Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I Don't know whats wrong? was sent here for dds logs


  • This topic is locked This topic is locked
16 replies to this topic

#1 bonezz

bonezz

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 06 January 2015 - 08:40 AM

Attached File  attach.txt   6.42KB   0 downloads Here are the logs: DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 8.0.7601.17514
Run by TimandDoris at 6:26:55 on 2015-01-05
Microsoft Windows 7 Professional   6.1.7601.1.1252.1.1033.18.1478.425 [GMT -5:00]
.
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\atieclxx.exe
C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
C:\Program Files\LSI SoftModem\agr64svc.exe
C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
C:\Windows\system32\CISVC.EXE
C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
C:\Program Files\AMD Quick Stream\AMDQuickStream.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
C:\Program Files (x86)\PeoplePC\ISP8500\Browser\Bartshel.exe
C:\Program Files (x86)\PeoplePC\ISP8500\Browser\PPShared.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files (x86)\PeoplePC\ISP8500\Browser\Bartshel.exe
C:\Program Files (x86)\PeoplePC Accelerated\PeoplePC.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\SysWOW64\msiexec.exe
C:\Windows\system32\msiexec.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://home.peoplepc.com/websearch
uSearch Bar = Preserve
uProxyServer = hxxp=localhost:8080
uProxyOverride = <local>
mWinlogon: Userinit = userinit.exe
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Accelerator Plugin: {656EC4B7-072B-4698-B504-2A414C1F0037} - C:\Program Files (x86)\PeoplePC Accelerated\prpl_IePopupBlocker.dll
BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\AMD\SteadyVideo\SteadyVideo.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Free Download Manager: {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll
BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
uRun: [AppEx Accelerator UI] C:\Program Files\AMD Quick Stream\AMDQuickStream.exe -h
uRun: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [Bart Station] C:\Program Files (x86)\PeoplePC\ISP8500\BIN\PPCOLink.exe -STATION
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: SoftwareSASGeneration = dword:1
IE: Refresh Pa&ge with Full Quality - C:\Program Files (x86)\PeoplePC Accelerated\pac-page.html
IE: Refresh Pi&cture with Full Quality - C:\Program Files (x86)\PeoplePC Accelerated\pac-image.html
IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
TCP: Interfaces\{096C4026-1396-439E-BA93-C537F916CEDA} : NameServer = 207.69.188.167 207.69.188.166
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll
SSODL: WebCheck - <orphaned>
x64-BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll
x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll
x64-Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
x64-Run: [UnThreat] "C:\Program Files (x86)\UnThreat AntiVirus\UnThreat.exe" -silent
x64-RunOnce: [NCPluginUpdater] "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update
x64-IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
x64-Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
x64-Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 amd_sata;amd_sata;C:\Windows\System32\drivers\amd_sata.sys [2014-12-27 82600]
R0 amd_xata;amd_xata;C:\Windows\System32\drivers\amd_xata.sys [2014-12-27 42664]
R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2015-1-1 65776]
R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2015-1-1 267632]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswsnx.sys [2015-1-1 1050432]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2015-1-1 436624]
R2 AERTFilters;Andrea RT Filters Service;C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2014-12-27 98208]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2014-12-27 239616]
R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-8-30 344064]
R2 APXACC;AppEx Networks Accelerator LWF;C:\Windows\System32\drivers\appexDrv.sys [2014-12-27 219360]
R2 aswHwid;avast! HardwareID;C:\Windows\System32\drivers\aswHwid.sys [2015-1-1 29208]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2015-1-1 83280]
R2 aswStm;aswStm;C:\Windows\System32\drivers\aswStm.sys [2015-1-1 116728]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-1-1 50344]
R2 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service;C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [2014-12-27 77576]
R2 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service;C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [2014-12-27 298760]
R2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2013-8-29 92160]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-12-30 1871160]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-12-30 969016]
R2 RtkAudioService;Realtek Audio Service;C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE [2014-12-27 246488]
R2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2013-8-2 3378416]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2014-12-30 25816]
R3 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\System32\drivers\MBAMSwissArmy.sys [2014-12-30 129752]
R3 MBAMWebAccessControl;MBAMWebAccessControl;C:\Windows\System32\drivers\mwac.sys [2014-12-30 63704]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2014-12-27 881880]
R3 usbfilter;AMD USB Filter Driver;C:\Windows\System32\drivers\usbfilter.sys [2012-3-6 56448]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-7-9 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-7-8 123856]
S3 amdhub30;AMD USB 3.0 Hub Driver;C:\Windows\System32\drivers\amdhub30.sys [2012-3-6 103552]
S3 amdxhc;AMD USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\amdxhc.sys [2012-3-6 220288]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2010-11-21 71168]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-8-2 273136]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2012-3-6 96768]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2012-3-6 213504]
S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2015-1-2 1255736]
.
=============== Created Last 30 ================
.
2015-01-04 13:51:20 -------- d-----w- C:\ProgramData\PopCap Games
2015-01-04 13:51:20 -------- d-----w- C:\Program Files (x86)\PopCap Games
2015-01-04 11:52:14 1719296 ----a-w- C:\Program Files\Windows Journal\NBDoc.DLL
2015-01-04 11:52:14 1354240 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll
2015-01-04 11:52:13 1389568 ----a-w- C:\Program Files\Windows Journal\JNWDRV.dll
2015-01-04 11:52:13 1380864 ----a-w- C:\Program Files\Windows Journal\JNTFiltr.dll
2015-01-04 11:52:12 936960 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2015-01-04 11:40:51 331776 ----a-w- C:\Windows\System32\oleacc.dll
2015-01-04 11:40:51 233472 ----a-w- C:\Windows\SysWow64\oleacc.dll
2015-01-04 11:40:42 124112 ----a-w- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2015-01-04 11:40:42 102608 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-01-04 11:31:18 1684928 ----a-w- C:\Windows\System32\drivers\ntfs.sys
2015-01-04 11:30:57 96768 ----a-w- C:\Windows\System32\fsutil.exe
2015-01-04 11:30:57 27008 ----a-w- C:\Windows\System32\drivers\amdxata.sys
2015-01-04 11:30:57 2565632 ----a-w- C:\Windows\System32\esent.dll
2015-01-04 11:30:56 74240 ----a-w- C:\Windows\SysWow64\fsutil.exe
2015-01-04 11:30:56 410496 ----a-w- C:\Windows\System32\drivers\iaStorV.sys
2015-01-04 11:30:56 1699328 ----a-w- C:\Windows\SysWow64\esent.dll
2015-01-04 11:30:55 166272 ----a-w- C:\Windows\System32\drivers\nvstor.sys
2015-01-04 11:30:55 148352 ----a-w- C:\Windows\System32\drivers\nvraid.sys
2015-01-04 11:30:55 107904 ----a-w- C:\Windows\System32\drivers\amdsata.sys
2015-01-03 18:00:48 274880 ----a-w- C:\Windows\System32\drivers\msiscsi.sys
2015-01-03 18:00:47 27584 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
2015-01-03 18:00:47 190912 ----a-w- C:\Windows\System32\drivers\storport.sys
2015-01-03 18:00:46 2048 ----a-w- C:\Windows\SysWow64\iologmsg.dll
2015-01-03 18:00:43 2048 ----a-w- C:\Windows\System32\iologmsg.dll
2015-01-03 16:06:55 142336 ----a-w- C:\Windows\System32\poqexec.exe
2015-01-03 16:06:55 123904 ----a-w- C:\Windows\SysWow64\poqexec.exe
2015-01-03 15:56:37 224256 ----a-w- C:\Windows\System32\wintrust.dll
2015-01-03 15:56:37 175104 ----a-w- C:\Windows\SysWow64\wintrust.dll
2015-01-03 14:35:37 197120 ----a-w- C:\Windows\System32\credui.dll
2015-01-03 14:35:37 190464 ----a-w- C:\Windows\System32\SmartcardCredentialProvider.dll
2015-01-03 14:35:37 168960 ----a-w- C:\Windows\SysWow64\credui.dll
2015-01-03 14:35:37 152576 ----a-w- C:\Windows\SysWow64\SmartcardCredentialProvider.dll
2015-01-03 13:51:36 210944 ----a-w- C:\Windows\System32\drivers\rdpwd.sys
2015-01-03 03:35:51 87040 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys
2015-01-03 03:35:51 198656 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys
2015-01-03 03:35:50 84992 ----a-w- C:\Windows\System32\WUDFSvc.dll
2015-01-03 03:35:49 194048 ----a-w- C:\Windows\System32\WUDFPlatform.dll
2015-01-03 03:35:46 45056 ----a-w- C:\Windows\System32\WUDFCoinstaller.dll
2015-01-03 03:35:45 229888 ----a-w- C:\Windows\System32\WUDFHost.exe
2015-01-03 03:35:44 744448 ----a-w- C:\Windows\System32\WUDFx.dll
2015-01-02 22:49:56 3241984 ----a-w- C:\Windows\System32\msi.dll
2015-01-02 22:49:55 2363904 ----a-w- C:\Windows\SysWow64\msi.dll
2015-01-02 22:30:10 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2015-01-02 22:30:10 53248 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2015-01-02 22:30:10 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys
2015-01-02 22:30:09 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys
2015-01-02 22:30:09 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys
2015-01-02 22:30:09 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys
2015-01-02 11:26:26 327168 ----a-w- C:\Windows\System32\mswsock.dll
2015-01-02 11:26:25 231424 ----a-w- C:\Windows\SysWow64\mswsock.dll
2015-01-02 10:58:00 404480 ----a-w- C:\Windows\System32\gdi32.dll
2015-01-02 10:58:00 311808 ----a-w- C:\Windows\SysWow64\gdi32.dll
2015-01-02 10:41:57 1941504 ----a-w- C:\Windows\System32\authui.dll
2015-01-02 10:41:56 70144 ----a-w- C:\Windows\System32\appinfo.dll
2015-01-02 10:41:56 504320 ----a-w- C:\Windows\System32\msihnd.dll
2015-01-02 10:41:56 1805824 ----a-w- C:\Windows\SysWow64\authui.dll
2015-01-02 10:41:56 112064 ----a-w- C:\Windows\System32\consent.exe
2015-01-02 10:41:55 337408 ----a-w- C:\Windows\SysWow64\msihnd.dll
2015-01-02 10:21:40 75776 ----a-w- C:\Windows\SysWow64\psisrndr.ax
2015-01-02 10:21:40 613888 ----a-w- C:\Windows\System32\psisdecd.dll
2015-01-02 10:21:39 465408 ----a-w- C:\Windows\SysWow64\psisdecd.dll
2015-01-02 10:21:38 108032 ----a-w- C:\Windows\System32\psisrndr.ax
2015-01-02 08:36:04 -------- d-----w- C:\Windows\SysWow64\Wat
2015-01-02 08:36:04 -------- d-----w- C:\Windows\System32\Wat
2015-01-02 08:11:26 2560 ----a-w- C:\Windows\System32\drivers\en-US\wdf01000.sys.mui
2015-01-02 02:38:52 503296 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
2015-01-02 02:38:52 449024 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\tabskb.dll
2015-01-02 02:38:52 1247232 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\tipskins.dll
2015-01-02 02:38:51 646144 ----a-w- C:\Windows\SysWow64\osk.exe
2015-01-02 02:38:51 348672 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\tiptsf.dll
2015-01-02 02:38:51 224768 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe
2015-01-02 02:38:50 692736 ----a-w- C:\Windows\System32\osk.exe
2015-01-02 02:38:50 544768 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\TipRes.dll
2015-01-02 02:38:50 110592 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\TipBand.dll
2015-01-02 02:38:50 10240 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\TabTip32.exe
2015-01-02 02:26:15 571904 ----a-w- C:\Program Files\Windows Defender\MpClient.dll
2015-01-02 02:26:15 392704 ----a-w- C:\Program Files (x86)\Windows Defender\MpClient.dll
2015-01-02 02:26:15 314880 ----a-w- C:\Program Files\Windows Defender\MpCommu.dll
2015-01-02 02:26:15 1011712 ----a-w- C:\Program Files\Windows Defender\MpSvc.dll
2015-01-02 02:26:14 9216 ----a-w- C:\Program Files (x86)\Windows Defender\MpAsDesc.dll
2015-01-02 02:26:14 54784 ----a-w- C:\Program Files (x86)\Windows Defender\MpOAV.dll
2015-01-02 02:26:14 4608 ----a-w- C:\Program Files (x86)\Windows Defender\MsMpLics.dll
2015-01-02 01:13:35 1572864 ----a-w- C:\Windows\System32\quartz.dll
2015-01-02 01:13:34 1328128 ----a-w- C:\Windows\SysWow64\quartz.dll
2015-01-02 00:45:07 371712 ----a-w- C:\Windows\System32\qdvd.dll
2015-01-02 00:45:06 519680 ----a-w- C:\Windows\SysWow64\qdvd.dll
2015-01-02 00:44:54 878080 ----a-w- C:\Windows\System32\IMJP10K.DLL
2015-01-02 00:44:54 701440 ----a-w- C:\Windows\SysWow64\IMJP10K.DLL
2015-01-01 22:40:41 288768 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2015-01-01 22:40:41 158208 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
2015-01-01 22:40:41 128000 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
2015-01-01 22:22:21 156824 ----a-w- C:\Windows\SysWow64\mscorier.dll
2015-01-01 22:22:21 156312 ----a-w- C:\Windows\System32\mscorier.dll
2015-01-01 22:22:21 1131664 ----a-w- C:\Windows\SysWow64\dfshim.dll
2015-01-01 22:22:20 81560 ----a-w- C:\Windows\SysWow64\mscories.dll
2015-01-01 22:22:20 73880 ----a-w- C:\Windows\System32\mscories.dll
2015-01-01 22:22:20 1943696 ----a-w- C:\Windows\System32\dfshim.dll
2015-01-01 22:18:57 1474048 ----a-w- C:\Windows\System32\crypt32.dll
2015-01-01 22:18:57 1168384 ----a-w- C:\Windows\SysWow64\crypt32.dll
2015-01-01 22:18:56 184320 ----a-w- C:\Windows\System32\cryptsvc.dll
2015-01-01 22:18:56 140288 ----a-w- C:\Windows\SysWow64\cryptsvc.dll
2015-01-01 22:18:56 139776 ----a-w- C:\Windows\System32\cryptnet.dll
2015-01-01 22:18:56 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll
2015-01-01 22:17:23 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2015-01-01 22:17:22 376768 ----a-w- C:\Windows\System32\drivers\netio.sys
2015-01-01 22:17:22 288192 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
2015-01-01 22:02:50 2002432 ----a-w- C:\Windows\System32\msxml6.dll
2015-01-01 22:02:49 2048 ----a-w- C:\Windows\SysWow64\msxml6r.dll
2015-01-01 22:02:49 2048 ----a-w- C:\Windows\System32\msxml6r.dll
2015-01-01 22:02:49 1389056 ----a-w- C:\Windows\SysWow64\msxml6.dll
2015-01-01 21:20:37 1190912 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2015-01-01 21:20:36 1011200 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2015-01-01 21:20:08 1395712 ----a-w- C:\Windows\System32\mfc42.dll
2015-01-01 21:20:08 1359872 ----a-w- C:\Windows\System32\mfc42u.dll
2015-01-01 21:20:07 1164288 ----a-w- C:\Windows\SysWow64\mfc42u.dll
2015-01-01 21:20:07 1137664 ----a-w- C:\Windows\SysWow64\mfc42.dll
2015-01-01 21:13:29 1882624 ----a-w- C:\Windows\System32\msxml3.dll
2015-01-01 21:13:28 2048 ----a-w- C:\Windows\SysWow64\msxml3r.dll
2015-01-01 21:13:28 2048 ----a-w- C:\Windows\System32\msxml3r.dll
2015-01-01 21:13:28 1237504 ----a-w- C:\Windows\SysWow64\msxml3.dll
2015-01-01 21:04:33 1888768 ----a-w- C:\Windows\System32\WMVDECOD.DLL
2015-01-01 21:04:32 1620992 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
2015-01-01 21:01:56 610304 ----a-w- C:\Windows\System32\vbscript.dll
2015-01-01 21:01:56 428544 ----a-w- C:\Windows\SysWow64\vbscript.dll
2015-01-01 21:01:19 9728 ----a-w- C:\Windows\System32\Wdfres.dll
2015-01-01 21:01:19 785624 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys
2015-01-01 21:01:19 54376 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys
2015-01-01 20:58:27 216576 ----a-w- C:\Windows\System32\ncsi.dll
2015-01-01 20:58:26 569344 ----a-w- C:\Windows\System32\iphlpsvc.dll
2015-01-01 20:58:26 246272 ----a-w- C:\Windows\System32\netcorehc.dll
2015-01-01 20:58:26 156672 ----a-w- C:\Windows\SysWow64\ncsi.dll
2015-01-01 20:58:25 52224 ----a-w- C:\Windows\SysWow64\nlaapi.dll
2015-01-01 20:58:25 303104 ----a-w- C:\Windows\System32\nlasvc.dll
2015-01-01 20:58:25 175104 ----a-w- C:\Windows\SysWow64\netcorehc.dll
2015-01-01 20:58:24 70656 ----a-w- C:\Windows\System32\nlaapi.dll
2015-01-01 20:58:24 45568 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys
2015-01-01 20:58:24 18944 ----a-w- C:\Windows\SysWow64\netevent.dll
2015-01-01 20:58:23 18944 ----a-w- C:\Windows\System32\netevent.dll
2015-01-01 20:40:59 245760 ----a-w- C:\Windows\System32\OxpsConverter.exe
2015-01-01 16:29:10 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\AVAST Software
2015-01-01 16:28:23 93568 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2015-01-01 16:28:23 83280 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2015-01-01 16:28:23 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
2015-01-01 16:28:23 29208 ----a-w- C:\Windows\System32\drivers\aswHwid.sys
2015-01-01 16:28:23 267632 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
2015-01-01 16:28:23 116728 ----a-w- C:\Windows\System32\drivers\aswStm.sys
2015-01-01 16:28:22 1050432 ----a-w- C:\Windows\System32\drivers\aswsnx.sys
2015-01-01 16:28:09 43152 ----a-w- C:\Windows\avastSS.scr
2015-01-01 16:26:50 -------- d-----w- C:\Program Files\AVAST Software
2015-01-01 16:23:20 -------- d-----w- C:\ProgramData\AVAST Software
2015-01-01 14:54:26 680960 ----a-w- C:\Windows\System32\audiosrv.dll
2015-01-01 14:54:26 500224 ----a-w- C:\Windows\System32\AUDIOKSE.dll
2015-01-01 14:54:26 442880 ----a-w- C:\Windows\SysWow64\AUDIOKSE.dll
2015-01-01 14:54:26 440832 ----a-w- C:\Windows\System32\AudioEng.dll
2015-01-01 14:54:26 374784 ----a-w- C:\Windows\SysWow64\AudioEng.dll
2015-01-01 14:54:26 296448 ----a-w- C:\Windows\System32\AudioSes.dll
2015-01-01 14:54:26 284672 ----a-w- C:\Windows\System32\EncDump.dll
2015-01-01 14:54:26 195584 ----a-w- C:\Windows\SysWow64\AudioSes.dll
2015-01-01 14:44:02 424448 ----a-w- C:\Windows\System32\rastls.dll
2015-01-01 14:44:02 372736 ----a-w- C:\Windows\SysWow64\rastls.dll
2015-01-01 14:43:47 751104 ----a-w- C:\Windows\System32\win32spl.dll
2015-01-01 14:43:47 492544 ----a-w- C:\Windows\SysWow64\win32spl.dll
2015-01-01 14:40:15 64512 ----a-w- C:\Windows\SysWow64\devobj.dll
2015-01-01 14:40:15 44544 ----a-w- C:\Windows\SysWow64\devrtl.dll
2015-01-01 14:40:15 404480 ----a-w- C:\Windows\System32\umpnpmgr.dll
2015-01-01 14:40:15 252928 ----a-w- C:\Windows\SysWow64\drvinst.exe
2015-01-01 14:40:15 145920 ----a-w- C:\Windows\SysWow64\cfgmgr32.dll
2015-01-01 14:08:10 690688 ----a-w- C:\Windows\SysWow64\msvcrt.dll
2015-01-01 14:08:10 634880 ----a-w- C:\Windows\System32\msvcrt.dll
2015-01-01 13:50:58 1545728 ----a-w- C:\Windows\System32\DWrite.dll
2015-01-01 13:50:57 1143296 ----a-w- C:\Windows\System32\FntCache.dll
2015-01-01 13:50:57 1077760 ----a-w- C:\Windows\SysWow64\DWrite.dll
2015-01-01 13:41:49 861696 ----a-w- C:\Windows\System32\oleaut32.dll
2015-01-01 13:41:48 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll
2014-12-31 18:39:22 509952 ----a-w- C:\Windows\System32\ntshrui.dll
2014-12-31 18:39:22 442880 ----a-w- C:\Windows\SysWow64\ntshrui.dll
2014-12-31 18:22:21 793600 ----a-w- C:\Windows\SysWow64\TSWorkspace.dll
2014-12-31 18:22:21 1031168 ----a-w- C:\Windows\System32\TSWorkspace.dll
2014-12-31 18:18:27 30720 ----a-w- C:\Windows\System32\cryptdlg.dll
2014-12-31 18:18:27 24576 ----a-w- C:\Windows\SysWow64\cryptdlg.dll
2014-12-31 18:13:33 723456 ----a-w- C:\Windows\System32\EncDec.dll
2014-12-31 18:13:33 534528 ----a-w- C:\Windows\SysWow64\EncDec.dll
2014-12-31 18:09:50 950128 ----a-w- C:\Windows\System32\drivers\ndis.sys
2014-12-31 18:09:50 41472 ----a-w- C:\Windows\System32\drivers\RNDISMP.sys
2014-12-31 17:58:47 77824 ----a-w- C:\Windows\System32\packager.dll
2014-12-31 17:58:46 67584 ----a-w- C:\Windows\SysWow64\packager.dll
2014-12-31 17:56:20 59392 ----a-w- C:\Windows\System32\browcli.dll
2014-12-31 17:56:20 41984 ----a-w- C:\Windows\SysWow64\browcli.dll
2014-12-31 17:56:20 136704 ----a-w- C:\Windows\System32\browser.dll
2014-12-31 17:52:57 155584 ----a-w- C:\Windows\System32\drivers\ataport.sys
2014-12-31 17:50:41 48640 ----a-w- C:\Windows\System32\wwanprotdim.dll
2014-12-31 17:50:41 228864 ----a-w- C:\Windows\System32\wwansvc.dll
2014-12-31 17:48:47 230400 ----a-w- C:\Windows\System32\drivers\portcls.sys
2014-12-31 17:48:47 116736 ----a-w- C:\Windows\System32\drivers\drmk.sys
2014-12-31 16:57:45 19968 ----a-w- C:\Windows\System32\drivers\usb8023.sys
2014-12-31 16:57:16 9216 ----a-w- C:\Windows\System32\rdrmemptylst.exe
2014-12-31 16:57:16 77312 ----a-w- C:\Windows\System32\rdpwsx.dll
2014-12-31 16:57:16 149504 ----a-w- C:\Windows\System32\rdpcorekmts.dll
2014-12-31 16:56:44 497152 ----a-w- C:\Windows\System32\drivers\afd.sys
2014-12-31 16:48:00 209920 ----a-w- C:\Windows\System32\profsvc.dll
2014-12-31 16:46:14 30208 ----a-w- C:\Windows\System32\dnscacheugc.exe
2014-12-31 16:46:14 28672 ----a-w- C:\Windows\SysWow64\dnscacheugc.exe
2014-12-31 16:46:14 183296 ----a-w- C:\Windows\System32\dnsrslvr.dll
2014-12-31 16:42:39 478208 ----a-w- C:\Windows\System32\dpnet.dll
2014-12-31 16:42:39 376832 ----a-w- C:\Windows\SysWow64\dpnet.dll
2014-12-31 15:13:59 515584 ----a-w- C:\Windows\System32\timedate.cpl
2014-12-31 15:13:59 478720 ----a-w- C:\Windows\SysWow64\timedate.cpl
2014-12-31 14:43:10 100864 ----a-w- C:\Windows\System32\drivers\usbcir.sys
2014-12-31 14:35:55 76800 ----a-w- C:\Windows\System32\drivers\hidclass.sys
2014-12-31 14:35:55 32896 ----a-w- C:\Windows\System32\drivers\hidparse.sys
2014-12-31 13:12:27 886784 ----a-w- C:\Program Files\Common Files\System\wab32.dll
2014-12-31 13:12:27 708608 ----a-w- C:\Program Files (x86)\Common Files\System\wab32.dll
2014-12-31 11:28:02 801280 ----a-w- C:\Windows\System32\usp10.dll
2014-12-31 11:28:02 626688 ----a-w- C:\Windows\SysWow64\usp10.dll
2014-12-31 10:55:12 484864 ----a-w- C:\Windows\System32\wer.dll
2014-12-31 10:55:12 381440 ----a-w- C:\Windows\SysWow64\wer.dll
2014-12-31 10:54:19 81408 ----a-w- C:\Windows\System32\imagehlp.dll
2014-12-31 10:54:19 5120 ----a-w- C:\Windows\SysWow64\wmi.dll
2014-12-31 10:54:19 5120 ----a-w- C:\Windows\System32\wmi.dll
2014-12-31 10:54:19 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys
2014-12-31 10:54:19 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll
2014-12-30 17:42:36 70656 ----a-w- C:\Windows\SysWow64\fontsub.dll
2014-12-30 17:42:36 46080 ----a-w- C:\Windows\System32\atmlib.dll
2014-12-30 17:42:36 41472 ----a-w- C:\Windows\System32\lpk.dll
2014-12-30 17:42:36 368128 ----a-w- C:\Windows\System32\atmfd.dll
2014-12-30 17:42:36 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2014-12-30 17:42:36 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll
2014-12-30 17:42:36 25600 ----a-w- C:\Windows\SysWow64\lpk.dll
2014-12-30 17:42:36 14336 ----a-w- C:\Windows\System32\dciman32.dll
2014-12-30 17:42:36 10240 ----a-w- C:\Windows\SysWow64\dciman32.dll
2014-12-30 17:42:36 100864 ----a-w- C:\Windows\System32\fontsub.dll
2014-12-30 15:59:57 31232 ----a-w- C:\Windows\SysWow64\prevhost.exe
2014-12-30 15:59:57 31232 ----a-w- C:\Windows\System32\prevhost.exe
2014-12-30 15:59:21 976896 ----a-w- C:\Windows\System32\inetcomm.dll
2014-12-30 15:59:21 741376 ----a-w- C:\Windows\SysWow64\inetcomm.dll
2014-12-30 14:49:28 129752 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-12-30 14:48:43 93400 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-12-30 14:48:43 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys
2014-12-30 14:48:43 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-12-30 14:48:43 -------- d-----w- C:\ProgramData\Malwarebytes
2014-12-30 14:48:43 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-12-30 11:37:57 202752 ----a-w- C:\Windows\System32\scrrun.dll
2014-12-30 11:37:57 168960 ----a-w- C:\Windows\System32\wscript.exe
2014-12-30 11:37:57 163840 ----a-w- C:\Windows\SysWow64\scrrun.dll
2014-12-30 11:37:57 156160 ----a-w- C:\Windows\System32\cscript.exe
2014-12-30 11:37:57 150016 ----a-w- C:\Windows\System32\wshom.ocx
2014-12-30 11:37:57 141824 ----a-w- C:\Windows\SysWow64\wscript.exe
2014-12-30 11:37:57 121856 ----a-w- C:\Windows\SysWow64\wshom.ocx
2014-12-30 11:37:56 126976 ----a-w- C:\Windows\SysWow64\cscript.exe
2014-12-30 11:29:57 956928 ----a-w- C:\Windows\System32\localspl.dll
2014-12-30 11:01:38 859648 ----a-w- C:\Windows\System32\IKEEXT.DLL
2014-12-30 11:01:38 830464 ----a-w- C:\Windows\System32\nshwfp.dll
2014-12-30 11:01:38 656896 ----a-w- C:\Windows\SysWow64\nshwfp.dll
2014-12-30 11:01:38 324096 ----a-w- C:\Windows\System32\FWPUCLNT.DLL
2014-12-30 11:01:38 216576 ----a-w- C:\Windows\SysWow64\FWPUCLNT.DLL
2014-12-29 22:15:54 605552 ----a-w- C:\Windows\System32\winload.exe
2014-12-29 22:15:54 566208 ----a-w- C:\Windows\System32\winresume.efi
2014-12-29 22:15:54 518672 ----a-w- C:\Windows\System32\winresume.exe
2014-12-29 22:15:53 642944 ----a-w- C:\Windows\System32\winload.efi
2014-12-29 22:15:53 20352 ----a-w- C:\Windows\System32\kdusb.dll
2014-12-29 22:15:53 19328 ----a-w- C:\Windows\System32\kd1394.dll
2014-12-29 22:15:53 17792 ----a-w- C:\Windows\System32\kdcom.dll
2014-12-29 22:14:01 3198976 ----a-w- C:\Windows\System32\win32k.sys
2014-12-29 22:10:12 467456 ----a-w- C:\Windows\System32\drivers\srv.sys
2014-12-29 22:10:12 410112 ----a-w- C:\Windows\System32\drivers\srv2.sys
2014-12-29 22:10:12 168448 ----a-w- C:\Windows\System32\drivers\srvnet.sys
2014-12-29 22:09:34 624128 ----a-w- C:\Windows\System32\qedit.dll
2014-12-29 22:09:34 509440 ----a-w- C:\Windows\SysWow64\qedit.dll
2014-12-29 22:06:25 1216000 ----a-w- C:\Windows\System32\rpcrt4.dll
2014-12-29 22:06:24 664064 ----a-w- C:\Windows\SysWow64\rpcrt4.dll
2014-12-29 22:02:27 503808 ----a-w- C:\Windows\System32\srcore.dll
2014-12-29 22:02:27 43008 ----a-w- C:\Windows\SysWow64\srclient.dll
2014-12-29 21:56:51 223752 ----a-w- C:\Windows\System32\drivers\fvevol.sys
2014-12-29 21:53:15 461312 ----a-w- C:\Windows\System32\scavengeui.dll
2014-12-29 16:51:25 -------- d--h--w- C:\$WINDOWS.~BT
2014-12-29 14:41:50 346624 ----a-w- C:\Windows\System32\WSManMigrationPlugin.dll
2014-12-29 14:41:50 310272 ----a-w- C:\Windows\System32\WsmWmiPl.dll
2014-12-29 14:41:50 266240 ----a-w- C:\Windows\System32\WSManHTTPConfig.exe
2014-12-29 14:41:50 248832 ----a-w- C:\Windows\SysWow64\WSManMigrationPlugin.dll
2014-12-29 14:41:50 214016 ----a-w- C:\Windows\SysWow64\WsmWmiPl.dll
2014-12-29 14:41:50 2020352 ----a-w- C:\Windows\System32\WsmSvc.dll
2014-12-29 14:41:50 198656 ----a-w- C:\Windows\SysWow64\WSManHTTPConfig.exe
2014-12-29 14:41:50 181248 ----a-w- C:\Windows\System32\WsmAuto.dll
2014-12-29 14:41:50 145920 ----a-w- C:\Windows\SysWow64\WsmAuto.dll
2014-12-29 14:41:50 1177088 ----a-w- C:\Windows\SysWow64\WsmSvc.dll
2014-12-29 14:36:58 81920 ----a-w- C:\Windows\SysWow64\davclnt.dll
2014-12-29 14:36:58 259584 ----a-w- C:\Windows\System32\WebClnt.dll
2014-12-29 14:36:58 205824 ----a-w- C:\Windows\SysWow64\WebClnt.dll
2014-12-29 14:36:58 140800 ----a-w- C:\Windows\System32\drivers\mrxdav.sys
2014-12-29 14:36:58 102400 ----a-w- C:\Windows\System32\davclnt.dll
2014-12-29 14:29:43 985536 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2014-12-29 14:29:43 265064 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
2014-12-29 14:29:43 144384 ----a-w- C:\Windows\System32\cdd.dll
2014-12-29 14:28:41 95744 ----a-w- C:\Windows\System32\synceng.dll
2014-12-29 14:28:41 78336 ----a-w- C:\Windows\SysWow64\synceng.dll
2014-12-29 14:25:55 267776 ----a-w- C:\Windows\System32\FXSCOVER.exe
2014-12-29 14:24:11 119296 ----a-w- C:\Windows\System32\drivers\tdx.sys
2014-12-29 14:14:25 90624 ----a-w- C:\Windows\System32\drivers\bowser.sys
2014-12-29 14:10:37 68608 ----a-w- C:\Windows\System32\taskhost.exe
2014-12-29 14:08:53 165888 ----a-w- C:\Windows\System32\charmap.exe
2014-12-29 14:08:53 155136 ----a-w- C:\Windows\SysWow64\charmap.exe
2014-12-29 14:05:10 75120 ----a-w- C:\Windows\System32\drivers\partmgr.sys
2014-12-29 14:02:05 6144 ----a-w- C:\Program Files\Internet Explorer\iecompat.dll
2014-12-29 14:02:05 6144 ----a-w- C:\Program Files (x86)\Internet Explorer\iecompat.dll
2014-12-29 13:37:33 47496 ----a-w- C:\Windows\System32\sbbd.exe
2014-12-29 11:34:46 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll
2014-12-29 11:34:46 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys
2014-12-29 11:34:46 1031680 ----a-w- C:\Windows\System32\rdpcore.dll
2014-12-29 00:17:26 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\Free Download Manager
2014-12-29 00:17:17 -------- d-----w- C:\Program Files (x86)\Free Download Manager
2014-12-28 15:05:17 -------- d-----w- C:\Program Files (x86)\UnThreat AntiVirus
2014-12-28 05:56:17 -------- d-----w- C:\Windows\Panther
2014-12-28 05:54:06 -------- d-----w- C:\Windows\System32\OEM
2014-12-28 05:45:18 -------- d--h--w- C:\$WINDOWS.~Q
2014-12-28 05:43:48 -------- d--h--w- C:\$INPLACE.~TR
2014-12-28 04:25:04 2620928 ----a-w- C:\Windows\System32\wucltux.dll
2014-12-28 04:24:59 97792 ----a-w- C:\Windows\System32\wudriver.dll
2014-12-28 04:24:59 92672 ----a-w- C:\Windows\SysWow64\wudriver.dll
2014-12-28 04:24:41 33792 ----a-w- C:\Windows\SysWow64\wuapp.exe
2014-12-28 04:24:41 179656 ----a-w- C:\Windows\SysWow64\wuwebv.dll
2014-12-28 04:24:40 36864 ----a-w- C:\Windows\System32\wuapp.exe
2014-12-28 04:24:40 198600 ----a-w- C:\Windows\System32\wuwebv.dll
2014-12-28 03:01:29 -------- d-----w- C:\Program Files\LSI SoftModem
2014-12-28 03:00:53 0 ----a-w- C:\Windows\ativpsrm.bin
2014-12-28 03:00:52 65536 ----a-w- C:\Windows\System32\spu_storage.bin
2014-12-28 03:00:47 -------- d-----w- C:\Program Files\Common Files\ATI Technologies
2014-12-28 02:59:52 -------- d-----w- C:\Windows\System32\SRSLabs
2014-12-28 02:59:08 -------- d-----w- C:\Program Files\Realtek
2014-12-28 02:58:59 -------- d-----w- C:\Windows\SysWow64\RTCOM
2014-12-28 01:41:12 -------- d-----w- C:\Users\TimandDoris\AppData\Local\AMD
2014-12-28 01:40:59 -------- d-----w- C:\Users\TimandDoris\AppData\Local\ATI
2014-12-28 01:40:16 -------- d-----w- C:\Users\TimandDoris\AppData\Local\AppEx Networks
2014-12-28 01:35:02 82600 ----a-w- C:\Windows\System32\drivers\amd_sata.sys
2014-12-28 01:35:02 42664 ----a-w- C:\Windows\System32\drivers\amd_xata.sys
2014-12-28 01:33:56 881880 ----a-w- C:\Windows\System32\drivers\Rt64win7.sys
2014-12-28 01:33:56 74456 ----a-w- C:\Windows\System32\RtNicProp64.dll
2014-12-28 01:33:56 108760 ----a-w- C:\Windows\System32\RTNUninst64.dll
2014-12-28 01:31:52 -------- d--h--w- C:\Windows\System32\WLANProfiles
2014-12-28 01:31:36 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\Intel
2014-12-28 01:31:19 -------- d-----w- C:\Users\TimandDoris\Roaming
2014-12-28 01:31:19 -------- d-----w- C:\ProgramData\Roaming
2014-12-28 01:30:52 -------- d-----w- C:\Program Files\Common Files\Intel
2014-12-28 01:30:51 -------- d-----w- C:\Program Files (x86)\Cisco
2014-12-28 01:28:22 -------- d-----w- C:\Windows\SYSTEM.SAV
2014-12-28 01:27:01 219360 ----a-w- C:\Windows\System32\drivers\appexDrv.sys
2014-12-28 01:27:01 -------- d-----w- C:\Program Files\AMD Quick Stream
2014-12-28 01:26:59 -------- d-----w- C:\Users\TimandDoris\AppData\Local\Programs
2014-12-28 01:26:58 -------- d-----w- C:\ProgramData\AMD
2014-12-28 01:26:56 -------- d-----w- C:\Program Files (x86)\AMD AVT
2014-12-28 01:26:52 -------- d-----w- C:\Program Files\AMD
2014-12-28 01:26:52 -------- d-----w- C:\Program Files (x86)\AMD
2014-12-28 01:26:46 -------- d-----w- C:\Program Files (x86)\Common Files\ATI Technologies
2014-12-28 01:25:00 -------- d-----w- C:\Program Files\ATI Technologies
2014-12-28 01:24:05 98816 ----a-w- C:\Windows\System32\OpenVideo64.dll
2014-12-28 01:24:05 63488 ----a-w- C:\Windows\System32\OpenCL.dll
2014-12-28 01:24:05 57344 ----a-w- C:\Windows\SysWow64\OpenCL.dll
2014-12-28 01:24:05 23760896 ----a-w- C:\Windows\SysWow64\amdocl.dll
2014-12-28 01:24:05 229376 ----a-w- C:\Windows\System32\clinfo.exe
2014-12-28 01:24:05 127488 ----a-w- C:\Windows\System32\coinst_13.152.dll
2014-12-28 01:24:05 1187342 ----a-w- C:\Windows\System32\amdocl_as64.exe
2014-12-28 01:24:05 1061902 ----a-w- C:\Windows\System32\amdocl_ld64.exe
2014-12-28 01:24:04 995342 ----a-w- C:\Windows\SysWow64\amdocl_as32.exe
2014-12-28 01:24:04 83456 ----a-w- C:\Windows\SysWow64\OpenVideo.dll
2014-12-28 01:24:04 798734 ----a-w- C:\Windows\SysWow64\amdocl_ld32.exe
2014-12-28 01:24:03 86528 ----a-w- C:\Windows\System32\OVDecode64.dll
2014-12-28 01:23:59 73216 ----a-w- C:\Windows\SysWow64\OVDecode.dll
2014-12-28 01:23:59 442368 ----a-w- C:\Windows\System32\atidemgy.dll
2014-12-28 01:23:58 28192256 ----a-w- C:\Windows\System32\amdocl64.dll
2014-12-28 01:23:35 -------- d-----w- C:\Program Files\ATI
2014-12-28 01:23:22 -------- d-----w- C:\Program Files (x86)\ATI Technologies
2014-12-28 01:20:38 90624 ----a-w- C:\Windows\SysWow64\amdave32.dll
2014-12-27 23:41:28 -------- d-----w- C:\DVD RW Drive
2014-12-27 19:13:26 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\PeoplePC Online
2014-12-27 19:13:26 -------- d-----w- C:\ProgramData\PeoplePC Online
2014-12-27 16:45:02 -------- d-----w- C:\Users\TimandDoris\AppData\Local\Diagnostics
2014-12-27 16:19:55 -------- d-----w- C:\Program Files (x86)\PeoplePC Accelerated
2014-12-27 16:14:49 64000 ----a-w- C:\Windows\agrsmdel.exe
2014-12-27 16:14:49 42496 ----a-w- C:\Windows\agrdel64.exe
2014-12-27 16:14:49 14848 ----a-w- C:\Windows\System32\agrsco64.dll
2014-12-27 16:11:34 -------- d-----w- C:\Windows.old
2014-12-27 15:20:06 -------- d-----w- C:\Users\TimandDoris\AppData\Local\Adobe
2014-12-27 15:15:10 -------- d-----w- C:\Users\TimandDoris\AppData\Local\ElevatedDiagnostics
2014-12-27 15:11:23 61440 ----a-w- C:\Windows\SysWow64\ppcpanel.cpl
2014-12-27 15:11:23 58144 ----a-w- C:\Windows\SysWow64\PPCOUNIN.exe
2014-12-27 15:11:23 -------- d-----w- C:\Program Files (x86)\Common Files\PeoplePC
2014-12-27 15:10:54 -------- d-----w- C:\Program Files (x86)\PeoplePC
2014-12-27 15:03:27 -------- d-----w- C:\Users\TimandDoris\AppData\Local\Hewlett-Packard
2014-12-27 15:00:11 -------- d-----w- C:\ProgramData\HP Photo Creations
2014-12-27 15:00:11 -------- d-----w- C:\Program Files (x86)\HP Photo Creations
2014-12-27 15:00:06 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\HpUpdate
2014-12-27 14:59:38 -------- d-----w- C:\Program Files (x86)\HP
2014-12-27 14:58:51 -------- d-----w- C:\Program Files\HP
2014-12-27 14:57:33 -------- d-----w- C:\Users\TimandDoris\AppData\Local\HP
2014-12-27 14:42:13 -------- d-----w- C:\Users\TimandDoris\AppData\Local\CyberLink
2014-12-27 14:39:36 -------- d-----w- C:\ProgramData\install_clap
2014-12-27 14:32:22 -------- d-----w- C:\ProgramData\{A5CCDB92-FA53-47D1-89E6-32B82D86621A}
2014-12-27 14:31:38 582144 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\DAO\DAO350.DLL
2014-12-27 14:31:38 368912 ----a-w- C:\Windows\SysWow64\VBAR332.DLL
2014-12-27 14:31:38 252176 ----a-w- C:\Windows\SysWow64\MSRD2X35.DLL
2014-12-27 14:31:38 24848 ----a-w- C:\Windows\SysWow64\MSJTER35.DLL
2014-12-27 14:31:38 123664 ----a-w- C:\Windows\SysWow64\MSJINT35.DLL
2014-12-27 14:31:38 1045776 ----a-w- C:\Windows\SysWow64\MSJET35.DLL
2014-12-27 14:24:00 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\hpqLog
2014-12-27 14:17:55 -------- d-----w- C:\ProgramData\Package Cache
2014-12-27 14:14:54 -------- d-sh--w- C:\Windows\Installer
2014-12-27 14:12:02 -------- d-----w- C:\Windows\Options
2014-12-27 13:58:21 73192 ----a-w- C:\Windows\SysWow64\unPPC.exe
2014-12-27 13:58:21 70432 ----a-w- C:\Windows\SysWow64\unPPC6000.exe
2014-12-27 13:58:21 42784 ----a-w- C:\Windows\SysWow64\ppcwebi.dll
2014-12-27 13:58:21 41592 ----a-w- C:\Windows\SysWow64\PPCClean.exe
2014-12-27 13:58:21 34136 ----a-w- C:\Windows\SysWow64\RegHero.exe
2014-12-27 13:58:21 29984 ----a-w- C:\Windows\SysWow64\PopWait.exe
2014-12-27 13:58:21 256288 ----a-w- C:\Windows\SysWow64\PPCInfo.exe
2014-12-27 13:58:20 89088 ----a-w- C:\Windows\SysWow64\ATL71.dll
2014-12-27 13:58:20 84992 ----a-w- C:\Windows\SysWow64\ATL70.dll
2014-12-27 13:58:20 499712 ----a-w- C:\Windows\SysWow64\MSVCP71.DLL
2014-12-27 13:58:20 348160 ----a-w- C:\Windows\SysWow64\MSVCR71.DLL
2014-12-27 13:58:20 1060864 ----a-w- C:\Windows\SysWow64\MFC71.DLL
2014-12-27 13:44:51 -------- d-----w- C:\Users\TimandDoris\AppData\Local\VirtualStore
2014-12-24 18:50:38 -------- d-----w- C:\AdwCleaner
.
==================== Find3M  ====================
.
.
============= FINISH:  6:28:41.85 ===============
 



BC AdBot (Login to Remove)

 


#2 bonezz

bonezz
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 06 January 2015 - 08:42 AM

