 01:48 - 31887680 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 24552592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 20922512 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 20589536 _____ (NVIDIA Corporation) C:\Windows\system32\nvwgf2umx.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 19954520 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 18106152 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 17259664 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 14026304 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 13939272 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 13157696 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-09-21 15:09 - 2014-09-14 01:48 - 11392576 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 11330776 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 04287296 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 04008592 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 02838424 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 01876296 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434411.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 01539272 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434411.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 00957584 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 00925896 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 00919240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 00894096 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 00352016 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 00303600 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 00299152 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvkflt.sys
2014-09-21 15:09 - 2014-09-14 01:48 - 00174856 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-09-21 15:09 - 2014-09-14 01:48 - 00032576 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvpciflt.sys
2014-09-21 14:49 - 2014-08-19 20:05 - 00374968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-09-21 14:49 - 2014-08-19 19:39 - 00327872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-09-21 14:49 - 2014-08-19 01:01 - 23591424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-21 14:49 - 2014-08-19 00:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-21 14:49 - 2014-08-19 00:29 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-09-21 14:49 - 2014-08-19 00:26 - 17455104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-09-21 14:49 - 2014-08-19 00:20 - 02793984 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-09-21 14:49 - 2014-08-19 00:19 - 05833728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-09-21 14:49 - 2014-08-19 00:15 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-09-21 14:49 - 2014-08-19 00:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-09-21 14:49 - 2014-08-19 00:14 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-09-21 14:49 - 2014-08-19 00:14 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-09-21 14:49 - 2014-08-19 00:08 - 04232704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-09-21 14:49 - 2014-08-19 00:08 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-09-21 14:49 - 2014-08-19 00:08 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-09-21 14:49 - 2014-08-19 00:05 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-09-21 14:49 - 2014-08-19 00:03 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-09-21 14:49 - 2014-08-19 00:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-09-21 14:49 - 2014-08-19 00:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-09-21 14:49 - 2014-08-18 23:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-09-21 14:49 - 2014-08-18 23:56 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-09-21 14:49 - 2014-08-18 23:51 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-09-21 14:49 - 2014-08-18 23:46 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-09-21 14:49 - 2014-08-18 23:45 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-09-21 14:49 - 2014-08-18 23:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-09-21 14:49 - 2014-08-18 23:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-09-21 14:49 - 2014-08-18 23:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-09-21 14:49 - 2014-08-18 23:42 - 02185728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-09-21 14:49 - 2014-08-18 23:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-09-21 14:49 - 2014-08-18 23:39 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-09-21 14:49 - 2014-08-18 23:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-09-21 14:49 - 2014-08-18 23:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-09-21 14:49 - 2014-08-18 23:38 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-09-21 14:49 - 2014-08-18 23:37 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-09-21 14:49 - 2014-08-18 23:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-09-21 14:49 - 2014-08-18 23:35 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-09-21 14:49 - 2014-08-18 23:27 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-09-21 14:49 - 2014-08-18 23:25 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-09-21 14:49 - 2014-08-18 23:25 - 00707072 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-09-21 14:49 - 2014-08-18 23:23 - 02104832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-09-21 14:49 - 2014-08-18 23:23 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-09-21 14:49 - 2014-08-18 23:22 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-21 14:49 - 2014-08-18 23:19 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-09-21 14:49 - 2014-08-18 23:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-09-21 14:49 - 2014-08-18 23:17 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-09-21 14:49 - 2014-08-18 23:16 - 13588480 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-09-21 14:49 - 2014-08-18 23:15 - 11769856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-09-21 14:49 - 2014-08-18 23:15 - 02310656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-09-21 14:49 - 2014-08-18 23:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-09-21 14:49 - 2014-08-18 23:08 - 02014208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-09-21 14:49 - 2014-08-18 23:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-09-21 14:49 - 2014-08-18 22:55 - 01447424 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-09-21 14:49 - 2014-08-18 22:46 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-09-21 14:49 - 2014-08-18 22:38 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-09-21 14:49 - 2014-08-18 22:38 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-09-21 14:49 - 2014-08-18 22:36 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-09-21 14:37 - 2014-09-04 21:14 - 00038048 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-09-21 14:37 - 2014-09-04 21:14 - 00032416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-09-21 13:28 - 2014-06-27 04:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-09-21 13:28 - 2014-06-27 03:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-09-21 13:26 - 2014-07-01 00:24 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-09-21 13:26 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardres.dll
2014-09-21 13:26 - 2014-03-09 23:48 - 01389208 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-09-21 13:26 - 2014-03-09 23:48 - 00171160 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-09-21 13:26 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardagt.exe
2014-09-21 13:26 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\infocardapi.dll
2014-09-21 13:25 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-09-21 13:25 - 2014-06-06 08:12 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-09-21 13:14 - 2014-07-07 04:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-21 13:14 - 2014-07-07 04:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-21 13:14 - 2014-07-07 03:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-09-21 13:14 - 2014-07-07 03:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-09-21 13:14 - 2014-07-07 03:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-09-21 13:14 - 2014-05-30 10:08 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-09-21 13:14 - 2014-05-30 10:08 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-09-21 13:14 - 2014-05-30 10:08 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-09-21 13:14 - 2014-05-30 10:08 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-09-21 13:14 - 2014-05-30 10:08 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-09-21 13:14 - 2014-05-30 10:08 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-09-21 13:14 - 2014-05-30 09:52 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-09-21 13:14 - 2014-05-30 09:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-09-21 13:14 - 2014-05-30 09:52 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-09-21 13:14 - 2014-05-30 09:52 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-09-21 13:14 - 2014-05-30 09:52 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-09-21 13:14 - 2014-05-30 09:52 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-09-21 13:07 - 2014-08-01 13:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-09-21 13:07 - 2014-08-01 13:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-09-21 13:07 - 2014-06-18 04:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-09-21 13:07 - 2014-06-18 03:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-09-21 13:07 - 2014-01-09 04:22 - 05694464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-09-21 13:07 - 2014-01-04 00:44 - 06574592 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-09-21 13:07 - 2013-11-23 20:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2014-09-21 13:07 - 2013-11-23 19:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2014-09-21 13:06 - 2014-07-16 05:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-09-21 13:06 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-09-21 13:06 - 2014-06-25 04:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-09-21 13:06 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-09-21 13:06 - 2014-06-24 05:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-09-21 13:06 - 2014-06-24 04:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-09-21 13:06 - 2014-06-16 04:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-09-21 13:06 - 2014-06-06 12:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-09-21 13:06 - 2014-06-06 11:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-09-21 13:06 - 2014-06-03 12:02 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-09-21 13:06 - 2014-06-03 12:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-09-21 13:06 - 2014-06-03 12:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-09-21 13:06 - 2014-06-03 12:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-09-21 13:06 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-09-21 13:06 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-09-21 13:06 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-09-21 13:06 - 2014-05-08 11:32 - 03178496 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-09-21 13:06 - 2014-05-08 11:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\RdpGroupPolicyExtension.dll
2014-09-21 13:06 - 2014-02-04 04:32 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-09-21 13:06 - 2014-02-04 04:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-09-21 13:06 - 2013-11-26 10:16 - 03419136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2014-09-21 13:06 - 2013-11-23 00:48 - 03928064 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2014-09-21 13:05 - 2014-08-23 04:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-09-21 13:05 - 2014-08-23 03:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2014-09-21 13:05 - 2014-08-23 02:59 - 03163648 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-09-21 13:05 - 2014-05-30 08:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-09-21 13:01 - 2014-07-14 04:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-09-21 13:01 - 2014-07-14 03:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-09-20 12:43 - 2014-09-20 12:43 - 00001123 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-09-19 19:04 - 2014-09-28 19:29 - 00000000 ____D () C:\Qoobox
2014-09-18 22:50 - 2014-09-18 22:50 - 00000000 ____D () C:\ProgramData\Orbit
2014-09-16 23:36 - 2014-09-21 15:13 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-09-16 23:36 - 2014-09-17 04:13 - 02193560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2014-09-16 23:36 - 2014-09-17 04:13 - 01291280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspbridge.dll
2014-09-16 23:36 - 2014-09-17 04:12 - 02799784 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2014-09-16 23:36 - 2014-09-17 04:12 - 01715224 _____ (NVIDIA Corporation) C:\Windows\system32\nvspbridge64.dll
2014-09-16 23:32 - 2014-09-14 01:48 - 16875856 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvd3dum.dll
2014-09-16 23:32 - 2014-09-04 21:14 - 00034976 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2014-09-16 23:32 - 2014-07-02 22:48 - 01890080 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6434052.dll
2014-09-16 23:32 - 2014-07-02 22:48 - 01539928 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6434052.dll
2014-09-16 00:11 - 2014-09-16 00:24 - 00000000 ____D () C:\Users\metalowa_glowa\Documents\Ghost Games
2014-09-16 00:11 - 2014-09-16 00:11 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Local\Game Launcher
2014-09-15 16:40 - 2014-09-15 16:40 - 00000000 ____D () C:\ProgramData\Mozilla
2014-09-13 08:15 - 2014-09-13 08:15 - 00000726 _____ () C:\Users\Public\Desktop\MouseCraft.lnk
2014-09-13 08:15 - 2014-09-13 08:15 - 00000000 ____D () C:\Users\metalowa_glowa\Documents\Crunching Koalas
2014-09-12 18:18 - 2014-09-12 18:18 - 00000000 ____D () C:\ProgramData\WarThunder
2014-09-10 22:33 - 2014-09-10 22:33 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-09-10 22:31 - 2014-10-05 18:44 - 00001060 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-09-10 22:31 - 2014-10-05 18:36 - 00001064 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-09-10 22:31 - 2014-09-10 22:31 - 00004060 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-09-10 22:31 - 2014-09-10 22:31 - 00003808 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-05 18:51 - 2009-07-14 06:45 - 00015152 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-05 18:51 - 2009-07-14 06:45 - 00015152 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-05 18:47 - 2012-07-25 22:25 - 01847271 _____ () C:\Windows\WindowsUpdate.log
2014-10-05 18:43 - 2014-08-25 16:06 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-10-05 18:43 - 2012-07-25 23:13 - 00000000 ____D () C:\Windows\Minidump
2014-10-05 18:43 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-05 18:15 - 2012-08-07 18:44 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Roaming\uTorrent
2014-10-05 17:30 - 2012-08-07 23:04 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Roaming\vlc
2014-10-05 02:40 - 2012-09-01 14:46 - 00000000 ____D () C:\Users\metalowa_glowa\Documents\My Games
2014-10-04 20:20 - 2012-07-26 23:45 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Roaming\AIMP3
2014-10-04 15:21 - 2009-07-14 19:55 - 00750282 _____ () C:\Windows\system32\perfh015.dat
2014-10-04 15:21 - 2009-07-14 19:55 - 00161728 _____ () C:\Windows\system32\perfc015.dat
2014-10-04 15:21 - 2009-07-14 07:13 - 01699282 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-04 01:17 - 2012-09-15 13:06 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-10-04 01:05 - 2012-09-15 13:12 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-10-04 00:45 - 2012-07-25 22:44 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-10-04 00:19 - 2012-08-11 18:45 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Local\SKIDROW
2014-10-03 23:41 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-10-03 23:21 - 2012-08-12 09:01 - 00000000 ____D () C:\Users\metalowa_glowa\Documents\CAPCOM
2014-10-03 21:02 - 2012-09-01 23:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2014-10-02 20:49 - 2013-08-29 23:06 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Roaming\Might & Magic Heroes VI
2014-10-02 18:06 - 2014-02-07 16:37 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-09-30 20:16 - 2014-08-07 18:39 - 00000000 _____ () C:\Users\metalowa_glowa\.JarClassLoader
2014-09-30 20:15 - 2014-08-07 13:14 - 00003885 _____ () C:\Users\metalowa_glowa\fsoinstaller.properties
2014-09-30 18:51 - 2014-09-01 22:26 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Local\Adobe
2014-09-30 18:40 - 2012-10-09 21:48 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-09-28 22:27 - 2012-08-07 17:06 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Roaming\DAEMON Tools Lite
2014-09-28 21:43 - 2013-10-05 10:01 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ubisoft
2014-09-28 21:26 - 2014-07-13 19:15 - 00000000 ____D () C:\masaże SPA
2014-09-28 19:24 - 2009-07-14 04:34 - 00000215 _____ () C:\Windows\system.ini
2014-09-28 11:46 - 2013-10-02 12:48 - 00000000 ____D () C:\gry
2014-09-28 10:44 - 2014-08-07 22:13 - 00003890 _____ () C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1407442411
2014-09-28 10:44 - 2012-08-07 18:02 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-09-25 23:23 - 2012-08-07 16:46 - 00074452 _____ () C:\Windows\system32\Drivers\RTWAVES30.dat
2014-09-25 23:23 - 2012-07-25 22:59 - 00000000 ___HD () C:\Program Files (x86)\Temp
2014-09-24 22:24 - 2014-07-13 17:17 - 00000000 ____D () C:\Users\metalowa_glowa\Desktop\masaż
2014-09-24 20:13 - 2013-04-08 17:20 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Local\ChomikBox
2014-09-24 20:09 - 2013-05-24 14:12 - 00000000 ____D () C:\Users\metalowa_glowa\chomik
2014-09-24 20:05 - 2013-04-08 17:20 - 00000000 ____D () C:\Users\metalowa_glowa\.gstreamer-0.10
2014-09-21 16:05 - 2013-08-31 13:52 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Local\Deployment
2014-09-21 16:05 - 2013-08-31 13:52 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Local\Apps\2.0
2014-09-21 15:59 - 2014-08-03 12:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2014-09-21 15:14 - 2009-07-14 20:09 - 00000000 ____D () C:\Program Files\Windows Journal
2014-09-21 15:13 - 2014-08-03 12:09 - 00000000 ____D () C:\temp
2014-09-21 15:13 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2014-09-21 15:13 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\Dism
2014-09-21 15:12 - 2012-07-25 22:47 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2014-09-21 14:44 - 2012-08-12 00:02 - 01671888 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-09-21 14:38 - 2012-07-25 22:47 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2014-09-21 14:03 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-09-21 13:30 - 2014-06-30 20:13 - 00000000 ____D () C:\Windows\system32\MRT
2014-09-21 12:46 - 2009-07-14 04:34 - 00000027 _____ () C:\Windows\system32\Drivers\etc\hosts.old
2014-09-21 11:32 - 2012-08-07 16:39 - 00000000 ____D () C:\Program Files\Dell
2014-09-19 18:41 - 2013-05-24 13:35 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-09-19 18:41 - 2013-05-24 13:35 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2014-09-19 18:38 - 2012-07-26 23:11 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Roaming\Media Player Classic
2014-09-19 18:31 - 2013-05-24 13:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2014-09-16 23:38 - 2013-06-01 13:51 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Local\NVIDIA
2014-09-16 23:37 - 2013-11-20 10:37 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Local\NVIDIA Corporation
2014-09-16 23:37 - 2012-07-25 22:47 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-09-15 18:17 - 2014-04-01 19:20 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Local\Setup Integrity Check
2014-09-15 09:06 - 2012-08-07 20:20 - 00278152 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-09-14 01:48 - 2014-01-27 11:46 - 00867528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-09-14 01:48 - 2012-08-07 18:00 - 03223120 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2014-09-14 01:48 - 2012-08-07 18:00 - 00984424 _____ (NVIDIA Corporation) C:\Windows\system32\nvumdshimx.dll
2014-09-14 01:48 - 2012-08-07 18:00 - 00156840 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-09-14 01:48 - 2012-06-15 22:36 - 00026956 _____ () C:\Windows\system32\nvinfo.pb
2014-09-13 23:53 - 2012-08-07 18:01 - 06890696 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2014-09-13 23:53 - 2012-08-07 18:01 - 03529872 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2014-09-13 23:53 - 2012-08-07 18:01 - 02557640 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2014-09-13 23:53 - 2012-08-07 18:01 - 01087688 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshext.dll
2014-09-13 23:53 - 2012-08-07 18:01 - 00934216 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2014-09-13 23:53 - 2012-08-07 18:01 - 00385168 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2014-09-13 23:53 - 2012-08-07 18:01 - 00067072 _____ (NVIDIA Corporation) C:\Windows\system32\nv3dappshextr.dll
2014-09-13 23:53 - 2012-08-07 18:01 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2014-09-11 17:37 - 2012-08-07 18:01 - 03961833 _____ () C:\Windows\system32\nvcoproc.bin
2014-09-10 22:33 - 2012-08-07 17:47 - 00000000 ____D () C:\Users\metalowa_glowa\AppData\Local\Google
2014-09-10 22:31 - 2012-08-07 17:47 - 00000000 ____D () C:\Program Files (x86)\Google

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-09-27 00:58

==================== End Of Log ============================

 

 

 

 

FRST addition:

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 05-10-2014
Ran by metalowa_glowa at 2014-10-05 19:12:52
Running from C:\Users\metalowa_glowa\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

