Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Unable to run videos in all browsers


  • This topic is locked This topic is locked
5 replies to this topic

#1 Hookmeistr

Hookmeistr

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Rio Rancho, NM USA
  • Local time:02:23 AM

Posted 18 May 2015 - 06:18 PM

First, hello community and thanks for having such a great site available. Any help is GREATLY appreciated.
 
I'm running Windows 8.1 Pro 64 bit, Intel i7-4770K @ 3.50GHz with 16GB RAM and have recently installed the GeForce GTX 970 video card (drivers are current).
 
I started having an issue about a week or so ago, and I kind of think it was right after a Chrome update but I can't be certain. In any event, whether I'm trying to play any video on Chrome (42.0.2311.152 m), Firefox (38.0.1), IE11, as well as Avant Browser, which I installed today while troubleshooting, the browser window freezes up and eventually pops up with a kill adobe flash plug-in, or Kill / wait for page, or Awww, snap error. If I choose to just wait the window is frozen until the next opportunity to kill/stop, etc. If I choose to wait the process just repeats. If I choose to kill then it will usually unfreeze the page but will often freeze up again and still repeat because of something (probably an ad) which will attempt to run it's small video or whatever. I can open YouTube to the main page but as soon as I click on a video to watch, it will take me to the page and look like it's about to start but instead I see the pause button and usually a circle spinning or something acting like it's trying to launch but nothing happens other than what I previously mentioned with respect to getting errors asking me to kill the page or wait, etc.
 
This is obviously very frustrating. I called a tech friend of mine who suggested I check out Bleeping Computer. I did so and downloaded and ran AdwCleaner, JRT,  FRST64 and TDSSKiller (renamed it to iexplore.exe as suggested) and ran as administrator in each case. I already have Malwarebytes Pro and ran that as well. I'm going to include the logs for your review since I assume that's what you're going to need.
 
AdwCleaner 1st Log (AdwCleaner[R0].txt:
 
# AdwCleaner v4.204 - Logfile created 18/05/2015 at 14:58:43
# Updated 12/05/2015 by Xplode
# Database : 2015-05-12.2 [Server]
# Operating system : Windows 8.1 Pro  (x64)
# Username : Patrick Massengale - PATGAMES
# Running from : C:\Users\Patrick Massengale\AppData\Local\Microsoft\Windows\INetCache\IE\XCBVX6A3\AdwCleaner.exe
# Option : Scan
***** [ Services ] *****
Service Found : YahooAUService
***** [ Files / Folders ] *****
File Found : C:\Users\Patrick Massengale\AppData\Roaming\Mozilla\Firefox\Profiles\vsu1102e.default\user.js
Folder Found : C:\Program Files (x86)\Run_Dregol
Folder Found : C:\ProgramData\Yahoo! Companion
Folder Found : C:\Users\Patrick Massengale\AppData\LocalLow\Yahoo! Companion
Folder Found : C:\Users\Patrick Massengale\AppData\Roaming\download Manager
Folder Found : C:\Users\Patrick Massengale\AppData\Roaming\Mozilla\Firefox\Profiles\vsu1102e.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
Folder Found : C:\Users\Patrick Massengale\AppData\Roaming\Mozilla\Firefox\Profiles\vsu1102e.default\Extensions\adremoveext@adremoveext.net
Folder Found : C:\Users\Patrick Massengale\AppData\Roaming\Run_Dregol
***** [ Scheduled tasks ] *****
Task Found : Run_Dregol
***** [ Shortcuts ] *****
***** [ Registry ] *****
Data Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Found : HKCU\Software\Run_Dregol
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Found : [x64] HKCU\Software\Run_Dregol
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1663C10B-0D55-438D-8496-19A3DBAEC0E4}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
***** [ Web browsers ] *****
-\\ Internet Explorer v11.0.9600.17416
-\\ Mozilla Firefox v38.0.1 (x86 en-US)
[vsu1102e.default] - Line Found : user_pref("browser.startup.homepage", "hxxp://www.dregol.com/?f=1&a=drg_bimmed_15_21&cd=2XzuyEtN2Y1L1Qzu0B0C0E0EyB0Bzy0Czy0DtBtDtC0CzytDtN0D0Tzu0StCtBtAtAtN1L2XzutAtFtCtDtFtBtFtDtN1L1CzutCyEtBzytDyD1V[...]
-\\ Google Chrome v42.0.2311.152
[C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://search.aol.com/aol/search?query={searchTerms}
[C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
[C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Default\Web data] - Found [Search Provider] : hxxp://www.dregol.com/results.php?f=4&q={searchTerms}&a=drg_bimmed_15_21&cd=2XzuyEtN2Y1L1Qzu0B0C0E0EyB0Bzy0Czy0DtBtDtC0CzytDtN0D0Tzu0StCtBtAtAtN1L2XzutAtFtCtDtFtBtFtDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyDyBtAtC0F0D0DyDtGtA0BtBtDtGtA0EyD0FtGtC0F0A0DtGtB0CtD0F0A0C0F0CyB0A0Czz2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyE0A0CyC0ByD0AyBtGtB0B0D0BtGyE0DzytBtGzyyCyEtCtGtByEtDzz0Czy0ByCtD0FyC0D2QtN0A0LzutB&cr=1730817896&ir=
[C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Default\Preferences] - Found [Extension] : bbmegnmpleoagolcnjnejdacakedpcgd
*************************
AdwCleaner[R0].txt - [3308 bytes] - [18/05/2015 14:58:43]
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [3367 bytes] ##########
 
