Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Random Pop Up Sound Ads


  • This topic is locked This topic is locked
21 replies to this topic

#1 decka808

decka808

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:40 AM

Posted 26 February 2015 - 06:18 PM

Pasting in content from another post:

 

Hi all,

 

This just started happening.

 

As I am at my desktop...random ad soundbites start playing out of nowhere. No pops. Just sound.

 

I have ran ESET Smart Security (latest update)

Also AdwCleaner, Combofix, Junkware Removal Tool, Rkill, and TDSSKiller.

 

I am also using Adblock Plus as well.

 

 

Just as I typed this all out. I heard a total of 5 ads. :(

 

 

Any help would be greatly appreciated!

 

 

 

D

 

End of added content. ~ OB

 

Combofix:

 

 

ComboFix 15-02-16.01 - User 02/26/2015  12:23:49.3.4 - x64
Microsoft Windows 7 Professional   6.1.7601.1.1252.1.1033.18.8191.5638 [GMT -10:00]
Running from: c:\users\User\Desktop\Download from net\ComboFix.exe
AV: ESET Smart Security 8.0 *Disabled/Updated* {19259FAE-8396-A113-46DB-15B0E7DFA289}
FW: ESET Personal firewall *Enabled* {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
SP: ESET Smart Security 8.0 *Disabled/Updated* {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((   Files Created from 2015-01-26 to 2015-02-26  )))))))))))))))))))))))))))))))
.
.
2015-02-26 22:39 . 2015-02-26 22:39    --------    d-----w-    c:\users\Default\AppData\Local\temp
2015-02-26 13:34 . 2015-02-26 13:34    --------    d-----w-    C:\FRST
2015-02-26 08:57 . 2015-02-26 22:19    129752    ----a-w-    c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-02-26 08:57 . 2015-02-26 08:57    --------    d-----w-    c:\program files (x86)\Malwarebytes Anti-Malware
2015-02-26 08:57 . 2015-02-26 08:57    --------    d-----w-    c:\programdata\Malwarebytes
2015-02-26 08:57 . 2014-11-21 16:14    63704    ----a-w-    c:\windows\system32\drivers\mwac.sys
2015-02-26 08:57 . 2014-11-21 16:14    93400    ----a-w-    c:\windows\system32\drivers\mbamchameleon.sys
2015-02-26 08:57 . 2014-11-21 16:14    25816    ----a-w-    c:\windows\system32\drivers\mbam.sys
2015-02-25 09:00 . 2015-02-25 09:00    --------    d-----w-    C:\TDSSKiller_Quarantine
2015-02-25 06:20 . 2015-02-25 06:21    --------    d-----w-    c:\programdata\d9031fc3029645e48aa0799ef63914a9
2015-02-24 09:25 . 2013-04-09 23:34    1247744    ----a-w-    c:\windows\SysWow64\DWrite.dll
2015-02-24 09:25 . 2013-04-02 22:51    1643520    ----a-w-    c:\windows\system32\DWrite.dll
2015-02-24 00:49 . 2015-02-25 19:07    1249792    ----a-w-    c:\users\User\AppData\Roaming\msvcr90-ruby191.dll
2015-02-23 15:07 . 2015-02-23 15:07    --------    d-----w-    c:\users\User\AppData\Local\PaceAP
2015-02-23 14:40 . 2015-02-23 14:40    --------    d-----w-    c:\users\User\AppData\Roaming\tricomfi
2015-02-23 14:39 . 2015-02-25 09:01    --------    d-----w-    c:\users\User\AppData\Roaming\OAS
2015-02-23 14:16 . 2015-02-23 14:16    --------    d-----w-    c:\users\User\AppData\Roaming\Performix LLC
2015-02-23 13:07 . 2015-02-23 13:46    --------    d-----w-    c:\users\User\AppData\Roaming\iZotope
2015-02-23 12:59 . 2015-02-23 12:59    --------    d-----w-    c:\program files\Common Files\VST3
2015-02-23 12:59 . 2015-02-23 12:59    --------    d-----w-    c:\program files (x86)\Common Files\VST3
2015-02-23 12:59 . 2015-02-23 12:59    --------    d-----w-    c:\program files\Vstplugins
2015-02-23 12:58 . 2015-02-23 12:58    --------    d-----w-    c:\program files\Common Files\Avid
2015-02-23 12:58 . 2015-02-23 12:58    --------    d-----w-    c:\program files (x86)\Common Files\Digidesign
2015-02-23 12:56 . 2015-02-23 12:56    --------    d-----w-    c:\programdata\PACE
2015-02-23 12:51 . 2015-02-23 12:51    --------    d-----w-    c:\program files (x86)\iLok License Manager
2015-02-23 12:51 . 2015-02-23 12:51    --------    d-----w-    c:\program files (x86)\Common Files\PACE
2015-02-23 12:50 . 2015-02-23 12:50    --------    d-----w-    c:\program files\Bonjour
2015-02-23 12:50 . 2015-02-23 12:50    --------    d-----w-    c:\program files (x86)\Bonjour
2015-02-23 12:50 . 2015-02-23 12:50    --------    d-----w-    c:\programdata\Apple
2015-02-23 11:58 . 2015-02-23 11:58    --------    d-----w-    c:\users\User\AppData\Roaming\Glitch2
2015-02-23 08:39 . 2015-02-23 08:39    --------    d-----w-    c:\programdata\Psicraft
2015-02-23 08:39 . 2015-02-23 08:39    --------    d-----w-    c:\program files (x86)\Psicraft
2015-02-22 23:43 . 2015-02-25 07:33    --------    d-----r-    c:\users\User\Dropbox
2015-02-22 23:42 . 2015-02-25 07:32    --------    d-----w-    c:\users\User\AppData\Roaming\Dropbox
2015-02-21 13:01 . 2015-02-21 13:01    --------    d-----w-    c:\users\User\AppData\Local\Steam
2015-02-20 14:48 . 2015-02-16 14:21    11910896    ----a-w-    c:\programdata\Microsoft\Windows Defender\Definition Updates\{A912B9F1-1E58-4B5B-8A93-DE9BB0572D1B}\mpengine.dll
2015-02-19 06:12 . 2015-02-19 06:15    --------    d-----w-    c:\program files\TNod User & Password Finder
2015-02-19 06:11 . 2015-02-19 06:11    --------    d-----w-    c:\users\User\AppData\Local\ESET
2015-02-19 06:04 . 2015-02-19 06:04    --------    d-----w-    c:\program files\ESET
2015-02-16 06:05 . 2015-02-16 06:05    --------    d-----w-    c:\program files\Sony
2015-02-15 00:43 . 2015-02-15 00:43    --------    d-----w-    c:\users\User\AppData\Roaming\Ashampoo
2015-02-15 00:43 . 2015-02-15 00:43    --------    d-----w-    c:\users\User\AppData\Local\ashampoo
2015-02-15 00:42 . 2015-02-15 00:43    --------    d-----w-    c:\programdata\Ashampoo
2015-02-15 00:42 . 2015-02-15 00:42    --------    d-----w-    c:\program files (x86)\Ashampoo
2015-02-15 00:18 . 2015-02-15 00:18    --------    d-----w-    c:\users\User\AppData\Roaming\Publish Providers
2015-02-15 00:10 . 2015-02-16 06:10    --------    d-----w-    c:\users\User\AppData\Local\Sony
2015-02-15 00:10 . 2015-02-16 06:05    --------    d-----w-    c:\programdata\Sony
2015-02-15 00:10 . 2015-02-15 00:11    --------    d-----w-    c:\program files (x86)\Sony
2015-02-15 00:01 . 2015-02-16 06:10    --------    d-----w-    c:\users\User\AppData\Roaming\Sony
2015-02-14 09:52 . 2015-02-14 09:52    --------    d-----w-    c:\program files (x86)\ESET
2015-02-13 10:19 . 2015-02-13 10:19    --------    d-----w-    c:\programdata\LightScribe
2015-02-11 20:51 . 2015-01-23 03:43    620032    ----a-w-    c:\windows\SysWow64\jscript9diag.dll
2015-02-11 20:51 . 2015-01-23 03:17    4300800    ----a-w-    c:\windows\SysWow64\jscript9.dll
2015-02-11 20:51 . 2015-01-23 04:42    814080    ----a-w-    c:\windows\system32\jscript9diag.dll
2015-02-11 20:51 . 2015-01-23 04:41    6041600    ----a-w-    c:\windows\system32\jscript9.dll
2015-02-11 20:32 . 2015-01-09 03:14    91136    ----a-w-    c:\windows\system32\wdi.dll
2015-02-11 20:32 . 2015-01-09 03:14    950272    ----a-w-    c:\windows\system32\perftrack.dll
2015-02-11 20:32 . 2015-01-09 03:14    29696    ----a-w-    c:\windows\system32\powertracker.dll
2015-02-11 20:32 . 2015-01-09 02:48    76800    ----a-w-    c:\windows\SysWow64\wdi.dll
2015-02-11 00:38 . 2014-12-12 05:31    1480192    ----a-w-    c:\windows\system32\crypt32.dll
2015-02-11 00:36 . 2014-12-08 03:09    406528    ----a-w-    c:\windows\system32\scesrv.dll
2015-02-11 00:36 . 2014-12-08 02:46    308224    ----a-w-    c:\windows\SysWow64\scesrv.dll
2015-02-11 00:36 . 2015-01-09 02:03    3201536    ----a-w-    c:\windows\system32\win32k.sys
2015-02-10 21:17 . 2015-02-10 21:22    --------    d-----w-    c:\program files\Adobe
2015-02-10 21:11 . 2015-02-13 12:43    --------    d-----w-    c:\users\User\AppData\Local\Adobe
2015-02-10 20:38 . 2015-02-25 09:00    --------    d-----w-    c:\users\User\AppData\Local\CrashDumps
2015-02-10 11:11 . 2015-02-10 11:11    --------    d-----w-    c:\users\User\AppData\Local\Macromedia
2015-02-09 22:18 . 2015-02-10 20:30    --------    d-----w-    c:\programdata\regid.1986-12.com.adobe
2015-02-09 22:15 . 2015-02-10 21:18    --------    d-----w-    c:\program files\Common Files\Adobe
2015-02-09 22:12 . 2015-02-10 21:15    --------    d-----w-    c:\program files (x86)\Common Files\Adobe
2015-02-09 08:58 . 2015-02-09 08:58    279    ----a-w-    c:\windows\SysWow64\drivers\vwifikerneldrv.sys
2015-02-09 08:58 . 2015-02-09 08:58    279    ----a-w-    c:\windows\SysWow64\d3dx9_11.dll.tmp
2015-02-09 08:58 . 2015-02-23 14:51    --------    d-----w-    c:\programdata\Package Cache
2015-02-06 00:53 . 2015-02-10 11:11    71344    ----a-w-    c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-02-06 00:53 . 2015-02-10 11:11    701616    ----a-w-    c:\windows\SysWow64\FlashPlayerApp.exe
2015-02-06 00:53 . 2015-02-06 00:53    --------    d-----w-    c:\windows\SysWow64\Macromed
2015-02-06 00:53 . 2015-02-06 00:53    --------    d-----w-    c:\windows\system32\Macromed
2015-02-06 00:52 . 2015-02-06 00:52    --------    d-----w-    c:\users\User\AppData\Roaming\MixMeister Technology
2015-02-06 00:52 . 2015-02-24 01:22    --------    d-----w-    c:\program files (x86)\MixMeister Fusion
2015-02-04 20:33 . 2015-02-14 11:25    --------    d-----w-    c:\users\User\AppData\Local\29242
2015-02-04 20:07 . 2015-02-04 20:07    --------    d-----w-    c:\users\User\AppData\Local\Mixed In Key
2015-02-04 20:07 . 2015-02-04 20:07    --------    d-----w-    c:\users\User\AppData\Local\Mixed_In_Key_LLC
2015-02-04 20:07 . 2015-02-07 02:15    --------    d-----w-    c:\users\User\AppData\Local\Platinum Notes
2015-02-04 20:07 . 2015-02-04 20:07    --------    d-----w-    c:\program files (x86)\Mixed In Key LLC
2015-02-04 20:06 . 2015-02-04 20:06    --------    d-----w-    c:\users\User\AppData\Roaming\Mixed In Key LLC
2015-02-04 04:18 . 2015-02-04 04:18    --------    d-----w-    c:\users\User\AppData\Roaming\Opera Software
2015-02-04 04:18 . 2015-02-04 04:18    --------    d-----w-    c:\users\User\AppData\Local\Opera Software
2015-02-04 01:52 . 2015-02-25 06:19    --------    d-----w-    C:\AdwCleaner
2015-02-03 23:37 . 2015-02-03 23:37    --------    d-----w-    c:\program files (x86)\Common Files\PX Storage Engine
2015-02-03 23:36 . 2015-02-03 23:47    --------    d-----w-    c:\users\User\AppData\Roaming\Winamp
2015-02-03 23:36 . 2015-02-03 23:37    --------    d-----w-    c:\program files (x86)\Winamp
2015-02-03 03:27 . 2015-02-26 22:19    --------    d-----w-    c:\program files (x86)\Steam
2015-02-03 00:14 . 2012-10-17 14:31    741480    ------w-    c:\windows\system32\HPDiscoPM9511.dll
2015-02-03 00:14 . 2015-02-03 00:14    --------    d-----w-    c:\program files (x86)\HP
2015-02-03 00:14 . 2015-02-03 00:14    --------    d-----w-    c:\programdata\HP
2015-02-03 00:14 . 2015-02-03 00:14    --------    d-----w-    c:\program files\HP
2015-02-03 00:13 . 2015-02-03 00:15    --------    d-----w-    c:\users\User\AppData\Local\HP
2015-02-01 01:51 . 2015-02-01 01:51    --------    d-----w-    c:\programdata\Logitech
2015-02-01 01:50 . 2015-02-08 06:22    18960    ----a-w-    c:\windows\system32\drivers\LNonPnP.sys
2015-02-01 01:50 . 2015-02-01 01:51    --------    d-----w-    c:\programdata\Logishrd
2015-02-01 01:50 . 2015-02-01 01:50    --------    d-----w-    c:\program files\Logitech
2015-02-01 01:49 . 2015-02-01 01:50    --------    d-----w-    c:\program files\Common Files\LogiShrd
2015-02-01 01:49 . 2015-02-01 01:51    --------    d-----w-    c:\users\User\AppData\Roaming\Logitech
2015-02-01 01:49 . 2015-02-01 01:49    --------    d-----w-    c:\users\User\AppData\Roaming\Logishrd
2015-02-01 01:19 . 2015-02-10 10:20    --------    d-----w-    c:\users\User\AppData\Local\ElevatedDiagnostics
2015-01-31 20:25 . 2015-02-03 23:28    --------    d-----w-    c:\users\User\AppData\Local\SoulseekQt
2015-01-31 20:22 . 2015-01-31 20:22    --------    d-----w-    c:\program files (x86)\SoulseekQt
2015-01-31 14:06 . 2015-02-25 20:55    --------    d-----w-    c:\users\User\AppData\Roaming\vlc
2015-01-31 14:05 . 2015-01-31 14:05    --------    d-----w-    c:\program files (x86)\VideoLAN
2015-01-31 13:35 . 2009-09-05 03:44    517960    ----a-w-    c:\windows\system32\XAudio2_5.dll
2015-01-31 13:35 . 2009-09-05 03:44    515416    ----a-w-    c:\windows\SysWow64\XAudio2_5.dll
2015-01-31 13:35 . 2009-09-05 03:44    238936    ----a-w-    c:\windows\SysWow64\xactengine3_5.dll
2015-01-31 13:35 . 2009-09-05 03:44    176968    ----a-w-    c:\windows\system32\xactengine3_5.dll
2015-01-31 13:23 . 2015-02-13 01:14    --------    d-----r-    c:\users\User\Google Drive
2015-01-31 13:19 . 2015-01-31 13:20    --------    d-----w-    c:\program files (x86)\Google
2015-01-31 13:19 . 2015-01-31 13:20    --------    d-----w-    c:\users\User\AppData\Local\Google
2015-01-31 12:15 . 2015-01-31 19:30    --------    d-----w-    c:\program files (x86)\Common Files\Steam
2015-01-31 10:25 . 2015-01-31 10:25    --------    d-----w-    c:\users\User\AppData\Local\VS Revo Group
2015-01-31 10:25 . 2015-01-31 10:25    --------    d-----w-    c:\programdata\VS Revo Group
2015-01-31 10:25 . 2009-12-30 20:21    31800    ----a-w-    c:\windows\system32\drivers\revoflt.sys
2015-01-31 10:25 . 2015-01-31 10:25    --------    d-----w-    c:\program files\VS Revo Group
2015-01-31 10:07 . 2015-02-26 15:06    --------    d-----w-    c:\users\User\AppData\Roaming\FileZilla
2015-01-31 10:07 . 2015-02-12 06:18    --------    d-----w-    c:\program files (x86)\FileZilla FTP Client
2015-01-31 10:02 . 2015-01-31 10:03    --------    d-----w-    c:\users\User\AppData\Local\Mozilla
2015-01-31 10:02 . 2015-01-31 10:02    --------    d-----w-    c:\program files (x86)\Mozilla Maintenance Service
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-02-11 00:41 . 2014-06-19 06:06    116773704    ----a-w-    c:\windows\system32\MRT.exe
2014-12-23 10:41 . 2014-06-17 05:53    298120    ------w-    c:\windows\system32\MpSigStub.exe
2014-12-19 03:06 . 2015-01-19 06:08    210432    ----a-w-    c:\windows\system32\profsvc.dll
2014-12-19 01:46 . 2015-01-19 06:08    141312    ----a-w-    c:\windows\system32\drivers\mrxdav.sys
2014-12-11 17:47 . 2015-01-19 06:04    87040    ----a-w-    c:\windows\system32\TSWbPrxy.exe
2014-12-06 04:17 . 2015-01-19 06:08    303616    ----a-w-    c:\windows\system32\nlasvc.dll
2014-12-06 03:50 . 2015-01-19 06:08    52224    ----a-w-    c:\windows\SysWow64\nlaapi.dll
2014-12-06 03:50 . 2015-01-19 06:08    156672    ----a-w-    c:\windows\SysWow64\ncsi.dll
.
.
(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt1"]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12    152544    ----a-w-    c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt2"]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12    152544    ----a-w-    c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt3"]
@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12    152544    ----a-w-    c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt4"]
@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12    152544    ----a-w-    c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt5"]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12    152544    ----a-w-    c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt6"]
@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12    152544    ----a-w-    c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt7"]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12    152544    ----a-w-    c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt8"]
@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12    152544    ----a-w-    c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2015-02-18 2874048]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"RequireSignedAppInit_DLLs"=0 (0x0)
.
R1 adgnetworktdi;adgnetworktdi;c:\windows\system32\drivers\adgnetworktdi.sys;c:\windows\SYSNATIVE\drivers\adgnetworktdi.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
R3 e1kexpress;Intel® PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\DRIVERS\e1k62x64.sys;c:\windows\SYSNATIVE\DRIVERS\e1k62x64.sys [x]
R3 HECIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys;c:\windows\SYSNATIVE\DRIVERS\netr28x.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys;c:\windows\SYSNATIVE\DRIVERS\revoflt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys;c:\windows\SYSNATIVE\DRIVERS\wdcsam64.sys [x]
S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_xata.sys [x]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys;c:\windows\SYSNATIVE\DRIVERS\epfwwfp.sys [x]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys;c:\windows\SYSNATIVE\DRIVERS\EpfwLWF.sys [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [x]
S2 PaceLicenseDServices;PACE License Services;c:\program files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe;c:\program files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [x]
S2 RtkAudioService;Realtek Audio Service;c:\program files\Realtek\Audio\HDA\RtkAudioService64.exe;c:\program files\Realtek\Audio\HDA\RtkAudioService64.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
Contents of the 'Scheduled Tasks' folder
.
2015-02-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-01-31 13:19]
.
2015-02-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-01-31 13:19]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt1"]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12    185824    ----a-w-    c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt2"]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12    185824    ----a-w-    c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt3"]
@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12    185824    ----a-w-    c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt4"]
@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12    185824    ----a-w-    c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt5"]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12    185824    ----a-w-    c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt6"]
@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12    185824    ----a-w-    c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt7"]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12    185824    ----a-w-    c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt8"]
@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12    185824    ----a-w-    c:\users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2015-01-16 02:59    776520    ----a-w-    c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2015-01-16 02:59    776520    ----a-w-    c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2015-01-16 02:59    776520    ----a-w-    c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2015-01-16 02:59    776520    ----a-w-    c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2015-01-16 02:59    776520    ----a-w-    c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Bluetooth Connection Assistant"="LBTWIZ.EXE -silent" [X]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-02-12 162328]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-02-12 386584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-02-12 417304]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2014-08-20 1796056]
"EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2014-05-19 3100440]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2014-02-28 558496]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2014-10-02 5595336]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\rb5dr91n.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\PaceLicenseDServices]
"ImagePath"="\"c:\program files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe\" -u https://activation.paceap.com/InitiateActivation"
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_16_0_0_305_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_16_0_0_305_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_16_0_0_305_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_16_0_0_305_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_305.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.16"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_305.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_305.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_305.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2015-02-26  13:11:47
ComboFix-quarantined-files.txt  2015-02-26 23:11
ComboFix2.txt  2015-02-26 13:00
.
Pre-Run: 371,247,599,616 bytes free
Post-Run: 371,212,554,240 bytes free
.
- - End Of File - - BDEAC106E567B876C77CB23D4C3AB774
A36C5E4F47E84449FF07ED3517B43A31
 

 

 

 

 

 

 

 

FRST logs:

 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-02-2015 01
Ran by User (administrator) on USER-PC21892291 on 26-02-2015 13:14:38
Running from C:\Users\User\Desktop\Download from net
Loaded Profiles: User (Available profiles: User)
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\LBTWiz.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1796056 2014-08-19] (NVIDIA Corporation)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3100440 2014-05-19] (Logitech, Inc.)
HKLM\...\Run: [Bluetooth Connection Assistant] => LBTWIZ.EXE -silent
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5595336 2014-10-01] (ESET)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-760377670-320539966-1497012287-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2874048 2015-02-18] (Valve Corporation)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-760377670-320539966-1497012287-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-760377670-320539966-1497012287-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-760377670-320539966-1497012287-1000 -> {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} URL = https://www.google.com/search?q={searchTerms}
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\rb5dr91n.default
FF Homepage: hxxp://www.google.com
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Extension: Adblock Plus - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\rb5dr91n.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-02-24]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2015-01-31]
StartMenuInternet: FIREFOX.EXE - firefox.exe