Attached File  attach.txt   6.42KB   0 downloads Here are the logs: DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 8.0.7601.17514
Run by TimandDoris at 6:26:55 on 2015-01-05
Microsoft Windows 7 Professional   6.1.7601.1.1252.1.1033.18.1478.425 [GMT -5:00]
.
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\atieclxx.exe
C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
C:\Program Files\LSI SoftModem\agr64svc.exe
C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
C:\Windows\system32\CISVC.EXE
C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
C:\Program Files\AMD Quick Stream\AMDQuickStream.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
C:\Program Files (x86)\PeoplePC\ISP8500\Browser\Bartshel.exe
C:\Program Files (x86)\PeoplePC\ISP8500\Browser\PPShared.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files (x86)\PeoplePC\ISP8500\Browser\Bartshel.exe
C:\Program Files (x86)\PeoplePC Accelerated\PeoplePC.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\SysWOW64\msiexec.exe
C:\Windows\system32\msiexec.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://home.peoplepc.com/websearch
uSearch Bar = Preserve
uProxyServer = hxxp=localhost:8080
uProxyOverride = <local>
mWinlogon: Userinit = userinit.exe
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Accelerator Plugin: {656EC4B7-072B-4698-B504-2A414C1F0037} - C:\Program Files (x86)\PeoplePC Accelerated\prpl_IePopupBlocker.dll
BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\AMD\SteadyVideo\SteadyVideo.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Free Download Manager: {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll
BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
uRun: [AppEx Accelerator UI] C:\Program Files\AMD Quick Stream\AMDQuickStream.exe -h
uRun: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [Bart Station] C:\Program Files (x86)\PeoplePC\ISP8500\BIN\PPCOLink.exe -STATION
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: SoftwareSASGeneration = dword:1
IE: Refresh Pa&ge with Full Quality - C:\Program Files (x86)\PeoplePC Accelerated\pac-page.html
IE: Refresh Pi&cture with Full Quality - C:\Program Files (x86)\PeoplePC Accelerated\pac-image.html
IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
TCP: Interfaces\{096C4026-1396-439E-BA93-C537F916CEDA} : NameServer = 207.69.188.167 207.69.188.166
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll
SSODL: WebCheck - <orphaned>
x64-BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll
x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll
x64-Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
x64-Run: [UnThreat] "C:\Program Files (x86)\UnThreat AntiVirus\UnThreat.exe" -silent
x64-RunOnce: [NCPluginUpdater] "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update
x64-IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
x64-Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
x64-Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 amd_sata;amd_sata;C:\Windows\System32\drivers\amd_sata.sys [2014-12-27 82600]
R0 amd_xata;amd_xata;C:\Windows\System32\drivers\amd_xata.sys [2014-12-27 42664]
R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2015-1-1 65776]
R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2015-1-1 267632]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswsnx.sys [2015-1-1 1050432]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2015-1-1 436624]
R2 AERTFilters;Andrea RT Filters Service;C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2014-12-27 98208]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2014-12-27 239616]
R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-8-30 344064]
R2 APXACC;AppEx Networks Accelerator LWF;C:\Windows\System32\drivers\appexDrv.sys [2014-12-27 219360]
R2 aswHwid;avast! HardwareID;C:\Windows\System32\drivers\aswHwid.sys [2015-1-1 29208]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2015-1-1 83280]
R2 aswStm;aswStm;C:\Windows\System32\drivers\aswStm.sys [2015-1-1 116728]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-1-1 50344]
R2 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service;C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [2014-12-27 77576]
R2 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service;C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [2014-12-27 298760]
R2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2013-8-29 92160]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-12-30 1871160]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-12-30 969016]
R2 RtkAudioService;Realtek Audio Service;C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE [2014-12-27 246488]
R2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2013-8-2 3378416]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2014-12-30 25816]
R3 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\System32\drivers\MBAMSwissArmy.sys [2014-12-30 129752]
R3 MBAMWebAccessControl;MBAMWebAccessControl;C:\Windows\System32\drivers\mwac.sys [2014-12-30 63704]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2014-12-27 881880]
R3 usbfilter;AMD USB Filter Driver;C:\Windows\System32\drivers\usbfilter.sys [2012-3-6 56448]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-7-9 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-7-8 123856]
S3 amdhub30;AMD USB 3.0 Hub Driver;C:\Windows\System32\drivers\amdhub30.sys [2012-3-6 103552]
S3 amdxhc;AMD USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\amdxhc.sys [2012-3-6 220288]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2010-11-21 71168]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-8-2 273136]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2012-3-6 96768]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2012-3-6 213504]
S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2015-1-2 1255736]
.
=============== Created Last 30 ================
.
2015-01-04 13:51:20 -------- d-----w- C:\ProgramData\PopCap Games
2015-01-04 13:51:20 -------- d-----w- C:\Program Files (x86)\PopCap Games
2015-01-04 11:52:14 1719296 ----a-w- C:\Program Files\Windows Journal\NBDoc.DLL
2015-01-04 11:52:14 1354240 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll
2015-01-04 11:52:13 1389568 ----a-w- C:\Program Files\Windows Journal\JNWDRV.dll
2015-01-04 11:52:13 1380864 ----a-w- C:\Program Files\Windows Journal\JNTFiltr.dll
2015-01-04 11:52:12 936960 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2015-01-04 11:40:51 331776 ----a-w- C:\Windows\System32\oleacc.dll
2015-01-04 11:40:51 233472 ----a-w- C:\Windows\SysWow64\oleacc.dll
2015-01-04 11:40:42 124112 ----a-w- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2015-01-04 11:40:42 102608 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-01-04 11:31:18 1684928 ----a-w- C:\Windows\System32\drivers\ntfs.sys
2015-01-04 11:30:57 96768 ----a-w- C:\Windows\System32\fsutil.exe
2015-01-04 11:30:57 27008 ----a-w- C:\Windows\System32\drivers\amdxata.sys
2015-01-04 11:30:57 2565632 ----a-w- C:\Windows\System32\esent.dll
2015-01-04 11:30:56 74240 ----a-w- C:\Windows\SysWow64\fsutil.exe
2015-01-04 11:30:56 410496 ----a-w- C:\Windows\System32\drivers\iaStorV.sys
2015-01-04 11:30:56 1699328 ----a-w- C:\Windows\SysWow64\esent.dll
2015-01-04 11:30:55 166272 ----a-w- C:\Windows\System32\drivers\nvstor.sys
2015-01-04 11:30:55 148352 ----a-w- C:\Windows\System32\drivers\nvraid.sys
2015-01-04 11:30:55 107904 ----a-w- C:\Windows\System32\drivers\amdsata.sys
2015-01-03 18:00:48 274880 ----a-w- C:\Windows\System32\drivers\msiscsi.sys
2015-01-03 18:00:47 27584 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
2015-01-03 18:00:47 190912 ----a-w- C:\Windows\System32\drivers\storport.sys
2015-01-03 18:00:46 2048 ----a-w- C:\Windows\SysWow64\iologmsg.dll
2015-01-03 18:00:43 2048 ----a-w- C:\Windows\System32\iologmsg.dll
2015-01-03 16:06:55 142336 ----a-w- C:\Windows\System32\poqexec.exe
2015-01-03 16:06:55 123904 ----a-w- C:\Windows\SysWow64\poqexec.exe
2015-01-03 15:56:37 224256 ----a-w- C:\Windows\System32\wintrust.dll
2015-01-03 15:56:37 175104 ----a-w- C:\Windows\SysWow64\wintrust.dll
2015-01-03 14:35:37 197120 ----a-w- C:\Windows\System32\credui.dll
2015-01-03 14:35:37 190464 ----a-w- C:\Windows\System32\SmartcardCredentialProvider.dll
2015-01-03 14:35:37 168960 ----a-w- C:\Windows\SysWow64\credui.dll
2015-01-03 14:35:37 152576 ----a-w- C:\Windows\SysWow64\SmartcardCredentialProvider.dll
2015-01-03 13:51:36 210944 ----a-w- C:\Windows\System32\drivers\rdpwd.sys
2015-01-03 03:35:51 87040 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys
2015-01-03 03:35:51 198656 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys
2015-01-03 03:35:50 84992 ----a-w- C:\Windows\System32\WUDFSvc.dll
2015-01-03 03:35:49 194048 ----a-w- C:\Windows\System32\WUDFPlatform.dll
2015-01-03 03:35:46 45056 ----a-w- C:\Windows\System32\WUDFCoinstaller.dll
2015-01-03 03:35:45 229888 ----a-w- C:\Windows\System32\WUDFHost.exe
2015-01-03 03:35:44 744448 ----a-w- C:\Windows\System32\WUDFx.dll
2015-01-02 22:49:56 3241984 ----a-w- C:\Windows\System32\msi.dll
2015-01-02 22:49:55 2363904 ----a-w- C:\Windows\SysWow64\msi.dll
2015-01-02 22:30:10 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2015-01-02 22:30:10 53248 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2015-01-02 22:30:10 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys
2015-01-02 22:30:09 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys
2015-01-02 22:30:09 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys
2015-01-02 22:30:09 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys
2015-01-02 11:26:26 327168 ----a-w- C:\Windows\System32\mswsock.dll
2015-01-02 11:26:25 231424 ----a-w- C:\Windows\SysWow64\mswsock.dll
2015-01-02 10:58:00 404480 ----a-w- C:\Windows\System32\gdi32.dll
2015-01-02 10:58:00 311808 ----a-w- C:\Windows\SysWow64\gdi32.dll
2015-01-02 10:41:57 1941504 ----a-w- C:\Windows\System32\authui.dll
2015-01-02 10:41:56 70144 ----a-w- C:\Windows\System32\appinfo.dll
2015-01-02 10:41:56 504320 ----a-w- C:\Windows\System32\msihnd.dll
2015-01-02 10:41:56 1805824 ----a-w- C:\Windows\SysWow64\authui.dll
2015-01-02 10:41:56 112064 ----a-w- C:\Windows\System32\consent.exe
2015-01-02 10:41:55 337408 ----a-w- C:\Windows\SysWow64\msihnd.dll
2015-01-02 10:21:40 75776 ----a-w- C:\Windows\SysWow64\psisrndr.ax
2015-01-02 10:21:40 613888 ----a-w- C:\Windows\System32\psisdecd.dll
2015-01-02 10:21:39 465408 ----a-w- C:\Windows\SysWow64\psisdecd.dll
2015-01-02 10:21:38 108032 ----a-w- C:\Windows\System32\psisrndr.ax
2015-01-02 08:36:04 -------- d-----w- C:\Windows\SysWow64\Wat
2015-01-02 08:36:04 -------- d-----w- C:\Windows\System32\Wat
2015-01-02 08:11:26 2560 ----a-w- C:\Windows\System32\drivers\en-US\wdf01000.sys.mui
2015-01-02 02:38:52 503296 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
2015-01-02 02:38:52 449024 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\tabskb.dll
2015-01-02 02:38:52 1247232 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\tipskins.dll
2015-01-02 02:38:51 646144 ----a-w- C:\Windows\SysWow64\osk.exe
2015-01-02 02:38:51 348672 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\tiptsf.dll
2015-01-02 02:38:51 224768 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe
2015-01-02 02:38:50 692736 ----a-w- C:\Windows\System32\osk.exe
2015-01-02 02:38:50 544768 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\TipRes.dll
2015-01-02 02:38:50 110592 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\TipBand.dll
2015-01-02 02:38:50 10240 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\TabTip32.exe
2015-01-02 02:26:15 571904 ----a-w- C:\Program Files\Windows Defender\MpClient.dll
2015-01-02 02:26:15 392704 ----a-w- C:\Program Files (x86)\Windows Defender\MpClient.dll
2015-01-02 02:26:15 314880 ----a-w- C:\Program Files\Windows Defender\MpCommu.dll
2015-01-02 02:26:15 1011712 ----a-w- C:\Program Files\Windows Defender\MpSvc.dll
2015-01-02 02:26:14 9216 ----a-w- C:\Program Files (x86)\Windows Defender\MpAsDesc.dll
2015-01-02 02:26:14 54784 ----a-w- C:\Program Files (x86)\Windows Defender\MpOAV.dll
2015-01-02 02:26:14 4608 ----a-w- C:\Program Files (x86)\Windows Defender\MsMpLics.dll
2015-01-02 01:13:35 1572864 ----a-w- C:\Windows\System32\quartz.dll
2015-01-02 01:13:34 1328128 ----a-w- C:\Windows\SysWow64\quartz.dll
2015-01-02 00:45:07 371712 ----a-w- C:\Windows\System32\qdvd.dll
2015-01-02 00:45:06 519680 ----a-w- C:\Windows\SysWow64\qdvd.dll
2015-01-02 00:44:54 878080 ----a-w- C:\Windows\System32\IMJP10K.DLL
2015-01-02 00:44:54 701440 ----a-w- C:\Windows\SysWow64\IMJP10K.DLL
2015-01-01 22:40:41 288768 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2015-01-01 22:40:41 158208 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
2015-01-01 22:40:41 128000 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
2015-01-01 22:22:21 156824 ----a-w- C:\Windows\SysWow64\mscorier.dll
2015-01-01 22:22:21 156312 ----a-w- C:\Windows\System32\mscorier.dll
2015-01-01 22:22:21 1131664 ----a-w- C:\Windows\SysWow64\dfshim.dll
2015-01-01 22:22:20 81560 ----a-w- C:\Windows\SysWow64\mscories.dll
2015-01-01 22:22:20 73880 ----a-w- C:\Windows\System32\mscories.dll
2015-01-01 22:22:20 1943696 ----a-w- C:\Windows\System32\dfshim.dll
2015-01-01 22:18:57 1474048 ----a-w- C:\Windows\System32\crypt32.dll
2015-01-01 22:18:57 1168384 ----a-w- C:\Windows\SysWow64\crypt32.dll
2015-01-01 22:18:56 184320 ----a-w- C:\Windows\System32\cryptsvc.dll
2015-01-01 22:18:56 140288 ----a-w- C:\Windows\SysWow64\cryptsvc.dll
2015-01-01 22:18:56 139776 ----a-w- C:\Windows\System32\cryptnet.dll
2015-01-01 22:18:56 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll
2015-01-01 22:17:23 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2015-01-01 22:17:22 376768 ----a-w- C:\Windows\System32\drivers\netio.sys
2015-01-01 22:17:22 288192 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
2015-01-01 22:02:50 2002432 ----a-w- C:\Windows\System32\msxml6.dll
2015-01-01 22:02:49 2048 ----a-w- C:\Windows\SysWow64\msxml6r.dll
2015-01-01 22:02:49 2048 ----a-w- C:\Windows\System32\msxml6r.dll
2015-01-01 22:02:49 1389056 ----a-w- C:\Windows\SysWow64\msxml6.dll
2015-01-01 21:20:37 1190912 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2015-01-01 21:20:36 1011200 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2015-01-01 21:20:08 1395712 ----a-w- C:\Windows\System32\mfc42.dll
2015-01-01 21:20:08 1359872 ----a-w- C:\Windows\System32\mfc42u.dll
2015-01-01 21:20:07 1164288 ----a-w- C:\Windows\SysWow64\mfc42u.dll
2015-01-01 21:20:07 1137664 ----a-w- C:\Windows\SysWow64\mfc42.dll
2015-01-01 21:13:29 1882624 ----a-w- C:\Windows\System32\msxml3.dll
2015-01-01 21:13:28 2048 ----a-w- C:\Windows\SysWow64\msxml3r.dll
2015-01-01 21:13:28 2048 ----a-w- C:\Windows\System32\msxml3r.dll
2015-01-01 21:13:28 1237504 ----a-w- C:\Windows\SysWow64\msxml3.dll
2015-01-01 21:04:33 1888768 ----a-w- C:\Windows\System32\WMVDECOD.DLL
2015-01-01 21:04:32 1620992 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
2015-01-01 21:01:56 610304 ----a-w- C:\Windows\System32\vbscript.dll
2015-01-01 21:01:56 428544 ----a-w- C:\Windows\SysWow64\vbscript.dll
2015-01-01 21:01:19 9728 ----a-w- C:\Windows\System32\Wdfres.dll
2015-01-01 21:01:19 785624 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys
2015-01-01 21:01:19 54376 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys
2015-01-01 20:58:27 216576 ----a-w- C:\Windows\System32\ncsi.dll
2015-01-01 20:58:26 569344 ----a-w- C:\Windows\System32\iphlpsvc.dll
2015-01-01 20:58:26 246272 ----a-w- C:\Windows\System32\netcorehc.dll
2015-01-01 20:58:26 156672 ----a-w- C:\Windows\SysWow64\ncsi.dll
2015-01-01 20:58:25 52224 ----a-w- C:\Windows\SysWow64\nlaapi.dll
2015-01-01 20:58:25 303104 ----a-w- C:\Windows\System32\nlasvc.dll
2015-01-01 20:58:25 175104 ----a-w- C:\Windows\SysWow64\netcorehc.dll
2015-01-01 20:58:24 70656 ----a-w- C:\Windows\System32\nlaapi.dll
2015-01-01 20:58:24 45568 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys
2015-01-01 20:58:24 18944 ----a-w- C:\Windows\SysWow64\netevent.dll
2015-01-01 20:58:23 18944 ----a-w- C:\Windows\System32\netevent.dll
2015-01-01 20:40:59 245760 ----a-w- C:\Windows\System32\OxpsConverter.exe
2015-01-01 16:29:10 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\AVAST Software
2015-01-01 16:28:23 93568 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2015-01-01 16:28:23 83280 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2015-01-01 16:28:23 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
2015-01-01 16:28:23 29208 ----a-w- C:\Windows\System32\drivers\aswHwid.sys
2015-01-01 16:28:23 267632 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
2015-01-01 16:28:23 116728 ----a-w- C:\Windows\System32\drivers\aswStm.sys
2015-01-01 16:28:22 1050432 ----a-w- C:\Windows\System32\drivers\aswsnx.sys
2015-01-01 16:28:09 43152 ----a-w- C:\Windows\avastSS.scr
2015-01-01 16:26:50 -------- d-----w- C:\Program Files\AVAST Software
2015-01-01 16:23:20 -------- d-----w- C:\ProgramData\AVAST Software
2015-01-01 14:54:26 680960 ----a-w- C:\Windows\System32\audiosrv.dll
2015-01-01 14:54:26 500224 ----a-w- C:\Windows\System32\AUDIOKSE.dll
2015-01-01 14:54:26 442880 ----a-w- C:\Windows\SysWow64\AUDIOKSE.dll
2015-01-01 14:54:26 440832 ----a-w- C:\Windows\System32\AudioEng.dll
2015-01-01 14:54:26 374784 ----a-w- C:\Windows\SysWow64\AudioEng.dll
2015-01-01 14:54:26 296448 ----a-w- C:\Windows\System32\AudioSes.dll
2015-01-01 14:54:26 284672 ----a-w- C:\Windows\System32\EncDump.dll
2015-01-01 14:54:26 195584 ----a-w- C:\Windows\SysWow64\AudioSes.dll
2015-01-01 14:44:02 424448 ----a-w- C:\Windows\System32\rastls.dll
2015-01-01 14:44:02 372736 ----a-w- C:\Windows\SysWow64\rastls.dll
2015-01-01 14:43:47 751104 ----a-w- C:\Windows\System32\win32spl.dll
2015-01-01 14:43:47 492544 ----a-w- C:\Windows\SysWow64\win32spl.dll
2015-01-01 14:40:15 64512 ----a-w- C:\Windows\SysWow64\devobj.dll
2015-01-01 14:40:15 44544 ----a-w- C:\Windows\SysWow64\devrtl.dll
2015-01-01 14:40:15 404480 ----a-w- C:\Windows\System32\umpnpmgr.dll
2015-01-01 14:40:15 252928 ----a-w- C:\Windows\SysWow64\drvinst.exe
2015-01-01 14:40:15 145920 ----a-w- C:\Windows\SysWow64\cfgmgr32.dll
2015-01-01 14:08:10 690688 ----a-w- C:\Windows\SysWow64\msvcrt.dll
2015-01-01 14:08:10 634880 ----a-w- C:\Windows\System32\msvcrt.dll
2015-01-01 13:50:58 1545728 ----a-w- C:\Windows\System32\DWrite.dll
2015-01-01 13:50:57 1143296 ----a-w- C:\Windows\System32\FntCache.dll
2015-01-01 13:50:57 1077760 ----a-w- C:\Windows\SysWow64\DWrite.dll
2015-01-01 13:41:49 861696 ----a-w- C:\Windows\System32\oleaut32.dll
2015-01-01 13:41:48 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll
2014-12-31 18:39:22 509952 ----a-w- C:\Windows\System32\ntshrui.dll
2014-12-31 18:39:22 442880 ----a-w- C:\Windows\SysWow64\ntshrui.dll
2014-12-31 18:22:21 793600 ----a-w- C:\Windows\SysWow64\TSWorkspace.dll
2014-12-31 18:22:21 1031168 ----a-w- C:\Windows\System32\TSWorkspace.dll
2014-12-31 18:18:27 30720 ----a-w- C:\Windows\System32\cryptdlg.dll
2014-12-31 18:18:27 24576 ----a-w- C:\Windows\SysWow64\cryptdlg.dll
2014-12-31 18:13:33 723456 ----a-w- C:\Windows\System32\EncDec.dll
2014-12-31 18:13:33 534528 ----a-w- C:\Windows\SysWow64\EncDec.dll
2014-12-31 18:09:50 950128 ----a-w- C:\Windows\System32\drivers\ndis.sys
2014-12-31 18:09:50 41472 ----a-w- C:\Windows\System32\drivers\RNDISMP.sys
2014-12-31 17:58:47 77824 ----a-w- C:\Windows\System32\packager.dll
2014-12-31 17:58:46 67584 ----a-w- C:\Windows\SysWow64\packager.dll
2014-12-31 17:56:20 59392 ----a-w- C:\Windows\System32\browcli.dll
2014-12-31 17:56:20 41984 ----a-w- C:\Windows\SysWow64\browcli.dll
2014-12-31 17:56:20 136704 ----a-w- C:\Windows\System32\browser.dll
2014-12-31 17:52:57 155584 ----a-w- C:\Windows\System32\drivers\ataport.sys
2014-12-31 17:50:41 48640 ----a-w- C:\Windows\System32\wwanprotdim.dll
2014-12-31 17:50:41 228864 ----a-w- C:\Windows\System32\wwansvc.dll
2014-12-31 17:48:47 230400 ----a-w- C:\Windows\System32\drivers\portcls.sys
2014-12-31 17:48:47 116736 ----a-w- C:\Windows\System32\drivers\drmk.sys
2014-12-31 16:57:45 19968 ----a-w- C:\Windows\System32\drivers\usb8023.sys
2014-12-31 16:57:16 9216 ----a-w- C:\Windows\System32\rdrmemptylst.exe
2014-12-31 16:57:16 77312 ----a-w- C:\Windows\System32\rdpwsx.dll
2014-12-31 16:57:16 149504 ----a-w- C:\Windows\System32\rdpcorekmts.dll
2014-12-31 16:56:44 497152 ----a-w- C:\Windows\System32\drivers\afd.sys
2014-12-31 16:48:00 209920 ----a-w- C:\Windows\System32\profsvc.dll
2014-12-31 16:46:14 30208 ----a-w- C:\Windows\System32\dnscacheugc.exe
2014-12-31 16:46:14 28672 ----a-w- C:\Windows\SysWow64\dnscacheugc.exe
2014-12-31 16:46:14 183296 ----a-w- C:\Windows\System32\dnsrslvr.dll
2014-12-31 16:42:39 478208 ----a-w- C:\Windows\System32\dpnet.dll
2014-12-31 16:42:39 376832 ----a-w- C:\Windows\SysWow64\dpnet.dll
2014-12-31 15:13:59 515584 ----a-w- C:\Windows\System32\timedate.cpl
2014-12-31 15:13:59 478720 ----a-w- C:\Windows\SysWow64\timedate.cpl
2014-12-31 14:43:10 100864 ----a-w- C:\Windows\System32\drivers\usbcir.sys
2014-12-31 14:35:55 76800 ----a-w- C:\Windows\System32\drivers\hidclass.sys
2014-12-31 14:35:55 32896 ----a-w- C:\Windows\System32\drivers\hidparse.sys
2014-12-31 13:12:27 886784 ----a-w- C:\Program Files\Common Files\System\wab32.dll
2014-12-31 13:12:27 708608 ----a-w- C:\Program Files (x86)\Common Files\System\wab32.dll
2014-12-31 11:28:02 801280 ----a-w- C:\Windows\System32\usp10.dll
2014-12-31 11:28:02 626688 ----a-w- C:\Windows\SysWow64\usp10.dll
2014-12-31 10:55:12 484864 ----a-w- C:\Windows\System32\wer.dll
2014-12-31 10:55:12 381440 ----a-w- C:\Windows\SysWow64\wer.dll
2014-12-31 10:54:19 81408 ----a-w- C:\Windows\System32\imagehlp.dll
2014-12-31 10:54:19 5120 ----a-w- C:\Windows\SysWow64\wmi.dll
2014-12-31 10:54:19 5120 ----a-w- C:\Windows\System32\wmi.dll
2014-12-31 10:54:19 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys
2014-12-31 10:54:19 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll
2014-12-30 17:42:36 70656 ----a-w- C:\Windows\SysWow64\fontsub.dll
2014-12-30 17:42:36 46080 ----a-w- C:\Windows\System32\atmlib.dll
2014-12-30 17:42:36 41472 ----a-w- C:\Windows\System32\lpk.dll
2014-12-30 17:42:36 368128 ----a-w- C:\Windows\System32\atmfd.dll
2014-12-30 17:42:36 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2014-12-30 17:42:36 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll
2014-12-30 17:42:36 25600 ----a-w- C:\Windows\SysWow64\lpk.dll
2014-12-30 17:42:36 14336 ----a-w- C:\Windows\System32\dciman32.dll
2014-12-30 17:42:36 10240 ----a-w- C:\Windows\SysWow64\dciman32.dll
2014-12-30 17:42:36 100864 ----a-w- C:\Windows\System32\fontsub.dll
2014-12-30 15:59:57 31232 ----a-w- C:\Windows\SysWow64\prevhost.exe
2014-12-30 15:59:57 31232 ----a-w- C:\Windows\System32\prevhost.exe
2014-12-30 15:59:21 976896 ----a-w- C:\Windows\System32\inetcomm.dll
2014-12-30 15:59:21 741376 ----a-w- C:\Windows\SysWow64\inetcomm.dll
2014-12-30 14:49:28 129752 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-12-30 14:48:43 93400 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-12-30 14:48:43 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys
2014-12-30 14:48:43 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-12-30 14:48:43 -------- d-----w- C:\ProgramData\Malwarebytes
2014-12-30 14:48:43 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-12-30 11:37:57 202752 ----a-w- C:\Windows\System32\scrrun.dll
2014-12-30 11:37:57 168960 ----a-w- C:\Windows\System32\wscript.exe
2014-12-30 11:37:57 163840 ----a-w- C:\Windows\SysWow64\scrrun.dll
2014-12-30 11:37:57 156160 ----a-w- C:\Windows\System32\cscript.exe
2014-12-30 11:37:57 150016 ----a-w- C:\Windows\System32\wshom.ocx
2014-12-30 11:37:57 141824 ----a-w- C:\Windows\SysWow64\wscript.exe
2014-12-30 11:37:57 121856 ----a-w- C:\Windows\SysWow64\wshom.ocx
2014-12-30 11:37:56 126976 ----a-w- C:\Windows\SysWow64\cscript.exe
2014-12-30 11:29:57 956928 ----a-w- C:\Windows\System32\localspl.dll
2014-12-30 11:01:38 859648 ----a-w- C:\Windows\System32\IKEEXT.DLL
2014-12-30 11:01:38 830464 ----a-w- C:\Windows\System32\nshwfp.dll
2014-12-30 11:01:38 656896 ----a-w- C:\Windows\SysWow64\nshwfp.dll
2014-12-30 11:01:38 324096 ----a-w- C:\Windows\System32\FWPUCLNT.DLL
2014-12-30 11:01:38 216576 ----a-w- C:\Windows\SysWow64\FWPUCLNT.DLL
2014-12-29 22:15:54 605552 ----a-w- C:\Windows\System32\winload.exe
2014-12-29 22:15:54 566208 ----a-w- C:\Windows\System32\winresume.efi
2014-12-29 22:15:54 518672 ----a-w- C:\Windows\System32\winresume.exe
2014-12-29 22:15:53 642944 ----a-w- C:\Windows\System32\winload.efi
2014-12-29 22:15:53 20352 ----a-w- C:\Windows\System32\kdusb.dll
2014-12-29 22:15:53 19328 ----a-w- C:\Windows\System32\kd1394.dll
2014-12-29 22:15:53 17792 ----a-w- C:\Windows\System32\kdcom.dll
2014-12-29 22:14:01 3198976 ----a-w- C:\Windows\System32\win32k.sys
2014-12-29 22:10:12 467456 ----a-w- C:\Windows\System32\drivers\srv.sys
2014-12-29 22:10:12 410112 ----a-w- C:\Windows\System32\drivers\srv2.sys
2014-12-29 22:10:12 168448 ----a-w- C:\Windows\System32\drivers\srvnet.sys
2014-12-29 22:09:34 624128 ----a-w- C:\Windows\System32\qedit.dll
2014-12-29 22:09:34 509440 ----a-w- C:\Windows\SysWow64\qedit.dll
2014-12-29 22:06:25 1216000 ----a-w- C:\Windows\System32\rpcrt4.dll
2014-12-29 22:06:24 664064 ----a-w- C:\Windows\SysWow64\rpcrt4.dll
2014-12-29 22:02:27 503808 ----a-w- C:\Windows\System32\srcore.dll
2014-12-29 22:02:27 43008 ----a-w- C:\Windows\SysWow64\srclient.dll
2014-12-29 21:56:51 223752 ----a-w- C:\Windows\System32\drivers\fvevol.sys
2014-12-29 21:53:15 461312 ----a-w- C:\Windows\System32\scavengeui.dll
2014-12-29 16:51:25 -------- d--h--w- C:\$WINDOWS.~BT
2014-12-29 14:41:50 346624 ----a-w- C:\Windows\System32\WSManMigrationPlugin.dll
2014-12-29 14:41:50 310272 ----a-w- C:\Windows\System32\WsmWmiPl.dll
2014-12-29 14:41:50 266240 ----a-w- C:\Windows\System32\WSManHTTPConfig.exe
2014-12-29 14:41:50 248832 ----a-w- C:\Windows\SysWow64\WSManMigrationPlugin.dll
2014-12-29 14:41:50 214016 ----a-w- C:\Windows\SysWow64\WsmWmiPl.dll
2014-12-29 14:41:50 2020352 ----a-w- C:\Windows\System32\WsmSvc.dll
2014-12-29 14:41:50 198656 ----a-w- C:\Windows\SysWow64\WSManHTTPConfig.exe
2014-12-29 14:41:50 181248 ----a-w- C:\Windows\System32\WsmAuto.dll
2014-12-29 14:41:50 145920 ----a-w- C:\Windows\SysWow64\WsmAuto.dll
2014-12-29 14:41:50 1177088 ----a-w- C:\Windows\SysWow64\WsmSvc.dll
2014-12-29 14:36:58 81920 ----a-w- C:\Windows\SysWow64\davclnt.dll
2014-12-29 14:36:58 259584 ----a-w- C:\Windows\System32\WebClnt.dll
2014-12-29 14:36:58 205824 ----a-w- C:\Windows\SysWow64\WebClnt.dll
2014-12-29 14:36:58 140800 ----a-w- C:\Windows\System32\drivers\mrxdav.sys
2014-12-29 14:36:58 102400 ----a-w- C:\Windows\System32\davclnt.dll
2014-12-29 14:29:43 985536 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2014-12-29 14:29:43 265064 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
2014-12-29 14:29:43 144384 ----a-w- C:\Windows\System32\cdd.dll
2014-12-29 14:28:41 95744 ----a-w- C:\Windows\System32\synceng.dll
2014-12-29 14:28:41 78336 ----a-w- C:\Windows\SysWow64\synceng.dll
2014-12-29 14:25:55 267776 ----a-w- C:\Windows\System32\FXSCOVER.exe
2014-12-29 14:24:11 119296 ----a-w- C:\Windows\System32\drivers\tdx.sys
2014-12-29 14:14:25 90624 ----a-w- C:\Windows\System32\drivers\bowser.sys
2014-12-29 14:10:37 68608 ----a-w- C:\Windows\System32\taskhost.exe
2014-12-29 14:08:53 165888 ----a-w- C:\Windows\System32\charmap.exe
2014-12-29 14:08:53 155136 ----a-w- C:\Windows\SysWow64\charmap.exe
2014-12-29 14:05:10 75120 ----a-w- C:\Windows\System32\drivers\partmgr.sys
2014-12-29 14:02:05 6144 ----a-w- C:\Program Files\Internet Explorer\iecompat.dll
2014-12-29 14:02:05 6144 ----a-w- C:\Program Files (x86)\Internet Explorer\iecompat.dll
2014-12-29 13:37:33 47496 ----a-w- C:\Windows\System32\sbbd.exe
2014-12-29 11:34:46 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll
2014-12-29 11:34:46 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys
2014-12-29 11:34:46 1031680 ----a-w- C:\Windows\System32\rdpcore.dll
2014-12-29 00:17:26 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\Free Download Manager
2014-12-29 00:17:17 -------- d-----w- C:\Program Files (x86)\Free Download Manager
2014-12-28 15:05:17 -------- d-----w- C:\Program Files (x86)\UnThreat AntiVirus
2014-12-28 05:56:17 -------- d-----w- C:\Windows\Panther
2014-12-28 05:54:06 -------- d-----w- C:\Windows\System32\OEM
2014-12-28 05:45:18 -------- d--h--w- C:\$WINDOWS.~Q
2014-12-28 05:43:48 -------- d--h--w- C:\$INPLACE.~TR
2014-12-28 04:25:04 2620928 ----a-w- C:\Windows\System32\wucltux.dll
2014-12-28 04:24:59 97792 ----a-w- C:\Windows\System32\wudriver.dll
2014-12-28 04:24:59 92672 ----a-w- C:\Windows\SysWow64\wudriver.dll
2014-12-28 04:24:41 33792 ----a-w- C:\Windows\SysWow64\wuapp.exe
2014-12-28 04:24:41 179656 ----a-w- C:\Windows\SysWow64\wuwebv.dll
2014-12-28 04:24:40 36864 ----a-w- C:\Windows\System32\wuapp.exe
2014-12-28 04:24:40 198600 ----a-w- C:\Windows\System32\wuwebv.dll
2014-12-28 03:01:29 -------- d-----w- C:\Program Files\LSI SoftModem
2014-12-28 03:00:53 0 ----a-w- C:\Windows\ativpsrm.bin
2014-12-28 03:00:52 65536 ----a-w- C:\Windows\System32\spu_storage.bin
2014-12-28 03:00:47 -------- d-----w- C:\Program Files\Common Files\ATI Technologies
2014-12-28 02:59:52 -------- d-----w- C:\Windows\System32\SRSLabs
2014-12-28 02:59:08 -------- d-----w- C:\Program Files\Realtek
2014-12-28 02:58:59 -------- d-----w- C:\Windows\SysWow64\RTCOM
2014-12-28 01:41:12 -------- d-----w- C:\Users\TimandDoris\AppData\Local\AMD
2014-12-28 01:40:59 -------- d-----w- C:\Users\TimandDoris\AppData\Local\ATI
2014-12-28 01:40:16 -------- d-----w- C:\Users\TimandDoris\AppData\Local\AppEx Networks
2014-12-28 01:35:02 82600 ----a-w- C:\Windows\System32\drivers\amd_sata.sys
2014-12-28 01:35:02 42664 ----a-w- C:\Windows\System32\drivers\amd_xata.sys
2014-12-28 01:33:56 881880 ----a-w- C:\Windows\System32\drivers\Rt64win7.sys
2014-12-28 01:33:56 74456 ----a-w- C:\Windows\System32\RtNicProp64.dll
2014-12-28 01:33:56 108760 ----a-w- C:\Windows\System32\RTNUninst64.dll
2014-12-28 01:31:52 -------- d--h--w- C:\Windows\System32\WLANProfiles
2014-12-28 01:31:36 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\Intel
2014-12-28 01:31:19 -------- d-----w- C:\Users\TimandDoris\Roaming
2014-12-28 01:31:19 -------- d-----w- C:\ProgramData\Roaming
2014-12-28 01:30:52 -------- d-----w- C:\Program Files\Common Files\Intel
2014-12-28 01:30:51 -------- d-----w- C:\Program Files (x86)\Cisco
2014-12-28 01:28:22 -------- d-----w- C:\Windows\SYSTEM.SAV
2014-12-28 01:27:01 219360 ----a-w- C:\Windows\System32\drivers\appexDrv.sys
2014-12-28 01:27:01 -------- d-----w- C:\Program Files\AMD Quick Stream
2014-12-28 01:26:59 -------- d-----w- C:\Users\TimandDoris\AppData\Local\Programs
2014-12-28 01:26:58 -------- d-----w- C:\ProgramData\AMD
2014-12-28 01:26:56 -------- d-----w- C:\Program Files (x86)\AMD AVT
2014-12-28 01:26:52 -------- d-----w- C:\Program Files\AMD
2014-12-28 01:26:52 -------- d-----w- C:\Program Files (x86)\AMD
2014-12-28 01:26:46 -------- d-----w- C:\Program Files (x86)\Common Files\ATI Technologies
2014-12-28 01:25:00 -------- d-----w- C:\Program Files\ATI Technologies
2014-12-28 01:24:05 98816 ----a-w- C:\Windows\System32\OpenVideo64.dll
2014-12-28 01:24:05 63488 ----a-w- C:\Windows\System32\OpenCL.dll
2014-12-28 01:24:05 57344 ----a-w- C:\Windows\SysWow64\OpenCL.dll
2014-12-28 01:24:05 23760896 ----a-w- C:\Windows\SysWow64\amdocl.dll
2014-12-28 01:24:05 229376 ----a-w- C:\Windows\System32\clinfo.exe
2014-12-28 01:24:05 127488 ----a-w- C:\Windows\System32\coinst_13.152.dll
2014-12-28 01:24:05 1187342 ----a-w- C:\Windows\System32\amdocl_as64.exe
2014-12-28 01:24:05 1061902 ----a-w- C:\Windows\System32\amdocl_ld64.exe
2014-12-28 01:24:04 995342 ----a-w- C:\Windows\SysWow64\amdocl_as32.exe
2014-12-28 01:24:04 83456 ----a-w- C:\Windows\SysWow64\OpenVideo.dll
2014-12-28 01:24:04 798734 ----a-w- C:\Windows\SysWow64\amdocl_ld32.exe
2014-12-28 01:24:03 86528 ----a-w- C:\Windows\System32\OVDecode64.dll
2014-12-28 01:23:59 73216 ----a-w- C:\Windows\SysWow64\OVDecode.dll
2014-12-28 01:23:59 442368 ----a-w- C:\Windows\System32\atidemgy.dll
2014-12-28 01:23:58 28192256 ----a-w- C:\Windows\System32\amdocl64.dll
2014-12-28 01:23:35 -------- d-----w- C:\Program Files\ATI
2014-12-28 01:23:22 -------- d-----w- C:\Program Files (x86)\ATI Technologies
2014-12-28 01:20:38 90624 ----a-w- C:\Windows\SysWow64\amdave32.dll
2014-12-27 23:41:28 -------- d-----w- C:\DVD RW Drive
2014-12-27 19:13:26 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\PeoplePC Online
2014-12-27 19:13:26 -------- d-----w- C:\ProgramData\PeoplePC Online
2014-12-27 16:45:02 -------- d-----w- C:\Users\TimandDoris\AppData\Local\Diagnostics
2014-12-27 16:19:55 -------- d-----w- C:\Program Files (x86)\PeoplePC Accelerated
2014-12-27 16:14:49 64000 ----a-w- C:\Windows\agrsmdel.exe
2014-12-27 16:14:49 42496 ----a-w- C:\Windows\agrdel64.exe
2014-12-27 16:14:49 14848 ----a-w- C:\Windows\System32\agrsco64.dll
2014-12-27 16:11:34 -------- d-----w- C:\Windows.old
2014-12-27 15:20:06 -------- d-----w- C:\Users\TimandDoris\AppData\Local\Adobe
2014-12-27 15:15:10 -------- d-----w- C:\Users\TimandDoris\AppData\Local\ElevatedDiagnostics
2014-12-27 15:11:23 61440 ----a-w- C:\Windows\SysWow64\ppcpanel.cpl
2014-12-27 15:11:23 58144 ----a-w- C:\Windows\SysWow64\PPCOUNIN.exe
2014-12-27 15:11:23 -------- d-----w- C:\Program Files (x86)\Common Files\PeoplePC
2014-12-27 15:10:54 -------- d-----w- C:\Program Files (x86)\PeoplePC
2014-12-27 15:03:27 -------- d-----w- C:\Users\TimandDoris\AppData\Local\Hewlett-Packard
2014-12-27 15:00:11 -------- d-----w- C:\ProgramData\HP Photo Creations
2014-12-27 15:00:11 -------- d-----w- C:\Program Files (x86)\HP Photo Creations
2014-12-27 15:00:06 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\HpUpdate
2014-12-27 14:59:38 -------- d-----w- C:\Program Files (x86)\HP
2014-12-27 14:58:51 -------- d-----w- C:\Program Files\HP
2014-12-27 14:57:33 -------- d-----w- C:\Users\TimandDoris\AppData\Local\HP
2014-12-27 14:42:13 -------- d-----w- C:\Users\TimandDoris\AppData\Local\CyberLink
2014-12-27 14:39:36 -------- d-----w- C:\ProgramData\install_clap
2014-12-27 14:32:22 -------- d-----w- C:\ProgramData\{A5CCDB92-FA53-47D1-89E6-32B82D86621A}
2014-12-27 14:31:38 582144 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\DAO\DAO350.DLL
2014-12-27 14:31:38 368912 ----a-w- C:\Windows\SysWow64\VBAR332.DLL
2014-12-27 14:31:38 252176 ----a-w- C:\Windows\SysWow64\MSRD2X35.DLL
2014-12-27 14:31:38 24848 ----a-w- C:\Windows\SysWow64\MSJTER35.DLL
2014-12-27 14:31:38 123664 ----a-w- C:\Windows\SysWow64\MSJINT35.DLL
2014-12-27 14:31:38 1045776 ----a-w- C:\Windows\SysWow64\MSJET35.DLL
2014-12-27 14:24:00 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\hpqLog
2014-12-27 14:17:55 -------- d-----w- C:\ProgramData\Package Cache
2014-12-27 14:14:54 -------- d-sh--w- C:\Windows\Installer
2014-12-27 14:12:02 -------- d-----w- C:\Windows\Options
2014-12-27 13:58:21 73192 ----a-w- C:\Windows\SysWow64\unPPC.exe
2014-12-27 13:58:21 70432 ----a-w- C:\Windows\SysWow64\unPPC6000.exe
2014-12-27 13:58:21 42784 ----a-w- C:\Windows\SysWow64\ppcwebi.dll
2014-12-27 13:58:21 41592 ----a-w- C:\Windows\SysWow64\PPCClean.exe
2014-12-27 13:58:21 34136 ----a-w- C:\Windows\SysWow64\RegHero.exe
2014-12-27 13:58:21 29984 ----a-w- C:\Windows\SysWow64\PopWait.exe
2014-12-27 13:58:21 256288 ----a-w- C:\Windows\SysWow64\PPCInfo.exe
2014-12-27 13:58:20 89088 ----a-w- C:\Windows\SysWow64\ATL71.dll
2014-12-27 13:58:20 84992 ----a-w- C:\Windows\SysWow64\ATL70.dll
2014-12-27 13:58:20 499712 ----a-w- C:\Windows\SysWow64\MSVCP71.DLL
2014-12-27 13:58:20 348160 ----a-w- C:\Windows\SysWow64\MSVCR71.DLL
2014-12-27 13:58:20 1060864 ----a-w- C:\Windows\SysWow64\MFC71.DLL
2014-12-27 13:44:51 -------- d-----w- C:\Users\TimandDoris\AppData\Local\VirtualStore
2014-12-24 18:50:38 -------- d-----w- C:\AdwCleaner
.
==================== Find3M  ====================
.
.
============= FINISH:  6:28:41.85 ===============
 



#3 bonezz

bonezz
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 06 January 2015 - 08:49 AM