AdwCleaner 2nd Log (AdwCleaner[S0].txt:
 
# AdwCleaner v4.204 - Logfile created 18/05/2015 at 15:12:31
# Updated 12/05/2015 by Xplode
# Database : 2015-05-12.2 [Server]
# Operating system : Windows 8.1 Pro  (x64)
# Username : Patrick Massengale - PATGAMES
# Running from : C:\Users\Patrick Massengale\AppData\Local\Microsoft\Windows\INetCache\IE\XCBVX6A3\AdwCleaner.exe
# Option : Cleaning
***** [ Services ] *****
Service Deleted : YahooAUService
***** [ Files / Folders ] *****
Folder Deleted : C:\ProgramData\Yahoo! Companion
Folder Deleted : C:\Program Files (x86)\Run_Dregol
Folder Deleted : C:\Users\Patrick Massengale\AppData\LocalLow\Yahoo! Companion
Folder Deleted : C:\Users\Patrick Massengale\AppData\Roaming\download Manager
Folder Deleted : C:\Users\Patrick Massengale\AppData\Roaming\Run_Dregol
Folder Deleted : C:\Users\Patrick Massengale\AppData\Roaming\Mozilla\Firefox\Profiles\vsu1102e.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
Folder Deleted : C:\Users\Patrick Massengale\AppData\Roaming\Mozilla\Firefox\Profiles\vsu1102e.default\Extensions\adremoveext@adremoveext.net
File Deleted : C:\Users\Patrick Massengale\AppData\Roaming\Mozilla\Firefox\Profiles\vsu1102e.default\user.js
***** [ Scheduled tasks ] *****
Task Deleted : Run_Dregol
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1663C10B-0D55-438D-8496-19A3DBAEC0E4}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKCU\Software\Run_Dregol
Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local
***** [ Web browsers ] *****
-\\ Internet Explorer v11.0.9600.17416
-\\ Mozilla Firefox v38.0.1 (x86 en-US)
[vsu1102e.default\prefs.js] - Line Deleted : user_pref("browser.startup.homepage", "hxxp://www.dregol.com/?f=1&a=drg_bimmed_15_21&cd=2XzuyEtN2Y1L1Qzu0B0C0E0EyB0Bzy0Czy0DtBtDtC0CzytDtN0D0Tzu0StCtBtAtAtN1L2XzutAtFtCtDtFtBtFtDtN1L1CzutCyEtBzytDyD1V[...]
-\\ Google Chrome v42.0.2311.152
[C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?query={searchTerms}
[C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
[C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.dregol.com/results.php?f=4&q={searchTerms}&a=drg_bimmed_15_21&cd=2XzuyEtN2Y1L1Qzu0B0C0E0EyB0Bzy0Czy0DtBtDtC0CzytDtN0D0Tzu0StCtBtAtAtN1L2XzutAtFtCtDtFtBtFtDtN1L1CzutCyEtBzytDyD1V1StN1L1G1B1V1N2Y1L1Qzu2SyDyBtAtC0F0D0DyDtGtA0BtBtDtGtA0EyD0FtGtC0F0A0DtGtB0CtD0F0A0C0F0CyB0A0Czz2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyE0A0CyC0ByD0AyBtGtB0B0D0BtGyE0DzytBtGzyyCyEtCtGtByEtDzz0Czy0ByCtD0FyC0D2QtN0A0LzutB&cr=1730817896&ir=
[C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Default\Preferences] - Deleted [Extension] : bbmegnmpleoagolcnjnejdacakedpcgd
*************************
AdwCleaner[R0].txt - [3458 bytes] - [18/05/2015 14:59:23]
AdwCleaner[S0].txt - [3271 bytes] - [18/05/2015 15:12:31]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3330  bytes] ##########
 