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1349576 2014-10-01] (ESET)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [239176 2013-02-19] (Realtek Semiconductor)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-26] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-08-18] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [241368 2014-08-18] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [169280 2014-08-18] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [222280 2014-08-18] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44632 2014-08-18] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [63160 2014-09-18] (ESET)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-11-21] (Malwarebytes Corporation)
S3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
R1 omci; C:\Windows\System32\DRIVERS\omci.sys [26624 2010-03-08] (Dell Inc.)
S1 adgnetworktdi; system32\drivers\adgnetworktdi.sys [X]
S3 ADIHdAudAddService; system32\drivers\ADIHdAud.sys [X]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-26 13:12 - 2015-02-26 13:12 - 00030874 _____ () C:\ComboFix.txt
2015-02-26 03:49 - 2015-02-26 05:06 - 00000000 ____D () C:\Users\User\Desktop\Beatport Singles Part 2 (2015-02-23) (320kbps) (AciDToX8)
2015-02-26 03:34 - 2015-02-26 13:14 - 00000000 ____D () C:\FRST
2015-02-26 02:09 - 2011-06-25 20:45 - 00256000 _____ () C:\Windows\PEV.exe
2015-02-26 02:09 - 2010-11-07 07:20 - 00208896 _____ () C:\Windows\MBR.exe
2015-02-26 02:09 - 2009-04-19 18:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-02-26 02:09 - 2000-08-30 14:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-02-26 02:09 - 2000-08-30 14:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-02-26 02:09 - 2000-08-30 14:00 - 00098816 _____ () C:\Windows\sed.exe
2015-02-26 02:09 - 2000-08-30 14:00 - 00080412 _____ () C:\Windows\grep.exe
2015-02-26 02:09 - 2000-08-30 14:00 - 00068096 _____ () C:\Windows\zip.exe
2015-02-26 01:41 - 2015-02-26 03:48 - 00000000 ____D () C:\Users\User\Desktop\Beatport Singles (Part 1) (2015-02-23) (320kbps) (AciDToX8)
2015-02-25 22:57 - 2015-02-26 12:19 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-02-25 22:57 - 2015-02-25 22:57 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-02-25 22:57 - 2015-02-25 22:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-02-25 22:57 - 2015-02-25 22:57 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-02-25 22:57 - 2015-02-25 22:57 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-02-25 22:57 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-02-25 22:57 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-02-25 22:57 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-02-25 10:59 - 2015-02-25 17:41 - 00000000 ____D () C:\Users\User\Desktop\Mad.Max.2.1981.1080p.CEE.BluRay.AVC.DTS-HD.MA.5.1-FGT
2015-02-25 10:19 - 2015-02-25 10:50 - 00000000 ____D () C:\Users\User\Desktop\VA - The Drop (2014) [3CD] Mp3 @ CBR 320 Kbps [AryaN_L33T]
2015-02-24 23:00 - 2015-02-24 23:00 - 00000000 ____D () C:\TDSSKiller_Quarantine
2015-02-24 20:25 - 2015-02-26 13:14 - 00000000 ____D () C:\Qoobox
2015-02-24 20:25 - 2015-02-24 20:47 - 00000000 ____D () C:\Windows\erdnt
2015-02-24 20:20 - 2015-02-24 20:21 - 00000000 ____D () C:\ProgramData\d9031fc3029645e48aa0799ef63914a9
2015-02-24 16:08 - 2015-02-24 16:08 - 00000000 ____D () C:\Users\User\Desktop\Barely Alive - Torrent This EP
2015-02-24 16:04 - 2015-02-24 16:10 - 00000000 ____D () C:\Users\User\Desktop\Twine - STRNG THRY & Flow [NSDX067] [Never Say Die Records]
2015-02-23 23:25 - 2013-04-09 13:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-02-23 23:25 - 2013-04-02 12:51 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-02-23 17:10 - 2015-02-25 04:19 - 00206650 _____ () C:\Users\User\Desktop\RAGE 01.mmp
2015-02-23 14:49 - 2015-02-25 09:07 - 01249792 _____ (http://www.ruby-lang.org/) C:\Users\User\AppData\Roaming\msvcr90-ruby191.dll
2015-02-23 05:07 - 2015-02-23 05:07 - 00000000 ____D () C:\Users\User\AppData\Local\PaceAP
2015-02-23 04:40 - 2015-02-23 04:40 - 00003568 _____ () C:\Windows\System32\Tasks\DLAWG
2015-02-23 04:40 - 2015-02-23 04:40 - 00000000 ____D () C:\Users\User\AppData\Roaming\tricomfi
2015-02-23 04:39 - 2015-02-24 23:01 - 00000000 ____D () C:\Users\User\AppData\Roaming\OAS
2015-02-23 04:16 - 2015-02-23 04:16 - 00000000 ____D () C:\Users\User\AppData\Roaming\Performix LLC
2015-02-23 03:07 - 2015-02-23 03:46 - 00000000 ____D () C:\Users\User\AppData\Roaming\iZotope
2015-02-23 02:59 - 2015-02-23 02:59 - 00000000 ____D () C:\Program Files\Vstplugins
2015-02-23 02:59 - 2015-02-23 02:59 - 00000000 ____D () C:\Program Files\Common Files\VST3
2015-02-23 02:58 - 2015-02-23 03:00 - 00000000 ____D () C:\Users\User\Documents\iZotope
2015-02-23 02:58 - 2015-02-23 02:58 - 00000000 ____D () C:\Program Files\Common Files\Avid
2015-02-23 02:56 - 2015-02-23 02:56 - 00000000 ____D () C:\ProgramData\PACE
2015-02-23 02:53 - 2015-02-23 02:53 - 00002017 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iLok License Manager.lnk
2015-02-23 02:51 - 2015-02-23 02:51 - 00000000 ____D () C:\Program Files (x86)\iLok License Manager
2015-02-23 02:50 - 2015-02-23 02:50 - 00000000 ____D () C:\ProgramData\Apple
2015-02-23 02:50 - 2015-02-23 02:50 - 00000000 ____D () C:\Program Files\Bonjour
2015-02-23 02:50 - 2015-02-23 02:50 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2015-02-23 01:58 - 2015-02-23 01:58 - 00000000 ____D () C:\Users\User\AppData\Roaming\Glitch2
2015-02-22 22:39 - 2015-02-22 22:39 - 00000000 ____D () C:\Users\User\Documents\Psicraft
2015-02-22 22:39 - 2015-02-22 22:39 - 00000000 ____D () C:\ProgramData\Psicraft
2015-02-22 22:39 - 2015-02-22 22:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Psicraft
2015-02-22 22:39 - 2015-02-22 22:39 - 00000000 ____D () C:\Program Files (x86)\Psicraft
2015-02-22 14:13 - 2015-02-21 19:04 - 271911670 _____ () C:\Users\User\Desktop\Wahlstedt - Warrior (Mad Max Video Edit).mp4
2015-02-22 13:43 - 2015-02-24 21:33 - 00000000 ___RD () C:\Users\User\Dropbox
2015-02-22 13:43 - 2015-02-22 13:43 - 00001084 _____ () C:\Users\User\Desktop\Dropbox.lnk
2015-02-22 13:42 - 2015-02-24 21:32 - 00000000 ____D () C:\Users\User\AppData\Roaming\Dropbox
2015-02-22 13:42 - 2015-02-22 13:42 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-02-22 13:03 - 2015-02-24 23:27 - 00000000 ____D () C:\Users\User\Desktop\Drum N Bass
2015-02-21 22:38 - 2015-02-25 21:46 - 00000000 ____D () C:\Users\User\Desktop\Glitch Hop
2015-02-21 04:07 - 2015-02-25 22:00 - 00000000 ____D () C:\Users\User\Desktop\Beatport Singles (2015-02-17) (320kbps) (AciDToX8)
2015-02-21 03:01 - 2015-02-21 03:01 - 00000000 ____D () C:\Users\User\AppData\Local\Steam
2015-02-20 06:42 - 2015-02-20 08:15 - 397023627 _____ () C:\Users\User\Desktop\cannonball.run.ii.1984.720p.bluray.x264-psychd.mkv
2015-02-19 23:06 - 2015-02-20 01:07 - 410964306 _____ () C:\Users\User\Desktop\Kill.The.Messenger.2014.1080p.PROPER.BluRay.DD5.1.DTS-HD.x264.NLSubs-QoQ.mkv
2015-02-19 15:46 - 2015-02-22 13:16 - 00000000 ____D () C:\Users\User\Desktop\Beatport Singles Part 1 (2015-02-02) (320kbps) (AciDToX8)
2015-02-18 20:12 - 2015-02-18 20:15 - 00000000 ____D () C:\Program Files\TNod User & Password Finder
2015-02-18 20:12 - 2015-02-18 20:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TNod User & Password Finder
2015-02-18 20:11 - 2015-02-18 20:11 - 00000000 ____D () C:\Users\User\AppData\Roaming\ESET
2015-02-18 20:11 - 2015-02-18 20:11 - 00000000 ____D () C:\Users\User\AppData\Local\ESET
2015-02-18 20:10 - 2015-02-18 20:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2015-02-18 20:04 - 2015-02-18 20:04 - 00000000 ____D () C:\ProgramData\ESET
2015-02-18 20:04 - 2015-02-18 20:04 - 00000000 ____D () C:\Program Files\ESET
2015-02-15 20:05 - 2015-02-15 20:05 - 00006058 _____ () C:\Windows\system32\--traceoff
2015-02-15 20:05 - 2015-02-15 20:05 - 00001038 _____ () C:\Users\Public\Desktop\Vegas Pro 13.0 (64-bit).lnk
2015-02-15 20:05 - 2015-02-15 20:05 - 00000000 ____D () C:\Program Files\Sony
2015-02-15 20:05 - 2015-02-15 20:05 - 00000000 _____ () C:\Windows\system32\--debugoff
2015-02-14 16:31 - 2015-02-14 16:31 - 00000048 _____ () C:\Users\User\Desktop\Mix Link.txt
2015-02-14 14:43 - 2015-02-14 14:43 - 00001303 _____ () C:\Users\Public\Desktop\Ashampoo Burning Studio FREE.lnk
2015-02-14 14:43 - 2015-02-14 14:43 - 00000000 ____D () C:\Users\User\AppData\Roaming\Ashampoo
2015-02-14 14:43 - 2015-02-14 14:43 - 00000000 ____D () C:\Users\User\AppData\Local\ashampoo
2015-02-14 14:43 - 2015-02-14 14:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2015-02-14 14:42 - 2015-02-14 14:43 - 00000000 ____D () C:\ProgramData\Ashampoo
2015-02-14 14:42 - 2015-02-14 14:42 - 00000000 ____D () C:\Program Files (x86)\Ashampoo
2015-02-14 14:18 - 2015-02-14 14:18 - 00002572 _____ () C:\Users\User\Documents\Register Sound Forge Pro.htm
2015-02-14 14:18 - 2015-02-14 14:18 - 00000000 ____D () C:\Users\User\AppData\Roaming\Publish Providers
2015-02-14 14:16 - 2015-02-14 14:16 - 00001146 _____ () C:\Users\User\Desktop\Sound Forge Pro 11.0.lnk
2015-02-14 14:11 - 2015-02-15 20:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2015-02-14 14:10 - 2015-02-15 20:10 - 00000000 ____D () C:\Users\User\AppData\Local\Sony
2015-02-14 14:10 - 2015-02-15 20:05 - 00000000 ____D () C:\ProgramData\Sony
2015-02-14 14:10 - 2015-02-14 14:11 - 00000000 ____D () C:\Program Files (x86)\Sony
2015-02-14 14:01 - 2015-02-15 20:10 - 00000000 ____D () C:\Users\User\AppData\Roaming\Sony
2015-02-14 13:49 - 2015-02-14 16:00 - 352395624 _____ () C:\Users\User\Desktop\DECKA presents Love-Dirty 2.14.15.wav
2015-02-14 12:16 - 2015-02-14 18:22 - 00025788 _____ () C:\Users\User\Desktop\Mix test 044.mmp
2015-02-13 23:52 - 2015-02-13 23:52 - 00000000 ____D () C:\Program Files (x86)\ESET
2015-02-13 00:19 - 2015-02-13 00:19 - 00000000 ____D () C:\ProgramData\LightScribe
2015-02-11 20:58 - 2015-02-11 20:58 - 00000461 _____ () C:\Users\User\Desktop\POWER 2 (E) - Shortcut.lnk
2015-02-11 10:51 - 2015-01-22 18:42 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-02-11 10:51 - 2015-01-22 18:41 - 06041600 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-02-11 10:51 - 2015-01-22 17:43 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-02-11 10:51 - 2015-01-22 17:17 - 04300800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-02-11 10:47 - 2015-02-11 10:47 - 00001016 _____ () C:\Users\User\Desktop\MixMeister Fusion.lnk
2015-02-11 10:32 - 2015-01-08 17:14 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2015-02-11 10:32 - 2015-01-08 17:14 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2015-02-11 10:32 - 2015-01-08 17:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2015-02-11 10:32 - 2015-01-08 16:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
2015-02-10 14:39 - 2015-02-03 17:16 - 00894976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-02-10 14:39 - 2015-02-03 17:16 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-02-10 14:39 - 2015-02-03 17:16 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-02-10 14:39 - 2015-02-03 17:16 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-02-10 14:39 - 2015-02-03 17:16 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-02-10 14:39 - 2015-02-03 17:16 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-02-10 14:39 - 2015-02-03 17:13 - 01098752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-02-10 14:39 - 2015-01-27 13:36 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2015-02-10 14:39 - 2015-01-13 19:47 - 00389808 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-02-10 14:39 - 2015-01-13 19:09 - 00342712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-02-10 14:39 - 2015-01-11 17:09 - 25056256 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-02-10 14:39 - 2015-01-11 17:05 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-02-10 14:39 - 2015-01-11 17:05 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-02-10 14:39 - 2015-01-11 16:49 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-02-10 14:39 - 2015-01-11 16:48 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-02-10 14:39 - 2015-01-11 16:48 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-02-10 14:39 - 2015-01-11 16:48 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-02-10 14:39 - 2015-01-11 16:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-02-10 14:39 - 2015-01-11 16:40 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-02-10 14:39 - 2015-01-11 16:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-02-10 14:39 - 2015-01-11 16:36 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-02-10 14:39 - 2015-01-11 16:34 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-02-10 14:39 - 2015-01-11 16:34 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-02-10 14:39 - 2015-01-11 16:25 - 19740160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-02-10 14:39 - 2015-01-11 16:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-02-10 14:39 - 2015-01-11 16:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-02-10 14:39 - 2015-01-11 16:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-02-10 14:39 - 2015-01-11 16:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-10 14:39 - 2015-01-11 16:08 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-02-10 14:39 - 2015-01-11 16:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-02-10 14:39 - 2015-01-11 16:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-02-10 14:39 - 2015-01-11 16:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-02-10 14:39 - 2015-01-11 16:07 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-02-10 14:39 - 2015-01-11 16:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-02-10 14:39 - 2015-01-11 16:04 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-02-10 14:39 - 2015-01-11 16:02 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-02-10 14:39 - 2015-01-11 16:00 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-02-10 14:39 - 2015-01-11 15:59 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-02-10 14:39 - 2015-01-11 15:57 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-02-10 14:39 - 2015-01-11 15:55 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-02-10 14:39 - 2015-01-11 15:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-02-10 14:39 - 2015-01-11 15:48 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-02-10 14:39 - 2015-01-11 15:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-02-10 14:39 - 2015-01-11 15:46 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-02-10 14:39 - 2015-01-11 15:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-02-10 14:39 - 2015-01-11 15:43 - 14401024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-02-10 14:39 - 2015-01-11 15:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-02-10 14:39 - 2015-01-11 15:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-02-10 14:39 - 2015-01-11 15:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-02-10 14:39 - 2015-01-11 15:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-02-10 14:39 - 2015-01-11 15:27 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-02-10 14:39 - 2015-01-11 15:23 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-02-10 14:39 - 2015-01-11 15:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-02-10 14:39 - 2015-01-11 15:22 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-02-10 14:39 - 2015-01-11 15:14 - 12829184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-02-10 14:39 - 2015-01-11 15:14 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-02-10 14:39 - 2015-01-11 15:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-02-10 14:39 - 2015-01-11 15:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-02-10 14:39 - 2015-01-11 14:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-02-10 14:39 - 2015-01-11 14:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-02-10 14:39 - 2015-01-09 20:48 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-02-10 14:39 - 2015-01-09 20:48 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-02-10 14:39 - 2015-01-09 20:48 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-02-10 14:39 - 2015-01-09 20:48 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-02-10 14:39 - 2015-01-09 20:48 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-02-10 14:39 - 2015-01-09 20:48 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-02-10 14:39 - 2015-01-09 20:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-02-10 14:39 - 2015-01-09 20:27 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-02-10 14:39 - 2015-01-09 20:27 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-02-10 14:39 - 2015-01-09 20:27 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-02-10 14:39 - 2015-01-09 20:27 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-02-10 14:39 - 2015-01-09 20:27 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-02-10 14:39 - 2015-01-09 20:27 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-02-10 14:39 - 2015-01-09 20:27 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-02-10 14:38 - 2015-01-14 22:14 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-02-10 14:38 - 2015-01-14 22:14 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-02-10 14:38 - 2015-01-14 22:09 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-02-10 14:38 - 2015-01-14 22:09 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-02-10 14:38 - 2015-01-14 22:09 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-02-10 14:38 - 2015-01-14 22:09 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-02-10 14:38 - 2015-01-14 22:09 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-02-10 14:38 - 2015-01-14 22:08 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-02-10 14:38 - 2015-01-14 22:06 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-02-10 14:38 - 2015-01-14 22:06 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-02-10 14:38 - 2015-01-14 22:04 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-02-10 14:38 - 2015-01-14 21:42 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-02-10 14:38 - 2015-01-14 21:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-02-10 14:38 - 2015-01-14 21:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-02-10 14:38 - 2015-01-14 21:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-02-10 14:38 - 2015-01-14 21:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-02-10 14:38 - 2015-01-14 21:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-02-10 14:38 - 2015-01-14 18:22 - 00458824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-02-10 14:38 - 2015-01-13 20:09 - 05554112 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-02-10 14:38 - 2015-01-13 20:05 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-02-10 14:38 - 2015-01-13 20:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-02-10 14:38 - 2015-01-13 20:04 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-02-10 14:38 - 2015-01-13 19:44 - 03972544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-02-10 14:38 - 2015-01-13 19:44 - 03917760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-02-10 14:38 - 2015-01-13 19:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-02-10 14:38 - 2015-01-12 17:10 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-02-10 14:38 - 2015-01-12 16:49 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-02-10 14:38 - 2014-12-11 19:31 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-02-10 14:38 - 2014-12-11 19:07 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-02-10 14:38 - 2014-11-25 17:53 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-02-10 14:38 - 2014-11-25 17:32 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-02-10 14:38 - 2014-07-06 16:07 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-02-10 14:38 - 2014-07-06 16:06 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-02-10 14:38 - 2014-07-06 15:40 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-02-10 14:38 - 2014-07-06 15:40 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-02-10 14:36 - 2015-01-08 16:03 - 03201536 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-02-10 14:36 - 2014-12-07 17:09 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-02-10 14:36 - 2014-12-07 16:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-02-10 14:33 - 2015-02-25 00:16 - 00000000 ____D () C:\Users\User\Desktop\Mixmister
2015-02-10 11:24 - 2015-02-11 19:45 - 00000345 _____ () C:\Users\User\Documents\DesignLibrary_Photoshop.log
2015-02-10 11:22 - 2015-02-10 11:22 - 00000000 ____D () C:\Program Files (x86)\Adobe
2015-02-10 11:18 - 2015-02-10 11:18 - 00001040 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2014.lnk
2015-02-10 11:17 - 2015-02-10 11:22 - 00000000 ____D () C:\Program Files\Adobe
2015-02-10 11:14 - 2015-02-10 11:14 - 00001530 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2015-02-10 11:12 - 2015-02-10 11:49 - 00000000 ____D () C:\ProgramData\Adobe
2015-02-10 11:11 - 2015-02-13 02:43 - 00000000 ____D () C:\Users\User\AppData\Local\Adobe
2015-02-10 11:09 - 2015-02-10 11:24 - 00000000 ____D () C:\Users\User\AppData\Roaming\Adobe
2015-02-10 10:38 - 2015-02-24 23:00 - 00000000 ____D () C:\Users\User\AppData\Local\CrashDumps
2015-02-10 01:11 - 2015-02-10 01:11 - 00000000 ____D () C:\Users\User\AppData\Local\Macromedia
2015-02-10 00:19 - 2015-02-10 00:19 - 00000000 ____D () C:\Users\User\AppData\Roaming\AdobeSupportAdvisor.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1
2015-02-09 12:34 - 2015-02-26 12:18 - 00006178 _____ () C:\Windows\PFRO.log
2015-02-09 12:18 - 2015-02-10 10:30 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2015-02-09 12:15 - 2015-02-10 11:18 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2015-02-08 22:58 - 2015-02-23 04:51 - 00000000 ____D () C:\ProgramData\Package Cache
2015-02-08 22:58 - 2015-02-08 22:58 - 00000279 _____ () C:\Windows\SysWOW64\Drivers\vwifikerneldrv.sys
2015-02-08 22:58 - 2015-02-08 22:58 - 00000279 _____ () C:\Windows\SysWOW64\d3dx9_11.dll.tmp
2015-02-08 22:58 - 2015-02-08 22:58 - 00000279 _____ () C:\ProgramData\fontcacheev1.dat
2015-02-08 22:51 - 2015-02-26 12:18 - 00005311 _____ () C:\Windows\setupact.log
2015-02-08 22:51 - 2015-02-08 22:51 - 00000000 _____ () C:\Windows\setuperr.log
2015-02-08 20:50 - 2015-02-08 20:50 - 06372800 _____ (Tim Kosse) C:\Users\User\Downloads\FileZilla_3.10.1.1_win32-setup.exe
2015-02-06 16:15 - 2015-02-24 23:51 - 00000000 ____D () C:\Users\User\Desktop\Platinum Notes
2015-02-05 14:53 - 2015-02-10 01:11 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-02-05 14:53 - 2015-02-10 01:11 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-02-05 14:53 - 2015-02-05 14:53 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2015-02-05 14:53 - 2015-02-05 14:53 - 00000000 ____D () C:\Windows\system32\Macromed
2015-02-05 14:53 - 2015-02-05 14:53 - 00000000 ____D () C:\Users\User\AppData\Roaming\Macromedia
2015-02-05 14:52 - 2015-02-23 15:22 - 00000000 ____D () C:\Program Files (x86)\MixMeister Fusion
2015-02-05 14:52 - 2015-02-05 14:52 - 00000000 ____D () C:\Users\User\AppData\Roaming\MixMeister Technology
2015-02-05 14:52 - 2015-02-05 14:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MixMeister
2015-02-05 14:43 - 2015-02-14 03:35 - 00000000 ____D () C:\Users\User\Desktop\Decka Flyer
2015-02-05 11:03 - 2015-02-05 11:03 - 00000367 _____ () C:\Users\User\Desktop\MECCA (J) - Shortcut.lnk
2015-02-04 23:51 - 2015-02-14 14:01 - 00000000 ____D () C:\Users\User\Desktop\Decka Logo
2015-02-04 10:33 - 2015-02-14 01:25 - 00000000 ____D () C:\Users\User\AppData\Local\29242
2015-02-04 10:07 - 2015-02-06 16:15 - 00000000 ____D () C:\Users\User\AppData\Local\Platinum Notes
2015-02-04 10:07 - 2015-02-06 16:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Platinum Notes
2015-02-04 10:07 - 2015-02-04 10:07 - 00002260 _____ () C:\Users\User\Desktop\Platinum Notes 4.lnk
2015-02-04 10:07 - 2015-02-04 10:07 - 00000000 ____D () C:\Users\User\AppData\Local\Mixed_In_Key_LLC
2015-02-04 10:07 - 2015-02-04 10:07 - 00000000 ____D () C:\Users\User\AppData\Local\Mixed In Key
2015-02-04 10:07 - 2015-02-04 10:07 - 00000000 ____D () C:\Program Files (x86)\Mixed In Key LLC
2015-02-04 10:06 - 2015-02-04 10:06 - 00000000 ____D () C:\Users\User\AppData\Roaming\Mixed In Key LLC
2015-02-03 18:18 - 2015-02-03 18:18 - 00001135 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-02-03 18:18 - 2015-02-03 18:18 - 00000000 ____D () C:\Users\User\AppData\Roaming\Opera Software
2015-02-03 18:18 - 2015-02-03 18:18 - 00000000 ____D () C:\Users\User\AppData\Local\Opera Software
2015-02-03 15:52 - 2015-02-24 20:19 - 00000000 ____D () C:\AdwCleaner
2015-02-03 14:01 - 2015-02-03 14:01 - 00000000 ____D () C:\Users\User\Desktop\Grand Funk Railroad - Greatest Hits - Remastered - 320Kbps - Drbn - Rock
2015-02-03 13:46 - 2015-02-25 22:14 - 00000000 ____D () C:\Users\User\Desktop\Archive
2015-02-03 13:36 - 2015-02-03 13:47 - 00000000 ____D () C:\Users\User\AppData\Roaming\Winamp
2015-02-03 13:36 - 2015-02-03 13:37 - 00000000 ____D () C:\Program Files (x86)\Winamp
2015-02-02 17:56 - 2015-02-02 17:56 - 00000220 _____ () C:\Users\User\Desktop\Warhammer 40,000 Dawn of War  Soulstorm.url
2015-02-02 17:33 - 2015-02-02 17:33 - 00000220 _____ () C:\Users\User\Desktop\Warhammer 40,000 Dawn of War - Game of the Year Edition.url
2015-02-02 17:27 - 2015-02-26 12:19 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-02-02 17:27 - 2015-02-02 17:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-02-02 14:14 - 2015-02-02 14:14 - 00000057 _____ () C:\ProgramData\Ament.ini
2015-02-02 14:14 - 2015-02-02 14:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-02-02 14:14 - 2015-02-02 14:14 - 00000000 ____D () C:\ProgramData\HP
2015-02-02 14:14 - 2015-02-02 14:14 - 00000000 ____D () C:\Program Files\HP
2015-02-02 14:14 - 2015-02-02 14:14 - 00000000 ____D () C:\Program Files (x86)\HP
2015-02-02 14:14 - 2012-10-17 04:31 - 00741480 ____N (Hewlett-Packard Co.) C:\Windows\system32\HPDiscoPM9511.dll
2015-02-02 14:13 - 2015-02-02 14:15 - 00000000 ____D () C:\Users\User\AppData\Local\HP
2015-01-31 15:51 - 2015-01-31 15:51 - 00000000 ____D () C:\Users\Public\Documents\Logishrd
2015-01-31 15:51 - 2015-01-31 15:51 - 00000000 ____D () C:\ProgramData\Logitech
2015-01-31 15:50 - 2015-02-07 20:22 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2015-01-31 15:50 - 2015-01-31 15:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2015-01-31 15:50 - 2015-01-31 15:51 - 00000000 ____D () C:\ProgramData\Logishrd
2015-01-31 15:50 - 2015-01-31 15:50 - 00000000 ____D () C:\Program Files\Logitech
2015-01-31 15:49 - 2015-01-31 15:51 - 00000000 ____D () C:\Users\User\AppData\Roaming\Logitech
2015-01-31 15:49 - 2015-01-31 15:50 - 00000000 ____D () C:\Program Files\Common Files\LogiShrd
2015-01-31 15:49 - 2015-01-31 15:49 - 00000000 ____D () C:\Users\User\AppData\Roaming\Logishrd
2015-01-31 10:25 - 2015-02-03 13:28 - 00000000 ____D () C:\Users\User\AppData\Local\SoulseekQt
2015-01-31 10:22 - 2015-01-31 10:22 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SoulseekQt
2015-01-31 10:22 - 2015-01-31 10:22 - 00000000 ____D () C:\Program Files (x86)\SoulseekQt
2015-01-31 10:20 - 2015-02-25 10:42 - 00000000 ____D () C:\Users\User\Desktop\Soulseek
2015-01-31 04:06 - 2015-02-25 10:55 - 00000000 ____D () C:\Users\User\AppData\Roaming\vlc
2015-01-31 04:05 - 2015-01-31 04:05 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2015-01-31 03:35 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2015-01-31 03:35 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2015-01-31 03:35 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2015-01-31 03:35 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2015-01-31 03:34 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2015-01-31 03:34 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2015-01-31 03:34 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2015-01-31 03:34 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2015-01-31 03:34 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2015-01-31 03:34 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2015-01-31 03:34 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2015-01-31 03:34 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2015-01-31 03:34 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2015-01-31 03:34 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2015-01-31 03:34 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2015-01-31 03:34 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2015-01-31 03:34 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2015-01-31 03:34 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2015-01-31 03:34 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2015-01-31 03:34 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2015-01-31 03:34 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2015-01-31 03:34 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2015-01-31 03:34 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2015-01-31 03:34 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2015-01-31 03:34 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2015-01-31 03:34 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2015-01-31 03:34 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2015-01-31 03:34 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2015-01-31 03:34 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2015-01-31 03:34 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2015-01-31 03:34 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2015-01-31 03:34 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2015-01-31 03:34 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2015-01-31 03:34 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2015-01-31 03:34 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2015-01-31 03:34 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2015-01-31 03:34 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2015-01-31 03:34 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2015-01-31 03:34 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2015-01-31 03:34 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2015-01-31 03:34 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2015-01-31 03:34 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2015-01-31 03:34 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2015-01-31 03:34 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2015-01-31 03:34 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2015-01-31 03:34 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2015-01-31 03:34 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2015-01-31 03:34 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2015-01-31 03:34 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2015-01-31 03:34 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2015-01-31 03:34 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2015-01-31 03:34 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2015-01-31 03:34 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2015-01-31 03:34 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2015-01-31 03:34 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2015-01-31 03:34 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2015-01-31 03:34 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2015-01-31 03:34 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2015-01-31 03:34 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2015-01-31 03:34 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2015-01-31 03:34 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2015-01-31 03:34 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2015-01-31 03:34 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2015-01-31 03:34 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2015-01-31 03:34 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2015-01-31 03:34 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2015-01-31 03:34 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2015-01-31 03:34 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2015-01-31 03:34 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2015-01-31 03:34 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2015-01-31 03:34 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2015-01-31 03:34 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2015-01-31 03:34 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2015-01-31 03:34 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2015-01-31 03:34 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2015-01-31 03:34 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2015-01-31 03:34 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2015-01-31 03:34 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2015-01-31 03:34 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2015-01-31 03:34 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2015-01-31 03:34 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2015-01-31 03:34 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2015-01-31 03:34 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2015-01-31 03:34 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2015-01-31 03:34 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2015-01-31 03:34 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2015-01-31 03:34 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2015-01-31 03:34 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2015-01-31 03:34 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2015-01-31 03:34 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2015-01-31 03:34 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2015-01-31 03:34 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2015-01-31 03:34 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2015-01-31 03:34 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2015-01-31 03:34 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2015-01-31 03:34 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2015-01-31 03:34 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2015-01-31 03:34 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2015-01-31 03:34 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2015-01-31 03:34 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2015-01-31 03:34 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2015-01-31 03:34 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2015-01-31 03:34 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2015-01-31 03:34 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2015-01-31 03:34 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2015-01-31 03:34 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2015-01-31 03:34 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2015-01-31 03:34 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2015-01-31 03:34 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2015-01-31 03:34 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2015-01-31 03:34 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2015-01-31 03:34 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2015-01-31 03:34 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2015-01-31 03:34 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2015-01-31 03:34 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2015-01-31 03:34 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2015-01-31 03:34 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2015-01-31 03:34 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2015-01-31 03:34 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2015-01-31 03:34 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2015-01-31 03:34 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2015-01-31 03:34 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2015-01-31 03:34 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2015-01-31 03:34 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2015-01-31 03:34 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2015-01-31 03:34 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2015-01-31 03:34 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2015-01-31 03:34 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2015-01-31 03:34 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2015-01-31 03:34 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2015-01-31 03:34 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2015-01-31 03:34 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2015-01-31 03:34 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2015-01-31 03:34 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2015-01-31 03:34 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2015-01-31 03:34 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2015-01-31 03:34 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2015-01-31 03:34 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2015-01-31 03:34 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2015-01-31 03:34 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2015-01-31 03:34 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2015-01-31 03:34 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2015-01-31 03:34 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2015-01-31 03:34 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2015-01-31 03:34 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2015-01-31 03:34 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2015-01-31 03:34 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2015-01-31 03:34 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2015-01-31 03:34 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2015-01-31 03:34 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2015-01-31 03:34 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2015-01-31 03:34 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2015-01-31 03:34 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2015-01-31 03:34 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2015-01-31 03:34 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2015-01-31 03:34 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2015-01-31 03:34 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2015-01-31 03:34 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2015-01-31 03:30 - 2015-01-31 09:24 - 00000000 ____D () C:\Users\User\Documents\my games
2015-01-31 03:23 - 2015-02-12 15:14 - 00000000 ___RD () C:\Users\User\Google Drive
2015-01-31 03:21 - 2015-01-31 03:23 - 00001640 _____ () C:\Users\User\Desktop\Google Drive.lnk
2015-01-31 03:20 - 2015-01-31 03:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-01-31 03:19 - 2015-02-26 12:18 - 00000890 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-31 03:19 - 2015-02-26 04:18 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-31 03:19 - 2015-02-12 15:13 - 00003890 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-01-31 03:19 - 2015-02-12 15:13 - 00003638 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-01-31 03:19 - 2015-01-31 03:20 - 00000000 ____D () C:\Users\User\AppData\Local\Google
2015-01-31 03:19 - 2015-01-31 03:20 - 00000000 ____D () C:\Program Files (x86)\Google
2015-01-31 03:11 - 2015-02-26 13:14 - 00000000 ____D () C:\Users\User\Desktop\Download from net
2015-01-31 02:48 - 2015-01-31 02:48 - 00075776 _____ (FRIEND) C:\Users\User\Desktop\PC ShutDown Timer.exe
2015-01-31 00:25 - 2015-02-14 02:26 - 00001121 _____ () C:\Users\User\Desktop\Revo Uninstaller Pro.lnk
2015-01-31 00:25 - 2015-01-31 15:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2015-01-31 00:25 - 2015-01-31 00:25 - 00000000 ____D () C:\Users\User\AppData\Local\VS Revo Group
2015-01-31 00:25 - 2015-01-31 00:25 - 00000000 ____D () C:\ProgramData\VS Revo Group
2015-01-31 00:25 - 2015-01-31 00:25 - 00000000 ____D () C:\Program Files\VS Revo Group
2015-01-31 00:25 - 2009-12-30 10:21 - 00031800 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys
2015-01-31 00:07 - 2015-02-26 05:06 - 00000000 ____D () C:\Users\User\AppData\Roaming\FileZilla
2015-01-31 00:07 - 2015-02-11 20:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2015-01-31 00:07 - 2015-02-11 20:18 - 00000000 ____D () C:\Program Files (x86)\FileZilla FTP Client
2015-01-31 00:02 - 2015-01-31 00:03 - 00000000 ____D () C:\Users\User\AppData\Roaming\Mozilla
2015-01-31 00:02 - 2015-01-31 00:03 - 00000000 ____D () C:\Users\User\AppData\Local\Mozilla
2015-01-31 00:02 - 2015-01-31 00:02 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-01-31 00:02 - 2015-01-31 00:02 - 00000000 ____D () C:\ProgramData\Mozilla
2015-01-31 00:02 - 2015-01-31 00:02 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-31 00:02 - 2015-01-31 00:02 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-01-30 18:50 - 2015-02-10 11:18 - 00000000 ____D () C:\Users\User\AppData\Roaming\NVIDIA
2015-01-30 17:07 - 2015-01-30 17:07 - 00000000 ____D () C:\Windows\system32\SRSLabs
2015-01-30 17:07 - 2015-01-30 17:07 - 00000000 ____D () C:\Program Files\Realtek
2015-01-30 17:06 - 2015-02-23 02:53 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-01-30 17:06 - 2013-03-29 21:42 - 03379272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2015-01-30 17:06 - 2013-03-29 18:04 - 21170176 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2015-01-30 17:06 - 2013-03-29 17:10 - 00449481 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2015-01-30 17:06 - 2013-03-27 16:57 - 00135240 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2015-01-30 17:06 - 2013-03-26 17:06 - 02797128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2015-01-30 17:06 - 2013-03-26 17:04 - 02734624 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2015-01-30 17:06 - 2013-03-26 15:40 - 03693128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2015-01-30 17:06 - 2013-03-26 14:38 - 01659464 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2015-01-30 17:06 - 2013-03-23 03:43 - 00208072 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2015-01-30 17:06 - 2013-03-12 18:16 - 00613448 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2015-01-30 17:06 - 2013-02-20 18:55 - 01284680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2015-01-30 17:06 - 2013-02-19 18:52 - 00991816 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2015-01-30 17:06 - 2013-01-16 16:02 - 02079816 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2015-01-30 17:06 - 2012-06-20 17:26 - 00110592 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2015-01-30 17:06 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2015-01-30 17:06 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2015-01-30 17:06 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2015-01-30 17:06 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2015-01-30 17:06 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2015-01-30 17:06 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2015-01-30 17:06 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2015-01-30 17:06 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2015-01-30 17:06 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2015-01-30 17:06 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2015-01-30 17:06 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2015-01-30 17:06 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2015-01-30 17:06 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2015-01-30 17:06 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2015-01-30 17:04 - 2015-01-30 17:07 - 00000000 ___HD () C:\Program Files (x86)\Temp
2015-01-30 17:04 - 2015-01-30 17:04 - 00000000 ____D () C:\Program Files (x86)\Realtek
2015-01-30 15:19 - 2015-01-30 15:19 - 00000000 __SHD () C:\Users\User\AppData\Local\EmieBrowserModeList
2015-01-30 15:09 - 2015-01-30 15:09 - 00000000 ____D () C:\Users\User\AppData\Local\NVIDIA
2015-01-30 15:09 - 2015-01-30 15:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-01-30 15:06 - 2015-02-26 12:18 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-01-30 15:06 - 2015-01-30 15:06 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-01-30 15:06 - 2014-07-02 08:55 - 06783776 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-01-30 15:06 - 2014-07-02 08:55 - 03522392 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-01-30 15:06 - 2014-07-02 08:55 - 02559960 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-01-30 15:06 - 2014-07-02 08:55 - 00935368 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-01-30 15:06 - 2014-07-02 08:55 - 00386520 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-01-30 15:06 - 2014-07-02 08:55 - 00062808 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-01-30 15:06 - 2014-07-02 07:44 - 00609240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-01-30 15:06 - 2014-07-02 00:14 - 03826628 _____ () C:\Windows\system32\nvcoproc.bin
2015-01-30 15:05 - 2015-01-30 15:06 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-01-30 15:05 - 2015-01-30 15:06 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-01-30 15:05 - 2014-08-19 22:15 - 00075040 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-01-30 15:05 - 2014-08-19 22:15 - 00061912 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2015-01-30 14:15 - 2015-01-30 17:07 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2015-01-30 14:12 - 2015-01-30 14:12 - 00001365 _____ () C:\Windows\system32\RaCoInst.log