"Shadow Warrior" (HKLM-x32\...\{019BA08C-CA53-469C-89C1-8D8B0D2E2931}_is1) (Version: 1.0.6.0 - )
"XCOM - Enemy Within" (HKLM-x32\...\{EE377223-72A9-4995-B3B6-8A056CA4CE5D}_is1) (Version: 1.0.0.926 - )
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.32126 - BitTorrent Inc.)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe Reader X (10.1.4) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.4 - Adobe Systems Incorporated)
Advanced Audio FX Engine (HKLM-x32\...\Advanced Audio FX Engine) (Version: 1.12.05 - Creative Technology Ltd)
Advanced Video FX Engine (HKLM-x32\...\Advanced Video FX Engine) (Version:  - )
AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.55.1355, 14.07.2014 - AIMP DevTeam)
Aktualizacje NVIDIA 16.13.42 (Version: 16.13.42 - NVIDIA Corporation) Hidden
Alice: Madness Returns (HKLM-x32\...\Alice: Madness Returns_is1) (Version:  - )
AP Tuner 3.06 (HKLM-x32\...\AP Tuner 3.06) (Version:  - )
Ashampoo Burning Studio 2012 v10.0.15 (HKLM-x32\...\Ashampoo Burning Studio 2012_is1) (Version: 10.0.15 - Ashampoo GmbH & Co. KG)
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2021 - AVAST Software)
Beyond Good and Evil (HKLM-x32\...\Beyond Good and Evil_is1) (Version:  - GOG.com)
Botanicula (HKLM-x32\...\Botanicula_is1) (Version:  - GOG.com)
Call of Duty® 4 - Modern Warfare™ 1.6 Patch (x32 Version:  - ) Hidden
Call of Duty® 4 - Modern Warfare™ 1.7 Patch (x32 Version:  - ) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.10 - Piriform)
CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.70.4.2009 - Georgy Berdyshev)
Chaos-League (HKLM-x32\...\Chaos-League) (Version:  - )
ChomikBox (HKLM-x32\...\{26050F54-3928-4D9C-849A-C48A9E831E6F}) (Version: 2.0.5.0 - Chomikuj.pl)
Combined Community Codec Pack 2013-08-01 (HKLM-x32\...\Combined Community Codec Pack_is1) (Version: 2013.08.01.0 - CCCP Project)
Command & Conquer The First Decade (HKLM-x32\...\{66D6F3BD-CA23-41A4-9FA3-96B26B32528C}) (Version: 1.00.0000 - Electronic Arts)
Company of Heroes - FAKEMSI (x32 Version: 2.0.0.0 - THQ Inc.) Hidden
Company of Heroes (HKLM-x32\...\Company of Heroes) (Version: 2.602.0 - THQ Inc.)
Constructor (HKLM-x32\...\Constructor_is1) (Version:  - GOG.com)
CPUID CPU-Z 1.70 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
CPUID HWMonitor 1.23 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
Crysis® (HKLM-x32\...\{000E79B7-E725-4F01-870A-C12942B7F8E4}) (Version: 1.00.0000 - Electronic Arts)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.45.4.0315 - DT Soft Ltd)
DAO Fix 3.51 (HKLM-x32\...\DAO Fix_is1) (Version:  - UHC)
Dark Omen (HKLM-x32\...\Dark Omen) (Version:  - )
Dawn of War - poprawka lokalizacyjna (HKLM-x32\...\{5E9A5189-D00D-4296-B992-1D394A8E36A4}_is1) (Version:  - CD Projekt S.A)
DeathSpank (HKLM-x32\...\DeathSpank_is1) (Version:  - )
Dell Webcam Central (HKLM-x32\...\Dell Webcam Central) (Version: 1.40.05 - Creative Technology Ltd)
Dell Wireless HSPA Mini-Card Drivers (HKLM-x32\...\{9D583F01-A973-4B04-90BD-FB7886779090}) (Version: 6.1.24.4 - Dell)
Divine Divinity (HKLM-x32\...\Divine Divinity_is1) (Version:  - GOG.com)
Dungeon Keeper 2 (HKLM-x32\...\GOGPACKDUNGEONKEEPER2_is1) (Version: 2.0.0.32 - GOG.com)
Dustforce (HKLM-x32\...\GOGPACKDUSTFORCE_is1) (Version: 2.0.0.2 - GOG.com)
e-Deklaracje Desktop (HKLM-x32\...\e-Deklaracje.A1909296681C7ACEFE45687D3A64758C8659BF46.1) (Version: 6.0.1 - Ministerstwo Finansow)
e-Deklaracje Desktop (x32 Version: 6.0.1 - Ministerstwo Finansow) Hidden
Emergency 2 (HKLM-x32\...\{874F0C23-7CA8-4639-9D77-E032E272A3FD}) (Version: 2.00.000 - )
Fallout Tactics (HKLM-x32\...\GOGPACKFALLOUTTACTICS_is1) (Version: 2.0.0.8 - GOG.com)
FFmpeg v0.6.2 for Audacity (HKLM-x32\...\FFmpeg for Audacity_is1) (Version:  - )
Foxit Reader (HKLM-x32\...\Foxit Reader) (Version:  - )
Freespace 2 (HKLM-x32\...\Freespace 2_is1) (Version:  - GOG.com)
Gaming Mouse (HKLM-x32\...\Gaming Mouse) (Version:  - )
GG (HKCU\...\GG) (Version: 11 - GG Network S.A.)
Ghostbusters - The Video Game (HKLM-x32\...\Ghostbusters - The Video Game_R.G. Mechanics_is1) (Version:  - R.G. Mechanics, markfiter)
Ghostbusters ™: The Video Game (x32 Version: 1.00.0000 - Atari) Hidden
GOG.com Downloader version 3.6.0 (HKLM-x32\...\{456A5815-604D-4D72-94DF-346D2B978A59}_is1) (Version: 3.6.0 - GOG.com)
GOG.com Dungeon Keeper 2 (HKLM\...\{b6462b67-caf5-4a74-99df-cc2811bd1957}.sdb) (Version:  - )
GOG.com The Settlers 3 (HKLM\...\{f707a2f1-2ed1-4560-a087-97aa176c3777}.sdb) (Version:  - )
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 37.0.2062.124 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Grand Theft Auto IV (x32 Version: 1.0.0011.131 - Rockstar Games Inc.) Hidden
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
GRID (HKLM-x32\...\{5A0B7BA5-4682-4273-81C2-69B17E649103}) (Version: 1.30.0000 - Codemasters)
Homeworld (HKLM-x32\...\Homeworld) (Version:  - )
How to Survive (HKLM-x32\...\How to Survive_is1) (Version:  - )
Human Anatomy Atlas 3.0.1 (HKLM-x32\...\Human Anatomy Atlas 3.0.1) (Version:  - )
Injustice: Gods Among Us Ultimate Edition (HKLM-x32\...\SW5qdXN0aWNlR29kc0Ftb25nVXNVbHRpbWF0ZUVkaXRpb24=_is1) (Version: 1 - )
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel® PROSet/Wireless for Bluetooth® + High Speed (Version: 15.8.0.0548 - Intel Corporation) Hidden
Intel® PROSet/Wireless Software for Bluetooth® Technology (HKLM\...\{2ABA2E8D-23CF-418F-BC8F-2EC99FA51A3F}) (Version: 1.2.1.0608 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software Driver (Version: 15.08.0000.0249 - Intel Corporation) Hidden
Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version:  - )
Intel® PROSet/Wireless WiFi Software (Version: 15.08.0000.0172 - Intel Corporation) Hidden
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.35 - Irfan Skiljan)
Java 7 Update 67 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F06417067FF}) (Version: 7.0.670 - Oracle)
Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)
Java Auto Updater (x32 Version: 2.1.67.1 - Oracle, Inc.) Hidden
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.64.1 - JMicron Technology Corp.)
Keyboard Lock Status (HKLM-x32\...\{144A1586-E16C-448D-910D-E12ACD65DD98}) (Version: 1.00.0000 - Logitech)
K-Lite Codec Pack 8.9.5 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 8.9.5 - )
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version:  - )
LEGO Indiana Jones - The Original Adventures (HKLM-x32\...\LEGO Indiana Jones - The Original Adventures_R.G~C20D9CBC_is1) (Version:  - R.G. Mechanics, markfiter)
Live! Cam Avatar Creator (HKLM-x32\...\{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}) (Version: 4.6.3009.1 - Creative Technology Ltd)
Max Payne (HKLM-x32\...\{39930321-4C58-4B8B-BCBF-342698C9801D}) (Version:  - )
Microsoft .NET Framework 1.1 (HKLM-x32\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4.5 PLK Language Pack (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Access MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Groove MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Polish) 2007 (x32 Version: 12.0.4518.1020 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version:  - Microsoft) Hidden
Microsoft Office Publisher MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Polish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Polish) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (x32 Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1 - Nokia) Hidden
Microsoft_VC100_CRT_SP1_x86 (x32 Version: 10.0.40219.1 - Nokia) Hidden
Might & Magic Heroes VI - Shades of Darkness (HKLM-x32\...\{745D37C2-26F4-4B65-BA13-F9840EBFA75B}) (Version: 2.1.1 - Ubisoft)
Moduły Premiowe BioWare: Neverwinter Nights - Kingmaker (HKLM-x32\...\Neverwinter Nights - Kingmaker) (Version:  - BioWare Corp.)
Moduły Premiowe BioWare: Neverwinter Nights - ShadowGuard (HKLM-x32\...\Neverwinter Nights - ShadowGuard) (Version:  - BioWare Corp.)
Moduły Premiowe BioWare: Neverwinter Nights - Witch's Wake (HKLM-x32\...\Neverwinter Nights - Witch's Wake) (Version:  - BioWare Corp.)
MouseCraft (HKLM-x32\...\1207664833_is1) (Version: 2.0.0.1 - GOG.com)
Mozilla Firefox 32.0.3 (x86 pl) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 pl)) (Version: 32.0.3 - Mozilla)
MS JET 3.51 (HKLM-x32\...\{5EA86386-4B04-4FDF-9F50-AE62EF213579}) (Version: 1.00.0000 - Your Company Name)
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
NapiProjekt (2.0.0.2151) (HKLM-x32\...\NapiProjekt_is1) (Version:  - )
Narco Terror (HKLM-x32\...\TmFyY29UZXJyb3I=_is1) (Version: 1 - )
Neverwinter Nights Diamentowa Edycja (HKLM-x32\...\{C1583439-B034-4881-819C-D52A0587662B}) (Version: 1.68 - BioWare)
Nexus - The Jupiter Incident (HKLM-x32\...\Nexus - The Jupiter Incident_is1) (Version:  - GOG.com)
Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
Nokia PC Suite (HKLM-x32\...\Nokia PC Suite) (Version: 7.1.180.94 - Nokia)
Nokia PC Suite (x32 Version: 7.1.180.94 - Nokia) Hidden
Nokia Software Updater (HKLM-x32\...\{7130468A-F53F-4698-8C09-A339EA3B05E6}) (Version: 3.0.655 - Nokia Corporation)
Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.8.48.0 - Nokia)
Nokia Suite (x32 Version: 3.8.48.0 - Nokia) Hidden
NVIDIA GeForce Experience 2.1.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.2 - NVIDIA Corporation)
NVIDIA GeForce Experience Service (Version: 16.13.42 - NVIDIA Corporation) Hidden
NVIDIA Install Application (Version: 2.1002.162.1274 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 2.0 - NVIDIA Corporation) Hidden
NVIDIA Oprogramowanie systemu PhysX 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
NVIDIA Optimus Update 16.13.42 (Version: 16.13.42 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.14.0702 - NVIDIA Corporation) Hidden
NVIDIA ShadowPlay 16.13.42 (Version: 16.13.42 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Sterownik 3D Vision 344.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 344.11 - NVIDIA Corporation)
NVIDIA Sterownik dźwięku HD 1.3.32.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.32.1 - NVIDIA Corporation)
NVIDIA Sterownik graficzny 344.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 344.11 - NVIDIA Corporation)
NVIDIA Update Core (Version: 16.13.42 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.25 (Version: 1.2.25 - NVIDIA Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice.org 3.4.1 (HKLM-x32\...\{18192D3F-5537-4560-AD89-D695F72AF91D}) (Version: 3.41.9593 - Apache Software Foundation)
Opera 12.17 (HKLM-x32\...\Opera 12.17.1863) (Version: 12.17.1863 - Opera Software ASA)
Opera Stable 24.0.1558.64 (HKLM-x32\...\Opera 24.0.1558.64) (Version: 24.0.1558.64 - Opera Software ASA)
Oprogramowanie Intel® PROSet/Wireless (HKLM-x32\...\{e6d17d96-ddaa-476f-bb07-db601024ffb1}) (Version: 15.8.0 - Intel Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.4.20.386 - Electronic Arts, Inc.)
Pakiet sterowników systemu Windows - Nokia Modem  (02/25/2011 4.7) (HKLM\...\E0AC723A3DE3A04256288CADBBB011B112AED454) (Version: 02/25/2011 4.7 - Nokia)
Pakiet sterowników systemu Windows - Nokia Modem  (02/25/2011 7.01.0.9) (HKLM\...\72A50F48CC5601190B9C4E74D81161693133E7F7) (Version: 02/25/2011 7.01.0.9 - Nokia)
Pakiet sterowników systemu Windows - Nokia pccsmcfd LegacyDriver  (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
Panel sterowania NVIDIA 344.11 (Version: 344.11 - NVIDIA Corporation) Hidden
PANZERS - Phase1 (HKLM-x32\...\PANZERS - Phase1) (Version:  - )
PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r5875) (Version:  - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Polski pakiet językowy dla programu Microsoft .NET Framework 4.5 PLK (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045) (Version: 4.5.50709 - Microsoft Corporation)
Populous (HKLM-x32\...\Populous_is1) (Version:  - GOG.com)
Race Driver 3 (HKLM-x32\...\{0297C87B-CC40-446F-865A-031B4FC0CF22}) (Version: 1.00.0000 - Codemasters)
RAW - Realms of Ancient War (HKLM-x32\...\Steam App 209730) (Version:  - Wizarbox)
Real Boxing (HKLM-x32\...\Real Boxing_is1) (Version: v1.0 - Релиз от R.G. Steamgames)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7246 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.27.0 - Renesas Electronics Corporation)
Renesas Electronics USB 3.0 Host Controller Driver (x32 Version: 2.1.27.0 - Renesas Electronics Corporation) Hidden
Sanitarium (HKLM-x32\...\Sanitarium_is1) (Version:  - GOG.com)
SHIELD Streaming (Version: 3.1.200 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.42 - NVIDIA Corporation) Hidden
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Source SDK Base 2007 (HKLM-x32\...\Steam App 218) (Version:  - Valve)
SPSS Statistics 17.0 (HKLM-x32\...\{46B65150-F8AA-42F2-94FB-2729A8AE5F7E}) (Version: 17.0.0 - SPSS Inc.)
StarCraft (HKLM-x32\...\StarCraft) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
SubEdit - Vista WMP Patch (HKLM-x32\...\SubEdit - Vista WMP Patch_is1) (Version: 1 - Artur Sikora)
SubEdit-Player (HKLM-x32\...\SubEdit-Player_is1) (Version: 4072 - Artur Sikora)
Switch Off (HKLM-x32\...\SwitchOff) (Version: 2.3 - YaSoft)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.1.15.0 - Synaptics Incorporated)
System Requirements Lab CYRI (HKLM-x32\...\{F3FCB08B-E752-444D-86A0-0634A4F3B23D}) (Version: 6.0.8.0 - Husdawg, LLC)
System Requirements Lab for Intel (HKLM-x32\...\{53C63F43-B827-42D9-8886-4698D91EA33B}) (Version: 4.5.15.0 - Husdawg, LLC)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.0.13.1 - TeamSpeak Systems GmbH)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
The Settlers 3 - Ultimate Collection (HKLM-x32\...\GOGPACKSETTLERS3_is1) (Version: 2.0.0.17 - GOG.com)
The Settlers II - 10th Anniversary (HKLM-x32\...\GOGPACKSETTLERS210TH_is1) (Version: 2.0.0.8 - GOG.com)
The Witcher 2 - Assassins of Kings Enhanced Edition (HKLM-x32\...\GOGPACKTHEWITCHER2EE_is1) (Version: 3.4.0.25 - GOG.com)
Theme Hospital (HKLM-x32\...\GOGPACKTHEMEHOSPITAL_is1) (Version: 2.0.0.5 - GOG.com)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
UE3Redist (HKCU\...\InstallShield_{6530FDAA-5B1F-4830-95BB-650E9804D239}) (Version: 1.00.0000 - Epic Games)
UE3Redist (x32 Version: 1.00.0000 - Epic Games) Hidden
Unity Web Player (HKCU\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{620E77C0-CDFE-4C14-AAEB-830ABB65864C}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596802) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{525A4A44-8940-40AD-ABA0-14501199D2F0}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{8153EC80-C988-4336-8DAF-6D99C0D26E0C}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition (HKLM-x32\...\{90120000-001A-0415-0000-0000000FF1CE}_ENTERPRISE_{840D15BD-72E8-4710-ABDD-8E883B88BD5D}) (Version:  - Microsoft)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2817359) 32-Bit Edition (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{BD6B5D42-37A7-46A0-912C-E7578E1F03C5}) (Version:  - Microsoft)
Uplay (HKLM-x32\...\Uplay) (Version: 3.0 - Ubisoft)
USB Network Joystick (HKLM-x32\...\{2A558A06-A44E-400D-95AD-D9FAA89AFD36}) (Version: 2007.03.12 - )
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
VLC media player 2.0.2 (HKLM-x32\...\VLC media player) (Version: 2.0.2 - VideoLAN)
Warhammer 40,000 - Dawn of War (HKLM-x32\...\{7CCEAA16-E639-4554-B0E1-3634260C8CB5}) (Version: 1.51 - )
Warhammer Battle March (HKLM-x32\...\{ABC91C39-266D-4042-828E-4386E0F25218}) (Version: 2.0.0 - Namco Bandai Games)
WinDjView 2.0.2 (HKLM\...\WinDjView) (Version: 2.0.2 - Andrew Zhezherun)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
Wing Commander III - Heart of the Tiger (HKLM-x32\...\Wing Commander III - Heart of the Tiger_is1) (Version:  - GOG.com)
WinRAR 4.20 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.20.0 - win.rar GmbH)
wxLauncher (HKLM-x32\...\wxLauncher) (Version: 0.9.4 - wxLauncher Team)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1362770674-4107001041-3769634335-1000_Classes\CLSID\{E68D0A55-3C40-4712-B90D-DCFA93FF2534}\InprocServer32 -> C:\Users\metalowa_glowa\AppData\Roaming\GG\ggdrive\ggdrive-menu.dll (GG Network S.A.)

==================== Restore Points  =========================

21-09-2014 17:25:21 Installed Java 7 Update 67 (64-bit)
23-09-2014 21:11:07 Installed Microsoft Fix it 50267
26-09-2014 14:50:38 Zainstalowane Heroes of Might and Magic V
26-09-2014 14:56:33 Zainstalowany program DirectX
28-09-2014 11:04:08 Windows Update
28-09-2014 19:42:45 Usunięte Heroes of Might and Magic V
03-10-2014 21:06:18 Zainstalowane Street Fighter X Tekken
03-10-2014 21:41:35 Usunięte Street Fighter X Tekken
03-10-2014 22:43:37 Installed USB Network Joystick
03-10-2014 22:45:07 Installed USB Network Joystick
03-10-2014 23:01:42 Zainstalowany program DirectX
04-10-2014 16:14:18 Zainstalowany program DirectX
05-10-2014 06:22:46 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2013-09-03 17:19 - 00000833 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {14F712B5-02D2-4892-8BC6-0C8C49E88A35} - System32\Tasks\{E65BEE3F-6956-488D-86F4-539EF42FB5E5} => D:\Gry\dawn of war\GraphicsConfig.exe [2006-08-15] (Relic Entertainment)
Task: {1942C93A-4BE7-4569-A0A2-63BF6D5E3A5B} - System32\Tasks\{21016077-D22B-4032-9F65-3457831299BD} => D:\Gry\ghostbusters\ghost_w32.exe
Task: {1EC60B40-9DB1-4EC5-B14B-3717DF5EBB83} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-10] (Google Inc.)
Task: {2A06755B-5246-4556-9B08-D5EFE7EBC7EC} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-07-11] (AVAST Software)
Task: {72B22A9A-7935-4859-A260-997B72E0CA9E} - System32\Tasks\{50F2BF72-998D-4529-97A9-9DE731A29FE0} => D:\Gry\dawn of war\GraphicsConfig.exe [2006-08-15] (Relic Entertainment)
Task: {B78BF36B-F05B-4712-BF7F-B2D24695F0A1} - System32\Tasks\{98F302D3-EAA4-4629-937E-5A8839261213} => D:\Gry\dawn of war\GraphicsConfig.exe [2006-08-15] (Relic Entertainment)
Task: {BB8414F2-3BB6-4DB1-AB64-041F47C759F5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-09-10] (Google Inc.)
Task: {DBA07166-9A5B-48D4-B02F-B06B51E6CD2B} - System32\Tasks\Opera scheduled Autoupdate 1407442411 => C:\Program Files (x86)\Opera\launcher.exe [2014-09-25] (Opera Software)
Task: {F69DF5B7-7E7C-401C-906A-744DEB30CFB5} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-01-21] (Piriform Ltd)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2012-08-07 18:01 - 2014-09-13 23:53 - 00116880 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2012-06-15 22:36 - 2011-03-07 22:07 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2014-01-25 17:37 - 2014-01-25 17:41 - 00066872 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-07-11 15:10 - 2014-07-11 15:10 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2014-10-05 12:17 - 2014-10-05 12:17 - 02859008 _____ () C:\Program Files\AVAST Software\Avast\defs\14100500\algo.dll
2012-06-15 22:36 - 2014-09-14 01:48 - 00012104 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2014-07-11 15:10 - 2014-07-11 15:10 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2012-07-25 23:04 - 2010-02-17 12:20 - 00065576 ____R () C:\Program Files (x86)\Dell\Dell WWAN\WMCore\MBMDebug.dll
2014-09-25 18:59 - 2014-09-25 18:59 - 03715184 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: gusvc => 3
MSCONFIG\startupreg: Dell Webcam Central => "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2
MSCONFIG\startupreg: DellSystemDetect => C:\Users\metalowa_glowa\AppData\Local\Apps\2.0\6EE1JWG0.0R9\JLN1G7DO.GRE\dell..tion_0f612f649c4a10af_0005.0009_14e1a3fbfbaf942c\DellSystemDetect.exe
MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
MSCONFIG\startupreg: Onet.pl AutoUpdate => C:\Program Files (x86)\Common Files\Onet.pl\AutoUpdate.exe /tsr
MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: USB Gamepad => C:\Windows\USB Vibration\7906\USB Gamepad.exe -boot

========================= Accounts: ==========================

Administrator (S-1-5-21-1362770674-4107001041-3769634335-500 - Administrator - Disabled)
ASPNET (S-1-5-21-1362770674-4107001041-3769634335-1005 - Limited - Enabled)
Gość (S-1-5-21-1362770674-4107001041-3769634335-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1362770674-4107001041-3769634335-1009 - Limited - Enabled)
metalowa_glowa (S-1-5-21-1362770674-4107001041-3769634335-1000 - Administrator - Enabled) => C:\Users\metalowa_glowa

==================== Faulty Device Manager Devices =============

Name: Zewnętrzne urządzenie Bluetooth
Description: Zewnętrzne urządzenie Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Zewnętrzne urządzenie Bluetooth
Description: Zewnętrzne urządzenie Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Zewnętrzne urządzenie Bluetooth
Description: Zewnętrzne urządzenie Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Zewnętrzne urządzenie Bluetooth
Description: Zewnętrzne urządzenie Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Zewnętrzne urządzenie Bluetooth
Description: Zewnętrzne urządzenie Bluetooth
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (10/05/2014 02:43:35 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: RealBoxing.exe, wersja: 1.0.12143.0, sygnatura czasowa: 0x53b41aa9
Nazwa modułu powodującego błąd: RealBoxing.exe, wersja: 1.0.12143.0, sygnatura czasowa: 0x53b41aa9
Kod wyjątku: 0xc0000005
Przesunięcie błędu: 0x013a9042
Identyfikator procesu powodującego błąd: 0xdb8
Godzina uruchomienia aplikacji powodującej błąd: 0xRealBoxing.exe0
Ścieżka aplikacji powodującej błąd: RealBoxing.exe1
Ścieżka modułu powodującego błąd: RealBoxing.exe2
Identyfikator raportu: RealBoxing.exe3

Error: (10/03/2014 08:32:07 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program go_start.exe w wersji 1.0.0.1 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji.