Attached File  attach.txt   6.42KB   0 downloads Here are the logs: DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 8.0.7601.17514
Run by TimandDoris at 6:26:55 on 2015-01-05
Microsoft Windows 7 Professional   6.1.7601.1.1252.1.1033.18.1478.425 [GMT -5:00]
.
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\atieclxx.exe
C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
C:\Program Files\LSI SoftModem\agr64svc.exe
C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
C:\Windows\system32\CISVC.EXE
C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
C:\Program Files\AMD Quick Stream\AMDQuickStream.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
C:\Program Files (x86)\PeoplePC\ISP8500\Browser\Bartshel.exe
C:\Program Files (x86)\PeoplePC\ISP8500\Browser\PPShared.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files (x86)\PeoplePC\ISP8500\Browser\Bartshel.exe
C:\Program Files (x86)\PeoplePC Accelerated\PeoplePC.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\SysWOW64\msiexec.exe
C:\Windows\system32\msiexec.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://home.peoplepc.com/websearch
uSearch Bar = Preserve
uProxyServer = hxxp=localhost:8080
uProxyOverride = <local>
mWinlogon: Userinit = userinit.exe
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Accelerator Plugin: {656EC4B7-072B-4698-B504-2A414C1F0037} - C:\Program Files (x86)\PeoplePC Accelerated\prpl_IePopupBlocker.dll
BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\AMD\SteadyVideo\SteadyVideo.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Free Download Manager: {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll
BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
uRun: [AppEx Accelerator UI] C:\Program Files\AMD Quick Stream\AMDQuickStream.exe -h
uRun: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [Bart Station] C:\Program Files (x86)\PeoplePC\ISP8500\BIN\PPCOLink.exe -STATION
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: SoftwareSASGeneration = dword:1
IE: Refresh Pa&ge with Full Quality - C:\Program Files (x86)\PeoplePC Accelerated\pac-page.html
IE: Refresh Pi&cture with Full Quality - C:\Program Files (x86)\PeoplePC Accelerated\pac-image.html
IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
TCP: Interfaces\{096C4026-1396-439E-BA93-C537F916CEDA} : NameServer = 207.69.188.167 207.69.188.166
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll
SSODL: WebCheck - <orphaned>
x64-BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll
x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll
x64-Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
x64-Run: [UnThreat] "C:\Program Files (x86)\UnThreat AntiVirus\UnThreat.exe" -silent
x64-RunOnce: [NCPluginUpdater] "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update
x64-IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
x64-Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
x64-Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 amd_sata;amd_sata;C:\Windows\System32\drivers\amd_sata.sys [2014-12-27 82600]
R0 amd_xata;amd_xata;C:\Windows\System32\drivers\amd_xata.sys [2014-12-27 42664]
R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2015-1-1 65776]
R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2015-1-1 267632]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswsnx.sys [2015-1-1 1050432]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2015-1-1 436624]
R2 AERTFilters;Andrea RT Filters Service;C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2014-12-27 98208]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2014-12-27 239616]
R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-8-30 344064]
R2 APXACC;AppEx Networks Accelerator LWF;C:\Windows\System32\drivers\appexDrv.sys [2014-12-27 219360]
R2 aswHwid;avast! HardwareID;C:\Windows\System32\drivers\aswHwid.sys [2015-1-1 29208]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2015-1-1 83280]
R2 aswStm;aswStm;C:\Windows\System32\drivers\aswStm.sys [2015-1-1 116728]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-1-1 50344]
R2 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service;C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [2014-12-27 77576]
R2 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service;C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [2014-12-27 298760]
R2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2013-8-29 92160]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-12-30 1871160]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-12-30 969016]
R2 RtkAudioService;Realtek Audio Service;C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE [2014-12-27 246488]
R2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2013-8-2 3378416]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2014-12-30 25816]
R3 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\System32\drivers\MBAMSwissArmy.sys [2014-12-30 129752]
R3 MBAMWebAccessControl;MBAMWebAccessControl;C:\Windows\System32\drivers\mwac.sys [2014-12-30 63704]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2014-12-27 881880]
R3 usbfilter;AMD USB Filter Driver;C:\Windows\System32\drivers\usbfilter.sys [2012-3-6 56448]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-7-9 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-7-8 123856]
S3 amdhub30;AMD USB 3.0 Hub Driver;C:\Windows\System32\drivers\amdhub30.sys [2012-3-6 103552]
S3 amdxhc;AMD USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\amdxhc.sys [2012-3-6 220288]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2010-11-21 71168]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-8-2 273136]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2012-3-6 96768]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2012-3-6 213504]
S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2015-1-2 1255736]
.
=============== Created Last 30 ================
.
2015-01-04 13:51:20 -------- d-----w- C:\ProgramData\PopCap Games
2015-01-04 13:51:20 -------- d-----w- C:\Program Files (x86)\PopCap Games
2015-01-04 11:52:14 1719296 ----a-w- C:\Program Files\Windows Journal\NBDoc.DLL
2015-01-04 11:52:14 1354240 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll
2015-01-04 11:52:13 1389568 ----a-w- C:\Program Files\Windows Journal\JNWDRV.dll
2015-01-04 11:52:13 1380864 ----a-w- C:\Program Files\Windows Journal\JNTFiltr.dll
2015-01-04 11:52:12 936960 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2015-01-04 11:40:51 331776 ----a-w- C:\Windows\System32\oleacc.dll
2015-01-04 11:40:51 233472 ----a-w- C:\Windows\SysWow64\oleacc.dll
2015-01-04 11:40:42 124112 ----a-w- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2015-01-04 11:40:42 102608 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-01-04 11:31:18 1684928 ----a-w- C:\Windows\System32\drivers\ntfs.sys
2015-01-04 11:30:57 96768 ----a-w- C:\Windows\System32\fsutil.exe
2015-01-04 11:30:57 27008 ----a-w- C:\Windows\System32\drivers\amdxata.sys
2015-01-04 11:30:57 2565632 ----a-w- C:\Windows\System32\esent.dll
2015-01-04 11:30:56 74240 ----a-w- C:\Windows\SysWow64\fsutil.exe
2015-01-04 11:30:56 410496 ----a-w- C:\Windows\System32\drivers\iaStorV.sys
2015-01-04 11:30:56 1699328 ----a-w- C:\Windows\SysWow64\esent.dll
2015-01-04 11:30:55 166272 ----a-w- C:\Windows\System32\drivers\nvstor.sys
2015-01-04 11:30:55 148352 ----a-w- C:\Windows\System32\drivers\nvraid.sys
2015-01-04 11:30:55 107904 ----a-w- C:\Windows\System32\drivers\amdsata.sys
2015-01-03 18:00:48 274880 ----a-w- C:\Windows\System32\drivers\msiscsi.sys
2015-01-03 18:00:47 27584 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
2015-01-03 18:00:47 190912 ----a-w- C:\Windows\System32\drivers\storport.sys
2015-01-03 18:00:46 2048 ----a-w- C:\Windows\SysWow64\iologmsg.dll
2015-01-03 18:00:43 2048 ----a-w- C:\Windows\System32\iologmsg.dll
2015-01-03 16:06:55 142336 ----a-w- C:\Windows\System32\poqexec.exe
2015-01-03 16:06:55 123904 ----a-w- C:\Windows\SysWow64\poqexec.exe
2015-01-03 15:56:37 224256 ----a-w- C:\Windows\System32\wintrust.dll
2015-01-03 15:56:37 175104 ----a-w- C:\Windows\SysWow64\wintrust.dll
2015-01-03 14:35:37 197120 ----a-w- C:\Windows\System32\credui.dll
2015-01-03 14:35:37 190464 ----a-w- C:\Windows\System32\SmartcardCredentialProvider.dll
2015-01-03 14:35:37 168960 ----a-w- C:\Windows\SysWow64\credui.dll
2015-01-03 14:35:37 152576 ----a-w- C:\Windows\SysWow64\SmartcardCredentialProvider.dll
2015-01-03 13:51:36 210944 ----a-w- C:\Windows\System32\drivers\rdpwd.sys
2015-01-03 03:35:51 87040 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys
2015-01-03 03:35:51 198656 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys
2015-01-03 03:35:50 84992 ----a-w- C:\Windows\System32\WUDFSvc.dll
2015-01-03 03:35:49 194048 ----a-w- C:\Windows\System32\WUDFPlatform.dll
2015-01-03 03:35:46 45056 ----a-w- C:\Windows\System32\WUDFCoinstaller.dll
2015-01-03 03:35:45 229888 ----a-w- C:\Windows\System32\WUDFHost.exe
2015-01-03 03:35:44 744448 ----a-w- C:\Windows\System32\WUDFx.dll
2015-01-02 22:49:56 3241984 ----a-w- C:\Windows\System32\msi.dll
2015-01-02 22:49:55 2363904 ----a-w- C:\Windows\SysWow64\msi.dll
2015-01-02 22:30:10 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2015-01-02 22:30:10 53248 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2015-01-02 22:30:10 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys
2015-01-02 22:30:09 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys
2015-01-02 22:30:09 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys
2015-01-02 22:30:09 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys
2015-01-02 11:26:26 327168 ----a-w- C:\Windows\System32\mswsock.dll
2015-01-02 11:26:25 231424 ----a-w- C:\Windows\SysWow64\mswsock.dll
2015-01-02 10:58:00 404480 ----a-w- C:\Windows\System32\gdi32.dll
2015-01-02 10:58:00 311808 ----a-w- C:\Windows\SysWow64\gdi32.dll
2015-01-02 10:41:57 1941504 ----a-w- C:\Windows\System32\authui.dll
2015-01-02 10:41:56 70144 ----a-w- C:\Windows\System32\appinfo.dll
2015-01-02 10:41:56 504320 ----a-w- C:\Windows\System32\msihnd.dll
2015-01-02 10:41:56 1805824 ----a-w- C:\Windows\SysWow64\authui.dll
2015-01-02 10:41:56 112064 ----a-w- C:\Windows\System32\consent.exe
2015-01-02 10:41:55 337408 ----a-w- C:\Windows\SysWow64\msihnd.dll
2015-01-02 10:21:40 75776 ----a-w- C:\Windows\SysWow64\psisrndr.ax
2015-01-02 10:21:40 613888 ----a-w- C:\Windows\System32\psisdecd.dll
2015-01-02 10:21:39 465408 ----a-w- C:\Windows\SysWow64\psisdecd.dll
2015-01-02 10:21:38 108032 ----a-w- C:\Windows\System32\psisrndr.ax
2015-01-02 08:36:04 -------- d-----w- C:\Windows\SysWow64\Wat
2015-01-02 08:36:04 -------- d-----w- C:\Windows\System32\Wat
2015-01-02 08:11:26 2560 ----a-w- C:\Windows\System32\drivers\en-US\wdf01000.sys.mui
2015-01-02 02:38:52 503296 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
2015-01-02 02:38:52 449024 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\tabskb.dll
2015-01-02 02:38:52 1247232 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\tipskins.dll
2015-01-02 02:38:51 646144 ----a-w- C:\Windows\SysWow64\osk.exe
2015-01-02 02:38:51 348672 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\tiptsf.dll
2015-01-02 02:38:51 224768 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe
2015-01-02 02:38:50 692736 ----a-w- C:\Windows\System32\osk.exe
2015-01-02 02:38:50 544768 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\TipRes.dll
2015-01-02 02:38:50 110592 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\TipBand.dll
2015-01-02 02:38:50 10240 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\TabTip32.exe
2015-01-02 02:26:15 571904 ----a-w- C:\Program Files\Windows Defender\MpClient.dll
2015-01-02 02:26:15 392704 ----a-w- C:\Program Files (x86)\Windows Defender\MpClient.dll
2015-01-02 02:26:15 314880 ----a-w- C:\Program Files\Windows Defender\MpCommu.dll
2015-01-02 02:26:15 1011712 ----a-w- C:\Program Files\Windows Defender\MpSvc.dll
2015-01-02 02:26:14 9216 ----a-w- C:\Program Files (x86)\Windows Defender\MpAsDesc.dll
2015-01-02 02:26:14 54784 ----a-w- C:\Program Files (x86)\Windows Defender\MpOAV.dll
2015-01-02 02:26:14 4608 ----a-w- C:\Program Files (x86)\Windows Defender\MsMpLics.dll
2015-01-02 01:13:35 1572864 ----a-w- C:\Windows\System32\quartz.dll
2015-01-02 01:13:34 1328128 ----a-w- C:\Windows\SysWow64\quartz.dll
2015-01-02 00:45:07 371712 ----a-w- C:\Windows\System32\qdvd.dll
2015-01-02 00:45:06 519680 ----a-w- C:\Windows\SysWow64\qdvd.dll
2015-01-02 00:44:54 878080 ----a-w- C:\Windows\System32\IMJP10K.DLL
2015-01-02 00:44:54 701440 ----a-w- C:\Windows\SysWow64\IMJP10K.DLL
2015-01-01 22:40:41 288768 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2015-01-01 22:40:41 158208 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
2015-01-01 22:40:41 128000 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
2015-01-01 22:22:21 156824 ----a-w- C:\Windows\SysWow64\mscorier.dll
2015-01-01 22:22:21 156312 ----a-w- C:\Windows\System32\mscorier.dll
2015-01-01 22:22:21 1131664 ----a-w- C:\Windows\SysWow64\dfshim.dll
2015-01-01 22:22:20 81560 ----a-w- C:\Windows\SysWow64\mscories.dll
2015-01-01 22:22:20 73880 ----a-w- C:\Windows\System32\mscories.dll
2015-01-01 22:22:20 1943696 ----a-w- C:\Windows\System32\dfshim.dll
2015-01-01 22:18:57 1474048 ----a-w- C:\Windows\System32\crypt32.dll
2015-01-01 22:18:57 1168384 ----a-w- C:\Windows\SysWow64\crypt32.dll
2015-01-01 22:18:56 184320 ----a-w- C:\Windows\System32\cryptsvc.dll
2015-01-01 22:18:56 140288 ----a-w- C:\Windows\SysWow64\cryptsvc.dll
2015-01-01 22:18:56 139776 ----a-w- C:\Windows\System32\cryptnet.dll
2015-01-01 22:18:56 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll
2015-01-01 22:17:23 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2015-01-01 22:17:22 376768 ----a-w- C:\Windows\System32\drivers\netio.sys
2015-01-01 22:17:22 288192 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
2015-01-01 22:02:50 2002432 ----a-w- C:\Windows\System32\msxml6.dll
2015-01-01 22:02:49 2048 ----a-w- C:\Windows\SysWow64\msxml6r.dll
2015-01-01 22:02:49 2048 ----a-w- C:\Windows\System32\msxml6r.dll
2015-01-01 22:02:49 1389056 ----a-w- C:\Windows\SysWow64\msxml6.dll
2015-01-01 21:20:37 1190912 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2015-01-01 21:20:36 1011200 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2015-01-01 21:20:08 1395712 ----a-w- C:\Windows\System32\mfc42.dll
2015-01-01 21:20:08 1359872 ----a-w- C:\Windows\System32\mfc42u.dll
2015-01-01 21:20:07 1164288 ----a-w- C:\Windows\SysWow64\mfc42u.dll
2015-01-01 21:20:07 1137664 ----a-w- C:\Windows\SysWow64\mfc42.dll
2015-01-01 21:13:29 1882624 ----a-w- C:\Windows\System32\msxml3.dll
2015-01-01 21:13:28 2048 ----a-w- C:\Windows\SysWow64\msxml3r.dll
2015-01-01 21:13:28 2048 ----a-w- C:\Windows\System32\msxml3r.dll
2015-01-01 21:13:28 1237504 ----a-w- C:\Windows\SysWow64\msxml3.dll
2015-01-01 21:04:33 1888768 ----a-w- C:\Windows\System32\WMVDECOD.DLL
2015-01-01 21:04:32 1620992 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
2015-01-01 21:01:56 610304 ----a-w- C:\Windows\System32\vbscript.dll
2015-01-01 21:01:56 428544 ----a-w- C:\Windows\SysWow64\vbscript.dll
2015-01-01 21:01:19 9728 ----a-w- C:\Windows\System32\Wdfres.dll
2015-01-01 21:01:19 785624 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys
2015-01-01 21:01:19 54376 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys
2015-01-01 20:58:27 216576 ----a-w- C:\Windows\System32\ncsi.dll
2015-01-01 20:58:26 569344 ----a-w- C:\Windows\System32\iphlpsvc.dll
2015-01-01 20:58:26 246272 ----a-w- C:\Windows\System32\netcorehc.dll
2015-01-01 20:58:26 156672 ----a-w- C:\Windows\SysWow64\ncsi.dll
2015-01-01 20:58:25 52224 ----a-w- C:\Windows\SysWow64\nlaapi.dll
2015-01-01 20:58:25 303104 ----a-w- C:\Windows\System32\nlasvc.dll
2015-01-01 20:58:25 175104 ----a-w- C:\Windows\SysWow64\netcorehc.dll
2015-01-01 20:58:24 70656 ----a-w- C:\Windows\System32\nlaapi.dll
2015-01-01 20:58:24 45568 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys
2015-01-01 20:58:24 18944 ----a-w- C:\Windows\SysWow64\netevent.dll
2015-01-01 20:58:23 18944 ----a-w- C:\Windows\System32\netevent.dll
2015-01-01 20:40:59 245760 ----a-w- C:\Windows\System32\OxpsConverter.exe
2015-01-01 16:29:10 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\AVAST Software
2015-01-01 16:28:23 93568 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2015-01-01 16:28:23 83280 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2015-01-01 16:28:23 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
2015-01-01 16:28:23 29208 ----a-w- C:\Windows\System32\drivers\aswHwid.sys
2015-01-01 16:28:23 267632 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
2015-01-01 16:28:23 116728 ----a-w- C:\Windows\System32\drivers\aswStm.sys
2015-01-01 16:28:22 1050432 ----a-w- C:\Windows\System32\drivers\aswsnx.sys
2015-01-01 16:28:09 43152 ----a-w- C:\Windows\avastSS.scr
2015-01-01 16:26:50 -------- d-----w- C:\Program Files\AVAST Software
2015-01-01 16:23:20 -------- d-----w- C:\ProgramData\AVAST Software
2015-01-01 14:54:26 680960 ----a-w- C:\Windows\System32\audiosrv.dll
2015-01-01 14:54:26 500224 ----a-w- C:\Windows\System32\AUDIOKSE.dll
2015-01-01 14:54:26 442880 ----a-w- C:\Windows\SysWow64\AUDIOKSE.dll
2015-01-01 14:54:26 440832 ----a-w- C:\Windows\System32\AudioEng.dll
2015-01-01 14:54:26 374784 ----a-w- C:\Windows\SysWow64\AudioEng.dll
2015-01-01 14:54:26 296448 ----a-w- C:\Windows\System32\AudioSes.dll
2015-01-01 14:54:26 284672 ----a-w- C:\Windows\System32\EncDump.dll
2015-01-01 14:54:26 195584 ----a-w- C:\Windows\SysWow64\AudioSes.dll
2015-01-01 14:44:02 424448 ----a-w- C:\Windows\System32\rastls.dll
2015-01-01 14:44:02 372736 ----a-w- C:\Windows\SysWow64\rastls.dll
2015-01-01 14:43:47 751104 ----a-w- C:\Windows\System32\win32spl.dll
2015-01-01 14:43:47 492544 ----a-w- C:\Windows\SysWow64\win32spl.dll
2015-01-01 14:40:15 64512 ----a-w- C:\Windows\SysWow64\devobj.dll
2015-01-01 14:40:15 44544 ----a-w- C:\Windows\SysWow64\devrtl.dll
2015-01-01 14:40:15 404480 ----a-w- C:\Windows\System32\umpnpmgr.dll
2015-01-01 14:40:15 252928 ----a-w- C:\Windows\SysWow64\drvinst.exe
2015-01-01 14:40:15 145920 ----a-w- C:\Windows\SysWow64\cfgmgr32.dll
2015-01-01 14:08:10 690688 ----a-w- C:\Windows\SysWow64\msvcrt.dll
2015-01-01 14:08:10 634880 ----a-w- C:\Windows\System32\msvcrt.dll
2015-01-01 13:50:58 1545728 ----a-w- C:\Windows\System32\DWrite.dll
2015-01-01 13:50:57 1143296 ----a-w- C:\Windows\System32\FntCache.dll
2015-01-01 13:50:57 1077760 ----a-w- C:\Windows\SysWow64\DWrite.dll
2015-01-01 13:41:49 861696 ----a-w- C:\Windows\System32\oleaut32.dll
2015-01-01 13:41:48 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll
2014-12-31 18:39:22 509952 ----a-w- C:\Windows\System32\ntshrui.dll
2014-12-31 18:39:22 442880 ----a-w- C:\Windows\SysWow64\ntshrui.dll
2014-12-31 18:22:21 793600 ----a-w- C:\Windows\SysWow64\TSWorkspace.dll
2014-12-31 18:22:21 1031168 ----a-w- C:\Windows\System32\TSWorkspace.dll
2014-12-31 18:18:27 30720 ----a-w- C:\Windows\System32\cryptdlg.dll
2014-12-31 18:18:27 24576 ----a-w- C:\Windows\SysWow64\cryptdlg.dll
2014-12-31 18:13:33 723456 ----a-w- C:\Windows\System32\EncDec.dll
2014-12-31 18:13:33 534528 ----a-w- C:\Windows\SysWow64\EncDec.dll
2014-12-31 18:09:50 950128 ----a-w- C:\Windows\System32\drivers\ndis.sys
2014-12-31 18:09:50 41472 ----a-w- C:\Windows\System32\drivers\RNDISMP.sys
2014-12-31 17:58:47 77824 ----a-w- C:\Windows\System32\packager.dll
2014-12-31 17:58:46 67584 ----a-w- C:\Windows\SysWow64\packager.dll
2014-12-31 17:56:20 59392 ----a-w- C:\Windows\System32\browcli.dll
2014-12-31 17:56:20 41984 ----a-w- C:\Windows\SysWow64\browcli.dll
2014-12-31 17:56:20 136704 ----a-w- C:\Windows\System32\browser.dll
2014-12-31 17:52:57 155584 ----a-w- C:\Windows\System32\drivers\ataport.sys
2014-12-31 17:50:41 48640 ----a-w- C:\Windows\System32\wwanprotdim.dll
2014-12-31 17:50:41 228864 ----a-w- C:\Windows\System32\wwansvc.dll
2014-12-31 17:48:47 230400 ----a-w- C:\Windows\System32\drivers\portcls.sys
2014-12-31 17:48:47 116736 ----a-w- C:\Windows\System32\drivers\drmk.sys
2014-12-31 16:57:45 19968 ----a-w- C:\Windows\System32\drivers\usb8023.sys
2014-12-31 16:57:16 9216 ----a-w- C:\Windows\System32\rdrmemptylst.exe
2014-12-31 16:57:16 77312 ----a-w- C:\Windows\System32\rdpwsx.dll
2014-12-31 16:57:16 149504 ----a-w- C:\Windows\System32\rdpcorekmts.dll
2014-12-31 16:56:44 497152 ----a-w- C:\Windows\System32\drivers\afd.sys
2014-12-31 16:48:00 209920 ----a-w- C:\Windows\System32\profsvc.dll
2014-12-31 16:46:14 30208 ----a-w- C:\Windows\System32\dnscacheugc.exe
2014-12-31 16:46:14 28672 ----a-w- C:\Windows\SysWow64\dnscacheugc.exe
2014-12-31 16:46:14 183296 ----a-w- C:\Windows\System32\dnsrslvr.dll
2014-12-31 16:42:39 478208 ----a-w- C:\Windows\System32\dpnet.dll
2014-12-31 16:42:39 376832 ----a-w- C:\Windows\SysWow64\dpnet.dll
2014-12-31 15:13:59 515584 ----a-w- C:\Windows\System32\timedate.cpl
2014-12-31 15:13:59 478720 ----a-w- C:\Windows\SysWow64\timedate.cpl
2014-12-31 14:43:10 100864 ----a-w- C:\Windows\System32\drivers\usbcir.sys
2014-12-31 14:35:55 76800 ----a-w- C:\Windows\System32\drivers\hidclass.sys
2014-12-31 14:35:55 32896 ----a-w- C:\Windows\System32\drivers\hidparse.sys
2014-12-31 13:12:27 886784 ----a-w- C:\Program Files\Common Files\System\wab32.dll
2014-12-31 13:12:27 708608 ----a-w- C:\Program Files (x86)\Common Files\System\wab32.dll
2014-12-31 11:28:02 801280 ----a-w- C:\Windows\System32\usp10.dll
2014-12-31 11:28:02 626688 ----a-w- C:\Windows\SysWow64\usp10.dll
2014-12-31 10:55:12 484864 ----a-w- C:\Windows\System32\wer.dll
2014-12-31 10:55:12 381440 ----a-w- C:\Windows\SysWow64\wer.dll
2014-12-31 10:54:19 81408 ----a-w- C:\Windows\System32\imagehlp.dll
2014-12-31 10:54:19 5120 ----a-w- C:\Windows\SysWow64\wmi.dll
2014-12-31 10:54:19 5120 ----a-w- C:\Windows\System32\wmi.dll
2014-12-31 10:54:19 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys
2014-12-31 10:54:19 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll
2014-12-30 17:42:36 70656 ----a-w- C:\Windows\SysWow64\fontsub.dll
2014-12-30 17:42:36 46080 ----a-w- C:\Windows\System32\atmlib.dll
2014-12-30 17:42:36 41472 ----a-w- C:\Windows\System32\lpk.dll
2014-12-30 17:42:36 368128 ----a-w- C:\Windows\System32\atmfd.dll
2014-12-30 17:42:36 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2014-12-30 17:42:36 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll
2014-12-30 17:42:36 25600 ----a-w- C:\Windows\SysWow64\lpk.dll
2014-12-30 17:42:36 14336 ----a-w- C:\Windows\System32\dciman32.dll
2014-12-30 17:42:36 10240 ----a-w- C:\Windows\SysWow64\dciman32.dll
2014-12-30 17:42:36 100864 ----a-w- C:\Windows\System32\fontsub.dll
2014-12-30 15:59:57 31232 ----a-w- C:\Windows\SysWow64\prevhost.exe
2014-12-30 15:59:57 31232 ----a-w- C:\Windows\System32\prevhost.exe
2014-12-30 15:59:21 976896 ----a-w- C:\Windows\System32\inetcomm.dll
2014-12-30 15:59:21 741376 ----a-w- C:\Windows\SysWow64\inetcomm.dll
2014-12-30 14:49:28 129752 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-12-30 14:48:43 93400 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-12-30 14:48:43 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys
2014-12-30 14:48:43 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-12-30 14:48:43 -------- d-----w- C:\ProgramData\Malwarebytes
2014-12-30 14:48:43 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-12-30 11:37:57 202752 ----a-w- C:\Windows\System32\scrrun.dll
2014-12-30 11:37:57 168960 ----a-w- C:\Windows\System32\wscript.exe
2014-12-30 11:37:57 163840 ----a-w- C:\Windows\SysWow64\scrrun.dll
2014-12-30 11:37:57 156160 ----a-w- C:\Windows\System32\cscript.exe
2014-12-30 11:37:57 150016 ----a-w- C:\Windows\System32\wshom.ocx
2014-12-30 11:37:57 141824 ----a-w- C:\Windows\SysWow64\wscript.exe
2014-12-30 11:37:57 121856 ----a-w- C:\Windows\SysWow64\wshom.ocx
2014-12-30 11:37:56 126976 ----a-w- C:\Windows\SysWow64\cscript.exe
2014-12-30 11:29:57 956928 ----a-w- C:\Windows\System32\localspl.dll
2014-12-30 11:01:38 859648 ----a-w- C:\Windows\System32\IKEEXT.DLL
2014-12-30 11:01:38 830464 ----a-w- C:\Windows\System32\nshwfp.dll
2014-12-30 11:01:38 656896 ----a-w- C:\Windows\SysWow64\nshwfp.dll
2014-12-30 11:01:38 324096 ----a-w- C:\Windows\System32\FWPUCLNT.DLL
2014-12-30 11:01:38 216576 ----a-w- C:\Windows\SysWow64\FWPUCLNT.DLL
2014-12-29 22:15:54 605552 ----a-w- C:\Windows\System32\winload.exe
2014-12-29 22:15:54 566208 ----a-w- C:\Windows\System32\winresume.efi
2014-12-29 22:15:54 518672 ----a-w- C:\Windows\System32\winresume.exe
2014-12-29 22:15:53 642944 ----a-w- C:\Windows\System32\winload.efi
2014-12-29 22:15:53 20352 ----a-w- C:\Windows\System32\kdusb.dll
2014-12-29 22:15:53 19328 ----a-w- C:\Windows\System32\kd1394.dll
2014-12-29 22:15:53 17792 ----a-w- C:\Windows\System32\kdcom.dll
2014-12-29 22:14:01 3198976 ----a-w- C:\Windows\System32\win32k.sys
2014-12-29 22:10:12 467456 ----a-w- C:\Windows\System32\drivers\srv.sys
2014-12-29 22:10:12 410112 ----a-w- C:\Windows\System32\drivers\srv2.sys
2014-12-29 22:10:12 168448 ----a-w- C:\Windows\System32\drivers\srvnet.sys
2014-12-29 22:09:34 624128 ----a-w- C:\Windows\System32\qedit.dll
2014-12-29 22:09:34 509440 ----a-w- C:\Windows\SysWow64\qedit.dll
2014-12-29 22:06:25 1216000 ----a-w- C:\Windows\System32\rpcrt4.dll
2014-12-29 22:06:24 664064 ----a-w- C:\Windows\SysWow64\rpcrt4.dll
2014-12-29 22:02:27 503808 ----a-w- C:\Windows\System32\srcore.dll
2014-12-29 22:02:27 43008 ----a-w- C:\Windows\SysWow64\srclient.dll
2014-12-29 21:56:51 223752 ----a-w- C:\Windows\System32\drivers\fvevol.sys
2014-12-29 21:53:15 461312 ----a-w- C:\Windows\System32\scavengeui.dll
2014-12-29 16:51:25 -------- d--h--w- C:\$WINDOWS.~BT
2014-12-29 14:41:50 346624 ----a-w- C:\Windows\System32\WSManMigrationPlugin.dll
2014-12-29 14:41:50 310272 ----a-w- C:\Windows\System32\WsmWmiPl.dll
2014-12-29 14:41:50 266240 ----a-w- C:\Windows\System32\WSManHTTPConfig.exe
2014-12-29 14:41:50 248832 ----a-w- C:\Windows\SysWow64\WSManMigrationPlugin.dll
2014-12-29 14:41:50 214016 ----a-w- C:\Windows\SysWow64\WsmWmiPl.dll
2014-12-29 14:41:50 2020352 ----a-w- C:\Windows\System32\WsmSvc.dll
2014-12-29 14:41:50 198656 ----a-w- C:\Windows\SysWow64\WSManHTTPConfig.exe
2014-12-29 14:41:50 181248 ----a-w- C:\Windows\System32\WsmAuto.dll
2014-12-29 14:41:50 145920 ----a-w- C:\Windows\SysWow64\WsmAuto.dll
2014-12-29 14:41:50 1177088 ----a-w- C:\Windows\SysWow64\WsmSvc.dll
2014-12-29 14:36:58 81920 ----a-w- C:\Windows\SysWow64\davclnt.dll
2014-12-29 14:36:58 259584 ----a-w- C:\Windows\System32\WebClnt.dll
2014-12-29 14:36:58 205824 ----a-w- C:\Windows\SysWow64\WebClnt.dll
2014-12-29 14:36:58 140800 ----a-w- C:\Windows\System32\drivers\mrxdav.sys
2014-12-29 14:36:58 102400 ----a-w- C:\Windows\System32\davclnt.dll
2014-12-29 14:29:43 985536 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2014-12-29 14:29:43 265064 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
2014-12-29 14:29:43 144384 ----a-w- C:\Windows\System32\cdd.dll
2014-12-29 14:28:41 95744 ----a-w- C:\Windows\System32\synceng.dll
2014-12-29 14:28:41 78336 ----a-w- C:\Windows\SysWow64\synceng.dll
2014-12-29 14:25:55 267776 ----a-w- C:\Windows\System32\FXSCOVER.exe
2014-12-29 14:24:11 119296 ----a-w- C:\Windows\System32\drivers\tdx.sys
2014-12-29 14:14:25 90624 ----a-w- C:\Windows\System32\drivers\bowser.sys
2014-12-29 14:10:37 68608 ----a-w- C:\Windows\System32\taskhost.exe
2014-12-29 14:08:53 165888 ----a-w- C:\Windows\System32\charmap.exe
2014-12-29 14:08:53 155136 ----a-w- C:\Windows\SysWow64\charmap.exe
2014-12-29 14:05:10 75120 ----a-w- C:\Windows\System32\drivers\partmgr.sys
2014-12-29 14:02:05 6144 ----a-w- C:\Program Files\Internet Explorer\iecompat.dll
2014-12-29 14:02:05 6144 ----a-w- C:\Program Files (x86)\Internet Explorer\iecompat.dll
2014-12-29 13:37:33 47496 ----a-w- C:\Windows\System32\sbbd.exe
2014-12-29 11:34:46 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll
2014-12-29 11:34:46 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys
2014-12-29 11:34:46 1031680 ----a-w- C:\Windows\System32\rdpcore.dll
2014-12-29 00:17:26 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\Free Download Manager
2014-12-29 00:17:17 -------- d-----w- C:\Program Files (x86)\Free Download Manager
2014-12-28 15:05:17 -------- d-----w- C:\Program Files (x86)\UnThreat AntiVirus
2014-12-28 05:56:17 -------- d-----w- C:\Windows\Panther
2014-12-28 05:54:06 -------- d-----w- C:\Windows\System32\OEM
2014-12-28 05:45:18 -------- d--h--w- C:\$WINDOWS.~Q
2014-12-28 05:43:48 -------- d--h--w- C:\$INPLACE.~TR
2014-12-28 04:25:04 2620928 ----a-w- C:\Windows\System32\wucltux.dll
2014-12-28 04:24:59 97792 ----a-w- C:\Windows\System32\wudriver.dll
2014-12-28 04:24:59 92672 ----a-w- C:\Windows\SysWow64\wudriver.dll
2014-12-28 04:24:41 33792 ----a-w- C:\Windows\SysWow64\wuapp.exe
2014-12-28 04:24:41 179656 ----a-w- C:\Windows\SysWow64\wuwebv.dll
2014-12-28 04:24:40 36864 ----a-w- C:\Windows\System32\wuapp.exe
2014-12-28 04:24:40 198600 ----a-w- C:\Windows\System32\wuwebv.dll
2014-12-28 03:01:29 -------- d-----w- C:\Program Files\LSI SoftModem
2014-12-28 03:00:53 0 ----a-w- C:\Windows\ativpsrm.bin
2014-12-28 03:00:52 65536 ----a-w- C:\Windows\System32\spu_storage.bin
2014-12-28 03:00:47 -------- d-----w- C:\Program Files\Common Files\ATI Technologies
2014-12-28 02:59:52 -------- d-----w- C:\Windows\System32\SRSLabs
2014-12-28 02:59:08 -------- d-----w- C:\Program Files\Realtek
2014-12-28 02:58:59 -------- d-----w- C:\Windows\SysWow64\RTCOM
2014-12-28 01:41:12 -------- d-----w- C:\Users\TimandDoris\AppData\Local\AMD
2014-12-28 01:40:59 -------- d-----w- C:\Users\TimandDoris\AppData\Local\ATI
2014-12-28 01:40:16 -------- d-----w- C:\Users\TimandDoris\AppData\Local\AppEx Networks
2014-12-28 01:35:02 82600 ----a-w- C:\Windows\System32\drivers\amd_sata.sys
2014-12-28 01:35:02 42664 ----a-w- C:\Windows\System32\drivers\amd_xata.sys
2014-12-28 01:33:56 881880 ----a-w- C:\Windows\System32\drivers\Rt64win7.sys
2014-12-28 01:33:56 74456 ----a-w- C:\Windows\System32\RtNicProp64.dll
2014-12-28 01:33:56 108760 ----a-w- C:\Windows\System32\RTNUninst64.dll
2014-12-28 01:31:52 -------- d--h--w- C:\Windows\System32\WLANProfiles
2014-12-28 01:31:36 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\Intel
2014-12-28 01:31:19 -------- d-----w- C:\Users\TimandDoris\Roaming
2014-12-28 01:31:19 -------- d-----w- C:\ProgramData\Roaming
2014-12-28 01:30:52 -------- d-----w- C:\Program Files\Common Files\Intel
2014-12-28 01:30:51 -------- d-----w- C:\Program Files (x86)\Cisco
2014-12-28 01:28:22 -------- d-----w- C:\Windows\SYSTEM.SAV
2014-12-28 01:27:01 219360 ----a-w- C:\Windows\System32\drivers\appexDrv.sys
2014-12-28 01:27:01 -------- d-----w- C:\Program Files\AMD Quick Stream
2014-12-28 01:26:59 -------- d-----w- C:\Users\TimandDoris\AppData\Local\Programs
2014-12-28 01:26:58 -------- d-----w- C:\ProgramData\AMD
2014-12-28 01:26:56 -------- d-----w- C:\Program Files (x86)\AMD AVT
2014-12-28 01:26:52 -------- d-----w- C:\Program Files\AMD
2014-12-28 01:26:52 -------- d-----w- C:\Program Files (x86)\AMD
2014-12-28 01:26:46 -------- d-----w- C:\Program Files (x86)\Common Files\ATI Technologies
2014-12-28 01:25:00 -------- d-----w- C:\Program Files\ATI Technologies
2014-12-28 01:24:05 98816 ----a-w- C:\Windows\System32\OpenVideo64.dll
2014-12-28 01:24:05 63488 ----a-w- C:\Windows\System32\OpenCL.dll
2014-12-28 01:24:05 57344 ----a-w- C:\Windows\SysWow64\OpenCL.dll
2014-12-28 01:24:05 23760896 ----a-w- C:\Windows\SysWow64\amdocl.dll
2014-12-28 01:24:05 229376 ----a-w- C:\Windows\System32\clinfo.exe
2014-12-28 01:24:05 127488 ----a-w- C:\Windows\System32\coinst_13.152.dll
2014-12-28 01:24:05 1187342 ----a-w- C:\Windows\System32\amdocl_as64.exe
2014-12-28 01:24:05 1061902 ----a-w- C:\Windows\System32\amdocl_ld64.exe
2014-12-28 01:24:04 995342 ----a-w- C:\Windows\SysWow64\amdocl_as32.exe
2014-12-28 01:24:04 83456 ----a-w- C:\Windows\SysWow64\OpenVideo.dll
2014-12-28 01:24:04 798734 ----a-w- C:\Windows\SysWow64\amdocl_ld32.exe
2014-12-28 01:24:03 86528 ----a-w- C:\Windows\System32\OVDecode64.dll
2014-12-28 01:23:59 73216 ----a-w- C:\Windows\SysWow64\OVDecode.dll
2014-12-28 01:23:59 442368 ----a-w- C:\Windows\System32\atidemgy.dll
2014-12-28 01:23:58 28192256 ----a-w- C:\Windows\System32\amdocl64.dll
2014-12-28 01:23:35 -------- d-----w- C:\Program Files\ATI
2014-12-28 01:23:22 -------- d-----w- C:\Program Files (x86)\ATI Technologies
2014-12-28 01:20:38 90624 ----a-w- C:\Windows\SysWow64\amdave32.dll
2014-12-27 23:41:28 -------- d-----w- C:\DVD RW Drive
2014-12-27 19:13:26 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\PeoplePC Online
2014-12-27 19:13:26 -------- d-----w- C:\ProgramData\PeoplePC Online
2014-12-27 16:45:02 -------- d-----w- C:\Users\TimandDoris\AppData\Local\Diagnostics
2014-12-27 16:19:55 -------- d-----w- C:\Program Files (x86)\PeoplePC Accelerated
2014-12-27 16:14:49 64000 ----a-w- C:\Windows\agrsmdel.exe
2014-12-27 16:14:49 42496 ----a-w- C:\Windows\agrdel64.exe
2014-12-27 16:14:49 14848 ----a-w- C:\Windows\System32\agrsco64.dll
2014-12-27 16:11:34 -------- d-----w- C:\Windows.old
2014-12-27 15:20:06 -------- d-----w- C:\Users\TimandDoris\AppData\Local\Adobe
2014-12-27 15:15:10 -------- d-----w- C:\Users\TimandDoris\AppData\Local\ElevatedDiagnostics
2014-12-27 15:11:23 61440 ----a-w- C:\Windows\SysWow64\ppcpanel.cpl
2014-12-27 15:11:23 58144 ----a-w- C:\Windows\SysWow64\PPCOUNIN.exe
2014-12-27 15:11:23 -------- d-----w- C:\Program Files (x86)\Common Files\PeoplePC
2014-12-27 15:10:54 -------- d-----w- C:\Program Files (x86)\PeoplePC
2014-12-27 15:03:27 -------- d-----w- C:\Users\TimandDoris\AppData\Local\Hewlett-Packard
2014-12-27 15:00:11 -------- d-----w- C:\ProgramData\HP Photo Creations
2014-12-27 15:00:11 -------- d-----w- C:\Program Files (x86)\HP Photo Creations
2014-12-27 15:00:06 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\HpUpdate
2014-12-27 14:59:38 -------- d-----w- C:\Program Files (x86)\HP
2014-12-27 14:58:51 -------- d-----w- C:\Program Files\HP
2014-12-27 14:57:33 -------- d-----w- C:\Users\TimandDoris\AppData\Local\HP
2014-12-27 14:42:13 -------- d-----w- C:\Users\TimandDoris\AppData\Local\CyberLink
2014-12-27 14:39:36 -------- d-----w- C:\ProgramData\install_clap
2014-12-27 14:32:22 -------- d-----w- C:\ProgramData\{A5CCDB92-FA53-47D1-89E6-32B82D86621A}
2014-12-27 14:31:38 582144 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\DAO\DAO350.DLL
2014-12-27 14:31:38 368912 ----a-w- C:\Windows\SysWow64\VBAR332.DLL
2014-12-27 14:31:38 252176 ----a-w- C:\Windows\SysWow64\MSRD2X35.DLL
2014-12-27 14:31:38 24848 ----a-w- C:\Windows\SysWow64\MSJTER35.DLL
2014-12-27 14:31:38 123664 ----a-w- C:\Windows\SysWow64\MSJINT35.DLL
2014-12-27 14:31:38 1045776 ----a-w- C:\Windows\SysWow64\MSJET35.DLL
2014-12-27 14:24:00 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\hpqLog
2014-12-27 14:17:55 -------- d-----w- C:\ProgramData\Package Cache
2014-12-27 14:14:54 -------- d-sh--w- C:\Windows\Installer
2014-12-27 14:12:02 -------- d-----w- C:\Windows\Options
2014-12-27 13:58:21 73192 ----a-w- C:\Windows\SysWow64\unPPC.exe
2014-12-27 13:58:21 70432 ----a-w- C:\Windows\SysWow64\unPPC6000.exe
2014-12-27 13:58:21 42784 ----a-w- C:\Windows\SysWow64\ppcwebi.dll
2014-12-27 13:58:21 41592 ----a-w- C:\Windows\SysWow64\PPCClean.exe
2014-12-27 13:58:21 34136 ----a-w- C:\Windows\SysWow64\RegHero.exe
2014-12-27 13:58:21 29984 ----a-w- C:\Windows\SysWow64\PopWait.exe
2014-12-27 13:58:21 256288 ----a-w- C:\Windows\SysWow64\PPCInfo.exe
2014-12-27 13:58:20 89088 ----a-w- C:\Windows\SysWow64\ATL71.dll
2014-12-27 13:58:20 84992 ----a-w- C:\Windows\SysWow64\ATL70.dll
2014-12-27 13:58:20 499712 ----a-w- C:\Windows\SysWow64\MSVCP71.DLL
2014-12-27 13:58:20 348160 ----a-w- C:\Windows\SysWow64\MSVCR71.DLL
2014-12-27 13:58:20 1060864 ----a-w- C:\Windows\SysWow64\MFC71.DLL
2014-12-27 13:44:51 -------- d-----w- C:\Users\TimandDoris\AppData\Local\VirtualStore
2014-12-24 18:50:38 -------- d-----w- C:\AdwCleaner
.
==================== Find3M  ====================
.
.
============= FINISH:  6:28:41.85 ===============
 



#4 bonezz

bonezz
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 06 January 2015 - 08:50 AM