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-26 12:41 - 2009-07-13 16:34 - 00000215 _____ () C:\Windows\system.ini
2015-02-26 12:25 - 2009-07-13 18:45 - 00031200 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-02-26 12:25 - 2009-07-13 18:45 - 00031200 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-02-26 12:23 - 2009-07-13 19:13 - 00781298 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-02-26 12:21 - 2015-01-19 18:04 - 01380114 _____ () C:\Windows\WindowsUpdate.log
2015-02-26 12:18 - 2009-07-13 19:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-24 15:31 - 2009-07-13 19:08 - 00032604 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-02-18 19:32 - 2014-06-19 20:41 - 00001945 _____ () C:\Windows\epplauncher.mif
2015-02-14 02:26 - 2014-06-19 18:08 - 00000866 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-02-12 04:47 - 2009-07-13 17:20 - 00000000 ____D () C:\Windows\rescache
2015-02-11 10:44 - 2009-07-13 17:20 - 00000000 ____D () C:\Windows\tracing
2015-02-10 14:50 - 2009-07-13 18:45 - 05079056 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-02-10 14:48 - 2015-01-18 20:41 - 00000000 ____D () C:\Windows\system32\appraiser
2015-02-10 14:48 - 2014-06-18 19:43 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-02-10 14:48 - 2009-07-13 17:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-02-10 14:46 - 2014-06-19 18:10 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-02-10 14:44 - 2014-06-18 20:06 - 00000000 ____D () C:\Windows\system32\MRT
2015-02-10 14:41 - 2014-06-18 20:06 - 116773704 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-02-09 17:04 - 2009-07-13 17:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-02-09 12:55 - 2014-06-16 21:11 - 00109296 _____ () C:\Users\User\AppData\Local\GDIPFONTCACHEV1.DAT
2015-02-09 12:15 - 2009-07-13 17:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2015-01-31 09:24 - 2009-07-13 19:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-01-30 15:06 - 2009-07-13 17:20 - 00000000 ____D () C:\Windows\Help

==================== Files in the root of some directories =======

2015-02-23 14:49 - 2015-02-25 09:07 - 1249792 _____ (http://www.ruby-lang.org/) C:\Users\User\AppData\Roaming\msvcr90-ruby191.dll
2015-02-02 14:14 - 2015-02-02 14:14 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-02-08 22:58 - 2015-02-08 22:58 - 0000279 _____ () C:\ProgramData\fontcacheev1.dat

Files to move or delete:
====================
C:\ProgramData\fontcacheev1.dat


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-23 20:38

==================== End Of Log ============================

 

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 25-02-2015 01
Ran by User (administrator) on USER-PC21892291 on 26-02-2015 13:14:38
Running from C:\Users\User\Desktop\Download from net
Loaded Profiles: User (Available profiles: User)
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\LBTWiz.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1796056 2014-08-19] (NVIDIA Corporation)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3100440 2014-05-19] (Logitech, Inc.)
HKLM\...\Run: [Bluetooth Connection Assistant] => LBTWIZ.EXE -silent
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5595336 2014-10-01] (ESET)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-760377670-320539966-1497012287-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2874048 2015-02-18] (Valve Corporation)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-760377670-320539966-1497012287-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-760377670-320539966-1497012287-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-760377670-320539966-1497012287-1000 -> {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} URL = https://www.google.com/search?q={searchTerms}
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\rb5dr91n.default
FF Homepage: hxxp://www.google.com
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Extension: Adblock Plus - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\rb5dr91n.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-02-24]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2015-01-31]
StartMenuInternet: FIREFOX.EXE - firefox.exe