I received an error stating post was too long and that I needed to shorten it so I will post 2 or more postings in order to provide you all the log files.
 
--Hookmeistr

Edited by Queen-Evie, 18 May 2015 - 06:35 PM.
moved from Windows 8 to Malware Removal Logs. FRST logs are allowed only in MRL


BC AdBot (Login to Remove)

 


#2 Hookmeistr

Hookmeistr
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Rio Rancho, NM USA
  • Local time:02:23 AM

Posted 18 May 2015 - 06:22 PM

Here's the 2nd post to follow-up with additional log files:

 

FRST64 1st log (FRST.txt):

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 16-05-2015 02
Ran by Patrick Massengale (administrator) on PATGAMES on 18-05-2015 16:32:46
Running from C:\Users\Patrick Massengale\Downloads
Loaded Profiles: Patrick Massengale (Available profiles: Patrick Massengale & Admin)
Platform: Windows 8.1 Pro (X64) OS Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Intuit) C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\livecomm.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.27.5\GoogleCrashHandler64.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe
(Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Logitech Inc.) C:\Program Files\Logitech Gaming Software\LCore.exe
(Kensington) C:\Program Files (x86)\Kensington\TrackballWorks\TbwHelper.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP ENVY 120 series\Bin\ScanToPCActivationApp.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\APSDaemon.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Dropbox, Inc.) C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Binary Fortress Software) C:\Program Files (x86)\DisplayFusion\DisplayFusionHookAppWIN6064.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP ENVY 120 series\Bin\HPNetworkCommunicator.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8459480 2015-05-03] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM\...\Run: [ACPW07EN] => C:\Program Files\ACD Systems\ACDSee Pro\7.0\acdIDInTouch2.exe [1813832 2014-03-18] (ACD Systems)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-04-07] (Apple Inc.)
HKLM\...\Run: [MouseDriver] => C:\Windows\system32\TiltWheelMouse.exe [241152 2013-04-09] (Pixart Imaging Inc)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [13318424 2015-03-12] (Logitech Inc.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1075296 2013-04-25] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [WD Drive Unlocker] => C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [1694080 2013-07-10] (Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5562736 2014-07-22] (Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3499896 2014-05-08] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2694040 2014-07-22] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [VIDC04EN] => C:\Program Files (x86)\ACD Systems\ACDSee Video Converter 4.0\acdIDInTouch2.exe [1423176 2013-09-24] (ACD Systems)
HKLM-x32\...\Run: [Aimersoft Helper Compact.exe] => C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe [2001920 2014-04-04] (AimerSoft)
HKLM-x32\...\Run: [Kensington TrackballWorks Helper] => C:\Program Files (x86)\Kensington\TrackballWorks\TbwHelper.exe [504320 2012-02-20] (Kensington)
HKLM-x32\...\Run: [Intuit SyncManager] => C:\Program Files (x86)\Common Files\Intuit\Sync\IntuitSyncManager.exe [3775800 2014-02-27] (Intuit Inc. All rights reserved.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
Winlogon\Notify\GoToAssist: C:\Program Files (x86)\Citrix\GoToAssist\957\G2AWinLogon_x64.dll (Citrix Online, a division of Citrix Systems, Inc.)
HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\Run: [Kensington TrackballWorks] => C:\Program Files (x86)\Kensington\TrackballWorks\TbwHelper.exe [504320 2012-02-20] (Kensington)
HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [59720 2013-11-20] (Apple Inc.)
HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\Run: [HP ENVY 120 series (NET)] => C:\Program Files\HP\HP ENVY 120 series\Bin\ScanToPCActivationApp.exe [2573416 2012-10-17] (Hewlett-Packard Co.)
HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [688984 2014-12-31] (Garmin Ltd or its subsidiaries)
HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8204056 2015-04-23] (Piriform Ltd)
HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\Run: [DisplayFusion] => C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe [6886752 2015-01-07] (Binary Fortress Software)
HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\Run: [8F1F3AF3834748E5DA9D73C849D714CC4C4BE6FA._service_run] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [812872 2015-05-04] (Google Inc.)
HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\MountPoints2: {95272390-2511-11e4-8283-bcee7b9c9d20} - "J:\VZW_Software_upgrade_assistant.exe"
HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\MountPoints2: {a7269607-d92b-11e3-8262-bcee7b9c9d20} - "K:\VZW_Software_upgrade_assistant.exe"
HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\MountPoints2: {a7269697-d92b-11e3-8262-bcee7b9c9d20} - "J:\VZW_Software_upgrade_assistant.exe"
HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\MountPoints2: {b3d29811-f707-11e3-8274-bcee7b9c9d20} - "J:\VZW_Software_upgrade_assistant.exe"
HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\MountPoints2: {fdb5c2a3-21ed-11e4-827f-bcee7b9c9d20} - "K:\VZW_Software_upgrade_assistant.exe"
HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Program Files (x86)\DisplayFusion\DFSSaver.scr [3494912 2015-01-07] (Binary Fortress Software)
HKU\S-1-5-18\...\Run: [Advanced SystemCare 8] => "C:\Program Files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe" /Auto
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [688984 2014-12-31] (Garmin Ltd or its subsidiaries)
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Program Files (x86)\DisplayFusion\ScreenSavers\SineWaves.scr [1263480 2014-12-05] (Binary Fortress Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Audible Download Manager.lnk [2014-05-11]
ShortcutTarget: Audible Download Manager.lnk -> C:\Program Files (x86)\Audible\Bin\AudibleDownloadHelper.exe (Audible, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Intuit Data Protect.lnk [2014-05-13]
ShortcutTarget: Intuit Data Protect.lnk -> C:\Program Files (x86)\Common Files\Intuit\DataProtect\IntuitDataProtect.exe (Intuit Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks Update Agent.lnk [2014-05-13]
ShortcutTarget: QuickBooks Update Agent.lnk -> C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe (Intuit Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\QuickBooks_Standard_21.lnk [2014-05-13]
ShortcutTarget: QuickBooks_Standard_21.lnk -> C:\Program Files (x86)\Intuit\QuickBooks 2014\QBW32.EXE (Intuit Inc.)
Startup: C:\Users\Patrick Massengale\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-05-12]
ShortcutTarget: Dropbox.lnk -> C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Patrick Massengale\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor Ink Alerts - .lnk [2014-06-05]
ShortcutTarget: Monitor Ink Alerts - .lnk -> C:\Program Files\HP\HP ENVY 120 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll [2014-07-16] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll [2014-07-16] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll [2014-07-16] ()
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt.25.dll [2015-02-10] (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-05-08] (Adobe Systems Incorporated)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2015-03-10] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-05-08] (Adobe Systems Incorporated)
BHO-x32: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-05-03] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2013-12-21] (Adobe Systems Incorporated)
BHO-x32: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-03] (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2013-12-21] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-05-08] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001 -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-05-08] (Adobe Systems Incorporated)
Handler-x32: intu-help-qb7 - {5A03BD9D-766D-47A6-8E87-CD90F60BE245} - C:\Program Files (x86)\Intuit\QuickBooks 2014\HelpAsyncPluggableProtocol.dll [2014-06-05] (Intuit, Inc.)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
Handler-x32: qbwc - {FC598A64-626C-4447-85B8-53150405FD57} - C:\Windows\SysWOW64\mscoree.dll [2013-08-21] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 205.171.2.65