Identyfikator procesu: d58

Godzina rozpoczęcia: 01cfdf38251f6471

Godzina zakończenia: 40

Ścieżka aplikacji: d:\gry\Expendable\go_start.exe

Identyfikator raportu:

Error: (10/01/2014 00:03:54 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: FlashPlayerPlugin_15_0_0_152.exe, wersja: 15.0.0.152, sygnatura czasowa: 0x53fe814b
Nazwa modułu powodującego błąd: FlashPlayerPlugin_15_0_0_152.exe, wersja: 15.0.0.152, sygnatura czasowa: 0x53fe814b
Kod wyjątku: 0x40000015
Przesunięcie błędu: 0x00017870
Identyfikator procesu powodującego błąd: 0x7a0
Godzina uruchomienia aplikacji powodującej błąd: 0xFlashPlayerPlugin_15_0_0_152.exe0
Ścieżka aplikacji powodującej błąd: FlashPlayerPlugin_15_0_0_152.exe1
Ścieżka modułu powodującego błąd: FlashPlayerPlugin_15_0_0_152.exe2
Identyfikator raportu: FlashPlayerPlugin_15_0_0_152.exe3

Error: (09/30/2014 07:30:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: Explorer.EXE, wersja: 6.1.7601.17567, sygnatura czasowa: 0x4d672ee4
Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.18247, sygnatura czasowa: 0x521eaf24
Kod wyjątku: 0xc0000374
Przesunięcie błędu: 0x00000000000c4102
Identyfikator procesu powodującego błąd: 0x7bc
Godzina uruchomienia aplikacji powodującej błąd: 0xExplorer.EXE0
Ścieżka aplikacji powodującej błąd: Explorer.EXE1
Ścieżka modułu powodującego błąd: Explorer.EXE2
Identyfikator raportu: Explorer.EXE3

Error: (09/30/2014 03:45:59 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Nazwa aplikacji powodującej błąd: FlashPlayerPlugin_15_0_0_152.exe, wersja: 15.0.0.152, sygnatura czasowa: 0x53fe814b
Nazwa modułu powodującego błąd: FlashPlayerPlugin_15_0_0_152.exe, wersja: 15.0.0.152, sygnatura czasowa: 0x53fe814b
Kod wyjątku: 0x40000015
Przesunięcie błędu: 0x00017870
Identyfikator procesu powodującego błąd: 0x7d0
Godzina uruchomienia aplikacji powodującej błąd: 0xFlashPlayerPlugin_15_0_0_152.exe0
Ścieżka aplikacji powodującej błąd: FlashPlayerPlugin_15_0_0_152.exe1
Ścieżka modułu powodującego błąd: FlashPlayerPlugin_15_0_0_152.exe2
Identyfikator raportu: FlashPlayerPlugin_15_0_0_152.exe3

Error: (09/29/2014 06:36:51 AM) (Source: Windows Search Service) (EventID: 7010) (User: )
Description: Nie można zainicjować indeksu.

Szczegóły:
    Wykaz indeksów zawartości jest uszkodzony.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (09/29/2014 06:36:51 AM) (Source: Windows Search Service) (EventID: 3058) (User: )
Description: Nie można zainicjować aplikacji.

Kontekst: aplikacja Windows

Szczegóły:
    Wykaz indeksów zawartości jest uszkodzony.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (09/29/2014 06:36:51 AM) (Source: Windows Search Service) (EventID: 3028) (User: )
Description: Nie można zainicjować obiektu programu zbierającego.

Kontekst: aplikacja Windows, wykaz SystemIndex

Szczegóły:
    Wykaz indeksów zawartości jest uszkodzony.  (HRESULT : 0xc0041801) (0xc0041801)

Error: (09/29/2014 06:36:51 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Nie można zainicjować dodatku typu plug-in w <Search.TripoliIndexer>.

Kontekst: aplikacja Windows, wykaz SystemIndex

Szczegóły:
    Nie można odnaleźć elementu.  (HRESULT : 0x80070490) (0x80070490)

Error: (09/29/2014 06:36:51 AM) (Source: Windows Search Service) (EventID: 3029) (User: )
Description: Nie można zainicjować dodatku typu plug-in w <Search.JetPropStore>.

Kontekst: aplikacja Windows, wykaz SystemIndex

Szczegóły:
    Wykaz indeksów zawartości jest uszkodzony.  (HRESULT : 0xc0041801) (0xc0041801)


System errors:
=============
Error: (10/05/2014 06:44:33 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego:
prodrv06
prohlp02
prosync1
sfhlp01

Error: (10/05/2014 06:43:36 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: 0x00000109 (0xa3a039d8a1c32514, 0xb3b7465ef441611e, 0xfffff88002f706c0, 0x0000000000000002)C:\Windows\MEMORY.DMP100514-26754-01

Error: (10/05/2014 06:43:12 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Ładowanie sterownika \SystemRoot\SysWow64\drivers\prodrv06.sys zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika.

Error: (10/05/2014 06:43:25 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Poprzednie zamknięcie systemu przy 18:41:21 na ‎2014-‎10-‎05 było nieoczekiwane.

Error: (10/05/2014 08:17:17 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego:
prodrv06
prohlp02
prosync1
sfhlp01

Error: (10/05/2014 08:16:18 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Ładowanie sterownika \SystemRoot\SysWow64\drivers\prodrv06.sys zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika.

Error: (10/05/2014 02:17:39 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego:
prodrv06
prohlp02
prosync1
sfhlp01

Error: (10/05/2014 02:16:35 AM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Ładowanie sterownika \SystemRoot\SysWow64\drivers\prodrv06.sys zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika.

Error: (10/04/2014 01:06:12 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Nie można załadować następujących sterowników startu rozruchowego lub systemowego:
prodrv06
prohlp02
prosync1
sfhlp01

Error: (10/04/2014 01:05:28 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Ładowanie sterownika \SystemRoot\SysWow64\drivers\prodrv06.sys zostało zablokowane z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania w celu uzyskania zgodnej wersji sterownika.


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2014-09-21 12:44:57.911
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-09-21 12:44:57.739
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-09-21 12:44:57.583
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-09-21 12:44:57.365
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-09-19 19:20:04.267
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-09-19 19:20:04.189
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-09-19 19:20:04.095
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-09-19 19:20:04.001
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-11-27 18:03:58.628
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-11-27 18:03:58.612
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: Intel® Core™ i7-2670QM CPU @ 2.20GHz
Percentage of memory in use: 40%
Total physical RAM: 6038.17 MB
Available physical RAM: 3563.3 MB
Total Pagefile: 12074.52 MB
Available Pagefile: 9568.53 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:175.69 GB) (Free:20.66 GB) NTFS
Drive d: () (Fixed) (Total:514.15 GB) (Free:5.38 GB) NTFS
Drive f: (Zastrzeżone przez system) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 698.6 GB) (Disk ID: 07F2837E)
Partition 1: (Not Active) - (Size=102 MB) - (Type=DE)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=175.7 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=514.2 GB) - (Type=07 NTFS)

==================== End Of Log ============================

 

 

I guess I cannot thank You enough for trying to help me.:)



#4 ken545

ken545

    Malware Response Team


  • Malware Response Team
  • 1,685 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Space Coast of Florida
  • Local time:07:19 PM

Posted 05 October 2014 - 12:58 PM

Hi,

 

Sometimes our tools are flagged as infected by some scanners, but there not unless you downloaded it from a 3rd party website, everything at Bleeping Computer is 100% safe

 

I see you ran Combofix, did it find and remove anything ?  Post the log, you can find it at C:\ComboFix.txt

 

StarForce Protection System <-- This is legit but from what I have been reading it sometimes causes issues

 

You have a lot of games installed, they use a lot of system resources and can be slowing you down

 

 

You have Malwarebytes installed, open it, check for updates and post the log

 

 

The rest of your logs look pretty healthy


mvp_host.pngConsumer Security 2007-2008-2009-2010-2011-2012-2013-2014



donate.gif Please consider a donation to help me keep up my fight against malware.

 

Just a reminder that threads will be closed if no response in 3 days


#5 MetalowaGlowa

MetalowaGlowa
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Poland
  • Local time:01:19 AM

Posted 06 October 2014 - 12:57 PM

Quick reply and again thanks:)

 

Before seeking more active help i had run combofix (now I know it was a mistake since I read FAQ). It constantly found few files and each time they were removed. It was something called PcDoctor or similar in name. I must have installed it while updating drivers. So i just uninstalled it. Combofix ran clear after that.

 

Guess i have never bothered about how many games I currently have installed. Since it is a hint or at least some idea to solve my sluggish Dell i have got rid of about 70% of them:)

 

I was wondering if it is possible that the problem is not a malware but some issue with drivers or for example windows being updated with all critical updates?

While updating drivers the only ones which i skipped was BIOS - I was simply too scared of messing something up and have my notebook out of the game.

It is still the basic one (A11 from june 2011) and last one is A19 released 26 Oct 2012. Do You ever stumbled upon BIOS being the problem? Like the computer did not use it's proper potential?

 

Perhaps some optimisation should be done. What do You think?

 

 

Combofix log appears to be clean:

 