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1349576 2014-10-01] (ESET)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [239176 2013-02-19] (Realtek Semiconductor)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-26] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-08-18] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [241368 2014-08-18] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [169280 2014-08-18] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [222280 2014-08-18] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44632 2014-08-18] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [63160 2014-09-18] (ESET)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-11-21] (Malwarebytes Corporation)
S3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
R1 omci; C:\Windows\System32\DRIVERS\omci.sys [26624 2010-03-08] (Dell Inc.)
S1 adgnetworktdi; system32\drivers\adgnetworktdi.sys [X]
S3 ADIHdAudAddService; system32\drivers\ADIHdAud.sys [X]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-26 13:12 - 2015-02-26 13:12 - 00030874 _____ () C:\ComboFix.txt
2015-02-26 03:49 - 2015-02-26 05:06 - 00000000 ____D () C:\Users\User\Desktop\Beatport Singles Part 2 (2015-02-23) (320kbps) (AciDToX8)
2015-02-26 03:34 - 2015-02-26 13:14 - 00000000 ____D () C:\FRST
2015-02-26 02:09 - 2011-06-25 20:45 - 00256000 _____ () C:\Windows\PEV.exe
2015-02-26 02:09 - 2010-11-07 07:20 - 00208896 _____ () C:\Windows\MBR.exe
2015-02-26 02:09 - 2009-04-19 18:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-02-26 02:09 - 2000-08-30 14:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-02-26 02:09 - 2000-08-30 14:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-02-26 02:09 - 2000-08-30 14:00 - 00098816 _____ () C:\Windows\sed.exe
2015-02-26 02:09 - 2000-08-30 14:00 - 00080412 _____ () C:\Windows\grep.exe
2015-02-26 02:09 - 2000-08-30 14:00 - 00068096 _____ () C:\Windows\zip.exe
2015-02-26 01:41 - 2015-02-26 03:48 - 00000000 ____D () C:\Users\User\Desktop\Beatport Singles (Part 1) (2015-02-23) (320kbps) (AciDToX8)
2015-02-25 22:57 - 2015-02-26 12:19 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-02-25 22:57 - 2015-02-25 22:57 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-02-25 22:57 - 2015-02-25 22:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-02-25 22:57 - 2015-02-25 22:57 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-02-25 22:57 - 2015-02-25 22:57 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-02-25 22:57 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-02-25 22:57 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-02-25 22:57 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-02-25 10:59 - 2015-02-25 17:41 - 00000000 ____D () C:\Users\User\Desktop\Mad.Max.2.1981.1080p.CEE.BluRay.AVC.DTS-HD.MA.5.1-FGT
2015-02-25 10:19 - 2015-02-25 10:50 - 00000000 ____D () C:\Users\User\Desktop\VA - The Drop (2014) [3CD] Mp3 @ CBR 320 Kbps [AryaN_L33T]
2015-02-24 23:00 - 2015-02-24 23:00 - 00000000 ____D () C:\TDSSKiller_Quarantine
2015-02-24 20:25 - 2015-02-26 13:14 - 00000000 ____D () C:\Qoobox
2015-02-24 20:25 - 2015-02-24 20:47 - 00000000 ____D () C:\Windows\erdnt
2015-02-24 20:20 - 2015-02-24 20:21 - 00000000 ____D () C:\ProgramData\d9031fc3029645e48aa0799ef63914a9
2015-02-24 16:08 - 2015-02-24 16:08 - 00000000 ____D () C:\Users\User\Desktop\Barely Alive - Torrent This EP
2015-02-24 16:04 - 2015-02-24 16:10 - 00000000 ____D () C:\Users\User\Desktop\Twine - STRNG THRY & Flow [NSDX067] [Never Say Die Records]
2015-02-23 23:25 - 2013-04-09 13:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-02-23 23:25 - 2013-04-02 12:51 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-02-23 17:10 - 2015-02-25 04:19 - 00206650 _____ () C:\Users\User\Desktop\RAGE 01.mmp
2015-02-23 14:49 - 2015-02-25 09:07 - 01249792 _____ (http://www.ruby-lang.org/) C:\Users\User\AppData\Roaming\msvcr90-ruby191.dll
2015-02-23 05:07 - 2015-02-23 05:07 - 00000000 ____D () C:\Users\User\AppData\Local\PaceAP
2015-02-23 04:40 - 2015-02-23 04:40 - 00003568 _____ () C:\Windows\System32\Tasks\DLAWG
2015-02-23 04:40 - 2015-02-23 04:40 - 00000000 ____D () C:\Users\User\AppData\Roaming\tricomfi
2015-02-23 04:39 - 2015-02-24 23:01 - 00000000 ____D () C:\Users\User\AppData\Roaming\OAS
2015-02-23 04:16 - 2015-02-23 04:16 - 00000000 ____D () C:\Users\User\AppData\Roaming\Performix LLC
2015-02-23 03:07 - 2015-02-23 03:46 - 00000000 ____D () C:\Users\User\AppData\Roaming\iZotope
2015-02-23 02:59 - 2015-02-23 02:59 - 00000000 ____D () C:\Program Files\Vstplugins
2015-02-23 02:59 - 2015-02-23 02:59 - 00000000 ____D () C:\Program Files\Common Files\VST3
2015-02-23 02:58 - 2015-02-23 03:00 - 00000000 ____D () C:\Users\User\Documents\iZotope
2015-02-23 02:58 - 2015-02-23 02:58 - 00000000 ____D () C:\Program Files\Common Files\Avid
2015-02-23 02:56 - 2015-02-23 02:56 - 00000000 ____D () C:\ProgramData\PACE
2015-02-23 02:53 - 2015-02-23 02:53 - 00002017 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iLok License Manager.lnk
2015-02-23 02:51 - 2015-02-23 02:51 - 00000000 ____D () C:\Program Files (x86)\iLok License Manager
2015-02-23 02:50 - 2015-02-23 02:50 - 00000000 ____D () C:\ProgramData\Apple
2015-02-23 02:50 - 2015-02-23 02:50 - 00000000 ____D () C:\Program Files\Bonjour
2015-02-23 02:50 - 2015-02-23 02:50 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2015-02-23 01:58 - 2015-02-23 01:58 - 00000000 ____D () C:\Users\User\AppData\Roaming\Glitch2
2015-02-22 22:39 - 2015-02-22 22:39 - 00000000 ____D () C:\Users\User\Documents\Psicraft
2015-02-22 22:39 - 2015-02-22 22:39 - 00000000 ____D () C:\ProgramData\Psicraft
2015-02-22 22:39 - 2015-02-22 22:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Psicraft
2015-02-22 22:39 - 2015-02-22 22:39 - 00000000 ____D () C:\Program Files (x86)\Psicraft
2015-02-22 14:13 - 2015-02-21 19:04 - 271911670 _____ () C:\Users\User\Desktop\Wahlstedt - Warrior (Mad Max Video Edit).mp4
2015-02-22 13:43 - 2015-02-24 21:33 - 00000000 ___RD () C:\Users\User\Dropbox
2015-02-22 13:43 - 2015-02-22 13:43 - 00001084 _____ () C:\Users\User\Desktop\Dropbox.lnk
2015-02-22 13:42 - 2015-02-24 21:32 - 00000000 ____D () C:\Users\User\AppData\Roaming\Dropbox
2015-02-22 13:42 - 2015-02-22 13:42 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-02-22 13:03 - 2015-02-24 23:27 - 00000000 ____D () C:\Users\User\Desktop\Drum N Bass
2015-02-21 22:38 - 2015-02-25 21:46 - 00000000 ____D () C:\Users\User\Desktop\Glitch Hop
2015-02-21 04:07 - 2015-02-25 22:00 - 00000000 ____D () C:\Users\User\Desktop\Beatport Singles (2015-02-17) (320kbps) (AciDToX8)
2015-02-21 03:01 - 2015-02-21 03:01 - 00000000 ____D () C:\Users\User\AppData\Local\Steam
2015-02-20 06:42 - 2015-02-20 08:15 - 397023627 _____ () C:\Users\User\Desktop\cannonball.run.ii.1984.720p.bluray.x264-psychd.mkv
2015-02-19 23:06 - 2015-02-20 01:07 - 410964306 _____ () C:\Users\User\Desktop\Kill.The.Messenger.2014.1080p.PROPER.BluRay.DD5.1.DTS-HD.x264.NLSubs-QoQ.mkv
2015-02-19 15:46 - 2015-02-22 13:16 - 00000000 ____D () C:\Users\User\Desktop\Beatport Singles Part 1 (2015-02-02) (320kbps) (AciDToX8)
2015-02-18 20:12 - 2015-02-18 20:15 - 00000000 ____D () C:\Program Files\TNod User & Password Finder
2015-02-18 20:12 - 2015-02-18 20:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TNod User & Password Finder
2015-02-18 20:11 - 2015-02-18 20:11 - 00000000 ____D () C:\Users\User\AppData\Roaming\ESET
2015-02-18 20:11 - 2015-02-18 20:11 - 00000000 ____D () C:\Users\User\AppData\Local\ESET
2015-02-18 20:10 - 2015-02-18 20:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2015-02-18 20:04 - 2015-02-18 20:04 - 00000000 ____D () C:\ProgramData\ESET
2015-02-18 20:04 - 2015-02-18 20:04 - 00000000 ____D () C:\Program Files\ESET
2015-02-15 20:05 - 2015-02-15 20:05 - 00006058 _____ () C:\Windows\system32\--traceoff
2015-02-15 20:05 - 2015-02-15 20:05 - 00001038 _____ () C:\Users\Public\Desktop\Vegas Pro 13.0 (64-bit).lnk
2015-02-15 20:05 - 2015-02-15 20:05 - 00000000 ____D () C:\Program Files\Sony
2015-02-15 20:05 - 2015-02-15 20:05 - 00000000 _____ () C:\Windows\system32\--debugoff
2015-02-14 16:31 - 2015-02-14 16:31 - 00000048 _____ () C:\Users\User\Desktop\Mix Link.txt
2015-02-14 14:43 - 2015-02-14 14:43 - 00001303 _____ () C:\Users\Public\Desktop\Ashampoo Burning Studio FREE.lnk
2015-02-14 14:43 - 2015-02-14 14:43 - 00000000 ____D () C:\Users\User\AppData\Roaming\Ashampoo
2015-02-14 14:43 - 2015-02-14 14:43 - 00000000 ____D () C:\Users\User\AppData\Local\ashampoo
2015-02-14 14:43 - 2015-02-14 14:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2015-02-14 14:42 - 2015-02-14 14:43 - 00000000 ____D () C:\ProgramData\Ashampoo
2015-02-14 14:42 - 2015-02-14 14:42 - 00000000 ____D () C:\Program Files (x86)\Ashampoo
2015-02-14 14:18 - 2015-02-14 14:18 - 00002572 _____ () C:\Users\User\Documents\Register Sound Forge Pro.htm
2015-02-14 14:18 - 2015-02-14 14:18 - 00000000 ____D () C:\Users\User\AppData\Roaming\Publish Providers
2015-02-14 14:16 - 2015-02-14 14:16 - 00001146 _____ () C:\Users\User\Desktop\Sound Forge Pro 11.0.lnk
2015-02-14 14:11 - 2015-02-15 20:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2015-02-14 14:10 - 2015-02-15 20:10 - 00000000 ____D () C:\Users\User\AppData\Local\Sony
2015-02-14 14:10 - 2015-02-15 20:05 - 00000000 ____D () C:\ProgramData\Sony
2015-02-14 14:10 - 2015-02-14 14:11 - 00000000 ____D () C:\Program Files (x86)\Sony
2015-02-14 14:01 - 2015-02-15 20:10 - 00000000 ____D () C:\Users\User\AppData\Roaming\Sony
2015-02-14 13:49 - 2015-02-14 16:00 - 352395624 _____ () C:\Users\User\Desktop\DECKA presents Love-Dirty 2.14.15.wav
2015-02-14 12:16 - 2015-02-14 18:22 - 00025788 _____ () C:\Users\User\Desktop\Mix test 044.mmp
2015-02-13 23:52 - 2015-02-13 23:52 - 00000000 ____D () C:\Program Files (x86)\ESET
2015-02-13 00:19 - 2015-02-13 00:19 - 00000000 ____D () C:\ProgramData\LightScribe
2015-02-11 20:58 - 2015-02-11 20:58 - 00000461 _____ () C:\Users\User\Desktop\POWER 2 (E) - Shortcut.lnk
2015-02-11 10:51 - 2015-01-22 18:42 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-02-11 10:51 - 2015-01-22 18:41 - 06041600 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-02-11 10:51 - 2015-01-22 17:43 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-02-11 10:51 - 2015-01-22 17:17 - 04300800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-02-11 10:47 - 2015-02-11 10:47 - 00001016 _____ () C:\Users\User\Desktop\MixMeister Fusion.lnk
2015-02-11 10:32 - 2015-01-08 17:14 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2015-02-11 10:32 - 2015-01-08 17:14 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2015-02-11 10:32 - 2015-01-08 17:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2015-02-11 10:32 - 2015-01-08 16:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
2015-02-10 14:39 - 2015-02-03 17:16 - 00894976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-02-10 14:39 - 2015-02-03 17:16 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-02-10 14:39 - 2015-02-03 17:16 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-02-10 14:39 - 2015-02-03 17:16 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-02-10 14:39 - 2015-02-03 17:16 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-02-10 14:39 - 2015-02-03 17:16 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-02-10 14:39 - 2015-02-03 17:13 - 01098752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-02-10 14:39 - 2015-01-27 13:36 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2015-02-10 14:39 - 2015-01-13 19:47 - 00389808 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-02-10 14:39 - 2015-01-13 19:09 - 00342712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-02-10 14:39 - 2015-01-11 17:09 - 25056256 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-02-10 14:39 - 2015-01-11 17:05 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-02-10 14:39 - 2015-01-11 17:05 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-02-10 14:39 - 2015-01-11 16:49 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-02-10 14:39 - 2015-01-11 16:48 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-02-10 14:39 - 2015-01-11 16:48 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-02-10 14:39 - 2015-01-11 16:48 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-02-10 14:39 - 2015-01-11 16:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-02-10 14:39 - 2015-01-11 16:40 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-02-10 14:39 - 2015-01-11 16:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-02-10 14:39 - 2015-01-11 16:36 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-02-10 14:39 - 2015-01-11 16:34 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-02-10 14:39 - 2015-01-11 16:34 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-02-10 14:39 - 2015-01-11 16:25 - 19740160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-02-10 14:39 - 2015-01-11 16:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-02-10 14:39 - 2015-01-11 16:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-02-10 14:39 - 2015-01-11 16:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-02-10 14:39 - 2015-01-11 16:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-10 14:39 - 2015-01-11 16:08 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-02-10 14:39 - 2015-01-11 16:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-02-10 14:39 - 2015-01-11 16:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-02-10 14:39 - 2015-01-11 16:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-02-10 14:39 - 2015-01-11 16:07 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-02-10 14:39 - 2015-01-11 16:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-02-10 14:39 - 2015-01-11 16:04 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-02-10 14:39 - 2015-01-11 16:02 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-02-10 14:39 - 2015-01-11 16:00 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-02-10 14:39 - 2015-01-11 15:59 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-02-10 14:39 - 2015-01-11 15:57 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-02-10 14:39 - 2015-01-11 15:55 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-02-10 14:39 - 2015-01-11 15:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-02-10 14:39 - 2015-01-11 15:48 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-02-10 14:39 - 2015-01-11 15:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-02-10 14:39 - 2015-01-11 15:46 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-02-10 14:39 - 2015-01-11 15:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-02-10 14:39 - 2015-01-11 15:43 - 14401024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-02-10 14:39 - 2015-01-11 15:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-02-10 14:39 - 2015-01-11 15:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-02-10 14:39 - 2015-01-11 15:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-02-10 14:39 - 2015-01-11 15:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-02-10 14:39 - 2015-01-11 15:27 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-02-10 14:39 - 2015-01-11 15:23 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-02-10 14:39 - 2015-01-11 15:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-02-10 14:39 - 2015-01-11 15:22 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-02-10 14:39 - 2015-01-11 15:14 - 12829184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-02-10 14:39 - 2015-01-11 15:14 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-02-10 14:39 - 2015-01-11 15:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-02-10 14:39 - 2015-01-11 15:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-02-10 14:39 - 2015-01-11 14:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-02-10 14:39 - 2015-01-11 14:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-02-10 14:39 - 2015-01-09 20:48 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-02-10 14:39 - 2015-01-09 20:48 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-02-10 14:39 - 2015-01-09 20:48 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-02-10 14:39 - 2015-01-09 20:48 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-02-10 14:39 - 2015-01-09 20:48 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-02-10 14:39 - 2015-01-09 20:48 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-02-10 14:39 - 2015-01-09 20:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-02-10 14:39 - 2015-01-09 20:27 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-02-10 14:39 - 2015-01-09 20:27 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-02-10 14:39 - 2015-01-09 20:27 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-02-10 14:39 - 2015-01-09 20:27 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-02-10 14:39 - 2015-01-09 20:27 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-02-10 14:39 - 2015-01-09 20:27 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-02-10 14:39 - 2015-01-09 20:27 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-02-10 14:38 - 2015-01-14 22:14 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-02-10 14:38 - 2015-01-14 22:14 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-02-10 14:38 - 2015-01-14 22:09 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-02-10 14:38 - 2015-01-14 22:09 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-02-10 14:38 - 2015-01-14 22:09 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-02-10 14:38 - 2015-01-14 22:09 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-02-10 14:38 - 2015-01-14 22:09 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-02-10 14:38 - 2015-01-14 22:08 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-02-10 14:38 - 2015-01-14 22:06 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-02-10 14:38 - 2015-01-14 22:06 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-02-10 14:38 - 2015-01-14 22:04 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-02-10 14:38 - 2015-01-14 21:42 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-02-10 14:38 - 2015-01-14 21:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-02-10 14:38 - 2015-01-14 21:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-02-10 14:38 - 2015-01-14 21:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-02-10 14:38 - 2015-01-14 21:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-02-10 14:38 - 2015-01-14 21:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-02-10 14:38 - 2015-01-14 18:22 - 00458824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-02-10 14:38 - 2015-01-13 20:09 - 05554112 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-02-10 14:38 - 2015-01-13 20:05 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-02-10 14:38 - 2015-01-13 20:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-02-10 14:38 - 2015-01-13 20:04 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-02-10 14:38 - 2015-01-13 19:44 - 03972544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-02-10 14:38 - 2015-01-13 19:44 - 03917760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-02-10 14:38 - 2015-01-13 19:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-02-10 14:38 - 2015-01-12 17:10 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-02-10 14:38 - 2015-01-12 16:49 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-02-10 14:38 - 2014-12-11 19:31 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-02-10 14:38 - 2014-12-11 19:07 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-02-10 14:38 - 2014-11-25 17:53 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-02-10 14:38 - 2014-11-25 17:32 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-02-10 14:38 - 2014-07-06 16:07 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-02-10 14:38 - 2014-07-06 16:06 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-02-10 14:38 - 2014-07-06 15:40 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-02-10 14:38 - 2014-07-06 15:40 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-02-10 14:36 - 2015-01-08 16:03 - 03201536 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-02-10 14:36 - 2014-12-07 17:09 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-02-10 14:36 - 2014-12-07 16:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-02-10 14:33 - 2015-02-25 00:16 - 00000000 ____D () C:\Users\User\Desktop\Mixmister
2015-02-10 11:24 - 2015-02-11 19:45 - 00000345 _____ () C:\Users\User\Documents\DesignLibrary_Photoshop.log
2015-02-10 11:22 - 2015-02-10 11:22 - 00000000 ____D () C:\Program Files (x86)\Adobe
2015-02-10 11:18 - 2015-02-10 11:18 - 00001040 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2014.lnk
2015-02-10 11:17 - 2015-02-10 11:22 - 00000000 ____D () C:\Program Files\Adobe
2015-02-10 11:14 - 2015-02-10 11:14 - 00001530 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2015-02-10 11:12 - 2015-02-10 11:49 - 00000000 ____D () C:\ProgramData\Adobe
2015-02-10 11:11 - 2015-02-13 02:43 - 00000000 ____D () C:\Users\User\AppData\Local\Adobe
2015-02-10 11:09 - 2015-02-10 11:24 - 00000000 ____D () C:\Users\User\AppData\Roaming\Adobe
2015-02-10 10:38 - 2015-02-24 23:00 - 00000000 ____D () C:\Users\User\AppData\Local\CrashDumps
2015-02-10 01:11 - 2015-02-10 01:11 - 00000000 ____D () C:\Users\User\AppData\Local\Macromedia
2015-02-10 00:19 - 2015-02-10 00:19 - 00000000 ____D () C:\Users\User\AppData\Roaming\AdobeSupportAdvisor.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1
2015-02-09 12:34 - 2015-02-26 12:18 - 00006178 _____ () C:\Windows\PFRO.log
2015-02-09 12:18 - 2015-02-10 10:30 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2015-02-09 12:15 - 2015-02-10 11:18 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2015-02-08 22:58 - 2015-02-23 04:51 - 00000000 ____D () C:\ProgramData\Package Cache
2015-02-08 22:58 - 2015-02-08 22:58 - 00000279 _____ () C:\Windows\SysWOW64\Drivers\vwifikerneldrv.sys
2015-02-08 22:58 - 2015-02-08 22:58 - 00000279 _____ () C:\Windows\SysWOW64\d3dx9_11.dll.tmp
2015-02-08 22:58 - 2015-02-08 22:58 - 00000279 _____ () C:\ProgramData\fontcacheev1.dat
2015-02-08 22:51 - 2015-02-26 12:18 - 00005311 _____ () C:\Windows\setupact.log
2015-02-08 22:51 - 2015-02-08 22:51 - 00000000 _____ () C:\Windows\setuperr.log
2015-02-08 20:50 - 2015-02-08 20:50 - 06372800 _____ (Tim Kosse) C:\Users\User\Downloads\FileZilla_3.10.1.1_win32-setup.exe
2015-02-06 16:15 - 2015-02-24 23:51 - 00000000 ____D () C:\Users\User\Desktop\Platinum Notes
2015-02-05 14:53 - 2015-02-10 01:11 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-02-05 14:53 - 2015-02-10 01:11 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-02-05 14:53 - 2015-02-05 14:53 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2015-02-05 14:53 - 2015-02-05 14:53 - 00000000 ____D () C:\Windows\system32\Macromed
2015-02-05 14:53 - 2015-02-05 14:53 - 00000000 ____D () C:\Users\User\AppData\Roaming\Macromedia
2015-02-05 14:52 - 2015-02-23 15:22 - 00000000 ____D () C:\Program Files (x86)\MixMeister Fusion
2015-02-05 14:52 - 2015-02-05 14:52 - 00000000 ____D () C:\Users\User\AppData\Roaming\MixMeister Technology
2015-02-05 14:52 - 2015-02-05 14:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MixMeister
2015-02-05 14:43 - 2015-02-14 03:35 - 00000000 ____D () C:\Users\User\Desktop\Decka Flyer
2015-02-05 11:03 - 2015-02-05 11:03 - 00000367 _____ () C:\Users\User\Desktop\MECCA (J) - Shortcut.lnk
2015-02-04 23:51 - 2015-02-14 14:01 - 00000000 ____D () C:\Users\User\Desktop\Decka Logo
2015-02-04 10:33 - 2015-02-14 01:25 - 00000000 ____D () C:\Users\User\AppData\Local\29242
2015-02-04 10:07 - 2015-02-06 16:15 - 00000000 ____D () C:\Users\User\AppData\Local\Platinum Notes
2015-02-04 10:07 - 2015-02-06 16:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Platinum Notes
2015-02-04 10:07 - 2015-02-04 10:07 - 00002260 _____ () C:\Users\User\Desktop\Platinum Notes 4.lnk
2015-02-04 10:07 - 2015-02-04 10:07 - 00000000 ____D () C:\Users\User\AppData\Local\Mixed_In_Key_LLC
2015-02-04 10:07 - 2015-02-04 10:07 - 00000000 ____D () C:\Users\User\AppData\Local\Mixed In Key
2015-02-04 10:07 - 2015-02-04 10:07 - 00000000 ____D () C:\Program Files (x86)\Mixed In Key LLC
2015-02-04 10:06 - 2015-02-04 10:06 - 00000000 ____D () C:\Users\User\AppData\Roaming\Mixed In Key LLC
2015-02-03 18:18 - 2015-02-03 18:18 - 00001135 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-02-03 18:18 - 2015-02-03 18:18 - 00000000 ____D () C:\Users\User\AppData\Roaming\Opera Software
2015-02-03 18:18 - 2015-02-03 18:18 - 00000000 ____D () C:\Users\User\AppData\Local\Opera Software
2015-02-03 15:52 - 2015-02-24 20:19 - 00000000 ____D () C:\AdwCleaner
2015-02-03 14:01 - 2015-02-03 14:01 - 00000000 ____D () C:\Users\User\Desktop\Grand Funk Railroad - Greatest Hits - Remastered - 320Kbps - Drbn - Rock
2015-02-03 13:46 - 2015-02-25 22:14 - 00000000 ____D () C:\Users\User\Desktop\Archive
2015-02-03 13:36 - 2015-02-03 13:47 - 00000000 ____D () C:\Users\User\AppData\Roaming\Winamp
2015-02-03 13:36 - 2015-02-03 13:37 - 00000000 ____D () C:\Program Files (x86)\Winamp
2015-02-02 17:56 - 2015-02-02 17:56 - 00000220 _____ () C:\Users\User\Desktop\Warhammer 40,000 Dawn of War  Soulstorm.url
2015-02-02 17:33 - 2015-02-02 17:33 - 00000220 _____ () C:\Users\User\Desktop\Warhammer 40,000 Dawn of War - Game of the Year Edition.url
2015-02-02 17:27 - 2015-02-26 12:19 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-02-02 17:27 - 2015-02-02 17:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-02-02 14:14 - 2015-02-02 14:14 - 00000057 _____ () C:\ProgramData\Ament.ini
2015-02-02 14:14 - 2015-02-02 14:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-02-02 14:14 - 2015-02-02 14:14 - 00000000 ____D () C:\ProgramData\HP
2015-02-02 14:14 - 2015-02-02 14:14 - 00000000 ____D () C:\Program Files\HP
2015-02-02 14:14 - 2015-02-02 14:14 - 00000000 ____D () C:\Program Files (x86)\HP
2015-02-02 14:14 - 2012-10-17 04:31 - 00741480 ____N (Hewlett-Packard Co.) C:\Windows\system32\HPDiscoPM9511.dll
2015-02-02 14:13 - 2015-02-02 14:15 - 00000000 ____D () C:\Users\User\AppData\Local\HP
2015-01-31 15:51 - 2015-01-31 15:51 - 00000000 ____D () C:\Users\Public\Documents\Logishrd
2015-01-31 15:51 - 2015-01-31 15:51 - 00000000 ____D () C:\ProgramData\Logitech
2015-01-31 15:50 - 2015-02-07 20:22 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2015-01-31 15:50 - 2015-01-31 15:51 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2015-01-31 15:50 - 2015-01-31 15:51 - 00000000 ____D () C:\ProgramData\Logishrd
2015-01-31 15:50 - 2015-01-31 15:50 - 00000000 ____D () C:\Program Files\Logitech
2015-01-31 15:49 - 2015-01-31 15:51 - 00000000 ____D () C:\Users\User\AppData\Roaming\Logitech
2015-01-31 15:49 - 2015-01-31 15:50 - 00000000 ____D () C:\Program Files\Common Files\LogiShrd
2015-01-31 15:49 - 2015-01-31 15:49 - 00000000 ____D () C:\Users\User\AppData\Roaming\Logishrd
2015-01-31 10:25 - 2015-02-03 13:28 - 00000000 ____D () C:\Users\User\AppData\Local\SoulseekQt
2015-01-31 10:22 - 2015-01-31 10:22 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SoulseekQt
2015-01-31 10:22 - 2015-01-31 10:22 - 00000000 ____D () C:\Program Files (x86)\SoulseekQt
2015-01-31 10:20 - 2015-02-25 10:42 - 00000000 ____D () C:\Users\User\Desktop\Soulseek
2015-01-31 04:06 - 2015-02-25 10:55 - 00000000 ____D () C:\Users\User\AppData\Roaming\vlc
2015-01-31 04:05 - 2015-01-31 04:05 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2015-01-31 03:35 - 2009-09-04 17:44 - 00517960 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2015-01-31 03:35 - 2009-09-04 17:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_5.dll
2015-01-31 03:35 - 2009-09-04 17:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_5.dll
2015-01-31 03:35 - 2009-09-04 17:44 - 00176968 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2015-01-31 03:34 - 2009-09-04 17:44 - 00073544 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2015-01-31 03:34 - 2009-09-04 17:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2015-01-31 03:34 - 2009-09-04 17:29 - 05554512 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2015-01-31 03:34 - 2009-09-04 17:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_42.dll
2015-01-31 03:34 - 2009-09-04 17:29 - 02582888 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2015-01-31 03:34 - 2009-09-04 17:29 - 02475352 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2015-01-31 03:34 - 2009-09-04 17:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_42.dll
2015-01-31 03:34 - 2009-09-04 17:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2015-01-31 03:34 - 2009-09-04 17:29 - 00523088 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2015-01-31 03:34 - 2009-09-04 17:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2015-01-31 03:34 - 2009-09-04 17:29 - 00285024 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2015-01-31 03:34 - 2009-09-04 17:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_42.dll
2015-01-31 03:34 - 2009-03-16 14:18 - 00521560 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2015-01-31 03:34 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2015-01-31 03:34 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2015-01-31 03:34 - 2009-03-16 14:18 - 00174936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2015-01-31 03:34 - 2009-03-16 14:18 - 00024920 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2015-01-31 03:34 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2015-01-31 03:34 - 2009-03-09 15:27 - 05425496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2015-01-31 03:34 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_41.dll
2015-01-31 03:34 - 2009-03-09 15:27 - 02430312 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2015-01-31 03:34 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_41.dll
2015-01-31 03:34 - 2009-03-09 15:27 - 00520544 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2015-01-31 03:34 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_41.dll
2015-01-31 03:34 - 2008-10-27 10:04 - 00518480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2015-01-31 03:34 - 2008-10-27 10:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_3.dll
2015-01-31 03:34 - 2008-10-27 10:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_3.dll
2015-01-31 03:34 - 2008-10-27 10:04 - 00175440 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2015-01-31 03:34 - 2008-10-27 10:04 - 00074576 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2015-01-31 03:34 - 2008-10-27 10:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_2.dll
2015-01-31 03:34 - 2008-10-27 10:04 - 00025936 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2015-01-31 03:34 - 2008-10-27 10:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_5.dll
2015-01-31 03:34 - 2008-10-15 06:22 - 05631312 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2015-01-31 03:34 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_40.dll
2015-01-31 03:34 - 2008-10-15 06:22 - 02605920 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2015-01-31 03:34 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_40.dll
2015-01-31 03:34 - 2008-10-15 06:22 - 00519000 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2015-01-31 03:34 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_40.dll
2015-01-31 03:34 - 2008-07-31 10:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_2.dll
2015-01-31 03:34 - 2008-07-31 10:41 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2015-01-31 03:34 - 2008-07-31 10:41 - 00072200 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2015-01-31 03:34 - 2008-07-31 10:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_1.dll
2015-01-31 03:34 - 2008-07-31 10:40 - 00513544 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2015-01-31 03:34 - 2008-07-31 10:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_2.dll
2015-01-31 03:34 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_39.dll
2015-01-31 03:34 - 2008-07-10 11:00 - 04992520 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2015-01-31 03:34 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_39.dll
2015-01-31 03:34 - 2008-07-10 11:00 - 01942552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2015-01-31 03:34 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_39.dll
2015-01-31 03:34 - 2008-07-10 11:00 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2015-01-31 03:34 - 2008-05-30 14:19 - 00511496 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2015-01-31 03:34 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2015-01-31 03:34 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_1.dll
2015-01-31 03:34 - 2008-05-30 14:18 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2015-01-31 03:34 - 2008-05-30 14:17 - 00068104 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2015-01-31 03:34 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2015-01-31 03:34 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2015-01-31 03:34 - 2008-05-30 14:16 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2015-01-31 03:34 - 2008-05-30 14:11 - 04991496 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2015-01-31 03:34 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_38.dll
2015-01-31 03:34 - 2008-05-30 14:11 - 01941528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2015-01-31 03:34 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_38.dll
2015-01-31 03:34 - 2008-05-30 14:11 - 00540688 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2015-01-31 03:34 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_38.dll
2015-01-31 03:34 - 2008-03-05 16:04 - 00489480 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2015-01-31 03:34 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_0.dll
2015-01-31 03:34 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_0.dll
2015-01-31 03:34 - 2008-03-05 16:03 - 00177672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2015-01-31 03:34 - 2008-03-05 16:00 - 00028168 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2015-01-31 03:34 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_3.dll
2015-01-31 03:34 - 2008-03-05 15:56 - 04910088 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2015-01-31 03:34 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_37.dll
2015-01-31 03:34 - 2008-03-05 15:56 - 01860120 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2015-01-31 03:34 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_37.dll
2015-01-31 03:34 - 2008-02-05 23:07 - 00529424 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2015-01-31 03:34 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_37.dll
2015-01-31 03:34 - 2007-10-22 03:40 - 00411656 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2015-01-31 03:34 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_10.dll
2015-01-31 03:34 - 2007-10-22 03:37 - 00021000 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2015-01-31 03:34 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_2.dll
2015-01-31 03:34 - 2007-10-12 15:14 - 05081608 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2015-01-31 03:34 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_36.dll
2015-01-31 03:34 - 2007-10-12 15:14 - 02006552 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2015-01-31 03:34 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_36.dll
2015-01-31 03:34 - 2007-10-02 09:56 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2015-01-31 03:34 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_36.dll
2015-01-31 03:34 - 2007-07-20 00:57 - 00411496 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2015-01-31 03:34 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2015-01-31 03:34 - 2007-07-19 18:14 - 05073256 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2015-01-31 03:34 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_35.dll
2015-01-31 03:34 - 2007-07-19 18:14 - 01985904 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2015-01-31 03:34 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_35.dll
2015-01-31 03:34 - 2007-07-19 18:14 - 00508264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2015-01-31 03:34 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_35.dll
2015-01-31 03:34 - 2007-06-20 20:49 - 00409960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2015-01-31 03:34 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_8.dll
2015-01-31 03:34 - 2007-05-16 16:45 - 04496232 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2015-01-31 03:34 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_34.dll
2015-01-31 03:34 - 2007-05-16 16:45 - 01401200 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2015-01-31 03:34 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_34.dll
2015-01-31 03:34 - 2007-05-16 16:45 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2015-01-31 03:34 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_34.dll
2015-01-31 03:34 - 2007-04-04 18:55 - 00403304 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2015-01-31 03:34 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_7.dll
2015-01-31 03:34 - 2007-04-04 18:54 - 00107368 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2015-01-31 03:34 - 2007-04-04 18:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2015-01-31 03:34 - 2007-03-15 16:57 - 00506728 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2015-01-31 03:34 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_33.dll
2015-01-31 03:34 - 2007-03-12 16:42 - 04494184 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2015-01-31 03:34 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2015-01-31 03:34 - 2007-03-12 16:42 - 01400176 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2015-01-31 03:34 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_33.dll
2015-01-31 03:34 - 2007-03-05 12:42 - 00017688 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2015-01-31 03:34 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_1.dll
2015-01-31 03:34 - 2007-01-24 15:27 - 00393576 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2015-01-31 03:34 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_6.dll
2015-01-31 03:34 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_5.dll
2015-01-31 03:34 - 2006-12-08 12:00 - 00390424 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2015-01-31 03:34 - 2006-11-29 13:06 - 04398360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2015-01-31 03:34 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_32.dll
2015-01-31 03:34 - 2006-11-29 13:06 - 00469264 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2015-01-31 03:34 - 2006-11-29 13:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10.dll
2015-01-31 03:34 - 2006-09-28 16:05 - 03977496 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2015-01-31 03:34 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2015-01-31 03:34 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_4.dll
2015-01-31 03:34 - 2006-09-28 16:04 - 00364824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2015-01-31 03:34 - 2006-07-28 09:31 - 00083736 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2015-01-31 03:34 - 2006-07-28 09:30 - 00363288 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2015-01-31 03:34 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_3.dll
2015-01-31 03:34 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_2.dll
2015-01-31 03:34 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_2.dll
2015-01-31 03:34 - 2006-05-31 07:22 - 00354072 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2015-01-31 03:34 - 2006-03-31 12:41 - 03927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2015-01-31 03:34 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2015-01-31 03:34 - 2006-03-31 12:40 - 00352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2015-01-31 03:34 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2015-01-31 03:34 - 2006-03-31 12:39 - 00083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2015-01-31 03:34 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2015-01-31 03:34 - 2006-02-03 08:43 - 03830992 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2015-01-31 03:34 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_29.dll
2015-01-31 03:34 - 2006-02-03 08:42 - 00355536 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2015-01-31 03:34 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_0.dll
2015-01-31 03:34 - 2006-02-03 08:41 - 00016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2015-01-31 03:34 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2015-01-31 03:34 - 2005-12-05 18:09 - 03815120 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2015-01-31 03:34 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_28.dll
2015-01-31 03:34 - 2005-07-22 19:59 - 03807440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2015-01-31 03:34 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_27.dll
2015-01-31 03:34 - 2005-05-26 15:34 - 03767504 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2015-01-31 03:34 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_26.dll
2015-01-31 03:34 - 2005-03-18 17:19 - 03823312 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2015-01-31 03:34 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_25.dll
2015-01-31 03:34 - 2005-02-05 19:45 - 03544272 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2015-01-31 03:34 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_24.dll
2015-01-31 03:30 - 2015-01-31 09:24 - 00000000 ____D () C:\Users\User\Documents\my games
2015-01-31 03:23 - 2015-02-12 15:14 - 00000000 ___RD () C:\Users\User\Google Drive
2015-01-31 03:21 - 2015-01-31 03:23 - 00001640 _____ () C:\Users\User\Desktop\Google Drive.lnk
2015-01-31 03:20 - 2015-01-31 03:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-01-31 03:19 - 2015-02-26 12:18 - 00000890 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-31 03:19 - 2015-02-26 04:18 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-31 03:19 - 2015-02-12 15:13 - 00003890 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-01-31 03:19 - 2015-02-12 15:13 - 00003638 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-01-31 03:19 - 2015-01-31 03:20 - 00000000 ____D () C:\Users\User\AppData\Local\Google
2015-01-31 03:19 - 2015-01-31 03:20 - 00000000 ____D () C:\Program Files (x86)\Google
2015-01-31 03:11 - 2015-02-26 13:14 - 00000000 ____D () C:\Users\User\Desktop\Download from net
2015-01-31 02:48 - 2015-01-31 02:48 - 00075776 _____ (FRIEND) C:\Users\User\Desktop\PC ShutDown Timer.exe
2015-01-31 00:25 - 2015-02-14 02:26 - 00001121 _____ () C:\Users\User\Desktop\Revo Uninstaller Pro.lnk
2015-01-31 00:25 - 2015-01-31 15:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller Pro
2015-01-31 00:25 - 2015-01-31 00:25 - 00000000 ____D () C:\Users\User\AppData\Local\VS Revo Group
2015-01-31 00:25 - 2015-01-31 00:25 - 00000000 ____D () C:\ProgramData\VS Revo Group
2015-01-31 00:25 - 2015-01-31 00:25 - 00000000 ____D () C:\Program Files\VS Revo Group
2015-01-31 00:25 - 2009-12-30 10:21 - 00031800 _____ (VS Revo Group) C:\Windows\system32\Drivers\revoflt.sys
2015-01-31 00:07 - 2015-02-26 05:06 - 00000000 ____D () C:\Users\User\AppData\Roaming\FileZilla
2015-01-31 00:07 - 2015-02-11 20:18 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2015-01-31 00:07 - 2015-02-11 20:18 - 00000000 ____D () C:\Program Files (x86)\FileZilla FTP Client
2015-01-31 00:02 - 2015-01-31 00:03 - 00000000 ____D () C:\Users\User\AppData\Roaming\Mozilla
2015-01-31 00:02 - 2015-01-31 00:03 - 00000000 ____D () C:\Users\User\AppData\Local\Mozilla
2015-01-31 00:02 - 2015-01-31 00:02 - 00001159 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-01-31 00:02 - 2015-01-31 00:02 - 00000000 ____D () C:\ProgramData\Mozilla
2015-01-31 00:02 - 2015-01-31 00:02 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-31 00:02 - 2015-01-31 00:02 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-01-30 18:50 - 2015-02-10 11:18 - 00000000 ____D () C:\Users\User\AppData\Roaming\NVIDIA
2015-01-30 17:07 - 2015-01-30 17:07 - 00000000 ____D () C:\Windows\system32\SRSLabs
2015-01-30 17:07 - 2015-01-30 17:07 - 00000000 ____D () C:\Program Files\Realtek
2015-01-30 17:06 - 2015-02-23 02:53 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-01-30 17:06 - 2013-03-29 21:42 - 03379272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2015-01-30 17:06 - 2013-03-29 18:04 - 21170176 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2015-01-30 17:06 - 2013-03-29 17:10 - 00449481 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2015-01-30 17:06 - 2013-03-27 16:57 - 00135240 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2015-01-30 17:06 - 2013-03-26 17:06 - 02797128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2015-01-30 17:06 - 2013-03-26 17:04 - 02734624 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2015-01-30 17:06 - 2013-03-26 15:40 - 03693128 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkAPO64.dll
2015-01-30 17:06 - 2013-03-26 14:38 - 01659464 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2015-01-30 17:06 - 2013-03-23 03:43 - 00208072 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAC64.dll
2015-01-30 17:06 - 2013-03-12 18:16 - 00613448 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2015-01-30 17:06 - 2013-02-20 18:55 - 01284680 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2015-01-30 17:06 - 2013-02-19 18:52 - 00991816 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2015-01-30 17:06 - 2013-01-16 16:02 - 02079816 _____ (Realtek Semiconductor Corp.) C:\Windows\RtlExUpd.dll
2015-01-30 17:06 - 2012-06-20 17:26 - 00110592 _____ (Real Sound Lab SIA) C:\Windows\system32\CONEQMSAPOGUILibrary.dll
2015-01-30 17:06 - 2012-03-08 11:47 - 00108640 _____ (Andrea Electronics Corporation) C:\Windows\system32\AERTAR64.dll
2015-01-30 17:06 - 2011-12-20 15:32 - 00331880 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtlCPAPI64.dll
2015-01-30 17:06 - 2011-11-22 16:28 - 00014952 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCoLDR64.dll
2015-01-30 17:06 - 2010-11-08 07:31 - 00375128 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEP64A.dll
2015-01-30 17:06 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DHT64.dll
2015-01-30 17:06 - 2010-11-08 07:31 - 00310104 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RP3DAA64.dll
2015-01-30 17:06 - 2010-11-08 07:31 - 00204120 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEED64A.dll
2015-01-30 17:06 - 2010-11-08 07:31 - 00101208 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEL64A.dll
2015-01-30 17:06 - 2010-11-08 07:31 - 00078680 _____ (Dolby Laboratories, Inc.) C:\Windows\system32\RTEEG64A.dll
2015-01-30 17:06 - 2010-11-03 18:30 - 00149608 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkCfg64.dll
2015-01-30 17:06 - 2009-11-24 09:55 - 00518896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSX64.dll
2015-01-30 17:06 - 2009-11-24 09:55 - 00211184 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSTSH64.dll
2015-01-30 17:06 - 2009-11-24 09:55 - 00198896 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSHP64.dll
2015-01-30 17:06 - 2009-11-24 09:55 - 00155888 _____ (SRS Labs, Inc.) C:\Windows\system32\SRSWOW64.dll
2015-01-30 17:04 - 2015-01-30 17:07 - 00000000 ___HD () C:\Program Files (x86)\Temp
2015-01-30 17:04 - 2015-01-30 17:04 - 00000000 ____D () C:\Program Files (x86)\Realtek
2015-01-30 15:19 - 2015-01-30 15:19 - 00000000 __SHD () C:\Users\User\AppData\Local\EmieBrowserModeList
2015-01-30 15:09 - 2015-01-30 15:09 - 00000000 ____D () C:\Users\User\AppData\Local\NVIDIA
2015-01-30 15:09 - 2015-01-30 15:09 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-01-30 15:06 - 2015-02-26 12:18 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-01-30 15:06 - 2015-01-30 15:06 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-01-30 15:06 - 2014-07-02 08:55 - 06783776 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-01-30 15:06 - 2014-07-02 08:55 - 03522392 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-01-30 15:06 - 2014-07-02 08:55 - 02559960 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-01-30 15:06 - 2014-07-02 08:55 - 00935368 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-01-30 15:06 - 2014-07-02 08:55 - 00386520 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-01-30 15:06 - 2014-07-02 08:55 - 00062808 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-01-30 15:06 - 2014-07-02 07:44 - 00609240 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvStreaming.exe
2015-01-30 15:06 - 2014-07-02 00:14 - 03826628 _____ () C:\Windows\system32\nvcoproc.bin
2015-01-30 15:05 - 2015-01-30 15:06 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-01-30 15:05 - 2015-01-30 15:06 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-01-30 15:05 - 2014-08-19 22:15 - 00075040 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2015-01-30 15:05 - 2014-08-19 22:15 - 00061912 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2015-01-30 14:15 - 2015-01-30 17:07 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2015-01-30 14:12 - 2015-01-30 14:12 - 00001365 _____ () C:\Windows\system32\RaCoInst.log

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-26 12:41 - 2009-07-13 16:34 - 00000215 _____ () C:\Windows\system.ini
2015-02-26 12:25 - 2009-07-13 18:45 - 00031200 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-02-26 12:25 - 2009-07-13 18:45 - 00031200 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-02-26 12:23 - 2009-07-13 19:13 - 00781298 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-02-26 12:21 - 2015-01-19 18:04 - 01380114 _____ () C:\Windows\WindowsUpdate.log
2015-02-26 12:18 - 2009-07-13 19:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-24 15:31 - 2009-07-13 19:08 - 00032604 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-02-18 19:32 - 2014-06-19 20:41 - 00001945 _____ () C:\Windows\epplauncher.mif
2015-02-14 02:26 - 2014-06-19 18:08 - 00000866 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-02-12 04:47 - 2009-07-13 17:20 - 00000000 ____D () C:\Windows\rescache
2015-02-11 10:44 - 2009-07-13 17:20 - 00000000 ____D () C:\Windows\tracing
2015-02-10 14:50 - 2009-07-13 18:45 - 05079056 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-02-10 14:48 - 2015-01-18 20:41 - 00000000 ____D () C:\Windows\system32\appraiser
2015-02-10 14:48 - 2014-06-18 19:43 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-02-10 14:48 - 2009-07-13 17:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-02-10 14:46 - 2014-06-19 18:10 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-02-10 14:44 - 2014-06-18 20:06 - 00000000 ____D () C:\Windows\system32\MRT
2015-02-10 14:41 - 2014-06-18 20:06 - 116773704 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-02-09 17:04 - 2009-07-13 17:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-02-09 12:55 - 2014-06-16 21:11 - 00109296 _____ () C:\Users\User\AppData\Local\GDIPFONTCACHEV1.DAT
2015-02-09 12:15 - 2009-07-13 17:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2015-01-31 09:24 - 2009-07-13 19:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-01-30 15:06 - 2009-07-13 17:20 - 00000000 ____D () C:\Windows\Help

==================== Files in the root of some directories =======

2015-02-23 14:49 - 2015-02-25 09:07 - 1249792 _____ (http://www.ruby-lang.org/) C:\Users\User\AppData\Roaming\msvcr90-ruby191.dll
2015-02-02 14:14 - 2015-02-02 14:14 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-02-08 22:58 - 2015-02-08 22:58 - 0000279 _____ () C:\ProgramData\fontcacheev1.dat

Files to move or delete:
====================
C:\ProgramData\fontcacheev1.dat


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-23 20:38

==================== End Of Log ============================


Edited by Orange Blossom, 26 February 2015 - 06:44 PM.