FireFox:
========
FF ProfilePath: C:\Users\Patrick Massengale\AppData\Roaming\Mozilla\Firefox\Profiles\vsu1102e.default
FF DefaultSearchEngine.US: Google
FF SelectedSearchEngine: Google
FF NewTab: about:newtab
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-14] ()
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (GARMIN Corp.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll No File
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2014-07-22] (Adobe Systems)
FF Plugin: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll [2013-12-03] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-14] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @esn.me/esnsonar,version=0.70.4 -> C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\npesnsonar.dll [2011-11-03] (ESN Social Software AB)
FF Plugin-x32: @esn/esnlaunch,version=2.3.0 -> C:\Program Files (x86)\Battlelog Web Plugins\2.3.0\npesnlaunch.dll [2013-09-16] (ESN Social Software AB)
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2014-03-31] (GARMIN Corp.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-03] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-03] (Oracle Corporation)
FF Plugin-x32: @messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6 -> C:\Program Files (x86)\Yahoo!\Shared\npYState.dll [2012-05-25] (Yahoo! Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-05-02] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-17] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-22] (VideoLAN)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2014-07-22] (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [2013-12-03] (Adobe Systems)
FF Plugin HKU\S-1-5-21-1565451652-3773726845-3366320369-1001: @citrixonline.com/appdetectorplugin -> C:\Users\Patrick Massengale\AppData\Local\Citrix\Plugins\104\npappdetector.dll [2014-08-20] (Citrix Online)
FF Plugin HKU\S-1-5-21-1565451652-3773726845-3366320369-1001: tdameritrade.com/thinkorswim -> C:\Program Files\thinkorswim\npthinkorswim.dll [2014-11-04] (TD Ameritrade)
FF Plugin HKU\S-1-5-21-1565451652-3773726845-3366320369-1001: tdameritrade.com/tossc -> C:\Program Files\thinkorswim\nptossc.dll [2014-11-04] (TD Ameritrade)
FF Extension: Ghostery - C:\Users\Patrick Massengale\AppData\Roaming\Mozilla\Firefox\Profiles\vsu1102e.default\Extensions\firefox@ghostery.com.xpi [2015-05-06]
FF Extension: YouTube High Definition - C:\Users\Patrick Massengale\AppData\Roaming\Mozilla\Firefox\Profiles\vsu1102e.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2015-05-06]
FF Extension: ReloadEvery - C:\Users\Patrick Massengale\AppData\Roaming\Mozilla\Firefox\Profiles\vsu1102e.default\Extensions\{888d99e7-e8b5-46a3-851e-1ec45da1e644}.xpi [2014-05-19]
FF Extension: Adblock Plus - C:\Users\Patrick Massengale\AppData\Roaming\Mozilla\Firefox\Profiles\vsu1102e.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-05-06]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2014-05-02]