Attached File  attach.txt   6.42KB   0 downloads Here are the logs: DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 8.0.7601.17514
Run by TimandDoris at 6:26:55 on 2015-01-05
Microsoft Windows 7 Professional   6.1.7601.1.1252.1.1033.18.1478.425 [GMT -5:00]
.
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\atieclxx.exe
C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
C:\Program Files\LSI SoftModem\agr64svc.exe
C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
C:\Windows\system32\CISVC.EXE
C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
C:\Program Files\AMD Quick Stream\AMDQuickStream.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
C:\Program Files (x86)\PeoplePC\ISP8500\Browser\Bartshel.exe
C:\Program Files (x86)\PeoplePC\ISP8500\Browser\PPShared.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files (x86)\PeoplePC\ISP8500\Browser\Bartshel.exe
C:\Program Files (x86)\PeoplePC Accelerated\PeoplePC.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\SysWOW64\msiexec.exe
C:\Windows\system32\msiexec.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://home.peoplepc.com/websearch
uSearch Bar = Preserve
uProxyServer = hxxp=localhost:8080
uProxyOverride = <local>
mWinlogon: Userinit = userinit.exe
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Accelerator Plugin: {656EC4B7-072B-4698-B504-2A414C1F0037} - C:\Program Files (x86)\PeoplePC Accelerated\prpl_IePopupBlocker.dll
BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\AMD\SteadyVideo\SteadyVideo.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Free Download Manager: {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll
BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
uRun: [AppEx Accelerator UI] C:\Program Files\AMD Quick Stream\AMDQuickStream.exe -h
uRun: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [Bart Station] C:\Program Files (x86)\PeoplePC\ISP8500\BIN\PPCOLink.exe -STATION
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: SoftwareSASGeneration = dword:1
IE: Refresh Pa&ge with Full Quality - C:\Program Files (x86)\PeoplePC Accelerated\pac-page.html
IE: Refresh Pi&cture with Full Quality - C:\Program Files (x86)\PeoplePC Accelerated\pac-image.html
IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
TCP: Interfaces\{096C4026-1396-439E-BA93-C537F916CEDA} : NameServer = 207.69.188.167 207.69.188.166
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll
SSODL: WebCheck - <orphaned>
x64-BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll
x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll
x64-Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
x64-Run: [UnThreat] "C:\Program Files (x86)\UnThreat AntiVirus\UnThreat.exe" -silent
x64-RunOnce: [NCPluginUpdater] "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update
x64-IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
x64-Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
x64-Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 amd_sata;amd_sata;C:\Windows\System32\drivers\amd_sata.sys [2014-12-27 82600]
R0 amd_xata;amd_xata;C:\Windows\System32\drivers\amd_xata.sys [2014-12-27 42664]
R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2015-1-1 65776]
R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2015-1-1 267632]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswsnx.sys [2015-1-1 1050432]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2015-1-1 436624]
R2 AERTFilters;Andrea RT Filters Service;C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2014-12-27 98208]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2014-12-27 239616]
R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-8-30 344064]
R2 APXACC;AppEx Networks Accelerator LWF;C:\Windows\System32\drivers\appexDrv.sys [2014-12-27 219360]
R2 aswHwid;avast! HardwareID;C:\Windows\System32\drivers\aswHwid.sys [2015-1-1 29208]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2015-1-1 83280]
R2 aswStm;aswStm;C:\Windows\System32\drivers\aswStm.sys [2015-1-1 116728]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-1-1 50344]
R2 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service;C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [2014-12-27 77576]
R2 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service;C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [2014-12-27 298760]
R2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2013-8-29 92160]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-12-30 1871160]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-12-30 969016]
R2 RtkAudioService;Realtek Audio Service;C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE [2014-12-27 246488]
R2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2013-8-2 3378416]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2014-12-30 25816]
R3 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\System32\drivers\MBAMSwissArmy.sys [2014-12-30 129752]
R3 MBAMWebAccessControl;MBAMWebAccessControl;C:\Windows\System32\drivers\mwac.sys [2014-12-30 63704]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2014-12-27 881880]
R3 usbfilter;AMD USB Filter Driver;C:\Windows\System32\drivers\usbfilter.sys [2012-3-6 56448]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-7-9 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-7-8 123856]
S3 amdhub30;AMD USB 3.0 Hub Driver;C:\Windows\System32\drivers\amdhub30.sys [2012-3-6 103552]
S3 amdxhc;AMD USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\amdxhc.sys [2012-3-6 220288]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2010-11-21 71168]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-8-2 273136]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2012-3-6 96768]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2012-3-6 213504]
S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2015-1-2 1255736]
.
=============== Created Last 30 ================
.
2015-01-04 13:51:20 -------- d-----w- C:\ProgramData\PopCap Games
2015-01-04 13:51:20 -------- d-----w- C:\Program Files (x86)\PopCap Games
2015-01-04 11:52:14 1719296 ----a-w- C:\Program Files\Windows Journal\NBDoc.DLL
2015-01-04 11:52:14 1354240 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll
2015-01-04 11:52:13 1389568 ----a-w- C:\Program Files\Windows Journal\JNWDRV.dll
2015-01-04 11:52:13 1380864 ----a-w- C:\Program Files\Windows Journal\JNTFiltr.dll
2015-01-04 11:52:12 936960 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2015-01-04 11:40:51 331776 ----a-w- C:\Windows\System32\oleacc.dll
2015-01-04 11:40:51 233472 ----a-w- C:\Windows\SysWow64\oleacc.dll
2015-01-04 11:40:42 124112 ----a-w- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2015-01-04 11:40:42 102608 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-01-04 11:31:18 1684928 ----a-w- C:\Windows\System32\drivers\ntfs.sys
2015-01-04 11:30:57 96768 ----a-w- C:\Windows\System32\fsutil.exe
2015-01-04 11:30:57 27008 ----a-w- C:\Windows\System32\drivers\amdxata.sys
2015-01-04 11:30:57 2565632 ----a-w- C:\Windows\System32\esent.dll
2015-01-04 11:30:56 74240 ----a-w- C:\Windows\SysWow64\fsutil.exe
2015-01-04 11:30:56 410496 ----a-w- C:\Windows\System32\drivers\iaStorV.sys
2015-01-04 11:30:56 1699328 ----a-w- C:\Windows\SysWow64\esent.dll
2015-01-04 11:30:55 166272 ----a-w- C:\Windows\System32\drivers\nvstor.sys
2015-01-04 11:30:55 148352 ----a-w- C:\Windows\System32\drivers\nvraid.sys
2015-01-04 11:30:55 107904 ----a-w- C:\Windows\System32\drivers\amdsata.sys
2015-01-03 18:00:48 274880 ----a-w- C:\Windows\System32\drivers\msiscsi.sys
2015-01-03 18:00:47 27584 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
2015-01-03 18:00:47 190912 ----a-w- C:\Windows\System32\drivers\storport.sys
2015-01-03 18:00:46 2048 ----a-w- C:\Windows\SysWow64\iologmsg.dll
2015-01-03 18:00:43 2048 ----a-w- C:\Windows\System32\iologmsg.dll
2015-01-03 16:06:55 142336 ----a-w- C:\Windows\System32\poqexec.exe
2015-01-03 16:06:55 123904 ----a-w- C:\Windows\SysWow64\poqexec.exe
2015-01-03 15:56:37 224256 ----a-w- C:\Windows\System32\wintrust.dll
2015-01-03 15:56:37 175104 ----a-w- C:\Windows\SysWow64\wintrust.dll
2015-01-03 14:35:37 197120 ----a-w- C:\Windows\System32\credui.dll
2015-01-03 14:35:37 190464 ----a-w- C:\Windows\System32\SmartcardCredentialProvider.dll
2015-01-03 14:35:37 168960 ----a-w- C:\Windows\SysWow64\credui.dll
2015-01-03 14:35:37 152576 ----a-w- C:\Windows\SysWow64\SmartcardCredentialProvider.dll
2015-01-03 13:51:36 210944 ----a-w- C:\Windows\System32\drivers\rdpwd.sys
2015-01-03 03:35:51 87040 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys
2015-01-03 03:35:51 198656 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys
2015-01-03 03:35:50 84992 ----a-w- C:\Windows\System32\WUDFSvc.dll
2015-01-03 03:35:49 194048 ----a-w- C:\Windows\System32\WUDFPlatform.dll
2015-01-03 03:35:46 45056 ----a-w- C:\Windows\System32\WUDFCoinstaller.dll
2015-01-03 03:35:45 229888 ----a-w- C:\Windows\System32\WUDFHost.exe
2015-01-03 03:35:44 744448 ----a-w- C:\Windows\System32\WUDFx.dll
2015-01-02 22:49:56 3241984 ----a-w- C:\Windows\System32\msi.dll
2015-01-02 22:49:55 2363904 ----a-w- C:\Windows\SysWow64\msi.dll
2015-01-02 22:30:10 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2015-01-02 22:30:10 53248 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2015-01-02 22:30:10 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys
2015-01-02 22:30:09 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys
2015-01-02 22:30:09 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys
2015-01-02 22:30:09 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys
2015-01-02 11:26:26 327168 ----a-w- C:\Windows\System32\mswsock.dll
2015-01-02 11:26:25 231424 ----a-w- C:\Windows\SysWow64\mswsock.dll
2015-01-02 10:58:00 404480 ----a-w- C:\Windows\System32\gdi32.dll
2015-01-02 10:58:00 311808 ----a-w- C:\Windows\SysWow64\gdi32.dll
2015-01-02 10:41:57 1941504 ----a-w- C:\Windows\System32\authui.dll
2015-01-02 10:41:56 70144 ----a-w- C:\Windows\System32\appinfo.dll
2015-01-02 10:41:56 504320 ----a-w- C:\Windows\System32\msihnd.dll
2015-01-02 10:41:56 1805824 ----a-w- C:\Windows\SysWow64\authui.dll
2015-01-02 10:41:56 112064 ----a-w- C:\Windows\System32\consent.exe
2015-01-02 10:41:55 337408 ----a-w- C:\Windows\SysWow64\msihnd.dll
2015-01-02 10:21:40 75776 ----a-w- C:\Windows\SysWow64\psisrndr.ax
2015-01-02 10:21:40 613888 ----a-w- C:\Windows\System32\psisdecd.dll
2015-01-02 10:21:39 465408 ----a-w- C:\Windows\SysWow64\psisdecd.dll
2015-01-02 10:21:38 108032 ----a-w- C:\Windows\System32\psisrndr.ax
2015-01-02 08:36:04 -------- d-----w- C:\Windows\SysWow64\Wat
2015-01-02 08:36:04 -------- d-----w- C:\Windows\System32\Wat
2015-01-02 08:11:26 2560 ----a-w- C:\Windows\System32\drivers\en-US\wdf01000.sys.mui
2015-01-02 02:38:52 503296 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
2015-01-02 02:38:52 449024 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\tabskb.dll
2015-01-02 02:38:52 1247232 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\tipskins.dll
2015-01-02 02:38:51 646144 ----a-w- C:\Windows\SysWow64\osk.exe
2015-01-02 02:38:51 348672 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\tiptsf.dll
2015-01-02 02:38:51 224768 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe
2015-01-02 02:38:50 692736 ----a-w- C:\Windows\System32\osk.exe
2015-01-02 02:38:50 544768 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\TipRes.dll
2015-01-02 02:38:50 110592 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\TipBand.dll
2015-01-02 02:38:50 10240 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\TabTip32.exe
2015-01-02 02:26:15 571904 ----a-w- C:\Program Files\Windows Defender\MpClient.dll
2015-01-02 02:26:15 392704 ----a-w- C:\Program Files (x86)\Windows Defender\MpClient.dll
2015-01-02 02:26:15 314880 ----a-w- C:\Program Files\Windows Defender\MpCommu.dll
2015-01-02 02:26:15 1011712 ----a-w- C:\Program Files\Windows Defender\MpSvc.dll
2015-01-02 02:26:14 9216 ----a-w- C:\Program Files (x86)\Windows Defender\MpAsDesc.dll
2015-01-02 02:26:14 54784 ----a-w- C:\Program Files (x86)\Windows Defender\MpOAV.dll
2015-01-02 02:26:14 4608 ----a-w- C:\Program Files (x86)\Windows Defender\MsMpLics.dll
2015-01-02 01:13:35 1572864 ----a-w- C:\Windows\System32\quartz.dll
2015-01-02 01:13:34 1328128 ----a-w- C:\Windows\SysWow64\quartz.dll
2015-01-02 00:45:07 371712 ----a-w- C:\Windows\System32\qdvd.dll
2015-01-02 00:45:06 519680 ----a-w- C:\Windows\SysWow64\qdvd.dll
2015-01-02 00:44:54 878080 ----a-w- C:\Windows\System32\IMJP10K.DLL
2015-01-02 00:44:54 701440 ----a-w- C:\Windows\SysWow64\IMJP10K.DLL
2015-01-01 22:40:41 288768 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2015-01-01 22:40:41 158208 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
2015-01-01 22:40:41 128000 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
2015-01-01 22:22:21 156824 ----a-w- C:\Windows\SysWow64\mscorier.dll
2015-01-01 22:22:21 156312 ----a-w- C:\Windows\System32\mscorier.dll
2015-01-01 22:22:21 1131664 ----a-w- C:\Windows\SysWow64\dfshim.dll
2015-01-01 22:22:20 81560 ----a-w- C:\Windows\SysWow64\mscories.dll
2015-01-01 22:22:20 73880 ----a-w- C:\Windows\System32\mscories.dll
2015-01-01 22:22:20 1943696 ----a-w- C:\Windows\System32\dfshim.dll
2015-01-01 22:18:57 1474048 ----a-w- C:\Windows\System32\crypt32.dll
2015-01-01 22:18:57 1168384 ----a-w- C:\Windows\SysWow64\crypt32.dll
2015-01-01 22:18:56 184320 ----a-w- C:\Windows\System32\cryptsvc.dll
2015-01-01 22:18:56 140288 ----a-w- C:\Windows\SysWow64\cryptsvc.dll
2015-01-01 22:18:56 139776 ----a-w- C:\Windows\System32\cryptnet.dll
2015-01-01 22:18:56 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll
2015-01-01 22:17:23 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2015-01-01 22:17:22 376768 ----a-w- C:\Windows\System32\drivers\netio.sys
2015-01-01 22:17:22 288192 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
2015-01-01 22:02:50 2002432 ----a-w- C:\Windows\System32\msxml6.dll
2015-01-01 22:02:49 2048 ----a-w- C:\Windows\SysWow64\msxml6r.dll
2015-01-01 22:02:49 2048 ----a-w- C:\Windows\System32\msxml6r.dll
2015-01-01 22:02:49 1389056 ----a-w- C:\Windows\SysWow64\msxml6.dll
2015-01-01 21:20:37 1190912 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2015-01-01 21:20:36 1011200 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2015-01-01 21:20:08 1395712 ----a-w- C:\Windows\System32\mfc42.dll
2015-01-01 21:20:08 1359872 ----a-w- C:\Windows\System32\mfc42u.dll
2015-01-01 21:20:07 1164288 ----a-w- C:\Windows\SysWow64\mfc42u.dll
2015-01-01 21:20:07 1137664 ----a-w- C:\Windows\SysWow64\mfc42.dll
2015-01-01 21:13:29 1882624 ----a-w- C:\Windows\System32\msxml3.dll
2015-01-01 21:13:28 2048 ----a-w- C:\Windows\SysWow64\msxml3r.dll
2015-01-01 21:13:28 2048 ----a-w- C:\Windows\System32\msxml3r.dll
2015-01-01 21:13:28 1237504 ----a-w- C:\Windows\SysWow64\msxml3.dll
2015-01-01 21:04:33 1888768 ----a-w- C:\Windows\System32\WMVDECOD.DLL
2015-01-01 21:04:32 1620992 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
2015-01-01 21:01:56 610304 ----a-w- C:\Windows\System32\vbscript.dll
2015-01-01 21:01:56 428544 ----a-w- C:\Windows\SysWow64\vbscript.dll
2015-01-01 21:01:19 9728 ----a-w- C:\Windows\System32\Wdfres.dll
2015-01-01 21:01:19 785624 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys
2015-01-01 21:01:19 54376 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys
2015-01-01 20:58:27 216576 ----a-w- C:\Windows\System32\ncsi.dll
2015-01-01 20:58:26 569344 ----a-w- C:\Windows\System32\iphlpsvc.dll
2015-01-01 20:58:26 246272 ----a-w- C:\Windows\System32\netcorehc.dll
2015-01-01 20:58:26 156672 ----a-w- C:\Windows\SysWow64\ncsi.dll
2015-01-01 20:58:25 52224 ----a-w- C:\Windows\SysWow64\nlaapi.dll
2015-01-01 20:58:25 303104 ----a-w- C:\Windows\System32\nlasvc.dll
2015-01-01 20:58:25 175104 ----a-w- C:\Windows\SysWow64\netcorehc.dll
2015-01-01 20:58:24 70656 ----a-w- C:\Windows\System32\nlaapi.dll
2015-01-01 20:58:24 45568 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys
2015-01-01 20:58:24 18944 ----a-w- C:\Windows\SysWow64\netevent.dll
2015-01-01 20:58:23 18944 ----a-w- C:\Windows\System32\netevent.dll
2015-01-01 20:40:59 245760 ----a-w- C:\Windows\System32\OxpsConverter.exe
2015-01-01 16:29:10 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\AVAST Software
2015-01-01 16:28:23 93568 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2015-01-01 16:28:23 83280 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2015-01-01 16:28:23 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
2015-01-01 16:28:23 29208 ----a-w- C:\Windows\System32\drivers\aswHwid.sys
2015-01-01 16:28:23 267632 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
2015-01-01 16:28:23 116728 ----a-w- C:\Windows\System32\drivers\aswStm.sys
2015-01-01 16:28:22 1050432 ----a-w- C:\Windows\System32\drivers\aswsnx.sys
2015-01-01 16:28:09 43152 ----a-w- C:\Windows\avastSS.scr
2015-01-01 16:26:50 -------- d-----w- C:\Program Files\AVAST Software
2015-01-01 16:23:20 -------- d-----w- C:\ProgramData\AVAST Software
2015-01-01 14:54:26 680960 ----a-w- C:\Windows\System32\audiosrv.dll
2015-01-01 14:54:26 500224 ----a-w- C:\Windows\System32\AUDIOKSE.dll
2015-01-01 14:54:26 442880 ----a-w- C:\Windows\SysWow64\AUDIOKSE.dll
2015-01-01 14:54:26 440832 ----a-w- C:\Windows\System32\AudioEng.dll
2015-01-01 14:54:26 374784 ----a-w- C:\Windows\SysWow64\AudioEng.dll
2015-01-01 14:54:26 296448 ----a-w- C:\Windows\System32\AudioSes.dll
2015-01-01 14:54:26 284672 ----a-w- C:\Windows\System32\EncDump.dll
2015-01-01 14:54:26 195584 ----a-w- C:\Windows\SysWow64\AudioSes.dll
2015-01-01 14:44:02 424448 ----a-w- C:\Windows\System32\rastls.dll
2015-01-01 14:44:02 372736 ----a-w- C:\Windows\SysWow64\rastls.dll
2015-01-01 14:43:47 751104 ----a-w- C:\Windows\System32\win32spl.dll
2015-01-01 14:43:47 492544 ----a-w- C:\Windows\SysWow64\win32spl.dll
2015-01-01 14:40:15 64512 ----a-w- C:\Windows\SysWow64\devobj.dll
2015-01-01 14:40:15 44544 ----a-w- C:\Windows\SysWow64\devrtl.dll
2015-01-01 14:40:15 404480 ----a-w- C:\Windows\System32\umpnpmgr.dll
2015-01-01 14:40:15 252928 ----a-w- C:\Windows\SysWow64\drvinst.exe
2015-01-01 14:40:15 145920 ----a-w- C:\Windows\SysWow64\cfgmgr32.dll
2015-01-01 14:08:10 690688 ----a-w- C:\Windows\SysWow64\msvcrt.dll
2015-01-01 14:08:10 634880 ----a-w- C:\Windows\System32\msvcrt.dll
2015-01-01 13:50:58 1545728 ----a-w- C:\Windows\System32\DWrite.dll
2015-01-01 13:50:57 1143296 ----a-w- C:\Windows\System32\FntCache.dll
2015-01-01 13:50:57 1077760 ----a-w- C:\Windows\SysWow64\DWrite.dll
2015-01-01 13:41:49 861696 ----a-w- C:\Windows\System32\oleaut32.dll
2015-01-01 13:41:48 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll
2014-12-31 18:39:22 509952 ----a-w- C:\Windows\System32\ntshrui.dll
2014-12-31 18:39:22 442880 ----a-w- C:\Windows\SysWow64\ntshrui.dll
2014-12-31 18:22:21 793600 ----a-w- C:\Windows\SysWow64\TSWorkspace.dll
2014-12-31 18:22:21 1031168 ----a-w- C:\Windows\System32\TSWorkspace.dll
2014-12-31 18:18:27 30720 ----a-w- C:\Windows\System32\cryptdlg.dll
2014-12-31 18:18:27 24576 ----a-w- C:\Windows\SysWow64\cryptdlg.dll
2014-12-31 18:13:33 723456 ----a-w- C:\Windows\System32\EncDec.dll
2014-12-31 18:13:33 534528 ----a-w- C:\Windows\SysWow64\EncDec.dll
2014-12-31 18:09:50 950128 ----a-w- C:\Windows\System32\drivers\ndis.sys
2014-12-31 18:09:50 41472 ----a-w- C:\Windows\System32\drivers\RNDISMP.sys
2014-12-31 17:58:47 77824 ----a-w- C:\Windows\System32\packager.dll
2014-12-31 17:58:46 67584 ----a-w- C:\Windows\SysWow64\packager.dll
2014-12-31 17:56:20 59392 ----a-w- C:\Windows\System32\browcli.dll
2014-12-31 17:56:20 41984 ----a-w- C:\Windows\SysWow64\browcli.dll
2014-12-31 17:56:20 136704 ----a-w- C:\Windows\System32\browser.dll
2014-12-31 17:52:57 155584 ----a-w- C:\Windows\System32\drivers\ataport.sys
2014-12-31 17:50:41 48640 ----a-w- C:\Windows\System32\wwanprotdim.dll
2014-12-31 17:50:41 228864 ----a-w- C:\Windows\System32\wwansvc.dll
2014-12-31 17:48:47 230400 ----a-w- C:\Windows\System32\drivers\portcls.sys
2014-12-31 17:48:47 116736 ----a-w- C:\Windows\System32\drivers\drmk.sys
2014-12-31 16:57:45 19968 ----a-w- C:\Windows\System32\drivers\usb8023.sys
2014-12-31 16:57:16 9216 ----a-w- C:\Windows\System32\rdrmemptylst.exe
2014-12-31 16:57:16 77312 ----a-w- C:\Windows\System32\rdpwsx.dll
2014-12-31 16:57:16 149504 ----a-w- C:\Windows\System32\rdpcorekmts.dll
2014-12-31 16:56:44 497152 ----a-w- C:\Windows\System32\drivers\afd.sys
2014-12-31 16:48:00 209920 ----a-w- C:\Windows\System32\profsvc.dll
2014-12-31 16:46:14 30208 ----a-w- C:\Windows\System32\dnscacheugc.exe
2014-12-31 16:46:14 28672 ----a-w- C:\Windows\SysWow64\dnscacheugc.exe
2014-12-31 16:46:14 183296 ----a-w- C:\Windows\System32\dnsrslvr.dll
2014-12-31 16:42:39 478208 ----a-w- C:\Windows\System32\dpnet.dll
2014-12-31 16:42:39 376832 ----a-w- C:\Windows\SysWow64\dpnet.dll
2014-12-31 15:13:59 515584 ----a-w- C:\Windows\System32\timedate.cpl
2014-12-31 15:13:59 478720 ----a-w- C:\Windows\SysWow64\timedate.cpl
2014-12-31 14:43:10 100864 ----a-w- C:\Windows\System32\drivers\usbcir.sys
2014-12-31 14:35:55 76800 ----a-w- C:\Windows\System32\drivers\hidclass.sys
2014-12-31 14:35:55 32896 ----a-w- C:\Windows\System32\drivers\hidparse.sys
2014-12-31 13:12:27 886784 ----a-w- C:\Program Files\Common Files\System\wab32.dll
2014-12-31 13:12:27 708608 ----a-w- C:\Program Files (x86)\Common Files\System\wab32.dll
2014-12-31 11:28:02 801280 ----a-w- C:\Windows\System32\usp10.dll
2014-12-31 11:28:02 626688 ----a-w- C:\Windows\SysWow64\usp10.dll
2014-12-31 10:55:12 484864 ----a-w- C:\Windows\System32\wer.dll
2014-12-31 10:55:12 381440 ----a-w- C:\Windows\SysWow64\wer.dll
2014-12-31 10:54:19 81408 ----a-w- C:\Windows\System32\imagehlp.dll
2014-12-31 10:54:19 5120 ----a-w- C:\Windows\SysWow64\wmi.dll
2014-12-31 10:54:19 5120 ----a-w- C:\Windows\System32\wmi.dll
2014-12-31 10:54:19 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys
2014-12-31 10:54:19 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll
2014-12-30 17:42:36 70656 ----a-w- C:\Windows\SysWow64\fontsub.dll
2014-12-30 17:42:36 46080 ----a-w- C:\Windows\System32\atmlib.dll
2014-12-30 17:42:36 41472 ----a-w- C:\Windows\System32\lpk.dll
2014-12-30 17:42:36 368128 ----a-w- C:\Windows\System32\atmfd.dll
2014-12-30 17:42:36 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2014-12-30 17:42:36 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll
2014-12-30 17:42:36 25600 ----a-w- C:\Windows\SysWow64\lpk.dll
2014-12-30 17:42:36 14336 ----a-w- C:\Windows\System32\dciman32.dll
2014-12-30 17:42:36 10240 ----a-w- C:\Windows\SysWow64\dciman32.dll
2014-12-30 17:42:36 100864 ----a-w- C:\Windows\System32\fontsub.dll
2014-12-30 15:59:57 31232 ----a-w- C:\Windows\SysWow64\prevhost.exe
2014-12-30 15:59:57 31232 ----a-w- C:\Windows\System32\prevhost.exe
2014-12-30 15:59:21 976896 ----a-w- C:\Windows\System32\inetcomm.dll
2014-12-30 15:59:21 741376 ----a-w- C:\Windows\SysWow64\inetcomm.dll
2014-12-30 14:49:28 129752 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-12-30 14:48:43 93400 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-12-30 14:48:43 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys
2014-12-30 14:48:43 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-12-30 14:48:43 -------- d-----w- C:\ProgramData\Malwarebytes
2014-12-30 14:48:43 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-12-30 11:37:57 202752 ----a-w- C:\Windows\System32\scrrun.dll
2014-12-30 11:37:57 168960 ----a-w- C:\Windows\System32\wscript.exe
2014-12-30 11:37:57 163840 ----a-w- C:\Windows\SysWow64\scrrun.dll
2014-12-30 11:37:57 156160 ----a-w- C:\Windows\System32\cscript.exe
2014-12-30 11:37:57 150016 ----a-w- C:\Windows\System32\wshom.ocx
2014-12-30 11:37:57 141824 ----a-w- C:\Windows\SysWow64\wscript.exe
2014-12-30 11:37:57 121856 ----a-w- C:\Windows\SysWow64\wshom.ocx
2014-12-30 11:37:56 126976 ----a-w- C:\Windows\SysWow64\cscript.exe
2014-12-30 11:29:57 956928 ----a-w- C:\Windows\System32\localspl.dll
2014-12-30 11:01:38 859648 ----a-w- C:\Windows\System32\IKEEXT.DLL
2014-12-30 11:01:38 830464 ----a-w- C:\Windows\System32\nshwfp.dll
2014-12-30 11:01:38 656896 ----a-w- C:\Windows\SysWow64\nshwfp.dll
2014-12-30 11:01:38 324096 ----a-w- C:\Windows\System32\FWPUCLNT.DLL
2014-12-30 11:01:38 216576 ----a-w- C:\Windows\SysWow64\FWPUCLNT.DLL
2014-12-29 22:15:54 605552 ----a-w- C:\Windows\System32\winload.exe
2014-12-29 22:15:54 566208 ----a-w- C:\Windows\System32\winresume.efi
2014-12-29 22:15:54 518672 ----a-w- C:\Windows\System32\winresume.exe
2014-12-29 22:15:53 642944 ----a-w- C:\Windows\System32\winload.efi
2014-12-29 22:15:53 20352 ----a-w- C:\Windows\System32\kdusb.dll
2014-12-29 22:15:53 19328 ----a-w- C:\Windows\System32\kd1394.dll
2014-12-29 22:15:53 17792 ----a-w- C:\Windows\System32\kdcom.dll
2014-12-29 22:14:01 3198976 ----a-w- C:\Windows\System32\win32k.sys
2014-12-29 22:10:12 467456 ----a-w- C:\Windows\System32\drivers\srv.sys
2014-12-29 22:10:12 410112 ----a-w- C:\Windows\System32\drivers\srv2.sys
2014-12-29 22:10:12 168448 ----a-w- C:\Windows\System32\drivers\srvnet.sys
2014-12-29 22:09:34 624128 ----a-w- C:\Windows\System32\qedit.dll
2014-12-29 22:09:34 509440 ----a-w- C:\Windows\SysWow64\qedit.dll
2014-12-29 22:06:25 1216000 ----a-w- C:\Windows\System32\rpcrt4.dll
2014-12-29 22:06:24 664064 ----a-w- C:\Windows\SysWow64\rpcrt4.dll
2014-12-29 22:02:27 503808 ----a-w- C:\Windows\System32\srcore.dll
2014-12-29 22:02:27 43008 ----a-w- C:\Windows\SysWow64\srclient.dll
2014-12-29 21:56:51 223752 ----a-w- C:\Windows\System32\drivers\fvevol.sys
2014-12-29 21:53:15 461312 ----a-w- C:\Windows\System32\scavengeui.dll
2014-12-29 16:51:25 -------- d--h--w- C:\$WINDOWS.~BT
2014-12-29 14:41:50 346624 ----a-w- C:\Windows\System32\WSManMigrationPlugin.dll
2014-12-29 14:41:50 310272 ----a-w- C:\Windows\System32\WsmWmiPl.dll
2014-12-29 14:41:50 266240 ----a-w- C:\Windows\System32\WSManHTTPConfig.exe
2014-12-29 14:41:50 248832 ----a-w- C:\Windows\SysWow64\WSManMigrationPlugin.dll
2014-12-29 14:41:50 214016 ----a-w- C:\Windows\SysWow64\WsmWmiPl.dll
2014-12-29 14:41:50 2020352 ----a-w- C:\Windows\System32\WsmSvc.dll
2014-12-29 14:41:50 198656 ----a-w- C:\Windows\SysWow64\WSManHTTPConfig.exe
2014-12-29 14:41:50 181248 ----a-w- C:\Windows\System32\WsmAuto.dll
2014-12-29 14:41:50 145920 ----a-w- C:\Windows\SysWow64\WsmAuto.dll
2014-12-29 14:41:50 1177088 ----a-w- C:\Windows\SysWow64\WsmSvc.dll
2014-12-29 14:36:58 81920 ----a-w- C:\Windows\SysWow64\davclnt.dll
2014-12-29 14:36:58 259584 ----a-w- C:\Windows\System32\WebClnt.dll
2014-12-29 14:36:58 205824 ----a-w- C:\Windows\SysWow64\WebClnt.dll
2014-12-29 14:36:58 140800 ----a-w- C:\Windows\System32\drivers\mrxdav.sys
2014-12-29 14:36:58 102400 ----a-w- C:\Windows\System32\davclnt.dll
2014-12-29 14:29:43 985536 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2014-12-29 14:29:43 265064 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
2014-12-29 14:29:43 144384 ----a-w- C:\Windows\System32\cdd.dll
2014-12-29 14:28:41 95744 ----a-w- C:\Windows\System32\synceng.dll
2014-12-29 14:28:41 78336 ----a-w- C:\Windows\SysWow64\synceng.dll
2014-12-29 14:25:55 267776 ----a-w- C:\Windows\System32\FXSCOVER.exe
2014-12-29 14:24:11 119296 ----a-w- C:\Windows\System32\drivers\tdx.sys
2014-12-29 14:14:25 90624 ----a-w- C:\Windows\System32\drivers\bowser.sys
2014-12-29 14:10:37 68608 ----a-w- C:\Windows\System32\taskhost.exe
2014-12-29 14:08:53 165888 ----a-w- C:\Windows\System32\charmap.exe
2014-12-29 14:08:53 155136 ----a-w- C:\Windows\SysWow64\charmap.exe
2014-12-29 14:05:10 75120 ----a-w- C:\Windows\System32\drivers\partmgr.sys
2014-12-29 14:02:05 6144 ----a-w- C:\Program Files\Internet Explorer\iecompat.dll
2014-12-29 14:02:05 6144 ----a-w- C:\Program Files (x86)\Internet Explorer\iecompat.dll
2014-12-29 13:37:33 47496 ----a-w- C:\Windows\System32\sbbd.exe
2014-12-29 11:34:46 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll
2014-12-29 11:34:46 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys
2014-12-29 11:34:46 1031680 ----a-w- C:\Windows\System32\rdpcore.dll
2014-12-29 00:17:26 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\Free Download Manager
2014-12-29 00:17:17 -------- d-----w- C:\Program Files (x86)\Free Download Manager
2014-12-28 15:05:17 -------- d-----w- C:\Program Files (x86)\UnThreat AntiVirus
2014-12-28 05:56:17 -------- d-----w- C:\Windows\Panther
2014-12-28 05:54:06 -------- d-----w- C:\Windows\System32\OEM
2014-12-28 05:45:18 -------- d--h--w- C:\$WINDOWS.~Q
2014-12-28 05:43:48 -------- d--h--w- C:\$INPLACE.~TR
2014-12-28 04:25:04 2620928 ----a-w- C:\Windows\System32\wucltux.dll
2014-12-28 04:24:59 97792 ----a-w- C:\Windows\System32\wudriver.dll
2014-12-28 04:24:59 92672 ----a-w- C:\Windows\SysWow64\wudriver.dll
2014-12-28 04:24:41 33792 ----a-w- C:\Windows\SysWow64\wuapp.exe
2014-12-28 04:24:41 179656 ----a-w- C:\Windows\SysWow64\wuwebv.dll
2014-12-28 04:24:40 36864 ----a-w- C:\Windows\System32\wuapp.exe
2014-12-28 04:24:40 198600 ----a-w- C:\Windows\System32\wuwebv.dll
2014-12-28 03:01:29 -------- d-----w- C:\Program Files\LSI SoftModem
2014-12-28 03:00:53 0 ----a-w- C:\Windows\ativpsrm.bin
2014-12-28 03:00:52 65536 ----a-w- C:\Windows\System32\spu_storage.bin
2014-12-28 03:00:47 -------- d-----w- C:\Program Files\Common Files\ATI Technologies
2014-12-28 02:59:52 -------- d-----w- C:\Windows\System32\SRSLabs
2014-12-28 02:59:08 -------- d-----w- C:\Program Files\Realtek
2014-12-28 02:58:59 -------- d-----w- C:\Windows\SysWow64\RTCOM
2014-12-28 01:41:12 -------- d-----w- C:\Users\TimandDoris\AppData\Local\AMD
2014-12-28 01:40:59 -------- d-----w- C:\Users\TimandDoris\AppData\Local\ATI
2014-12-28 01:40:16 -------- d-----w- C:\Users\TimandDoris\AppData\Local\AppEx Networks
2014-12-28 01:35:02 82600 ----a-w- C:\Windows\System32\drivers\amd_sata.sys
2014-12-28 01:35:02 42664 ----a-w- C:\Windows\System32\drivers\amd_xata.sys
2014-12-28 01:33:56 881880 ----a-w- C:\Windows\System32\drivers\Rt64win7.sys
2014-12-28 01:33:56 74456 ----a-w- C:\Windows\System32\RtNicProp64.dll
2014-12-28 01:33:56 108760 ----a-w- C:\Windows\System32\RTNUninst64.dll
2014-12-28 01:31:52 -------- d--h--w- C:\Windows\System32\WLANProfiles
2014-12-28 01:31:36 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\Intel
2014-12-28 01:31:19 -------- d-----w- C:\Users\TimandDoris\Roaming
2014-12-28 01:31:19 -------- d-----w- C:\ProgramData\Roaming
2014-12-28 01:30:52 -------- d-----w- C:\Program Files\Common Files\Intel
2014-12-28 01:30:51 -------- d-----w- C:\Program Files (x86)\Cisco
2014-12-28 01:28:22 -------- d-----w- C:\Windows\SYSTEM.SAV
2014-12-28 01:27:01 219360 ----a-w- C:\Windows\System32\drivers\appexDrv.sys
2014-12-28 01:27:01 -------- d-----w- C:\Program Files\AMD Quick Stream
2014-12-28 01:26:59 -------- d-----w- C:\Users\TimandDoris\AppData\Local\Programs
2014-12-28 01:26:58 -------- d-----w- C:\ProgramData\AMD
2014-12-28 01:26:56 -------- d-----w- C:\Program Files (x86)\AMD AVT
2014-12-28 01:26:52 -------- d-----w- C:\Program Files\AMD
2014-12-28 01:26:52 -------- d-----w- C:\Program Files (x86)\AMD
2014-12-28 01:26:46 -------- d-----w- C:\Program Files (x86)\Common Files\ATI Technologies
2014-12-28 01:25:00 -------- d-----w- C:\Program Files\ATI Technologies
2014-12-28 01:24:05 98816 ----a-w- C:\Windows\System32\OpenVideo64.dll
2014-12-28 01:24:05 63488 ----a-w- C:\Windows\System32\OpenCL.dll
2014-12-28 01:24:05 57344 ----a-w- C:\Windows\SysWow64\OpenCL.dll
2014-12-28 01:24:05 23760896 ----a-w- C:\Windows\SysWow64\amdocl.dll
2014-12-28 01:24:05 229376 ----a-w- C:\Windows\System32\clinfo.exe
2014-12-28 01:24:05 127488 ----a-w- C:\Windows\System32\coinst_13.152.dll
2014-12-28 01:24:05 1187342 ----a-w- C:\Windows\System32\amdocl_as64.exe
2014-12-28 01:24:05 1061902 ----a-w- C:\Windows\System32\amdocl_ld64.exe
2014-12-28 01:24:04 995342 ----a-w- C:\Windows\SysWow64\amdocl_as32.exe
2014-12-28 01:24:04 83456 ----a-w- C:\Windows\SysWow64\OpenVideo.dll
2014-12-28 01:24:04 798734 ----a-w- C:\Windows\SysWow64\amdocl_ld32.exe
2014-12-28 01:24:03 86528 ----a-w- C:\Windows\System32\OVDecode64.dll
2014-12-28 01:23:59 73216 ----a-w- C:\Windows\SysWow64\OVDecode.dll
2014-12-28 01:23:59 442368 ----a-w- C:\Windows\System32\atidemgy.dll
2014-12-28 01:23:58 28192256 ----a-w- C:\Windows\System32\amdocl64.dll
2014-12-28 01:23:35 -------- d-----w- C:\Program Files\ATI
2014-12-28 01:23:22 -------- d-----w- C:\Program Files (x86)\ATI Technologies
2014-12-28 01:20:38 90624 ----a-w- C:\Windows\SysWow64\amdave32.dll
2014-12-27 23:41:28 -------- d-----w- C:\DVD RW Drive
2014-12-27 19:13:26 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\PeoplePC Online
2014-12-27 19:13:26 -------- d-----w- C:\ProgramData\PeoplePC Online
2014-12-27 16:45:02 -------- d-----w- C:\Users\TimandDoris\AppData\Local\Diagnostics
2014-12-27 16:19:55 -------- d-----w- C:\Program Files (x86)\PeoplePC Accelerated
2014-12-27 16:14:49 64000 ----a-w- C:\Windows\agrsmdel.exe
2014-12-27 16:14:49 42496 ----a-w- C:\Windows\agrdel64.exe
2014-12-27 16:14:49 14848 ----a-w- C:\Windows\System32\agrsco64.dll
2014-12-27 16:11:34 -------- d-----w- C:\Windows.old
2014-12-27 15:20:06 -------- d-----w- C:\Users\TimandDoris\AppData\Local\Adobe
2014-12-27 15:15:10 -------- d-----w- C:\Users\TimandDoris\AppData\Local\ElevatedDiagnostics
2014-12-27 15:11:23 61440 ----a-w- C:\Windows\SysWow64\ppcpanel.cpl
2014-12-27 15:11:23 58144 ----a-w- C:\Windows\SysWow64\PPCOUNIN.exe
2014-12-27 15:11:23 -------- d-----w- C:\Program Files (x86)\Common Files\PeoplePC
2014-12-27 15:10:54 -------- d-----w- C:\Program Files (x86)\PeoplePC
2014-12-27 15:03:27 -------- d-----w- C:\Users\TimandDoris\AppData\Local\Hewlett-Packard
2014-12-27 15:00:11 -------- d-----w- C:\ProgramData\HP Photo Creations
2014-12-27 15:00:11 -------- d-----w- C:\Program Files (x86)\HP Photo Creations
2014-12-27 15:00:06 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\HpUpdate
2014-12-27 14:59:38 -------- d-----w- C:\Program Files (x86)\HP
2014-12-27 14:58:51 -------- d-----w- C:\Program Files\HP
2014-12-27 14:57:33 -------- d-----w- C:\Users\TimandDoris\AppData\Local\HP
2014-12-27 14:42:13 -------- d-----w- C:\Users\TimandDoris\AppData\Local\CyberLink
2014-12-27 14:39:36 -------- d-----w- C:\ProgramData\install_clap
2014-12-27 14:32:22 -------- d-----w- C:\ProgramData\{A5CCDB92-FA53-47D1-89E6-32B82D86621A}
2014-12-27 14:31:38 582144 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\DAO\DAO350.DLL
2014-12-27 14:31:38 368912 ----a-w- C:\Windows\SysWow64\VBAR332.DLL
2014-12-27 14:31:38 252176 ----a-w- C:\Windows\SysWow64\MSRD2X35.DLL
2014-12-27 14:31:38 24848 ----a-w- C:\Windows\SysWow64\MSJTER35.DLL
2014-12-27 14:31:38 123664 ----a-w- C:\Windows\SysWow64\MSJINT35.DLL
2014-12-27 14:31:38 1045776 ----a-w- C:\Windows\SysWow64\MSJET35.DLL
2014-12-27 14:24:00 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\hpqLog
2014-12-27 14:17:55 -------- d-----w- C:\ProgramData\Package Cache
2014-12-27 14:14:54 -------- d-sh--w- C:\Windows\Installer
2014-12-27 14:12:02 -------- d-----w- C:\Windows\Options
2014-12-27 13:58:21 73192 ----a-w- C:\Windows\SysWow64\unPPC.exe
2014-12-27 13:58:21 70432 ----a-w- C:\Windows\SysWow64\unPPC6000.exe
2014-12-27 13:58:21 42784 ----a-w- C:\Windows\SysWow64\ppcwebi.dll
2014-12-27 13:58:21 41592 ----a-w- C:\Windows\SysWow64\PPCClean.exe
2014-12-27 13:58:21 34136 ----a-w- C:\Windows\SysWow64\RegHero.exe
2014-12-27 13:58:21 29984 ----a-w- C:\Windows\SysWow64\PopWait.exe
2014-12-27 13:58:21 256288 ----a-w- C:\Windows\SysWow64\PPCInfo.exe
2014-12-27 13:58:20 89088 ----a-w- C:\Windows\SysWow64\ATL71.dll
2014-12-27 13:58:20 84992 ----a-w- C:\Windows\SysWow64\ATL70.dll
2014-12-27 13:58:20 499712 ----a-w- C:\Windows\SysWow64\MSVCP71.DLL
2014-12-27 13:58:20 348160 ----a-w- C:\Windows\SysWow64\MSVCR71.DLL
2014-12-27 13:58:20 1060864 ----a-w- C:\Windows\SysWow64\MFC71.DLL
2014-12-27 13:44:51 -------- d-----w- C:\Users\TimandDoris\AppData\Local\VirtualStore
2014-12-24 18:50:38 -------- d-----w- C:\AdwCleaner
.
==================== Find3M  ====================
.
.
============= FINISH:  6:28:41.85 ===============
 



#5 bonezz

bonezz
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 06 January 2015 - 08:52 AM