BC AdBot (Login to Remove)

 


m

#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,549 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:40 PM

Posted 03 March 2015 - 06:20 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/568424 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new FRST log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download FRST by Farbar from the following link if you no longer have it available and save it to your destop.

    FRST Download Link

  • When you go to the above page, there will be 32-bit and 64-bit downloads available. Please click on the appropriate one for your version of Windows. If you are unsure as to whether your Windows is 32-bit or 64-bit, please see this tutorial.
  • Double click on the FRST icon and allow it to run.
  • Agree to the usage agreement and FRST will open. Do not make any changes and click on the Scan button.
  • Notepad will open with the results.
  • Post the new logs as explained in the prep guide.
  • Close the program window, and delete the program from your desktop.


As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#3 decka808

decka808
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:40 AM

Posted 04 March 2015 - 11:32 PM

The most recent FRST log.  I am still having the same problems. :(

 

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-03-2015 01
Ran by User (administrator) on USER-PC21892291 on 04-03-2015 18:29:38
Running from C:\Users\User\Desktop\Download from net
Loaded Profiles: User (Available profiles: User)
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Logitech, Inc.) C:\Program Files\Logitech\SetPointP\LBTWiz.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1796056 2014-08-19] (NVIDIA Corporation)
HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3100440 2014-05-19] (Logitech, Inc.)
HKLM\...\Run: [Bluetooth Connection Assistant] => LBTWIZ.EXE -silent
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\egui.exe [5595336 2014-10-01] (ESET)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)
HKU\S-1-5-21-760377670-320539966-1497012287-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2874048 2015-02-18] (Valve Corporation)
HKU\S-1-5-21-760377670-320539966-1497012287-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [11264 2009-07-13] (Microsoft Corporation)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\User\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll (Dropbox, Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-760377670-320539966-1497012287-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-760377670-320539966-1497012287-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-760377670-320539966-1497012287-1000 -> {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} URL = https://www.google.com/search?q={searchTerms}
BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll (Logitech, Inc.)
BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll (Logitech, Inc.)
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\rb5dr91n.default
FF Homepage: hxxp://www.google.com
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF Extension: Adblock Plus - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\rb5dr91n.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-02-24]
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt
FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2015-01-31]
StartMenuInternet: FIREFOX.EXE - firefox.exe

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ekrn; C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe [1349576 2014-10-01] (ESET)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [239176 2013-02-19] (Realtek Semiconductor)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-26] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [243440 2014-08-18] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [241368 2014-08-18] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [169280 2014-08-18] (ESET)
R2 epfw; C:\Windows\System32\DRIVERS\epfw.sys [222280 2014-08-18] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [44632 2014-08-18] (ESET)
R0 epfwwfp; C:\Windows\System32\DRIVERS\epfwwfp.sys [63160 2014-09-18] (ESET)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-03-04] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2014-11-21] (Malwarebytes Corporation)
S3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [8192 2005-03-29] ()
R1 omci; C:\Windows\System32\DRIVERS\omci.sys [26624 2010-03-08] (Dell Inc.)
S1 adgnetworktdi; system32\drivers\adgnetworktdi.sys [X]
S3 ADIHdAudAddService; system32\drivers\ADIHdAud.sys [X]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-03 21:02 - 2015-03-03 21:05 - 00000000 ____D () C:\Users\User\Documents\Ableton
2015-03-03 21:00 - 2015-03-03 21:03 - 00000000 ____D () C:\Users\User\AppData\Roaming\Ableton
2015-03-03 21:00 - 2015-03-03 21:00 - 00000000 ____D () C:\Program Files\Common Files\Propellerhead Software
2015-03-03 20:58 - 2015-03-03 20:58 - 00000881 _____ () C:\Users\User\Desktop\Ableton Live 9 Suite.lnk
2015-03-03 20:58 - 2015-03-03 20:58 - 00000000 ____D () C:\ProgramData\Ableton
2015-03-03 20:07 - 2015-03-03 20:57 - 00000000 ____D () C:\Users\User\Desktop\The Beatport Top 100 Downloads February 2015
2015-03-03 18:31 - 2015-03-03 18:31 - 00000000 ____D () C:\Users\User\Desktop\Beatport Tracks House-Techno House-Electro House [320kbps][2015][Varios]
2015-03-03 17:57 - 2015-03-03 17:57 - 06208736 _____ (Tim Kosse) C:\Users\User\Downloads\FileZilla_3.10.2_win32-setup.exe
2015-03-01 20:23 - 2015-03-01 20:23 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FabFilter
2015-03-01 20:23 - 2015-03-01 20:23 - 00000000 ____D () C:\Program Files (x86)\FabFilter
2015-03-01 20:09 - 2015-03-01 20:09 - 00000000 ____D () C:\Users\User\Documents\FabFilter
2015-03-01 20:09 - 2015-03-01 20:09 - 00000000 ____D () C:\Users\User\AppData\Roaming\FabFilter
2015-03-01 19:47 - 2015-03-01 20:11 - 00000000 ____D () C:\Program Files (x86)\Vstplugins
2015-03-01 19:42 - 2015-03-01 19:42 - 01700352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdiplus.dll
2015-03-01 19:42 - 2015-03-01 19:42 - 01060864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71.dll
2015-03-01 19:41 - 2015-03-01 19:41 - 00000000 ____D () C:\Users\User\Desktop\FabFilter Pro-Q 2 v2.00 Win-R2R
2015-02-28 17:12 - 2015-02-28 17:14 - 00000000 ____D () C:\Users\User\Desktop\Haywyre - The Voyage (2012) [WwW.ZoNaTorrent.CoM]
2015-02-28 15:06 - 2015-03-03 18:33 - 00000000 ____D () C:\Users\User\Desktop\Tonight
2015-02-28 12:12 - 2015-02-28 12:14 - 00000000 ____D () C:\Users\User\Desktop\Haywyre – Two Fold Pt.1 (2014) [MCLP001]
2015-02-28 12:10 - 2015-02-28 12:12 - 00000000 ____D () C:\Users\User\Desktop\Destroid – The Invasion (Remixes) (2014) [DESTROID006] [TRAP, DUBSTEP, GLITCH HOP]
2015-02-28 12:00 - 2015-02-28 12:10 - 00000000 ____D () C:\Users\User\Desktop\Beatport Singles - 23.02.2015
2015-02-27 17:39 - 2015-02-27 17:42 - 00000000 ____D () C:\Users\User\Desktop\Chef (Original Motion Picture Soundtrack) 2014 {The.Phoenix}
2015-02-27 09:24 - 2015-02-27 17:03 - 00000000 ____D () C:\Users\User\Desktop\Mad.Max.Beyond.Thunderdome.1985.1080p.CEE.BluRay.AVC.DTS-HD.MA.5.1-FGT
2015-02-26 21:12 - 2015-02-26 21:12 - 00000000 ____D () C:\Users\User\Desktop\Ableton Live 9 Suite 9.1.3 (Win 64 bit) (patch - io) [ChingLiu]
2015-02-26 13:34 - 2015-02-26 17:52 - 00000000 ____D () C:\Users\User\Desktop\Mad.Max.1979.1080p.CEE.BluRay.AVC.DTS-HD.MA.2.0-FGT
2015-02-26 03:34 - 2015-03-04 18:29 - 00000000 ____D () C:\FRST
2015-02-26 02:09 - 2011-06-25 20:45 - 00256000 _____ () C:\Windows\PEV.exe
2015-02-26 02:09 - 2010-11-07 07:20 - 00208896 _____ () C:\Windows\MBR.exe
2015-02-26 02:09 - 2009-04-19 18:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2015-02-26 02:09 - 2000-08-30 14:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2015-02-26 02:09 - 2000-08-30 14:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2015-02-26 02:09 - 2000-08-30 14:00 - 00098816 _____ () C:\Windows\sed.exe
2015-02-26 02:09 - 2000-08-30 14:00 - 00080412 _____ () C:\Windows\grep.exe
2015-02-26 02:09 - 2000-08-30 14:00 - 00068096 _____ () C:\Windows\zip.exe
2015-02-25 22:57 - 2015-03-04 18:13 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-02-25 22:57 - 2015-02-25 22:57 - 00001102 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-02-25 22:57 - 2015-02-25 22:57 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-02-25 22:57 - 2015-02-25 22:57 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-02-25 22:57 - 2015-02-25 22:57 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-02-25 22:57 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-02-25 22:57 - 2014-11-21 06:14 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-02-25 22:57 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-02-25 10:59 - 2015-02-25 17:41 - 00000000 ____D () C:\Users\User\Desktop\Mad.Max.2.1981.1080p.CEE.BluRay.AVC.DTS-HD.MA.5.1-FGT
2015-02-25 10:19 - 2015-02-25 10:50 - 00000000 ____D () C:\Users\User\Desktop\VA - The Drop (2014) [3CD] Mp3 @ CBR 320 Kbps [AryaN_L33T]
2015-02-24 23:00 - 2015-03-01 20:05 - 00000000 ____D () C:\TDSSKiller_Quarantine
2015-02-24 20:25 - 2015-02-26 13:14 - 00000000 ____D () C:\Qoobox
2015-02-24 20:25 - 2015-02-24 20:47 - 00000000 ____D () C:\Windows\erdnt
2015-02-24 20:20 - 2015-02-24 20:21 - 00000000 ____D () C:\ProgramData\d9031fc3029645e48aa0799ef63914a9
2015-02-23 23:25 - 2013-04-09 13:34 - 01247744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-02-23 23:25 - 2013-04-02 12:51 - 01643520 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-02-23 17:10 - 2015-02-28 15:05 - 00559180 _____ () C:\Users\User\Desktop\RAGE 01.mmp
2015-02-23 14:49 - 2015-03-01 20:22 - 01249792 _____ (http://www.ruby-lang.org/) C:\Users\User\AppData\Roaming\msvcr90-ruby191.dll
2015-02-23 05:07 - 2015-02-23 05:07 - 00000000 ____D () C:\Users\User\AppData\Local\PaceAP
2015-02-23 04:40 - 2015-02-23 04:40 - 00003568 _____ () C:\Windows\System32\Tasks\DLAWG
2015-02-23 04:40 - 2015-02-23 04:40 - 00000000 ____D () C:\Users\User\AppData\Roaming\tricomfi
2015-02-23 04:39 - 2015-02-24 23:01 - 00000000 ____D () C:\Users\User\AppData\Roaming\OAS
2015-02-23 04:16 - 2015-02-23 04:16 - 00000000 ____D () C:\Users\User\AppData\Roaming\Performix LLC
2015-02-23 03:07 - 2015-02-23 03:46 - 00000000 ____D () C:\Users\User\AppData\Roaming\iZotope
2015-02-23 02:59 - 2015-03-01 19:43 - 00000000 ____D () C:\Program Files\Common Files\VST3
2015-02-23 02:58 - 2015-02-23 03:00 - 00000000 ____D () C:\Users\User\Documents\iZotope
2015-02-23 02:58 - 2015-02-23 02:58 - 00000000 ____D () C:\Program Files\Common Files\Avid
2015-02-23 02:56 - 2015-02-23 02:56 - 00000000 ____D () C:\ProgramData\PACE
2015-02-23 02:53 - 2015-02-23 02:53 - 00002017 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iLok License Manager.lnk
2015-02-23 02:51 - 2015-02-23 02:51 - 00000000 ____D () C:\Program Files (x86)\iLok License Manager
2015-02-23 02:50 - 2015-02-23 02:50 - 00000000 ____D () C:\ProgramData\Apple
2015-02-23 02:50 - 2015-02-23 02:50 - 00000000 ____D () C:\Program Files\Bonjour
2015-02-23 02:50 - 2015-02-23 02:50 - 00000000 ____D () C:\Program Files (x86)\Bonjour
2015-02-23 01:58 - 2015-02-23 01:58 - 00000000 ____D () C:\Users\User\AppData\Roaming\Glitch2
2015-02-22 22:39 - 2015-02-22 22:39 - 00000000 ____D () C:\Users\User\Documents\Psicraft
2015-02-22 22:39 - 2015-02-22 22:39 - 00000000 ____D () C:\ProgramData\Psicraft
2015-02-22 22:39 - 2015-02-22 22:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Psicraft
2015-02-22 22:39 - 2015-02-22 22:39 - 00000000 ____D () C:\Program Files (x86)\Psicraft
2015-02-22 13:43 - 2015-02-28 15:32 - 00000000 ___RD () C:\Users\User\Dropbox
2015-02-22 13:43 - 2015-02-22 13:43 - 00001084 _____ () C:\Users\User\Desktop\Dropbox.lnk
2015-02-22 13:42 - 2015-02-28 15:17 - 00000000 ____D () C:\Users\User\AppData\Roaming\Dropbox
2015-02-22 13:42 - 2015-02-22 13:42 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-02-22 13:03 - 2015-02-24 23:27 - 00000000 ____D () C:\Users\User\Desktop\Drum N Bass
2015-02-21 22:38 - 2015-02-25 21:46 - 00000000 ____D () C:\Users\User\Desktop\Glitch Hop
2015-02-21 03:01 - 2015-02-21 03:01 - 00000000 ____D () C:\Users\User\AppData\Local\Steam
2015-02-20 06:42 - 2015-02-20 08:15 - 397023627 _____ () C:\Users\User\Desktop\cannonball.run.ii.1984.720p.bluray.x264-psychd.mkv
2015-02-19 23:06 - 2015-02-20 01:07 - 410964306 _____ () C:\Users\User\Desktop\Kill.The.Messenger.2014.1080p.PROPER.BluRay.DD5.1.DTS-HD.x264.NLSubs-QoQ.mkv
2015-02-18 20:12 - 2015-02-18 20:15 - 00000000 ____D () C:\Program Files\TNod User & Password Finder
2015-02-18 20:12 - 2015-02-18 20:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TNod User & Password Finder
2015-02-18 20:11 - 2015-02-18 20:11 - 00000000 ____D () C:\Users\User\AppData\Roaming\ESET
2015-02-18 20:11 - 2015-02-18 20:11 - 00000000 ____D () C:\Users\User\AppData\Local\ESET
2015-02-18 20:10 - 2015-02-18 20:10 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2015-02-18 20:04 - 2015-02-18 20:04 - 00000000 ____D () C:\ProgramData\ESET
2015-02-18 20:04 - 2015-02-18 20:04 - 00000000 ____D () C:\Program Files\ESET
2015-02-15 20:05 - 2015-02-26 20:27 - 00000000 ____D () C:\Program Files\Sony
2015-02-15 20:05 - 2015-02-15 20:05 - 00006058 _____ () C:\Windows\system32\--traceoff
2015-02-15 20:05 - 2015-02-15 20:05 - 00001038 _____ () C:\Users\Public\Desktop\Vegas Pro 13.0 (64-bit).lnk
2015-02-15 20:05 - 2015-02-15 20:05 - 00000000 _____ () C:\Windows\system32\--debugoff
2015-02-14 16:31 - 2015-02-14 16:31 - 00000048 _____ () C:\Users\User\Desktop\Mix Link.txt
2015-02-14 14:43 - 2015-02-14 14:43 - 00001303 _____ () C:\Users\Public\Desktop\Ashampoo Burning Studio FREE.lnk
2015-02-14 14:43 - 2015-02-14 14:43 - 00000000 ____D () C:\Users\User\AppData\Roaming\Ashampoo
2015-02-14 14:43 - 2015-02-14 14:43 - 00000000 ____D () C:\Users\User\AppData\Local\ashampoo
2015-02-14 14:43 - 2015-02-14 14:43 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2015-02-14 14:42 - 2015-02-14 14:43 - 00000000 ____D () C:\ProgramData\Ashampoo
2015-02-14 14:42 - 2015-02-14 14:42 - 00000000 ____D () C:\Program Files (x86)\Ashampoo
2015-02-14 14:18 - 2015-02-14 14:18 - 00002572 _____ () C:\Users\User\Documents\Register Sound Forge Pro.htm
2015-02-14 14:18 - 2015-02-14 14:18 - 00000000 ____D () C:\Users\User\AppData\Roaming\Publish Providers
2015-02-14 14:16 - 2015-02-14 14:16 - 00001146 _____ () C:\Users\User\Desktop\Sound Forge Pro 11.0.lnk
2015-02-14 14:11 - 2015-02-15 20:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2015-02-14 14:10 - 2015-02-15 20:10 - 00000000 ____D () C:\Users\User\AppData\Local\Sony
2015-02-14 14:10 - 2015-02-15 20:05 - 00000000 ____D () C:\ProgramData\Sony
2015-02-14 14:10 - 2015-02-14 14:11 - 00000000 ____D () C:\Program Files (x86)\Sony
2015-02-14 14:01 - 2015-02-15 20:10 - 00000000 ____D () C:\Users\User\AppData\Roaming\Sony
2015-02-14 13:49 - 2015-02-14 16:00 - 352395624 _____ () C:\Users\User\Desktop\DECKA presents Love-Dirty 2.14.15.wav
2015-02-14 12:16 - 2015-02-14 18:22 - 00025788 _____ () C:\Users\User\Desktop\Mix test 044.mmp
2015-02-13 23:52 - 2015-02-13 23:52 - 00000000 ____D () C:\Program Files (x86)\ESET
2015-02-13 00:19 - 2015-02-13 00:19 - 00000000 ____D () C:\ProgramData\LightScribe
2015-02-11 20:58 - 2015-02-11 20:58 - 00000461 _____ () C:\Users\User\Desktop\POWER 2 (E) - Shortcut.lnk
2015-02-11 10:51 - 2015-01-22 18:42 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-02-11 10:51 - 2015-01-22 18:41 - 06041600 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-02-11 10:51 - 2015-01-22 17:43 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-02-11 10:51 - 2015-01-22 17:17 - 04300800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-02-11 10:47 - 2015-02-11 10:47 - 00001016 _____ () C:\Users\User\Desktop\MixMeister Fusion.lnk
2015-02-11 10:32 - 2015-01-08 17:14 - 00950272 _____ (Microsoft Corporation) C:\Windows\system32\perftrack.dll
2015-02-11 10:32 - 2015-01-08 17:14 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\wdi.dll
2015-02-11 10:32 - 2015-01-08 17:14 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\powertracker.dll
2015-02-11 10:32 - 2015-01-08 16:48 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdi.dll
2015-02-10 14:39 - 2015-02-03 17:16 - 00894976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-02-10 14:39 - 2015-02-03 17:16 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-02-10 14:39 - 2015-02-03 17:16 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-02-10 14:39 - 2015-02-03 17:16 - 00414720 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-02-10 14:39 - 2015-02-03 17:16 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2015-02-10 14:39 - 2015-02-03 17:16 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2015-02-10 14:39 - 2015-02-03 17:13 - 01098752 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-02-10 14:39 - 2015-01-27 13:36 - 01239720 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2015-02-10 14:39 - 2015-01-13 19:47 - 00389808 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-02-10 14:39 - 2015-01-13 19:09 - 00342712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-02-10 14:39 - 2015-01-11 17:09 - 25056256 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-02-10 14:39 - 2015-01-11 17:05 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-02-10 14:39 - 2015-01-11 17:05 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-02-10 14:39 - 2015-01-11 16:49 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-02-10 14:39 - 2015-01-11 16:48 - 02885632 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-02-10 14:39 - 2015-01-11 16:48 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-02-10 14:39 - 2015-01-11 16:48 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-02-10 14:39 - 2015-01-11 16:47 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-02-10 14:39 - 2015-01-11 16:40 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-02-10 14:39 - 2015-01-11 16:39 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-02-10 14:39 - 2015-01-11 16:36 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-02-10 14:39 - 2015-01-11 16:34 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-02-10 14:39 - 2015-01-11 16:34 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-02-10 14:39 - 2015-01-11 16:25 - 19740160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-02-10 14:39 - 2015-01-11 16:25 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-02-10 14:39 - 2015-01-11 16:21 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-02-10 14:39 - 2015-01-11 16:21 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-02-10 14:39 - 2015-01-11 16:13 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-02-10 14:39 - 2015-01-11 16:08 - 00503296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-02-10 14:39 - 2015-01-11 16:08 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-02-10 14:39 - 2015-01-11 16:07 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-02-10 14:39 - 2015-01-11 16:07 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-02-10 14:39 - 2015-01-11 16:07 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-02-10 14:39 - 2015-01-11 16:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-02-10 14:39 - 2015-01-11 16:04 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-02-10 14:39 - 2015-01-11 16:02 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-02-10 14:39 - 2015-01-11 16:00 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-02-10 14:39 - 2015-01-11 15:59 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-02-10 14:39 - 2015-01-11 15:57 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-02-10 14:39 - 2015-01-11 15:55 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-02-10 14:39 - 2015-01-11 15:48 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-02-10 14:39 - 2015-01-11 15:48 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-02-10 14:39 - 2015-01-11 15:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-02-10 14:39 - 2015-01-11 15:46 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-02-10 14:39 - 2015-01-11 15:45 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-02-10 14:39 - 2015-01-11 15:43 - 14401024 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-02-10 14:39 - 2015-01-11 15:40 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-02-10 14:39 - 2015-01-11 15:36 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-02-10 14:39 - 2015-01-11 15:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-02-10 14:39 - 2015-01-11 15:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-02-10 14:39 - 2015-01-11 15:27 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-02-10 14:39 - 2015-01-11 15:23 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-02-10 14:39 - 2015-01-11 15:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-02-10 14:39 - 2015-01-11 15:22 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-02-10 14:39 - 2015-01-11 15:14 - 12829184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-02-10 14:39 - 2015-01-11 15:14 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-02-10 14:39 - 2015-01-11 15:02 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-02-10 14:39 - 2015-01-11 15:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-02-10 14:39 - 2015-01-11 14:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-02-10 14:39 - 2015-01-11 14:55 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-02-10 14:39 - 2015-01-09 20:48 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-02-10 14:39 - 2015-01-09 20:48 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-02-10 14:39 - 2015-01-09 20:48 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-02-10 14:39 - 2015-01-09 20:48 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-02-10 14:39 - 2015-01-09 20:48 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-02-10 14:39 - 2015-01-09 20:48 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-02-10 14:39 - 2015-01-09 20:48 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-02-10 14:39 - 2015-01-09 20:27 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-02-10 14:39 - 2015-01-09 20:27 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-02-10 14:39 - 2015-01-09 20:27 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-02-10 14:39 - 2015-01-09 20:27 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-02-10 14:39 - 2015-01-09 20:27 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-02-10 14:39 - 2015-01-09 20:27 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-02-10 14:39 - 2015-01-09 20:27 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-02-10 14:38 - 2015-01-14 22:14 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-02-10 14:38 - 2015-01-14 22:14 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-02-10 14:38 - 2015-01-14 22:09 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-02-10 14:38 - 2015-01-14 22:09 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-02-10 14:38 - 2015-01-14 22:09 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-02-10 14:38 - 2015-01-14 22:09 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-02-10 14:38 - 2015-01-14 22:09 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-02-10 14:38 - 2015-01-14 22:08 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-02-10 14:38 - 2015-01-14 22:06 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-02-10 14:38 - 2015-01-14 22:06 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-02-10 14:38 - 2015-01-14 22:04 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-02-10 14:38 - 2015-01-14 21:42 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-02-10 14:38 - 2015-01-14 21:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-02-10 14:38 - 2015-01-14 21:41 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-02-10 14:38 - 2015-01-14 21:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-02-10 14:38 - 2015-01-14 21:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-02-10 14:38 - 2015-01-14 21:37 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-02-10 14:38 - 2015-01-14 18:22 - 00458824 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-02-10 14:38 - 2015-01-13 20:09 - 05554112 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-02-10 14:38 - 2015-01-13 20:05 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-02-10 14:38 - 2015-01-13 20:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-02-10 14:38 - 2015-01-13 20:04 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-02-10 14:38 - 2015-01-13 19:44 - 03972544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-02-10 14:38 - 2015-01-13 19:44 - 03917760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-02-10 14:38 - 2015-01-13 19:41 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-02-10 14:38 - 2015-01-12 17:10 - 01424384 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2015-02-10 14:38 - 2015-01-12 16:49 - 01230336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2015-02-10 14:38 - 2014-12-11 19:31 - 01480192 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2015-02-10 14:38 - 2014-12-11 19:07 - 01174528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2015-02-10 14:38 - 2014-11-25 17:53 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2015-02-10 14:38 - 2014-11-25 17:32 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2015-02-10 14:38 - 2014-07-06 16:07 - 00229376 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2015-02-10 14:38 - 2014-07-06 16:06 - 00187904 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2015-02-10 14:38 - 2014-07-06 15:40 - 00179200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wintrust.dll
2015-02-10 14:38 - 2014-07-06 15:40 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptsvc.dll
2015-02-10 14:36 - 2015-01-08 16:03 - 03201536 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-02-10 14:36 - 2014-12-07 17:09 - 00406528 _____ (Microsoft Corporation) C:\Windows\system32\scesrv.dll
2015-02-10 14:36 - 2014-12-07 16:46 - 00308224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scesrv.dll
2015-02-10 14:33 - 2015-02-26 20:13 - 00000000 ____D () C:\Users\User\Desktop\Mixmister
2015-02-10 11:24 - 2015-02-11 19:45 - 00000345 _____ () C:\Users\User\Documents\DesignLibrary_Photoshop.log
2015-02-10 11:22 - 2015-02-10 11:22 - 00000000 ____D () C:\Program Files (x86)\Adobe
2015-02-10 11:18 - 2015-02-10 11:18 - 00001040 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2014.lnk
2015-02-10 11:17 - 2015-02-10 11:22 - 00000000 ____D () C:\Program Files\Adobe
2015-02-10 11:14 - 2015-02-10 11:14 - 00001530 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2015-02-10 11:12 - 2015-02-10 11:49 - 00000000 ____D () C:\ProgramData\Adobe
2015-02-10 11:11 - 2015-02-13 02:43 - 00000000 ____D () C:\Users\User\AppData\Local\Adobe
2015-02-10 11:09 - 2015-02-10 11:24 - 00000000 ____D () C:\Users\User\AppData\Roaming\Adobe
2015-02-10 10:38 - 2015-02-24 23:00 - 00000000 ____D () C:\Users\User\AppData\Local\CrashDumps
2015-02-10 01:11 - 2015-02-10 01:11 - 00000000 ____D () C:\Users\User\AppData\Local\Macromedia
2015-02-10 00:19 - 2015-02-10 00:19 - 00000000 ____D () C:\Users\User\AppData\Roaming\AdobeSupportAdvisor.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1
2015-02-09 12:34 - 2015-02-27 09:17 - 00006724 _____ () C:\Windows\PFRO.log
2015-02-09 12:18 - 2015-02-10 10:30 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2015-02-09 12:15 - 2015-02-10 11:18 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2015-02-08 22:58 - 2015-02-23 04:51 - 00000000 ____D () C:\ProgramData\Package Cache
2015-02-08 22:58 - 2015-02-08 22:58 - 00000279 _____ () C:\Windows\SysWOW64\Drivers\vwifikerneldrv.sys
2015-02-08 22:58 - 2015-02-08 22:58 - 00000279 _____ () C:\Windows\SysWOW64\d3dx9_11.dll.tmp
2015-02-08 22:58 - 2015-02-08 22:58 - 00000279 _____ () C:\ProgramData\fontcacheev1.dat
2015-02-08 22:51 - 2015-03-04 18:11 - 00006655 _____ () C:\Windows\setupact.log
2015-02-08 22:51 - 2015-02-08 22:51 - 00000000 _____ () C:\Windows\setuperr.log
2015-02-08 20:50 - 2015-02-08 20:50 - 06372800 _____ (Tim Kosse) C:\Users\User\Downloads\FileZilla_3.10.1.1_win32-setup.exe
2015-02-06 16:15 - 2015-02-24 23:51 - 00000000 ____D () C:\Users\User\Desktop\Platinum Notes
2015-02-05 14:53 - 2015-02-10 01:11 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-02-05 14:53 - 2015-02-10 01:11 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-02-05 14:53 - 2015-02-05 14:53 - 00000000 ____D () C:\Windows\SysWOW64\Macromed
2015-02-05 14:53 - 2015-02-05 14:53 - 00000000 ____D () C:\Windows\system32\Macromed
2015-02-05 14:53 - 2015-02-05 14:53 - 00000000 ____D () C:\Users\User\AppData\Roaming\Macromedia
2015-02-05 14:52 - 2015-03-01 20:22 - 00000000 ____D () C:\Program Files (x86)\MixMeister Fusion
2015-02-05 14:52 - 2015-02-05 14:52 - 00000000 ____D () C:\Users\User\AppData\Roaming\MixMeister Technology
2015-02-05 14:52 - 2015-02-05 14:52 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MixMeister
2015-02-05 14:43 - 2015-02-14 03:35 - 00000000 ____D () C:\Users\User\Desktop\Decka Flyer
2015-02-05 11:03 - 2015-02-05 11:03 - 00000367 _____ () C:\Users\User\Desktop\MECCA (J) - Shortcut.lnk
2015-02-04 23:51 - 2015-02-14 14:01 - 00000000 ____D () C:\Users\User\Desktop\Decka Logo
2015-02-04 10:33 - 2015-02-14 01:25 - 00000000 ____D () C:\Users\User\AppData\Local\29242
2015-02-04 10:07 - 2015-02-06 16:15 - 00000000 ____D () C:\Users\User\AppData\Local\Platinum Notes
2015-02-04 10:07 - 2015-02-06 16:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Platinum Notes
2015-02-04 10:07 - 2015-02-04 10:07 - 00002260 _____ () C:\Users\User\Desktop\Platinum Notes 4.lnk
2015-02-04 10:07 - 2015-02-04 10:07 - 00000000 ____D () C:\Users\User\AppData\Local\Mixed_In_Key_LLC
2015-02-04 10:07 - 2015-02-04 10:07 - 00000000 ____D () C:\Users\User\AppData\Local\Mixed In Key
2015-02-04 10:07 - 2015-02-04 10:07 - 00000000 ____D () C:\Program Files (x86)\Mixed In Key LLC
2015-02-04 10:06 - 2015-02-04 10:06 - 00000000 ____D () C:\Users\User\AppData\Roaming\Mixed In Key LLC
2015-02-03 18:18 - 2015-02-03 18:18 - 00001135 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-02-03 18:18 - 2015-02-03 18:18 - 00000000 ____D () C:\Users\User\AppData\Roaming\Opera Software
2015-02-03 18:18 - 2015-02-03 18:18 - 00000000 ____D () C:\Users\User\AppData\Local\Opera Software
2015-02-03 15:52 - 2015-02-24 20:19 - 00000000 ____D () C:\AdwCleaner
2015-02-03 14:01 - 2015-02-03 14:01 - 00000000 ____D () C:\Users\User\Desktop\Grand Funk Railroad - Greatest Hits - Remastered - 320Kbps - Drbn - Rock
2015-02-03 13:46 - 2015-03-03 20:57 - 00000000 ____D () C:\Users\User\Desktop\Archive
2015-02-03 13:36 - 2015-02-03 13:47 - 00000000 ____D () C:\Users\User\AppData\Roaming\Winamp
2015-02-03 13:36 - 2015-02-03 13:37 - 00000000 ____D () C:\Program Files (x86)\Winamp
2015-02-02 17:56 - 2015-02-02 17:56 - 00000220 _____ () C:\Users\User\Desktop\Warhammer 40,000 Dawn of War  Soulstorm.url
2015-02-02 17:33 - 2015-02-02 17:33 - 00000220 _____ () C:\Users\User\Desktop\Warhammer 40,000 Dawn of War - Game of the Year Edition.url
2015-02-02 17:27 - 2015-03-04 18:14 - 00000000 ____D () C:\Program Files (x86)\Steam
2015-02-02 17:27 - 2015-02-02 17:27 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-02-02 14:14 - 2015-02-02 14:14 - 00000057 _____ () C:\ProgramData\Ament.ini
2015-02-02 14:14 - 2015-02-02 14:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2015-02-02 14:14 - 2015-02-02 14:14 - 00000000 ____D () C:\ProgramData\HP
2015-02-02 14:14 - 2015-02-02 14:14 - 00000000 ____D () C:\Program Files\HP
2015-02-02 14:14 - 2015-02-02 14:14 - 00000000 ____D () C:\Program Files (x86)\HP
2015-02-02 14:14 - 2012-10-17 04:31 - 00741480 ____N (Hewlett-Packard Co.) C:\Windows\system32\HPDiscoPM9511.dll
2015-02-02 14:13 - 2015-02-02 14:15 - 00000000 ____D () C:\Users\User\AppData\Local\HP