Chrome:
=======
CHR HomePage: Profile 1 -> hxxp://www.google.com
CHR StartupUrls: Profile 1 -> "hxxp://www.google.com/", "hxxp://xfinity.comcast.net/?cid=insDate12102013", "hxxp://start.mysearchdial.com/?f=1&a=dnldstr_14_17_ie&cd=2XzuyEtN2Y1L1Qzu0B0C0E0EyB0Bzy0Czy0DtBtDyByC0EyCtN0D0Tzu0SzzyEtBtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V0WtN1L1G1B1V1N2Y1L1Qzu2StByB0DyE0BtByCyDtGyC0C0AyBtG0F0B0C0EtGtAyDzzyEtGtDyBzz0EzyyByDtAtD0C0EtD2QtN1M1F1B2Z1V1N2Y1L1Qzu2SyE0C0B0AtBzytAyCtG0F0DtAyDtG0C0E0A0AtG0B0E0D0FtGtAyDtBtDyB0BzyyEzy0CtDyD2Q&cr=1913523349&ir=", "hxxp://www.google.com"
CHR DefaultSuggestURL: Profile 1 -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-01]
CHR Extension: (Google Drive) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-01]
CHR Extension: (YouTube) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-01]
CHR Extension: (Google Search) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-01]
CHR Extension: (Google Wallet) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-01]
CHR Extension: (Gmail) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-01]
CHR Profile: C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Docs) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-01]
CHR Extension: (Google Drive) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-01]
CHR Extension: (YouTube) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-01]
CHR Extension: (ImprovedTube - YouTube Extension) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\bnomihfieiccainjcjblhegjgglakjdd [2015-04-23]
CHR Extension: (Google Cast) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2015-02-09]
CHR Extension: (Videostream for Google Chromecast™) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\cnciopoikihiagdjbjpnocolokfelagl [2015-02-09]
CHR Extension: (Google Search) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-01]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2014-10-14]
CHR Extension: (Adobe Acrobat - Create PDF) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2014-05-02]
CHR Extension: (Google Sheets) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2014-05-01]
CHR Extension: (iCloud Bookmarks) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fkepacicchenbjecpbpbclokcabebhah [2014-05-13]
CHR Extension: (Magisto - Magical Video Editor) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghmngbmfdgknokcefmkbjlcjabdklnlk [2015-04-24]
CHR Extension: (AdBlock) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-05-01]
CHR Extension: (Bookmark Manager) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-02-09]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-27]
CHR Extension: (Ghostery) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2014-05-01]
CHR Extension: (Google Wallet) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-01]
CHR Extension: (Auto Refresh Plus) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\oilipfekkmncanaajkapbpancpelijih [2014-10-24]
CHR Extension: (Gmail) - C:\Users\Patrick Massengale\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-01]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2014-05-08]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-20] (Apple Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-07-04] ()
R2 BcmBtRSupport; C:\Windows\system32\BtwRSupportService.exe [2255064 2013-10-28] (Broadcom Corporation.)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-12-20] (Microsoft Corporation)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2719928 2015-04-22] (Microsoft Corporation)
R2 DiagTrack; C:\Windows\system32\diagtrack.dll [1429504 2015-03-04] (Microsoft Corporation)
R2 DisplayFusionService; C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe [3169648 2015-01-07] (Binary Fortress Software)
S2 Garmin Core Update Service; C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [451416 2014-12-31] (Garmin Ltd or its subsidiaries)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel® Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2014-04-28] (Hewlett-Packard) [File not signed]
S3 Origin Client Service; F:\Program Files (x86)\Origin\OriginClientService.exe [1931632 2015-04-24] (Electronic Arts)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2014-04-28] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2014-09-30] ()
R2 QBCFMonitorService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe [45056 2014-06-05] (Intuit) [File not signed]
S3 QBFCService; C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe [65536 2014-02-27] (Intuit Inc.) [File not signed]
R2 QBVSS; C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe [1248256 2014-02-27] (Intuit Inc.) [File not signed]