ComboFix 14-09-29.02 - metalowa_glowa 2014-09-28  19:09:14.10.8 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1250.48.1045.18.6038.3194 [GMT 2:00]
Uruchomiony z: C:\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((   Pliki utworzone od 2014-08-28 do 2014-09-28  )))))))))))))))))))))))))))))))
.
.
2014-09-28 17:24 . 2014-09-28 17:24    --------    d-----w-    c:\users\Public\AppData\Local\temp
2014-09-28 17:24 . 2014-09-28 17:24    --------    d-----w-    c:\users\Default\AppData\Local\temp
2014-09-28 11:04 . 2014-09-15 00:08    11578928    ----a-w-    c:\programdata\Microsoft\Windows Defender\Definition Updates\{E1EAB1A2-39A2-40E3-9263-48B3F45349B3}\mpengine.dll
2014-09-25 21:23 . 2014-09-25 21:23    --------    d-----w-    c:\windows\SysWow64\RTCOM
2014-09-25 21:23 . 2014-09-25 21:23    --------    d-----w-    c:\program files\Realtek
2014-09-25 21:20 . 2005-11-13 21:19    5632    ----a-w-    c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\DotNetInstaller.exe
2014-09-21 17:27 . 2014-09-21 17:26    319912    ----a-w-    c:\windows\system32\javaws.exe
2014-09-21 17:26 . 2014-09-21 17:26    111016    ----a-w-    c:\windows\system32\WindowsAccessBridge-64.dll
2014-09-21 17:26 . 2014-09-21 17:26    189352    ----a-w-    c:\windows\system32\javaw.exe
2014-09-21 17:26 . 2014-09-21 17:26    189352    ----a-w-    c:\windows\system32\java.exe
2014-09-21 17:26 . 2014-09-21 17:26    --------    d-----w-    c:\program files\Java
2014-09-21 14:37 . 2014-09-21 14:37    --------    d-----w-    c:\windows\ERUNT
2014-09-21 13:59 . 2014-09-21 13:59    --------    d-----w-    c:\program files\My Dell
2014-09-21 13:55 . 2014-09-21 13:55    --------    d-----w-    c:\users\metalowa_glowa\AppData\Roaming\Oracle
2014-09-21 13:54 . 2014-09-21 13:54    --------    d-----w-    c:\programdata\Oracle
2014-09-21 13:54 . 2014-09-21 13:54    --------    d-----w-    c:\program files (x86)\Common Files\Java
2014-09-21 13:53 . 2014-09-21 13:53    98216    ----a-w-    c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-09-21 13:53 . 2014-09-21 13:53    --------    d-----w-    c:\program files (x86)\Java
2014-09-21 13:24 . 2014-09-21 13:24    --------    d-----w-    c:\programdata\Malwarebytes
2014-09-21 13:13 . 2014-09-21 13:13    --------    d-----w-    c:\program files (x86)\AGEIA Technologies
2014-09-21 13:12 . 2014-09-13 20:13    613696    ----a-w-    c:\windows\SysWow64\nvStreaming.exe
2014-09-21 13:12 . 2014-09-21 13:12    --------    d-----w-    c:\windows\SysWow64\NV
2014-09-21 13:12 . 2014-09-21 13:12    --------    d-----w-    c:\windows\system32\NV
2014-09-21 12:49 . 2014-08-18 22:05    596480    ----a-w-    c:\windows\system32\ieui.dll
2014-09-21 12:37 . 2014-09-04 19:14    38048    ----a-w-    c:\windows\system32\drivers\nvvad64v.sys
2014-09-21 12:37 . 2014-09-04 19:14    32416    ----a-w-    c:\windows\SysWow64\nvaudcap32v.dll
2014-09-21 11:28 . 2014-06-27 02:08    2777088    ----a-w-    c:\windows\system32\msmpeg2vdec.dll
2014-09-21 11:28 . 2014-06-27 01:45    2285056    ----a-w-    c:\windows\SysWow64\msmpeg2vdec.dll
2014-09-21 11:26 . 2014-03-09 21:48    171160    ----a-w-    c:\windows\system32\infocardapi.dll
2014-09-21 11:26 . 2014-03-09 21:48    1389208    ----a-w-    c:\windows\system32\icardagt.exe
2014-09-21 11:26 . 2014-03-09 21:47    99480    ----a-w-    c:\windows\SysWow64\infocardapi.dll
2014-09-21 11:26 . 2014-03-09 21:47    619672    ----a-w-    c:\windows\SysWow64\icardagt.exe
2014-09-21 11:26 . 2014-06-30 22:24    8856    ----a-w-    c:\windows\system32\icardres.dll
2014-09-21 11:26 . 2014-06-30 22:14    8856    ----a-w-    c:\windows\SysWow64\icardres.dll
2014-09-21 11:25 . 2014-06-06 06:16    35480    ----a-w-    c:\windows\SysWow64\TsWpfWrp.exe
2014-09-21 11:25 . 2014-06-06 06:12    35480    ----a-w-    c:\windows\system32\TsWpfWrp.exe
2014-09-21 11:07 . 2014-01-09 02:22    5694464    ----a-w-    c:\windows\SysWow64\mstscax.dll
2014-09-21 11:06 . 2014-06-24 03:29    2565120    ----a-w-    c:\windows\system32\d3d10warp.dll
2014-09-21 11:05 . 2014-05-30 06:45    497152    ----a-w-    c:\windows\system32\drivers\afd.sys
2014-09-21 11:05 . 2014-08-23 02:07    404480    ----a-w-    c:\windows\system32\gdi32.dll
2014-09-21 11:05 . 2014-08-23 00:59    3163648    ----a-w-    c:\windows\system32\win32k.sys
2014-09-21 11:05 . 2014-08-23 01:45    311808    ----a-w-    c:\windows\SysWow64\gdi32.dll
2014-09-21 11:01 . 2014-07-14 02:02    1216000    ----a-w-    c:\windows\system32\rpcrt4.dll
2014-09-21 11:01 . 2014-07-14 01:40    664064    ----a-w-    c:\windows\SysWow64\rpcrt4.dll
2014-09-19 16:27 . 2014-09-19 16:27    71344    ----a-w-    c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-09-19 16:27 . 2014-09-19 16:27    701104    ----a-w-    c:\windows\SysWow64\FlashPlayerApp.exe
2014-09-18 20:50 . 2014-09-18 20:50    --------    d-----w-    c:\programdata\Orbit
2014-09-16 21:36 . 2014-09-17 02:13    2193560    ----a-w-    c:\windows\SysWow64\nvspcap.dll
2014-09-16 21:36 . 2014-09-17 02:13    1291280    ----a-w-    c:\windows\SysWow64\nvspbridge.dll
2014-09-16 21:36 . 2014-09-17 02:12    2799784    ----a-w-    c:\windows\system32\nvspcap64.dll
2014-09-16 21:36 . 2014-09-17 02:12    1715224    ----a-w-    c:\windows\system32\nvspbridge64.dll
2014-09-16 21:32 . 2014-09-04 19:14    34976    ----a-w-    c:\windows\system32\nvaudcap64v.dll
2014-09-16 21:32 . 2014-09-13 23:48    16875856    ----a-w-    c:\windows\SysWow64\nvd3dum.dll
2014-09-16 21:32 . 2014-07-02 20:48    1890080    ----a-w-    c:\windows\system32\nvdispco6434052.dll
2014-09-16 21:32 . 2014-07-02 20:48    1539928    ----a-w-    c:\windows\system32\nvdispgenco6434052.dll
2014-09-15 22:11 . 2014-09-15 22:11    --------    d-----w-    c:\users\metalowa_glowa\AppData\Local\Game Launcher
2014-09-12 16:18 . 2014-09-12 16:18    --------    d-----w-    c:\programdata\WarThunder
2014-09-01 20:26 . 2014-09-19 16:27    --------    d-----w-    c:\users\metalowa_glowa\AppData\Local\Adobe
2014-09-01 17:26 . 2014-09-01 17:26    --------    d-----w-    c:\programdata\McAfee
.
.
.
((((((((((((((((((((((((((((((((((((((((   Sekcja Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-09-15 07:06 . 2012-08-07 18:20    278152    ------w-    c:\windows\system32\MpSigStub.exe
2014-09-13 23:48 . 2014-01-27 09:46    867528    ----a-w-    c:\windows\SysWow64\nvumdshim.dll
2014-09-13 23:48 . 2012-08-07 16:00    984424    ----a-w-    c:\windows\system32\nvumdshimx.dll
2014-09-13 23:48 . 2012-08-07 16:00    3223120    ----a-w-    c:\windows\system32\nvapi64.dll
2014-09-13 23:48 . 2012-08-07 16:00    156840    ----a-w-    c:\windows\SysWow64\nvinit.dll
2014-09-13 21:53 . 2012-08-07 16:01    6890696    ----a-w-    c:\windows\system32\nvcpl.dll
2014-09-13 21:53 . 2012-08-07 16:01    3529872    ----a-w-    c:\windows\system32\nvsvc64.dll
2014-09-13 21:53 . 2012-08-07 16:01    934216    ----a-w-    c:\windows\system32\nvvsvc.exe
2014-09-13 21:53 . 2012-08-07 16:01    67072    ----a-w-    c:\windows\system32\nv3dappshextr.dll
2014-09-13 21:53 . 2012-08-07 16:01    62608    ----a-w-    c:\windows\system32\nvshext.dll
2014-09-13 21:53 . 2012-08-07 16:01    385168    ----a-w-    c:\windows\system32\nvmctray.dll
2014-09-13 21:53 . 2012-08-07 16:01    2557640    ----a-w-    c:\windows\system32\nvsvcr.dll
2014-09-13 21:53 . 2012-08-07 16:01    1087688    ----a-w-    c:\windows\system32\nv3dappshext.dll
2014-09-11 15:37 . 2012-08-07 16:01    3961833    ----a-w-    c:\windows\system32\nvcoproc.bin
2014-08-29 11:01 . 2012-08-07 18:20    101694776    ----a-w-    c:\windows\system32\MRT.exe
2014-08-17 13:50 . 2013-10-20 18:11    73728    ----a-r-    c:\users\metalowa_glowa\AppData\Roaming\Microsoft\Installer\{7130468A-F53F-4698-8C09-A339EA3B05E6}\NewShortcut47_74B9CE5DF1F4447F982DCA29A461B529.exe
2014-08-17 13:50 . 2013-10-20 18:11    73728    ----a-r-    c:\users\metalowa_glowa\AppData\Roaming\Microsoft\Installer\{7130468A-F53F-4698-8C09-A339EA3B05E6}\NewShortcut46_74B9CE5DF1F4447F982DCA29A461B529.exe
2014-08-17 13:50 . 2013-10-20 18:11    49152    ----a-r-    c:\users\metalowa_glowa\AppData\Roaming\Microsoft\Installer\{7130468A-F53F-4698-8C09-A339EA3B05E6}\Uninstall_QA_OTI_H_FE5D756F71E147C4972AD6775344B40B.exe
2014-08-17 13:50 . 2013-10-20 18:11    53248    ----a-r-    c:\users\metalowa_glowa\AppData\Roaming\Microsoft\Installer\{7130468A-F53F-4698-8C09-A339EA3B05E6}\ARPPRODUCTICON.exe
2014-08-17 13:50 . 2013-10-20 18:11    49152    ----a-r-    c:\users\metalowa_glowa\AppData\Roaming\Microsoft\Installer\{7130468A-F53F-4698-8C09-A339EA3B05E6}\NewShortcut2_1C7B7089989A424FB39D41A32581C775.exe
2014-07-25 00:35 . 2014-07-25 00:35    875688    ----a-w-    c:\windows\SysWow64\msvcr120_clr0400.dll
2014-07-24 21:47 . 2014-07-24 21:47    869544    ----a-w-    c:\windows\system32\msvcr120_clr0400.dll
2014-07-11 13:10 . 2014-02-07 14:37    427360    ----a-w-    c:\windows\system32\drivers\aswsp.sys
2014-07-11 13:10 . 2014-02-07 14:37    92008    ----a-w-    c:\windows\system32\drivers\aswstm.sys
2014-07-11 13:10 . 2014-02-07 14:37    65776    ----a-w-    c:\windows\system32\drivers\aswRvrt.sys
2014-07-11 13:10 . 2014-02-07 14:37    224896    ----a-w-    c:\windows\system32\drivers\aswVmm.sys
2014-07-11 13:10 . 2014-02-07 14:37    1041168    ----a-w-    c:\windows\system32\drivers\aswsnx.sys
2014-07-11 13:10 . 2014-02-07 14:37    79184    ----a-w-    c:\windows\system32\drivers\aswMonFlt.sys
2014-07-11 13:10 . 2014-04-24 17:24    29208    ----a-w-    c:\windows\system32\drivers\aswHwid.sys
2014-07-11 13:10 . 2014-02-07 14:37    93568    ----a-w-    c:\windows\system32\drivers\aswRdr2.sys
2014-07-11 13:10 . 2012-08-07 15:47    307344    ----a-w-    c:\windows\system32\aswBoot.exe
2014-07-11 13:10 . 2014-07-11 13:10    43152    ----a-w-    c:\windows\avastSS.scr
2014-06-30 18:05 . 2014-06-30 18:05    194048    ----a-w-    c:\windows\SysWow64\elshyph.dll
2014-06-30 18:05 . 2014-06-30 18:05    86016    ----a-w-    c:\windows\SysWow64\iesysprep.dll
2014-06-30 18:05 . 2014-06-30 18:05    74240    ----a-w-    c:\windows\SysWow64\SetIEInstalledDate.exe
2014-06-30 18:05 . 2014-06-30 18:05    71680    ----a-w-    c:\windows\SysWow64\RegisterIEPKEYs.exe
2014-06-30 18:05 . 2014-06-30 18:05    645120    ----a-w-    c:\windows\SysWow64\jsIntl.dll
2014-06-30 18:05 . 2014-06-30 18:05    62464    ----a-w-    c:\windows\SysWow64\tdc.ocx
2014-06-30 18:05 . 2014-06-30 18:05    48640    ----a-w-    c:\windows\SysWow64\mshtmler.dll
2014-06-30 18:05 . 2014-06-30 18:05    36352    ----a-w-    c:\windows\SysWow64\imgutil.dll
2014-06-30 18:05 . 2014-06-30 18:05    337408    ----a-w-    c:\windows\SysWow64\html.iec
2014-06-30 18:05 . 2014-06-30 18:05    24576    ----a-w-    c:\windows\SysWow64\licmgr10.dll
2014-06-30 18:05 . 2014-06-30 18:05    235008    ----a-w-    c:\windows\system32\elshyph.dll
2014-06-30 18:05 . 2014-06-30 18:05    182272    ----a-w-    c:\windows\SysWow64\msls31.dll
2014-06-30 18:05 . 2014-06-30 18:05    151552    ----a-w-    c:\windows\SysWow64\iexpress.exe
2014-06-30 18:05 . 2014-06-30 18:05    139264    ----a-w-    c:\windows\SysWow64\wextract.exe
2014-06-30 18:05 . 2014-06-30 18:05    13312    ----a-w-    c:\windows\SysWow64\mshta.exe
2014-06-30 18:05 . 2014-06-30 18:05    111616    ----a-w-    c:\windows\SysWow64\IEAdvpack.dll
2014-06-30 18:05 . 2014-06-30 18:05    942592    ----a-w-    c:\windows\system32\jsIntl.dll
2014-06-30 18:05 . 2014-06-30 18:05    90112    ----a-w-    c:\windows\system32\SetIEInstalledDate.exe
2014-06-30 18:05 . 2014-06-30 18:05    86016    ----a-w-    c:\windows\system32\RegisterIEPKEYs.exe
2014-06-30 18:05 . 2014-06-30 18:05    81408    ----a-w-    c:\windows\system32\icardie.dll
2014-06-30 18:05 . 2014-06-30 18:05    774144    ----a-w-    c:\windows\system32\jscript.dll
2014-06-30 18:05 . 2014-06-30 18:05    77312    ----a-w-    c:\windows\system32\tdc.ocx
2014-06-30 18:05 . 2014-06-30 18:05    62464    ----a-w-    c:\windows\system32\pngfilt.dll
2014-06-30 18:05 . 2014-06-30 18:05    616104    ----a-w-    c:\windows\system32\ieapfltr.dat
2014-06-30 18:05 . 2014-06-30 18:05    52224    ----a-w-    c:\windows\system32\msfeedsbs.dll
2014-06-30 18:05 . 2014-06-30 18:05    48640    ----a-w-    c:\windows\system32\mshtmler.dll
2014-06-30 18:05 . 2014-06-30 18:05    48128    ----a-w-    c:\windows\system32\imgutil.dll
2014-06-30 18:05 . 2014-06-30 18:05    413696    ----a-w-    c:\windows\system32\html.iec
2014-06-30 18:05 . 2014-06-30 18:05    30208    ----a-w-    c:\windows\system32\licmgr10.dll
2014-06-30 18:05 . 2014-06-30 18:05    247808    ----a-w-    c:\windows\system32\msls31.dll
2014-06-30 18:05 . 2014-06-30 18:05    243200    ----a-w-    c:\windows\system32\webcheck.dll
2014-06-30 18:05 . 2014-06-30 18:05    235520    ----a-w-    c:\windows\system32\url.dll
2014-06-30 18:05 . 2014-06-30 18:05    167424    ----a-w-    c:\windows\system32\iexpress.exe
2014-06-30 18:05 . 2014-06-30 18:05    147968    ----a-w-    c:\windows\system32\occache.dll
2014-06-30 18:05 . 2014-06-30 18:05    143872    ----a-w-    c:\windows\system32\wextract.exe
2014-06-30 18:05 . 2014-06-30 18:05    13824    ----a-w-    c:\windows\system32\mshta.exe
2014-06-30 18:05 . 2014-06-30 18:05    135680    ----a-w-    c:\windows\system32\iepeers.dll
2014-06-30 18:05 . 2014-06-30 18:05    13312    ----a-w-    c:\windows\system32\msfeedssync.exe
2014-06-30 18:05 . 2014-06-30 18:05    131072    ----a-w-    c:\windows\system32\IEAdvpack.dll
2014-06-30 18:05 . 2014-06-30 18:05    105984    ----a-w-    c:\windows\system32\iesysprep.dll
2014-06-30 18:05 . 2014-06-30 18:05    101376    ----a-w-    c:\windows\system32\inseng.dll
2014-06-30 18:04 . 2014-06-30 18:04    878080    ----a-w-    c:\windows\system32\advapi32.dll
2014-06-30 18:04 . 2014-06-30 18:04    859648    ----a-w-    c:\windows\system32\tdh.dll
2014-06-30 18:04 . 2014-06-30 18:04    640512    ----a-w-    c:\windows\SysWow64\advapi32.dll
2014-06-30 18:04 . 2014-06-30 18:04    619520    ----a-w-    c:\windows\SysWow64\tdh.dll
2014-06-30 18:04 . 2014-06-30 18:04    1732032    ----a-w-    c:\windows\system32\ntdll.dll
2014-06-30 18:04 . 2014-06-30 18:04    1292192    ----a-w-    c:\windows\SysWow64\ntdll.dll
2014-06-30 18:03 . 2014-06-30 18:03    327168    ----a-w-    c:\windows\system32\mswsock.dll
2014-06-30 18:03 . 2014-06-30 18:03    231424    ----a-w-    c:\windows\SysWow64\mswsock.dll
2014-06-30 18:03 . 2014-06-30 18:03    9728    ---ha-w-    c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-06-30 18:03 . 2014-06-30 18:03    9728    ---ha-w-    c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-06-30 18:03 . 2014-06-30 18:03    5632    ---ha-w-    c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-06-30 18:03 . 2014-06-30 18:03    5632    ---ha-w-    c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-06-30 18:03 . 2014-06-30 18:03    5632    ---ha-w-    c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2014-06-30 18:03 . 2014-06-30 18:03    5632    ---ha-w-    c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2014-06-30 18:03 . 2014-06-30 18:03    4096    ---ha-w-    c:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
2014-06-30 18:03 . 2014-06-30 18:03    4096    ---ha-w-    c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2014-06-30 18:03 . 2014-06-30 18:03    3584    ---ha-w-    c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2014-06-30 18:03 . 2014-06-30 18:03    3072    ---ha-w-    c:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
2014-06-30 18:03 . 2014-06-30 18:03    3072    ---ha-w-    c:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-06-30 18:03 . 2014-06-30 18:03    3072    ---ha-w-    c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2014-06-30 18:03 . 2014-06-30 18:03    3072    ---ha-w-    c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2014-06-30 18:03 . 2014-06-30 18:03    2560    ---ha-w-    c:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-06-30 18:03 . 2014-06-30 18:03    10752    ---ha-w-    c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll
2014-06-30 18:03 . 2014-06-30 18:03    2560    ---ha-w-    c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2014-06-30 18:03 . 2014-06-30 18:03    648192    ----a-w-    c:\windows\system32\d3d10level9.dll
2014-06-30 18:03 . 2014-06-30 18:03    604160    ----a-w-    c:\windows\SysWow64\d3d10level9.dll
2014-06-30 18:03 . 2014-06-30 18:03    522752    ----a-w-    c:\windows\system32\XpsGdiConverter.dll
.
.
(((((((((((((((((((((((((((((((((((((   Wpisy startowe rejestru   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane  
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2011-09-16 115048]
"LockStatusTray"="c:\windows\LockStatusTray.exe" [2008-02-19 192512]
"NSU_agent"="c:\program files (x86)\Nokia\Nokia Software Updater\nsu3ui_agent.exe" [2012-02-28 190768]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-08-01 4085896]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"HideSCAHealth"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 AMPPALP;Protokół Intel® Centrino® Wireless Bluetooth® + High Speed;c:\windows\system32\DRIVERS\amppal.sys;c:\windows\SYSNATIVE\DRIVERS\amppal.sys [x]
R3 cpudrv64;cpudrv64;c:\program files (x86)\SystemRequirementsLab\cpudrv64.sys;c:\program files (x86)\SystemRequirementsLab\cpudrv64.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 intaud_WaveExtensible;Intel WiDi Audio Device;c:\windows\system32\drivers\intelaud.sys;c:\windows\SYSNATIVE\drivers\intelaud.sys [x]
R3 iwdbus;IWD Bus Enumerator;c:\windows\system32\DRIVERS\iwdbus.sys;c:\windows\SYSNATIVE\DRIVERS\iwdbus.sys [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [x]
R3 nmwcdnsucx64;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsucx64.sys;c:\windows\SYSNATIVE\drivers\nmwcdnsucx64.sys [x]
R3 nmwcdnsux64;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsux64.sys;c:\windows\SYSNATIVE\drivers\nmwcdnsux64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Usługa Technologie aktywacji systemu Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 wdkmd;Intel WiDi KMD;c:\windows\system32\DRIVERS\WDKMD.sys;c:\windows\SYSNATIVE\DRIVERS\WDKMD.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S0 stdcfltn;Disk Class Filter Driver for Accelerometer;c:\windows\system32\DRIVERS\stdcfltn.sys;c:\windows\SYSNATIVE\DRIVERS\stdcfltn.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 nvkflt;nvkflt;c:\windows\system32\DRIVERS\nvkflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvkflt.sys [x]
S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [x]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 Bluetooth Device Monitor;Bluetooth Device Monitor;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe;c:\program files (x86)\Intel\Bluetooth\devmonsrv.exe [x]
S2 Bluetooth OBEX Service;Bluetooth OBEX Service;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe;c:\program files (x86)\Intel\Bluetooth\obexsrv.exe [x]
S2 BTHSSecurityMgr;Intel® Centrino® Wireless Bluetooth® + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [x]
S2 CodeMeter.exe;CodeMeter Runtime Server;c:\program files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe;c:\program files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe [x]
S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 RtkAudioService;Realtek Audio Service;c:\program files\Realtek\Audio\HDA\RtkAudioService64.exe;c:\program files\Realtek\Audio\HDA\RtkAudioService64.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 WMCoreService;Mobile Broadband Service;c:\program files (x86)\Dell\Dell WWAN\WMCore\mini_WMCore.exe servicemode;c:\program files (x86)\Dell\Dell WWAN\WMCore\mini_WMCore.exe servicemode [x]
S2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe [x]
S3 Acceler;Accelerometer Service;c:\windows\system32\DRIVERS\Accelern.sys;c:\windows\SYSNATIVE\DRIVERS\Accelern.sys [x]
S3 AMPPAL;Karta wirtualna Intel® Centrino® Wireless Bluetooth® + High Speed;c:\windows\system32\DRIVERS\AMPPAL.sys;c:\windows\SYSNATIVE\DRIVERS\AMPPAL.sys [x]
S3 Bluetooth Media Service;Bluetooth Media Service;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe;c:\program files (x86)\Intel\Bluetooth\mediasrv.exe [x]
S3 btmaux;Intel Bluetooth Auxiliary Service;c:\windows\system32\DRIVERS\btmaux.sys;c:\windows\SYSNATIVE\DRIVERS\btmaux.sys [x]
S3 btmhsf;btmhsf;c:\windows\system32\DRIVERS\btmhsf.sys;c:\windows\SYSNATIVE\DRIVERS\btmhsf.sys [x]
S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys;c:\windows\SYSNATIVE\DRIVERS\CtClsFlt.sys [x]
S3 iBtFltCoex;iBtFltCoex;c:\windows\system32\DRIVERS\iBtFltCoex.sys;c:\windows\SYSNATIVE\DRIVERS\iBtFltCoex.sys [x]
S3 ICCS;Intel® Integrated Clock Controller Service - Intel® ICCS;c:\program files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe [x]
S3 IntcDAud;Audio dla wyświetlaczy Intel®;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 qicflt;upper Device Filter Driver;c:\windows\system32\DRIVERS\qicflt.sys;c:\windows\SYSNATIVE\DRIVERS\qicflt.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-09-25 16:37    1096520    ----a-w-    c:\program files (x86)\Google\Chrome\Application\37.0.2062.124\Installer\chrmstp.exe
.
Zawartość folderu 'Zaplanowane zadania'
.
2014-09-28 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-09-10 20:31]
.
2014-09-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-09-10 20:31]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-07-11 13:10    634872    ----a-w-    c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GGDriveOverlay1]
@="{E68D0A50-3C40-4712-B90D-DCFA93FF2534}"
[HKEY_CLASSES_ROOT\CLSID\{E68D0A50-3C40-4712-B90D-DCFA93FF2534}]
2013-01-17 14:43    2023936    ----a-w-    c:\programdata\GG\ggdrive\ggdrive-overlay.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GGDriveOverlay2]
@="{E68D0A51-3C40-4712-B90D-DCFA93FF2534}"
[HKEY_CLASSES_ROOT\CLSID\{E68D0A51-3C40-4712-B90D-DCFA93FF2534}]
2013-01-17 14:43    2023936    ----a-w-    c:\programdata\GG\ggdrive\ggdrive-overlay.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GGDriveOverlay3]
@="{E68D0A52-3C40-4712-B90D-DCFA93FF2534}"
[HKEY_CLASSES_ROOT\CLSID\{E68D0A52-3C40-4712-B90D-DCFA93FF2534}]
2013-01-17 14:43    2023936    ----a-w-    c:\programdata\GG\ggdrive\ggdrive-overlay.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GGDriveOverlay4]
@="{E68D0A53-3C40-4712-B90D-DCFA93FF2534}"
[HKEY_CLASSES_ROOT\CLSID\{E68D0A53-3C40-4712-B90D-DCFA93FF2534}]
2013-01-17 14:43    2023936    ----a-w-    c:\programdata\GG\ggdrive\ggdrive-overlay.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2014-01-29 171992]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2014-01-29 399832]
"Persistence"="c:\windows\system32\igfxpers.exe" [2014-01-29 442328]
"BTMTrayAgent"="c:\program files (x86)\Intel\Bluetooth\btmshell.dll" [2011-10-18 10357008]
"XboxStat"="c:\program files\Microsoft Xbox 360 Accessories\XboxStat.exe" [2009-09-30 825184]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2014-09-17 2460488]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2014-09-17 2799784]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll c:\windows\System32\nvinitx.dll c:\windows\System32\nvinitx.dll c:\windows\System32\nvinitx.dll c:\windows\System32\nvinitx.dll c:\windows\System32\nvinitx.dll c:\windows\System32\nvinitx.dll
.
------- Skan uzupełniający -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.gazeta.pl/0,0.html?p=101
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&ksportuj do programu Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
Trusted Zone: dell.com
TCP: DhcpNameServer = 62.179.1.61 62.179.1.63
FF - ProfilePath - c:\users\metalowa_glowa\AppData\Roaming\Mozilla\Firefox\Profiles\rc4ac450.default-1411298163740\
.
- - - - USUNIĘTO PUSTE WPISY - - - -
.
AddRemove-Nokia PC Suite - c:\programdata\Installations\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}\Nokia_PC_Suite_pol_web.exe
AddRemove-Nokia Suite - c:\programdata\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\{EDB188F5-D8E8-42EE-89E0-F212DA48CB81}\Installer.exe
AddRemove-{8e70e4e1-06d7-470b-9f74-a51bef21088e} - c:\programdata\Package Cache\{8e70e4e1-06d7-470b-9f74-a51bef21088e}\vcredist_x86.exe
AddRemove-{95716cce-fc71-413f-8ad5-56c2892d4b3a} - c:\programdata\Package Cache\{95716cce-fc71-413f-8ad5-56c2892d4b3a}\vcredist_x86.exe
AddRemove-{a1909659-0a08-4554-8af1-2175904903a1} - c:\programdata\Package Cache\{a1909659-0a08-4554-8af1-2175904903a1}\vcredist_x64.exe
AddRemove-{ce085a78-074e-4823-8dc1-8a721b94b76d} - c:\programdata\Package Cache\{ce085a78-074e-4823-8dc1-8a721b94b76d}\vcredist_x86.exe
AddRemove-{e6d17d96-ddaa-476f-bb07-db601024ffb1} - c:\programdata\Package Cache\{e6d17d96-ddaa-476f-bb07-db601024ffb1}\Setup.exe
.
.
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1362770674-4107001041-3769634335-1000\Software\SecuROM\License information*]
"datasecu"=hex:62,ed,ed,6e,39,d7,95,4f,1c,90,e0,65,90,08,52,9a,a7,49,90,0e,e6,
   0c,20,10,ec,2e,c2,73,26,0e,7e,c5,f5,25,88,e5,d0,d6,15,d6,ce,c4,68,a3,e9,1c,\
"rkeysecu"=hex:54,93,1f,d5,14,e2,c7,5a,4b,31,42,f6,93,3f,9e,8b
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Czas ukończenia: 2014-09-28  19:29:12
ComboFix-quarantined-files.txt  2014-09-28 17:29
.
Przed: 17 330 020 352 bajtów wolnych
Po: 17 219 145 728 bajtów wolnych
.
- - End Of File - - 428046948550F8C451E314AE3DE9F2DB
A36C5E4F47E84449FF07ED3517B43A31
 