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-04 18:29 - 2015-01-31 03:11 - 00000000 ____D () C:\Users\User\Desktop\Download from net
2015-03-04 18:19 - 2009-07-13 18:45 - 00031200 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-03-04 18:19 - 2009-07-13 18:45 - 00031200 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-03-04 18:18 - 2015-01-31 03:19 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-04 18:18 - 2009-07-13 19:13 - 00781298 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-03-04 18:14 - 2015-01-19 18:04 - 01575034 _____ () C:\Windows\WindowsUpdate.log
2015-03-04 18:12 - 2015-01-31 03:19 - 00000890 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-03-04 18:11 - 2015-01-30 15:06 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-03-04 18:11 - 2009-07-13 19:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-03-03 20:56 - 2015-01-31 00:07 - 00000000 ____D () C:\Users\User\AppData\Roaming\FileZilla
2015-03-03 19:08 - 2015-01-31 04:06 - 00000000 ____D () C:\Users\User\AppData\Roaming\vlc
2015-03-03 18:33 - 2015-01-31 10:20 - 00000000 ____D () C:\Users\User\Desktop\Soulseek
2015-02-26 12:41 - 2009-07-13 16:34 - 00000215 _____ () C:\Windows\system.ini
2015-02-24 15:31 - 2009-07-13 19:08 - 00032604 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2015-02-23 02:53 - 2015-01-30 17:06 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2015-02-18 19:32 - 2014-06-19 20:41 - 00001945 _____ () C:\Windows\epplauncher.mif
2015-02-14 02:26 - 2015-01-31 00:25 - 00001121 _____ () C:\Users\User\Desktop\Revo Uninstaller Pro.lnk
2015-02-14 02:26 - 2014-06-19 18:08 - 00000866 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-02-12 15:14 - 2015-01-31 03:23 - 00000000 ___RD () C:\Users\User\Google Drive
2015-02-12 15:13 - 2015-01-31 03:19 - 00003890 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-02-12 15:13 - 2015-01-31 03:19 - 00003638 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-02-12 04:47 - 2009-07-13 17:20 - 00000000 ____D () C:\Windows\rescache
2015-02-11 20:18 - 2015-01-31 00:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2015-02-11 20:18 - 2015-01-31 00:07 - 00000000 ____D () C:\Program Files (x86)\FileZilla FTP Client
2015-02-11 10:44 - 2009-07-13 17:20 - 00000000 ____D () C:\Windows\tracing
2015-02-10 14:50 - 2009-07-13 18:45 - 05079056 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-02-10 14:48 - 2015-01-18 20:41 - 00000000 ____D () C:\Windows\system32\appraiser
2015-02-10 14:48 - 2014-06-18 19:43 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-02-10 14:48 - 2009-07-13 17:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2015-02-10 14:46 - 2014-06-19 18:10 - 00000000 ____D () C:\ProgramData\Microsoft Help
2015-02-10 14:44 - 2014-06-18 20:06 - 00000000 ____D () C:\Windows\system32\MRT
2015-02-10 14:41 - 2014-06-18 20:06 - 116773704 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-02-10 11:18 - 2015-01-30 18:50 - 00000000 ____D () C:\Users\User\AppData\Roaming\NVIDIA
2015-02-09 17:04 - 2009-07-13 17:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-02-09 12:55 - 2014-06-16 21:11 - 00109296 _____ () C:\Users\User\AppData\Local\GDIPFONTCACHEV1.DAT
2015-02-09 12:15 - 2009-07-13 17:20 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2015-02-07 20:22 - 2015-01-31 15:50 - 00018960 _____ (Logitech, Inc.) C:\Windows\system32\Drivers\LNonPnP.sys
2015-02-03 13:28 - 2015-01-31 10:25 - 00000000 ____D () C:\Users\User\AppData\Local\SoulseekQt

==================== Files in the root of some directories =======

2015-02-23 14:49 - 2015-03-01 20:22 - 1249792 _____ (http://www.ruby-lang.org/) C:\Users\User\AppData\Roaming\msvcr90-ruby191.dll
2015-02-02 14:14 - 2015-02-02 14:14 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-02-08 22:58 - 2015-02-08 22:58 - 0000279 _____ () C:\ProgramData\fontcacheev1.dat

Files to move or delete:
====================
C:\ProgramData\fontcacheev1.dat


Some content of TEMP:
====================
C:\Users\User\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpahxwof.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-23 20:38

==================== End Of Log ============================



#4 nasdaq

nasdaq

  • Malware Response Team
  • 38,238 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:40 PM

Posted 05 March 2015 - 10:34 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below.
start

CloseProcesses:

CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-760377670-320539966-1497012287-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKLM -> {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-760377670-320539966-1497012287-1000 -> {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} URL = https://www.google.com/search?q={searchTerms}
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
S1 adgnetworktdi; system32\drivers\adgnetworktdi.sys [X]
S3 ADIHdAudAddService; system32\drivers\ADIHdAud.sys [X]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]

End
Save the files as fixlist.txt into the same folder as FRST

Run FRST and click Fix only once and wait.

Restart the computer normally to reset the registry.

The tool will create a log Fixlog.txt please post it to your reply.
===

Please download AdwCleaner by Xplode onto your Desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Click the Report button and the report will open in Notepad.
IMPORTANT
  • If you click the Clean button all items listed in the report will be removed.
If you find some false positive items or programs that you wish to keep, Close the AdwCleaner windows.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Check off the element(s) you wish to keep.
  • Click on the Clean button follow the prompts.
  • A log file will automatically open after the scan has finished.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleaner[Sn].txt (n is a number).
===

How is the computer running now?

#5 decka808

decka808
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:40 AM

Posted 05 March 2015 - 06:53 PM

Hey Nasdaq,

 

Thank you for helping me!

 

 

Here3's the 2 filelogs you asked for:

 

 

FRST:

 

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 04-03-2015 01
Ran by User at 2015-03-05 13:36:51 Run:1
Running from C:\FRST
Loaded Profiles: User (Available profiles: User)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
start

CloseProcesses:

CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-760377670-320539966-1497012287-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKLM -> {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-760377670-320539966-1497012287-1000 -> {DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} URL = https://www.google.com/search?q={searchTerms}
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
S1 adgnetworktdi; system32\drivers\adgnetworktdi.sys [X]
S3 ADIHdAudAddService; system32\drivers\ADIHdAud.sys [X]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]

End
*****************

Processes closed successfully.
"HKLM\SOFTWARE\Policies\Google" => Key deleted successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-760377670-320539966-1497012287-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77}" => Key deleted successfully.
HKCR\CLSID\{DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} => Key not found.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
"HKU\S-1-5-21-760377670-320539966-1497012287-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77}" => Key deleted successfully.
HKCR\CLSID\{DC91FAFB-6CEA-49E5-BB74-9CEE75D09B77} => Key not found.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => Key deleted successfully.
adgnetworktdi => Service deleted successfully.
ADIHdAudAddService => Service deleted successfully.
catchme => Service deleted successfully.


The system needed a reboot.

==== End of Fixlog 13:36:52 ====

 

 

 

 

 

AdwCleaner:

 

 

# AdwCleaner v4.111 - Logfile created 05/03/2015 at 13:49:03
# Updated 18/02/2015 by Xplode
# Database : 2015-03-05.1 [Server]
# Operating system : Windows 7 Professional Service Pack 1 (x64)
# Username : User - USER-PC21892291
# Running from : C:\Users\User\Desktop\Download from net\adwcleaner_4.111.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Found : C:\ProgramData\d9031fc3029645e48aa0799ef63914a9

***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17631


-\\ Mozilla Firefox v35.0.1 (x86 en-US)


-\\ Opera v0.0.0.0

*************************

AdwCleaner[R0].txt - [4728 bytes] - [03/02/2015 15:52:27]
AdwCleaner[R10].txt - [1925 bytes] - [24/02/2015 20:17:55]
AdwCleaner[R11].txt - [2050 bytes] - [05/03/2015 13:41:59]
AdwCleaner[R12].txt - [911 bytes] - [05/03/2015 13:49:03]
AdwCleaner[R1].txt - [895 bytes] - [03/02/2015 15:56:50]
AdwCleaner[R2].txt - [1537 bytes] - [03/02/2015 18:21:46]
AdwCleaner[R3].txt - [1158 bytes] - [03/02/2015 21:11:21]
AdwCleaner[R4].txt - [1351 bytes] - [04/02/2015 11:39:17]
AdwCleaner[R5].txt - [1664 bytes] - [05/02/2015 14:46:26]
AdwCleaner[R6].txt - [1450 bytes] - [06/02/2015 19:20:06]
AdwCleaner[R7].txt - [1571 bytes] - [08/02/2015 22:49:22]
AdwCleaner[R8].txt - [1965 bytes] - [24/02/2015 15:28:30]
AdwCleaner[R9].txt - [1865 bytes] - [24/02/2015 20:16:09]
AdwCleaner[S0].txt - [4047 bytes] - [03/02/2015 15:53:54]
AdwCleaner[S1].txt - [955 bytes] - [03/02/2015 15:58:30]
AdwCleaner[S2].txt - [1573 bytes] - [03/02/2015 18:24:30]
AdwCleaner[S3].txt - [1416 bytes] - [04/02/2015 11:46:29]
AdwCleaner[S4].txt - [1689 bytes] - [05/02/2015 14:48:17]
AdwCleaner[S5].txt - [1516 bytes] - [06/02/2015 19:21:20]
AdwCleaner[S6].txt - [1637 bytes] - [08/02/2015 22:50:49]
AdwCleaner[S7].txt - [2039 bytes] - [24/02/2015 15:30:30]
AdwCleaner[S8].txt - [1993 bytes] - [24/02/2015 20:19:42]

########## EOF - C:\AdwCleaner\AdwCleaner[R12].txt - [2030 bytes] ##########

 

 

 

 

 

 

Did not clean in AdwCleaner. Just Scanned.

 

 

I dont hear the ads running. But this wouldnt be the first time I ran something...only to have them restart after hours later...or reboot.

 

 

I will monitor the machine as the day goes.

 

 

Thanks again for your help!

 

 

 

 

D
 



#6 decka808

decka808
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:40 AM

Posted 06 March 2015 - 12:32 AM

Hey Nasdaq,

 

 

I am still having the same problem. However...the ads have reduced,

 

Just keeping you posted. :)

 

 

 

D



#7 nasdaq

nasdaq

  • Malware Response Team
  • 38,238 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:40 PM

Posted 06 March 2015 - 09:06 AM


Run AdwCleaner and clean all.

===

Reset the browsers that have been compromised.

Reset Chrome...
Open Google Chrome, click on menu icon google-chrome-setting-icon.png which is located right side top of the google chrome.
 
Click "Settings" then "Show advanced settings" at the bottom of the screen.
 
Click "Reset browser settings" button.
 
Restart Chrome.
====

Firefox:
Reset Default Browsing settings:
https://support.mozilla.org/en-US/kb/reset-firefox-easily-fix-problems?utm_expid=65912487-41.djHNRQY0RhaLvvtvcd0BQA.2&utm_referrer=https%3A%2F%2Fwww.google.ca%2F
===

Reset Internet Explorer:
Menu > Tools > Internet Options > Advanced Tab.
Click the Reset button on the bottom of the pane.
Click the Apply button.
Close IE.

===

Download Security Check by screen317 from here
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
p.s.
If the SecurityCheck program fails to run for any reason, run it as an Administrator.

If the site is busy or not available use this mirror site:
http://www.bleepingcomputer.com/download/securitycheck/

How is the computer running now?

======

#8 decka808

decka808
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:40 AM

Posted 07 March 2015 - 05:22 PM

Security Check:

 

 