Attached File  attach.txt   6.42KB   0 downloads Here are the logs: DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 8.0.7601.17514
Run by TimandDoris at 6:26:55 on 2015-01-05
Microsoft Windows 7 Professional   6.1.7601.1.1252.1.1033.18.1478.425 [GMT -5:00]
.
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\atieclxx.exe
C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
C:\Program Files\LSI SoftModem\agr64svc.exe
C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
C:\Windows\system32\CISVC.EXE
C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\SearchIndexer.exe
C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
C:\Program Files\AMD Quick Stream\AMDQuickStream.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
C:\Program Files (x86)\PeoplePC\ISP8500\Browser\Bartshel.exe
C:\Program Files (x86)\PeoplePC\ISP8500\Browser\PPShared.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files (x86)\PeoplePC\ISP8500\Browser\Bartshel.exe
C:\Program Files (x86)\PeoplePC Accelerated\PeoplePC.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\SysWOW64\msiexec.exe
C:\Windows\system32\msiexec.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://home.peoplepc.com/websearch
uSearch Bar = Preserve
uProxyServer = hxxp=localhost:8080
uProxyOverride = <local>
mWinlogon: Userinit = userinit.exe
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Accelerator Plugin: {656EC4B7-072B-4698-B504-2A414C1F0037} - C:\Program Files (x86)\PeoplePC Accelerated\prpl_IePopupBlocker.dll
BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\AMD\SteadyVideo\SteadyVideo.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Free Download Manager: {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files (x86)\Free Download Manager\iefdm2.dll
BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
uRun: [AppEx Accelerator UI] C:\Program Files\AMD Quick Stream\AMDQuickStream.exe -h
uRun: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
mRun: [Bart Station] C:\Program Files (x86)\PeoplePC\ISP8500\BIN\PPCOLink.exe -STATION
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
mRun: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: SoftwareSASGeneration = dword:1
IE: Refresh Pa&ge with Full Quality - C:\Program Files (x86)\PeoplePC Accelerated\pac-page.html
IE: Refresh Pi&cture with Full Quality - C:\Program Files (x86)\PeoplePC Accelerated\pac-image.html
IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
TCP: Interfaces\{096C4026-1396-439E-BA93-C537F916CEDA} : NameServer = 207.69.188.167 207.69.188.166
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll
SSODL: WebCheck - <orphaned>
x64-BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll
x64-BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll
x64-Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
x64-Run: [UnThreat] "C:\Program Files (x86)\UnThreat AntiVirus\UnThreat.exe" -silent
x64-RunOnce: [NCPluginUpdater] "C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe" Update
x64-IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
x64-Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
x64-Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 amd_sata;amd_sata;C:\Windows\System32\drivers\amd_sata.sys [2014-12-27 82600]
R0 amd_xata;amd_xata;C:\Windows\System32\drivers\amd_xata.sys [2014-12-27 42664]
R0 aswRvrt;avast! Revert;C:\Windows\System32\drivers\aswRvrt.sys [2015-1-1 65776]
R0 aswVmm;avast! VM Monitor;C:\Windows\System32\drivers\aswVmm.sys [2015-1-1 267632]
R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswsnx.sys [2015-1-1 1050432]
R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2015-1-1 436624]
R2 AERTFilters;Andrea RT Filters Service;C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe [2014-12-27 98208]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2014-12-27 239616]
R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-8-30 344064]
R2 APXACC;AppEx Networks Accelerator LWF;C:\Windows\System32\drivers\appexDrv.sys [2014-12-27 219360]
R2 aswHwid;avast! HardwareID;C:\Windows\System32\drivers\aswHwid.sys [2015-1-1 29208]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2015-1-1 83280]
R2 aswStm;aswStm;C:\Windows\System32\drivers\aswStm.sys [2015-1-1 116728]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-1-1 50344]
R2 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service;C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [2014-12-27 77576]
R2 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service;C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [2014-12-27 298760]
R2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2013-8-29 92160]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2014-12-30 1871160]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2014-12-30 969016]
R2 RtkAudioService;Realtek Audio Service;C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE [2014-12-27 246488]
R2 ZeroConfigService;Intel® PROSet/Wireless Zero Configuration Service;C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [2013-8-2 3378416]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2014-12-30 25816]
R3 MBAMSwissArmy;MBAMSwissArmy;C:\Windows\System32\drivers\MBAMSwissArmy.sys [2014-12-30 129752]
R3 MBAMWebAccessControl;MBAMWebAccessControl;C:\Windows\System32\drivers\mwac.sys [2014-12-30 63704]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2014-12-27 881880]
R3 usbfilter;AMD USB Filter Driver;C:\Windows\System32\drivers\usbfilter.sys [2012-3-6 56448]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-7-9 104912]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-7-8 123856]
S3 amdhub30;AMD USB 3.0 Hub Driver;C:\Windows\System32\drivers\amdhub30.sys [2012-3-6 103552]
S3 amdxhc;AMD USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\amdxhc.sys [2012-3-6 220288]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2010-11-21 71168]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2013-8-2 273136]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2012-3-6 96768]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2012-3-6 213504]
S3 StorSvc;Storage Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-13 27136]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2015-1-2 1255736]
.
=============== Created Last 30 ================
.
2015-01-04 13:51:20 -------- d-----w- C:\ProgramData\PopCap Games
2015-01-04 13:51:20 -------- d-----w- C:\Program Files (x86)\PopCap Games
2015-01-04 11:52:14 1719296 ----a-w- C:\Program Files\Windows Journal\NBDoc.DLL
2015-01-04 11:52:14 1354240 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\journal.dll
2015-01-04 11:52:13 1389568 ----a-w- C:\Program Files\Windows Journal\JNWDRV.dll
2015-01-04 11:52:13 1380864 ----a-w- C:\Program Files\Windows Journal\JNTFiltr.dll
2015-01-04 11:52:12 936960 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2015-01-04 11:40:51 331776 ----a-w- C:\Windows\System32\oleacc.dll
2015-01-04 11:40:51 233472 ----a-w- C:\Windows\SysWow64\oleacc.dll
2015-01-04 11:40:42 124112 ----a-w- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2015-01-04 11:40:42 102608 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-01-04 11:31:18 1684928 ----a-w- C:\Windows\System32\drivers\ntfs.sys
2015-01-04 11:30:57 96768 ----a-w- C:\Windows\System32\fsutil.exe
2015-01-04 11:30:57 27008 ----a-w- C:\Windows\System32\drivers\amdxata.sys
2015-01-04 11:30:57 2565632 ----a-w- C:\Windows\System32\esent.dll
2015-01-04 11:30:56 74240 ----a-w- C:\Windows\SysWow64\fsutil.exe
2015-01-04 11:30:56 410496 ----a-w- C:\Windows\System32\drivers\iaStorV.sys
2015-01-04 11:30:56 1699328 ----a-w- C:\Windows\SysWow64\esent.dll
2015-01-04 11:30:55 166272 ----a-w- C:\Windows\System32\drivers\nvstor.sys
2015-01-04 11:30:55 148352 ----a-w- C:\Windows\System32\drivers\nvraid.sys
2015-01-04 11:30:55 107904 ----a-w- C:\Windows\System32\drivers\amdsata.sys
2015-01-03 18:00:48 274880 ----a-w- C:\Windows\System32\drivers\msiscsi.sys
2015-01-03 18:00:47 27584 ----a-w- C:\Windows\System32\drivers\Diskdump.sys
2015-01-03 18:00:47 190912 ----a-w- C:\Windows\System32\drivers\storport.sys
2015-01-03 18:00:46 2048 ----a-w- C:\Windows\SysWow64\iologmsg.dll
2015-01-03 18:00:43 2048 ----a-w- C:\Windows\System32\iologmsg.dll
2015-01-03 16:06:55 142336 ----a-w- C:\Windows\System32\poqexec.exe
2015-01-03 16:06:55 123904 ----a-w- C:\Windows\SysWow64\poqexec.exe
2015-01-03 15:56:37 224256 ----a-w- C:\Windows\System32\wintrust.dll
2015-01-03 15:56:37 175104 ----a-w- C:\Windows\SysWow64\wintrust.dll
2015-01-03 14:35:37 197120 ----a-w- C:\Windows\System32\credui.dll
2015-01-03 14:35:37 190464 ----a-w- C:\Windows\System32\SmartcardCredentialProvider.dll
2015-01-03 14:35:37 168960 ----a-w- C:\Windows\SysWow64\credui.dll
2015-01-03 14:35:37 152576 ----a-w- C:\Windows\SysWow64\SmartcardCredentialProvider.dll
2015-01-03 13:51:36 210944 ----a-w- C:\Windows\System32\drivers\rdpwd.sys
2015-01-03 03:35:51 87040 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys
2015-01-03 03:35:51 198656 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys
2015-01-03 03:35:50 84992 ----a-w- C:\Windows\System32\WUDFSvc.dll
2015-01-03 03:35:49 194048 ----a-w- C:\Windows\System32\WUDFPlatform.dll
2015-01-03 03:35:46 45056 ----a-w- C:\Windows\System32\WUDFCoinstaller.dll
2015-01-03 03:35:45 229888 ----a-w- C:\Windows\System32\WUDFHost.exe
2015-01-03 03:35:44 744448 ----a-w- C:\Windows\System32\WUDFx.dll
2015-01-02 22:49:56 3241984 ----a-w- C:\Windows\System32\msi.dll
2015-01-02 22:49:55 2363904 ----a-w- C:\Windows\SysWow64\msi.dll
2015-01-02 22:30:10 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2015-01-02 22:30:10 53248 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2015-01-02 22:30:10 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys
2015-01-02 22:30:09 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys
2015-01-02 22:30:09 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys
2015-01-02 22:30:09 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys
2015-01-02 11:26:26 327168 ----a-w- C:\Windows\System32\mswsock.dll
2015-01-02 11:26:25 231424 ----a-w- C:\Windows\SysWow64\mswsock.dll
2015-01-02 10:58:00 404480 ----a-w- C:\Windows\System32\gdi32.dll
2015-01-02 10:58:00 311808 ----a-w- C:\Windows\SysWow64\gdi32.dll
2015-01-02 10:41:57 1941504 ----a-w- C:\Windows\System32\authui.dll
2015-01-02 10:41:56 70144 ----a-w- C:\Windows\System32\appinfo.dll
2015-01-02 10:41:56 504320 ----a-w- C:\Windows\System32\msihnd.dll
2015-01-02 10:41:56 1805824 ----a-w- C:\Windows\SysWow64\authui.dll
2015-01-02 10:41:56 112064 ----a-w- C:\Windows\System32\consent.exe
2015-01-02 10:41:55 337408 ----a-w- C:\Windows\SysWow64\msihnd.dll
2015-01-02 10:21:40 75776 ----a-w- C:\Windows\SysWow64\psisrndr.ax
2015-01-02 10:21:40 613888 ----a-w- C:\Windows\System32\psisdecd.dll
2015-01-02 10:21:39 465408 ----a-w- C:\Windows\SysWow64\psisdecd.dll
2015-01-02 10:21:38 108032 ----a-w- C:\Windows\System32\psisrndr.ax
2015-01-02 08:36:04 -------- d-----w- C:\Windows\SysWow64\Wat
2015-01-02 08:36:04 -------- d-----w- C:\Windows\System32\Wat
2015-01-02 08:11:26 2560 ----a-w- C:\Windows\System32\drivers\en-US\wdf01000.sys.mui
2015-01-02 02:38:52 503296 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\tiptsf.dll
2015-01-02 02:38:52 449024 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\tabskb.dll
2015-01-02 02:38:52 1247232 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\tipskins.dll
2015-01-02 02:38:51 646144 ----a-w- C:\Windows\SysWow64\osk.exe
2015-01-02 02:38:51 348672 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\tiptsf.dll
2015-01-02 02:38:51 224768 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe
2015-01-02 02:38:50 692736 ----a-w- C:\Windows\System32\osk.exe
2015-01-02 02:38:50 544768 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\TipRes.dll
2015-01-02 02:38:50 110592 ----a-w- C:\Program Files\Common Files\Microsoft Shared\ink\TipBand.dll
2015-01-02 02:38:50 10240 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\ink\TabTip32.exe
2015-01-02 02:26:15 571904 ----a-w- C:\Program Files\Windows Defender\MpClient.dll
2015-01-02 02:26:15 392704 ----a-w- C:\Program Files (x86)\Windows Defender\MpClient.dll
2015-01-02 02:26:15 314880 ----a-w- C:\Program Files\Windows Defender\MpCommu.dll
2015-01-02 02:26:15 1011712 ----a-w- C:\Program Files\Windows Defender\MpSvc.dll
2015-01-02 02:26:14 9216 ----a-w- C:\Program Files (x86)\Windows Defender\MpAsDesc.dll
2015-01-02 02:26:14 54784 ----a-w- C:\Program Files (x86)\Windows Defender\MpOAV.dll
2015-01-02 02:26:14 4608 ----a-w- C:\Program Files (x86)\Windows Defender\MsMpLics.dll
2015-01-02 01:13:35 1572864 ----a-w- C:\Windows\System32\quartz.dll
2015-01-02 01:13:34 1328128 ----a-w- C:\Windows\SysWow64\quartz.dll
2015-01-02 00:45:07 371712 ----a-w- C:\Windows\System32\qdvd.dll
2015-01-02 00:45:06 519680 ----a-w- C:\Windows\SysWow64\qdvd.dll
2015-01-02 00:44:54 878080 ----a-w- C:\Windows\System32\IMJP10K.DLL
2015-01-02 00:44:54 701440 ----a-w- C:\Windows\SysWow64\IMJP10K.DLL
2015-01-01 22:40:41 288768 ----a-w- C:\Windows\System32\drivers\mrxsmb10.sys
2015-01-01 22:40:41 158208 ----a-w- C:\Windows\System32\drivers\mrxsmb.sys
2015-01-01 22:40:41 128000 ----a-w- C:\Windows\System32\drivers\mrxsmb20.sys
2015-01-01 22:22:21 156824 ----a-w- C:\Windows\SysWow64\mscorier.dll
2015-01-01 22:22:21 156312 ----a-w- C:\Windows\System32\mscorier.dll
2015-01-01 22:22:21 1131664 ----a-w- C:\Windows\SysWow64\dfshim.dll
2015-01-01 22:22:20 81560 ----a-w- C:\Windows\SysWow64\mscories.dll
2015-01-01 22:22:20 73880 ----a-w- C:\Windows\System32\mscories.dll
2015-01-01 22:22:20 1943696 ----a-w- C:\Windows\System32\dfshim.dll
2015-01-01 22:18:57 1474048 ----a-w- C:\Windows\System32\crypt32.dll
2015-01-01 22:18:57 1168384 ----a-w- C:\Windows\SysWow64\crypt32.dll
2015-01-01 22:18:56 184320 ----a-w- C:\Windows\System32\cryptsvc.dll
2015-01-01 22:18:56 140288 ----a-w- C:\Windows\SysWow64\cryptsvc.dll
2015-01-01 22:18:56 139776 ----a-w- C:\Windows\System32\cryptnet.dll
2015-01-01 22:18:56 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll
2015-01-01 22:17:23 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2015-01-01 22:17:22 376768 ----a-w- C:\Windows\System32\drivers\netio.sys
2015-01-01 22:17:22 288192 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
2015-01-01 22:02:50 2002432 ----a-w- C:\Windows\System32\msxml6.dll
2015-01-01 22:02:49 2048 ----a-w- C:\Windows\SysWow64\msxml6r.dll
2015-01-01 22:02:49 2048 ----a-w- C:\Windows\System32\msxml6r.dll
2015-01-01 22:02:49 1389056 ----a-w- C:\Windows\SysWow64\msxml6.dll
2015-01-01 21:20:37 1190912 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2015-01-01 21:20:36 1011200 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2015-01-01 21:20:08 1395712 ----a-w- C:\Windows\System32\mfc42.dll
2015-01-01 21:20:08 1359872 ----a-w- C:\Windows\System32\mfc42u.dll
2015-01-01 21:20:07 1164288 ----a-w- C:\Windows\SysWow64\mfc42u.dll
2015-01-01 21:20:07 1137664 ----a-w- C:\Windows\SysWow64\mfc42.dll
2015-01-01 21:13:29 1882624 ----a-w- C:\Windows\System32\msxml3.dll
2015-01-01 21:13:28 2048 ----a-w- C:\Windows\SysWow64\msxml3r.dll
2015-01-01 21:13:28 2048 ----a-w- C:\Windows\System32\msxml3r.dll
2015-01-01 21:13:28 1237504 ----a-w- C:\Windows\SysWow64\msxml3.dll
2015-01-01 21:04:33 1888768 ----a-w- C:\Windows\System32\WMVDECOD.DLL
2015-01-01 21:04:32 1620992 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
2015-01-01 21:01:56 610304 ----a-w- C:\Windows\System32\vbscript.dll
2015-01-01 21:01:56 428544 ----a-w- C:\Windows\SysWow64\vbscript.dll
2015-01-01 21:01:19 9728 ----a-w- C:\Windows\System32\Wdfres.dll
2015-01-01 21:01:19 785624 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys
2015-01-01 21:01:19 54376 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys
2015-01-01 20:58:27 216576 ----a-w- C:\Windows\System32\ncsi.dll
2015-01-01 20:58:26 569344 ----a-w- C:\Windows\System32\iphlpsvc.dll
2015-01-01 20:58:26 246272 ----a-w- C:\Windows\System32\netcorehc.dll
2015-01-01 20:58:26 156672 ----a-w- C:\Windows\SysWow64\ncsi.dll
2015-01-01 20:58:25 52224 ----a-w- C:\Windows\SysWow64\nlaapi.dll
2015-01-01 20:58:25 303104 ----a-w- C:\Windows\System32\nlasvc.dll
2015-01-01 20:58:25 175104 ----a-w- C:\Windows\SysWow64\netcorehc.dll
2015-01-01 20:58:24 70656 ----a-w- C:\Windows\System32\nlaapi.dll
2015-01-01 20:58:24 45568 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys
2015-01-01 20:58:24 18944 ----a-w- C:\Windows\SysWow64\netevent.dll
2015-01-01 20:58:23 18944 ----a-w- C:\Windows\System32\netevent.dll
2015-01-01 20:40:59 245760 ----a-w- C:\Windows\System32\OxpsConverter.exe
2015-01-01 16:29:10 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\AVAST Software
2015-01-01 16:28:23 93568 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2015-01-01 16:28:23 83280 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2015-01-01 16:28:23 65776 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
2015-01-01 16:28:23 29208 ----a-w- C:\Windows\System32\drivers\aswHwid.sys
2015-01-01 16:28:23 267632 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
2015-01-01 16:28:23 116728 ----a-w- C:\Windows\System32\drivers\aswStm.sys
2015-01-01 16:28:22 1050432 ----a-w- C:\Windows\System32\drivers\aswsnx.sys
2015-01-01 16:28:09 43152 ----a-w- C:\Windows\avastSS.scr
2015-01-01 16:26:50 -------- d-----w- C:\Program Files\AVAST Software
2015-01-01 16:23:20 -------- d-----w- C:\ProgramData\AVAST Software
2015-01-01 14:54:26 680960 ----a-w- C:\Windows\System32\audiosrv.dll
2015-01-01 14:54:26 500224 ----a-w- C:\Windows\System32\AUDIOKSE.dll
2015-01-01 14:54:26 442880 ----a-w- C:\Windows\SysWow64\AUDIOKSE.dll
2015-01-01 14:54:26 440832 ----a-w- C:\Windows\System32\AudioEng.dll
2015-01-01 14:54:26 374784 ----a-w- C:\Windows\SysWow64\AudioEng.dll
2015-01-01 14:54:26 296448 ----a-w- C:\Windows\System32\AudioSes.dll
2015-01-01 14:54:26 284672 ----a-w- C:\Windows\System32\EncDump.dll
2015-01-01 14:54:26 195584 ----a-w- C:\Windows\SysWow64\AudioSes.dll
2015-01-01 14:44:02 424448 ----a-w- C:\Windows\System32\rastls.dll
2015-01-01 14:44:02 372736 ----a-w- C:\Windows\SysWow64\rastls.dll
2015-01-01 14:43:47 751104 ----a-w- C:\Windows\System32\win32spl.dll
2015-01-01 14:43:47 492544 ----a-w- C:\Windows\SysWow64\win32spl.dll
2015-01-01 14:40:15 64512 ----a-w- C:\Windows\SysWow64\devobj.dll
2015-01-01 14:40:15 44544 ----a-w- C:\Windows\SysWow64\devrtl.dll
2015-01-01 14:40:15 404480 ----a-w- C:\Windows\System32\umpnpmgr.dll
2015-01-01 14:40:15 252928 ----a-w- C:\Windows\SysWow64\drvinst.exe
2015-01-01 14:40:15 145920 ----a-w- C:\Windows\SysWow64\cfgmgr32.dll
2015-01-01 14:08:10 690688 ----a-w- C:\Windows\SysWow64\msvcrt.dll
2015-01-01 14:08:10 634880 ----a-w- C:\Windows\System32\msvcrt.dll
2015-01-01 13:50:58 1545728 ----a-w- C:\Windows\System32\DWrite.dll
2015-01-01 13:50:57 1143296 ----a-w- C:\Windows\System32\FntCache.dll
2015-01-01 13:50:57 1077760 ----a-w- C:\Windows\SysWow64\DWrite.dll
2015-01-01 13:41:49 861696 ----a-w- C:\Windows\System32\oleaut32.dll
2015-01-01 13:41:48 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll
2014-12-31 18:39:22 509952 ----a-w- C:\Windows\System32\ntshrui.dll
2014-12-31 18:39:22 442880 ----a-w- C:\Windows\SysWow64\ntshrui.dll
2014-12-31 18:22:21 793600 ----a-w- C:\Windows\SysWow64\TSWorkspace.dll
2014-12-31 18:22:21 1031168 ----a-w- C:\Windows\System32\TSWorkspace.dll
2014-12-31 18:18:27 30720 ----a-w- C:\Windows\System32\cryptdlg.dll
2014-12-31 18:18:27 24576 ----a-w- C:\Windows\SysWow64\cryptdlg.dll
2014-12-31 18:13:33 723456 ----a-w- C:\Windows\System32\EncDec.dll
2014-12-31 18:13:33 534528 ----a-w- C:\Windows\SysWow64\EncDec.dll
2014-12-31 18:09:50 950128 ----a-w- C:\Windows\System32\drivers\ndis.sys
2014-12-31 18:09:50 41472 ----a-w- C:\Windows\System32\drivers\RNDISMP.sys
2014-12-31 17:58:47 77824 ----a-w- C:\Windows\System32\packager.dll
2014-12-31 17:58:46 67584 ----a-w- C:\Windows\SysWow64\packager.dll
2014-12-31 17:56:20 59392 ----a-w- C:\Windows\System32\browcli.dll
2014-12-31 17:56:20 41984 ----a-w- C:\Windows\SysWow64\browcli.dll
2014-12-31 17:56:20 136704 ----a-w- C:\Windows\System32\browser.dll
2014-12-31 17:52:57 155584 ----a-w- C:\Windows\System32\drivers\ataport.sys
2014-12-31 17:50:41 48640 ----a-w- C:\Windows\System32\wwanprotdim.dll
2014-12-31 17:50:41 228864 ----a-w- C:\Windows\System32\wwansvc.dll
2014-12-31 17:48:47 230400 ----a-w- C:\Windows\System32\drivers\portcls.sys
2014-12-31 17:48:47 116736 ----a-w- C:\Windows\System32\drivers\drmk.sys
2014-12-31 16:57:45 19968 ----a-w- C:\Windows\System32\drivers\usb8023.sys
2014-12-31 16:57:16 9216 ----a-w- C:\Windows\System32\rdrmemptylst.exe
2014-12-31 16:57:16 77312 ----a-w- C:\Windows\System32\rdpwsx.dll
2014-12-31 16:57:16 149504 ----a-w- C:\Windows\System32\rdpcorekmts.dll
2014-12-31 16:56:44 497152 ----a-w- C:\Windows\System32\drivers\afd.sys
2014-12-31 16:48:00 209920 ----a-w- C:\Windows\System32\profsvc.dll
2014-12-31 16:46:14 30208 ----a-w- C:\Windows\System32\dnscacheugc.exe
2014-12-31 16:46:14 28672 ----a-w- C:\Windows\SysWow64\dnscacheugc.exe
2014-12-31 16:46:14 183296 ----a-w- C:\Windows\System32\dnsrslvr.dll
2014-12-31 16:42:39 478208 ----a-w- C:\Windows\System32\dpnet.dll
2014-12-31 16:42:39 376832 ----a-w- C:\Windows\SysWow64\dpnet.dll
2014-12-31 15:13:59 515584 ----a-w- C:\Windows\System32\timedate.cpl
2014-12-31 15:13:59 478720 ----a-w- C:\Windows\SysWow64\timedate.cpl
2014-12-31 14:43:10 100864 ----a-w- C:\Windows\System32\drivers\usbcir.sys
2014-12-31 14:35:55 76800 ----a-w- C:\Windows\System32\drivers\hidclass.sys
2014-12-31 14:35:55 32896 ----a-w- C:\Windows\System32\drivers\hidparse.sys
2014-12-31 13:12:27 886784 ----a-w- C:\Program Files\Common Files\System\wab32.dll
2014-12-31 13:12:27 708608 ----a-w- C:\Program Files (x86)\Common Files\System\wab32.dll
2014-12-31 11:28:02 801280 ----a-w- C:\Windows\System32\usp10.dll
2014-12-31 11:28:02 626688 ----a-w- C:\Windows\SysWow64\usp10.dll
2014-12-31 10:55:12 484864 ----a-w- C:\Windows\System32\wer.dll
2014-12-31 10:55:12 381440 ----a-w- C:\Windows\SysWow64\wer.dll
2014-12-31 10:54:19 81408 ----a-w- C:\Windows\System32\imagehlp.dll
2014-12-31 10:54:19 5120 ----a-w- C:\Windows\SysWow64\wmi.dll
2014-12-31 10:54:19 5120 ----a-w- C:\Windows\System32\wmi.dll
2014-12-31 10:54:19 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys
2014-12-31 10:54:19 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll
2014-12-30 17:42:36 70656 ----a-w- C:\Windows\SysWow64\fontsub.dll
2014-12-30 17:42:36 46080 ----a-w- C:\Windows\System32\atmlib.dll
2014-12-30 17:42:36 41472 ----a-w- C:\Windows\System32\lpk.dll
2014-12-30 17:42:36 368128 ----a-w- C:\Windows\System32\atmfd.dll
2014-12-30 17:42:36 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2014-12-30 17:42:36 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll
2014-12-30 17:42:36 25600 ----a-w- C:\Windows\SysWow64\lpk.dll
2014-12-30 17:42:36 14336 ----a-w- C:\Windows\System32\dciman32.dll
2014-12-30 17:42:36 10240 ----a-w- C:\Windows\SysWow64\dciman32.dll
2014-12-30 17:42:36 100864 ----a-w- C:\Windows\System32\fontsub.dll
2014-12-30 15:59:57 31232 ----a-w- C:\Windows\SysWow64\prevhost.exe
2014-12-30 15:59:57 31232 ----a-w- C:\Windows\System32\prevhost.exe
2014-12-30 15:59:21 976896 ----a-w- C:\Windows\System32\inetcomm.dll
2014-12-30 15:59:21 741376 ----a-w- C:\Windows\SysWow64\inetcomm.dll
2014-12-30 14:49:28 129752 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys
2014-12-30 14:48:43 93400 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys
2014-12-30 14:48:43 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys
2014-12-30 14:48:43 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys
2014-12-30 14:48:43 -------- d-----w- C:\ProgramData\Malwarebytes
2014-12-30 14:48:43 -------- d-----w- C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-12-30 11:37:57 202752 ----a-w- C:\Windows\System32\scrrun.dll
2014-12-30 11:37:57 168960 ----a-w- C:\Windows\System32\wscript.exe
2014-12-30 11:37:57 163840 ----a-w- C:\Windows\SysWow64\scrrun.dll
2014-12-30 11:37:57 156160 ----a-w- C:\Windows\System32\cscript.exe
2014-12-30 11:37:57 150016 ----a-w- C:\Windows\System32\wshom.ocx
2014-12-30 11:37:57 141824 ----a-w- C:\Windows\SysWow64\wscript.exe
2014-12-30 11:37:57 121856 ----a-w- C:\Windows\SysWow64\wshom.ocx
2014-12-30 11:37:56 126976 ----a-w- C:\Windows\SysWow64\cscript.exe
2014-12-30 11:29:57 956928 ----a-w- C:\Windows\System32\localspl.dll
2014-12-30 11:01:38 859648 ----a-w- C:\Windows\System32\IKEEXT.DLL
2014-12-30 11:01:38 830464 ----a-w- C:\Windows\System32\nshwfp.dll
2014-12-30 11:01:38 656896 ----a-w- C:\Windows\SysWow64\nshwfp.dll
2014-12-30 11:01:38 324096 ----a-w- C:\Windows\System32\FWPUCLNT.DLL
2014-12-30 11:01:38 216576 ----a-w- C:\Windows\SysWow64\FWPUCLNT.DLL
2014-12-29 22:15:54 605552 ----a-w- C:\Windows\System32\winload.exe
2014-12-29 22:15:54 566208 ----a-w- C:\Windows\System32\winresume.efi
2014-12-29 22:15:54 518672 ----a-w- C:\Windows\System32\winresume.exe
2014-12-29 22:15:53 642944 ----a-w- C:\Windows\System32\winload.efi
2014-12-29 22:15:53 20352 ----a-w- C:\Windows\System32\kdusb.dll
2014-12-29 22:15:53 19328 ----a-w- C:\Windows\System32\kd1394.dll
2014-12-29 22:15:53 17792 ----a-w- C:\Windows\System32\kdcom.dll
2014-12-29 22:14:01 3198976 ----a-w- C:\Windows\System32\win32k.sys
2014-12-29 22:10:12 467456 ----a-w- C:\Windows\System32\drivers\srv.sys
2014-12-29 22:10:12 410112 ----a-w- C:\Windows\System32\drivers\srv2.sys
2014-12-29 22:10:12 168448 ----a-w- C:\Windows\System32\drivers\srvnet.sys
2014-12-29 22:09:34 624128 ----a-w- C:\Windows\System32\qedit.dll
2014-12-29 22:09:34 509440 ----a-w- C:\Windows\SysWow64\qedit.dll
2014-12-29 22:06:25 1216000 ----a-w- C:\Windows\System32\rpcrt4.dll
2014-12-29 22:06:24 664064 ----a-w- C:\Windows\SysWow64\rpcrt4.dll
2014-12-29 22:02:27 503808 ----a-w- C:\Windows\System32\srcore.dll
2014-12-29 22:02:27 43008 ----a-w- C:\Windows\SysWow64\srclient.dll
2014-12-29 21:56:51 223752 ----a-w- C:\Windows\System32\drivers\fvevol.sys
2014-12-29 21:53:15 461312 ----a-w- C:\Windows\System32\scavengeui.dll
2014-12-29 16:51:25 -------- d--h--w- C:\$WINDOWS.~BT
2014-12-29 14:41:50 346624 ----a-w- C:\Windows\System32\WSManMigrationPlugin.dll
2014-12-29 14:41:50 310272 ----a-w- C:\Windows\System32\WsmWmiPl.dll
2014-12-29 14:41:50 266240 ----a-w- C:\Windows\System32\WSManHTTPConfig.exe
2014-12-29 14:41:50 248832 ----a-w- C:\Windows\SysWow64\WSManMigrationPlugin.dll
2014-12-29 14:41:50 214016 ----a-w- C:\Windows\SysWow64\WsmWmiPl.dll
2014-12-29 14:41:50 2020352 ----a-w- C:\Windows\System32\WsmSvc.dll
2014-12-29 14:41:50 198656 ----a-w- C:\Windows\SysWow64\WSManHTTPConfig.exe
2014-12-29 14:41:50 181248 ----a-w- C:\Windows\System32\WsmAuto.dll
2014-12-29 14:41:50 145920 ----a-w- C:\Windows\SysWow64\WsmAuto.dll
2014-12-29 14:41:50 1177088 ----a-w- C:\Windows\SysWow64\WsmSvc.dll
2014-12-29 14:36:58 81920 ----a-w- C:\Windows\SysWow64\davclnt.dll
2014-12-29 14:36:58 259584 ----a-w- C:\Windows\System32\WebClnt.dll
2014-12-29 14:36:58 205824 ----a-w- C:\Windows\SysWow64\WebClnt.dll
2014-12-29 14:36:58 140800 ----a-w- C:\Windows\System32\drivers\mrxdav.sys
2014-12-29 14:36:58 102400 ----a-w- C:\Windows\System32\davclnt.dll
2014-12-29 14:29:43 985536 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
2014-12-29 14:29:43 265064 ----a-w- C:\Windows\System32\drivers\dxgmms1.sys
2014-12-29 14:29:43 144384 ----a-w- C:\Windows\System32\cdd.dll
2014-12-29 14:28:41 95744 ----a-w- C:\Windows\System32\synceng.dll
2014-12-29 14:28:41 78336 ----a-w- C:\Windows\SysWow64\synceng.dll
2014-12-29 14:25:55 267776 ----a-w- C:\Windows\System32\FXSCOVER.exe
2014-12-29 14:24:11 119296 ----a-w- C:\Windows\System32\drivers\tdx.sys
2014-12-29 14:14:25 90624 ----a-w- C:\Windows\System32\drivers\bowser.sys
2014-12-29 14:10:37 68608 ----a-w- C:\Windows\System32\taskhost.exe
2014-12-29 14:08:53 165888 ----a-w- C:\Windows\System32\charmap.exe
2014-12-29 14:08:53 155136 ----a-w- C:\Windows\SysWow64\charmap.exe
2014-12-29 14:05:10 75120 ----a-w- C:\Windows\System32\drivers\partmgr.sys
2014-12-29 14:02:05 6144 ----a-w- C:\Program Files\Internet Explorer\iecompat.dll
2014-12-29 14:02:05 6144 ----a-w- C:\Program Files (x86)\Internet Explorer\iecompat.dll
2014-12-29 13:37:33 47496 ----a-w- C:\Windows\System32\sbbd.exe
2014-12-29 11:34:46 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll
2014-12-29 11:34:46 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys
2014-12-29 11:34:46 1031680 ----a-w- C:\Windows\System32\rdpcore.dll
2014-12-29 00:17:26 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\Free Download Manager
2014-12-29 00:17:17 -------- d-----w- C:\Program Files (x86)\Free Download Manager
2014-12-28 15:05:17 -------- d-----w- C:\Program Files (x86)\UnThreat AntiVirus
2014-12-28 05:56:17 -------- d-----w- C:\Windows\Panther
2014-12-28 05:54:06 -------- d-----w- C:\Windows\System32\OEM
2014-12-28 05:45:18 -------- d--h--w- C:\$WINDOWS.~Q
2014-12-28 05:43:48 -------- d--h--w- C:\$INPLACE.~TR
2014-12-28 04:25:04 2620928 ----a-w- C:\Windows\System32\wucltux.dll
2014-12-28 04:24:59 97792 ----a-w- C:\Windows\System32\wudriver.dll
2014-12-28 04:24:59 92672 ----a-w- C:\Windows\SysWow64\wudriver.dll
2014-12-28 04:24:41 33792 ----a-w- C:\Windows\SysWow64\wuapp.exe
2014-12-28 04:24:41 179656 ----a-w- C:\Windows\SysWow64\wuwebv.dll
2014-12-28 04:24:40 36864 ----a-w- C:\Windows\System32\wuapp.exe
2014-12-28 04:24:40 198600 ----a-w- C:\Windows\System32\wuwebv.dll
2014-12-28 03:01:29 -------- d-----w- C:\Program Files\LSI SoftModem
2014-12-28 03:00:53 0 ----a-w- C:\Windows\ativpsrm.bin
2014-12-28 03:00:52 65536 ----a-w- C:\Windows\System32\spu_storage.bin
2014-12-28 03:00:47 -------- d-----w- C:\Program Files\Common Files\ATI Technologies
2014-12-28 02:59:52 -------- d-----w- C:\Windows\System32\SRSLabs
2014-12-28 02:59:08 -------- d-----w- C:\Program Files\Realtek
2014-12-28 02:58:59 -------- d-----w- C:\Windows\SysWow64\RTCOM
2014-12-28 01:41:12 -------- d-----w- C:\Users\TimandDoris\AppData\Local\AMD
2014-12-28 01:40:59 -------- d-----w- C:\Users\TimandDoris\AppData\Local\ATI
2014-12-28 01:40:16 -------- d-----w- C:\Users\TimandDoris\AppData\Local\AppEx Networks
2014-12-28 01:35:02 82600 ----a-w- C:\Windows\System32\drivers\amd_sata.sys
2014-12-28 01:35:02 42664 ----a-w- C:\Windows\System32\drivers\amd_xata.sys
2014-12-28 01:33:56 881880 ----a-w- C:\Windows\System32\drivers\Rt64win7.sys
2014-12-28 01:33:56 74456 ----a-w- C:\Windows\System32\RtNicProp64.dll
2014-12-28 01:33:56 108760 ----a-w- C:\Windows\System32\RTNUninst64.dll
2014-12-28 01:31:52 -------- d--h--w- C:\Windows\System32\WLANProfiles
2014-12-28 01:31:36 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\Intel
2014-12-28 01:31:19 -------- d-----w- C:\Users\TimandDoris\Roaming
2014-12-28 01:31:19 -------- d-----w- C:\ProgramData\Roaming
2014-12-28 01:30:52 -------- d-----w- C:\Program Files\Common Files\Intel
2014-12-28 01:30:51 -------- d-----w- C:\Program Files (x86)\Cisco
2014-12-28 01:28:22 -------- d-----w- C:\Windows\SYSTEM.SAV
2014-12-28 01:27:01 219360 ----a-w- C:\Windows\System32\drivers\appexDrv.sys
2014-12-28 01:27:01 -------- d-----w- C:\Program Files\AMD Quick Stream
2014-12-28 01:26:59 -------- d-----w- C:\Users\TimandDoris\AppData\Local\Programs
2014-12-28 01:26:58 -------- d-----w- C:\ProgramData\AMD
2014-12-28 01:26:56 -------- d-----w- C:\Program Files (x86)\AMD AVT
2014-12-28 01:26:52 -------- d-----w- C:\Program Files\AMD
2014-12-28 01:26:52 -------- d-----w- C:\Program Files (x86)\AMD
2014-12-28 01:26:46 -------- d-----w- C:\Program Files (x86)\Common Files\ATI Technologies
2014-12-28 01:25:00 -------- d-----w- C:\Program Files\ATI Technologies
2014-12-28 01:24:05 98816 ----a-w- C:\Windows\System32\OpenVideo64.dll
2014-12-28 01:24:05 63488 ----a-w- C:\Windows\System32\OpenCL.dll
2014-12-28 01:24:05 57344 ----a-w- C:\Windows\SysWow64\OpenCL.dll
2014-12-28 01:24:05 23760896 ----a-w- C:\Windows\SysWow64\amdocl.dll
2014-12-28 01:24:05 229376 ----a-w- C:\Windows\System32\clinfo.exe
2014-12-28 01:24:05 127488 ----a-w- C:\Windows\System32\coinst_13.152.dll
2014-12-28 01:24:05 1187342 ----a-w- C:\Windows\System32\amdocl_as64.exe
2014-12-28 01:24:05 1061902 ----a-w- C:\Windows\System32\amdocl_ld64.exe
2014-12-28 01:24:04 995342 ----a-w- C:\Windows\SysWow64\amdocl_as32.exe
2014-12-28 01:24:04 83456 ----a-w- C:\Windows\SysWow64\OpenVideo.dll
2014-12-28 01:24:04 798734 ----a-w- C:\Windows\SysWow64\amdocl_ld32.exe
2014-12-28 01:24:03 86528 ----a-w- C:\Windows\System32\OVDecode64.dll
2014-12-28 01:23:59 73216 ----a-w- C:\Windows\SysWow64\OVDecode.dll
2014-12-28 01:23:59 442368 ----a-w- C:\Windows\System32\atidemgy.dll
2014-12-28 01:23:58 28192256 ----a-w- C:\Windows\System32\amdocl64.dll
2014-12-28 01:23:35 -------- d-----w- C:\Program Files\ATI
2014-12-28 01:23:22 -------- d-----w- C:\Program Files (x86)\ATI Technologies
2014-12-28 01:20:38 90624 ----a-w- C:\Windows\SysWow64\amdave32.dll
2014-12-27 23:41:28 -------- d-----w- C:\DVD RW Drive
2014-12-27 19:13:26 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\PeoplePC Online
2014-12-27 19:13:26 -------- d-----w- C:\ProgramData\PeoplePC Online
2014-12-27 16:45:02 -------- d-----w- C:\Users\TimandDoris\AppData\Local\Diagnostics
2014-12-27 16:19:55 -------- d-----w- C:\Program Files (x86)\PeoplePC Accelerated
2014-12-27 16:14:49 64000 ----a-w- C:\Windows\agrsmdel.exe
2014-12-27 16:14:49 42496 ----a-w- C:\Windows\agrdel64.exe
2014-12-27 16:14:49 14848 ----a-w- C:\Windows\System32\agrsco64.dll
2014-12-27 16:11:34 -------- d-----w- C:\Windows.old
2014-12-27 15:20:06 -------- d-----w- C:\Users\TimandDoris\AppData\Local\Adobe
2014-12-27 15:15:10 -------- d-----w- C:\Users\TimandDoris\AppData\Local\ElevatedDiagnostics
2014-12-27 15:11:23 61440 ----a-w- C:\Windows\SysWow64\ppcpanel.cpl
2014-12-27 15:11:23 58144 ----a-w- C:\Windows\SysWow64\PPCOUNIN.exe
2014-12-27 15:11:23 -------- d-----w- C:\Program Files (x86)\Common Files\PeoplePC
2014-12-27 15:10:54 -------- d-----w- C:\Program Files (x86)\PeoplePC
2014-12-27 15:03:27 -------- d-----w- C:\Users\TimandDoris\AppData\Local\Hewlett-Packard
2014-12-27 15:00:11 -------- d-----w- C:\ProgramData\HP Photo Creations
2014-12-27 15:00:11 -------- d-----w- C:\Program Files (x86)\HP Photo Creations
2014-12-27 15:00:06 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\HpUpdate
2014-12-27 14:59:38 -------- d-----w- C:\Program Files (x86)\HP
2014-12-27 14:58:51 -------- d-----w- C:\Program Files\HP
2014-12-27 14:57:33 -------- d-----w- C:\Users\TimandDoris\AppData\Local\HP
2014-12-27 14:42:13 -------- d-----w- C:\Users\TimandDoris\AppData\Local\CyberLink
2014-12-27 14:39:36 -------- d-----w- C:\ProgramData\install_clap
2014-12-27 14:32:22 -------- d-----w- C:\ProgramData\{A5CCDB92-FA53-47D1-89E6-32B82D86621A}
2014-12-27 14:31:38 582144 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\DAO\DAO350.DLL
2014-12-27 14:31:38 368912 ----a-w- C:\Windows\SysWow64\VBAR332.DLL
2014-12-27 14:31:38 252176 ----a-w- C:\Windows\SysWow64\MSRD2X35.DLL
2014-12-27 14:31:38 24848 ----a-w- C:\Windows\SysWow64\MSJTER35.DLL
2014-12-27 14:31:38 123664 ----a-w- C:\Windows\SysWow64\MSJINT35.DLL
2014-12-27 14:31:38 1045776 ----a-w- C:\Windows\SysWow64\MSJET35.DLL
2014-12-27 14:24:00 -------- d-----w- C:\Users\TimandDoris\AppData\Roaming\hpqLog
2014-12-27 14:17:55 -------- d-----w- C:\ProgramData\Package Cache
2014-12-27 14:14:54 -------- d-sh--w- C:\Windows\Installer
2014-12-27 14:12:02 -------- d-----w- C:\Windows\Options
2014-12-27 13:58:21 73192 ----a-w- C:\Windows\SysWow64\unPPC.exe
2014-12-27 13:58:21 70432 ----a-w- C:\Windows\SysWow64\unPPC6000.exe
2014-12-27 13:58:21 42784 ----a-w- C:\Windows\SysWow64\ppcwebi.dll
2014-12-27 13:58:21 41592 ----a-w- C:\Windows\SysWow64\PPCClean.exe
2014-12-27 13:58:21 34136 ----a-w- C:\Windows\SysWow64\RegHero.exe
2014-12-27 13:58:21 29984 ----a-w- C:\Windows\SysWow64\PopWait.exe
2014-12-27 13:58:21 256288 ----a-w- C:\Windows\SysWow64\PPCInfo.exe
2014-12-27 13:58:20 89088 ----a-w- C:\Windows\SysWow64\ATL71.dll
2014-12-27 13:58:20 84992 ----a-w- C:\Windows\SysWow64\ATL70.dll
2014-12-27 13:58:20 499712 ----a-w- C:\Windows\SysWow64\MSVCP71.DLL
2014-12-27 13:58:20 348160 ----a-w- C:\Windows\SysWow64\MSVCR71.DLL
2014-12-27 13:58:20 1060864 ----a-w- C:\Windows\SysWow64\MFC71.DLL
2014-12-27 13:44:51 -------- d-----w- C:\Users\TimandDoris\AppData\Local\VirtualStore
2014-12-24 18:50:38 -------- d-----w- C:\AdwCleaner
.
==================== Find3M  ====================
.
.
============= FINISH:  6:28:41.85 ===============
 



#6 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:50 AM

Posted 06 January 2015 - 09:42 AM

Hi there,
my name is Marius and I will assist you with your malware related problems.

Before we move on, please read the following points carefully.

  • First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while following my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or add/remove software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
  • My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.

  • Important: To help me reviewing your logs, please post them in code boxes. You can create them by clicking on the <>-symbol on top of the reply window.

 
 
 
 
HijackThis is not the preferred initial scanning tool in this forum. With today's malware, a more comprehensive set of logs is required to determine the presence of malware.
 
 
  
Scan with FRST in normal mode

Please download Farbar's Recovery Scan Tool to your desktop: FRST 32bit or FRST 64bit (If not sure: Start --> Computer (right click) --> properties)
 
  • Run FRST.
  • Don´t change one of the checkboxes and hit Scan.
  • Logfiles are created on your desktop.
  • Poste the FRST.txt and (after the first scan only!) the Addition.txt.

 
 
Scan with Gmer rootkit scanner

Please download Gmer from here by clicking on the "Download EXE" Button.
  • Double click on the randomly named GMER.exe. If asked to allow gmer.sys driver to load, please consent.
  • If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO.
  • In the right panel, you will see several boxes that have been checked. Uncheck the following ...
    • Sections
    • IAT/EAT
    • Show All ( should be unchecked by default )
  • Leave everything else as it is.
  • Close all other running programs as well as your Browser.
  • Click the Scan button & wait for it to finish.
  • Once done click on the Save.. button, and in the File name area, type in "ark.txt" or it will save as a .log file which cannot be uploaded to your post.
  • Save it where you can easily find it, such as your desktop.
  • Please post the content of the ark.txt here.

**Caution**
Rootkit scans often produce false positives. Do NOT take any action on any "<--- ROOKIT" entries

Scan with TDSS-Killer

Please read and follow these instructions carefully. We do not want it to fix anything yet (if found), we need to see a report first.

Download TDSSKiller.zip and extract to your desktop
  • Execute TDSSKiller.exe by doubleclicking on it.
  • Press Start Scan
  • If Malicious objects are found, do NOT select Copy to quarantine. Change the action to Skip, and save the log.
  • Once complete, a log will be produced at the root drive which is typically C:\ ,for example, C:\TDSSKiller.<version_date_time>log.txt


Please attach this file to your next reply.
 


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#7 bonezz

bonezz
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 07 January 2015 - 08:18 AM

Hello  Marius, I will run frst and get back with You;Thanks,Tim



#8 bonezz

bonezz
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 07 January 2015 - 09:07 AM

Hello  Marius, I dont see the <> symbol,and I have tried three times to dwn. load frst,it keeps giving message "timed-out"  I cant remember Exactly,but  close enough to what is said,my print screen does not seem to work for me, or I dont do it right??,old,retired.disabled,dont know much on computers,dont spell to good either...Tim....will try frst again..



#9 bonezz

bonezz
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 07 January 2015 - 09:39 AM

Hello  Marius, I got frst to load/scan and have the logs ready,but "Before posting" because Your request,I'm waiting on where/how to find(<>) symbol to cryp....Thanks,Tim



#10 bonezz

bonezz
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 07 January 2015 - 01:54 PM

Hello Marius, Here are the logs You requested,said my post was too long so I will post several??...

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-01-2015
Ran by TimandDoris (administrator) on HOMEPC on 07-01-2015 09:26:20
Running from C:\Users\TimandDoris\Desktop
Loaded Profile: TimandDoris (Available profiles: TimandDoris)
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 8 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(LSI Corporation) C:\Program Files\LSI SoftModem\agr64svc.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(Microsoft Corporation) C:\Windows\System32\CISVC.EXE
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(AppEx Networks Corporation) C:\Program Files\AMD Quick Stream\AMDQuickStream.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(AMD) C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
() C:\Program Files (x86)\PeoplePC\ISP8500\Browser\BartShel.exe
() C:\Program Files (x86)\PeoplePC\ISP8500\Browser\PPShared.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
() C:\Program Files (x86)\PeoplePC\ISP8500\Browser\BartShel.exe
() C:\Program Files (x86)\PeoplePC Accelerated\PeoplePC.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7194840 2013-07-26] (Realtek Semiconductor)
HKLM\...\Run: [UnThreat] => "C:\Program Files (x86)\UnThreat AntiVirus\UnThreat.exe" -silent
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [948672 2009-12-11] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35760 2009-12-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Bart Station] => C:\Program Files (x86)\PeoplePC\ISP8500\BIN\PPCOLink.exe [26912 2013-02-28] ()
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2010-06-09] (Hewlett-Packard)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-08-30] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5226600 2015-01-01] (AVAST Software)
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-10-21] (Hewlett-Packard)
HKU\S-1-5-21-3244274600-613166147-918020329-1000\...\Run: [AppEx Accelerator UI] => C:\Program Files\AMD Quick Stream\AMDQuickStream.exe [429792 2013-04-11] (AppEx Networks Corporation)
HKU\S-1-5-21-3244274600-613166147-918020329-1000\...\Run: [HydraVisionDesktopManager] => C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [389120 2013-08-30] (AMD)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: [S-1-5-21-3244274600-613166147-918020329-1000] => Internet Explorer proxy is enabled.
ProxyServer: [S-1-5-21-3244274600-613166147-918020329-1000] => http=localhost:8080
HKU\S-1-5-21-3244274600-613166147-918020329-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.peoplepc.com/websearch
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKU\S-1-5-21-3244274600-613166147-918020329-1000 -> DefaultScope {B930BB79-8B60-4936-BD43-3F098FE4F2AA} URL = http://search.peoplepc.com/search?area=earthlink-peoplepc-wssynd&channel=eas&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3244274600-613166147-918020329-1000 -> {B930BB79-8B60-4936-BD43-3F098FE4F2AA} URL = http://search.peoplepc.com/search?area=earthlink-peoplepc-wssynd&channel=eas&q={searchTerms}
BHO: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: Accelerator Plugin -> {656EC4B7-072B-4698-B504-2A414C1F0037} -> C:\Program Files (x86)\PeoplePC Accelerated\prpl_IePopupBlocker.dll (Propel Software Corporation)
BHO-x32: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll (Advanced Micro Devices)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Free Download Manager -> {CC59E0F9-7E43-44FA-9FAA-8377850BF205} -> C:\Program Files (x86)\Free Download Manager\iefdm2.dll (FreeDownloadManager.ORG)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKU\S-1-5-21-3244274600-613166147-918020329-1000 -> No Name - {C7768536-96F8-4001-B1A2-90EE21279187} -  No File
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll (Advanced Micro Devices)
Tcpip\..\Interfaces\{096C4026-1396-439E-BA93-C537F916CEDA}: [NameServer] 207.69.188.167 207.69.188.166

FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-01-01]