 

....and so is the Malwarebytes scan (with rootkits scan)



#6 ken545

ken545

    Malware Response Team


  • Malware Response Team
  • 1,685 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Space Coast of Florida
  • Local time:07:19 PM

Posted 06 October 2014 - 01:43 PM

Nothing bad on your CF log that needs to be removed. As long as your computer is running ok I don't see any need for updating your BIOS but I could be wrong.   If you want to do this you have to go to your manufacturers website only, because BIOS codes are written especially for your system by your manufacturer , downloading them somewhere else can lead to disaster

 

Lets clean out all your temp files

 

Open notepad (Start --> All Programs --> Accessories --> Notepad).
Please copy the entire contents of the code box below.
(To do this highlight the contents of the box, right click on it and select copy. Right-click in the open notepad and select Paste).
Save it to the same directory as FRST or FRST64 as fixlist.txt. (it has to be right next to FRST or FRST64) either in a directory you saved FRST or FRST64 or on your desktop if thats where you saved it.
You can use your mouse to drag Fixlist right next to FRST or FRST64, either above or below it but not on top of it.

Start
Hosts:
EmptyTemp:
End

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Then open FRST or FRST64 and click on fix
When finished FRST will generate a log on the Desktop (Fixlog.txt). Please post it to your reply.

 

 

 

 

 

 

Lets check further for a rootkit

 

 

Please download http://support.kaspersky.com/viruses/utility#

  • Extract it to your desktop
  • Double click TDSSKiller.exe
  • when the window opens, click on Change Parameters
  • under ”Additional options”, put a check mark in the box next to “Detect TDLFS File System”
  • click OK
  • Press Start Scan
    • As we are only looking for a log of what is on the machine right now > choose to skip whatever is found
    • Then click Continue > Reboot now
  • Copy and paste the log in your next reply
    • A copy of the log will be saved automatically to the root of the drive (typically C:\)

       

       


Edited by ken545, 06 October 2014 - 01:59 PM.

mvp_host.pngConsumer Security 2007-2008-2009-2010-2011-2012-2013-2014



donate.gif Please consider a donation to help me keep up my fight against malware.

 

Just a reminder that threads will be closed if no response in 3 days


#7 MetalowaGlowa

MetalowaGlowa
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Poland
  • Local time:01:19 AM

Posted 07 October 2014 - 10:57 AM

FRST64 log:

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 06-10-2014 01
Ran by metalowa_glowa at 2014-10-07 16:18:49 Run:1
Running from C:\Users\metalowa_glowa\Desktop\logi
Loaded Profile: metalowa_glowa (Available profiles: metalowa_glowa)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
Hosts:
EmptyTemp:
End
*****************

C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 682.5 MB temporary data.


The system needed a reboot.

==== End of Fixlog ====

 

 

 

and here is Tdsskiller:

 