Results of screen317's Security Check version 0.99.97  
 Windows 7 Service Pack 1 x64 (UAC is disabled!)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:``````````````
 Windows Security Center service is not running! This report may not be accurate!
 Windows Firewall Enabled!  
ESET Smart Security 8.0   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:`````````
  Java 64-bit 8 Update 31  
 Adobe Flash Player 16.0.0.305  
 Mozilla Firefox (36.0.1)
````````Process Check: objlist.exe by Laurent````````  
 ESET NOD32 Antivirus egui.exe  
 ESET NOD32 Antivirus ekrn.exe  
 Malwarebytes Anti-Malware mbamservice.exe  
 Malwarebytes Anti-Malware mbam.exe  
 Malwarebytes Anti-Malware mbamscheduler.exe   
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 11% Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log``````````````````````

 

 

So far so good. Will keep an eye out this weekend.

 

Thank you for your help!

 

 

 

D



#9 decka808

decka808
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:40 AM

Posted 07 March 2015 - 11:37 PM

Ads are still playing in background. :(



#10 nasdaq

nasdaq

  • Malware Response Team
  • 38,238 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:40 PM

Posted 08 March 2015 - 08:12 AM

Clean your Java cache.
https://www.java.com/en/download/help/plugin_cache.xml

===

Clean your Flash cache.
https://forums.adobe.com/message/4278569
===

If that fails to solve the problem run this scan.

Please downloadesetlogo.pngOnline Scanner and save it to your Desktop.
  • Disable the realtime-protection of your antivirus and anti-malware programs because they might interfere with the scan.
  • Start installer.pngwith administartor privileges.
  • Select the option Yes, I accept the Terms of Use and click on Start.
  • Choose the following settings:
settings.png
  • Click on Start. The virus signature database will begin to download. This may take some time.
  • When completed the Online Scan will begin automatically.
    Note: This scan might take a long time! Please be patient.
  • When completed select Uninstall application on close if you so wish, but make sure you copy the logfile first!
  • Now click on Finish
  • A log filelog.pngis created at logpath.png
    Copy and paste the content of this log file in your next reply.
Note: Do not forget to re-enable your antivirus application after running the above scan!
eset.gif

lesestoff.png

How is it now?

#11 decka808

decka808
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:40 AM

Posted 09 March 2015 - 03:18 AM

I dont believe I have Java nor Flash on this computer.

 

Or...its hiding and I cant find it.

 

 

Heres the Eset report:

 

C:\ProgramData\Ableton\Live 9 Suite\Program\Ableton LivePatch [io].exe    a variant of Win32/HackTool.Patcher.AD potentially unsafe application
C:\Users\All Users\Ableton\Live 9 Suite\Program\Ableton LivePatch [io].exe    a variant of Win32/HackTool.Patcher.AD potentially unsafe application
C:\Users\User\Desktop\Sony ACID Pro 7.0.641.Keygen\Sony ACID Pro 7.0.641.Keygen.rar    a variant of Win32/Keygen.AR potentially unsafe application
 



#12 nasdaq

nasdaq

  • Malware Response Team
  • 38,238 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:40 PM

Posted 09 March 2015 - 07:35 AM

Post not 5. you have this version of Adobe Flash Player 16.0.0.305

===

Her

es the Eset report:

C:\ProgramData\Ableton\Live 9 Suite\Program\Ableton LivePatch [io].exe a variant of Win32/HackTool.Patcher.AD potentially unsafe application
C:\Users\All Users\Ableton\Live 9 Suite\Program\Ableton LivePatch [io].exe a variant of Win32/HackTool.Patcher.AD potentially unsafe application
C:\Users\User\Desktop\Sony ACID Pro 7.0.641.Keygen\Sony ACID Pro 7.0.641.Keygen.rar a variant of Win32/Keygen.AR potentially unsafe application

Run Esetr and remove these.
===

If the problem persists:

We will check your BIOS and Master boot record.

Read carefully and follow these steps.
TDSS
  • Download TDSSKiller and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application.
  • Then click on Start Scan.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.

    TDSSKillerSuspicious-1.png
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • Important: Do NOT change the default action on your own unless instructed by a malware Helper! Doing so may render your computer unbootable.
    TDSSKillerMal-1.png
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.

    TDSSKillerCompleted.png
  • If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.
===

Download http://public.avast.com/~gmerek/aswMBR.exe (aswMBR.exe) to your desktop. Double click the aswMBR.exe to run it.
  • Click the "Scan" button to start scan.
  • Upon completion of the scan, click Save log, and save it to your desktop. (Note - do not select any Fix at this time) <- IMPORTANT
  • Please paste the contents of that log in your next reply.
There shall also be a file on your desktop named MBR.dat. Right click that file and select Send To>Compressed (zipped) folder. Please attach that zipped file in your next reply.
===

Wait for further instructions.

#13 decka808

decka808
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:40 AM

Posted 09 March 2015 - 07:34 PM

I see scan log saying that I do...But when I us the search bar...it doesnt show up.

 

How weird.

 

 

Attached File  aswMBR.zip   1004bytes   1 downloads

14:05:47.0724 0x1464  TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
14:07:29.0605 0x1464  ============================================================
14:07:29.0605 0x1464  Current date / time: 2015/03/09 14:07:29.0605
14:07:29.0605 0x1464  SystemInfo:
14:07:29.0605 0x1464  
14:07:29.0605 0x1464  OS Version: 6.1.7601 ServicePack: 1.0
14:07:29.0605 0x1464  Product type: Workstation
14:07:29.0605 0x1464  ComputerName: USER-PC21892291
14:07:29.0605 0x1464  UserName: User
14:07:29.0605 0x1464  Windows directory: C:\Windows
14:07:29.0605 0x1464  System windows directory: C:\Windows
14:07:29.0605 0x1464  Running under WOW64
14:07:29.0605 0x1464  Processor architecture: Intel x64
14:07:29.0605 0x1464  Number of processors: 4
14:07:29.0605 0x1464  Page size: 0x1000
14:07:29.0605 0x1464  Boot type: Normal boot
14:07:29.0605 0x1464  ============================================================
14:07:30.0095 0x1464  KLMD registered as C:\Windows\system32\drivers\14931067.sys
14:07:30.0465 0x1464  System UUID: {3D816600-B737-FC70-D94C-A999F9E21034}
14:07:31.0305 0x1464  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:07:31.0325 0x1464  Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1115E00 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
14:07:39.0325 0x1464  ============================================================
14:07:39.0325 0x1464  \Device\Harddisk0\DR0:
14:07:39.0345 0x1464  MBR partitions:
14:07:39.0345 0x1464  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
14:07:39.0345 0x1464  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353800
14:07:39.0345 0x1464  \Device\Harddisk1\DR1:
14:07:39.0345 0x1464  MBR partitions:
14:07:39.0345 0x1464  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xE8E074C1
14:07:39.0345 0x1464  ============================================================
14:07:39.0355 0x1464  C: <-> \Device\Harddisk0\DR0\Partition2
14:07:39.0385 0x1464  E: <-> \Device\Harddisk1\DR1\Partition1
14:07:39.0385 0x1464  ============================================================
14:07:39.0385 0x1464  Initialize success
14:07:39.0385 0x1464  ============================================================
14:08:23.0695 0x0eb8  ============================================================
14:08:23.0695 0x0eb8  Scan started
14:08:23.0695 0x0eb8  Mode: Manual;
14:08:23.0695 0x0eb8  ============================================================
14:08:23.0695 0x0eb8  KSN ping started
14:08:27.0885 0x0eb8  KSN ping finished: true
14:08:29.0905 0x0eb8  ================ Scan system memory ========================
14:08:29.0905 0x0eb8  System memory - ok
14:08:29.0905 0x0eb8  ================ Scan services =============================
14:08:30.0085 0x0eb8  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
14:08:30.0095 0x0eb8  1394ohci - ok
14:08:30.0175 0x0eb8  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
14:08:30.0185 0x0eb8  ACPI - ok
14:08:30.0225 0x0eb8  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
14:08:30.0225 0x0eb8  AcpiPmi - ok
14:08:30.0295 0x0eb8  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
14:08:30.0305 0x0eb8  adp94xx - ok
14:08:30.0325 0x0eb8  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
14:08:30.0325 0x0eb8  adpahci - ok
14:08:30.0345 0x0eb8  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
14:08:30.0355 0x0eb8  adpu320 - ok
14:08:30.0375 0x0eb8  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
14:08:30.0375 0x0eb8  AeLookupSvc - ok
14:08:30.0415 0x0eb8  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
14:08:30.0425 0x0eb8  AFD - ok
14:08:30.0455 0x0eb8  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
14:08:30.0455 0x0eb8  agp440 - ok
14:08:30.0475 0x0eb8  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
14:08:30.0475 0x0eb8  ALG - ok
14:08:30.0505 0x0eb8  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
14:08:30.0505 0x0eb8  aliide - ok
14:08:30.0525 0x0eb8  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
14:08:30.0535 0x0eb8  amdide - ok
14:08:30.0545 0x0eb8  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
14:08:30.0545 0x0eb8  AmdK8 - ok
14:08:30.0555 0x0eb8  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
14:08:30.0555 0x0eb8  AmdPPM - ok
14:08:30.0595 0x0eb8  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
14:08:30.0595 0x0eb8  amdsata - ok
14:08:30.0605 0x0eb8  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
14:08:30.0615 0x0eb8  amdsbs - ok
14:08:30.0625 0x0eb8  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
14:08:30.0625 0x0eb8  amdxata - ok
14:08:30.0645 0x0eb8  [ 352476C98EF3952563A14F767491BBA9, 386EE7663E04479465145CF41A9226446E4C0473EB31FBC9A81D0500166B812A ] amd_sata        C:\Windows\system32\DRIVERS\amd_sata.sys
14:08:30.0655 0x0eb8  amd_sata - ok
14:08:30.0655 0x0eb8  [ F4805C309FE48D6939147FE5CCDB1AD4, 2F6C95401A38448460E4B0902A9026B416B2D4133239E04787E4F77152F2DE41 ] amd_xata        C:\Windows\system32\DRIVERS\amd_xata.sys
14:08:30.0655 0x0eb8  amd_xata - ok
14:08:30.0695 0x0eb8  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
14:08:30.0695 0x0eb8  AppID - ok
14:08:30.0715 0x0eb8  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
14:08:30.0715 0x0eb8  AppIDSvc - ok
14:08:30.0755 0x0eb8  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
14:08:30.0755 0x0eb8  Appinfo - ok
14:08:30.0785 0x0eb8  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
14:08:30.0785 0x0eb8  AppMgmt - ok
14:08:30.0805 0x0eb8  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
14:08:30.0805 0x0eb8  arc - ok
14:08:30.0825 0x0eb8  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
14:08:30.0825 0x0eb8  arcsas - ok
14:08:30.0925 0x0eb8  [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
14:08:30.0925 0x0eb8  aspnet_state - ok
14:08:30.0945 0x0eb8  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
14:08:30.0945 0x0eb8  AsyncMac - ok
14:08:30.0985 0x0eb8  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
14:08:30.0985 0x0eb8  atapi - ok
14:08:31.0025 0x0eb8  [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:08:31.0035 0x0eb8  AudioEndpointBuilder - ok
14:08:31.0055 0x0eb8  [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioSrv        C:\Windows\System32\Audiosrv.dll
14:08:31.0065 0x0eb8  AudioSrv - ok
14:08:31.0105 0x0eb8  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
14:08:31.0115 0x0eb8  AxInstSV - ok
14:08:31.0145 0x0eb8  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
14:08:31.0155 0x0eb8  b06bdrv - ok
14:08:31.0175 0x0eb8  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
14:08:31.0185 0x0eb8  b57nd60a - ok
14:08:31.0205 0x0eb8  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
14:08:31.0205 0x0eb8  BDESVC - ok
14:08:31.0225 0x0eb8  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
14:08:31.0225 0x0eb8  Beep - ok
14:08:31.0265 0x0eb8  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
14:08:31.0285 0x0eb8  BFE - ok
14:08:31.0335 0x0eb8  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll
14:08:31.0355 0x0eb8  BITS - ok
14:08:31.0375 0x0eb8  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
14:08:31.0385 0x0eb8  blbdrive - ok
14:08:31.0465 0x0eb8  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:08:31.0475 0x0eb8  Bonjour Service - ok
14:08:31.0505 0x0eb8  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
14:08:31.0505 0x0eb8  bowser - ok
14:08:31.0515 0x0eb8  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
14:08:31.0515 0x0eb8  BrFiltLo - ok
14:08:31.0535 0x0eb8  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
14:08:31.0535 0x0eb8  BrFiltUp - ok
14:08:31.0575 0x0eb8  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
14:08:31.0575 0x0eb8  BridgeMP - ok
14:08:31.0595 0x0eb8  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
14:08:31.0605 0x0eb8  Browser - ok
14:08:31.0625 0x0eb8  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
14:08:31.0625 0x0eb8  Brserid - ok
14:08:31.0645 0x0eb8  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
14:08:31.0645 0x0eb8  BrSerWdm - ok
14:08:31.0655 0x0eb8  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
14:08:31.0655 0x0eb8  BrUsbMdm - ok
14:08:31.0665 0x0eb8  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
14:08:31.0665 0x0eb8  BrUsbSer - ok
14:08:31.0685 0x0eb8  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
14:08:31.0685 0x0eb8  BTHMODEM - ok
14:08:31.0715 0x0eb8  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
14:08:31.0715 0x0eb8  bthserv - ok
14:08:31.0735 0x0eb8  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
14:08:31.0745 0x0eb8  cdfs - ok
14:08:31.0785 0x0eb8  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
14:08:31.0785 0x0eb8  cdrom - ok
14:08:31.0815 0x0eb8  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
14:08:31.0825 0x0eb8  CertPropSvc - ok
14:08:31.0835 0x0eb8  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
14:08:31.0845 0x0eb8  circlass - ok
14:08:31.0865 0x0eb8  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
14:08:31.0875 0x0eb8  CLFS - ok
14:08:31.0935 0x0eb8  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:08:31.0935 0x0eb8  clr_optimization_v2.0.50727_32 - ok
14:08:31.0975 0x0eb8  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:08:31.0975 0x0eb8  clr_optimization_v2.0.50727_64 - ok
14:08:32.0045 0x0eb8  [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:08:32.0045 0x0eb8  clr_optimization_v4.0.30319_32 - ok
14:08:32.0075 0x0eb8  [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:08:32.0075 0x0eb8  clr_optimization_v4.0.30319_64 - ok
14:08:32.0105 0x0eb8  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
14:08:32.0105 0x0eb8  CmBatt - ok
14:08:32.0125 0x0eb8  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
14:08:32.0125 0x0eb8  cmdide - ok
14:08:32.0195 0x0eb8  [ E45CDE1C8340DFEDF1D6724263F39E5B, 8B8091D0A8FF08170F34DA01A4201DAE7C3D026226BC77B5C2EC67657C670168 ] CNG             C:\Windows\system32\Drivers\cng.sys
14:08:32.0205 0x0eb8  CNG - ok
14:08:32.0225 0x0eb8  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
14:08:32.0235 0x0eb8  Compbatt - ok
14:08:32.0255 0x0eb8  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
14:08:32.0255 0x0eb8  CompositeBus - ok
14:08:32.0265 0x0eb8  COMSysApp - ok
14:08:32.0285 0x0eb8  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
14:08:32.0285 0x0eb8  crcdisk - ok
14:08:32.0315 0x0eb8  [ 19D511CC455C19DE1ADF60E6C39C85B6, 2A05DD5EF3D0BEC2C9F4EA186E0E2D0F7BE0BF6A473D51194B09D33773AC7FAA ] CryptSvc        C:\Windows\system32\cryptsvc.dll
14:08:32.0325 0x0eb8  CryptSvc - ok
14:08:32.0365 0x0eb8  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
14:08:32.0375 0x0eb8  CSC - ok
14:08:32.0415 0x0eb8  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
14:08:32.0425 0x0eb8  CscService - ok
14:08:32.0465 0x0eb8  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
14:08:32.0485 0x0eb8  DcomLaunch - ok
14:08:32.0505 0x0eb8  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
14:08:32.0515 0x0eb8  defragsvc - ok
14:08:32.0535 0x0eb8  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
14:08:32.0545 0x0eb8  DfsC - ok
14:08:32.0575 0x0eb8  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
14:08:32.0585 0x0eb8  Dhcp - ok
14:08:32.0595 0x0eb8  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
14:08:32.0595 0x0eb8  discache - ok
14:08:32.0615 0x0eb8  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
14:08:32.0615 0x0eb8  Disk - ok
14:08:32.0645 0x0eb8  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
14:08:32.0655 0x0eb8  Dnscache - ok
14:08:32.0675 0x0eb8  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
14:08:32.0685 0x0eb8  dot3svc - ok
14:08:32.0715 0x0eb8  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
14:08:32.0725 0x0eb8  DPS - ok
14:08:32.0755 0x0eb8  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
14:08:32.0755 0x0eb8  drmkaud - ok
14:08:32.0815 0x0eb8  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
14:08:32.0825 0x0eb8  DXGKrnl - ok
14:08:32.0875 0x0eb8  [ 099E01A94167CA8BDA2CF72037AD0E28, 937501E15A9C8E195DC778DBC9C3A45EB5DD024AF9E4C188ED5B69F94EEC233D ] e1express       C:\Windows\system32\DRIVERS\e1e6232e.sys
14:08:32.0875 0x0eb8  e1express - ok
14:08:32.0905 0x0eb8  [ 711405DA1FBC40B820DB5A2B4DD939F0, 64B6D59BFF6DD0B8D2177C58A56F5AF719ACD01DD5F598E183C4BB81D949678B ] e1kexpress      C:\Windows\system32\DRIVERS\e1k62x64.sys
14:08:32.0915 0x0eb8  e1kexpress - ok
14:08:32.0955 0x0eb8  [ D47E023B543D9FA72EBAAD4D30E499B3, 7045060D418B1EE1499336A973C334869330843F3ADE5420D93B64A1BDAB2DA8 ] eamonm          C:\Windows\system32\DRIVERS\eamonm.sys
14:08:32.0955 0x0eb8  eamonm - ok
14:08:32.0985 0x0eb8  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
14:08:32.0985 0x0eb8  EapHost - ok
14:08:33.0095 0x0eb8  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
14:08:33.0155 0x0eb8  ebdrv - ok
14:08:33.0195 0x0eb8  [ E0105F3B5B1C4B0F5B3D788A13504EC6, 16C094BC098E4606239C8A54F2E4B92BABB68215CCB43C161661B1A664A0C7A0 ] EFS             C:\Windows\System32\lsass.exe
14:08:33.0195 0x0eb8  EFS - ok
14:08:33.0245 0x0eb8  [ EDE769200779A9746A0F1425EBEE59FE, 001DAE9569FCA7CD5A97B8F74940ADCD084DADD2F69F1002765F424B10D30B97 ] ehdrv           C:\Windows\system32\DRIVERS\ehdrv.sys
14:08:33.0245 0x0eb8  ehdrv - ok
14:08:33.0315 0x0eb8  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
14:08:33.0325 0x0eb8  ehRecvr - ok
14:08:33.0355 0x0eb8  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
14:08:33.0355 0x0eb8  ehSched - ok
14:08:33.0535 0x0eb8  [ 58FBDA10FC403CF9F82ABD0A68129BA3, D731021C2A94A31CD944E95628AC2DFFF0D555659BF0DF6FC57676B8B88355A4 ] ekrn            C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
14:08:33.0555 0x0eb8  ekrn - ok
14:08:33.0615 0x0eb8  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
14:08:33.0625 0x0eb8  elxstor - ok
14:08:33.0665 0x0eb8  [ D8A6B4CAA5E240878D65E0EAEE6D9082, 930247BDD721CBDCC515AC294FE10032FDCA7D27AD4FEB4E2216B733BA2B5F43 ] epfw            C:\Windows\system32\DRIVERS\epfw.sys
14:08:33.0675 0x0eb8  epfw - ok
14:08:33.0705 0x0eb8  [ C581DEBB25220862D325BE141F02E989, 0B2F9736160DA624719F3F2296CABAEEC3C5542F4ED28C8DCF358621C5B7758D ] EpfwLWF         C:\Windows\system32\DRIVERS\EpfwLWF.sys
14:08:33.0705 0x0eb8  EpfwLWF - ok
14:08:33.0745 0x0eb8  [ DC4E3C33A00AF1165E7BDA9CE147ED2D, 8325664A161118AACFC0DC9E4139D8D1ABCA052A1197F43F4C9C40D0AED2DE1B ] epfwwfp         C:\Windows\system32\DRIVERS\epfwwfp.sys
14:08:33.0745 0x0eb8  epfwwfp - ok
14:08:33.0765 0x0eb8  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
14:08:33.0765 0x0eb8  ErrDev - ok
14:08:33.0805 0x0eb8  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
14:08:33.0815 0x0eb8  EventSystem - ok
14:08:33.0835 0x0eb8  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
14:08:33.0845 0x0eb8  exfat - ok
14:08:33.0865 0x0eb8  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
14:08:33.0865 0x0eb8  fastfat - ok
14:08:33.0925 0x0eb8  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
14:08:33.0935 0x0eb8  Fax - ok
14:08:33.0955 0x0eb8  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
14:08:33.0955 0x0eb8  fdc - ok
14:08:33.0975 0x0eb8  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
14:08:33.0975 0x0eb8  fdPHost - ok
14:08:33.0985 0x0eb8  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
14:08:33.0985 0x0eb8  FDResPub - ok
14:08:33.0995 0x0eb8  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
14:08:34.0005 0x0eb8  FileInfo - ok
14:08:34.0015 0x0eb8  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
14:08:34.0015 0x0eb8  Filetrace - ok
14:08:34.0025 0x0eb8  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
14:08:34.0025 0x0eb8  flpydisk - ok
14:08:34.0055 0x0eb8  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
14:08:34.0065 0x0eb8  FltMgr - ok
14:08:34.0115 0x0eb8  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
14:08:34.0135 0x0eb8  FontCache - ok
14:08:34.0195 0x0eb8  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:08:34.0205 0x0eb8  FontCache3.0.0.0 - ok
14:08:34.0225 0x0eb8  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
14:08:34.0225 0x0eb8  FsDepends - ok
14:08:34.0265 0x0eb8  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
14:08:34.0265 0x0eb8  Fs_Rec - ok
14:08:34.0295 0x0eb8  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
14:08:34.0305 0x0eb8  fvevol - ok
14:08:34.0325 0x0eb8  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
14:08:34.0325 0x0eb8  gagp30kx - ok
14:08:34.0385 0x0eb8  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
14:08:34.0405 0x0eb8  gpsvc - ok
14:08:34.0485 0x0eb8  [ F172AD4E906D97ED8F071896FC6789DC, FC10B3CE3DB0D3BF84DFD28E900EB6A11EDAAE32AC50F23CB03AACC6AA496911 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:08:34.0485 0x0eb8  gupdate - ok
14:08:34.0495 0x0eb8  [ F172AD4E906D97ED8F071896FC6789DC, FC10B3CE3DB0D3BF84DFD28E900EB6A11EDAAE32AC50F23CB03AACC6AA496911 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:08:34.0495 0x0eb8  gupdatem - ok
14:08:34.0505 0x0eb8  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
14:08:34.0505 0x0eb8  hcw85cir - ok
14:08:34.0555 0x0eb8  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:08:34.0565 0x0eb8  HdAudAddService - ok
14:08:34.0595 0x0eb8  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
14:08:34.0595 0x0eb8  HDAudBus - ok
14:08:34.0635 0x0eb8  [ 806C9235C2FBFB9268B9E9F05165DE5D, FAAE1A5019D0C124B698EE48B37A9F3BB25D45A69D2742F12DD9379399001D7D ] HECIx64         C:\Windows\system32\DRIVERS\HECIx64.sys
14:08:34.0635 0x0eb8  HECIx64 - ok
14:08:34.0645 0x0eb8  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
14:08:34.0645 0x0eb8  HidBatt - ok
14:08:34.0655 0x0eb8  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
14:08:34.0655 0x0eb8  HidBth - ok
14:08:34.0685 0x0eb8  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
14:08:34.0685 0x0eb8  HidIr - ok
14:08:34.0705 0x0eb8  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
14:08:34.0705 0x0eb8  hidserv - ok
14:08:34.0745 0x0eb8  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
14:08:34.0745 0x0eb8  HidUsb - ok
14:08:34.0775 0x0eb8  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
14:08:34.0775 0x0eb8  hkmsvc - ok
14:08:34.0805 0x0eb8  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:08:34.0815 0x0eb8  HomeGroupListener - ok
14:08:34.0845 0x0eb8  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:08:34.0855 0x0eb8  HomeGroupProvider - ok
14:08:34.0885 0x0eb8  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
14:08:34.0885 0x0eb8  HpSAMD - ok
14:08:34.0925 0x0eb8  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
14:08:34.0945 0x0eb8  HTTP - ok
14:08:34.0965 0x0eb8  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
14:08:34.0965 0x0eb8  hwpolicy - ok
14:08:35.0005 0x0eb8  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
14:08:35.0015 0x0eb8  i8042prt - ok
14:08:35.0035 0x0eb8  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
14:08:35.0045 0x0eb8  iaStorV - ok
14:08:35.0105 0x0eb8  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:08:35.0125 0x0eb8  idsvc - ok
14:08:35.0145 0x0eb8  IEEtwCollectorService - ok
14:08:35.0445 0x0eb8  [ C6238C6ABD6AC99F5D152DA4E9439A3D, 6FC490B94CEF523C7C099AEA3D36AB75C9896B1D83D4467D237E698A8E0D9E7B ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
14:08:35.0635 0x0eb8  igfx - ok
14:08:35.0685 0x0eb8  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
14:08:35.0685 0x0eb8  iirsp - ok
14:08:35.0735 0x0eb8  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
14:08:35.0755 0x0eb8  IKEEXT - ok
14:08:35.0885 0x0eb8  [ CCEDD47ABD068C58C8513DEB785093BB, 2B5571688655265037ACB44D2F2E0CD646EC0567D823C32CA09F13A1814C241B ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
14:08:35.0945 0x0eb8  IntcAzAudAddService - ok
14:08:35.0965 0x0eb8  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
14:08:35.0965 0x0eb8  intelide - ok
14:08:35.0995 0x0eb8  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
14:08:36.0005 0x0eb8  intelppm - ok
14:08:36.0025 0x0eb8  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
14:08:36.0035 0x0eb8  IPBusEnum - ok
14:08:36.0055 0x0eb8  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:08:36.0055 0x0eb8  IpFilterDriver - ok
14:08:36.0105 0x0eb8  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
14:08:36.0115 0x0eb8  iphlpsvc - ok
14:08:36.0135 0x0eb8  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
14:08:36.0135 0x0eb8  IPMIDRV - ok
14:08:36.0155 0x0eb8  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
14:08:36.0155 0x0eb8  IPNAT - ok
14:08:36.0175 0x0eb8  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
14:08:36.0175 0x0eb8  IRENUM - ok
14:08:36.0195 0x0eb8  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
14:08:36.0195 0x0eb8  isapnp - ok
14:08:36.0235 0x0eb8  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
14:08:36.0235 0x0eb8  iScsiPrt - ok
14:08:36.0245 0x0eb8  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
14:08:36.0245 0x0eb8  kbdclass - ok
14:08:36.0275 0x0eb8  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
14:08:36.0275 0x0eb8  kbdhid - ok
14:08:36.0295 0x0eb8  [ E0105F3B5B1C4B0F5B3D788A13504EC6, 16C094BC098E4606239C8A54F2E4B92BABB68215CCB43C161661B1A664A0C7A0 ] KeyIso          C:\Windows\system32\lsass.exe
14:08:36.0295 0x0eb8  KeyIso - ok
14:08:36.0325 0x0eb8  [ C60C6B9A2E50B0404F6789C62B428C03, 0DFFAACBA038FB3D994049E7BBC8E0C63CB8B4A68C4AB770AD995B66B017C25B ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
14:08:36.0335 0x0eb8  KSecDD - ok
14:08:36.0345 0x0eb8  [ 78D152A9FD5747FF6AA89C79F0346F62, 69138077E84E5324751E3C8B80D05BE58EDF03CEC84F69B734537F10F6998F3B ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
14:08:36.0345 0x0eb8  KSecPkg - ok
14:08:36.0355 0x0eb8  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
14:08:36.0355 0x0eb8  ksthunk - ok
14:08:36.0395 0x0eb8  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
14:08:36.0425 0x0eb8  KtmRm - ok
14:08:36.0525 0x0eb8  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
14:08:36.0535 0x0eb8  LanmanServer - ok
14:08:36.0585 0x0eb8  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:08:36.0585 0x0eb8  LanmanWorkstation - ok
14:08:36.0665 0x0eb8  [ 1D5C6790425CB6DBB1B3C2722C34E199, D8BCC31A443B77711A7CA468E754A73137C1CC47D6F3DA5BEE3735B654327B0C ] LBTServ         C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
14:08:36.0675 0x0eb8  LBTServ - ok
14:08:36.0705 0x0eb8  [ 96EB043E2843B5A87A486D0BC6921094, 0B339A18B2F536F12B2C1B4FEDEB3A815DC7F8E7B082144EE084B3E6ED067FBC ] LHidFilt        C:\Windows\system32\DRIVERS\LHidFilt.Sys
14:08:36.0705 0x0eb8  LHidFilt - ok
14:08:36.0725 0x0eb8  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
14:08:36.0735 0x0eb8  lltdio - ok
14:08:36.0765 0x0eb8  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
14:08:36.0775 0x0eb8  lltdsvc - ok
14:08:36.0795 0x0eb8  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
14:08:36.0805 0x0eb8  lmhosts - ok
14:08:36.0825 0x0eb8  [ A5C1DA229B3B660BBF3BDC30ADBFBB61, B657092424C6BF418A6FA56353370C195D9CA67999B355E8EDD6AFCFD9FEF8E5 ] LMouFilt        C:\Windows\system32\DRIVERS\LMouFilt.Sys
14:08:36.0825 0x0eb8  LMouFilt - ok
14:08:36.0865 0x0eb8  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
14:08:36.0865 0x0eb8  LSI_FC - ok
14:08:36.0895 0x0eb8  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
14:08:36.0895 0x0eb8  LSI_SAS - ok
14:08:36.0915 0x0eb8  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
14:08:36.0915 0x0eb8  LSI_SAS2 - ok
14:08:36.0935 0x0eb8  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
14:08:36.0935 0x0eb8  LSI_SCSI - ok
14:08:36.0955 0x0eb8  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
14:08:36.0955 0x0eb8  luafv - ok
14:08:37.0005 0x0eb8  [ 9659AA75AC920EF6393B8CF77E21D1B9, 76706516DF281B48ABB2A43CA81B6EA0551937BE1C21AEA0A522AA717C27FD0A ] LUsbFilt        C:\Windows\system32\Drivers\LUsbFilt.Sys
14:08:37.0005 0x0eb8  LUsbFilt - ok
14:08:37.0055 0x0eb8  [ CA43F8904E24BBE49982E4C0B29E6579, 2E3E6D02980706061C478C1643F8838310DDAC573C8722AE7F3290CE36B02CB2 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
14:08:37.0055 0x0eb8  MBAMProtector - ok
14:08:37.0135 0x0eb8  [ 0BB29DE40C9D9529793DCDB59A43CF5B, 251001A407D32EF22F64915EEFFAAEC229073C4549BF7D9D1D4209B7D15B4681 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
14:08:37.0175 0x0eb8  MBAMScheduler - ok
14:08:37.0255 0x0eb8  [ 5F82D8188B370B0CF185D4AE2B9B4A0E, 549B53DD989A069E1C38347C4CEF5283DF9B428CE102799B06A20D3D8F23825F ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
14:08:37.0275 0x0eb8  MBAMService - ok
14:08:37.0325 0x0eb8  [ 26C43960C99EE861A5D0EDC4DCF3B1C3, 6238FB8E785652040CCE3E7044EA52066CE1BF173A1467474D64A3AB214B6BCD ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
14:08:37.0325 0x0eb8  MBAMSwissArmy - ok
14:08:37.0365 0x0eb8  [ A646C2DDB8C46E9B20A326FAF566646C, F46E3BF392CB4EB53D323BC8CC41EFBB9C5D7C935FECF255F524EB18583A2A37 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
14:08:37.0365 0x0eb8  MBAMWebAccessControl - ok
14:08:37.0395 0x0eb8  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
14:08:37.0395 0x0eb8  Mcx2Svc - ok
14:08:37.0485 0x0eb8  [ 7CF1B716372B89568AE4C0FE769F5869, 0D70A7A594BCFBB26D7249C0F4B0AF9EF874F2318B3FDCE44648CC61279594ED ] MDM             C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
14:08:37.0495 0x0eb8  MDM - ok
14:08:37.0515 0x0eb8  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
14:08:37.0515 0x0eb8  megasas - ok
14:08:37.0545 0x0eb8  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
14:08:37.0555 0x0eb8  MegaSR - ok
14:08:37.0585 0x0eb8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
14:08:37.0585 0x0eb8  MMCSS - ok
14:08:37.0595 0x0eb8  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
14:08:37.0595 0x0eb8  Modem - ok
14:08:37.0615 0x0eb8  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
14:08:37.0625 0x0eb8  monitor - ok
14:08:37.0645 0x0eb8  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
14:08:37.0645 0x0eb8  mouclass - ok
14:08:37.0665 0x0eb8  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
14:08:37.0665 0x0eb8  mouhid - ok
14:08:37.0705 0x0eb8  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
14:08:37.0705 0x0eb8  mountmgr - ok
14:08:37.0745 0x0eb8  [ 81E8AF6407EC3F41908FE37F054353EA, 756C7656ED68AEAE4225E952ED1CED0717264D3378DB8DF0B2D70B6EBC67C62F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
14:08:37.0745 0x0eb8  MozillaMaintenance - ok
14:08:37.0765 0x0eb8  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
14:08:37.0765 0x0eb8  mpio - ok
14:08:37.0785 0x0eb8  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
14:08:37.0785 0x0eb8  mpsdrv - ok
14:08:37.0835 0x0eb8  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
14:08:37.0855 0x0eb8  MpsSvc - ok
14:08:37.0885 0x0eb8  [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
14:08:37.0885 0x0eb8  MRxDAV - ok
14:08:37.0915 0x0eb8  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
14:08:37.0915 0x0eb8  mrxsmb - ok
14:08:37.0935 0x0eb8  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:08:37.0945 0x0eb8  mrxsmb10 - ok
14:08:37.0955 0x0eb8  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:08:37.0955 0x0eb8  mrxsmb20 - ok
14:08:37.0975 0x0eb8  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
14:08:37.0975 0x0eb8  msahci - ok
14:08:38.0015 0x0eb8  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
14:08:38.0015 0x0eb8  msdsm - ok
14:08:38.0025 0x0eb8  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