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-01-01]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-01-01]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-08-30] (Advanced Micro Devices, Inc.) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2015-01-01] (AVAST Software)
R2 CyberLink PowerDVD 12 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [77576 2013-08-12] (CyberLink)
R2 CyberLink PowerDVD 12 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [298760 2013-08-12] (CyberLink)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-08-29] (Hewlett-Packard Company) [File not signed]
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [273136 2013-08-02] ()
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [246488 2013-06-18] (Realtek Semiconductor)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3378416 2013-08-02] (Intel® Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 APXACC; C:\Windows\System32\DRIVERS\appexDrv.sys [219360 2013-04-18] (AppEx Networks Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2015-01-01] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2015-01-01] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2015-01-01] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2015-01-01] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2015-01-01] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2015-01-01] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2015-01-01] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2015-01-01] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-01-07] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-11-21] (Malwarebytes Corporation)
R3 MODEMCSA; C:\Windows\System32\drivers\MODEMCSA.sys [24064 2009-07-13] (Microsoft Corporation)
R3 NETwNs64; C:\Windows\System32\DRIVERS\NETwsw02.sys [3584992 2013-08-01] (Intel Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-07 09:26 - 2015-01-07 09:26 - 00012379 _____ () C:\Users\TimandDoris\Desktop\FRST.txt
2015-01-07 09:25 - 2015-01-07 09:26 - 00000000 ____D () C:\FRST
2015-01-07 09:21 - 2015-01-07 09:21 - 02124288 _____ (Farbar) C:\Users\TimandDoris\Desktop\FRST64.exe
2015-01-06 18:21 - 2011-02-25 01:19 - 02871808 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2015-01-06 18:21 - 2011-02-25 00:30 - 02616320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2015-01-06 17:23 - 2012-02-11 01:36 - 00559104 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2015-01-06 17:23 - 2012-02-11 01:36 - 00067072 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2015-01-06 11:17 - 2015-01-06 11:17 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2015-01-06 08:41 - 2012-12-07 08:20 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\Wpc.dll
2015-01-06 08:41 - 2012-12-07 08:15 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\gameux.dll
2015-01-06 08:41 - 2012-12-07 07:26 - 00308736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Wpc.dll
2015-01-06 08:41 - 2012-12-07 07:20 - 02576384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gameux.dll
2015-01-06 08:41 - 2012-12-07 06:20 - 00045568 _____ (Microsoft) C:\Windows\system32\oflc-nz.rs
2015-01-06 08:41 - 2012-12-07 06:20 - 00044544 _____ (Microsoft) C:\Windows\system32\pegibbfc.rs
2015-01-06 08:41 - 2012-12-07 06:20 - 00043520 _____ (Microsoft) C:\Windows\system32\csrr.rs
2015-01-06 08:41 - 2012-12-07 06:20 - 00030720 _____ (Microsoft) C:\Windows\system32\usk.rs
2015-01-06 08:41 - 2012-12-07 06:20 - 00023552 _____ (Microsoft) C:\Windows\system32\oflc.rs
2015-01-06 08:41 - 2012-12-07 06:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-pt.rs
2015-01-06 08:41 - 2012-12-07 06:20 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi-fi.rs
2015-01-06 08:41 - 2012-12-07 06:19 - 00055296 _____ (Microsoft) C:\Windows\system32\cero.rs
2015-01-06 08:41 - 2012-12-07 06:19 - 00051712 _____ (Microsoft) C:\Windows\system32\esrb.rs
2015-01-06 08:41 - 2012-12-07 06:19 - 00046592 _____ (Microsoft) C:\Windows\system32\fpb.rs
2015-01-06 08:41 - 2012-12-07 06:19 - 00040960 _____ (Microsoft) C:\Windows\system32\cob-au.rs
2015-01-06 08:41 - 2012-12-07 06:19 - 00021504 _____ (Microsoft) C:\Windows\system32\grb.rs
2015-01-06 08:41 - 2012-12-07 06:19 - 00020480 _____ (Microsoft) C:\Windows\system32\pegi.rs
2015-01-06 08:41 - 2012-12-07 06:19 - 00015360 _____ (Microsoft) C:\Windows\system32\djctq.rs
2015-01-06 08:41 - 2012-12-07 05:46 - 00055296 _____ (Microsoft) C:\Windows\SysWOW64\cero.rs
2015-01-06 08:41 - 2012-12-07 05:46 - 00051712 _____ (Microsoft) C:\Windows\SysWOW64\esrb.rs
2015-01-06 08:41 - 2012-12-07 05:46 - 00046592 _____ (Microsoft) C:\Windows\SysWOW64\fpb.rs
2015-01-06 08:41 - 2012-12-07 05:46 - 00045568 _____ (Microsoft) C:\Windows\SysWOW64\oflc-nz.rs
2015-01-06 08:41 - 2012-12-07 05:46 - 00044544 _____ (Microsoft) C:\Windows\SysWOW64\pegibbfc.rs
2015-01-06 08:41 - 2012-12-07 05:46 - 00043520 _____ (Microsoft) C:\Windows\SysWOW64\csrr.rs
2015-01-06 08:41 - 2012-12-07 05:46 - 00040960 _____ (Microsoft) C:\Windows\SysWOW64\cob-au.rs
2015-01-06 08:41 - 2012-12-07 05:46 - 00030720 _____ (Microsoft) C:\Windows\SysWOW64\usk.rs
2015-01-06 08:41 - 2012-12-07 05:46 - 00023552 _____ (Microsoft) C:\Windows\SysWOW64\oflc.rs
2015-01-06 08:41 - 2012-12-07 05:46 - 00021504 _____ (Microsoft) C:\Windows\SysWOW64\grb.rs
2015-01-06 08:41 - 2012-12-07 05:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-pt.rs
2015-01-06 08:41 - 2012-12-07 05:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi-fi.rs
2015-01-06 08:41 - 2012-12-07 05:46 - 00020480 _____ (Microsoft) C:\Windows\SysWOW64\pegi.rs
2015-01-06 08:41 - 2012-12-07 05:46 - 00015360 _____ (Microsoft) C:\Windows\SysWOW64\djctq.rs
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{FB5C5D2F-DB7F-49F8-A5EA-3BDB8A1F8199}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{F385EE6E-7AEA-4AC6-BF20-B02DC9908708}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{E31FB1E2-6662-4413-97C4-6F6D1E2AFB9E}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{D831F046-0FBB-4630-968E-E8B6627F3D8E}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{D79CB561-B83C-4AAE-B45F-98F66AAA7248}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{CF00C516-37FD-4C35-B378-72D3006ACC55}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{CDFED743-673C-4C5C-913C-BB82B8A3C0D5}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{C910D960-F279-4A30-8000-D4B7258C069C}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{C84C01F4-4A78-4889-98E6-F2B0D5D213FB}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{C5E80178-16B0-4493-AD9F-5F27D5875FEE}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{BCA56DBB-AC8A-48CD-B440-1B111801627C}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{B25A8C93-4947-479E-BA10-31F45F451CD1}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{B0433CCB-4F4E-42BA-B01F-5867E1535BB7}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{AF9F26E1-77AA-4C98-9368-16F481641D72}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{AA54CE3F-A18A-4660-84B5-ED7BC7A1B042}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{A2A4584A-CFC8-42B8-822C-22E54D3F58A0}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{A28B0A53-9291-494C-BD54-3D9451803B58}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{9F18F2C0-576E-4E1E-B4C0-0C48F70F1035}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{95399CA5-50A2-447A-9C57-8EC6B4762611}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{8D91B3B1-1997-4134-843F-D7C8C28ED804}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{7E36465A-4896-417C-B060-A923B14CC92A}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{616EDF91-64E7-4D01-A2BF-B8CFFCC97479}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{60A507D2-E125-46CB-8CDF-E89AB7816659}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{608AEEA5-A608-4ACE-A13B-F54987B5E179}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{5CE53EAF-030F-4271-9FE4-CCE13F83A52D}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{5CC5B9C0-1945-4A53-A90A-DC1722BECD86}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{5BDB2397-491F-4F5C-8BE6-9D59E9DBD448}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{585535D0-A122-4AFC-963E-2FA966C415F6}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{53ACB374-8BBF-4BD7-8700-F81E05455DAF}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{4E29AD67-F4AE-4A8B-9E5D-FFF766E03935}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{4153925E-FBA7-470E-944D-BA8352057A7D}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{368D3E06-AE30-4336-B4CB-B03087A7020B}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{2B97B3BD-02DB-4BD5-A279-FA8E20687AC1}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{1DBB200F-CDA6-4D03-9CB7-F612E9720537}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{18525255-5C67-41BD-9EAB-7BB5B9D9ACA6}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{0E439D00-FE78-4893-8C1C-1ACBCA7613FF}
2015-01-06 05:48 - 2015-01-06 05:48 - 00002986 _____ () C:\Windows\System32\Tasks\{03A567AE-8AE9-482F-B725-09BCBCA1F2F2}
2015-01-06 05:47 - 2015-01-06 05:47 - 00002986 _____ () C:\Windows\System32\Tasks\{E0966ABC-DEC0-465F-9147-5F7C83487F43}
2015-01-05 12:21 - 2013-05-13 00:50 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\certenc.dll
2015-01-05 12:21 - 2013-05-12 22:43 - 01192448 _____ (Microsoft Corporation) C:\Windows\system32\certutil.exe
2015-01-05 12:21 - 2013-05-12 22:08 - 00903168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certutil.exe
2015-01-05 12:21 - 2013-05-12 22:08 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certenc.dll
2015-01-05 11:43 - 2014-03-04 04:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-01-05 11:43 - 2014-03-04 04:44 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-01-05 11:43 - 2014-03-04 04:44 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-01-05 11:43 - 2014-03-04 04:44 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-01-05 11:43 - 2014-03-04 04:44 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-01-05 11:43 - 2014-03-04 04:17 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-01-05 11:43 - 2014-03-04 04:16 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-01-05 11:43 - 2014-03-04 04:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-01-05 11:43 - 2014-03-04 04:16 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-01-05 11:43 - 2014-03-04 03:09 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-01-05 11:42 - 2014-03-04 03:09 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-01-05 09:49 - 2015-01-05 09:49 - 00692714 _____ () C:\Users\TimandDoris\Desktop\my-three-free-reports.zip
2015-01-05 08:31 - 2014-11-10 22:08 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-01-05 08:31 - 2014-11-10 22:08 - 00241152 _____ (Microsoft Corporation) C:\Windows\system32\pku2u.dll
2015-01-05 08:31 - 2014-11-10 21:44 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-01-05 08:31 - 2014-11-10 21:44 - 00186880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pku2u.dll
2015-01-05 08:31 - 2014-10-13 21:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-01-05 08:31 - 2014-10-13 21:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-01-05 08:31 - 2014-10-13 20:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-01-05 08:31 - 2014-10-13 20:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-01-05 08:31 - 2014-09-19 04:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-01-05 08:31 - 2014-09-19 04:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-01-05 08:31 - 2014-09-19 04:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-01-05 08:31 - 2014-09-19 04:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-01-05 08:31 - 2014-09-19 04:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-01-05 08:31 - 2014-09-19 04:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-01-05 08:31 - 2014-09-19 04:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-01-05 08:31 - 2014-09-19 04:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-01-05 08:31 - 2014-09-19 04:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-01-05 08:31 - 2014-09-19 04:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-01-05 08:31 - 2014-09-19 04:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-01-05 08:31 - 2014-09-19 04:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-01-05 08:31 - 2014-04-11 21:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-01-05 08:31 - 2014-04-11 21:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-01-05 08:31 - 2014-04-11 21:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-01-05 08:31 - 2014-04-11 21:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-01-05 08:31 - 2014-04-11 21:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-01-05 08:31 - 2013-07-04 07:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-01-05 07:28 - 2013-10-29 21:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2015-01-05 07:28 - 2013-10-29 21:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2015-01-05 07:28 - 2013-07-04 07:50 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\comctl32.dll
2015-01-05 07:28 - 2013-07-04 06:50 - 00530432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\comctl32.dll
2015-01-05 07:28 - 2012-10-09 13:17 - 00226816 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcore6.dll
2015-01-05 07:28 - 2012-10-09 13:17 - 00055296 _____ (Microsoft Corporation) C:\Windows\system32\dhcpcsvc6.dll
2015-01-05 07:28 - 2012-10-09 12:40 - 00193536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcore6.dll
2015-01-05 07:28 - 2012-10-09 12:40 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dhcpcsvc6.dll
2015-01-05 07:28 - 2011-06-15 05:02 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\odbctrac.dll
2015-01-05 07:28 - 2011-06-15 05:02 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\odbccp32.dll
2015-01-05 07:28 - 2011-06-15 05:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccu32.dll
2015-01-05 07:28 - 2011-06-15 05:02 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\odbccr32.dll
2015-01-05 07:28 - 2011-06-15 03:55 - 00319488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbcjt32.dll
2015-01-05 07:28 - 2011-06-15 03:55 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbctrac.dll
2015-01-05 07:28 - 2011-06-15 03:55 - 00122880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccp32.dll
2015-01-05 07:28 - 2011-06-15 03:55 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccu32.dll
2015-01-05 07:28 - 2011-06-15 03:55 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\odbccr32.dll
2015-01-05 07:26 - 2013-02-15 01:08 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\tsgqec.dll
2015-01-05 07:26 - 2013-02-15 01:06 - 03717632 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2015-01-05 07:26 - 2013-02-15 01:02 - 00158720 _____ (Microsoft Corporation) C:\Windows\system32\aaclient.dll
2015-01-05 07:26 - 2013-02-14 23:37 - 03217408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2015-01-05 07:26 - 2013-02-14 23:34 - 00131584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2015-01-05 07:26 - 2013-02-14 22:25 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tsgqec.dll
2015-01-05 07:24 - 2010-12-23 05:42 - 01118720 _____ (Microsoft Corporation) C:\Windows\system32\sbe.dll
2015-01-05 07:24 - 2010-12-23 05:42 - 00961024 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2015-01-05 07:24 - 2010-12-23 05:36 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\mpg2splt.ax
2015-01-05 07:24 - 2010-12-23 00:54 - 00850944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sbe.dll
2015-01-05 07:24 - 2010-12-23 00:54 - 00642048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\CPFilters.dll
2015-01-05 07:24 - 2010-12-23 00:50 - 00199680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg2splt.ax
2015-01-05 06:29 - 2015-01-05 06:29 - 00006577 _____ () C:\Users\TimandDoris\Desktop\attach.txt
2015-01-05 06:29 - 2015-01-05 06:28 - 00042476 _____ () C:\Users\TimandDoris\Desktop\dds.txt
2015-01-05 06:25 - 2015-01-05 06:25 - 00688992 ____R (Swearware) C:\Users\TimandDoris\Desktop\dds.com
2015-01-05 06:25 - 2014-07-08 21:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2015-01-05 06:25 - 2014-07-08 21:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2015-01-05 06:25 - 2014-07-08 21:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2015-01-05 06:25 - 2014-07-08 21:03 - 00007168 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2015-01-05 06:25 - 2014-07-08 21:03 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2015-01-05 06:25 - 2014-07-08 20:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDYAK.DLL
2015-01-05 06:25 - 2014-07-08 20:31 - 00007168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDTAT.DLL
2015-01-05 06:25 - 2014-07-08 20:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU1.DLL
2015-01-05 06:25 - 2014-07-08 20:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDRU.DLL
2015-01-05 06:25 - 2014-07-08 20:31 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KBDBASH.DLL
2015-01-05 06:25 - 2014-07-08 17:38 - 00419992 _____ () C:\Windows\system32\locale.nls
2015-01-05 06:25 - 2014-07-08 17:30 - 00419992 _____ () C:\Windows\SysWOW64\locale.nls
2015-01-05 05:56 - 2014-06-24 21:05 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-01-05 05:56 - 2014-06-24 20:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2015-01-05 05:49 - 2014-11-07 22:16 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-01-05 05:49 - 2014-11-07 21:45 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2015-01-04 08:54 - 2015-01-04 08:54 - 00001257 _____ () C:\Users\Public\Desktop\Peggle Nights.lnk
2015-01-04 08:52 - 2015-01-04 08:52 - 00001225 _____ () C:\Users\Public\Desktop\Peggle Deluxe.lnk
2015-01-04 08:51 - 2015-01-04 08:54 - 00000206 _____ () C:\Users\Public\Desktop\Play More Great Games!.url
2015-01-04 08:51 - 2015-01-04 08:54 - 00000000 ____D () C:\ProgramData\PopCap Games
2015-01-04 08:51 - 2015-01-04 08:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PopCap Games
2015-01-04 08:51 - 2015-01-04 08:54 - 00000000 ____D () C:\Program Files (x86)\PopCap Games
2015-01-04 08:51 - 2015-01-04 08:51 - 00001292 _____ () C:\Users\Public\Desktop\Bejeweled 2 Deluxe.lnk
2015-01-04 06:40 - 2013-07-20 05:33 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-01-04 06:40 - 2013-07-20 05:33 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-01-04 06:40 - 2011-08-27 00:37 - 00331776 _____ (Microsoft Corporation) C:\Windows\system32\oleacc.dll
2015-01-04 06:40 - 2011-08-26 23:26 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleacc.dll
2015-01-04 06:31 - 2014-01-23 21:37 - 01684928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2015-01-04 06:30 - 2011-03-11 01:41 - 00410496 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaStorV.sys
2015-01-04 06:30 - 2011-03-11 01:41 - 00166272 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvstor.sys
2015-01-04 06:30 - 2011-03-11 01:41 - 00148352 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvraid.sys
2015-01-04 06:30 - 2011-03-11 01:41 - 00107904 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdsata.sys
2015-01-04 06:30 - 2011-03-11 01:41 - 00027008 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdxata.sys
2015-01-04 06:30 - 2011-03-11 01:33 - 02565632 _____ (Microsoft Corporation) C:\Windows\system32\esent.dll
2015-01-04 06:30 - 2011-03-11 01:30 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\fsutil.exe
2015-01-04 06:30 - 2011-03-11 00:33 - 01699328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\esent.dll
2015-01-04 06:30 - 2011-03-11 00:31 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fsutil.exe
2015-01-04 06:30 - 2011-03-10 23:37 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2015-01-04 06:29 - 2011-06-16 00:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\xmllite.dll
2015-01-04 06:29 - 2011-06-15 23:33 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xmllite.dll
2015-01-03 13:00 - 2014-02-03 21:35 - 00274880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2015-01-03 13:00 - 2014-02-03 21:35 - 00190912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2015-01-03 13:00 - 2014-02-03 21:35 - 00027584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2015-01-03 13:00 - 2014-02-03 21:28 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2015-01-03 13:00 - 2014-02-03 21:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iologmsg.dll
2015-01-03 11:06 - 2011-04-09 01:58 - 00142336 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2015-01-03 11:06 - 2011-04-09 00:56 - 00123904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2015-01-03 10:56 - 2013-07-09 00:52 - 00224256 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-01-03 10:56 - 2013-07-08 23:52 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-01-03 10:33 - 2011-05-04 00:25 - 02315776 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2015-01-03 10:33 - 2011-05-04 00:22 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2015-01-03 10:33 - 2011-05-04 00:22 - 00778752 _____ (Microsoft Corporation) C:\Windows\system32\mssvp.dll
2015-01-03 10:33 - 2011-05-04 00:22 - 00491520 _____ (Microsoft Corporation) C:\Windows\system32\mssph.dll
2015-01-03 10:33 - 2011-05-04 00:22 - 00288256 _____ (Microsoft Corporation) C:\Windows\system32\mssphtb.dll
2015-01-03 10:33 - 2011-05-04 00:22 - 00075264 _____ (Microsoft Corporation) C:\Windows\system32\msscntrs.dll
2015-01-03 10:33 - 2011-05-04 00:19 - 00591872 _____ (Microsoft Corporation) C:\Windows\system32\SearchIndexer.exe
2015-01-03 10:33 - 2011-05-04 00:19 - 00249856 _____ (Microsoft Corporation) C:\Windows\system32\SearchProtocolHost.exe
2015-01-03 10:33 - 2011-05-04 00:19 - 00113664 _____ (Microsoft Corporation) C:\Windows\system32\SearchFilterHost.exe
2015-01-03 10:33 - 2011-05-03 23:34 - 01549312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tquery.dll
2015-01-03 10:33 - 2011-05-03 23:32 - 01401344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssrch.dll
2015-01-03 10:33 - 2011-05-03 23:32 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssvp.dll
2015-01-03 10:33 - 2011-05-03 23:32 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssph.dll
2015-01-03 10:33 - 2011-05-03 23:32 - 00197120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mssphtb.dll
2015-01-03 10:33 - 2011-05-03 23:32 - 00059392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msscntrs.dll
2015-01-03 10:33 - 2011-05-03 23:28 - 00427520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchIndexer.exe
2015-01-03 10:33 - 2011-05-03 23:28 - 00164352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchProtocolHost.exe
2015-01-03 10:33 - 2011-05-03 23:28 - 00086528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SearchFilterHost.exe
2015-01-03 09:35 - 2013-10-03 21:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2015-01-03 09:35 - 2013-10-03 21:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2015-01-03 09:35 - 2013-10-03 20:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2015-01-03 09:35 - 2013-10-03 20:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2015-01-03 09:28 - 2013-08-01 21:23 - 05550528 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-01-03 09:28 - 2013-08-01 21:15 - 01732032 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-01-03 09:28 - 2013-08-01 21:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-01-03 09:28 - 2013-08-01 21:13 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 21:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:59 - 03968960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-01-03 09:28 - 2013-08-01 20:59 - 03913664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-01-03 09:28 - 2013-08-01 20:51 - 01292192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-01-03 09:28 - 2013-08-01 20:50 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:48 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 20:09 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-01-03 09:28 - 2013-08-01 19:59 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-01-03 09:28 - 2013-08-01 19:43 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 19:43 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 19:43 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-01-03 09:28 - 2013-08-01 19:43 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-01-03 08:51 - 2012-04-27 22:55 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2015-01-02 22:35 - 2012-07-25 22:08 - 00744448 _____ (Microsoft Corporation) C:\Windows\system32\WUDFx.dll
2015-01-02 22:35 - 2012-07-25 22:08 - 00229888 _____ (Microsoft Corporation) C:\Windows\system32\WUDFHost.exe
2015-01-02 22:35 - 2012-07-25 22:08 - 00194048 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2015-01-02 22:35 - 2012-07-25 22:08 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\WUDFSvc.dll
2015-01-02 22:35 - 2012-07-25 22:08 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\WUDFCoinstaller.dll
2015-01-02 22:35 - 2012-07-25 21:26 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFRd.sys
2015-01-02 22:35 - 2012-07-25 21:26 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFPf.sys
2015-01-02 22:35 - 2012-06-02 09:57 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2015-01-02 17:49 - 2014-10-13 21:13 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2015-01-02 17:49 - 2014-10-13 20:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2015-01-02 17:34 - 2012-06-06 01:02 - 01133568 _____ (Microsoft Corporation) C:\Windows\system32\cdosys.dll
2015-01-02 17:34 - 2012-06-06 00:03 - 00805376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cdosys.dll
2015-01-02 17:30 - 2013-11-26 20:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2015-01-02 17:30 - 2013-11-26 20:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2015-01-02 17:30 - 2013-11-26 20:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2015-01-02 17:30 - 2013-11-26 20:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2015-01-02 17:30 - 2013-11-26 20:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2015-01-02 17:30 - 2013-11-26 20:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2015-01-02 06:26 - 2013-09-07 21:27 - 00327168 _____ (Microsoft Corporation) C:\Windows\system32\mswsock.dll
2015-01-02 06:26 - 2013-09-07 21:03 - 00231424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mswsock.dll
2015-01-02 05:58 - 2014-08-22 21:07 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2015-01-02 05:58 - 2014-08-22 20:45 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2015-01-02 05:41 - 2014-06-03 05:02 - 01941504 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-01-02 05:41 - 2014-06-03 05:02 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2015-01-02 05:41 - 2014-06-03 05:02 - 00112064 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-01-02 05:41 - 2014-06-03 04:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2015-01-02 05:41 - 2014-06-03 04:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2015-01-02 05:41 - 2013-02-27 00:47 - 00070144 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-01-02 05:21 - 2011-08-17 00:26 - 00613888 _____ (Microsoft Corporation) C:\Windows\system32\psisdecd.dll
2015-01-02 05:21 - 2011-08-17 00:25 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\psisrndr.ax
2015-01-02 05:21 - 2011-08-16 23:24 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisdecd.dll
2015-01-02 05:21 - 2011-08-16 23:19 - 00075776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\psisrndr.ax
2015-01-01 21:38 - 2014-06-17 21:18 - 00692736 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2015-01-01 21:38 - 2014-06-17 20:51 - 00646144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2015-01-01 20:13 - 2011-10-26 00:25 - 01572864 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2015-01-01 20:13 - 2011-10-25 23:32 - 01328128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quartz.dll
2015-01-01 19:45 - 2014-09-24 21:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2015-01-01 19:45 - 2014-09-24 20:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2015-01-01 19:44 - 2014-08-11 21:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2015-01-01 19:44 - 2014-08-11 20:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2015-01-01 19:07 - 2015-01-02 06:11 - 00000134 _____ () C:\Users\TimandDoris\Desktop\Internet Explorer Troubleshooting.url
2015-01-01 18:06 - 2015-01-02 06:17 - 00012306 _____ () C:\Windows\IE11_main.log
2015-01-01 18:05 - 2015-01-01 18:06 - 02077392 _____ (Microsoft Corporation) C:\Users\TimandDoris\Desktop\IE11-Windows6.1.exe
2015-01-01 17:40 - 2011-07-08 21:46 - 00288768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-01-01 17:40 - 2011-04-26 21:40 - 00158208 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-01-01 17:40 - 2011-04-26 21:39 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-01-01 17:28 - 2011-11-17 01:35 - 00395776 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2015-01-01 17:28 - 2011-11-17 00:35 - 00314880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2015-01-01 17:22 - 2014-06-18 17:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2015-01-01 17:22 - 2014-06-18 17:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2015-01-01 17:22 - 2014-06-18 17:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2015-01-01 17:22 - 2014-06-18 17:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2015-01-01 17:22 - 2014-06-18 17:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2015-01-01 17:22 - 2014-06-18 17:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2015-01-01 17:18 - 2013-10-05 15:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-01-01 17:18 - 2013-10-05 14:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-01-01 17:18 - 2013-07-09 00:46 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-01-01 17:18 - 2013-07-09 00:46 - 00139776 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2015-01-01 17:18 - 2013-07-08 23:46 - 00140288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-01-01 17:18 - 2013-07-08 23:46 - 00103936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptnet.dll
2015-01-01 17:17 - 2014-04-04 21:47 - 01903552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2015-01-01 17:17 - 2014-04-04 21:47 - 00288192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2015-01-01 17:17 - 2013-11-26 06:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2015-01-01 17:02 - 2014-03-26 09:44 - 02002432 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-01-01 17:02 - 2014-03-26 09:41 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-01-01 17:02 - 2014-03-26 09:27 - 01389056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2015-01-01 17:02 - 2014-03-26 09:25 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6r.dll
2015-01-01 16:20 - 2014-11-10 22:09 - 01190912 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-01-01 16:20 - 2014-11-10 21:44 - 01011200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-01-01 16:20 - 2011-03-11 01:34 - 01395712 _____ (Microsoft Corporation) C:\Windows\system32\mfc42.dll
2015-01-01 16:20 - 2011-03-11 01:34 - 01359872 _____ (Microsoft Corporation) C:\Windows\system32\mfc42u.dll
2015-01-01 16:20 - 2011-03-11 00:33 - 01164288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42u.dll
2015-01-01 16:20 - 2011-03-11 00:33 - 01137664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc42.dll
2015-01-01 16:13 - 2014-08-21 01:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-01-01 16:13 - 2014-08-21 01:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-01-01 16:13 - 2014-08-21 01:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2015-01-01 16:13 - 2014-08-21 01:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2015-01-01 16:04 - 2013-07-25 04:25 - 01888768 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2015-01-01 16:04 - 2013-07-25 03:57 - 01620992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2015-01-01 16:01 - 2014-10-29 21:04 - 00610304 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-01-01 16:01 - 2014-10-29 20:46 - 00428544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-01-01 16:01 - 2013-06-25 17:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2015-01-01 16:01 - 2012-11-28 17:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2015-01-01 16:01 - 2012-11-28 17:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2015-01-01 16:01 - 2012-11-28 17:56 - 00000003 _____ () C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2015-01-01 15:58 - 2012-10-03 12:44 - 00303104 _____ (Microsoft Corporation) C:\Windows\system32\nlasvc.dll
2015-01-01 15:58 - 2012-10-03 12:44 - 00246272 _____ (Microsoft Corporation) C:\Windows\system32\netcorehc.dll
2015-01-01 15:58 - 2012-10-03 12:44 - 00216576 _____ (Microsoft Corporation) C:\Windows\system32\ncsi.dll
2015-01-01 15:58 - 2012-10-03 12:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\nlaapi.dll
2015-01-01 15:58 - 2012-10-03 12:44 - 00018944 _____ (Microsoft Corporation) C:\Windows\system32\netevent.dll
2015-01-01 15:58 - 2012-10-03 12:42 - 00569344 _____ (Microsoft Corporation) C:\Windows\system32\iphlpsvc.dll
2015-01-01 15:58 - 2012-10-03 11:42 - 00175104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netcorehc.dll
2015-01-01 15:58 - 2012-10-03 11:42 - 00156672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncsi.dll
2015-01-01 15:58 - 2012-10-03 11:42 - 00018944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netevent.dll
2015-01-01 15:58 - 2012-10-03 11:07 - 00045568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpipreg.sys
2015-01-01 15:58 - 2012-01-13 02:12 - 00052224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nlaapi.dll
2015-01-01 15:40 - 2012-08-21 16:01 - 00245760 _____ (Microsoft Corporation) C:\Windows\system32\OxpsConverter.exe
2015-01-01 11:29 - 2015-01-01 11:29 - 00000000 ____D () C:\Users\TimandDoris\AppData\Roaming\AVAST Software
2015-01-01 11:28 - 2015-01-06 06:09 - 00002214 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-01-01 11:28 - 2015-01-02 17:40 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2015-01-01 11:28 - 2015-01-01 12:17 - 01050432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2015-01-01 11:28 - 2015-01-01 11:28 - 00436624 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2015-01-01 11:28 - 2015-01-01 11:28 - 00364512 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-01-01 11:28 - 2015-01-01 11:28 - 00267632 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2015-01-01 11:28 - 2015-01-01 11:28 - 00116728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-01-01 11:28 - 2015-01-01 11:28 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-01-01 11:28 - 2015-01-01 11:28 - 00083280 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-01-01 11:28 - 2015-01-01 11:28 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2015-01-01 11:28 - 2015-01-01 11:28 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-01-01 11:28 - 2015-01-01 11:28 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2015-01-01 11:28 - 2015-01-01 11:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-01-01 11:26 - 2015-01-01 11:26 - 00000000 ____D () C:\Program Files\AVAST Software
2015-01-01 11:23 - 2015-01-01 11:26 - 00000000 ____D () C:\ProgramData\AVAST Software
2015-01-01 09:54 - 2014-10-02 21:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2015-01-01 09:54 - 2014-10-02 21:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2015-01-01 09:54 - 2014-10-02 21:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2015-01-01 09:54 - 2014-10-02 21:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2015-01-01 09:54 - 2014-10-02 21:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2015-01-01 09:54 - 2014-10-02 20:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2015-01-01 09:54 - 2014-10-02 20:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2015-01-01 09:54 - 2014-10-02 20:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2015-01-01 09:49 - 2013-07-25 21:24 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\shdocvw.dll
2015-01-01 09:49 - 2013-07-25 20:55 - 00180224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shdocvw.dll
2015-01-01 09:44 - 2014-09-04 00:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2015-01-01 09:44 - 2014-09-04 00:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2015-01-01 09:43 - 2013-04-26 00:51 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2015-01-01 09:43 - 2013-04-25 23:55 - 00492544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2015-01-01 09:40 - 2011-05-24 06:42 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\umpnpmgr.dll
2015-01-01 09:40 - 2011-05-24 05:40 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devobj.dll
2015-01-01 09:40 - 2011-05-24 05:40 - 00044544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\devrtl.dll
2015-01-01 09:40 - 2011-05-24 05:39 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cfgmgr32.dll
2015-01-01 09:40 - 2011-05-24 05:37 - 00252928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\drvinst.exe
2015-01-01 09:08 - 2011-12-16 03:46 - 00634880 _____ (Microsoft Corporation) C:\Windows\system32\msvcrt.dll
2015-01-01 09:08 - 2011-12-16 02:52 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msvcrt.dll
2015-01-01 08:50 - 2013-08-27 04:01 - 01545728 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-01-01 08:50 - 2013-08-27 04:01 - 01143296 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-01-01 08:50 - 2013-08-27 03:21 - 01077760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-01-01 08:41 - 2014-10-17 21:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-01-01 08:41 - 2014-10-17 20:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-12-31 13:39 - 2012-01-04 05:44 - 00509952 _____ (Microsoft Corporation) C:\Windows\system32\ntshrui.dll
2014-12-31 13:39 - 2012-01-04 03:58 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntshrui.dll
2014-12-31 13:22 - 2014-08-01 06:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-12-31 13:22 - 2014-08-01 06:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-12-31 13:18 - 2013-05-10 00:49 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\cryptdlg.dll
2014-12-31 13:18 - 2013-05-09 22:20 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptdlg.dll
2014-12-31 13:13 - 2012-06-16 00:15 - 00911360 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-12-31 13:13 - 2012-06-15 23:26 - 00717824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-12-31 13:13 - 2011-10-15 01:31 - 00723456 _____ (Microsoft Corporation) C:\Windows\system32\EncDec.dll
2014-12-31 13:13 - 2011-10-15 00:38 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\EncDec.dll
2014-12-31 13:09 - 2012-08-22 13:12 - 00950128 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2014-12-31 13:09 - 2012-07-04 15:26 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\RNDISMP.sys
2014-12-31 12:58 - 2014-10-24 20:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-12-31 12:58 - 2014-10-24 20:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-12-31 12:56 - 2012-07-04 17:16 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\netapi32.dll
2014-12-31 12:56 - 2012-07-04 17:13 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\browser.dll
2014-12-31 12:56 - 2012-07-04 17:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\browcli.dll
2014-12-31 12:56 - 2012-07-04 16:16 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\netapi32.dll
2014-12-31 12:56 - 2012-07-04 16:14 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\browcli.dll
2014-12-31 12:52 - 2013-08-04 21:25 - 00155584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ataport.sys
2014-12-31 12:50 - 2014-01-27 21:32 - 00228864 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2014-12-31 12:50 - 2013-03-19 00:53 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\wwanprotdim.dll
2014-12-31 12:48 - 2013-10-03 21:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2014-12-31 12:48 - 2013-10-03 20:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2014-12-31 11:57 - 2013-02-11 23:12 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usb8023.sys
2014-12-31 11:57 - 2012-04-26 00:41 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-12-31 11:57 - 2012-04-26 00:41 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\rdpwsx.dll
2014-12-31 11:57 - 2012-04-26 00:34 - 00009216 _____ (Microsoft Corporation) C:\Windows\system32\rdrmemptylst.exe
2014-12-31 11:56 - 2014-05-30 01:45 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-12-31 11:48 - 2012-05-01 00:40 - 00209920 _____ (Microsoft Corporation) C:\Windows\system32\profsvc.dll
2014-12-31 11:46 - 2011-03-03 01:24 - 00357888 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-12-31 11:46 - 2011-03-03 01:24 - 00183296 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-12-31 11:46 - 2011-03-03 01:21 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dnscacheugc.exe
2014-12-31 11:46 - 2011-03-03 00:38 - 00270336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-12-31 11:46 - 2011-03-03 00:36 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnscacheugc.exe
2014-12-31 11:42 - 2012-11-02 00:59 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\dpnet.dll
2014-12-31 11:42 - 2012-11-02 00:11 - 00376832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpnet.dll
2014-12-31 10:13 - 2011-12-30 01:26 - 00515584 _____ (Microsoft Corporation) C:\Windows\system32\timedate.cpl
2014-12-31 10:13 - 2011-12-30 00:27 - 00478720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\timedate.cpl
2014-12-31 09:43 - 2013-07-12 05:41 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbcir.sys
2014-12-31 09:35 - 2013-07-02 23:05 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidclass.sys
2014-12-31 09:35 - 2013-07-02 23:05 - 00032896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hidparse.sys
2014-12-31 06:28 - 2014-04-24 21:34 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2014-12-31 06:28 - 2014-04-24 21:06 - 00626688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usp10.dll
2014-12-31 05:55 - 2014-01-28 21:32 - 00484864 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-12-31 05:55 - 2014-01-28 21:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wer.dll
2014-12-31 05:54 - 2013-10-18 21:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2014-12-31 05:54 - 2013-10-18 20:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2014-12-31 05:54 - 2012-03-01 01:46 - 00023408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fs_rec.sys
2014-12-31 05:54 - 2012-03-01 01:28 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\wmi.dll
2014-12-31 05:54 - 2012-03-01 00:29 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmi.dll
2014-12-30 12:42 - 2013-06-06 00:50 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2014-12-30 12:42 - 2013-06-06 00:49 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2014-12-30 12:42 - 2013-06-06 00:49 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2014-12-30 12:42 - 2013-06-06 00:47 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2014-12-30 12:42 - 2013-06-05 23:57 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2014-12-30 12:42 - 2013-06-05 23:51 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2014-12-30 12:42 - 2013-06-05 23:50 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2014-12-30 12:42 - 2013-06-05 22:30 - 00368128 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2014-12-30 12:42 - 2013-06-05 22:01 - 00295424 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2014-12-30 12:42 - 2013-06-05 22:01 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2014-12-30 10:59 - 2011-05-03 00:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-12-30 10:59 - 2011-05-02 23:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2014-12-30 10:59 - 2011-02-18 05:51 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\prevhost.exe
2014-12-30 10:59 - 2011-02-18 00:39 - 00031232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\prevhost.exe
2014-12-30 09:49 - 2015-01-07 09:24 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-12-30 09:48 - 2014-12-30 09:48 - 00001110 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-12-30 09:48 - 2014-12-30 09:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-12-30 09:48 - 2014-12-30 09:48 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-12-30 09:48 - 2014-12-30 09:48 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-12-30 09:48 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-12-30 09:48 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-12-30 09:48 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-12-30 06:37 - 2013-10-11 21:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2014-12-30 06:37 - 2013-10-11 21:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2014-12-30 06:37 - 2013-10-11 21:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2014-12-30 06:37 - 2013-10-11 21:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2014-12-30 06:37 - 2013-10-11 20:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2014-12-30 06:37 - 2013-10-11 20:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2014-12-30 06:37 - 2013-10-11 20:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2014-12-30 06:37 - 2013-10-11 20:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2014-12-30 06:29 - 2012-05-14 00:26 - 00956928 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-12-30 06:01 - 2013-10-11 21:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-12-30 06:01 - 2013-10-11 21:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-12-30 06:01 - 2013-10-11 21:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-12-30 06:01 - 2013-10-11 21:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-12-30 06:01 - 2013-10-11 21:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-12-29 17:15 - 2011-02-05 12:10 - 00642944 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2014-12-29 17:15 - 2011-02-05 12:10 - 00020352 _____ (Microsoft Corporation) C:\Windows\system32\kdusb.dll
2014-12-29 17:15 - 2011-02-05 12:10 - 00019328 _____ (Microsoft Corporation) C:\Windows\system32\kd1394.dll
2014-12-29 17:15 - 2011-02-05 12:10 - 00017792 _____ (Microsoft Corporation) C:\Windows\system32\kdcom.dll
2014-12-29 17:15 - 2011-02-05 12:06 - 00605552 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2014-12-29 17:15 - 2011-02-05 12:06 - 00566208 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2014-12-29 17:15 - 2011-02-05 12:06 - 00518672 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2014-12-29 17:14 - 2014-10-09 19:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-12-29 17:10 - 2011-04-28 22:06 - 00467456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2014-12-29 17:10 - 2011-04-28 22:05 - 00410112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-12-29 17:10 - 2011-04-28 22:05 - 00168448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-12-29 17:09 - 2014-06-06 05:10 - 00624128 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-12-29 17:09 - 2014-06-06 04:44 - 00509440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-12-29 17:06 - 2014-07-13 21:02 - 01216000 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-12-29 17:06 - 2014-07-13 20:40 - 00664064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2014-12-29 17:02 - 2012-05-05 03:36 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2014-12-29 17:02 - 2012-05-05 02:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2014-12-29 16:56 - 2013-01-24 01:01 - 00223752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\fvevol.sys
2014-12-29 16:53 - 2013-08-27 20:12 - 00461312 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2014-12-29 11:51 - 2014-12-29 11:51 - 00000000 ___HD () C:\$WINDOWS.~BT
2014-12-29 09:41 - 2014-10-02 21:12 - 02020352 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-12-29 09:41 - 2014-10-02 21:12 - 00346624 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2014-12-29 09:41 - 2014-10-02 21:12 - 00310272 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-12-29 09:41 - 2014-10-02 21:12 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2014-12-29 09:41 - 2014-10-02 21:11 - 00266240 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2014-12-29 09:41 - 2014-10-02 20:45 - 01177088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-12-29 09:41 - 2014-10-02 20:45 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManMigrationPlugin.dll
2014-12-29 09:41 - 2014-10-02 20:45 - 00214016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2014-12-29 09:41 - 2014-10-02 20:45 - 00145920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmAuto.dll
2014-12-29 09:41 - 2014-10-02 20:44 - 00198656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSManHTTPConfig.exe
2014-12-29 09:36 - 2013-07-04 07:57 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2014-12-29 09:36 - 2013-07-04 07:50 - 00102400 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2014-12-29 09:36 - 2013-07-04 06:57 - 00205824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2014-12-29 09:36 - 2013-07-04 06:51 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2014-12-29 09:36 - 2013-07-04 05:11 - 00140800 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2014-12-29 09:29 - 2014-06-15 21:10 - 00985536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-12-29 09:29 - 2013-04-10 01:01 - 00265064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-12-29 09:29 - 2011-02-03 06:25 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-12-29 09:28 - 2012-09-25 17:47 - 00078336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\synceng.dll
2014-12-29 09:28 - 2012-09-25 17:46 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\synceng.dll
2014-12-29 09:25 - 2011-02-12 06:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2014-12-29 09:24 - 2014-11-10 20:46 - 00119296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2014-12-29 09:14 - 2011-02-22 23:55 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2014-12-29 09:10 - 2012-11-22 22:13 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\taskhost.exe
2014-12-29 09:08 - 2014-10-29 21:03 - 00165888 _____ (Microsoft Corporation) C:\Windows\system32\charmap.exe
2014-12-29 09:08 - 2014-10-29 20:45 - 00155136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\charmap.exe
2014-12-29 09:05 - 2012-03-17 02:58 - 00075120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\partmgr.sys
2014-12-29 08:37 - 2014-01-22 09:34 - 00047496 _____ (GFI Software) C:\Windows\system32\sbbd.exe
2014-12-29 06:34 - 2012-02-17 01:38 - 01031680 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2014-12-29 06:34 - 2012-02-17 00:34 - 00826880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2014-12-29 06:34 - 2012-02-16 23:57 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdtcp.sys
2014-12-28 19:17 - 2015-01-07 09:10 - 00000000 ____D () C:\Users\TimandDoris\AppData\Roaming\Free Download Manager
2014-12-28 19:17 - 2014-12-28 19:17 - 00001075 _____ () C:\Users\TimandDoris\Desktop\Free Download Manager.lnk
2014-12-28 19:17 - 2014-12-28 19:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free Download Manager
2014-12-28 19:17 - 2014-12-28 19:17 - 00000000 ____D () C:\Program Files (x86)\Free Download Manager
2014-12-28 16:04 - 2015-01-06 16:04 - 00003222 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForTimandDoris
2014-12-28 16:04 - 2015-01-06 16:04 - 00000356 _____ () C:\Windows\Tasks\HPCeeScheduleForTimandDoris.job
2014-12-28 16:02 - 2014-12-28 16:03 - 00000052 _____ () C:\Windows\SysWOW64\DOErrors.log
2014-12-28 16:01 - 2014-12-28 16:01 - 00000000 _____ () C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-12-28 10:05 - 2014-12-29 16:10 - 00000000 ____D () C:\Program Files (x86)\UnThreat AntiVirus
2014-12-28 00:56 - 2014-12-27 22:24 - 00000000 ____D () C:\Windows\Panther
2014-12-28 00:54 - 2014-12-28 00:54 - 00262144 _____ () C:\Windows\system32\config\userdiff
2014-12-28 00:45 - 2014-12-27 22:16 - 00000000 ___HD () C:\$WINDOWS.~Q
2014-12-28 00:43 - 2014-12-28 00:44 - 00000000 ___HD () C:\$INPLACE.~TR
2014-12-27 23:26 - 2014-12-27 23:26 - 00000000 ____D () C:\Users\TimandDoris\AppData\Roaming\Macromedia
2014-12-27 23:25 - 2014-05-14 11:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-12-27 23:25 - 2014-05-14 11:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-12-27 23:25 - 2014-05-14 11:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-12-27 23:25 - 2014-05-14 11:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-12-27 23:24 - 2014-05-14 11:23 - 00700384 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-12-27 23:24 - 2014-05-14 11:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-12-27 23:24 - 2014-05-14 11:23 - 00038880 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-12-27 23:24 - 2014-05-14 11:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-12-27 23:24 - 2014-05-14 11:20 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-12-27 23:24 - 2014-05-14 11:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-12-27 23:24 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-12-27 23:24 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-12-27 23:24 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-12-27 23:24 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-12-27 22:31 - 2014-12-27 22:31 - 03352968 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-12-27 22:29 - 2015-01-06 05:24 - 00058016 _____ () C:\Users\TimandDoris\AppData\Local\GDIPFONTCACHEV1.DAT
2014-12-27 22:25 - 2014-12-27 22:25 - 00001451 _____ () C:\Users\TimandDoris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-12-27 22:25 - 2014-12-27 22:25 - 00001417 _____ () C:\Users\TimandDoris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer (64-bit).lnk
2014-12-27 22:24 - 2014-12-27 22:24 - 00000020 ___SH () C:\Users\TimandDoris\ntuser.ini
2014-12-27 22:20 - 2015-01-07 09:20 - 01702705 _____ () C:\Windows\WindowsUpdate.log
2014-12-27 22:16 - 2014-12-27 22:16 - 00022744 _____ () C:\Windows\system32\emptyregdb.dat
2014-12-27 22:02 - 2014-12-28 16:04 - 00000000 ____D () C:\Users\TimandDoris
2014-12-27 22:02 - 2014-12-27 22:02 - 00001345 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2014-12-27 22:02 - 2014-12-27 22:02 - 00001326 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2014-12-27 22:02 - 2009-07-13 23:54 - 00000000 ___RD () C:\Users\TimandDoris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-27 22:02 - 2009-07-13 23:49 - 00000000 ___RD () C:\Users\TimandDoris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-12-27 22:01 - 2014-12-27 22:01 - 00001355 _____ () C:\Windows\TSSysprep.log
2014-12-27 22:01 - 2014-12-27 22:01 - 00000000 ____D () C:\Program Files\LSI SoftModem
2014-12-27 22:00 - 2015-01-06 11:51 - 00065536 _____ () C:\Windows\system32\spu_storage.bin
2014-12-27 22:00 - 2014-12-27 22:00 - 00000000 ____D () C:\Program Files\Common Files\ATI Technologies
2014-12-27 22:00 - 2014-12-27 22:00 - 00000000 _____ () C:\Windows\ativpsrm.bin
2014-12-27 21:59 - 2014-12-27 21:59 - 00000000 ____D () C:\Windows\system32\SRSLabs
2014-12-27 21:59 - 2014-12-27 21:59 - 00000000 ____D () C:\Program Files\Realtek
2014-12-27 21:58 - 2014-12-29 11:41 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2014-12-27 21:23 - 2014-12-27 22:16 - 00006136 _____ () C:\Windows\comsetup.log
2014-12-27 20:48 - 2014-12-29 11:55 - 00001908 _____ () C:\Windows\diagwrn.xml
2014-12-27 20:48 - 2014-12-29 11:55 - 00001908 _____ () C:\Windows\diagerr.xml
2014-12-27 20:41 - 2014-12-27 22:11 - 00000000 ____D () C:\Users\TimandDoris\AppData\Local\AMD
2014-12-27 20:40 - 2014-12-27 22:11 - 00000000 ____D () C:\Users\TimandDoris\AppData\Roaming\ATI
2014-12-27 20:40 - 2014-12-27 22:11 - 00000000 ____D () C:\Users\TimandDoris\AppData\Local\ATI
2014-12-27 20:40 - 2014-12-27 22:11 - 00000000 ____D () C:\Users\TimandDoris\AppData\Local\AppEx Networks
2014-12-27 20:40 - 2014-12-27 22:06 - 00000000 ____D () C:\ProgramData\ATI
2014-12-27 20:35 - 2012-10-11 18:49 - 00082600 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amd_sata.sys
2014-12-27 20:35 - 2012-10-11 18:49 - 00042664 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amd_xata.sys
2014-12-27 20:33 - 2013-08-15 01:41 - 00881880 _____ (Realtek ) C:\Windows\system32\Drivers\Rt64win7.sys
2014-12-27 20:33 - 2013-08-15 01:41 - 00108760 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RTNUninst64.dll
2014-12-27 20:33 - 2013-08-15 01:41 - 00074456 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2014-12-27 20:31 - 2014-12-27 22:11 - 00000000 ____D () C:\Users\TimandDoris\AppData\Roaming\Intel
2014-12-27 20:30 - 2014-12-27 22:06 - 00000000 ____D () C:\ProgramData\Intel
2014-12-27 20:30 - 2014-12-27 22:06 - 00000000 ____D () C:\Program Files (x86)\Intel
2014-12-27 20:30 - 2014-12-27 22:05 - 00000000 ____D () C:\Program Files\Common Files\Intel
2014-12-27 20:30 - 2014-12-27 22:05 - 00000000 ____D () C:\Program Files (x86)\Cisco
2014-12-27 20:29 - 2014-12-27 22:05 - 00000000 ____D () C:\Program Files\Intel
2014-12-27 20:29 - 2014-12-27 20:30 - 00008912 _____ () C:\Windows\DPINST.LOG
2014-12-27 20:28 - 2014-12-27 22:07 - 00000000 ____D () C:\Windows\SYSTEM.SAV
2014-12-27 20:27 - 2014-12-27 22:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Quick Stream
2014-12-27 20:27 - 2014-12-27 22:05 - 00000000 ____D () C:\Program Files\AMD Quick Stream
2014-12-27 20:27 - 2013-04-18 07:04 - 00219360 _____ (AppEx Networks Corporation) C:\Windows\system32\Drivers\appexDrv.sys
2014-12-27 20:26 - 2014-12-27 22:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Problem Report Wizard
2014-12-27 20:26 - 2014-12-27 22:06 - 00000000 ____D () C:\ProgramData\AMD
2014-12-27 20:26 - 2014-12-27 22:05 - 00000000 ____D () C:\Program Files\AMD
2014-12-27 20:26 - 2014-12-27 22:05 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-12-27 20:26 - 2014-12-27 22:05 - 00000000 ____D () C:\Program Files (x86)\AMD
2014-12-27 20:26 - 2014-12-27 20:26 - 00066505 _____ () C:\Windows\SysWOW64\CCCInstall_201412272026286900.log
2014-12-27 20:25 - 2014-12-27 22:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-12-27 20:25 - 2014-12-27 22:05 - 00000000 ____D () C:\Program Files\ATI Technologies
2014-12-27 20:24 - 2013-08-30 22:48 - 00229376 _____ () C:\Windows\system32\clinfo.exe
2014-12-27 20:24 - 2013-08-30 22:48 - 00127488 _____ (AMD) C:\Windows\system32\coinst_13.152.dll
2014-12-27 20:24 - 2013-08-30 22:47 - 01187342 _____ () C:\Windows\system32\amdocl_as64.exe
2014-12-27 20:24 - 2013-08-30 22:47 - 01061902 _____ () C:\Windows\system32\amdocl_ld64.exe
2014-12-27 20:24 - 2013-08-30 22:47 - 00995342 _____ () C:\Windows\SysWOW64\amdocl_as32.exe
2014-12-27 20:24 - 2013-08-30 22:47 - 00798734 _____ () C:\Windows\SysWOW64\amdocl_ld32.exe
2014-12-27 20:24 - 2013-08-30 22:47 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-12-27 20:24 - 2013-08-30 22:47 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-12-27 20:24 - 2013-08-30 22:47 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-12-27 20:24 - 2013-08-30 22:45 - 23760896 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-12-27 20:24 - 2013-08-30 22:43 - 00063488 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-12-27 20:24 - 2013-08-30 22:43 - 00057344 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-12-27 20:24 - 2013-08-30 22:04 - 00204952 _____ () C:\Windows\SysWOW64\ativvsvl.dat
2014-12-27 20:24 - 2013-08-30 22:04 - 00204952 _____ () C:\Windows\system32\ativvsvl.dat
2014-12-27 20:24 - 2013-08-30 22:04 - 00157144 _____ () C:\Windows\SysWOW64\ativvsva.dat
2014-12-27 20:24 - 2013-08-30 22:04 - 00157144 _____ () C:\Windows\system32\ativvsva.dat
2014-12-27 20:24 - 2013-08-07 14:12 - 00231984 _____ () C:\Windows\system32\ativvaxy_cik_nd.dat
2014-12-27 20:24 - 2011-09-12 18:05 - 00003917 _____ () C:\Windows\SysWOW64\atipblup.dat
2014-12-27 20:23 - 2014-12-27 22:05 - 00000000 ____D () C:\Program Files\ATI
2014-12-27 20:23 - 2014-12-27 22:05 - 00000000 ____D () C:\Program Files (x86)\ATI Technologies
2014-12-27 20:23 - 2013-08-30 22:47 - 28192256 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-12-27 20:23 - 2013-08-30 22:47 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-12-27 20:23 - 2013-08-30 22:18 - 00530824 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-12-27 20:23 - 2013-08-30 22:18 - 00530824 _____ () C:\Windows\system32\atiapfxx.blb
2014-12-27 20:23 - 2013-08-30 21:59 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-12-27 20:23 - 2013-08-27 18:06 - 00233652 _____ () C:\Windows\system32\ativvaxy_cik.dat
2014-12-27 20:23 - 2013-08-27 16:27 - 00082336 _____ () C:\Windows\system32\ativce02.dat
2014-12-27 20:23 - 2013-05-04 18:22 - 00047164 _____ () C:\Windows\atiogl.xml
2014-12-27 20:23 - 2011-09-12 21:06 - 00003917 _____ () C:\Windows\SysWOW64\atipblag.dat
2014-12-27 20:23 - 2011-09-12 21:06 - 00003917 _____ () C:\Windows\system32\atipblag.dat
2014-12-27 20:21 - 2013-08-30 23:14 - 00156712 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2014-12-27 20:21 - 2013-08-30 23:14 - 00142792 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-12-27 20:21 - 2013-08-30 23:14 - 00141256 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2014-12-27 20:21 - 2013-08-30 23:14 - 00125824 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-12-27 20:21 - 2013-08-30 23:14 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-12-27 20:21 - 2013-08-30 23:14 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-12-27 20:21 - 2013-08-30 23:14 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-12-27 20:21 - 2013-08-30 23:14 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-12-27 20:21 - 2013-08-30 23:13 - 09464840 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2014-12-27 20:21 - 2013-08-30 23:13 - 08215992 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-12-27 20:21 - 2013-08-30 23:13 - 07256496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2014-12-27 20:21 - 2013-08-30 23:13 - 06767240 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-12-27 20:21 - 2013-08-30 23:13 - 06189416 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2014-12-27 20:21 - 2013-08-30 23:13 - 06176008 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2014-12-27 20:21 - 2013-08-30 23:13 - 01233080 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2014-12-27 20:21 - 2013-08-30 23:13 - 01027544 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2014-12-27 20:21 - 2013-08-30 23:13 - 00114488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-12-27 20:21 - 2013-08-30 23:13 - 00097984 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-12-27 20:21 - 2013-08-30 23:11 - 12528640 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-12-27 20:21 - 2013-08-30 22:35 - 25387520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-12-27 20:21 - 2013-08-30 22:18 - 00368640 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-12-27 20:21 - 2013-08-30 22:18 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-12-27 20:21 - 2013-08-30 22:18 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-12-27 20:21 - 2013-08-30 22:18 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-12-27 20:21 - 2013-08-30 22:18 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-12-27 20:21 - 2013-08-30 22:17 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-12-27 20:21 - 2013-08-30 22:14 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-12-27 20:21 - 2013-08-30 22:13 - 21400064 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-12-27 20:21 - 2013-08-30 22:04 - 03388672 _____ () C:\Windows\system32\atiumd6a.cap
2014-12-27 20:21 - 2013-08-30 21:58 - 00571904 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-12-27 20:21 - 2013-08-30 21:58 - 00026112 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-12-27 20:21 - 2013-08-30 21:57 - 00239616 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-12-27 20:21 - 2013-08-30 21:56 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-12-27 20:21 - 2013-08-30 21:50 - 03422720 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-12-27 20:21 - 2013-08-30 21:37 - 00096256 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2014-12-27 20:21 - 2013-08-30 21:37 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2014-12-27 20:21 - 2013-08-30 21:37 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2014-12-27 20:21 - 2013-08-30 21:33 - 00784384 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-12-27 20:21 - 2013-08-30 21:33 - 00594944 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-12-27 20:21 - 2013-08-30 21:33 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-12-27 20:21 - 2013-08-30 21:32 - 00618496 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-12-27 20:21 - 2013-08-30 21:32 - 00100352 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-12-27 20:21 - 2013-08-30 21:32 - 00096768 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-12-27 20:21 - 2013-08-30 21:32 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-12-27 20:21 - 2013-08-30 21:32 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-12-27 20:21 - 2013-08-30 21:32 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-12-27 20:21 - 2013-08-07 16:22 - 00716208 _____ () C:\Windows\system32\atiicdxx.dat
2014-12-27 20:21 - 2013-04-10 14:34 - 00332800 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODE.exe
2014-12-27 20:21 - 2013-04-10 14:34 - 00118784 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atibtmon.exe
2014-12-27 20:21 - 2013-04-10 14:34 - 00051200 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\ATIODCLI.exe
2014-12-27 20:20 - 2013-08-30 21:37 - 00090624 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2014-12-27 20:17 - 2014-12-29 11:43 - 00000000 ___HD () C:\Program Files (x86)\Temp
2014-12-27 20:17 - 2014-12-29 11:43 - 00000000 ____D () C:\Program Files (x86)\Realtek
2014-12-27 20:17 - 2013-07-30 23:16 - 03564376 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2014-12-27 20:17 - 2013-07-30 20:14 - 02585304 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2014-12-27 20:17 - 2013-07-30 16:47 - 00620273 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2014-12-27 20:17 - 2013-07-29 21:41 - 00147672 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2014-12-27 20:17 - 2013-07-29 16:48 - 30311936 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2014-12-27 20:17 - 2013-07-26 17:05 - 00617176 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2014-12-27 20:17 - 2013-07-22 18:37 - 01004248 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2014-12-27 20:17 - 2013-07-19 18:55 - 02080472 ____R (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2014-12-27 20:17 - 2013-07-18 17:48 - 02795224 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2014-12-27 20:17 - 2013-07-17 19:17 - 02743328 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2014-12-27 20:17 - 2013-06-06 00:42 - 00208072 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2014-12-27 20:17 - 2013-04-24 20:16 - 01662024 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2014-12-27 20:17 - 2013-02-20 21:55 - 01284680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2014-12-27 20:17 - 2012-06-20 20:26 - 00110592 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2014-12-27 20:17 - 2012-03-08 14:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2014-12-27 20:17 - 2011-12-20 18:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2014-12-27 20:17 - 2011-11-22 19:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2014-12-27 20:17 - 2011-09-02 17:21 - 00221024 _____ (Synopsys, Inc.) C:\Windows\system32\SFNHK64.dll
2014-12-27 20:17 - 2011-09-02 17:21 - 00081248 _____ (Synopsys, Inc.) C:\Windows\system32\SFCOM64.dll
2014-12-27 20:17 - 2011-09-02 17:21 - 00078688 _____ (Synopsys, Inc.) C:\Windows\system32\SFAPO64.dll
2014-12-27 20:17 - 2010-11-08 10:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2014-12-27 20:17 - 2010-11-08 10:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2014-12-27 20:17 - 2010-11-08 10:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2014-12-27 20:17 - 2010-11-08 10:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2014-12-27 20:17 - 2010-11-08 10:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2014-12-27 20:17 - 2010-11-08 10:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2014-12-27 20:17 - 2010-11-03 21:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2014-12-27 20:17 - 2010-07-22 19:48 - 00074064 _____ (Virage Logic Corporation / Sonic Focus) C:\Windows\SysWOW64\SFCOM.dll
2014-12-27 20:17 - 2010-07-12 00:28 - 00180048 _____ (Sonic Focus, Inc.) C:\Windows\system32\SFProc64.dll
2014-12-27 20:17 - 2010-07-12 00:28 - 00086352 _____ (Sonic Focus, Inc.) C:\Windows\system32\SFComm64.dll
2014-12-27 20:17 - 2010-07-12 00:28 - 00083792 _____ (Sonic Focus, Inc.) C:\Windows\system32\SFSAPO64.dll
2014-12-27 20:17 - 2010-07-12 00:28 - 00082768 _____ (Sonic Focus, Inc.) C:\Windows\system32\SFHAPO64.dll
2014-12-27 20:17 - 2010-07-12 00:28 - 00082768 _____ (Sonic Focus, Inc.) C:\Windows\system32\SFDAPO64.dll
2014-12-27 18:41 - 2014-12-27 20:00 - 00000000 ____D () C:\DVD RW Drive
2014-12-27 14:13 - 2014-12-27 22:11 - 00000000 ____D () C:\Users\TimandDoris\AppData\Roaming\PeoplePC Online
2014-12-27 14:13 - 2014-12-27 22:06 - 00000000 ____D () C:\ProgramData\PeoplePC Online
2014-12-27 11:29 - 2014-12-27 21:38 - 01592736 _____ () C:\Windows\WindowsUpdate (1).log
2014-12-27 11:19 - 2014-12-27 22:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PeoplePC Online
2014-12-27 11:19 - 2014-12-27 22:06 - 00000000 ____D () C:\Program Files (x86)\PeoplePC Accelerated
2014-12-27 11:19 - 2014-12-27 11:19 - 00002205 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\PeoplePC Online.LNK
2014-12-27 11:19 - 2014-12-27 11:19 - 00002199 _____ () C:\Users\Public\Desktop\PeoplePC Online.LNK
2014-12-27 11:14 - 2009-10-05 23:11 - 00042496 _____ (LSI Corporation) C:\Windows\agrdel64.exe
2014-12-27 11:14 - 2009-06-09 00:28 - 00064000 _____ (LSI Corporation) C:\Windows\agrsmdel.exe
2014-12-27 11:14 - 2009-03-27 05:12 - 00014848 _____ (LSI Corporation) C:\Windows\system32\agrsco64.dll
2014-12-27 11:11 - 2014-12-27 11:11 - 00000000 ____D () C:\Windows.old
2014-12-27 10:20 - 2014-12-27 22:11 - 00000000 ____D () C:\Users\TimandDoris\AppData\Local\Adobe
2014-12-27 10:11 - 2013-02-28 22:58 - 00058144 _____ () C:\Windows\SysWOW64\PPCOUNIN.exe
2014-12-27 10:11 - 2013-02-28 19:05 - 00061440 _____ () C:\Windows\SysWOW64\ppcpanel.cpl
2014-12-27 10:10 - 2014-12-27 22:06 - 00000000 ____D () C:\Program Files (x86)\PeoplePC
2014-12-27 10:03 - 2014-12-28 16:04 - 00000000 ____D () C:\Users\TimandDoris\AppData\Local\Hewlett-Packard
2014-12-27 10:00 - 2014-12-27 22:06 - 00000000 ____D () C:\ProgramData\HP Photo Creations
2014-12-27 10:00 - 2014-12-27 22:06 - 00000000 ____D () C:\Program Files (x86)\HP Photo Creations
2014-12-27 10:00 - 2014-12-27 10:00 - 00001105 _____ () C:\Users\Public\Desktop\HP Photo Creations.lnk
2014-12-27 10:00 - 2014-12-27 10:00 - 00000000 ____D () C:\Users\TimandDoris\AppData\Roaming\HpUpdate
2014-12-27 09:59 - 2015-01-05 10:50 - 00000000 ____D () C:\ProgramData\HP
2014-12-27 09:59 - 2014-12-27 22:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2014-12-27 09:59 - 2014-12-27 22:06 - 00000000 ____D () C:\Program Files (x86)\HP
2014-12-27 09:59 - 2014-12-27 09:59 - 00002244 _____ () C:\Users\Public\Desktop\HP Deskjet 1000 J110 series.lnk
2014-12-27 09:59 - 2014-12-27 09:59 - 00001202 _____ () C:\Users\Public\Desktop\Shop for Supplies - HP Deskjet 1000 J110 series.lnk
2014-12-27 09:58 - 2014-12-27 22:05 - 00000000 ____D () C:\Program Files\HP
2014-12-27 09:57 - 2014-12-27 22:11 - 00000000 ____D () C:\Users\TimandDoris\AppData\Local\HP
2014-12-27 09:52 - 2014-12-31 05:24 - 00000000 ____D () C:\ProgramData\Adobe
2014-12-27 09:52 - 2014-12-27 22:05 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-12-27 09:52 - 2014-12-27 09:52 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
2014-12-27 09:52 - 2014-12-27 09:52 - 00002022 _____ () C:\Users\Public\Desktop\Adobe Reader 9.lnk
2014-12-27 09:42 - 2014-12-27 22:11 - 00000000 ____D () C:\Users\TimandDoris\AppData\Local\CyberLink
2014-12-27 09:42 - 2014-12-27 22:06 - 00000000 ____D () C:\Users\Public\Documents\CyberLink
2014-12-27 09:42 - 2014-12-27 22:06 - 00000000 ____D () C:\Users\Public\CyberLink
2014-12-27 09:42 - 2014-12-27 22:06 - 00000000 ____D () C:\ProgramData\CyberLink
2014-12-27 09:41 - 2014-12-27 22:05 - 00000000 ____D () C:\Program Files (x86)\CyberLink
2014-12-27 09:39 - 2014-12-27 22:06 - 00000000 ____D () C:\ProgramData\Temp
2014-12-27 09:39 - 2014-12-27 22:06 - 00000000 ____D () C:\ProgramData\install_clap
2014-12-27 09:38 - 2014-12-29 11:48 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2014-12-27 09:38 - 2014-12-27 09:38 - 00002225 _____ () C:\Users\TimandDoris\Desktop\HP Support Assistant.lnk
2014-12-27 09:37 - 2014-12-27 22:11 - 00000000 ____D () C:\Users\TimandDoris\AppData\Roaming\Hewlett-Packard
2014-12-27 09:34 - 2014-12-27 22:15 - 00000000 ____D () C:\Windows\System32\Tasks\Hewlett-Packard
2014-12-27 09:34 - 2014-12-27 22:06 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-12-27 09:32 - 2014-12-27 22:06 - 00000000 ____D () C:\ProgramData\{A5CCDB92-FA53-47D1-89E6-32B82D86621A}
2014-12-27 09:31 - 2014-12-27 09:31 - 01045776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSJET35.DLL
2014-12-27 09:31 - 2014-12-27 09:31 - 00368912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VBAR332.DLL
2014-12-27 09:31 - 2014-12-27 09:31 - 00252176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSRD2X35.DLL
2014-12-27 09:31 - 2014-12-27 09:31 - 00123664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSJINT35.DLL
2014-12-27 09:31 - 2014-12-27 09:31 - 00024848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSJTER35.DLL
2014-12-27 09:24 - 2014-12-27 22:11 - 00000000 ____D () C:\Users\TimandDoris\AppData\Roaming\hpqLog
2014-12-27 09:17 - 2014-12-27 22:06 - 00000000 ____D () C:\ProgramData\Package Cache
2014-12-27 09:14 - 2014-12-29 11:48 - 00000000 ____D () C:\Program Files (x86)\Hewlett-Packard
2014-12-27 09:13 - 2014-12-27 22:06 - 00000000 ____D () C:\ProgramData\Hewlett-Packard
2014-12-27 09:12 - 2014-12-27 22:07 - 00000000 ____D () C:\Windows\Options
2014-12-27 08:58 - 2013-02-28 22:58 - 00256288 _____ () C:\Windows\SysWOW64\PPCInfo.exe
2014-12-27 08:58 - 2013-02-28 22:58 - 00070432 _____ () C:\Windows\SysWOW64\unPPC6000.exe
2014-12-27 08:58 - 2013-02-28 22:58 - 00042784 _____ (PeoplePC, Inc.) C:\Windows\SysWOW64\ppcwebi.dll
2014-12-27 08:58 - 2013-02-28 22:58 - 00041592 _____ () C:\Windows\SysWOW64\PPCClean.exe
2014-12-27 08:58 - 2013-02-28 22:58 - 00029984 _____ () C:\Windows\SysWOW64\PopWait.exe
2014-12-27 08:58 - 2011-05-10 21:18 - 00073192 _____ (PeoplePC) C:\Windows\SysWOW64\unPPC.exe
2014-12-27 08:58 - 2011-05-10 21:03 - 01060864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFC71.DLL
2014-12-27 08:58 - 2011-05-10 21:03 - 00499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVCP71.DLL
2014-12-27 08:58 - 2011-05-10 21:03 - 00348160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVCR71.DLL
2014-12-27 08:58 - 2011-05-10 21:03 - 00089088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ATL71.dll
2014-12-27 08:58 - 2011-05-10 21:03 - 00084992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ATL70.dll
2014-12-27 08:58 - 2011-05-10 21:03 - 00034136 _____ () C:\Windows\SysWOW64\RegHero.exe
2014-12-27 08:58 - 2011-05-10 21:03 - 00000911 _____ () C:\Windows\SysWOW64\unPPC6000.exe.manifest
2014-12-27 08:58 - 2011-05-10 21:03 - 00000909 _____ () C:\Windows\SysWOW64\PPCClean.exe.manifest
2014-12-27 08:58 - 2011-05-10 21:03 - 00000907 _____ () C:\Windows\SysWOW64\RegHero.exe.manifest
2014-12-27 08:58 - 2011-05-10 21:03 - 00000903 _____ () C:\Windows\SysWOW64\unPPC.exe.manifest
2014-12-27 08:57 - 2014-12-27 22:11 - 00000000 ____D () C:\Users\TimandDoris\AppData\Roaming\Adobe
2014-12-27 08:57 - 2014-12-27 22:07 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2014-12-27 08:44 - 2014-12-27 08:44 - 00000000 ____D () C:\Users\TimandDoris\AppData\Local\VirtualStore
2014-12-24 13:50 - 2014-12-26 11:27 - 00000000 ____D () C:\AdwCleaner