16:24:42.0669 0x07d0  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
16:24:47.0169 0x07d0  ============================================================
16:24:47.0169 0x07d0  Current date / time: 2014/10/07 16:24:47.0169
16:24:47.0169 0x07d0  SystemInfo:
16:24:47.0170 0x07d0  
16:24:47.0170 0x07d0  OS Version: 6.1.7601 ServicePack: 1.0
16:24:47.0170 0x07d0  Product type: Workstation
16:24:47.0170 0x07d0  ComputerName: METALOWAGLOWA
16:24:47.0170 0x07d0  UserName: metalowa_glowa
16:24:47.0171 0x07d0  Windows directory: C:\Windows
16:24:47.0171 0x07d0  System windows directory: C:\Windows
16:24:47.0171 0x07d0  Running under WOW64
16:24:47.0171 0x07d0  Processor architecture: Intel x64
16:24:47.0171 0x07d0  Number of processors: 8
16:24:47.0171 0x07d0  Page size: 0x1000
16:24:47.0171 0x07d0  Boot type: Normal boot
16:24:47.0171 0x07d0  ============================================================
16:24:51.0494 0x07d0  KLMD registered as C:\Windows\system32\drivers\31175270.sys
16:24:51.0901 0x07d0  System UUID: {3F013FC9-04A0-0CAD-F47D-FED52DCFAB22}
16:24:52.0980 0x07d0  Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 ( 698.64 Gb ), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:24:52.0997 0x07d0  ============================================================
16:24:52.0997 0x07d0  \Device\Harddisk0\DR0:
16:24:52.0997 0x07d0  MBR partitions:
16:24:52.0997 0x07d0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x33000, BlocksNum 0x32000
16:24:52.0997 0x07d0  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x65000, BlocksNum 0x15F5F000
16:24:52.0997 0x07d0  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x15FC4000, BlocksNum 0x4044F000
16:24:52.0997 0x07d0  ============================================================
16:24:53.0024 0x07d0  C: <-> \Device\Harddisk0\DR0\Partition2
16:24:53.0053 0x07d0  D: <-> \Device\Harddisk0\DR0\Partition3
16:24:53.0075 0x07d0  F: <-> \Device\Harddisk0\DR0\Partition1
16:24:53.0076 0x07d0  ============================================================
16:24:53.0076 0x07d0  Initialize success
16:24:53.0076 0x07d0  ============================================================
16:25:25.0937 0x1360  ============================================================
16:25:25.0937 0x1360  Scan started
16:25:25.0937 0x1360  Mode: Manual; TDLFS;
16:25:25.0937 0x1360  ============================================================
16:25:25.0937 0x1360  KSN ping started
16:26:01.0243 0x1360  KSN ping finished: true
16:26:03.0364 0x1360  ================ Scan system memory ========================
16:26:03.0364 0x1360  System memory - ok
16:26:03.0364 0x1360  ================ Scan services =============================
16:26:03.0536 0x1360  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
16:26:03.0567 0x1360  1394ohci - ok
16:26:03.0630 0x1360  [ E0065CBF1A25C015C218457D2CD522B9, 610E90D70FAF624664C5111030C85CF27703DED031CB7293334EB4D67D0274C9 ] Acceler         C:\Windows\system32\DRIVERS\Accelern.sys
16:26:03.0630 0x1360  Acceler - ok
16:26:03.0676 0x1360  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
16:26:03.0708 0x1360  ACPI - ok
16:26:03.0723 0x1360  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
16:26:03.0739 0x1360  AcpiPmi - ok
16:26:03.0817 0x1360  [ D19C4EE2AC7C47B8F5F84FFF1A789D8A, F419E159D3E428A3929A1A983142E7B0783D3F104EE9587585418E51011E4B8F ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:26:03.0832 0x1360  AdobeARMservice - ok
16:26:03.0910 0x1360  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
16:26:03.0957 0x1360  adp94xx - ok
16:26:03.0988 0x1360  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
16:26:04.0035 0x1360  adpahci - ok
16:26:04.0082 0x1360  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
16:26:04.0098 0x1360  adpu320 - ok
16:26:04.0129 0x1360  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:26:04.0144 0x1360  AeLookupSvc - ok
16:26:04.0378 0x1360  [ D1E343BC00136CE03C4D403194D06A80, 94F2543164A2CEA179EDE53E1294EE24391A59CAEFF83BA5CE9385E8E686E89C ] AERTFilters     C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
16:26:04.0394 0x1360  AERTFilters - ok
16:26:04.0566 0x1360  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
16:26:04.0597 0x1360  AFD - ok
16:26:04.0628 0x1360  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
16:26:04.0628 0x1360  agp440 - ok
16:26:04.0659 0x1360  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
16:26:04.0659 0x1360  ALG - ok
16:26:04.0690 0x1360  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
16:26:04.0690 0x1360  aliide - ok
16:26:04.0706 0x1360  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
16:26:04.0706 0x1360  amdide - ok
16:26:04.0737 0x1360  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
16:26:04.0753 0x1360  AmdK8 - ok
16:26:04.0768 0x1360  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
16:26:04.0784 0x1360  AmdPPM - ok
16:26:04.0815 0x1360  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
16:26:04.0831 0x1360  amdsata - ok
16:26:04.0846 0x1360  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
16:26:04.0878 0x1360  amdsbs - ok
16:26:04.0893 0x1360  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
16:26:04.0909 0x1360  amdxata - ok
16:26:04.0956 0x1360  [ 9C385432C11AECC647E8D0BC7663AB48, 4DDD1DCA5FD515EA95AD12BAEE42082BE4111B9FA13FFC101F5E7BD83290AC0F ] AMPPAL          C:\Windows\system32\DRIVERS\AMPPAL.sys
16:26:04.0971 0x1360  AMPPAL - ok
16:26:05.0002 0x1360  [ 9C385432C11AECC647E8D0BC7663AB48, 4DDD1DCA5FD515EA95AD12BAEE42082BE4111B9FA13FFC101F5E7BD83290AC0F ] AMPPALP         C:\Windows\system32\DRIVERS\amppal.sys
16:26:05.0002 0x1360  AMPPALP - ok
16:26:05.0096 0x1360  [ CCB61487A9D9416EC8985279E37608BF, 02097150E4C80F58417E7FF8617B14452F2B3B183ABE8075BC7EB1C1F08B5DA8 ] AMPPALR3        C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
16:26:05.0143 0x1360  AMPPALR3 - ok
16:26:05.0190 0x1360  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
16:26:05.0190 0x1360  AppID - ok
16:26:05.0221 0x1360  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
16:26:05.0236 0x1360  AppIDSvc - ok
16:26:05.0268 0x1360  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
16:26:05.0268 0x1360  Appinfo - ok
16:26:05.0314 0x1360  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
16:26:05.0330 0x1360  arc - ok
16:26:05.0346 0x1360  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
16:26:05.0361 0x1360  arcsas - ok
16:26:05.0455 0x1360  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:26:05.0517 0x1360  aspnet_state - ok
16:26:05.0580 0x1360  [ D95E64416A4A3ED6986E0F474DA934BD, DBB4A0DED0DABE1F8FF0DB8C0E9EC4EC906A85A45DC0AEC013A8744F9BF5D40E ] aswHwid         C:\Windows\system32\drivers\aswHwid.sys
16:26:05.0580 0x1360  aswHwid - ok
16:26:05.0626 0x1360  [ FF1E537A3632CBB9A0BF72B9FD0878D5, B26E6A1F6E6FA5280A12861EFAD44D8F49353F47B21843EBA73E149CF613DCBC ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
16:26:05.0642 0x1360  aswMonFlt - ok
16:26:05.0704 0x1360  [ A5757DE5F9C83AB40667A53D5126EA40, 58B72B1B126CF641188703CE82E26BEB0C41AD7587CFFCCCE9E3C64CC7AACC90 ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
16:26:05.0704 0x1360  aswRdr - ok
16:26:05.0736 0x1360  [ 645D97385F3F284FB5604F9B970F4D24, 15A9D7F0F4C1062210E4E744A9069B8645177D19F35B8740D74022639DC05F2E ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
16:26:05.0751 0x1360  aswRvrt - ok
16:26:05.0845 0x1360  [ B8FDEDE963B82CFD23B3A53A3084666D, 3537E5B684FB6F0AA589A5FA7CD111E1744DF384AB1A266D4114100F104ED11B ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
16:26:05.0907 0x1360  aswSnx - ok
16:26:06.0048 0x1360  [ 0DEDC041DF594AEC2C3BD00417CFAF60, 0D3A8924503986546EE256D185225C0B080FDB6B0C8B0BED7516B07A7334371B ] aswSP           C:\Windows\system32\drivers\aswSP.sys
16:26:06.0063 0x1360  aswSP - ok
16:26:06.0172 0x1360  [ 48DED912CDE54FC0923B9858512366E1, 9B216B934408A7CB3CE2B41240B7EF01EAA3BC066211B784064FF8AC97A29B4E ] aswStm          C:\Windows\system32\drivers\aswStm.sys
16:26:06.0172 0x1360  aswStm - ok
16:26:06.0266 0x1360  [ 471A311745848B80339436688A8286E6, E51C57236CEC19AC38E85D115DB97875517D837811188AD2E53FA49055B53890 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
16:26:06.0282 0x1360  aswVmm - ok
16:26:06.0297 0x1360  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
16:26:06.0297 0x1360  AsyncMac - ok
16:26:06.0328 0x1360  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
16:26:06.0328 0x1360  atapi - ok
16:26:06.0422 0x1360  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:26:06.0469 0x1360  AudioEndpointBuilder - ok
16:26:06.0516 0x1360  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
16:26:06.0562 0x1360  AudioSrv - ok
16:26:06.0625 0x1360  [ 73F5C13B431915BAE35254B4E95DFB71, 393A045859382C44133C004598B1512048046BCC129FED2247A77FDBFCDB6DFF ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
16:26:06.0640 0x1360  avast! Antivirus - ok
16:26:06.0672 0x1360  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
16:26:06.0687 0x1360  AxInstSV - ok
16:26:06.0734 0x1360  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
16:26:06.0781 0x1360  b06bdrv - ok
16:26:06.0828 0x1360  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
16:26:06.0859 0x1360  b57nd60a - ok
16:26:06.0890 0x1360  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
16:26:06.0906 0x1360  BDESVC - ok
16:26:06.0921 0x1360  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
16:26:06.0937 0x1360  Beep - ok
16:26:06.0999 0x1360  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
16:26:07.0046 0x1360  BFE - ok
16:26:07.0124 0x1360  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll
16:26:07.0218 0x1360  BITS - ok
16:26:07.0249 0x1360  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
16:26:07.0264 0x1360  blbdrive - ok
16:26:07.0405 0x1360  [ 0F46D2845BD7DDACA52340ECC2B65DA3, 275984285080DF9907632964531B6F60F508D4B3A5EDE981E3441A962B8038B4 ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
16:26:07.0452 0x1360  Bluetooth Device Monitor - ok
16:26:07.0576 0x1360  [ 3341DE556EC28252D603277609EEF8BF, 49964DBF402AF9465A911FF484FEFF4EFE74AFB47635B4AD7860AC21D2C5D7EA ] Bluetooth Media Service C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
16:26:07.0654 0x1360  Bluetooth Media Service - ok
16:26:07.0764 0x1360  [ 5D5C3EC9BE1107DEDF0FEB55B7F3BD77, E1FFDF4399919C7E1AAF0A30A194EFB324C9659A69847F8FB79E5A861B670D40 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
16:26:07.0826 0x1360  Bluetooth OBEX Service - ok
16:26:07.0857 0x1360  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
16:26:07.0857 0x1360  bowser - ok
16:26:07.0888 0x1360  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:26:07.0888 0x1360  BrFiltLo - ok
16:26:07.0904 0x1360  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:26:07.0904 0x1360  BrFiltUp - ok
16:26:07.0935 0x1360  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
16:26:07.0935 0x1360  BridgeMP - ok
16:26:07.0998 0x1360  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
16:26:08.0013 0x1360  Browser - ok
16:26:08.0044 0x1360  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
16:26:08.0076 0x1360  Brserid - ok
16:26:08.0091 0x1360  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
16:26:08.0091 0x1360  BrSerWdm - ok
16:26:08.0107 0x1360  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
16:26:08.0122 0x1360  BrUsbMdm - ok
16:26:08.0138 0x1360  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
16:26:08.0138 0x1360  BrUsbSer - ok
16:26:08.0169 0x1360  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
16:26:08.0185 0x1360  BthEnum - ok
16:26:08.0200 0x1360  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
16:26:08.0216 0x1360  BTHMODEM - ok
16:26:08.0247 0x1360  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
16:26:08.0247 0x1360  BthPan - ok
16:26:08.0325 0x1360  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
16:26:08.0356 0x1360  BTHPORT - ok
16:26:08.0388 0x1360  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
16:26:08.0403 0x1360  bthserv - ok
16:26:08.0450 0x1360  [ D30286FF3C7B6318C024D2BC2955C1BF, 47863D046C94A5C19F7D4E0BA393E6FE1E249C78FAB9B8705F7DD2CD87EAC16C ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
16:26:08.0450 0x1360  BTHSSecurityMgr - ok
16:26:08.0481 0x1360  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
16:26:08.0481 0x1360  BTHUSB - ok
16:26:08.0512 0x1360  [ AB0A33001FE7EBB209D9D52CED11BE1A, 1761D2EEEC745E649DDF8465E465F4C7EB07965E92B8E3D69B2CB9D634A167CF ] btmaux          C:\Windows\system32\DRIVERS\btmaux.sys
16:26:08.0512 0x1360  btmaux - ok
16:26:08.0559 0x1360  [ 5BA4C6F82A5CA3307C0579D9F7B36E28, 4F6719AFB08BFE18C9124488233EC345BEF06D05D8E30EB9BBB8980446A4C08E ] btmhsf          C:\Windows\system32\DRIVERS\btmhsf.sys
16:26:08.0575 0x1360  btmhsf - ok
16:26:08.0590 0x1360  catchme - ok
16:26:08.0622 0x1360  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
16:26:08.0637 0x1360  cdfs - ok
16:26:08.0684 0x1360  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
16:26:08.0684 0x1360  cdrom - ok
16:26:08.0731 0x1360  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
16:26:08.0731 0x1360  CertPropSvc - ok
16:26:08.0778 0x1360  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
16:26:08.0778 0x1360  circlass - ok
16:26:08.0824 0x1360  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
16:26:08.0856 0x1360  CLFS - ok
16:26:08.0902 0x1360  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:26:08.0902 0x1360  clr_optimization_v2.0.50727_32 - ok
16:26:08.0949 0x1360  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:26:08.0965 0x1360  clr_optimization_v2.0.50727_64 - ok
16:26:09.0043 0x1360  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:26:09.0136 0x1360  clr_optimization_v4.0.30319_32 - ok
16:26:09.0168 0x1360  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:26:09.0183 0x1360  clr_optimization_v4.0.30319_64 - ok
16:26:09.0230 0x1360  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
16:26:09.0230 0x1360  CmBatt - ok
16:26:09.0277 0x1360  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
16:26:09.0292 0x1360  cmdide - ok
16:26:09.0386 0x1360  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
16:26:09.0417 0x1360  CNG - ok
16:26:09.0682 0x1360  [ 360959BBD4F451E1AB811F4304232766, 7BAA78590F2F656DC8D8C31EEDB7ED17B55C5EB3218A60A0EB90AFA323C01BCA ] CodeMeter.exe   C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
16:26:09.0838 0x1360  CodeMeter.exe - ok
16:26:09.0870 0x1360  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
16:26:09.0870 0x1360  Compbatt - ok
16:26:09.0901 0x1360  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
16:26:09.0916 0x1360  CompositeBus - ok
16:26:09.0916 0x1360  COMSysApp - ok
16:26:10.0072 0x1360  [ 08F934092E0429BADF88E9F91DB0F61E, 6E9091C006FFFF261DC61C8E9A45219E47C351296E5355FC4B7242F30E1DDFE3 ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe
16:26:10.0104 0x1360  cphs - ok
16:26:10.0166 0x1360  [ 3CA734CE373E5675FBC15CA2C45228E5, A6C6E9FABDE5EA18D266DB71C0CC6B51D682116D1898CCB4E9BA730F15C44B32 ] cpudrv64        C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys
16:26:10.0166 0x1360  cpudrv64 - ok
16:26:10.0182 0x1360  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
16:26:10.0197 0x1360  crcdisk - ok
16:26:10.0244 0x1360  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
16:26:10.0260 0x1360  CryptSvc - ok
16:26:10.0306 0x1360  [ ED5CF92396A62F4C15110DCDB5E854D9, CD26216B8B3F558A0466843C8161E86EEDB78E6031E1AC0A00DCDE700A2B6EE2 ] CtClsFlt        C:\Windows\system32\DRIVERS\CtClsFlt.sys
16:26:10.0322 0x1360  CtClsFlt - ok
16:26:10.0416 0x1360  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
16:26:10.0478 0x1360  DcomLaunch - ok
16:26:10.0525 0x1360  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
16:26:10.0556 0x1360  defragsvc - ok
16:26:10.0587 0x1360  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
16:26:10.0603 0x1360  DfsC - ok
16:26:10.0665 0x1360  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
16:26:10.0728 0x1360  Dhcp - ok
16:26:10.0759 0x1360  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
16:26:10.0774 0x1360  discache - ok
16:26:10.0790 0x1360  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
16:26:10.0806 0x1360  Disk - ok
16:26:10.0837 0x1360  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
16:26:10.0852 0x1360  Dnscache - ok
16:26:10.0899 0x1360  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
16:26:10.0962 0x1360  dot3svc - ok
16:26:10.0993 0x1360  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
16:26:11.0008 0x1360  DPS - ok
16:26:11.0040 0x1360  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
16:26:11.0055 0x1360  drmkaud - ok
16:26:11.0086 0x1360  [ 46571ED73AE84469DCA53081D33CF3C8, 8BB386BB4F6AD39F06A8607CD1DF3D67CFA45BBE52E40EDB90EB8C862283EBFF ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
16:26:11.0118 0x1360  dtsoftbus01 - ok
16:26:11.0211 0x1360  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
16:26:11.0274 0x1360  DXGKrnl - ok
16:26:11.0320 0x1360  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
16:26:11.0336 0x1360  EapHost - ok
16:26:11.0554 0x1360  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
16:26:11.0788 0x1360  ebdrv - ok
16:26:11.0976 0x1360  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
16:26:11.0976 0x1360  EFS - ok
16:26:12.0475 0x1360  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
16:26:12.0709 0x1360  ehRecvr - ok
16:26:12.0958 0x1360  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
16:26:12.0974 0x1360  ehSched - ok
16:26:13.0130 0x1360  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
16:26:13.0177 0x1360  elxstor - ok
16:26:13.0208 0x1360  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
16:26:13.0224 0x1360  ErrDev - ok
16:26:13.0286 0x1360  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
16:26:13.0473 0x1360  EventSystem - ok
16:26:13.0598 0x1360  [ E7ECD510AED32C19477976310173FAC3, BC68505D654D3742FB59C51715C51B5DBDF89574A0A446B16E612E17058A89ED ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
16:26:13.0629 0x1360  EvtEng - ok
16:26:13.0645 0x1360  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
16:26:13.0676 0x1360  exfat - ok
16:26:13.0707 0x1360  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
16:26:13.0723 0x1360  fastfat - ok
16:26:13.0801 0x1360  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
16:26:13.0848 0x1360  Fax - ok
16:26:13.0879 0x1360  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
16:26:13.0879 0x1360  fdc - ok
16:26:13.0910 0x1360  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
16:26:13.0910 0x1360  fdPHost - ok
16:26:13.0926 0x1360  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
16:26:13.0926 0x1360  FDResPub - ok
16:26:13.0941 0x1360  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
16:26:13.0957 0x1360  FileInfo - ok
16:26:13.0972 0x1360  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
16:26:13.0972 0x1360  Filetrace - ok
16:26:13.0988 0x1360  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
16:26:13.0988 0x1360  flpydisk - ok
16:26:14.0019 0x1360  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
16:26:14.0050 0x1360  FltMgr - ok
16:26:14.0144 0x1360  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
16:26:14.0238 0x1360  FontCache - ok
16:26:14.0300 0x1360  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:26:14.0300 0x1360  FontCache3.0.0.0 - ok
16:26:14.0331 0x1360  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
16:26:14.0331 0x1360  FsDepends - ok
16:26:14.0362 0x1360  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
16:26:14.0362 0x1360  Fs_Rec - ok
16:26:14.0394 0x1360  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
16:26:14.0409 0x1360  fvevol - ok
16:26:14.0456 0x1360  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
16:26:14.0456 0x1360  gagp30kx - ok
16:26:14.0596 0x1360  [ A27A06D8359BC5202F2F8E3240DE205F, C2BB64106D6894E6CF45121FE3ECCDE2A00CAE9268CF5ECA11F436C10DBFC6F0 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
16:26:14.0643 0x1360  GfExperienceService - ok
16:26:14.0752 0x1360  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
16:26:14.0815 0x1360  gpsvc - ok
16:26:14.0877 0x1360  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:26:14.0877 0x1360  gupdate - ok
16:26:14.0893 0x1360  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:26:14.0893 0x1360  gupdatem - ok
16:26:14.0940 0x1360  [ C1B577B2169900F4CF7190C39F085794, 73E104B96A48F4C80D8C37254ECB0891D15C0D2F0C251B57C168F90D60316447 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
16:26:14.0955 0x1360  gusvc - ok
16:26:14.0971 0x1360  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
16:26:14.0986 0x1360  hcw85cir - ok
16:26:15.0033 0x1360  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:26:15.0064 0x1360  HdAudAddService - ok
16:26:15.0111 0x1360  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
16:26:15.0111 0x1360  HDAudBus - ok
16:26:15.0127 0x1360  hid7906 - ok
16:26:15.0142 0x1360  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
16:26:15.0158 0x1360  HidBatt - ok
16:26:15.0174 0x1360  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
16:26:15.0174 0x1360  HidBth - ok
16:26:15.0205 0x1360  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
16:26:15.0220 0x1360  HidIr - ok
16:26:15.0236 0x1360  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
16:26:15.0252 0x1360  hidserv - ok
16:26:15.0298 0x1360  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
16:26:15.0298 0x1360  HidUsb - ok
16:26:15.0314 0x1360  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
16:26:15.0330 0x1360  hkmsvc - ok
16:26:15.0361 0x1360  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:26:15.0392 0x1360  HomeGroupListener - ok
16:26:15.0423 0x1360  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:26:15.0439 0x1360  HomeGroupProvider - ok
16:26:15.0470 0x1360  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
16:26:15.0470 0x1360  HpSAMD - ok
16:26:15.0532 0x1360  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
16:26:15.0595 0x1360  HTTP - ok
16:26:15.0610 0x1360  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
16:26:15.0610 0x1360  hwpolicy - ok
16:26:15.0626 0x1360  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
16:26:15.0642 0x1360  i8042prt - ok
16:26:15.0688 0x1360  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
16:26:15.0720 0x1360  iaStorV - ok
16:26:15.0751 0x1360  [ 806422F30DF9CE8307457485779C77B7, C70C9D778688B8D67D1AD76D5149AA3D46DC7029CD403BAEDA68A63EBFB96768 ] iBtFltCoex      C:\Windows\system32\DRIVERS\iBtFltCoex.sys
16:26:15.0751 0x1360  iBtFltCoex - ok
16:26:15.0829 0x1360  [ 83FF82FE209E7997067B375DAD6CF23D, E312DD068E51DBF96A8232D7D1C9F158652FDA23649655F1102928B320795091 ] ICCS            C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe
16:26:15.0844 0x1360  ICCS - ok
16:26:15.0907 0x1360  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:26:15.0954 0x1360  idsvc - ok
16:26:15.0985 0x1360  IEEtwCollectorService - ok
16:26:16.0250 0x1360  [ 8C44E6B688790E2AD3846C97661C54F1, CB487D167EDA3C1E30BD5FB8F98C15EB9E75A6FB793009C2F1BBCAAB4285F772 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
16:26:16.0515 0x1360  igfx - ok
16:26:16.0593 0x1360  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
16:26:16.0593 0x1360  iirsp - ok
16:26:16.0656 0x1360  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
16:26:16.0749 0x1360  IKEEXT - ok
16:26:16.0765 0x1360  intaud_WaveExtensible - ok
16:26:17.0389 0x1360  [ 39246F2CFBF1D32C3A12E242661EC039, EADF06D9B142844C16C2B0E412D708DB02BA07E2CD96BBFB2F0984DD6BB63E28 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:26:17.0888 0x1360  IntcAzAudAddService - ok
16:26:18.0231 0x1360  [ F5495B38BFB9149925F54F65AB40EFBF, 7CBB72C41E2343DACBFB967A39CA04788561EDECB289C41BC2D6A06B80882AC4 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
16:26:18.0247 0x1360  IntcDAud - ok
16:26:18.0340 0x1360  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
16:26:18.0372 0x1360  intelide - ok
16:26:18.0512 0x1360  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
16:26:18.0512 0x1360  intelppm - ok
16:26:18.0606 0x1360  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
16:26:18.0699 0x1360  IPBusEnum - ok
16:26:18.0746 0x1360  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:26:18.0762 0x1360  IpFilterDriver - ok
16:26:18.0855 0x1360  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
16:26:18.0902 0x1360  iphlpsvc - ok
16:26:18.0933 0x1360  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
16:26:18.0949 0x1360  IPMIDRV - ok
16:26:18.0964 0x1360  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
16:26:18.0980 0x1360  IPNAT - ok
16:26:19.0058 0x1360  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
16:26:19.0058 0x1360  IRENUM - ok
16:26:19.0089 0x1360  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
16:26:19.0089 0x1360  isapnp - ok
16:26:19.0136 0x1360  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
16:26:19.0167 0x1360  iScsiPrt - ok
16:26:19.0183 0x1360  iwdbus - ok
16:26:19.0245 0x1360  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
16:26:19.0245 0x1360  kbdclass - ok
16:26:19.0292 0x1360  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
16:26:19.0308 0x1360  kbdhid - ok
16:26:19.0308 0x1360  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
16:26:19.0323 0x1360  KeyIso - ok
16:26:19.0339 0x1360  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
16:26:19.0354 0x1360  KSecDD - ok
16:26:19.0448 0x1360  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
16:26:19.0448 0x1360  KSecPkg - ok
16:26:19.0495 0x1360  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
16:26:19.0495 0x1360  ksthunk - ok
16:26:19.0542 0x1360  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
16:26:19.0573 0x1360  KtmRm - ok
16:26:19.0620 0x1360  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
16:26:19.0635 0x1360  LanmanServer - ok
16:26:19.0682 0x1360  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:26:19.0698 0x1360  LanmanWorkstation - ok
16:26:19.0744 0x1360  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
16:26:19.0744 0x1360  lltdio - ok
16:26:19.0822 0x1360  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
16:26:19.0900 0x1360  lltdsvc - ok
16:26:19.0963 0x1360  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
16:26:19.0978 0x1360  lmhosts - ok
16:26:20.0041 0x1360  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
16:26:20.0056 0x1360  LSI_FC - ok
16:26:20.0088 0x1360  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
16:26:20.0103 0x1360  LSI_SAS - ok
16:26:20.0134 0x1360  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:26:20.0150 0x1360  LSI_SAS2 - ok
16:26:20.0166 0x1360  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:26:20.0181 0x1360  LSI_SCSI - ok
16:26:20.0212 0x1360  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
16:26:20.0228 0x1360  luafv - ok
16:26:20.0306 0x1360  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
16:26:20.0337 0x1360  Mcx2Svc - ok
16:26:20.0353 0x1360  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
16:26:20.0353 0x1360  megasas - ok
16:26:20.0415 0x1360  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
16:26:20.0431 0x1360  MegaSR - ok
16:26:20.0493 0x1360  [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
16:26:20.0493 0x1360  MEIx64 - ok
16:26:20.0556 0x1360  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
16:26:20.0571 0x1360  MMCSS - ok
16:26:20.0618 0x1360  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
16:26:20.0634 0x1360  Modem - ok
16:26:20.0665 0x1360  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
16:26:20.0665 0x1360  monitor - ok
16:26:20.0696 0x1360  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
16:26:20.0696 0x1360  mouclass - ok
16:26:20.0727 0x1360  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
16:26:20.0727 0x1360  mouhid - ok
16:26:20.0805 0x1360  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
16:26:20.0805 0x1360  mountmgr - ok
16:26:20.0836 0x1360  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
16:26:20.0852 0x1360  mpio - ok
16:26:20.0883 0x1360  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
16:26:20.0883 0x1360  mpsdrv - ok
16:26:20.0961 0x1360  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
16:26:21.0024 0x1360  MpsSvc - ok
16:26:21.0055 0x1360  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
16:26:21.0070 0x1360  MRxDAV - ok
16:26:21.0164 0x1360  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
16:26:21.0180 0x1360  mrxsmb - ok
16:26:21.0226 0x1360  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:26:21.0258 0x1360  mrxsmb10 - ok
16:26:21.0289 0x1360  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:26:21.0304 0x1360  mrxsmb20 - ok
16:26:21.0320 0x1360  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
16:26:21.0320 0x1360  msahci - ok
16:26:21.0336 0x1360  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
16:26:21.0351 0x1360  msdsm - ok
16:26:21.0382 0x1360  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
16:26:21.0382 0x1360  MSDTC - ok
16:26:21.0414 0x1360  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
16:26:21.0414 0x1360  Msfs - ok
16:26:21.0429 0x1360  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
16:26:21.0445 0x1360  mshidkmdf - ok
16:26:21.0460 0x1360  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
16:26:21.0460 0x1360  msisadrv - ok
16:26:21.0492 0x1360  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
16:26:21.0507 0x1360  MSiSCSI - ok
16:26:21.0523 0x1360  msiserver - ok
16:26:21.0554 0x1360  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
16:26:21.0554 0x1360  MSKSSRV - ok
16:26:21.0570 0x1360  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
16:26:21.0570 0x1360  MSPCLOCK - ok
16:26:21.0585 0x1360  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
16:26:21.0585 0x1360  MSPQM - ok
16:26:21.0616 0x1360  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
16:26:21.0648 0x1360  MsRPC - ok
16:26:21.0694 0x1360  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
16:26:21.0694 0x1360  mssmbios - ok
16:26:21.0694 0x1360  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
16:26:21.0710 0x1360  MSTEE - ok
16:26:21.0757 0x1360  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
16:26:21.0757 0x1360  MTConfig - ok
16:26:21.0772 0x1360  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
16:26:21.0788 0x1360  Mup - ok
16:26:21.0850 0x1360  [ DF3D9BD8DE05798CE1D7C52C150FAC71, 77EE6D9B28BDBD914C062AB0FB439B3336297EDCD76CE1E78437B5AE924500EE ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
16:26:21.0850 0x1360  MyWiFiDHCPDNS - ok
16:26:21.0928 0x1360  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
16:26:21.0975 0x1360  napagent - ok
16:26:22.0053 0x1360  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
16:26:22.0100 0x1360  NativeWifiP - ok
16:26:22.0225 0x1360  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
16:26:22.0287 0x1360  NDIS - ok
16:26:22.0318 0x1360  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
16:26:22.0334 0x1360  NdisCap - ok
16:26:22.0350 0x1360  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
16:26:22.0365 0x1360  NdisTapi - ok
16:26:22.0396 0x1360  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
16:26:22.0396 0x1360  Ndisuio - ok
16:26:22.0428 0x1360  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
16:26:22.0443 0x1360  NdisWan - ok
16:26:22.0474 0x1360  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
16:26:22.0474 0x1360  NDProxy - ok
16:26:22.0490 0x1360  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
16:26:22.0490 0x1360  NetBIOS - ok
16:26:22.0537 0x1360  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
16:26:22.0552 0x1360  NetBT - ok
16:26:22.0568 0x1360  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
16:26:22.0568 0x1360  Netlogon - ok
16:26:22.0662 0x1360  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
16:26:22.0693 0x1360  Netman - ok
16:26:22.0786 0x1360  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:26:22.0833 0x1360  NetMsmqActivator - ok
16:26:22.0849 0x1360  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:26:22.0864 0x1360  NetPipeActivator - ok
16:26:22.0927 0x1360  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
16:26:22.0958 0x1360  netprofm - ok
16:26:22.0989 0x1360  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:26:22.0989 0x1360  NetTcpActivator - ok
16:26:23.0005 0x1360  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:26:23.0005 0x1360  NetTcpPortSharing - ok
16:26:23.0644 0x1360  [ 3184D1564F9970F4EC81AF0347AD42B7, 95F3BD3671BF2B962E12AD46E01F12D24AFB8B7366960625295438B8A0C5DF3A ] NETwNs64        C:\Windows\system32\DRIVERS\NETwsw00.sys
16:26:24.0190 0x1360  NETwNs64 - ok
16:26:24.0237 0x1360  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
16:26:24.0253 0x1360  nfrd960 - ok
16:26:24.0268 0x1360  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