14:08:38.0035 0x0eb8  MSDTC - ok
14:08:38.0045 0x0eb8  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
14:08:38.0055 0x0eb8  Msfs - ok
14:08:38.0065 0x0eb8  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
14:08:38.0065 0x0eb8  mshidkmdf - ok
14:08:38.0085 0x0eb8  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
14:08:38.0085 0x0eb8  msisadrv - ok
14:08:38.0115 0x0eb8  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
14:08:38.0125 0x0eb8  MSiSCSI - ok
14:08:38.0125 0x0eb8  msiserver - ok
14:08:38.0145 0x0eb8  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
14:08:38.0145 0x0eb8  MSKSSRV - ok
14:08:38.0155 0x0eb8  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
14:08:38.0155 0x0eb8  MSPCLOCK - ok
14:08:38.0155 0x0eb8  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
14:08:38.0155 0x0eb8  MSPQM - ok
14:08:38.0195 0x0eb8  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
14:08:38.0195 0x0eb8  MsRPC - ok
14:08:38.0215 0x0eb8  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
14:08:38.0225 0x0eb8  mssmbios - ok
14:08:38.0225 0x0eb8  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
14:08:38.0225 0x0eb8  MSTEE - ok
14:08:38.0235 0x0eb8  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
14:08:38.0235 0x0eb8  MTConfig - ok
14:08:38.0255 0x0eb8  [ 03B7145C889603537E9FFEABB1AD1089, B3CD93B893D4A2370CBF382366C6F596372857F8711EF6FFF83BFE2B449F424E ] MTsensor        C:\Windows\system32\DRIVERS\ASACPI.sys
14:08:38.0265 0x0eb8  MTsensor - ok
14:08:38.0265 0x0eb8  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
14:08:38.0275 0x0eb8  Mup - ok
14:08:38.0305 0x0eb8  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
14:08:38.0315 0x0eb8  napagent - ok
14:08:38.0355 0x0eb8  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
14:08:38.0365 0x0eb8  NativeWifiP - ok
14:08:38.0425 0x0eb8  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
14:08:38.0445 0x0eb8  NDIS - ok
14:08:38.0485 0x0eb8  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
14:08:38.0485 0x0eb8  NdisCap - ok
14:08:38.0505 0x0eb8  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
14:08:38.0505 0x0eb8  NdisTapi - ok
14:08:38.0525 0x0eb8  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
14:08:38.0525 0x0eb8  Ndisuio - ok
14:08:38.0555 0x0eb8  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
14:08:38.0565 0x0eb8  NdisWan - ok
14:08:38.0585 0x0eb8  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
14:08:38.0595 0x0eb8  NDProxy - ok
14:08:38.0595 0x0eb8  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
14:08:38.0595 0x0eb8  NetBIOS - ok
14:08:38.0635 0x0eb8  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
14:08:38.0645 0x0eb8  NetBT - ok
14:08:38.0655 0x0eb8  [ E0105F3B5B1C4B0F5B3D788A13504EC6, 16C094BC098E4606239C8A54F2E4B92BABB68215CCB43C161661B1A664A0C7A0 ] Netlogon        C:\Windows\system32\lsass.exe
14:08:38.0665 0x0eb8  Netlogon - ok
14:08:38.0705 0x0eb8  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
14:08:38.0715 0x0eb8  Netman - ok
14:08:38.0755 0x0eb8  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:08:38.0755 0x0eb8  NetMsmqActivator - ok
14:08:38.0765 0x0eb8  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:08:38.0765 0x0eb8  NetPipeActivator - ok
14:08:38.0795 0x0eb8  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
14:08:38.0805 0x0eb8  netprofm - ok
14:08:38.0895 0x0eb8  [ 2EED549279D7FBD10B846B5397573967, 4F7EBB6C1AC58D1EFFA7A86AC799137FC88F5CCA3AC27E563B4EE2AF1EAE4ECC ] netr28x         C:\Windows\system32\DRIVERS\netr28x.sys
14:08:38.0935 0x0eb8  netr28x - ok
14:08:38.0945 0x0eb8  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:08:38.0945 0x0eb8  NetTcpActivator - ok
14:08:38.0955 0x0eb8  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:08:38.0955 0x0eb8  NetTcpPortSharing - ok
14:08:38.0985 0x0eb8  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
14:08:38.0985 0x0eb8  nfrd960 - ok
14:08:39.0045 0x0eb8  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
14:08:39.0045 0x0eb8  NlaSvc - ok
14:08:39.0085 0x0eb8  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
14:08:39.0085 0x0eb8  Npfs - ok
14:08:39.0105 0x0eb8  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
14:08:39.0105 0x0eb8  nsi - ok
14:08:39.0115 0x0eb8  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
14:08:39.0115 0x0eb8  nsiproxy - ok
14:08:39.0195 0x0eb8  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
14:08:39.0225 0x0eb8  Ntfs - ok
14:08:39.0245 0x0eb8  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
14:08:39.0245 0x0eb8  Null - ok
14:08:39.0285 0x0eb8  [ E366A5681C50785D4ED04FCFD65C3415, 7FF7B4B8F09E773401AE879897E60BF494B57B9ACEE990204A4C98A3FB183A33 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
14:08:39.0285 0x0eb8  NVHDA - ok
14:08:39.0645 0x0eb8  [ 2232AE1BB51A96A7381A2CA17DF12E24, 4813E27BC14EB3CBD55AF89B098EA5C8DA4C7FF0B6CCB7AACFC43BC0E578C988 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
14:08:39.0875 0x0eb8  nvlddmkm - ok
14:08:39.0935 0x0eb8  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
14:08:39.0935 0x0eb8  nvraid - ok
14:08:39.0955 0x0eb8  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
14:08:39.0955 0x0eb8  nvstor - ok
14:08:40.0015 0x0eb8  [ 2C8DD5A34A81715865D66D7AF39362A6, 62F9D873127921EE2EAA80B73E8994C4BF6DA7EEDACAEA030B8D58E086FD3850 ] nvsvc           C:\Windows\system32\nvvsvc.exe
14:08:40.0035 0x0eb8  nvsvc - ok
14:08:40.0055 0x0eb8  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
14:08:40.0055 0x0eb8  nv_agp - ok
14:08:40.0115 0x0eb8  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
14:08:40.0125 0x0eb8  odserv - ok
14:08:40.0145 0x0eb8  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
14:08:40.0155 0x0eb8  ohci1394 - ok
14:08:40.0185 0x0eb8  [ 852FCA8BC3D2FADDB84E5E883C780559, 04F87686CB6649E0D01A92076A86EDF6D2D91A566ED4AA30F4A9BCE0B7D5FD3C ] omci            C:\Windows\system32\DRIVERS\omci.sys
14:08:40.0185 0x0eb8  omci - ok
14:08:40.0225 0x0eb8  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:08:40.0235 0x0eb8  ose - ok
14:08:40.0265 0x0eb8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
14:08:40.0275 0x0eb8  p2pimsvc - ok
14:08:40.0305 0x0eb8  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
14:08:40.0315 0x0eb8  p2psvc - ok
14:08:40.0935 0x0eb8  [ 492B35BF843A889E81FF28EB23110609, 7F48CE6F75351CCE8566093EA19685E0594FE15E75F91E5AF525C2E2EC6E3240 ] PaceLicenseDServices C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
14:08:41.0467 0x0eb8  PaceLicenseDServices - ok
14:08:41.0527 0x0eb8  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
14:08:41.0527 0x0eb8  Parport - ok
14:08:41.0557 0x0eb8  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
14:08:41.0557 0x0eb8  partmgr - ok
14:08:41.0587 0x0eb8  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
14:08:41.0597 0x0eb8  PcaSvc - ok
14:08:41.0627 0x0eb8  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
14:08:41.0627 0x0eb8  pci - ok
14:08:41.0657 0x0eb8  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
14:08:41.0657 0x0eb8  pciide - ok
14:08:41.0677 0x0eb8  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
14:08:41.0677 0x0eb8  pcmcia - ok
14:08:41.0697 0x0eb8  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
14:08:41.0697 0x0eb8  pcw - ok
14:08:41.0727 0x0eb8  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
14:08:41.0737 0x0eb8  PEAUTH - ok
14:08:41.0797 0x0eb8  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
14:08:41.0817 0x0eb8  PeerDistSvc - ok
14:08:41.0917 0x0eb8  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
14:08:41.0917 0x0eb8  PerfHost - ok
14:08:41.0987 0x0eb8  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
14:08:42.0027 0x0eb8  pla - ok
14:08:42.0077 0x0eb8  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
14:08:42.0087 0x0eb8  PlugPlay - ok
14:08:42.0129 0x0eb8  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
14:08:42.0132 0x0eb8  PNRPAutoReg - ok
14:08:42.0169 0x0eb8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
14:08:42.0179 0x0eb8  PNRPsvc - ok
14:08:42.0229 0x0eb8  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
14:08:42.0239 0x0eb8  PolicyAgent - ok
14:08:42.0279 0x0eb8  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
14:08:42.0289 0x0eb8  Power - ok
14:08:42.0309 0x0eb8  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
14:08:42.0319 0x0eb8  PptpMiniport - ok
14:08:42.0339 0x0eb8  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
14:08:42.0349 0x0eb8  Processor - ok
14:08:42.0389 0x0eb8  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
14:08:42.0389 0x0eb8  ProfSvc - ok
14:08:42.0409 0x0eb8  [ E0105F3B5B1C4B0F5B3D788A13504EC6, 16C094BC098E4606239C8A54F2E4B92BABB68215CCB43C161661B1A664A0C7A0 ] ProtectedStorage C:\Windows\system32\lsass.exe
14:08:42.0409 0x0eb8  ProtectedStorage - ok
14:08:42.0479 0x0eb8  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
14:08:42.0479 0x0eb8  Psched - ok
14:08:42.0549 0x0eb8  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
14:08:42.0569 0x0eb8  ql2300 - ok
14:08:42.0599 0x0eb8  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
14:08:42.0599 0x0eb8  ql40xx - ok
14:08:42.0629 0x0eb8  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
14:08:42.0639 0x0eb8  QWAVE - ok
14:08:42.0659 0x0eb8  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
14:08:42.0659 0x0eb8  QWAVEdrv - ok
14:08:42.0669 0x0eb8  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
14:08:42.0679 0x0eb8  RasAcd - ok
14:08:42.0689 0x0eb8  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
14:08:42.0689 0x0eb8  RasAgileVpn - ok
14:08:42.0719 0x0eb8  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
14:08:42.0719 0x0eb8  RasAuto - ok
14:08:42.0749 0x0eb8  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
14:08:42.0759 0x0eb8  Rasl2tp - ok
14:08:42.0779 0x0eb8  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
14:08:42.0779 0x0eb8  RasMan - ok
14:08:42.0809 0x0eb8  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
14:08:42.0809 0x0eb8  RasPppoe - ok
14:08:42.0839 0x0eb8  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
14:08:42.0839 0x0eb8  RasSstp - ok
14:08:42.0859 0x0eb8  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
14:08:42.0869 0x0eb8  rdbss - ok
14:08:42.0889 0x0eb8  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
14:08:42.0889 0x0eb8  rdpbus - ok
14:08:42.0899 0x0eb8  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
14:08:42.0899 0x0eb8  RDPCDD - ok
14:08:42.0919 0x0eb8  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
14:08:42.0929 0x0eb8  RDPDR - ok
14:08:42.0929 0x0eb8  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
14:08:42.0929 0x0eb8  RDPENCDD - ok
14:08:42.0949 0x0eb8  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
14:08:42.0949 0x0eb8  RDPREFMP - ok
14:08:43.0009 0x0eb8  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
14:08:43.0009 0x0eb8  RdpVideoMiniport - ok
14:08:43.0049 0x0eb8  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
14:08:43.0049 0x0eb8  RDPWD - ok
14:08:43.0099 0x0eb8  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
14:08:43.0109 0x0eb8  rdyboost - ok
14:08:43.0129 0x0eb8  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
14:08:43.0129 0x0eb8  RemoteAccess - ok
14:08:43.0169 0x0eb8  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
14:08:43.0169 0x0eb8  RemoteRegistry - ok
14:08:43.0219 0x0eb8  [ 9C3AC71A9934B884FAC567A8807E9C4D, 0B6B2970098E3C21E1E54A25785544903E8CD415B527FCEF86ABC7B33BEC83E7 ] Revoflt         C:\Windows\system32\DRIVERS\revoflt.sys
14:08:43.0219 0x0eb8  Revoflt - ok
14:08:43.0239 0x0eb8  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
14:08:43.0249 0x0eb8  RpcEptMapper - ok
14:08:43.0269 0x0eb8  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
14:08:43.0279 0x0eb8  RpcLocator - ok
14:08:43.0319 0x0eb8  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
14:08:43.0329 0x0eb8  RpcSs - ok
14:08:43.0359 0x0eb8  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
14:08:43.0359 0x0eb8  rspndr - ok
14:08:43.0429 0x0eb8  [ 3A50489C017292386C1C6CF6EB283F23, 42E2C75A83A45070BB548591B83C3744F5DF6BB3743221D0442C1BA23789AD5D ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
14:08:43.0439 0x0eb8  RtkAudioService - ok
14:08:43.0499 0x0eb8  [ EE082E06A82FF630351D1E0EBBD3D8D0, 537F1A4108BDA72E8DD271466E7B7FCF39D4D55E4129AB35A409AB7AF2E7D219 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
14:08:43.0509 0x0eb8  RTL8167 - ok
14:08:43.0539 0x0eb8  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
14:08:43.0539 0x0eb8  s3cap - ok
14:08:43.0569 0x0eb8  [ E0105F3B5B1C4B0F5B3D788A13504EC6, 16C094BC098E4606239C8A54F2E4B92BABB68215CCB43C161661B1A664A0C7A0 ] SamSs           C:\Windows\system32\lsass.exe
14:08:43.0569 0x0eb8  SamSs - ok
14:08:43.0609 0x0eb8  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
14:08:43.0609 0x0eb8  sbp2port - ok
14:08:43.0639 0x0eb8  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
14:08:43.0649 0x0eb8  SCardSvr - ok
14:08:43.0679 0x0eb8  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
14:08:43.0679 0x0eb8  scfilter - ok
14:08:43.0759 0x0eb8  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
14:08:43.0779 0x0eb8  Schedule - ok
14:08:43.0819 0x0eb8  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
14:08:43.0819 0x0eb8  SCPolicySvc - ok
14:08:43.0879 0x0eb8  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
14:08:43.0879 0x0eb8  SDRSVC - ok
14:08:43.0909 0x0eb8  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
14:08:43.0909 0x0eb8  secdrv - ok
14:08:43.0929 0x0eb8  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
14:08:43.0929 0x0eb8  seclogon - ok
14:08:43.0939 0x0eb8  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
14:08:43.0939 0x0eb8  SENS - ok
14:08:43.0959 0x0eb8  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
14:08:43.0959 0x0eb8  SensrSvc - ok
14:08:43.0979 0x0eb8  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
14:08:43.0979 0x0eb8  Serenum - ok
14:08:44.0009 0x0eb8  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
14:08:44.0009 0x0eb8  Serial - ok
14:08:44.0049 0x0eb8  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
14:08:44.0049 0x0eb8  sermouse - ok
14:08:44.0089 0x0eb8  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
14:08:44.0089 0x0eb8  SessionEnv - ok
14:08:44.0109 0x0eb8  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
14:08:44.0119 0x0eb8  sffdisk - ok
14:08:44.0129 0x0eb8  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
14:08:44.0129 0x0eb8  sffp_mmc - ok
14:08:44.0139 0x0eb8  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
14:08:44.0139 0x0eb8  sffp_sd - ok
14:08:44.0149 0x0eb8  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
14:08:44.0149 0x0eb8  sfloppy - ok
14:08:44.0189 0x0eb8  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
14:08:44.0199 0x0eb8  SharedAccess - ok
14:08:44.0229 0x0eb8  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:08:44.0239 0x0eb8  ShellHWDetection - ok
14:08:44.0259 0x0eb8  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
14:08:44.0259 0x0eb8  SiSRaid2 - ok
14:08:44.0269 0x0eb8  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
14:08:44.0269 0x0eb8  SiSRaid4 - ok
14:08:44.0289 0x0eb8  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
14:08:44.0289 0x0eb8  Smb - ok
14:08:44.0329 0x0eb8  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
14:08:44.0329 0x0eb8  SNMPTRAP - ok
14:08:44.0349 0x0eb8  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
14:08:44.0349 0x0eb8  spldr - ok
14:08:44.0389 0x0eb8  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
14:08:44.0399 0x0eb8  Spooler - ok
14:08:44.0549 0x0eb8  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
14:08:44.0619 0x0eb8  sppsvc - ok
14:08:44.0659 0x0eb8  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
14:08:44.0659 0x0eb8  sppuinotify - ok
14:08:44.0689 0x0eb8  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
14:08:44.0699 0x0eb8  srv - ok
14:08:44.0709 0x0eb8  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
14:08:44.0719 0x0eb8  srv2 - ok
14:08:44.0759 0x0eb8  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
14:08:44.0769 0x0eb8  srvnet - ok
14:08:44.0809 0x0eb8  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
14:08:44.0819 0x0eb8  SSDPSRV - ok
14:08:44.0849 0x0eb8  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
14:08:44.0849 0x0eb8  SstpSvc - ok
14:08:44.0929 0x0eb8  [ 15E9700890AE50AA6A8B68EBB8F82EAD, 99D909B8A20E47BBDB5902806C700EAF914192561D69182D93357C6C6F30EC0D ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
14:08:44.0939 0x0eb8  Steam Client Service - ok
14:08:44.0989 0x0eb8  [ D2230317777033CD0456990BFC4994E5, 0F2F559593EAD7AB4596E67E9AE56E5ABF5C945201366CFC972357C22A4F776A ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
14:08:44.0989 0x0eb8  Stereo Service - ok
14:08:45.0029 0x0eb8  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
14:08:45.0039 0x0eb8  stexstor - ok
14:08:45.0079 0x0eb8  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
14:08:45.0089 0x0eb8  stisvc - ok
14:08:45.0129 0x0eb8  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
14:08:45.0129 0x0eb8  storflt - ok
14:08:45.0149 0x0eb8  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
14:08:45.0149 0x0eb8  StorSvc - ok
14:08:45.0169 0x0eb8  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
14:08:45.0169 0x0eb8  storvsc - ok
14:08:45.0179 0x0eb8  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
14:08:45.0179 0x0eb8  swenum - ok
14:08:45.0199 0x0eb8  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
14:08:45.0209 0x0eb8  swprv - ok
14:08:45.0269 0x0eb8  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
14:08:45.0309 0x0eb8  SysMain - ok
14:08:45.0339 0x0eb8  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:08:45.0339 0x0eb8  TabletInputService - ok
14:08:45.0379 0x0eb8  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
14:08:45.0379 0x0eb8  TapiSrv - ok
14:08:45.0409 0x0eb8  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
14:08:45.0409 0x0eb8  TBS - ok
14:08:45.0479 0x0eb8  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
14:08:45.0509 0x0eb8  Tcpip - ok
14:08:45.0569 0x0eb8  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
14:08:45.0599 0x0eb8  TCPIP6 - ok
14:08:45.0629 0x0eb8  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
14:08:45.0629 0x0eb8  tcpipreg - ok
14:08:45.0659 0x0eb8  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
14:08:45.0659 0x0eb8  TDPIPE - ok
14:08:45.0689 0x0eb8  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
14:08:45.0689 0x0eb8  TDTCP - ok
14:08:45.0729 0x0eb8  [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
14:08:45.0729 0x0eb8  tdx - ok
14:08:45.0739 0x0eb8  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
14:08:45.0739 0x0eb8  TermDD - ok
14:08:45.0799 0x0eb8  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
14:08:45.0809 0x0eb8  TermService - ok
14:08:45.0829 0x0eb8  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
14:08:45.0829 0x0eb8  Themes - ok
14:08:45.0849 0x0eb8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
14:08:45.0849 0x0eb8  THREADORDER - ok
14:08:45.0869 0x0eb8  [ D154DD00C8F12D94C9CC94027356B6E4, 501026564147DC43D0764521816B8D20576DA8F5D9DB0D2D8D3A16AA48A534A3 ] Tpkd            C:\Windows\system32\drivers\Tpkd.sys
14:08:45.0869 0x0eb8  Tpkd - ok
14:08:45.0909 0x0eb8  [ DBCC20C02E8A3E43B03C304A4E40A84F, BF5F3ACCB0342304A6870E94D2576644B08DBF307C853C7DBA4B82B0C7309DA4 ] TPM             C:\Windows\system32\drivers\tpm.sys
14:08:45.0909 0x0eb8  TPM - ok
14:08:45.0929 0x0eb8  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
14:08:45.0939 0x0eb8  TrkWks - ok
14:08:45.0979 0x0eb8  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:08:45.0989 0x0eb8  TrustedInstaller - ok
14:08:46.0019 0x0eb8  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
14:08:46.0019 0x0eb8  tssecsrv - ok
14:08:46.0069 0x0eb8  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
14:08:46.0069 0x0eb8  TsUsbFlt - ok
14:08:46.0109 0x0eb8  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
14:08:46.0109 0x0eb8  tunnel - ok
14:08:46.0139 0x0eb8  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
14:08:46.0139 0x0eb8  uagp35 - ok
14:08:46.0169 0x0eb8  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
14:08:46.0179 0x0eb8  udfs - ok
14:08:46.0209 0x0eb8  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
14:08:46.0209 0x0eb8  UI0Detect - ok
14:08:46.0229 0x0eb8  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
14:08:46.0229 0x0eb8  uliagpkx - ok
14:08:46.0249 0x0eb8  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\drivers\umbus.sys
14:08:46.0249 0x0eb8  umbus - ok
14:08:46.0269 0x0eb8  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
14:08:46.0269 0x0eb8  UmPass - ok
14:08:46.0299 0x0eb8  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
14:08:46.0299 0x0eb8  UmRdpService - ok
14:08:46.0329 0x0eb8  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
14:08:46.0339 0x0eb8  upnphost - ok
14:08:46.0379 0x0eb8  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
14:08:46.0379 0x0eb8  usbaudio - ok
14:08:46.0449 0x0eb8  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
14:08:46.0449 0x0eb8  usbccgp - ok
14:08:46.0479 0x0eb8  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
14:08:46.0479 0x0eb8  usbcir - ok
14:08:46.0509 0x0eb8  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
14:08:46.0509 0x0eb8  usbehci - ok
14:08:46.0539 0x0eb8  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
14:08:46.0549 0x0eb8  usbhub - ok
14:08:46.0579 0x0eb8  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
14:08:46.0579 0x0eb8  usbohci - ok
14:08:46.0599 0x0eb8  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
14:08:46.0599 0x0eb8  usbprint - ok
14:08:46.0629 0x0eb8  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
14:08:46.0629 0x0eb8  usbscan - ok
14:08:46.0659 0x0eb8  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:08:46.0669 0x0eb8  USBSTOR - ok
14:08:46.0689 0x0eb8  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
14:08:46.0689 0x0eb8  usbuhci - ok
14:08:46.0719 0x0eb8  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
14:08:46.0719 0x0eb8  UxSms - ok
14:08:46.0749 0x0eb8  [ E0105F3B5B1C4B0F5B3D788A13504EC6, 16C094BC098E4606239C8A54F2E4B92BABB68215CCB43C161661B1A664A0C7A0 ] VaultSvc        C:\Windows\system32\lsass.exe
14:08:46.0749 0x0eb8  VaultSvc - ok
14:08:46.0789 0x0eb8  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
14:08:46.0789 0x0eb8  vdrvroot - ok
14:08:46.0839 0x0eb8  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
14:08:46.0849 0x0eb8  vds - ok
14:08:46.0879 0x0eb8  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
14:08:46.0879 0x0eb8  vga - ok
14:08:46.0899 0x0eb8  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
14:08:46.0899 0x0eb8  VgaSave - ok
14:08:46.0949 0x0eb8  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
14:08:46.0949 0x0eb8  vhdmp - ok
14:08:46.0979 0x0eb8  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
14:08:46.0979 0x0eb8  viaide - ok
14:08:46.0999 0x0eb8  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
14:08:47.0009 0x0eb8  vmbus - ok
14:08:47.0029 0x0eb8  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
14:08:47.0029 0x0eb8  VMBusHID - ok
14:08:47.0049 0x0eb8  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
14:08:47.0049 0x0eb8  volmgr - ok
14:08:47.0079 0x0eb8  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
14:08:47.0079 0x0eb8  volmgrx - ok
14:08:47.0109 0x0eb8  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
14:08:47.0119 0x0eb8  volsnap - ok
14:08:47.0149 0x0eb8  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
14:08:47.0149 0x0eb8  vsmraid - ok
14:08:47.0219 0x0eb8  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
14:08:47.0249 0x0eb8  VSS - ok
14:08:47.0269 0x0eb8  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
14:08:47.0279 0x0eb8  vwifibus - ok
14:08:47.0309 0x0eb8  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
14:08:47.0309 0x0eb8  vwififlt - ok
14:08:47.0359 0x0eb8  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
14:08:47.0369 0x0eb8  W32Time - ok
14:08:47.0389 0x0eb8  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
14:08:47.0389 0x0eb8  WacomPen - ok
14:08:47.0439 0x0eb8  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
14:08:47.0439 0x0eb8  WANARP - ok
14:08:47.0449 0x0eb8  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
14:08:47.0449 0x0eb8  Wanarpv6 - ok
14:08:47.0539 0x0eb8  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
14:08:47.0559 0x0eb8  WatAdminSvc - ok
14:08:47.0629 0x0eb8  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
14:08:47.0669 0x0eb8  wbengine - ok
14:08:47.0689 0x0eb8  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
14:08:47.0689 0x0eb8  WbioSrvc - ok
14:08:47.0729 0x0eb8  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
14:08:47.0739 0x0eb8  wcncsvc - ok
14:08:47.0749 0x0eb8  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:08:47.0759 0x0eb8  WcsPlugInService - ok
14:08:47.0769 0x0eb8  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
14:08:47.0769 0x0eb8  Wd - ok
14:08:47.0809 0x0eb8  [ A3D04EBF5227886029B4532F20D026F7, D90F7B9C176008675DA0B5FD7E4973CBC2A04172CEDF8FB7D3B3B4F27B5440D7 ] WDC_SAM         C:\Windows\system32\DRIVERS\wdcsam64.sys
14:08:47.0809 0x0eb8  WDC_SAM - ok
14:08:47.0859 0x0eb8  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
14:08:47.0879 0x0eb8  Wdf01000 - ok
14:08:47.0909 0x0eb8  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
14:08:47.0909 0x0eb8  WdiServiceHost - ok
14:08:47.0919 0x0eb8  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
14:08:47.0919 0x0eb8  WdiSystemHost - ok
14:08:47.0959 0x0eb8  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
14:08:47.0969 0x0eb8  WebClient - ok
14:08:47.0989 0x0eb8  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
14:08:47.0999 0x0eb8  Wecsvc - ok
14:08:48.0019 0x0eb8  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
14:08:48.0019 0x0eb8  wercplsupport - ok
14:08:48.0049 0x0eb8  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
14:08:48.0049 0x0eb8  WerSvc - ok
14:08:48.0069 0x0eb8  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
14:08:48.0069 0x0eb8  WfpLwf - ok
14:08:48.0079 0x0eb8  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
14:08:48.0079 0x0eb8  WIMMount - ok
14:08:48.0099 0x0eb8  WinDefend - ok
14:08:48.0119 0x0eb8  WinHttpAutoProxySvc - ok
14:08:48.0179 0x0eb8  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
14:08:48.0179 0x0eb8  Winmgmt - ok
14:08:48.0269 0x0eb8  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
14:08:48.0309 0x0eb8  WinRM - ok
14:08:48.0359 0x0eb8  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
14:08:48.0379 0x0eb8  Wlansvc - ok
14:08:48.0399 0x0eb8  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
14:08:48.0399 0x0eb8  WmiAcpi - ok
14:08:48.0439 0x0eb8  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
14:08:48.0439 0x0eb8  wmiApSrv - ok
14:08:48.0479 0x0eb8  WMPNetworkSvc - ok
14:08:48.0539 0x0eb8  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
14:08:48.0539 0x0eb8  WPCSvc - ok
14:08:48.0569 0x0eb8  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
14:08:48.0579 0x0eb8  WPDBusEnum - ok
14:08:48.0609 0x0eb8  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
14:08:48.0609 0x0eb8  ws2ifsl - ok
14:08:48.0629 0x0eb8  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
14:08:48.0639 0x0eb8  wscsvc - ok
14:08:48.0639 0x0eb8  WSearch - ok
14:08:48.0739 0x0eb8  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll
14:08:48.0789 0x0eb8  wuauserv - ok
14:08:48.0829 0x0eb8  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
14:08:48.0829 0x0eb8  WudfPf - ok
14:08:48.0889 0x0eb8  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
14:08:48.0889 0x0eb8  WUDFRd - ok
14:08:48.0919 0x0eb8  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
14:08:48.0929 0x0eb8  wudfsvc - ok
14:08:48.0979 0x0eb8  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
14:08:48.0989 0x0eb8  WwanSvc - ok
14:08:49.0009 0x0eb8  ================ Scan global ===============================
14:08:49.0029 0x0eb8  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
14:08:49.0059 0x0eb8  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
14:08:49.0079 0x0eb8  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
14:08:49.0099 0x0eb8  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
14:08:49.0129 0x0eb8  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
14:08:49.0139 0x0eb8  [ Global ] - ok
14:08:49.0139 0x0eb8  ================ Scan MBR ==================================
14:08:49.0149 0x0eb8  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
14:08:49.0399 0x0eb8  \Device\Harddisk0\DR0 - ok
14:08:49.0409 0x0eb8  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
14:08:49.0419 0x0eb8  \Device\Harddisk1\DR1 - ok
14:08:49.0419 0x0eb8  ================ Scan VBR ==================================
14:08:49.0419 0x0eb8  [ 30E78B1061281AA9F7FDFB13CC403C87 ] \Device\Harddisk0\DR0\Partition1
14:08:49.0419 0x0eb8  \Device\Harddisk0\DR0\Partition1 - ok
14:08:49.0419 0x0eb8  [ 36519F95654B89B44B104F89F645B23B ] \Device\Harddisk0\DR0\Partition2
14:08:49.0429 0x0eb8  \Device\Harddisk0\DR0\Partition2 - ok
14:08:49.0429 0x0eb8  [ 61A809829567957E30F45BAB9C39FD85 ] \Device\Harddisk1\DR1\Partition1
14:08:49.0509 0x0eb8  \Device\Harddisk1\DR1\Partition1 - ok
14:08:49.0519 0x0eb8  ================ Scan generic autorun ======================
14:08:49.0549 0x0eb8  [ 87A4570E9D15A2821015B7FB6B821654, BDF5266905DC3F9ED0DBE41798D9907FC9E8D030DD5C28975BBF9BFD8BD9DA71 ] C:\Windows\system32\igfxtray.exe
14:08:49.0559 0x0eb8  IgfxTray - ok
14:08:49.0589 0x0eb8  [ 842683D8F1A58A76E5A03DA35B4962EE, 7D1B1918D69566694D7D0E82A8A1C7537A5C3A1533DC80F60FE212DD2DBC6099 ] C:\Windows\system32\hkcmd.exe
14:08:49.0599 0x0eb8  HotKeysCmds - ok
14:08:49.0639 0x0eb8  [ 99F8C1060BFB20D2039716BBF741D6C2, 8C578E288D88697E88AB9BEAE79D33AF23AD6176D830D5916BD2DD42EC6FADC5 ] C:\Windows\system32\igfxpers.exe
14:08:49.0649 0x0eb8  Persistence - ok
14:08:49.0709 0x0eb8  [ 66B1C09A03323BC0142B62769ACB195E, 54B59524DE975DF649AD0C781772753135F6F73BA1A5E2458658665565BAADEC ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
14:08:49.0739 0x0eb8  NvBackend - ok
14:08:49.0879 0x0eb8  [ 2433692BFC2631DC28B0705C1B760FF2, BBDE902F984E0968A3062F3EEA624E804B03095C67C280CDA4E85D02F46B7CDC ] C:\Program Files\Logitech\SetPointP\SetPoint.exe
14:08:49.0939 0x0eb8  EvtMgr6 - ok
14:08:49.0949 0x0eb8  Bluetooth Connection Assistant - ok
14:08:50.0119 0x0eb8  [ F5A5DBADCD24BDF33BFDAA789E39C876, A0D931FA339CA1FB6198BF5DF327ECEB0881796FFF92BDE0F9FC2C233C46E83C ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
14:08:50.0129 0x0eb8  AdobeAAMUpdater-1.0 - ok
14:08:50.0399 0x0eb8  [ C019E2FEB48A2B618E03A9FCD879B72A, 585B8072337C9E11BE1854E2A062E59CDCEC1406292987E6FDCA752F1848FD4E ] C:\Program Files\ESET\ESET Smart Security\egui.exe
14:08:50.0519 0x0eb8  egui - ok
14:08:50.0659 0x0eb8  [ 3255867AE34EDD5346C750677EE63354, 3FC8E1EFF33EE83717C285D0CD388886135C5BF977B69CF6ADCFD4196139D483 ] C:\Program Files (x86)\Steam\steam.exe
14:08:50.0709 0x0eb8  Steam - ok
14:08:50.0709 0x0eb8  Waiting for KSN requests completion. In queue: 320
14:08:51.0709 0x0eb8  Waiting for KSN requests completion. In queue: 320
14:08:52.0709 0x0eb8  Waiting for KSN requests completion. In queue: 13
14:08:53.0759 0x0eb8  AV detected via SS2: ESET Smart Security 8.0, C:\Program Files\ESET\ESET Smart Security\ecmd.exe ( 8.0.304.0 ), 0x41000 ( enabled : updated )
14:08:53.0759 0x0eb8  FW detected via SS2: ESET Personal firewall, C:\Program Files\ESET\ESET Smart Security\ecmd.exe ( 8.0.304.0 ), 0x41010 ( enabled )
14:08:56.0689 0x0eb8  ============================================================
14:08:56.0689 0x0eb8  Scan finished
14:08:56.0689 0x0eb8  ============================================================
14:08:56.0689 0x17b0  Detected object count: 0
14:08:56.0689 0x17b0  Actual detected object count: 0
14:15:49.0769 0x1328  Deinitialize success


 



#14 nasdaq

nasdaq

  • Malware Response Team
  • 38,238 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:03:40 PM

Posted 10 March 2015 - 08:56 AM

Your last logs are clean.

I see scan log saying that I do...But when I us the search bar...it doesnt show up.


I do not understand, what does not show up?

#15 decka808

decka808
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:40 AM

Posted 10 March 2015 - 06:40 PM

In one of the scan logs I posted, I saw that Adobe was installed. But. when I search the computer for the program, nothing is found.

 

Is that normal?






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users