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-07 05:56 - 2009-07-14 00:13 - 00785756 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-07 05:56 - 2009-07-13 23:45 - 00016768 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-01-07 05:56 - 2009-07-13 23:45 - 00016768 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-01-07 05:51 - 2009-07-14 00:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-07 05:51 - 2009-07-13 23:51 - 00077604 _____ () C:\Windows\setupact.log
2015-01-06 11:46 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\rescache
2015-01-06 05:19 - 2009-07-13 23:45 - 00267672 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-01-04 13:53 - 2010-11-21 02:17 - 00000000 ____D () C:\Program Files\Windows Journal
2015-01-04 13:53 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\SysWOW64\Dism
2015-01-04 13:53 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\Dism
2015-01-04 08:54 - 2009-07-14 00:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-01-02 03:36 - 2009-07-14 00:32 - 00000000 ____D () C:\Program Files\Windows Defender
2015-01-02 03:36 - 2009-07-14 00:32 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2015-01-02 03:36 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-01-01 13:48 - 2010-11-20 22:47 - 00012618 _____ () C:\Windows\PFRO.log
2014-12-31 16:45 - 2009-07-13 22:20 - 00000000 ____D () C:\Program Files\Common Files\System
2014-12-29 11:51 - 2009-07-13 23:51 - 00000000 _____ () C:\Windows\setuperr.log
2014-12-29 11:46 - 2014-04-06 04:45 - 00000000 _RSHD () C:\SYSTEM.SAV
2014-12-29 09:41 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-12-28 11:48 - 2010-11-21 02:06 - 00000000 ____D () C:\Windows\SysWOW64\winrm
2014-12-28 11:48 - 2010-11-21 02:06 - 00000000 ____D () C:\Windows\SysWOW64\WCN
2014-12-28 11:48 - 2010-11-21 02:06 - 00000000 ____D () C:\Windows\SysWOW64\sysprep
2014-12-28 11:48 - 2010-11-21 02:06 - 00000000 ____D () C:\Windows\SysWOW64\slmgr
2014-12-28 11:48 - 2010-11-21 02:06 - 00000000 ____D () C:\Windows\SysWOW64\Printing_Admin_Scripts
2014-12-28 11:48 - 2010-11-21 02:06 - 00000000 ____D () C:\Windows\system32\winrm
2014-12-28 11:48 - 2010-11-21 02:06 - 00000000 ____D () C:\Windows\system32\WCN
2014-12-28 11:48 - 2010-11-21 02:06 - 00000000 ____D () C:\Windows\system32\slmgr
2014-12-28 11:48 - 2010-11-21 02:06 - 00000000 ____D () C:\Windows\system32\Printing_Admin_Scripts
2014-12-28 11:48 - 2009-07-14 00:32 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-12-28 11:48 - 2009-07-14 00:32 - 00000000 ____D () C:\Program Files\Windows Photo Viewer
2014-12-28 11:48 - 2009-07-14 00:32 - 00000000 ____D () C:\Program Files (x86)\Windows Sidebar
2014-12-28 11:48 - 2009-07-14 00:32 - 00000000 ____D () C:\Program Files (x86)\Windows Photo Viewer
2014-12-28 11:48 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\SysWOW64\Setup
2014-12-28 11:48 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\SysWOW64\oobe
2014-12-28 11:48 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\SysWOW64\MUI
2014-12-28 11:48 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\SysWOW64\migwiz
2014-12-28 11:48 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\SysWOW64\com
2014-12-28 11:48 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\sysprep
2014-12-28 11:48 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\Setup
2014-12-28 11:48 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\oobe
2014-12-28 11:48 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\MUI
2014-12-28 11:48 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\migwiz
2014-12-28 11:48 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\com
2014-12-28 11:48 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\servicing
2014-12-28 11:47 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\IME
2014-12-28 00:56 - 2009-07-14 00:38 - 00025600 ___SH () C:\Windows\system32\config\BCD-Template.LOG
2014-12-28 00:56 - 2009-07-14 00:32 - 00028672 _____ () C:\Windows\system32\config\BCD-Template
2014-12-27 23:23 - 2009-07-14 00:32 - 00000000 ____D () C:\Windows\system32\restore
2014-12-27 22:25 - 2009-07-14 00:09 - 00000000 ____D () C:\Windows\System32\Tasks\WPD
2014-12-27 22:24 - 2011-02-11 15:19 - 00000000 __SHD () C:\Recovery
2014-12-27 22:24 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\system32\Recovery
2014-12-27 22:16 - 2009-07-13 22:20 - 00000000 ____D () C:\Windows\Registration
2014-12-27 22:12 - 2009-07-13 23:57 - 00001547 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2014-12-27 22:12 - 2009-07-13 23:46 - 00005157 _____ () C:\Windows\DtcInstall.log
2014-12-27 22:12 - 2009-07-13 22:20 - 00000000 __RHD () C:\Users\Default
2014-12-27 22:12 - 2009-07-13 22:20 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-12-27 22:12 - 2009-07-13 22:20 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-27 22:12 - 2009-07-13 22:20 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
2014-12-27 22:12 - 2009-07-13 22:20 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-27 22:05 - 2009-07-13 22:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-12-27 22:02 - 2009-07-13 22:20 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-12-27 21:58 - 2010-11-21 02:17 - 00000000 ____D () C:\Windows\CSC

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-01-04 15:23

==================== End Of Log ============================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-01-2015
Ran by TimandDoris at 2015-01-07 09:28:02
Running from C:\Users\TimandDoris\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 9.0.124.0 - Adobe Systems Incorporated)
Adobe Reader 9.3 (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-A93000000001}) (Version: 9.3.0 - Adobe Systems Incorporated)
AMD Catalyst Install Manager (HKLM\...\{00DEA78C-D2CA-635C-D0FD-96B9F895116A}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
AMD Quick Stream (HKLM\...\{E9EED4AE-682B-4501-9574-D09A21717599}_is1) (Version: 3.4.4.2 - AppEx Networks)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.0.2208 - AVAST Software)
Bejeweled 2 Deluxe (HKLM-x32\...\Bejeweled 2 Deluxe) (Version:  - PopCap Games)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.2.3212 - CyberLink Corp.)
Free Download Manager 3.9.4 (HKLM-x32\...\Free Download Manager_is1) (Version:  - FreeDownloadManager.ORG)
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Deskjet 1000 J110 series Basic Device Software (HKLM\...\{883B114D-BD3E-498F-9DAD-5E4A8E1C43BA}) (Version: 22.50.231.0 - Hewlett-Packard Co.)
HP Deskjet 1000 J110 series Help (HKLM-x32\...\{DDDFCC77-7F9C-45E9-B38E-721BA599BA0C}) (Version: 140.0.65.65 - Hewlett Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.3781 - HP Photo Creations Powered by RocketLife)
HP SoftPaq Download Manager (HKLM-x32\...\{49524B48-4FE9-4A62-A9FD-1F2258DF5489}) (Version: 3.4.12.0 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{3AF15EEA-8EDF-4393-BB6C-CF8A9986486A}) (Version: 7.3.35.20 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}) (Version: 5.002.006.003 - Hewlett-Packard)
HydraVision (x32 Version: 4.2.252.0 - Advanced Micro Devices, Inc.) Hidden
Intel® PROSet/Wireless Software (HKLM-x32\...\{828af006-cb5e-4d60-957a-523098a1b0f8}) (Version: 16.1.3 - Intel Corporation)
LSI USB 2.0 Soft Modem (HKLM\...\LSI Soft Modem) (Version: 2.2.98 - LSI Corporation)
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Peggle Deluxe (HKLM-x32\...\Peggle Deluxe) (Version:  - PopCap Games)
Peggle Nights (HKLM-x32\...\Peggle Nights) (Version:  - PopCap Games)
PeoplePC Accelerated (HKLM-x32\...\{B6B3DBA6-346F-4D06-B4C8-327F48AA701D}) (Version: 6.1 - PeoplePC)
PeoplePC Online (HKLM-x32\...\PeoplePC Online) (Version: 8.5.0.0 - PeoplePC, Inc)
PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.74.815.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7004 - Realtek Semiconductor Corp.)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

==================== Restore Points  =========================

30-12-2014 12:58:02 Windows Update
31-12-2014 15:55:37 Windows Update
01-01-2015 11:26:18 avast! antivirus system restore point
02-01-2015 03:00:20 Windows Update
02-01-2015 09:00:15 Windows Update
02-01-2015 22:33:15 Windows Update
03-01-2015 13:33:37 Windows Update
04-01-2015 09:23:53 Windows Update
05-01-2015 18:37:05 Windows Update
06-01-2015 06:19:34 Installed PeoplePC Accelerated
06-01-2015 09:20:48 Windows Update
06-01-2015 18:58:05 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-13 21:34 - 2009-06-10 16:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0B4756E8-4E34-4067-B3BC-6A09DE4F5A7E} - System32\Tasks\{616EDF91-64E7-4D01-A2BF-B8CFFCC97479} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {1276466F-5D69-4144-B469-CE067F53D21A} - System32\Tasks\{60A507D2-E125-46CB-8CDF-E89AB7816659} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {183B8A9C-3DD1-47A5-A56B-083290DE10A4} - System32\Tasks\{5BDB2397-491F-4F5C-8BE6-9D59E9DBD448} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {1DB15AB1-BE22-4711-B559-657893AF9FBC} - System32\Tasks\{4153925E-FBA7-470E-944D-BA8352057A7D} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {20A97848-F372-4DE4-AD04-6020E174FE2D} - System32\Tasks\{5CE53EAF-030F-4271-9FE4-CCE13F83A52D} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {217DE258-8B87-48A1-A189-842A524B4357} - System32\Tasks\{03A567AE-8AE9-482F-B725-09BCBCA1F2F2} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {2678CB36-D7B5-4A7C-BB53-639F56D3C159} - System32\Tasks\{AA54CE3F-A18A-4660-84B5-ED7BC7A1B042} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {28C55637-5564-40B7-B06F-227079BAB364} - System32\Tasks\{53ACB374-8BBF-4BD7-8700-F81E05455DAF} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {36029A5E-51B8-469A-AFFF-1C91364B02E6} - System32\Tasks\{CDFED743-673C-4C5C-913C-BB82B8A3C0D5} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {3AE97C1B-80DA-40BF-B79C-4F0EEF782F8A} - System32\Tasks\{A2A4584A-CFC8-42B8-822C-22E54D3F58A0} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {3D410B86-E6FF-4A7A-9522-C271AD4835D7} - System32\Tasks\{F385EE6E-7AEA-4AC6-BF20-B02DC9908708} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {4218C3B7-2B97-431B-9D55-0CCAD90158C1} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-08-29] (Hewlett-Packard Company)
Task: {4ECD2DB9-968B-44F2-81CD-7DE161EBE344} - System32\Tasks\{7E36465A-4896-417C-B060-A923B14CC92A} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {513B12F9-86A7-4187-BFEB-4373403EA2E9} - System32\Tasks\{4E29AD67-F4AE-4A8B-9E5D-FFF766E03935} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {52BE7540-D4D7-4F14-BF16-57D71A8A0C3E} - System32\Tasks\{BCA56DBB-AC8A-48CD-B440-1B111801627C} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {590448E4-95C3-45E7-A82E-D67A833B1A66} - System32\Tasks\{C910D960-F279-4A30-8000-D4B7258C069C} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {6156D4F3-6FEA-4C13-B5F5-3CA872AE2562} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2012-11-29] (Hewlett-Packard Company)
Task: {63E489FC-DBC3-4C50-86D0-16F6990D5771} - System32\Tasks\{95399CA5-50A2-447A-9C57-8EC6B4762611} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {63F3CEFC-26BA-49CA-B542-5957655B132F} - System32\Tasks\{A28B0A53-9291-494C-BD54-3D9451803B58} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {65E0FBB0-0019-4278-A730-4C133D2CE8C8} - System32\Tasks\{D79CB561-B83C-4AAE-B45F-98F66AAA7248} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {68B5BEDC-E518-44BC-A867-47AA8ECFC9C7} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-01-01] (AVAST Software)
Task: {6E1DF7B1-C3DB-4644-AADA-315FB76D3CB4} - System32\Tasks\{608AEEA5-A608-4ACE-A13B-F54987B5E179} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {73DCD1B9-5E14-4C00-9D8D-8E6D46726FCE} - System32\Tasks\{8D91B3B1-1997-4134-843F-D7C8C28ED804} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {74CF4D26-14F5-462F-AFDC-D08130A54B89} - System32\Tasks\{9F18F2C0-576E-4E1E-B4C0-0C48F70F1035} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {8221FBD0-1CE0-4B98-8CCD-84C8CFAF2F8D} - System32\Tasks\{E0966ABC-DEC0-465F-9147-5F7C83487F43} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {8666B0B8-0435-4ECD-8DE6-59CF1789CB78} - System32\Tasks\{C5E80178-16B0-4493-AD9F-5F27D5875FEE} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {87AEC1A1-97FB-430D-9362-16C6E8C99DF7} - System32\Tasks\{B0433CCB-4F4E-42BA-B01F-5867E1535BB7} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {9DD500B3-FFFC-4D14-884A-BDC346D7FA01} - System32\Tasks\{AF9F26E1-77AA-4C98-9368-16F481641D72} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {A7A96993-99FC-4D2D-8301-E36E92BEF1AF} - System32\Tasks\{E31FB1E2-6662-4413-97C4-6F6D1E2AFB9E} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {AEFC0A88-394E-48C1-8CF3-FF72DC25AB31} - System32\Tasks\{5CC5B9C0-1945-4A53-A90A-DC1722BECD86} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {B2CE7F5D-D801-49FA-A19B-A0E7A5422E9A} - System32\Tasks\{FB5C5D2F-DB7F-49F8-A5EA-3BDB8A1F8199} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {B30A427C-655F-4087-A345-287C9A467E03} - System32\Tasks\{D831F046-0FBB-4630-968E-E8B6627F3D8E} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {BA98C381-956C-43CB-B47F-FB81501C6AB0} - System32\Tasks\{CF00C516-37FD-4C35-B378-72D3006ACC55} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {C1539ADB-19D8-4553-9A53-D266F8023217} - System32\Tasks\{0E439D00-FE78-4893-8C1C-1ACBCA7613FF} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {CE50AD69-CDB4-4977-A5E1-25D5067F5B57} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-08-29] (Hewlett-Packard Company)
Task: {D50B2130-7D38-43E5-AC66-2EC368D0C701} - System32\Tasks\{1DBB200F-CDA6-4D03-9CB7-F612E9720537} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {E0114ABB-5ED4-48E9-B419-509BCF695F81} - System32\Tasks\{18525255-5C67-41BD-9EAB-7BB5B9D9ACA6} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {E28AE16C-7858-4C4A-A605-6EF6E82755A0} - System32\Tasks\HPCeeScheduleForTimandDoris => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-13] (Hewlett-Packard)
Task: {EEE488C7-1A94-450D-A036-6D6ED8CCBC78} - System32\Tasks\{368D3E06-AE30-4336-B4CB-B03087A7020B} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {F70F4103-886F-45F7-BEEF-523206666183} - System32\Tasks\{2B97B3BD-02DB-4BD5-A279-FA8E20687AC1} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {F777CAE4-CDDE-4C24-A755-99A40C892ED2} - System32\Tasks\{B25A8C93-4947-479E-BA10-31F45F451CD1} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {F7A60570-5C9F-40A9-AF98-25C3512A3EE1} - System32\Tasks\{C84C01F4-4A78-4889-98E6-F2B0D5D213FB} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: {FF86FC88-EFBF-4CA7-AA10-B3A73DB46D78} - System32\Tasks\{585535D0-A122-4AFC-963E-2FA966C415F6} => C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOLink.exe [2013-02-28] ()
Task: C:\Windows\Tasks\HPCeeScheduleForTimandDoris.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe

==================== Loaded Modules (whitelisted) =============

2013-08-30 19:47 - 2013-08-30 19:47 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2014-12-27 10:11 - 2013-02-28 22:57 - 00172832 _____ () C:\Program Files (x86)\PeoplePC\ISP8500\Browser\Bartshel.exe
2014-12-27 10:11 - 2013-02-28 22:58 - 00087840 _____ () C:\Program Files (x86)\PeoplePC\ISP8500\Browser\PPShared.exe
2013-08-30 19:47 - 2013-08-30 19:47 - 00102400 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2013-06-05 15:51 - 2013-06-05 15:51 - 00098304 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\BrandingNet4.dll
2009-08-18 12:30 - 2009-08-18 12:30 - 00985143 _____ () C:\Program Files (x86)\PeoplePC Accelerated\PeoplePC.exe
2015-01-01 11:28 - 2015-01-01 11:28 - 02900480 _____ () C:\Program Files\AVAST Software\Avast\defs\14110700\algo.dll
2015-01-01 11:27 - 2015-01-01 11:28 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-12-27 10:11 - 2013-02-28 22:57 - 00031008 _____ () C:\Program Files (x86)\PeoplePC\ISP8500\bin\PPCResEnglish.dll
2014-12-27 10:11 - 2013-02-28 22:57 - 00100640 _____ () C:\Program Files (x86)\PeoplePC\ISP8500\bin\PaceSync.dll
2014-12-27 10:11 - 2013-02-28 22:57 - 00102176 _____ () C:\Program Files (x86)\PeoplePC\ISP8500\Bin\ISPUtil8.dll
2014-12-27 10:11 - 2013-03-01 22:40 - 00293152 _____ () C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCInstall.dll
2014-12-27 10:11 - 2013-02-28 22:58 - 00128800 _____ () C:\Program Files (x86)\PeoplePC\ISP8500\SmartDialer\Dll\Dialer.dll
2014-12-27 10:11 - 2013-02-28 22:58 - 00041760 _____ () C:\Program Files (x86)\PeoplePC\ISP8500\SmartDialer\Users\Users.dll
2014-12-27 10:11 - 2013-02-28 22:58 - 00063776 _____ () C:\Program Files (x86)\PeoplePC\ISP8500\SmartDialer\Locations\Locations.dll
2014-12-27 10:11 - 2013-02-28 22:58 - 00132896 _____ () C:\Program Files (x86)\PeoplePC\ISP8500\SmartDialer\Phonebooks\Phonebook.dll
2014-12-27 10:11 - 2013-02-28 22:57 - 00073504 _____ () C:\Program Files (x86)\PeoplePC\ISP8500\Bin\PPCOXML.dll
2014-12-27 10:11 - 2013-02-28 22:57 - 00051488 _____ () C:\Program Files (x86)\PeoplePC\ISP8500\Bin\XPRas.dll
2014-12-27 10:11 - 2013-02-28 22:58 - 00090400 _____ () C:\Program Files (x86)\PeoplePC\ISP8500\SmartDialer\CallRecordManager\CallRecord.dll
2014-12-27 10:11 - 2013-02-28 22:57 - 00063776 _____ () C:\Program Files (x86)\PeoplePC\ISP8500\bin\PPCOfso.dll
2014-12-27 10:11 - 2013-02-28 22:57 - 00014112 _____ () C:\Program Files (x86)\PeoplePC\ISP8500\bin\IniMod.dll
2009-08-18 12:31 - 2009-08-18 12:31 - 00065536 _____ () C:\Program Files (x86)\PeoplePC Accelerated\zlib.pyd
2009-08-18 12:30 - 2009-08-18 12:30 - 00049212 _____ () C:\Program Files (x86)\PeoplePC Accelerated\_socket.pyd
2009-08-18 12:30 - 2009-08-18 12:30 - 00057401 _____ () C:\Program Files (x86)\PeoplePC Accelerated\_sre.pyd
2009-08-18 12:30 - 2009-08-18 12:30 - 00020539 _____ () C:\Program Files (x86)\PeoplePC Accelerated\select.pyd
2009-08-18 12:31 - 2009-08-18 12:31 - 00426136 _____ () C:\Program Files (x86)\PeoplePC Accelerated\iictranscoder.pyd
2009-08-18 12:31 - 2009-08-18 12:31 - 00102549 _____ () C:\Program Files (x86)\PeoplePC Accelerated\prldecoder.pyd
2009-08-18 12:31 - 2009-08-18 12:31 - 00077981 _____ () C:\Program Files (x86)\PeoplePC Accelerated\binDecompressor.pyd
2009-08-18 12:30 - 2009-08-18 12:30 - 00622651 _____ () C:\Program Files (x86)\PeoplePC Accelerated\_bsddb.pyd
2009-08-18 12:31 - 2009-08-18 12:31 - 00020480 _____ () C:\Program Files (x86)\PeoplePC Accelerated\cse.pyd
2014-12-28 19:17 - 2014-11-13 11:48 - 00106496 _____ () C:\Program Files (x86)\Free Download Manager\fdmumsp.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

========================= Accounts: ==========================

Administrator (S-1-5-21-3244274600-613166147-918020329-500 - Administrator - Disabled)
Guest (S-1-5-21-3244274600-613166147-918020329-501 - Limited - Disabled)
TimandDoris (S-1-5-21-3244274600-613166147-918020329-1000 - Administrator - Enabled) => C:\Users\TimandDoris

==================== Faulty Device Manager Devices =============

Name: Universal Serial Bus (USB) Controller
Description: Universal Serial Bus (USB) Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: SM Bus Controller
Description: SM Bus Controller
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

==================== Event log errors: =========================

Application errors:
==================
Error: (01/07/2015 05:51:48 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/06/2015 11:16:30 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/06/2015 06:13:30 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/06/2015 05:54:15 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/06/2015 05:19:15 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/05/2015 01:52:36 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/05/2015 01:40:14 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/04/2015 04:30:31 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/04/2015 01:54:01 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/04/2015 01:52:57 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

System errors:
=============
Error: (01/06/2015 11:51:01 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (01/06/2015 05:53:00 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/06/2015 05:53:00 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/06/2015 05:53:00 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/06/2015 05:53:00 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/06/2015 05:53:00 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/06/2015 05:53:00 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/06/2015 05:52:59 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/06/2015 05:52:59 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (01/06/2015 05:52:59 AM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1068netprofm{A47979D2-C419-11D9-A5B4-001185AD2B89}

Microsoft Office Sessions:
=========================
Error: (01/07/2015 05:51:48 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/06/2015 11:16:30 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/06/2015 06:13:30 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/06/2015 05:54:15 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/06/2015 05:19:15 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/05/2015 01:52:36 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/05/2015 01:40:14 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/04/2015 04:30:31 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/04/2015 01:54:01 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/04/2015 01:52:57 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

CodeIntegrity Errors:
===================================
  Date: 2014-12-27 10:55:18.697
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\agrsm64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-12-27 10:55:18.657
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\agrsm64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-12-27 10:53:34.267
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\agrsm64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-12-27 10:53:34.227
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\agrsm64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-12-27 10:53:19.157
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\agrsm64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-12-27 10:53:19.117
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\agrsm64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-12-27 10:08:37.972
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\agrsm64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-12-27 10:08:37.894
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\agrsm64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-12-27 09:50:22.655
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\agrsm64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-12-27 09:50:22.615
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\agrsm64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

Processor: AMD A4-5000 APU with Radeon™ HD Graphics
Percentage of memory in use: 74%
Total physical RAM: 1477.84 MB
Available physical RAM: 378.89 MB
Total Pagefile: 2955.67 MB
Available Pagefile: 938.07 MB
Total Virtual: 8192 MB
Available Virtual: 8191.84 MB

==================== Drives ================================

Drive c: (Windows ) (Fixed) (Total:919.25 GB) (Free:862.76 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (HP_RECOVERY) (Fixed) (Total:11.16 GB) (Free:10.69 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (HP_TOOLS) (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: A6D0837A)
Partition 1: (Active) - (Size=1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=919.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=11.2 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=100 MB) - (Type=0C)

==================== End Of Log ============================ will follow with next batch..Tim



#11 bonezz

bonezz
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 07 January 2015 - 01:59 PM

Hello Marius, 2nd batch::

GMER 2.1.19357 - http://www.gmer.net
Rootkit scan 2015-01-07 10:16:41
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\0000006a WDC_WD10 rev.80.0 931.51GB
Running: 8n8qkt4s.exe; Driver: C:\Users\TIMAND~1\AppData\Local\Temp\ufldipow.sys

---- Threads - GMER 2.1 ----

Thread  C:\Windows\System32\svchost.exe [992:676]                                                                                                    000007fef5535fd0
Thread  C:\Windows\System32\svchost.exe [120:1464]                                                                                                   000007fefa2b59a0
Thread  C:\Windows\System32\svchost.exe [120:3028]                                                                                                   000007fef71120c0
Thread  C:\Windows\System32\svchost.exe [120:3044]                                                                                                   000007fef71126a8
Thread  C:\Windows\System32\svchost.exe [120:388]                                                                                                    000007fef71129dc
Thread  C:\Windows\System32\svchost.exe [120:3744]                                                                                                   000007fef7f544e0
Thread  C:\Windows\System32\svchost.exe [120:3880]                                                                                                   000007fef81788f8
Thread  C:\Windows\system32\svchost.exe [412:1632]                                                                                                   000007fef92d1e00
Thread  C:\Windows\system32\svchost.exe [412:1636]                                                                                                   000007fef9231a50
Thread  C:\Windows\system32\svchost.exe [412:1544]                                                                                                   000007fefd5e1a70
Thread  C:\Windows\system32\svchost.exe [412:2516]                                                                                                   000007fefd5e1a70
Thread  C:\Windows\system32\svchost.exe [412:2908]                                                                                                   000007fef75c506c
Thread  C:\Windows\system32\svchost.exe [412:2912]                                                                                                   000007fef7661c20
Thread  C:\Windows\system32\svchost.exe [412:2920]                                                                                                   000007fef7661c20
Thread  C:\Windows\system32\svchost.exe [412:3336]                                                                                                   000007fef8f384d8
Thread  C:\Windows\system32\svchost.exe [412:3392]                                                                                                   000007fef6a523a8
Thread  C:\Windows\system32\svchost.exe [412:3400]                                                                                                   000007fef8f70d00
Thread  C:\Windows\system32\svchost.exe [412:3408]                                                                                                   000007fef67d9498
Thread  C:\Windows\system32\svchost.exe [412:3676]                                                                                                   000007fef80e5124
Thread  C:\Windows\system32\svchost.exe [412:3628]                                                                                                   000007fef7c317f8
Thread  C:\Windows\system32\svchost.exe [412:4364]                                                                                                   000007fef7c317f8
Thread  C:\Windows\system32\svchost.exe [412:4112]                                                                                                   000007feefb3e1c4
Thread  C:\Windows\system32\svchost.exe [412:6392]                                                                                                   000007fef5cb5170
Thread  C:\Windows\system32\svchost.exe [412:5408]                                                                                                   000007feefb3e1c4
Thread  C:\Windows\system32\svchost.exe [412:3580]                                                                                                   000007fefb304164
Thread  C:\Windows\system32\svchost.exe [412:6760]                                                                                                   000007fef646a978
Thread  C:\Windows\system32\svchost.exe [412:6964]                                                                                                   000007fef646a978
Thread  C:\Windows\system32\svchost.exe [412:5336]                                                                                                   000007fefb161ab0
Thread  C:\Windows\system32\svchost.exe [412:5924]                                                                                                   000007fef820b68c
Thread  C:\Windows\system32\svchost.exe [1068:4452]                                                                                                  000007fef33dd3c8
Thread  C:\Windows\system32\svchost.exe [1068:5296]                                                                                                  000007fef33dd3c8
Thread  C:\Windows\system32\svchost.exe [1068:696]                                                                                                   000007fef33dd3c8
Thread  C:\Windows\system32\svchost.exe [1068:5404]                                                                                                  000007fef33dd3c8
Thread  C:\Windows\system32\svchost.exe [1352:3960]                                                                                                  000007fef5cb5170
Thread  C:\Windows\system32\WLANExt.exe [1476:1512]                                                                                                  0000000074e71dbc
Thread  C:\Windows\system32\WLANExt.exe [1476:1516]                                                                                                  000007fef9ed8c60
Thread  C:\Windows\system32\WLANExt.exe [1476:1524]                                                                                                  0000000074e71dbc
Thread  C:\Windows\system32\WLANExt.exe [1476:1680]                                                                                                  000007fef9cf2f9c
Thread  C:\Windows\system32\WLANExt.exe [1476:1976]                                                                                                  000007fef9a646e4
Thread  C:\Windows\system32\WLANExt.exe [1476:2052]                                                                                                  000007fef9a64700
Thread  C:\Windows\system32\WLANExt.exe [1476:2056]                                                                                                  000007fef9a646c8
Thread  C:\Windows\system32\WLANExt.exe [1476:2060]                                                                                                  000007fef9cf2f9c
Thread  C:\Windows\System32\spoolsv.exe [1672:3964]                                                                                                  000007fef5b810c8
Thread  C:\Windows\System32\spoolsv.exe [1672:2288]                                                                                                  000007fef57d6144
Thread  C:\Windows\System32\spoolsv.exe [1672:4092]                                                                                                  000007fef5535fd0
Thread  C:\Windows\System32\spoolsv.exe [1672:2856]                                                                                                  000007fef5b73438
Thread  C:\Windows\System32\spoolsv.exe [1672:3584]                                                                                                  000007fef55363ec
Thread  C:\Windows\System32\spoolsv.exe [1672:3568]                                                                                                  000007fef6235e5c
Thread  C:\Windows\System32\spoolsv.exe [1672:3864]                                                                                                  000007fef2e75074
Thread  C:\Windows\system32\svchost.exe [1712:1440]                                                                                                  000007fef89a35c0
Thread  C:\Windows\system32\svchost.exe [1712:3004]                                                                                                  000007fef89a5600
Thread  C:\Windows\system32\svchost.exe [1712:3056]                                                                                                  000007fef6d62940
Thread  C:\Windows\system32\svchost.exe [1712:2872]                                                                                                  000007fef77d2888
Thread  C:\Windows\system32\svchost.exe [1712:5240]                                                                                                  000007fef77d2a40
Thread  C:\Windows\system32\svchost.exe [3472:3504]                                                                                                  000007fef6198470
Thread  C:\Windows\system32\svchost.exe [3472:3508]                                                                                                  000007fef61a2418
Thread  C:\Windows\system32\svchost.exe [3472:1080]                                                                                                  000007fef2fd65c4
Thread  C:\Windows\system32\svchost.exe [3472:2588]                                                                                                  000007fef5535fd0
Thread  C:\Windows\system32\svchost.exe [3472:4296]                                                                                                  000007fef55363ec
Thread  C:\Windows\system32\taskhost.exe [2332:2804]                                                                                                 000007fef7771f38
Thread  C:\Windows\system32\taskhost.exe [2332:3812]                                                                                                 000007fef6d22740
Thread  C:\Windows\system32\taskhost.exe [2332:3956]                                                                                                 000007fefb921010
Thread  C:\Program Files (x86)\PeoplePC\ISP8500\Browser\PPShared.exe [984:3756]                                                                      00000000749e32fb
Thread  C:\Program Files\Windows Media Player\wmpnetwk.exe [2416:5196]                                                                               000007fefc0e2bf8

---- Registry - GMER 2.1 ----

Reg     HKLM\SYSTEM\CurrentControlSet\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{D1653EE6-8A09-49BB-A536-53D21EE85AEA}\Connection@Name  6TO4 Adapter
Reg     HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{2B07FAA1-8217-4E30-B5EC-FD4501E773BB}\Linkage@Bind     \Device\{2C453EB1-35D0-45B3-B6DF-AAA5664465FB}?\Device\{51B3F56D-81CD-415E-B9A7-AD09780E67CF}?\Device\{D72ADC4C-62CE-4F50-B579-C3B86079F641}?\Device\{D1653EE6-8A09-49BB-A536-53D21EE85AEA}?
Reg     HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{2B07FAA1-8217-4E30-B5EC-FD4501E773BB}\Linkage@Route    "{2C453EB1-35D0-45B3-B6DF-AAA5664465FB}"?"{51B3F56D-81CD-415E-B9A7-AD09780E67CF}"?"{D72ADC4C-62CE-4F50-B579-C3B86079F641}"?"{D1653EE6-8A09-49BB-A536-53D21EE85AEA}"?
Reg     HKLM\SYSTEM\CurrentControlSet\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{2B07FAA1-8217-4E30-B5EC-FD4501E773BB}\Linkage@Export   \Device\TCPIP6TUNNEL_{2C453EB1-35D0-45B3-B6DF-AAA5664465FB}?\Device\TCPIP6TUNNEL_{51B3F56D-81CD-415E-B9A7-AD09780E67CF}?\Device\TCPIP6TUNNEL_{D72ADC4C-62CE-4F50-B579-C3B86079F641}?\Device\TCPIP6TUNNEL_{D1653EE6-8A09-49BB-A536-53D21EE85AEA}?
Reg     HKLM\SYSTEM\CurrentControlSet\services\iphlpsvc\Parameters\6To4\{D1653EE6-8A09-49BB-A536-53D21EE85AEA}@InterfaceName                         6TO4 Adapter
Reg     HKLM\SYSTEM\CurrentControlSet\services\iphlpsvc\Parameters\6To4\{D1653EE6-8A09-49BB-A536-53D21EE85AEA}@ReusableType                          0
Reg     HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Epoch@Epoch                                                                              310
Reg     HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Epoch2@Epoch                                                                             134

---- EOF - GMER 2.1 ----  .
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 12/27/2014 10:24:24 PM
System Uptime: 1/5/2015 4:38:54 AM (2 hours ago)
.
Motherboard: Hewlett-Packard |  | 2171
Processor: AMD A4-5000 APU with Radeon™ HD Graphics     | P0 | 1500/100mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 919 GiB total, 863.76 GiB free.
D: is FIXED (NTFS) - 11 GiB total, 10.686 GiB free.
E: is FIXED (FAT32) - 0 GiB total, 0.073 GiB free.
F: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID:
Description: Universal Serial Bus (USB) Controller
Device ID: PCI\VEN_1022&DEV_7814&SUBSYS_2171103C&REV_01\3&11583659&0&80
Manufacturer:
Name: Universal Serial Bus (USB) Controller
PNP Device ID: PCI\VEN_1022&DEV_7814&SUBSYS_2171103C&REV_01\3&11583659&0&80
Service:
.
Class GUID:
Description: SM Bus Controller
Device ID: PCI\VEN_1022&DEV_780B&SUBSYS_2171103C&REV_3A\3&11583659&0&A0
Manufacturer:
Name: SM Bus Controller
PNP Device ID: PCI\VEN_1022&DEV_780B&SUBSYS_2171103C&REV_3A\3&11583659&0&A0
Service:
.
==== System Restore Points ===================
.
RP5: 12/29/2014 11:43:29 AM - Installed Realtek Ethernet Controller Driver
RP6: 12/29/2014 4:13:55 PM - Windows Modules Installer
RP7: 12/29/2014 6:00:18 PM - Windows Update
RP8: 12/30/2014 12:58:02 PM - Windows Update
RP9: 12/31/2014 3:55:37 PM - Windows Update
RP10: 1/1/2015 11:26:18 AM - avast! antivirus system restore point
RP11: 1/2/2015 3:00:20 AM - Windows Update
RP12: 1/2/2015 9:00:15 AM - Windows Update
RP13: 1/2/2015 10:33:15 PM - Windows Update
RP14: 1/3/2015 1:33:37 PM - Windows Update
RP15: 1/4/2015 9:23:53 AM - Windows Update
.
==== Installed Programs ======================
.
Adobe Flash Player ActiveX
Adobe Reader 9.3
AMD Accelerated Video Transcoding
AMD Catalyst Control Center
AMD Catalyst Install Manager
AMD Drag and Drop Transcoding
AMD Fuel
AMD Media Foundation Decoders
AMD Problem Report Wizard
AMD Quick Stream
AMD Steady Video Plug-In
Avast Free Antivirus
Bejeweled 2 Deluxe
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-utility64
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
CyberLink PowerDVD 12
Free Download Manager 3.9.4
Hewlett-Packard ACLM.NET v1.2.2.3
HP Customer Experience Enhancements
HP Deskjet 1000 J110 series Basic Device Software
HP Deskjet 1000 J110 series Help
HP Photo Creations
HP SoftPaq Download Manager
HP Support Assistant
HP Update
HydraVision
Intel® PRO/Wireless Driver
Intel® PROSet/Wireless Software
Intel® PROSet/Wireless WiFi Software
LSI USB 2.0 Soft Modem
Malwarebytes Anti-Malware version 2.0.4.1028
Microsoft .NET Framework 4.5
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable (x64)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727
Peggle Deluxe
Peggle Nights
PeoplePC Online
PX Profile Update
Realtek Ethernet Controller Driver
Realtek High Definition Audio Driver
Security Update for Microsoft .NET Framework 4.5 (KB2978128)
.
==== Event Viewer Messages From Past Week ========
.
12/30/2014 6:27:54 AM, Error: Schannel [36887]  - The following fatal alert was received: 40.
12/29/2014 6:02:36 PM, Error: Microsoft-Windows-WindowsUpdateClient [20]  - Installation Failure: Windows failed to install the following update with error 0x800f0902: Update for Internet Explorer 8 Compatibility View List for Windows 7 for x64-based Systems (KB2598845).
12/29/2014 4:10:35 PM, Error: Service Control Manager [7034]  - The UnThreat Service Manager service terminated unexpectedly.  It has done this 1 time(s).
1/5/2015 5:11:58 AM, Error: Service Control Manager [7011]  - A timeout (60000 milliseconds) was reached while waiting for a transaction response from the MBAMScheduler service.
1/4/2015 5:58:01 AM, Error: Microsoft-Windows-LanguagePackSetup [1001]  - Failed to start language pack setup wizard. Please restart the system and try running the wizard again.
1/4/2015 5:57:41 AM, Error: Service Control Manager [7023]  -
1/4/2015 5:56:44 AM, Error: Service Control Manager [7034]  - The MBAMService service terminated unexpectedly.  It has done this 1 time(s).
1/4/2015 5:56:44 AM, Error: Service Control Manager [7034]  - The MBAMScheduler service terminated unexpectedly.  It has done this 1 time(s).
1/4/2015 5:56:44 AM, Error: Service Control Manager [7034]  - The CyberLink PowerDVD 12 Media Server Monitor Service service terminated unexpectedly.  It has done this 1 time(s).
1/4/2015 5:56:42 AM, Error: Service Control Manager [7031]  - The avast! Antivirus service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 5000 milliseconds: Restart the service.
1/4/2015 5:01:48 PM, Error: Service Control Manager [7034]  - The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly.  It has done this 1 time(s).
1/2/2015 8:24:57 AM, Error: Service Control Manager [7034]  - The CyberLink PowerDVD 12 Media Server Service service terminated unexpectedly.  It has done this 2 time(s).
.
==== End Of File ===========================
 



#12 bonezz

bonezz
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 07 January 2015 - 02:08 PM