16:26:24.0300 0x1360  NlaSvc - ok
16:26:24.0331 0x1360  [ 1381E95D4E0F94F22DD484B5F8C1D61D, E91C10A62E3B5A610063F48354C6F4A1AAB7300A69EAD59E89ED8EEFDBD99062 ] nmwcd           C:\Windows\system32\drivers\ccdcmbx64.sys
16:26:24.0331 0x1360  nmwcd - ok
16:26:24.0346 0x1360  [ 205510CDB7B6084BF31760B5D06F9242, F3EAC6A7127DC5A0FEE7A9AFA561A8CA9B6E83FECCD731C890E85C33514B533B ] nmwcdc          C:\Windows\system32\drivers\ccdcmbox64.sys
16:26:24.0346 0x1360  nmwcdc - ok
16:26:24.0393 0x1360  [ 5B6203B2F4B3727A0AEB8DA44545E64E, CED2A55DD4962E781EBC70AF68209D0F4DFC8B7A117130E999F86C4E89055DA2 ] nmwcdnsucx64    C:\Windows\system32\drivers\nmwcdnsucx64.sys
16:26:24.0393 0x1360  nmwcdnsucx64 - ok
16:26:24.0409 0x1360  [ 93CC935F10D17A7AAAA8FC9E5AC7AF6A, 6035A18919E680DE30F1EA630E8594F14FD54373F5C624F18626BC824860A798 ] nmwcdnsux64     C:\Windows\system32\drivers\nmwcdnsux64.sys
16:26:24.0424 0x1360  nmwcdnsux64 - ok
16:26:24.0424 0x1360  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
16:26:24.0424 0x1360  Npfs - ok
16:26:24.0456 0x1360  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
16:26:24.0456 0x1360  nsi - ok
16:26:24.0471 0x1360  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
16:26:24.0471 0x1360  nsiproxy - ok
16:26:24.0549 0x1360  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
16:26:24.0643 0x1360  Ntfs - ok
16:26:24.0658 0x1360  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
16:26:24.0658 0x1360  Null - ok
16:26:24.0690 0x1360  [ D584ABB6A308933A5F72B46C9E5A783F, 31922A27B3A9A64A9F71B7591FCAC6E0ACD15E36B9BFC4B4D75DE473E0F5CF6B ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
16:26:24.0690 0x1360  nusb3hub - ok
16:26:24.0721 0x1360  [ 345B9C04E2036DA4346E3249A5BDFD06, 2FCA4661757EC8E33F6D1E8066165C0E0A0D32649318412A79A915B83496236A ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
16:26:24.0736 0x1360  nusb3xhc - ok
16:26:24.0768 0x1360  [ 554964B900AE2954B8B589B6287034AC, C6C9EA3ADAFEBBF2AF944E4A0656BD795AD37706008CC0CA3F2150BD709476E7 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
16:26:24.0783 0x1360  NVHDA - ok
16:26:24.0846 0x1360  [ 595D4CFC9D76E530B6D6865E5511644E, C9EC927974DB67B01314CE5683AC346976F8E8941FE0BEC36008658E52D87D74 ] nvkflt          C:\Windows\system32\DRIVERS\nvkflt.sys
16:26:24.0861 0x1360  nvkflt - ok
16:26:25.0532 0x1360  [ A6975E0E4BE34667933846DE2F28AEFC, DFCF194C457A80C8222821001626D089FB1D97A37CA4D50D92144CE324911A78 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
16:26:25.0969 0x1360  nvlddmkm - ok
16:26:26.0125 0x1360  [ 507E699BD36530491BA0F95251B22F06, BDE6EB91FADBCB8CE16C31EF43A97DC6CC5D0F4EBAEA7903810556D0D70F54BC ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
16:26:26.0187 0x1360  NvNetworkService - ok
16:26:26.0218 0x1360  [ 6D424288FB76FBE7EE566347625A6EFB, 2E6E185A6FDA20147348B78658B6D84686904C74099B91B03BC9C646BD97622C ] nvpciflt        C:\Windows\system32\DRIVERS\nvpciflt.sys
16:26:26.0218 0x1360  nvpciflt - ok
16:26:26.0250 0x1360  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
16:26:26.0250 0x1360  nvraid - ok
16:26:26.0281 0x1360  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
16:26:26.0281 0x1360  nvstor - ok
16:26:26.0343 0x1360  [ 7E4C1879248629A2C9CC9ADF52CBB9B7, 856FF60FD111C3C80B137BC62B7EF92D3B95FBA462A29F97D65457A5A507506E ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
16:26:26.0343 0x1360  NvStreamKms - ok
16:26:27.0404 0x1360  [ C3EB27E4BC00283CA166A9FC42B90FC7, FED7F68D1C6EB442292E40DCFAEE7339AE21D5EF726A9DC9BCB6AB5C5873B3E0 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
16:26:27.0919 0x1360  NvStreamSvc - ok
16:26:28.0012 0x1360  [ 9AEDEFFFE581D775E70C1C228CCD495E, F31C6DED1292A9392B83F9F557070543984AAB73718785B1C189752B34D4805B ] nvsvc           C:\Windows\system32\nvvsvc.exe
16:26:28.0059 0x1360  nvsvc - ok
16:26:28.0106 0x1360  [ 1AF619620613869C07F9C147BC37520F, 0AD4E100354E201D5E72BA236C1464F5083A7E3B58C4AC6BA712489D258955F5 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
16:26:28.0106 0x1360  nvvad_WaveExtensible - ok
16:26:28.0137 0x1360  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
16:26:28.0137 0x1360  nv_agp - ok
16:26:28.0215 0x1360  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
16:26:28.0246 0x1360  odserv - ok
16:26:28.0262 0x1360  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
16:26:28.0262 0x1360  ohci1394 - ok
16:26:28.0293 0x1360  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:26:28.0293 0x1360  ose - ok
16:26:28.0324 0x1360  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
16:26:28.0340 0x1360  p2pimsvc - ok
16:26:28.0371 0x1360  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
16:26:28.0402 0x1360  p2psvc - ok
16:26:28.0418 0x1360  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
16:26:28.0418 0x1360  Parport - ok
16:26:28.0434 0x1360  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
16:26:28.0449 0x1360  partmgr - ok
16:26:28.0465 0x1360  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
16:26:28.0465 0x1360  PcaSvc - ok
16:26:28.0512 0x1360  [ 3FDE033DFB0D07F8B7D5C9A3044AA121, 2C23B4FA34BA3060884B0168A830DD395A3853855CD6DF4065FBB303DFB4A87E ] pccsmcfd        C:\Windows\system32\DRIVERS\pccsmcfdx64.sys
16:26:28.0512 0x1360  pccsmcfd - ok
16:26:28.0527 0x1360  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
16:26:28.0543 0x1360  pci - ok
16:26:28.0558 0x1360  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
16:26:28.0558 0x1360  pciide - ok
16:26:28.0574 0x1360  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
16:26:28.0590 0x1360  pcmcia - ok
16:26:28.0590 0x1360  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
16:26:28.0605 0x1360  pcw - ok
16:26:28.0621 0x1360  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
16:26:28.0636 0x1360  PEAUTH - ok
16:26:28.0761 0x1360  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
16:26:28.0777 0x1360  PerfHost - ok
16:26:28.0855 0x1360  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
16:26:28.0902 0x1360  pla - ok
16:26:28.0933 0x1360  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
16:26:28.0948 0x1360  PlugPlay - ok
16:26:28.0980 0x1360  PnkBstrA - ok
16:26:28.0995 0x1360  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
16:26:29.0011 0x1360  PNRPAutoReg - ok
16:26:29.0026 0x1360  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
16:26:29.0042 0x1360  PNRPsvc - ok
16:26:29.0073 0x1360  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
16:26:29.0089 0x1360  PolicyAgent - ok
16:26:29.0120 0x1360  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
16:26:29.0120 0x1360  Power - ok
16:26:29.0151 0x1360  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
16:26:29.0151 0x1360  PptpMiniport - ok
16:26:29.0167 0x1360  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
16:26:29.0167 0x1360  Processor - ok
16:26:29.0167 0x1360  prodrv06 - ok
16:26:29.0198 0x1360  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
16:26:29.0198 0x1360  ProfSvc - ok
16:26:29.0198 0x1360  prohlp02 - ok
16:26:29.0229 0x1360  prosync1 - ok
16:26:29.0245 0x1360  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:26:29.0245 0x1360  ProtectedStorage - ok
16:26:29.0276 0x1360  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
16:26:29.0276 0x1360  Psched - ok
16:26:29.0307 0x1360  [ 0928BD20273625622722FE1DE5BBDE57, 5313C222F8810D3A62CCE64482B5E50E58BBE2A2C298A23C84A454C34324AC52 ] qicflt          C:\Windows\system32\DRIVERS\qicflt.sys
16:26:29.0323 0x1360  qicflt - ok
16:26:29.0401 0x1360  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
16:26:29.0448 0x1360  ql2300 - ok
16:26:29.0479 0x1360  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
16:26:29.0479 0x1360  ql40xx - ok
16:26:29.0510 0x1360  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
16:26:29.0526 0x1360  QWAVE - ok
16:26:29.0541 0x1360  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
16:26:29.0541 0x1360  QWAVEdrv - ok
16:26:29.0557 0x1360  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
16:26:29.0557 0x1360  RasAcd - ok
16:26:29.0572 0x1360  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
16:26:29.0572 0x1360  RasAgileVpn - ok
16:26:29.0588 0x1360  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
16:26:29.0588 0x1360  RasAuto - ok
16:26:29.0604 0x1360  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
16:26:29.0604 0x1360  Rasl2tp - ok
16:26:29.0635 0x1360  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
16:26:29.0635 0x1360  RasMan - ok
16:26:29.0666 0x1360  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
16:26:29.0666 0x1360  RasPppoe - ok
16:26:29.0682 0x1360  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
16:26:29.0682 0x1360  RasSstp - ok
16:26:29.0697 0x1360  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
16:26:29.0713 0x1360  rdbss - ok
16:26:29.0744 0x1360  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
16:26:29.0744 0x1360  rdpbus - ok
16:26:29.0760 0x1360  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
16:26:29.0760 0x1360  RDPCDD - ok
16:26:29.0760 0x1360  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
16:26:29.0775 0x1360  RDPENCDD - ok
16:26:29.0775 0x1360  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
16:26:29.0775 0x1360  RDPREFMP - ok
16:26:29.0806 0x1360  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:26:29.0822 0x1360  RdpVideoMiniport - ok
16:26:29.0853 0x1360  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
16:26:29.0853 0x1360  RDPWD - ok
16:26:29.0884 0x1360  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
16:26:29.0884 0x1360  rdyboost - ok
16:26:29.0962 0x1360  [ 46D01172EDDACDD1EB75648D5E17D5E2, 74D91D53A63ABF3FD3C44B410AABDB8BCFBC16E9BD419B0AA8DF36F775CC33B6 ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
16:26:29.0962 0x1360  RegSrvc - ok
16:26:29.0978 0x1360  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
16:26:29.0978 0x1360  RemoteAccess - ok
16:26:30.0009 0x1360  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
16:26:30.0009 0x1360  RemoteRegistry - ok
16:26:30.0040 0x1360  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
16:26:30.0040 0x1360  RFCOMM - ok
16:26:30.0072 0x1360  [ 7B04C9843921AB1F695FB395422C5360, C9B02BE0384357FD242613C2A12029B45322AF9A795CD69F33500CA7530899A7 ] RimUsb          C:\Windows\system32\Drivers\RimUsb_AMD64.sys
16:26:30.0072 0x1360  RimUsb - ok
16:26:30.0103 0x1360  [ CAF88D6573D21CD2AA27001DDBFDC74D, 8256B93E586953F1B594BFFA1F005DB08325CAF1729A93820B09F60DAA998C97 ] RMCAST          C:\Windows\system32\DRIVERS\RMCAST.sys
16:26:30.0103 0x1360  RMCAST - ok
16:26:30.0118 0x1360  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
16:26:30.0118 0x1360  RpcEptMapper - ok
16:26:30.0134 0x1360  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
16:26:30.0134 0x1360  RpcLocator - ok
16:26:30.0181 0x1360  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
16:26:30.0181 0x1360  RpcSs - ok
16:26:30.0243 0x1360  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
16:26:30.0243 0x1360  rspndr - ok
16:26:30.0290 0x1360  [ F1D20C2B36F78863530B251DF504CC51, A3C71BDB45B1DB321BC2D9889CB25CF7840E145DFB769882748B7D507A605A42 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
16:26:30.0306 0x1360  RtkAudioService - ok
16:26:30.0337 0x1360  [ 9140DB0911DE035FED0A9A77A2D156EA, 07C9D7E2978062ABD84B58B390360D4C0F72C6A5A2310444579DC095943BD008 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
16:26:30.0352 0x1360  RTL8167 - ok
16:26:30.0384 0x1360  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
16:26:30.0384 0x1360  SamSs - ok
16:26:30.0508 0x1360  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
16:26:30.0508 0x1360  sbp2port - ok
16:26:30.0524 0x1360  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
16:26:30.0524 0x1360  SCardSvr - ok
16:26:30.0555 0x1360  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
16:26:30.0555 0x1360  scfilter - ok
16:26:30.0602 0x1360  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
16:26:30.0618 0x1360  Schedule - ok
16:26:30.0664 0x1360  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
16:26:30.0664 0x1360  SCPolicySvc - ok
16:26:30.0664 0x1360  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus           C:\Windows\system32\drivers\sdbus.sys
16:26:30.0680 0x1360  sdbus - ok
16:26:30.0696 0x1360  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
16:26:30.0696 0x1360  SDRSVC - ok
16:26:30.0711 0x1360  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
16:26:30.0711 0x1360  secdrv - ok
16:26:30.0727 0x1360  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
16:26:30.0727 0x1360  seclogon - ok
16:26:30.0742 0x1360  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
16:26:30.0758 0x1360  SENS - ok
16:26:30.0758 0x1360  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
16:26:30.0774 0x1360  SensrSvc - ok
16:26:30.0774 0x1360  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
16:26:30.0774 0x1360  Serenum - ok
16:26:30.0805 0x1360  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
16:26:30.0805 0x1360  Serial - ok
16:26:30.0836 0x1360  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
16:26:30.0836 0x1360  sermouse - ok
16:26:30.0898 0x1360  [ 78F7BB9F4924BE164294C59B8C3FC096, 75051A6A8B0DBB16CD70855A408134270EEAF0C127BAAE5B592DB53BB87C085B ] ServiceLayer    C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
16:26:30.0930 0x1360  ServiceLayer - ok
16:26:30.0961 0x1360  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
16:26:30.0961 0x1360  SessionEnv - ok
16:26:30.0976 0x1360  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys
16:26:30.0976 0x1360  sffdisk - ok
16:26:30.0976 0x1360  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
16:26:30.0976 0x1360  sffp_mmc - ok
16:26:30.0976 0x1360  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys
16:26:30.0992 0x1360  sffp_sd - ok
16:26:30.0992 0x1360  sfhlp01 - ok
16:26:31.0008 0x1360  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
16:26:31.0008 0x1360  sfloppy - ok
16:26:31.0054 0x1360  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
16:26:31.0054 0x1360  SharedAccess - ok
16:26:31.0086 0x1360  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:26:31.0101 0x1360  ShellHWDetection - ok
16:26:31.0117 0x1360  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:26:31.0117 0x1360  SiSRaid2 - ok
16:26:31.0132 0x1360  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
16:26:31.0132 0x1360  SiSRaid4 - ok
16:26:31.0179 0x1360  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
16:26:31.0179 0x1360  SkypeUpdate - ok
16:26:31.0210 0x1360  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
16:26:31.0210 0x1360  Smb - ok
16:26:31.0226 0x1360  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
16:26:31.0242 0x1360  SNMPTRAP - ok
16:26:31.0257 0x1360  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
16:26:31.0257 0x1360  spldr - ok
16:26:31.0288 0x1360  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
16:26:31.0304 0x1360  Spooler - ok
16:26:31.0398 0x1360  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
16:26:31.0460 0x1360  sppsvc - ok
16:26:31.0538 0x1360  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
16:26:31.0554 0x1360  sppuinotify - ok
16:26:31.0585 0x1360  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
16:26:31.0600 0x1360  srv - ok
16:26:31.0647 0x1360  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
16:26:31.0678 0x1360  srv2 - ok
16:26:31.0694 0x1360  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
16:26:31.0694 0x1360  srvnet - ok
16:26:31.0710 0x1360  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
16:26:31.0710 0x1360  SSDPSRV - ok
16:26:31.0725 0x1360  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
16:26:31.0725 0x1360  SstpSvc - ok
16:26:31.0741 0x1360  [ 92E7F6666633D2DD91D527503DAA7BE0, E97C7FFCAF2C7A83B270B6C797A91C2731FEA26874FE1E59B4CB55D5D98744BB ] stdcfltn        C:\Windows\system32\DRIVERS\stdcfltn.sys
16:26:31.0756 0x1360  stdcfltn - ok
16:26:31.0772 0x1360  Steam Client Service - ok
16:26:31.0866 0x1360  [ AD5CE4DBBBAFB82B728BA0548876C5B6, 09022AE357FFBD9F3DF7807BF57704AA8E71767E043E92DA06DB5FE828B3F26F ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
16:26:31.0881 0x1360  Stereo Service - ok
16:26:31.0897 0x1360  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
16:26:31.0897 0x1360  stexstor - ok
16:26:31.0928 0x1360  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
16:26:31.0944 0x1360  stisvc - ok
16:26:32.0006 0x1360  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
16:26:32.0006 0x1360  swenum - ok
16:26:32.0053 0x1360  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
16:26:32.0068 0x1360  swprv - ok
16:26:32.0131 0x1360  [ 5E3B232A614339399ACC71FA3AAAAA6B, CBB6253A1D7B3091ABF0BB03B9CC9F36C812E8C082380AA44A4D1851D2610C75 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
16:26:32.0162 0x1360  SynTP - ok
16:26:32.0240 0x1360  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
16:26:32.0302 0x1360  SysMain - ok
16:26:32.0334 0x1360  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:26:32.0349 0x1360  TabletInputService - ok
16:26:32.0380 0x1360  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
16:26:32.0380 0x1360  TapiSrv - ok
16:26:32.0396 0x1360  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
16:26:32.0396 0x1360  TBS - ok
16:26:32.0474 0x1360  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
16:26:32.0521 0x1360  Tcpip - ok
16:26:32.0583 0x1360  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
16:26:32.0614 0x1360  TCPIP6 - ok
16:26:32.0677 0x1360  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
16:26:32.0677 0x1360  tcpipreg - ok
16:26:32.0708 0x1360  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
16:26:32.0708 0x1360  TDPIPE - ok
16:26:32.0739 0x1360  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
16:26:32.0739 0x1360  TDTCP - ok
16:26:32.0755 0x1360  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
16:26:32.0770 0x1360  tdx - ok
16:26:32.0770 0x1360  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
16:26:32.0786 0x1360  TermDD - ok
16:26:32.0817 0x1360  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
16:26:32.0833 0x1360  TermService - ok
16:26:32.0848 0x1360  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
16:26:32.0848 0x1360  Themes - ok
16:26:32.0864 0x1360  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
16:26:32.0864 0x1360  THREADORDER - ok
16:26:32.0880 0x1360  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
16:26:32.0880 0x1360  TrkWks - ok
16:26:32.0942 0x1360  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:26:32.0942 0x1360  TrustedInstaller - ok
16:26:32.0958 0x1360  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
16:26:32.0973 0x1360  tssecsrv - ok
16:26:33.0020 0x1360  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
16:26:33.0036 0x1360  TsUsbFlt - ok
16:26:33.0067 0x1360  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
16:26:33.0082 0x1360  tunnel - ok
16:26:33.0098 0x1360  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
16:26:33.0114 0x1360  uagp35 - ok
16:26:33.0129 0x1360  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
16:26:33.0129 0x1360  udfs - ok
16:26:33.0176 0x1360  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
16:26:33.0176 0x1360  UI0Detect - ok
16:26:33.0207 0x1360  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
16:26:33.0207 0x1360  uliagpkx - ok
16:26:33.0223 0x1360  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\drivers\umbus.sys
16:26:33.0223 0x1360  umbus - ok
16:26:33.0238 0x1360  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
16:26:33.0238 0x1360  UmPass - ok
16:26:33.0254 0x1360  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
16:26:33.0270 0x1360  upnphost - ok
16:26:33.0332 0x1360  [ 311C90F0767A63000AC35DD0A7078A30, DB80E10015DCC595F90C31CE61590DB07E84F8B13DA904B2D59233678C366A2D ] upperdev        C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys
16:26:33.0332 0x1360  upperdev - ok
16:26:33.0363 0x1360  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
16:26:33.0379 0x1360  usbccgp - ok
16:26:33.0394 0x1360  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
16:26:33.0394 0x1360  usbcir - ok
16:26:33.0426 0x1360  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
16:26:33.0426 0x1360  usbehci - ok
16:26:33.0441 0x1360  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
16:26:33.0441 0x1360  usbhub - ok
16:26:33.0488 0x1360  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
16:26:33.0488 0x1360  usbohci - ok
16:26:33.0519 0x1360  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
16:26:33.0519 0x1360  usbprint - ok
16:26:33.0566 0x1360  [ B57B4F0BEC4270A281B9F8537EB2FA04, 554273482EE85F010DC62E412C9933E65BD63AA09911BD25D86F86D2618EF382 ] usbser          C:\Windows\system32\drivers\usbser.sys
16:26:33.0566 0x1360  usbser - ok
16:26:33.0597 0x1360  [ C03DA998E412D69D18DD11D835229AF0, DD43E370EF370767588A6D56A51A4ADF99B5E063C7AA0528F91FD431DE7C2932 ] UsbserFilt      C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys
16:26:33.0613 0x1360  UsbserFilt - ok
16:26:33.0628 0x1360  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:26:33.0628 0x1360  USBSTOR - ok
16:26:33.0660 0x1360  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
16:26:33.0660 0x1360  usbuhci - ok
16:26:33.0675 0x1360  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
16:26:33.0691 0x1360  usbvideo - ok
16:26:33.0706 0x1360  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
16:26:33.0706 0x1360  UxSms - ok
16:26:33.0722 0x1360  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
16:26:33.0722 0x1360  VaultSvc - ok
16:26:33.0738 0x1360  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
16:26:33.0738 0x1360  vdrvroot - ok
16:26:33.0769 0x1360  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
16:26:33.0784 0x1360  vds - ok
16:26:33.0816 0x1360  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
16:26:33.0816 0x1360  vga - ok
16:26:33.0831 0x1360  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
16:26:33.0831 0x1360  VgaSave - ok
16:26:33.0847 0x1360  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
16:26:33.0847 0x1360  vhdmp - ok
16:26:33.0878 0x1360  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
16:26:33.0878 0x1360  viaide - ok
16:26:33.0894 0x1360  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
16:26:33.0894 0x1360  volmgr - ok
16:26:33.0909 0x1360  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
16:26:33.0925 0x1360  volmgrx - ok
16:26:33.0956 0x1360  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
16:26:33.0956 0x1360  volsnap - ok
16:26:33.0972 0x1360  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
16:26:33.0987 0x1360  vsmraid - ok
16:26:34.0050 0x1360  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
16:26:34.0096 0x1360  VSS - ok
16:26:34.0112 0x1360  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
16:26:34.0112 0x1360  vwifibus - ok
16:26:34.0128 0x1360  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
16:26:34.0128 0x1360  vwififlt - ok
16:26:34.0143 0x1360  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
16:26:34.0143 0x1360  vwifimp - ok
16:26:34.0159 0x1360  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
16:26:34.0174 0x1360  W32Time - ok
16:26:34.0190 0x1360  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
16:26:34.0190 0x1360  WacomPen - ok
16:26:34.0221 0x1360  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
16:26:34.0221 0x1360  WANARP - ok
16:26:34.0221 0x1360  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
16:26:34.0221 0x1360  Wanarpv6 - ok
16:26:34.0299 0x1360  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
16:26:34.0346 0x1360  WatAdminSvc - ok
16:26:34.0424 0x1360  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
16:26:34.0471 0x1360  wbengine - ok
16:26:34.0486 0x1360  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
16:26:34.0502 0x1360  WbioSrvc - ok
16:26:34.0518 0x1360  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
16:26:34.0533 0x1360  wcncsvc - ok
16:26:34.0533 0x1360  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:26:34.0533 0x1360  WcsPlugInService - ok
16:26:34.0549 0x1360  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
16:26:34.0549 0x1360  Wd - ok
16:26:34.0596 0x1360  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
16:26:34.0611 0x1360  Wdf01000 - ok
16:26:34.0627 0x1360  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
16:26:34.0642 0x1360  WdiServiceHost - ok
16:26:34.0642 0x1360  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
16:26:34.0642 0x1360  WdiSystemHost - ok
16:26:34.0658 0x1360  [ 63CE387483E74A0BD79EE4E5EBA1FD2E, BD5DA884D7F0C478B49D15A3902B41302434A0D290B9AF07D74C664C2C562705 ] wdkmd           C:\Windows\system32\DRIVERS\WDKMD.sys
16:26:34.0658 0x1360  wdkmd - ok
16:26:34.0689 0x1360  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
16:26:34.0689 0x1360  WebClient - ok
16:26:34.0705 0x1360  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
16:26:34.0720 0x1360  Wecsvc - ok
16:26:34.0736 0x1360  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
16:26:34.0736 0x1360  wercplsupport - ok
16:26:34.0752 0x1360  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
16:26:34.0767 0x1360  WerSvc - ok
16:26:34.0767 0x1360  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
16:26:34.0767 0x1360  WfpLwf - ok
16:26:34.0783 0x1360  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
16:26:34.0783 0x1360  WIMMount - ok
16:26:34.0798 0x1360  WinDefend - ok
16:26:34.0798 0x1360  WinHttpAutoProxySvc - ok
16:26:34.0861 0x1360  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
16:26:34.0861 0x1360  Winmgmt - ok
16:26:34.0923 0x1360  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
16:26:34.0986 0x1360  WinRM - ok
16:26:35.0032 0x1360  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
16:26:35.0032 0x1360  WinUsb - ok
16:26:35.0064 0x1360  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
16:26:35.0110 0x1360  Wlansvc - ok
16:26:35.0251 0x1360  [ 98F138897EF4246381D197CB81846D62, A9FA88475AFBB8883297708608EC7C1AC29F229C3299A84D557172604813A18C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:26:35.0313 0x1360  wlidsvc - ok
16:26:35.0344 0x1360  WMCoreService - ok
16:26:35.0391 0x1360  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
16:26:35.0391 0x1360  WmiAcpi - ok
16:26:35.0407 0x1360  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
16:26:35.0422 0x1360  wmiApSrv - ok
16:26:35.0454 0x1360  WMPNetworkSvc - ok
16:26:35.0454 0x1360  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
16:26:35.0469 0x1360  WPCSvc - ok
16:26:35.0485 0x1360  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
16:26:35.0485 0x1360  WPDBusEnum - ok
16:26:35.0516 0x1360  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
16:26:35.0516 0x1360  ws2ifsl - ok
16:26:35.0532 0x1360  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
16:26:35.0532 0x1360  wscsvc - ok
16:26:35.0532 0x1360  WSearch - ok
16:26:35.0610 0x1360  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll
16:26:35.0703 0x1360  wuauserv - ok
16:26:35.0750 0x1360  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:26:35.0750 0x1360  WudfPf - ok
16:26:35.0766 0x1360  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
16:26:35.0766 0x1360  WUDFRd - ok
16:26:35.0797 0x1360  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
16:26:35.0797 0x1360  wudfsvc - ok
16:26:35.0812 0x1360  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
16:26:35.0828 0x1360  WwanSvc - ok
16:26:35.0859 0x1360  [ 2EE48CFCE7CA8E0DB4C44C7476C0943B, 2C324592F3F2D50BABA7123B6F9FC922667CC132777E019FF615F2D6F273A45E ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
16:26:35.0859 0x1360  xusb21 - ok
16:26:36.0234 0x1360  [ 17E44886E695DBC78AC33854BD5EA6D2, BC764274363B8042326042DC0872ED30BDD76C7516FD0BFEB7280FB76B66DED4 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
16:26:36.0280 0x1360  ZeroConfigService - ok
16:26:36.0312 0x1360  ================ Scan global ===============================
16:26:36.0327 0x1360  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
16:26:36.0358 0x1360  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
16:26:36.0374 0x1360  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
16:26:36.0390 0x1360  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
16:26:36.0421 0x1360  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
16:26:36.0436 0x1360  [ Global ] - ok
16:26:36.0436 0x1360  ================ Scan MBR ==================================
16:26:36.0436 0x1360  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:26:37.0310 0x1360  \Device\Harddisk0\DR0 - ok
16:26:37.0310 0x1360  ================ Scan VBR ==================================
16:26:37.0357 0x1360  [ A3E12A6CD797ABD0B46DEE966DCC7283 ] \Device\Harddisk0\DR0\Partition1
16:26:37.0372 0x1360  \Device\Harddisk0\DR0\Partition1 - ok
16:26:37.0435 0x1360  [ 197C02A6CD31264E1B36185805C36E8C ] \Device\Harddisk0\DR0\Partition2
16:26:37.0466 0x1360  \Device\Harddisk0\DR0\Partition2 - ok
16:26:37.0497 0x1360  [ F198C7D8BA84530D8EFC0671C3F6B8A6 ] \Device\Harddisk0\DR0\Partition3
16:26:37.0544 0x1360  \Device\Harddisk0\DR0\Partition3 - ok
16:26:37.0560 0x1360  ================ Scan generic autorun ======================
16:26:37.0560 0x1360  SynTPEnh - ok
16:26:37.0638 0x1360  [ 28062B17191C9450BF6C6C3EF8C7EB27, 4859C5708DFD119021F7B7FFB38F0B316675E1E4D5D51A10D4265F712CF8CDB6 ] C:\Windows\system32\igfxtray.exe
16:26:37.0653 0x1360  IgfxTray - ok
16:26:37.0747 0x1360  [ 28FC280487F0BAAE5E8119257C4EEF8C, F574BC70B79B77912FC683B3EB0BE6929E7758284ED5B47008E18B0E4A4A09FD ] C:\Windows\system32\hkcmd.exe
16:26:37.0762 0x1360  HotKeysCmds - ok
16:26:37.0856 0x1360  [ F29BEA821C753E4F00177690F70CDC13, 0EDB40F4A4C23553C0288E6E3AD65E7B523F6764C87C6C36C3ECB0C1940C5176 ] C:\Windows\system32\igfxpers.exe
16:26:37.0887 0x1360  Persistence - ok
16:26:37.0887 0x1360  BTMTrayAgent - ok
16:26:38.0028 0x1360  [ ED43758BF94B8A5221D69F1B7F63F13D, F6E7418823E45085F4D4F50DD25A55ED517C0A335C6C2F69A1139B30677D3DA9 ] C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe
16:26:38.0074 0x1360  XboxStat - ok
16:26:38.0449 0x1360  [ 4F011F572DAC7057DF9D6E9064AA77E8, CC05441572740A9996525C3B9382191022E4F918C45C09EC0DE4C11215F81008 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
16:26:38.0558 0x1360  NvBackend - ok
16:26:38.0605 0x1360  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
16:26:38.0620 0x1360  ShadowPlay - ok
16:26:38.0652 0x1360  [ 8943465BEFA91044227D42E84ECB8280, 76D19CE3EB7E6C6573F250543CDC10B3601604535BFB756805AE246FA55AC265 ] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
16:26:38.0652 0x1360  NUSB3MON - ok
16:26:38.0698 0x1360  [ 309BF2F494E57B4C2BFDFA94F8C6A238, 26AE3940E71A34CB1A7EDF799C693A11C692CFCAB5619A0A3B862A34914911B8 ] C:\Windows\LockStatusTray.exe
16:26:38.0714 0x1360  LockStatusTray - ok
16:26:38.0839 0x1360  [ 6FFB5DF3DEDAD9D814E0FFE1089C1E9B, 0B516EEEF409892A9525946AD15B93718DE258A4B83FAABB3DD5D6F9D08B72CF ] C:\Program Files (x86)\Nokia\Nokia Software Updater\nsu3ui_agent.exe
16:26:38.0854 0x1360  NSU_agent - ok
16:26:39.0432 0x1360  [ 26B558B2D31C7425B455B00E562EAD93, B64D128A2F1FC42BA4376F8EB08D70F4B705745CB983D0631DB45851BF34BBDF ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
16:26:39.0712 0x1360  AvastUI.exe - ok
16:26:40.0040 0x1360  [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
16:26:40.0118 0x1360  Sidebar - ok
16:26:40.0118 0x1360  Waiting for KSN requests completion. In queue: 98
16:26:41.0132 0x1360  Waiting for KSN requests completion. In queue: 98
16:26:42.0146 0x1360  Waiting for KSN requests completion. In queue: 98
16:26:43.0160 0x1360  Waiting for KSN requests completion. In queue: 98
16:26:44.0174 0x1360  Waiting for KSN requests completion. In queue: 98
16:26:45.0188 0x1360  Waiting for KSN requests completion. In queue: 98
16:26:46.0202 0x1360  Waiting for KSN requests completion. In queue: 98
16:26:47.0216 0x1360  Waiting for KSN requests completion. In queue: 98
16:26:48.0230 0x1360  Waiting for KSN requests completion. In queue: 98
16:26:49.0244 0x1360  Waiting for KSN requests completion. In queue: 98
16:26:50.0258 0x1360  Waiting for KSN requests completion. In queue: 98
16:26:51.0272 0x1360  Waiting for KSN requests completion. In queue: 98
16:26:52.0286 0x1360  Waiting for KSN requests completion. In queue: 98
16:26:53.0300 0x1360  Waiting for KSN requests completion. In queue: 98
16:26:54.0361 0x1360  AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2021.515 ), 0x41000 ( enabled : updated )
16:26:54.0376 0x1360  Win FW state via NFP2: enabled
16:26:57.0200 0x1360  ============================================================
16:26:57.0200 0x1360  Scan finished
16:26:57.0200 0x1360  ============================================================
16:26:57.0200 0x1364  Detected object count: 0
16:26:57.0200 0x1364  Actual detected object count: 0
16:28:20.0629 0x13dc  Deinitialize success
 

 

 

 

so after all it appears like the condition is not any sort of malicious software (which on one hand is great news).



#8 ken545

ken545

    Malware Response Team


  • Malware Response Team
  • 1,685 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Space Coast of Florida
  • Local time:07:19 PM

Posted 07 October 2014 - 11:28 AM

Hi,

 

I had FRST clean out your temp files,sometimes when they get a bit large it can add to sluggish performance.   TDSSKiller also checks for the latest rootkit type of infection that hides from the operating system and it came back ok.

 

How long have you had Avast on this system, was it running ok prior to installing it, I am not saying that its the culprit but sometimes certain Anti Virus software will run fine on one system and not another


mvp_host.pngConsumer Security 2007-2008-2009-2010-2011-2012-2013-2014



donate.gif Please consider a donation to help me keep up my fight against malware.

 

Just a reminder that threads will be closed if no response in 3 days


#9 MetalowaGlowa

MetalowaGlowa
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Poland
  • Local time:01:19 AM

Posted 07 October 2014 - 12:07 PM

Avast is with me all the time. Of course with regular program updates. If new version comes out - well it lands on the system. Never noticed any problems regarding Avast but...now that you've mentioned it i'm not so sure if there haven't been a slight slow down since upgrading to one of new Avast program version. Although i would rather associate it with windows updates. Yeah, those little bastards can significantly drop the performance just like that.

 

Let's suppose it is Avast. What other software would You recommend for online protection?



#10 ken545

ken545

    Malware Response Team


  • Malware Response Team
  • 1,685 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Space Coast of Florida
  • Local time:07:19 PM

Posted 07 October 2014 - 12:20 PM

I have both a win 7 laptop and a win 8.1 desktop and I use Microsoft Security Essentials and the Pro Version of Malwarebytes.  

 

http://www.microsoft.com/en-us/download/details.aspx?id=5201

 

 

The Pro Version of Malwarebytes has a protection module that blocks known bad websites , the cost for the upgrade is minimal but this of course is up to you.  Myself been using Malwarebytes since it first came out and feel real secure with it installed.

 

You can also download the free version of Malwarebytes Anti Exploit, no scans to run , nothing to update, just sits in the background keeping an eye on any changes to your browsers or what not

https://www.malwarebytes.org/antiexploit/

 

 

What you can do is also post here in the windows 7 forum, you can link them back here so they can see what we have done , could be a bad program thats causing problems or an outdated driver, dont know, there the windows people and they would be more in tune to help you out

 

http://www.bleepingcomputer.com/forums/f/167/windows-7/

 

 

Good Luck

 

Ken :)


mvp_host.pngConsumer Security 2007-2008-2009-2010-2011-2012-2013-2014



donate.gif Please consider a donation to help me keep up my fight against malware.

 

Just a reminder that threads will be closed if no response in 3 days


#11 MetalowaGlowa

MetalowaGlowa
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Poland
  • Local time:01:19 AM

Posted 07 October 2014 - 12:43 PM

Thank You again Ken.

Glad we have done this together. Really appreciate the help

Wish the real-life doctors were so helpful.

 

Guess this topic can now be closed.



#12 ken545

ken545

    Malware Response Team


  • Malware Response Team
  • 1,685 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Space Coast of Florida
  • Local time:07:19 PM

Posted 07 October 2014 - 01:27 PM

Sometimes after a computer has been used for a bit of time like a few years, a complete format of the hard drive and a clean install of windows sometimes brings things back to normal, that's assuming that a hardware problem is not causing the issue

 

Hope they get you ironed out

 

Take care my friend

 

Ken :)


mvp_host.pngConsumer Security 2007-2008-2009-2010-2011-2012-2013-2014



donate.gif Please consider a donation to help me keep up my fight against malware.

 

Just a reminder that threads will be closed if no response in 3 days


#13 ken545

ken545

    Malware Response Team


  • Malware Response Team
  • 1,685 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Space Coast of Florida
  • Local time:07:19 PM

Posted 08 October 2014 - 04:07 PM

Before I close this topic did you ever run Malwarebytes ???

 

 

Download Malwarebytes' Anti-Malware  to your desktop. 
 
  •  
  • Windows XP : Double click on the icon to run it.
  • Windows Vista, Windows 7 & 8 : Right click and select "Run as Administrator"
 
 
MBAMDashboard_zpsddef9b5f.gif
 
  •  
  • On the Dashboard click on Update Now
  • Go to the Setting Tab
  • Under Setting go to Detection and Protection
  • Under PUP and PUM make sure both are set to show Treat Detections as Malware
  • Go to Advanced setting and make sure Automatically Quarantine Detected Items is checked
  • Then on the Dashboard click on Scan
  • Make sure to select THREAT SCAN
  • Then click on Scan
  • When the scan is finished and the log pops up...select Copy to Clipboard
  • Please paste the log back into this thread for review
  • Exit Malwarebytes
 
 
 
 
 
 
 
 

 

Edited by ken545, 09 October 2014 - 04:45 AM.

mvp_host.pngConsumer Security 2007-2008-2009-2010-2011-2012-2013-2014



donate.gif Please consider a donation to help me keep up my fight against malware.

 

Just a reminder that threads will be closed if no response in 3 days


#14 ken545

ken545

    Malware Response Team


  • Malware Response Team
  • 1,685 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Space Coast of Florida
  • Local time:07:19 PM

Posted 11 October 2014 - 09:13 PM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.

mvp_host.pngConsumer Security 2007-2008-2009-2010-2011-2012-2013-2014



donate.gif Please consider a donation to help me keep up my fight against malware.

 

Just a reminder that threads will be closed if no response in 3 days





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users