Hello Marius, batch3::12:57:38.0552 0x04f4  TDSS rootkit removing tool 3.0.0.42 Dec 12 2014 00:35:20
12:57:51.0532 0x04f4  ============================================================
12:57:51.0532 0x04f4  Current date / time: 2015/01/07 12:57:51.0532
12:57:51.0532 0x04f4  SystemInfo:
12:57:51.0532 0x04f4 
12:57:51.0532 0x04f4  OS Version: 6.1.7601 ServicePack: 1.0
12:57:51.0532 0x04f4  Product type: Workstation
12:57:51.0532 0x04f4  ComputerName: HOMEPC
12:57:51.0532 0x04f4  UserName: TimandDoris
12:57:51.0532 0x04f4  Windows directory: C:\Windows
12:57:51.0532 0x04f4  System windows directory: C:\Windows
12:57:51.0532 0x04f4  Running under WOW64
12:57:51.0532 0x04f4  Processor architecture: Intel x64
12:57:51.0532 0x04f4  Number of processors: 4
12:57:51.0532 0x04f4  Page size: 0x1000
12:57:51.0532 0x04f4  Boot type: Normal boot
12:57:51.0532 0x04f4  ============================================================
12:57:52.0156 0x04f4  KLMD registered as C:\Windows\system32\drivers\20803155.sys
12:57:52.0998 0x04f4  System UUID: {174FA49B-63A5-3E30-1F90-C4D1DDFD4ADE}
12:57:54.0839 0x04f4  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:57:54.0854 0x04f4  ============================================================
12:57:54.0854 0x04f4  \Device\Harddisk0\DR0:
12:57:54.0854 0x04f4  MBR partitions:
12:57:54.0854 0x04f4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x200800
12:57:54.0854 0x04f4  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x201000, BlocksNum 0x72E7D800
12:57:54.0854 0x04f4  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x7307E800, BlocksNum 0x1653800
12:57:54.0854 0x04f4  \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x746D2000, BlocksNum 0x32000
12:57:54.0854 0x04f4  ============================================================
12:57:54.0870 0x04f4  C: <-> \Device\Harddisk0\DR0\Partition2
12:57:54.0901 0x04f4  D: <-> \Device\Harddisk0\DR0\Partition3
12:57:54.0917 0x04f4  E: <-> \Device\Harddisk0\DR0\Partition4
12:57:54.0917 0x04f4  ============================================================
12:57:54.0917 0x04f4  Initialize success
12:57:54.0917 0x04f4  ============================================================
12:58:31.0655 0x0318  ============================================================
12:58:31.0655 0x0318  Scan started
12:58:31.0655 0x0318  Mode: Manual;
12:58:31.0655 0x0318  ============================================================
12:58:31.0655 0x0318  KSN ping started
12:58:36.0850 0x0318  KSN ping finished: false
12:58:38.0254 0x0318  ================ Scan system memory ========================
12:58:38.0254 0x0318  System memory - ok
12:58:38.0254 0x0318  ================ Scan services =============================
12:58:38.0378 0x0318  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
12:58:38.0410 0x0318  1394ohci - ok
12:58:38.0472 0x0318  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
12:58:38.0503 0x0318  ACPI - ok
12:58:38.0534 0x0318  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
12:58:38.0534 0x0318  AcpiPmi - ok
12:58:38.0581 0x0318  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
12:58:38.0628 0x0318  adp94xx - ok
12:58:38.0644 0x0318  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
12:58:38.0659 0x0318  adpahci - ok
12:58:38.0675 0x0318  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
12:58:38.0722 0x0318  adpu320 - ok
12:58:38.0768 0x0318  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
12:58:38.0768 0x0318  AeLookupSvc - ok
12:58:38.0831 0x0318  [ D1E343BC00136CE03C4D403194D06A80, 94F2543164A2CEA179EDE53E1294EE24391A59CAEFF83BA5CE9385E8E686E89C ] AERTFilters     C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
12:58:38.0831 0x0318  AERTFilters - ok
12:58:38.0924 0x0318  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
12:58:38.0940 0x0318  AFD - ok
12:58:38.0971 0x0318  [ B65F8DBA54F251906BBE8611B5A0E7AB, 9ADE347CB4E7C33D668DAC79A316C97C78D94D296B158F481F3E32F9DA4D647E ] AgereModemAudio C:\Program Files\LSI SoftModem\agr64svc.exe
12:58:38.0971 0x0318  AgereModemAudio - ok
12:58:39.0049 0x0318  [ A6AB6F0ACE87DA76B4C401813D18BE95, 6AE72E0F07DF2164A3198E14A6AE7E15F0B8EB467D2D68960A006E360DBBA891 ] AgereSoftModem  C:\Windows\system32\DRIVERS\agrsm64.sys
12:58:39.0112 0x0318  AgereSoftModem - ok
12:58:39.0127 0x0318  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
12:58:39.0143 0x0318  agp440 - ok
12:58:39.0174 0x0318  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
12:58:39.0174 0x0318  ALG - ok
12:58:39.0205 0x0318  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
12:58:39.0205 0x0318  aliide - ok
12:58:39.0236 0x0318  [ 13AE8D986A8D61FBAFAF5CD3F8B3B89C, 2FE02A9E974EAC0D7E7E4E454A56EAA2CFE9B6E78CA97716F5BB725AAF5E5594 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
12:58:39.0252 0x0318  AMD External Events Utility - ok
12:58:39.0268 0x0318  AMD FUEL Service - ok
12:58:39.0299 0x0318  [ C17BAFA60F941A1AF5C2B10D8632C409, 43B030E2571D5FC8F6B439C678C2A2261188945C65D6A83E8487E8084645C79A ] amdhub30        C:\Windows\system32\drivers\amdhub30.sys
12:58:39.0299 0x0318  amdhub30 - ok
12:58:39.0314 0x0318  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
12:58:39.0314 0x0318  amdide - ok
12:58:39.0330 0x0318  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
12:58:39.0346 0x0318  AmdK8 - ok
12:58:39.0954 0x0318  [ 1BF58E56CA271FEF678DC3A9996FAB0A, E4D93759E5D1022AF2A85DEDED79A1EAAE40403F671DE0307BB7F060813EE88D ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
12:58:40.0531 0x0318  amdkmdag - ok
12:58:40.0594 0x0318  [ 4DD3339D3818356145A4945C1B4CB4C5, 46DA51ACC72CEFAA7F5C8B9626FC6BA916D139BBC1D6B0C7B7E24822D5B4A02F ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
12:58:40.0625 0x0318  amdkmdap - ok
12:58:40.0640 0x0318  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
12:58:40.0656 0x0318  AmdPPM - ok
12:58:40.0687 0x0318  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
12:58:40.0703 0x0318  amdsata - ok
12:58:40.0718 0x0318  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
12:58:40.0750 0x0318  amdsbs - ok
12:58:40.0765 0x0318  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
12:58:40.0765 0x0318  amdxata - ok
12:58:40.0796 0x0318  [ 3DC51308F5E7A4BB8020D16E64E9D882, 08A0870D7343E3DB3CCDEDB6F53DE7A86440B0272E1D4F0E826D444EC3D8FBC0 ] amdxhc          C:\Windows\system32\drivers\amdxhc.sys
12:58:40.0812 0x0318  amdxhc - ok
12:58:40.0828 0x0318  [ 352476C98EF3952563A14F767491BBA9, 386EE7663E04479465145CF41A9226446E4C0473EB31FBC9A81D0500166B812A ] amd_sata        C:\Windows\system32\drivers\amd_sata.sys
12:58:40.0828 0x0318  amd_sata - ok
12:58:40.0859 0x0318  [ F4805C309FE48D6939147FE5CCDB1AD4, 2F6C95401A38448460E4B0902A9026B416B2D4133239E04787E4F77152F2DE41 ] amd_xata        C:\Windows\system32\drivers\amd_xata.sys
12:58:40.0859 0x0318  amd_xata - ok
12:58:40.0874 0x0318  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
12:58:40.0890 0x0318  AppID - ok
12:58:40.0921 0x0318  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
12:58:40.0921 0x0318  AppIDSvc - ok
12:58:40.0952 0x0318  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
12:58:40.0952 0x0318  Appinfo - ok
12:58:40.0999 0x0318  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
12:58:41.0015 0x0318  AppMgmt - ok
12:58:41.0046 0x0318  [ FE62EDC3C804974E6CECB471E1E80EF6, D2C293645BECF1153D94DA41632DBE5852DCA32124B01F047AB5E6887742DA41 ] APXACC          C:\Windows\system32\DRIVERS\appexDrv.sys
12:58:41.0062 0x0318  APXACC - ok
12:58:41.0077 0x0318  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
12:58:41.0077 0x0318  arc - ok
12:58:41.0093 0x0318  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
12:58:41.0124 0x0318  arcsas - ok
12:58:41.0202 0x0318  [ 108FB6DDB69E537A2EA53F425363FAE5, B12A9F5338D39805E08A44A335FF7AA77F2266F535A2F5C8412CC746C75E5B1D ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
12:58:41.0218 0x0318  aspnet_state - ok
12:58:41.0264 0x0318  [ 9BE9F2B83DE80E2752B1405CC427E2EC, 6015CA66553B3B882083B33F24FB338249A110D9769831C3D3D3C681AAFA9411 ] aswHwid         C:\Windows\system32\drivers\aswHwid.sys
12:58:41.0264 0x0318  aswHwid - ok
12:58:41.0280 0x0318  [ 2DA1C1AEDF454F8E32A863A1AEACDD8C, F02E4D197AE00B9A9507CF6007A7B7BEA54AF0F255B752FBA7174FA2596D1CA9 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
12:58:41.0280 0x0318  aswMonFlt - ok
12:58:41.0311 0x0318  [ 4750016EF9CC1DEC6DA3FE5AF9A7F095, C4CF46246D8A3FF9BD8D2FE899685654ADD45EB9B032F33804D0B8131882BC74 ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
12:58:41.0311 0x0318  aswRdr - ok
12:58:41.0327 0x0318  [ 1323269A92645705DEFA053F3596829D, 83EC58E0577A1E45D1FCBC0C0AF182099FB70B9005B9F8161166EBB4E9F58F35 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
12:58:41.0342 0x0318  aswRvrt - ok
12:58:41.0405 0x0318  [ E74FD717476B30E23F45354B8F3ACB30, 951D1655E1FA4CF0ACB29F2EEDDB3B42522D392F46DD826C63DCA8941E17ABA8 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
12:58:41.0452 0x0318  aswSnx - ok
12:58:41.0498 0x0318  [ B1881A01E301990B671694CA1623F1B6, 5299C713EA7CF96F0550943DB37E963CDA09258F65C471CCEEAB44C4736B7A08 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
12:58:41.0514 0x0318  aswSP - ok
12:58:41.0530 0x0318  [ 7509F07BA6F84C1E3B2C0D78A1F6F782, A90A36E8E23F58E430DE98B3623688DC09D34B62906EF7796DFC90F581FC385F ] aswStm          C:\Windows\system32\drivers\aswStm.sys
12:58:41.0545 0x0318  aswStm - ok
12:58:41.0561 0x0318  [ 1A5BDDE65B648DC3AD48B6ECAA3AE9C8, 858F674C3B775F9C8C782B7AFAC0B02AE9410C9F3B7F5B3AE1C4AD3BF6448C14 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
12:58:41.0576 0x0318  aswVmm - ok
12:58:41.0592 0x0318  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
12:58:41.0592 0x0318  AsyncMac - ok
12:58:41.0608 0x0318  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
12:58:41.0623 0x0318  atapi - ok
12:58:41.0686 0x0318  [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:58:41.0717 0x0318  AudioEndpointBuilder - ok
12:58:41.0748 0x0318  [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioSrv        C:\Windows\System32\Audiosrv.dll
12:58:41.0779 0x0318  AudioSrv - ok
12:58:41.0857 0x0318  [ E3F7EC811923F3F1A77B185F22638E5E, 324041256314C1471B5F123FA8DECC8F374A6B497A6419D4CAF61E68E1733265 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
12:58:41.0857 0x0318  avast! Antivirus - ok
12:58:41.0920 0x0318  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
12:58:41.0935 0x0318  AxInstSV - ok
12:58:42.0013 0x0318  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
12:58:42.0044 0x0318  b06bdrv - ok
12:58:42.0076 0x0318  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
12:58:42.0091 0x0318  b57nd60a - ok
12:58:42.0122 0x0318  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
12:58:42.0138 0x0318  BDESVC - ok
12:58:42.0154 0x0318  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
12:58:42.0154 0x0318  Beep - ok
12:58:42.0200 0x0318  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
12:58:42.0232 0x0318  BFE - ok
12:58:42.0310 0x0318  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
12:58:42.0372 0x0318  BITS - ok
12:58:42.0388 0x0318  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
12:58:42.0403 0x0318  blbdrive - ok
12:58:42.0434 0x0318  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
12:58:42.0450 0x0318  bowser - ok
12:58:42.0481 0x0318  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
12:58:42.0481 0x0318  BrFiltLo - ok
12:58:42.0481 0x0318  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
12:58:42.0497 0x0318  BrFiltUp - ok
12:58:42.0512 0x0318  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
12:58:42.0528 0x0318  Browser - ok
12:58:42.0544 0x0318  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
12:58:42.0559 0x0318  Brserid - ok
12:58:42.0575 0x0318  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
12:58:42.0590 0x0318  BrSerWdm - ok
12:58:42.0590 0x0318  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
12:58:42.0606 0x0318  BrUsbMdm - ok
12:58:42.0606 0x0318  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
12:58:42.0606 0x0318  BrUsbSer - ok
12:58:42.0637 0x0318  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
12:58:42.0637 0x0318  BTHMODEM - ok
12:58:42.0653 0x0318  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
12:58:42.0668 0x0318  bthserv - ok
12:58:42.0684 0x0318  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
12:58:42.0700 0x0318  cdfs - ok
12:58:42.0715 0x0318  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
12:58:42.0731 0x0318  cdrom - ok
12:58:42.0746 0x0318  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
12:58:42.0762 0x0318  CertPropSvc - ok
12:58:42.0778 0x0318  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
12:58:42.0778 0x0318  circlass - ok
12:58:42.0809 0x0318  [ FF60401F1C659CA2ED4BAE85D3FD14DA, 71EEA0078E1545A2F80B0020BE7113843B713DE1A5CC20D9810BD9F3889A4DB0 ] CISVC           C:\Windows\system32\CISVC.EXE
12:58:42.0809 0x0318  CISVC - ok
12:58:42.0840 0x0318  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
12:58:42.0856 0x0318  CLFS - ok
12:58:42.0918 0x0318  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:58:42.0918 0x0318  clr_optimization_v2.0.50727_32 - ok
12:58:42.0980 0x0318  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:58:42.0980 0x0318  clr_optimization_v2.0.50727_64 - ok
12:58:43.0027 0x0318  [ 6D7C8A951AF6AD6835C029B3CB88D333, 66F3D79887B2449B4C6912D1A258D1A96056888F51A8AA24FEDF37942AD5BDBB ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:58:43.0090 0x0318  clr_optimization_v4.0.30319_32 - ok
12:58:43.0105 0x0318  [ 86329C35FF23CFEF0FB6C0023BA06BCE, D915CE7AD564F97A1C3B047D5248B7EF67ADDC59687FBC90F1776C21DAA0D3FD ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:58:43.0136 0x0318  clr_optimization_v4.0.30319_64 - ok
12:58:43.0152 0x0318  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
12:58:43.0152 0x0318  CmBatt - ok
12:58:43.0168 0x0318  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
12:58:43.0183 0x0318  cmdide - ok
12:58:43.0230 0x0318  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
12:58:43.0246 0x0318  CNG - ok
12:58:43.0277 0x0318  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
12:58:43.0292 0x0318  Compbatt - ok
12:58:43.0308 0x0318  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
12:58:43.0308 0x0318  CompositeBus - ok
12:58:43.0324 0x0318  COMSysApp - ok
12:58:43.0355 0x0318  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
12:58:43.0370 0x0318  crcdisk - ok
12:58:43.0402 0x0318  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
12:58:43.0402 0x0318  CryptSvc - ok
12:58:43.0448 0x0318  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
12:58:43.0480 0x0318  CSC - ok
12:58:43.0526 0x0318  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
12:58:43.0558 0x0318  CscService - ok
12:58:43.0651 0x0318  [ A423F5B5310EB31E4321A688D534DDCD, 14CCEBD4733444EAFC945A7A7A7F1C850164D2FB86D6C03815962AA0244BC0FC ] CyberLink PowerDVD 12 Media Server Monitor Service C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
12:58:43.0667 0x0318  CyberLink PowerDVD 12 Media Server Monitor Service - ok
12:58:43.0714 0x0318  [ 2361959EEA70D8A71A56FFAEE6EA1A6D, D6426CF1412E0B150E084CAB1CCEF4C9981718C77917EBC56716BAFA30D575D7 ] CyberLink PowerDVD 12 Media Server Service C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
12:58:43.0714 0x0318  CyberLink PowerDVD 12 Media Server Service - ok
12:58:43.0776 0x0318  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
12:58:43.0807 0x0318  DcomLaunch - ok
12:58:43.0854 0x0318  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
12:58:43.0870 0x0318  defragsvc - ok
12:58:43.0916 0x0318  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
12:58:43.0916 0x0318  DfsC - ok
12:58:43.0948 0x0318  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
12:58:43.0963 0x0318  Dhcp - ok
12:58:43.0994 0x0318  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
12:58:44.0010 0x0318  discache - ok
12:58:44.0041 0x0318  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
12:58:44.0041 0x0318  Disk - ok
12:58:44.0072 0x0318  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
12:58:44.0072 0x0318  dmvsc - ok
12:58:44.0119 0x0318  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
12:58:44.0135 0x0318  Dnscache - ok
12:58:44.0150 0x0318  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
12:58:44.0166 0x0318  dot3svc - ok
12:58:44.0197 0x0318  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
12:58:44.0213 0x0318  DPS - ok
12:58:44.0244 0x0318  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
12:58:44.0244 0x0318  drmkaud - ok
12:58:44.0306 0x0318  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
12:58:44.0338 0x0318  DXGKrnl - ok
12:58:44.0384 0x0318  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
12:58:44.0384 0x0318  EapHost - ok
12:58:44.0540 0x0318  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
12:58:44.0712 0x0318  ebdrv - ok
12:58:44.0728 0x0318  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
12:58:44.0743 0x0318  EFS - ok
12:58:44.0821 0x0318  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
12:58:44.0852 0x0318  ehRecvr - ok
12:58:44.0868 0x0318  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
12:58:44.0884 0x0318  ehSched - ok
12:58:44.0915 0x0318  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
12:58:44.0946 0x0318  elxstor - ok
12:58:44.0962 0x0318  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
12:58:44.0962 0x0318  ErrDev - ok
12:58:44.0993 0x0318  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
12:58:45.0024 0x0318  EventSystem - ok
12:58:45.0102 0x0318  [ 50F9ACB987E517E6643E1F448BEAD8A0, C38A1271F2699B379D536A84C6097412BF1F9B3578E8C5AB0EFF77E459F283C1 ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
12:58:45.0133 0x0318  EvtEng - ok
12:58:45.0149 0x0318  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
12:58:45.0164 0x0318  exfat - ok
12:58:45.0196 0x0318  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
12:58:45.0211 0x0318  fastfat - ok
12:58:45.0258 0x0318  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
12:58:45.0289 0x0318  Fax - ok
12:58:45.0320 0x0318  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
12:58:45.0320 0x0318  fdc - ok
12:58:45.0336 0x0318  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
12:58:45.0352 0x0318  fdPHost - ok
12:58:45.0367 0x0318  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
12:58:45.0367 0x0318  FDResPub - ok
12:58:45.0383 0x0318  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
12:58:45.0398 0x0318  FileInfo - ok
12:58:45.0414 0x0318  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
12:58:45.0414 0x0318  Filetrace - ok
12:58:45.0430 0x0318  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
12:58:45.0445 0x0318  flpydisk - ok
12:58:45.0476 0x0318  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
12:58:45.0492 0x0318  FltMgr - ok
12:58:45.0570 0x0318  [ 76C196B109E4BFA50132EF50AF6A1C1B, 6452E96C3C9D35433890FFE72CDBBECBD1D0F56BBAD92DDC31551C1EE44B5860 ] FontCache       C:\Windows\system32\FntCache.dll
12:58:45.0632 0x0318  FontCache - ok
12:58:45.0679 0x0318  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:58:45.0695 0x0318  FontCache3.0.0.0 - ok
12:58:45.0710 0x0318  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
12:58:45.0710 0x0318  FsDepends - ok
12:58:45.0742 0x0318  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
12:58:45.0742 0x0318  Fs_Rec - ok
12:58:45.0788 0x0318  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
12:58:45.0788 0x0318  fvevol - ok
12:58:45.0820 0x0318  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
12:58:45.0820 0x0318  gagp30kx - ok
12:58:45.0898 0x0318  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
12:58:45.0929 0x0318  gpsvc - ok
12:58:45.0944 0x0318  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
12:58:45.0960 0x0318  hcw85cir - ok
12:58:45.0976 0x0318  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
12:58:46.0007 0x0318  HDAudBus - ok
12:58:46.0007 0x0318  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
12:58:46.0022 0x0318  HidBatt - ok
12:58:46.0038 0x0318  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
12:58:46.0054 0x0318  HidBth - ok
12:58:46.0069 0x0318  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
12:58:46.0069 0x0318  HidIr - ok
12:58:46.0085 0x0318  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
12:58:46.0085 0x0318  hidserv - ok
12:58:46.0116 0x0318  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
12:58:46.0132 0x0318  HidUsb - ok
12:58:46.0163 0x0318  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
12:58:46.0163 0x0318  hkmsvc - ok
12:58:46.0178 0x0318  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:58:46.0194 0x0318  HomeGroupListener - ok
12:58:46.0225 0x0318  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:58:46.0241 0x0318  HomeGroupProvider - ok
12:58:46.0288 0x0318  [ 9C9943220F8F94B917D8C4C9618074CC, DA0229C8718B4CF90F885270B38E1C9833CDF9F00141B899450C155DF3281E36 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
12:58:46.0303 0x0318  HP Support Assistant Service - ok
12:58:46.0381 0x0318  [ D2946D9F020AE76E9CEF9B4A6DF838C0, C29CE594879385DA12B8EAA90B258905827B613839CCD820DE49215B68676995 ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
12:58:46.0459 0x0318  hpqwmiex - ok
12:58:46.0475 0x0318  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
12:58:46.0490 0x0318  HpSAMD - ok
12:58:46.0537 0x0318  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
12:58:46.0568 0x0318  HTTP - ok
12:58:46.0584 0x0318  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
12:58:46.0600 0x0318  hwpolicy - ok
12:58:46.0631 0x0318  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
12:58:46.0631 0x0318  i8042prt - ok
12:58:46.0678 0x0318  [ D1753C06EE17E29352B065EACF3F10D0, 4DD4C991FAA3CCF99DF8DC9F8F5DEEDEECD55977F0C3AA8C404DEFD21E32A62B ] iaStor          C:\Windows\system32\drivers\iaStor.sys
12:58:46.0709 0x0318  iaStor - ok
12:58:46.0756 0x0318  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
12:58:46.0771 0x0318  iaStorV - ok
12:58:46.0834 0x0318  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:58:46.0880 0x0318  idsvc - ok
12:58:46.0896 0x0318  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
12:58:46.0912 0x0318  iirsp - ok
12:58:46.0958 0x0318  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
12:58:47.0005 0x0318  IKEEXT - ok
12:58:47.0192 0x0318  [ E9740A3BC0AE6EA035FF7ECE3A1B27B6, 4CA3E094B0057E143955DE5D41C3344688B6D2C4FFC0417235FF46312B600F99 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
12:58:47.0348 0x0318  IntcAzAudAddService - ok
12:58:47.0380 0x0318  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
12:58:47.0380 0x0318  intelide - ok
12:58:47.0411 0x0318  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\drivers\intelppm.sys
12:58:47.0411 0x0318  intelppm - ok
12:58:47.0442 0x0318  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
12:58:47.0442 0x0318  IPBusEnum - ok
12:58:47.0458 0x0318  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:58:47.0473 0x0318  IpFilterDriver - ok
12:58:47.0520 0x0318  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
12:58:47.0536 0x0318  iphlpsvc - ok
12:58:47.0567 0x0318  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
12:58:47.0567 0x0318  IPMIDRV - ok
12:58:47.0582 0x0318  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
12:58:47.0598 0x0318  IPNAT - ok
12:58:47.0629 0x0318  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
12:58:47.0645 0x0318  IRENUM - ok
12:58:47.0660 0x0318  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
12:58:47.0676 0x0318  isapnp - ok
12:58:47.0692 0x0318  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
12:58:47.0707 0x0318  iScsiPrt - ok
12:58:47.0738 0x0318  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
12:58:47.0738 0x0318  kbdclass - ok
12:58:47.0770 0x0318  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
12:58:47.0785 0x0318  kbdhid - ok
12:58:47.0801 0x0318  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
12:58:47.0801 0x0318  KeyIso - ok
12:58:47.0832 0x0318  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
12:58:47.0848 0x0318  KSecDD - ok
12:58:47.0894 0x0318  [ 41774FF331F609EF442B7398EE6202B1, AD67DA06A74895C384F4A1F1CF47050DAEE9C6CE8AD12F1A116FC977B6C3A864 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
12:58:47.0910 0x0318  KSecPkg - ok
12:58:47.0926 0x0318  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
12:58:47.0941 0x0318  ksthunk - ok
12:58:47.0972 0x0318  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
12:58:48.0004 0x0318  KtmRm - ok
12:58:48.0035 0x0318  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
12:58:48.0050 0x0318  LanmanServer - ok
12:58:48.0082 0x0318  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:58:48.0097 0x0318  LanmanWorkstation - ok
12:58:48.0128 0x0318  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
12:58:48.0128 0x0318  lltdio - ok
12:58:48.0160 0x0318  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
12:58:48.0175 0x0318  lltdsvc - ok
12:58:48.0191 0x0318  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
12:58:48.0206 0x0318  lmhosts - ok
12:58:48.0222 0x0318  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
12:58:48.0238 0x0318  LSI_FC - ok
12:58:48.0253 0x0318  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
12:58:48.0269 0x0318  LSI_SAS - ok
12:58:48.0284 0x0318  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
12:58:48.0284 0x0318  LSI_SAS2 - ok
12:58:48.0300 0x0318  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
12:58:48.0316 0x0318  LSI_SCSI - ok
12:58:48.0347 0x0318  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
12:58:48.0347 0x0318  luafv - ok
12:58:48.0362 0x0318  [ CA43F8904E24BBE49982E4C0B29E6579, 2E3E6D02980706061C478C1643F8838310DDAC573C8722AE7F3290CE36B02CB2 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
12:58:48.0378 0x0318  MBAMProtector - ok
12:58:48.0503 0x0318  [ 0BB29DE40C9D9529793DCDB59A43CF5B, 251001A407D32EF22F64915EEFFAAEC229073C4549BF7D9D1D4209B7D15B4681 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
12:58:48.0596 0x0318  MBAMScheduler - ok
12:58:48.0659 0x0318  [ 5F82D8188B370B0CF185D4AE2B9B4A0E, 549B53DD989A069E1C38347C4CEF5283DF9B428CE102799B06A20D3D8F23825F ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
12:58:48.0706 0x0318  MBAMService - ok
12:58:48.0721 0x0318  [ 26C43960C99EE861A5D0EDC4DCF3B1C3, 6238FB8E785652040CCE3E7044EA52066CE1BF173A1467474D64A3AB214B6BCD ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
12:58:48.0737 0x0318  MBAMSwissArmy - ok
12:58:48.0752 0x0318  [ A646C2DDB8C46E9B20A326FAF566646C, F46E3BF392CB4EB53D323BC8CC41EFBB9C5D7C935FECF255F524EB18583A2A37 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
12:58:48.0752 0x0318  MBAMWebAccessControl - ok
12:58:48.0784 0x0318  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
12:58:48.0784 0x0318  Mcx2Svc - ok
12:58:48.0799 0x0318  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
12:58:48.0815 0x0318  megasas - ok
12:58:48.0846 0x0318  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
12:58:48.0862 0x0318  MegaSR - ok
12:58:48.0877 0x0318  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
12:58:48.0877 0x0318  MMCSS - ok
12:58:48.0893 0x0318  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
12:58:48.0908 0x0318  Modem - ok
12:58:48.0940 0x0318  [ E38AEF079CD3BCFA19F2072A214F829D, 6704C851A6C86C1CCCF35154657D221654D6F12FD8D6CBE299689C728D4CEEF0 ] MODEMCSA        C:\Windows\system32\drivers\MODEMCSA.sys
12:58:48.0940 0x0318  MODEMCSA - ok
12:58:48.0955 0x0318  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
12:58:48.0971 0x0318  monitor - ok
12:58:48.0986 0x0318  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
12:58:48.0986 0x0318  mouclass - ok
12:58:49.0033 0x0318  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
12:58:49.0033 0x0318  mouhid - ok
12:58:49.0049 0x0318  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
12:58:49.0064 0x0318  mountmgr - ok
12:58:49.0080 0x0318  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
12:58:49.0096 0x0318  mpio - ok
12:58:49.0127 0x0318  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
12:58:49.0142 0x0318  mpsdrv - ok
12:58:49.0220 0x0318  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
12:58:49.0267 0x0318  MpsSvc - ok
12:58:49.0298 0x0318  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
12:58:49.0298 0x0318  MRxDAV - ok
12:58:49.0330 0x0318  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
12:58:49.0345 0x0318  mrxsmb - ok
12:58:49.0361 0x0318  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:58:49.0376 0x0318  mrxsmb10 - ok
12:58:49.0392 0x0318  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:58:49.0408 0x0318  mrxsmb20 - ok
12:58:49.0439 0x0318  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
12:58:49.0439 0x0318  msahci - ok
12:58:49.0454 0x0318  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
12:58:49.0470 0x0318  msdsm - ok
12:58:49.0486 0x0318  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
12:58:49.0501 0x0318  MSDTC - ok
12:58:49.0532 0x0318  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
12:58:49.0532 0x0318  Msfs - ok
12:58:49.0564 0x0318  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
12:58:49.0564 0x0318  mshidkmdf - ok
12:58:49.0579 0x0318  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
12:58:49.0595 0x0318  msisadrv - ok
12:58:49.0626 0x0318  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
12:58:49.0642 0x0318  MSiSCSI - ok
12:58:49.0642 0x0318  msiserver - ok
12:58:49.0657 0x0318  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
12:58:49.0673 0x0318  MSKSSRV - ok
12:58:49.0673 0x0318  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
12:58:49.0688 0x0318  MSPCLOCK - ok
12:58:49.0688 0x0318  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
12:58:49.0704 0x0318  MSPQM - ok
12:58:49.0735 0x0318  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
12:58:49.0751 0x0318  MsRPC - ok
12:58:49.0766 0x0318  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
12:58:49.0782 0x0318  mssmbios - ok
12:58:49.0782 0x0318  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
12:58:49.0798 0x0318  MSTEE - ok
12:58:49.0798 0x0318  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
12:58:49.0813 0x0318  MTConfig - ok
12:58:49.0844 0x0318  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
12:58:49.0844 0x0318  Mup - ok
12:58:49.0876 0x0318  [ 0F2D4F6F18910DADD7F8C25F12569571, 8C50DDA70F0EFD133DF51BC07062D1E89D141B75EFA718BAFA65D2190F885686 ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
12:58:49.0891 0x0318  MyWiFiDHCPDNS - ok
12:58:49.0938 0x0318  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
12:58:49.0969 0x0318  napagent - ok
12:58:50.0000 0x0318  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
12:58:50.0032 0x0318  NativeWifiP - ok
12:58:50.0094 0x0318  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
12:58:50.0141 0x0318  NDIS - ok
12:58:50.0156 0x0318  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
12:58:50.0156 0x0318  NdisCap - ok
12:58:50.0188 0x0318  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
12:58:50.0188 0x0318  NdisTapi - ok
12:58:50.0219 0x0318  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
12:58:50.0219 0x0318  Ndisuio - ok
12:58:50.0250 0x0318  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
12:58:50.0250 0x0318  NdisWan - ok
12:58:50.0281 0x0318  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
12:58:50.0281 0x0318  NDProxy - ok
12:58:50.0297 0x0318  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
12:58:50.0297 0x0318  NetBIOS - ok
12:58:50.0328 0x0318  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
12:58:50.0344 0x0318  NetBT - ok
12:58:50.0359 0x0318  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
12:58:50.0359 0x0318  Netlogon - ok
12:58:50.0390 0x0318  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
12:58:50.0422 0x0318  Netman - ok
12:58:50.0437 0x0318  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:58:50.0468 0x0318  NetMsmqActivator - ok
12:58:50.0468 0x0318  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:58:50.0484 0x0318  NetPipeActivator - ok
12:58:50.0515 0x0318  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
12:58:50.0531 0x0318  netprofm - ok
12:58:50.0546 0x0318  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:58:50.0546 0x0318  NetTcpActivator - ok
12:58:50.0562 0x0318  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:58:50.0578 0x0318  NetTcpPortSharing - ok
12:58:50.0765 0x0318  [ AC4ADBF02E7AED8B4C7F3099D920BCED, 907CB2D81BC7DB77A488FE074B0228592A05238F0409FB3690FDB734614518A2 ] NETwNs64        C:\Windows\system32\DRIVERS\NETwsw02.sys
12:58:50.0921 0x0318  NETwNs64 - ok
12:58:50.0952 0x0318  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
12:58:50.0952 0x0318  nfrd960 - ok
12:58:50.0999 0x0318  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
12:58:51.0014 0x0318  NlaSvc - ok
12:58:51.0030 0x0318  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
12:58:51.0030 0x0318  Npfs - ok
12:58:51.0046 0x0318  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
12:58:51.0061 0x0318  nsi - ok
12:58:51.0061 0x0318  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
12:58:51.0077 0x0318  nsiproxy - ok
12:58:51.0202 0x0318  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
12:58:51.0280 0x0318  Ntfs - ok
12:58:51.0280 0x0318  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
12:58:51.0295 0x0318  Null - ok
12:58:51.0326 0x0318  [ B227E75AD10A142DD326B4CC8D73A6D9, CA76D73381ADAB04E86D417788D4EDAAE8343B90DCC9690ED5FFB1C0B1F09057 ] nusb3hub        C:\Windows\system32\drivers\nusb3hub.sys
12:58:51.0326 0x0318  nusb3hub - ok
12:58:51.0358 0x0318  [ 55959DB860E4E484681586824D09E52C, EEA42F7DF194A84F207A8DC3BA9BF9ACDBFFFA9C611DA9289528C7F64599563F ] nusb3xhc        C:\Windows\system32\drivers\nusb3xhc.sys
12:58:51.0358 0x0318  nusb3xhc - ok
12:58:51.0404 0x0318  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
12:58:51.0404 0x0318  nvraid - ok
12:58:51.0451 0x0318  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
12:58:51.0451 0x0318  nvstor - ok
12:58:51.0498 0x0318  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
12:58:51.0514 0x0318  nv_agp - ok
12:58:51.0529 0x0318  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
12:58:51.0529 0x0318  ohci1394 - ok
12:58:51.0576 0x0318  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
12:58:51.0592 0x0318  p2pimsvc - ok
12:58:51.0623 0x0318  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
12:58:51.0654 0x0318  p2psvc - ok
12:58:51.0670 0x0318  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
12:58:51.0670 0x0318  Parport - ok
12:58:51.0701 0x0318  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
12:58:51.0701 0x0318  partmgr - ok
12:58:51.0732 0x0318  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
12:58:51.0732 0x0318  PcaSvc - ok
12:58:51.0779 0x0318  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
12:58:51.0779 0x0318  pci - ok
12:58:51.0810 0x0318  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
12:58:51.0810 0x0318  pciide - ok
12:58:51.0841 0x0318  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
12:58:51.0841 0x0318  pcmcia - ok
12:58:51.0888 0x0318  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
12:58:51.0888 0x0318  pcw - ok
12:58:51.0966 0x0318  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
12:58:51.0982 0x0318  PEAUTH - ok
12:58:52.0075 0x0318  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
12:58:52.0153 0x0318  PeerDistSvc - ok
12:58:52.0216 0x0318  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
12:58:52.0231 0x0318  PerfHost - ok
12:58:52.0325 0x0318  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
12:58:52.0418 0x0318  pla - ok
12:58:52.0465 0x0318  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
12:58:52.0496 0x0318  PlugPlay - ok
12:58:52.0512 0x0318  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
12:58:52.0528 0x0318  PNRPAutoReg - ok
12:58:52.0543 0x0318  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
12:58:52.0559 0x0318  PNRPsvc - ok
12:58:52.0606 0x0318  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
12:58:52.0621 0x0318  PolicyAgent - ok
12:58:52.0668 0x0318  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
12:58:52.0684 0x0318  Power - ok
12:58:52.0699 0x0318  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
12:58:52.0715 0x0318  PptpMiniport - ok
12:58:52.0730 0x0318  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
12:58:52.0730 0x0318  Processor - ok
12:58:52.0762 0x0318  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
12:58:52.0777 0x0318  ProfSvc - ok
12:58:52.0793 0x0318  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
12:58:52.0808 0x0318  ProtectedStorage - ok
12:58:52.0824 0x0318  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
12:58:52.0840 0x0318  Psched - ok
12:58:52.0918 0x0318  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
12:58:53.0011 0x0318  ql2300 - ok
12:58:53.0027 0x0318  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
12:58:53.0027 0x0318  ql40xx - ok
12:58:53.0058 0x0318  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
12:58:53.0074 0x0318  QWAVE - ok
12:58:53.0089 0x0318  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
12:58:53.0105 0x0318  QWAVEdrv - ok
12:58:53.0120 0x0318  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
12:58:53.0120 0x0318  RasAcd - ok
12:58:53.0152 0x0318  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
12:58:53.0152 0x0318  RasAgileVpn - ok
12:58:53.0167 0x0318  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
12:58:53.0183 0x0318  RasAuto - ok
12:58:53.0198 0x0318  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
12:58:53.0214 0x0318  Rasl2tp - ok
12:58:53.0245 0x0318  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
12:58:53.0261 0x0318  RasMan - ok
12:58:53.0292 0x0318  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
12:58:53.0292 0x0318  RasPppoe - ok
12:58:53.0308 0x0318  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
12:58:53.0308 0x0318  RasSstp - ok
12:58:53.0339 0x0318  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
12:58:53.0354 0x0318  rdbss - ok
12:58:53.0370 0x0318  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
12:58:53.0370 0x0318  rdpbus - ok
12:58:53.0401 0x0318  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
12:58:53.0401 0x0318  RDPCDD - ok
12:58:53.0432 0x0318  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
12:58:53.0448 0x0318  RDPDR - ok
12:58:53.0448 0x0318  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
12:58:53.0464 0x0318  RDPENCDD - ok
12:58:53.0479 0x0318  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
12:58:53.0479 0x0318  RDPREFMP - ok
12:58:53.0510 0x0318  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
12:58:53.0526 0x0318  RDPWD - ok
12:58:53.0542 0x0318  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
12:58:53.0557 0x0318  rdyboost - ok
12:58:53.0604 0x0318  [ 51D90954481235A14CB5264C34CEC68B, E0C006A232201F24D29268910D2FE5AA36099AA90853A89335D0C76A369F821B ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
12:58:53.0620 0x0318  RegSrvc - ok
12:58:53.0635 0x0318  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
12:58:53.0651 0x0318  RemoteAccess - ok
12:58:53.0666 0x0318  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
12:58:53.0682 0x0318  RemoteRegistry - ok
12:58:53.0698 0x0318  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
12:58:53.0698 0x0318  RpcEptMapper - ok
12:58:53.0713 0x0318  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
12:58:53.0729 0x0318  RpcLocator - ok
12:58:53.0760 0x0318  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
12:58:53.0791 0x0318  RpcSs - ok
12:58:53.0807 0x0318  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
12:58:53.0822 0x0318  rspndr - ok
12:58:53.0916 0x0318  [ DDF3EFB4AD226C61D0ADA6E779E3D968, 5B14B35321F10D974B9F47D60C9DAA527A2C907029C242A6F4214E6012A046DA ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
12:58:53.0932 0x0318  RtkAudioService - ok
12:58:54.0025 0x0318  [ 5FE87322B5940BE0E367C4D54343A3F4, 31D8EEF0C20E1080F2ADE6D889DC8EC134127CE0951586B3D65ADFB9FCB7129B ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
12:58:54.0056 0x0318  RTL8167 - ok
12:58:54.0088 0x0318  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
12:58:54.0088 0x0318  s3cap - ok
12:58:54.0103 0x0318  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
12:58:54.0119 0x0318  SamSs - ok
12:58:54.0134 0x0318  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
12:58:54.0134 0x0318  sbp2port - ok
12:58:54.0166 0x0318  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
12:58:54.0181 0x0318  SCardSvr - ok
12:58:54.0197 0x0318  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
12:58:54.0197 0x0318  scfilter - ok
12:58:54.0259 0x0318  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
12:58:54.0322 0x0318  Schedule - ok
12:58:54.0353 0x0318  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
12:58:54.0353 0x0318  SCPolicySvc - ok
12:58:54.0384 0x0318  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
12:58:54.0400 0x0318  SDRSVC - ok
12:58:54.0431 0x0318  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
12:58:54.0431 0x0318  secdrv - ok
12:58:54.0446 0x0318  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
12:58:54.0446 0x0318  seclogon - ok
12:58:54.0478 0x0318  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
12:58:54.0478 0x0318  SENS - ok
12:58:54.0493 0x0318  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
12:58:54.0509 0x0318  SensrSvc - ok
12:58:54.0524 0x0318  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
12:58:54.0524 0x0318  Serenum - ok
12:58:54.0540 0x0318  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
12:58:54.0540 0x0318  Serial - ok
12:58:54.0571 0x0318  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
12:58:54.0571 0x0318  sermouse - ok
12:58:54.0602 0x0318  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
12:58:54.0602 0x0318  SessionEnv - ok
12:58:54.0618 0x0318  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
12:58:54.0618 0x0318  sffdisk - ok
12:58:54.0649 0x0318  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
12:58:54.0649 0x0318  sffp_mmc - ok
12:58:54.0665 0x0318  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
12:58:54.0665 0x0318  sffp_sd - ok
12:58:54.0665 0x0318  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
12:58:54.0680 0x0318  sfloppy - ok
12:58:54.0712 0x0318  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
12:58:54.0727 0x0318  SharedAccess - ok
12:58:54.0774 0x0318  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:58:54.0790 0x0318  ShellHWDetection - ok
12:58:54.0805 0x0318  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
12:58:54.0821 0x0318  SiSRaid2 - ok
12:58:54.0837 0x0318  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
12:58:54.0837 0x0318  SiSRaid4 - ok
12:58:54.0868 0x0318  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
12:58:54.0868 0x0318  Smb - ok
12:58:54.0899 0x0318  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
12:58:54.0915 0x0318  SNMPTRAP - ok
12:58:54.0930 0x0318  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
12:58:54.0930 0x0318  spldr - ok
12:58:54.0977 0x0318  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
12:58:55.0008 0x0318  Spooler - ok
12:58:55.0195 0x0318  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
12:58:55.0367 0x0318  sppsvc - ok
12:58:55.0398 0x0318  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
12:58:55.0398 0x0318  sppuinotify - ok
12:58:55.0461 0x0318  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
12:58:55.0476 0x0318  srv - ok
12:58:55.0492 0x0318  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
12:58:55.0523 0x0318  srv2 - ok
12:58:55.0554 0x0318  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
12:58:55.0570 0x0318  srvnet - ok
12:58:55.0585 0x0318  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
12:58:55.0601 0x0318  SSDPSRV - ok
12:58:55.0632 0x0318  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
12:58:55.0632 0x0318  SstpSvc - ok
12:58:55.0663 0x0318  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
12:58:55.0663 0x0318  stexstor - ok
12:58:55.0726 0x0318  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
12:58:55.0757 0x0318  stisvc - ok
12:58:55.0788 0x0318  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
12:58:55.0788 0x0318  storflt - ok
12:58:55.0819 0x0318  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
12:58:55.0835 0x0318  StorSvc - ok
12:58:55.0882 0x0318  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
12:58:55.0882 0x0318  storvsc - ok
12:58:55.0897 0x0318  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
12:58:55.0897 0x0318  swenum - ok
12:58:55.0929 0x0318  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
12:58:55.0960 0x0318  swprv - ok
12:58:56.0053 0x0318  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
12:58:56.0147 0x0318  SysMain - ok
12:58:56.0178 0x0318  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:58:56.0178 0x0318  TabletInputService - ok
12:58:56.0209 0x0318  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
12:58:56.0225 0x0318  TapiSrv - ok
12:58:56.0241 0x0318  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
12:58:56.0241 0x0318  TBS - ok
12:58:56.0350 0x0318  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
12:58:56.0459 0x0318  Tcpip - ok
12:58:56.0553 0x0318  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
12:58:56.0615 0x0318  TCPIP6 - ok
12:58:56.0662 0x0318  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
12:58:56.0662 0x0318  tcpipreg - ok
12:58:56.0677 0x0318  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
12:58:56.0693 0x0318  TDPIPE - ok
12:58:56.0709 0x0318  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
12:58:56.0709 0x0318  TDTCP - ok
12:58:56.0740 0x0318  [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
12:58:56.0740 0x0318  tdx - ok
12:58:56.0771 0x0318  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
12:58:56.0771 0x0318  TermDD - ok
12:58:56.0818 0x0318  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
12:58:56.0849 0x0318  TermService - ok
12:58:56.0865 0x0318  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
12:58:56.0865 0x0318  Themes - ok
12:58:56.0896 0x0318  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
12:58:56.0896 0x0318  THREADORDER - ok
12:58:56.0911 0x0318  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
12:58:56.0927 0x0318  TrkWks - ok
12:58:56.0989 0x0318  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:58:56.0989 0x0318  TrustedInstaller - ok
12:58:57.0005 0x0318  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30, CA302C2ED6A6BF4670BAAA4F5C14C0238CF0C80316856AA0DB053F4D593033AC ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
12:58:57.0005 0x0318  tssecsrv - ok
12:58:57.0036 0x0318  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
12:58:57.0052 0x0318  TsUsbFlt - ok
12:58:57.0067 0x0318  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
12:58:57.0067 0x0318  TsUsbGD - ok
12:58:57.0099 0x0318  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
12:58:57.0099 0x0318  tunnel - ok
12:58:57.0130 0x0318  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
12:58:57.0130 0x0318  uagp35 - ok
12:58:57.0161 0x0318  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
12:58:57.0177 0x0318  udfs - ok
12:58:57.0208 0x0318  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
12:58:57.0223 0x0318  UI0Detect - ok
12:58:57.0239 0x0318  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
12:58:57.0239 0x0318  uliagpkx - ok
12:58:57.0255 0x0318  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
12:58:57.0255 0x0318  umbus - ok
12:58:57.0270 0x0318  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
12:58:57.0286 0x0318  UmPass - ok
12:58:57.0301 0x0318  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
12:58:57.0333 0x0318  UmRdpService - ok
12:58:57.0364 0x0318  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
12:58:57.0379 0x0318  upnphost - ok
12:58:57.0411 0x0318  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
12:58:57.0411 0x0318  usbccgp - ok
12:58:57.0442 0x0318  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
12:58:57.0442 0x0318  usbcir - ok
12:58:57.0473 0x0318  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
12:58:57.0473 0x0318  usbehci - ok
12:58:57.0489 0x0318  [ 33A58C5630200E17B51C8D73DD64181B, 75707B7E5CE686119CA430944477C9A6DBD5AA4211FDDECFF0986EACA65975B3 ] usbfilter       C:\Windows\system32\drivers\usbfilter.sys
12:58:57.0504 0x0318  usbfilter - ok
12:58:57.0535 0x0318  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
12:58:57.0551 0x0318  usbhub - ok
12:58:57.0567 0x0318  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
12:58:57.0582 0x0318  usbohci - ok
12:58:57.0598 0x0318  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
12:58:57.0598 0x0318  usbprint - ok
12:58:57.0629 0x0318  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:58:57.0645 0x0318  USBSTOR - ok
12:58:57.0660 0x0318  [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
12:58:57.0660 0x0318  usbuhci - ok
12:58:57.0691 0x0318  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
12:58:57.0691 0x0318  UxSms - ok
12:58:57.0723 0x0318  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
12:58:57.0723 0x0318  VaultSvc - ok
12:58:57.0738 0x0318  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
12:58:57.0738 0x0318  vdrvroot - ok
12:58:57.0785 0x0318  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
12:58:57.0816 0x0318  vds - ok
12:58:57.0847 0x0318  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
12:58:57.0863 0x0318  vga - ok
12:58:57.0879 0x0318  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
12:58:57.0879 0x0318  VgaSave - ok
12:58:57.0910 0x0318  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
12:58:57.0910 0x0318  vhdmp - ok
12:58:57.0925 0x0318  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
12:58:57.0925 0x0318  viaide - ok
12:58:57.0972 0x0318  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
12:58:57.0972 0x0318  vmbus - ok
12:58:57.0988 0x0318  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
12:58:58.0003 0x0318  VMBusHID - ok
12:58:58.0019 0x0318  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
12:58:58.0019 0x0318  volmgr - ok
12:58:58.0066 0x0318  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
12:58:58.0081 0x0318  volmgrx - ok
12:58:58.0097 0x0318  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
12:58:58.0113 0x0318  volsnap - ok
12:58:58.0144 0x0318  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
12:58:58.0144 0x0318  vsmraid - ok
12:58:58.0237 0x0318  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
12:58:58.0331 0x0318  VSS - ok
12:58:58.0347 0x0318  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
12:58:58.0347 0x0318  vwifibus - ok
12:58:58.0378 0x0318  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
12:58:58.0378 0x0318  vwififlt - ok
12:58:58.0393 0x0318  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
12:58:58.0393 0x0318  vwifimp - ok
12:58:58.0409 0x0318  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
12:58:58.0440 0x0318  W32Time - ok
12:58:58.0456 0x0318  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
12:58:58.0456 0x0318  WacomPen - ok
12:58:58.0487 0x0318  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
12:58:58.0487 0x0318  WANARP - ok
12:58:58.0503 0x0318  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
12:58:58.0503 0x0318  Wanarpv6 - ok
12:58:58.0596 0x0318  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
12:58:58.0659 0x0318  WatAdminSvc - ok
12:58:58.0737 0x0318  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
12:58:58.0830 0x0318  wbengine - ok
12:58:58.0861 0x0318  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
12:58:58.0877 0x0318  WbioSrvc - ok
12:58:58.0893 0x0318  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
12:58:58.0924 0x0318  wcncsvc - ok
12:58:58.0939 0x0318  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:58:58.0955 0x0318  WcsPlugInService - ok
12:58:58.0971 0x0318  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
12:58:58.0971 0x0318  Wd - ok
12:58:59.0049 0x0318  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
12:58:59.0080 0x0318  Wdf01000 - ok
12:58:59.0111 0x0318  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
12:58:59.0127 0x0318  WdiServiceHost - ok
12:58:59.0127 0x0318  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
12:58:59.0142 0x0318  WdiSystemHost - ok
12:58:59.0189 0x0318  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
12:58:59.0205 0x0318  WebClient - ok
12:58:59.0220 0x0318  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
12:58:59.0251 0x0318  Wecsvc - ok
12:58:59.0267 0x0318  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
12:58:59.0283 0x0318  wercplsupport - ok
12:58:59.0283 0x0318  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
12:58:59.0298 0x0318  WerSvc - ok
12:58:59.0314 0x0318  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
12:58:59.0314 0x0318  WfpLwf - ok
12:58:59.0329 0x0318  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
12:58:59.0329 0x0318  WIMMount - ok
12:58:59.0361 0x0318  WinDefend - ok
12:58:59.0376 0x0318  WinHttpAutoProxySvc - ok
12:58:59.0423 0x0318  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
12:58:59.0439 0x0318  Winmgmt - ok
12:58:59.0563 0x0318  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
12:58:59.0673 0x0318  WinRM - ok
12:58:59.0751 0x0318  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
12:58:59.0797 0x0318  Wlansvc - ok
12:58:59.0829 0x0318  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
12:58:59.0829 0x0318  WmiAcpi - ok
12:58:59.0875 0x0318  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
12:58:59.0891 0x0318  wmiApSrv - ok
12:58:59.0938 0x0318  WMPNetworkSvc - ok
12:58:59.0953 0x0318  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
12:58:59.0969 0x0318  WPCSvc - ok
12:59:00.0016 0x0318  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
12:59:00.0047 0x0318  WPDBusEnum - ok
12:59:00.0078 0x0318  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
12:59:00.0078 0x0318  ws2ifsl - ok
12:59:00.0094 0x0318  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
12:59:00.0109 0x0318  wscsvc - ok
12:59:00.0109 0x0318  WSearch - ok
12:59:00.0265 0x0318  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll
12:59:00.0375 0x0318  wuauserv - ok
12:59:00.0406 0x0318  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
12:59:00.0406 0x0318  WudfPf - ok
12:59:00.0437 0x0318  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
12:59:00.0453 0x0318  WUDFRd - ok
12:59:00.0484 0x0318  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
12:59:00.0499 0x0318  wudfsvc - ok
12:59:00.0531 0x0318  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
12:59:00.0546 0x0318  WwanSvc - ok
12:59:00.0780 0x0318  [ E6B8EB4EE9C4DB54EB7C413A173D877B, 9579BE94E61A32E4FFD1477FF058697555679A78AB90EA73C7D7850151C7E1E7 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
12:59:00.0936 0x0318  ZeroConfigService - ok
12:59:00.0967 0x0318  ================ Scan global ===============================
12:59:00.0999 0x0318  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
12:59:01.0030 0x0318  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
12:59:01.0061 0x0318  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
12:59:01.0108 0x0318  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
12:59:01.0155 0x0318  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
12:59:01.0170 0x0318  [ Global ] - ok
12:59:01.0170 0x0318  ================ Scan MBR ==================================
12:59:01.0217 0x0318  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:59:01.0435 0x0318  \Device\Harddisk0\DR0 - ok
12:59:01.0451 0x0318  ================ Scan VBR ==================================
12:59:01.0451 0x0318  [ 56D65DE6DB2902330D53BFEBA0B4DBE0 ] \Device\Harddisk0\DR0\Partition1
12:59:01.0498 0x0318  \Device\Harddisk0\DR0\Partition1 - ok
12:59:01.0498 0x0318  [ F5C15058DA10CE3F04411AC95CBFB61F ] \Device\Harddisk0\DR0\Partition2
12:59:01.0560 0x0318  \Device\Harddisk0\DR0\Partition2 - ok
12:59:01.0576 0x0318  [ F614BC5A3ADD773DAF33533A9F726692 ] \Device\Harddisk0\DR0\Partition3
12:59:01.0576 0x0318  \Device\Harddisk0\DR0\Partition3 - ok
12:59:01.0591 0x0318  [ A151147633E5A57E8B4E32D57747E54A ] \Device\Harddisk0\DR0\Partition4
12:59:01.0591 0x0318  \Device\Harddisk0\DR0\Partition4 - ok
12:59:01.0591 0x0318  ================ Scan generic autorun ======================
12:59:01.0935 0x0318  [ 2166853BF49ECB1870385736CFA0068C, 37FF80713C4EFDF1248D90253DF501351245A9ECD4CA2C85E5ACAACFF1895C38 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
12:59:02.0247 0x0318  RTHDVCPL - ok
12:59:02.0293 0x0318  UnThreat - ok
12:59:02.0340 0x0318  [ DD79A6B15C2F28DE98DF4852AAF6B13B, 0F7E9023E0BA4B40E2DE9A9FA34E85FEAF72B93049AAB3E1D73AD046BB113E05 ] C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe
12:59:02.0356 0x0318  NCPluginUpdater - ok
12:59:02.0434 0x0318  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
12:59:02.0512 0x0318  Sidebar - ok
12:59:02.0543 0x0318  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
12:59:02.0543 0x0318  mctadmin - ok
12:59:02.0605 0x0318  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
12:59:02.0652 0x0318  Sidebar - ok
12:59:02.0668 0x0318  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
12:59:02.0683 0x0318  mctadmin - ok
12:59:02.0730 0x0318  [ 6B8DCF84335D34855A0FF800977B61CE, AA6577FD220DF09C796F76AAB8BF4F53D9F97C85247A3FA98D459458D9D4C871 ] C:\Program Files\AMD Quick Stream\AMDQuickStream.exe
12:59:02.0746 0x0318  AppEx Accelerator UI - ok
12:59:02.0824 0x0318  [ EDA861A35DC2AC5C7B2F697EC546C4BE, EC2C8FFBC044134B09D93D2B0ACCC4D00AC625E5A0480526BAC4C25CA15D5610 ] C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
12:59:02.0839 0x0318  HydraVisionDesktopManager - ok
12:59:03.0479 0x0318  AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.0.2208.712 ), 0x41000 ( enabled : updated )
12:59:03.0713 0x0318  Win FW state via NFP2: enabled
12:59:03.0713 0x0318  ============================================================
12:59:03.0713 0x0318  Scan finished
12:59:03.0713 0x0318  ============================================================
12:59:03.0729 0x0568  Detected object count: 0
12:59:03.0729 0x0568  Actual detected object count: 0
13:01:17.0279 0x0fe0  Deinitialize success.........On my old xp with internal dial up modem run at 49.9;But this New computer with external dial up modem only running at 29.9;I bought "pro" thought it would be better,should of bought "home version"??Thanks,Tim
 



#13 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:50 AM

Posted 08 January 2015 - 05:41 AM

OK, please describe your issue.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#14 bonezz

bonezz
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 08 January 2015 - 07:02 AM

Hello,like I said above "On my old xp with internal dial up modem run at 49.9",this new computer is Non responcive and slow,for example; I get Your e mail,and click on it,at the top of page it says"bleepingcomputer.com" but it stays on web email page,and if I hit f5 or refresh box, page goes blank n says"page cannot be found" I will repeat this 8 to 12 times,sometimes I have to restart the computer sometimes it works/doesn't...Non responsive and very slow....And everytime I start the computer,I have to go to Tools and (reset) Internet options To connections to LAN settings and Uncheck "proxy server" (2 boxes on bottom) and check "automatically detect settings" single box at top...;And it should be Fast n responsive & be internet speed of at least 49.9, instead of 29.9....The first time I started this computer out the box, it had a bunch of *stuff about wifi n networking ect...I Dont know anything 'bout computers,but I know my obsoleit xp was faster.???Thanks for your time on this,I'm disabled & on fixed income & cant afford a shop, saved a long time to buy this computer....Tim



#15 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:50 AM

Posted 08 January 2015 - 07:19 AM

I cannot see anything suspicious here.

If you have speed issues, please contact your ISP.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users