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2014-07-22] (Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [296312 2014-06-02] (Western Digital Technologies, Inc.)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-03] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-03] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2013-07-04] ()
S3 bcbtums; C:\Windows\system32\drivers\bcbtums.sys [170712 2013-10-28] (Broadcom Corporation.)
R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d64x64.sys [394520 2014-12-20] (Intel Corporation)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-02-11] (REALiX™)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [136408 2015-05-18] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2015-04-14] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [129312 2015-05-03] (Intel Corporation)
R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [40136 2015-03-13] (NVIDIA Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [31472 2014-12-20] (Synaptics Incorporated)
S3 tbwkern; C:\Windows\System32\drivers\tbwkern.sys [32848 2011-06-13] ()
S3 t_mouse.sys; C:\Windows\system32\DRIVERS\t_mouse.sys [6144 2013-04-09] ()
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-03] (Microsoft Corporation)
R3 WsAudio_Device(1); C:\Windows\system32\drivers\VirtualAudio1.sys [31080 2013-01-25] (Wondershare)
S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2014-06-07] (Microsoft Corporation)
S3 NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [X]
S4 nvvad_WaveExtensible; \SystemRoot\system32\drivers\nvvad64v.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-18 16:32 - 2015-05-18 16:33 - 00036078 _____ () C:\Users\Patrick Massengale\Downloads\FRST.txt
2015-05-18 16:32 - 2015-05-18 16:32 - 00000000 ____D () C:\FRST
2015-05-18 16:31 - 2015-05-18 16:31 - 02107392 _____ (Farbar) C:\Users\Patrick Massengale\Downloads\FRST64.exe
2015-05-18 16:20 - 2015-05-18 16:20 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1565451652-3773726845-3366320369-1001
2015-05-18 16:15 - 2015-05-18 16:15 - 00008192 _____ () C:\Windows\SysWOW64\WDPABKP.dat
2015-05-18 15:35 - 2015-05-18 15:35 - 04197016 _____ (Kaspersky Lab ZAO) C:\Users\Patrick Massengale\Downloads\iexplore.exe
2015-05-18 15:30 - 2015-05-18 16:17 - 00000501 _____ () C:\Users\Patrick Massengale\Desktop\Windows Downloads.website
2015-05-18 15:26 - 2015-05-18 15:26 - 00001167 _____ () C:\Users\Patrick Massengale\Desktop\JRT.txt
2015-05-18 15:22 - 2015-05-18 15:22 - 00000207 _____ () C:\Windows\tweaking.com-regbackup-PATGAMES-Windows-8.1-Pro-(64-bit).dat
2015-05-18 15:22 - 2015-05-18 15:22 - 00000000 ____D () C:\RegBackup
2015-05-18 14:58 - 2015-05-18 15:12 - 00000000 ____D () C:\AdwCleaner
2015-05-18 14:50 - 2015-05-18 14:50 - 00001943 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Avant Browser.lnk
2015-05-18 14:50 - 2015-05-18 14:50 - 00001937 _____ () C:\Users\Public\Desktop\Avant Browser.lnk
2015-05-18 14:50 - 2015-05-18 14:50 - 00000000 ____D () C:\Users\Patrick Massengale\AppData\Roaming\Avant Downloader
2015-05-18 14:50 - 2015-05-18 14:50 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avant Browser
2015-05-18 14:50 - 2015-05-18 14:50 - 00000000 ____D () C:\Program Files (x86)\Avant Browser
2015-05-18 14:38 - 2015-05-18 14:38 - 00003126 _____ () C:\Windows\System32\Tasks\{D7EAE67F-9075-4EEE-B294-A1C0062BC465}
2015-05-18 14:32 - 2015-05-18 14:50 - 00000603 _____ () C:\Users\Patrick Massengale\Desktop\Five free alternative web browsers for Windows - TechRepublic.website
2015-05-18 14:09 - 2015-05-18 14:21 - 00000191 _____ () C:\Users\Patrick Massengale\Desktop\Ras Ritchi.txt
2015-05-17 17:48 - 2015-05-17 17:48 - 00000145 _____ () C:\Users\Patrick Massengale\Desktop\How to Help with the Aw, Snap! Error - Google Product Forums.url
2015-05-17 17:38 - 2015-05-17 17:38 - 00000000 ____D () C:\Users\Public\Documents\Hewlett-Packard
2015-05-17 17:36 - 2015-05-17 17:36 - 00000107 _____ () C:\Users\Patrick Massengale\Desktop\GForce Pro Dual Motor Whole Body Vibration Machine WBV.url
2015-05-17 17:36 - 2015-05-17 17:36 - 00000094 _____ () C:\Users\Patrick Massengale\Desktop\Vmax Fitness Whole Body Vibration Machines - TRIO.url
2015-05-17 16:47 - 2015-05-18 16:13 - 00338441 _____ () C:\Windows\WindowsUpdate.log
2015-05-17 16:46 - 2015-05-18 16:15 - 00001907 _____ () C:\Windows\setupact.log
2015-05-17 16:46 - 2015-05-17 16:46 - 00000000 _____ () C:\Windows\setuperr.log
2015-05-17 16:45 - 2015-05-18 15:13 - 00001850 _____ () C:\Windows\PFRO.log
2015-05-17 16:39 - 2015-05-17 16:39 - 00002448 _____ () C:\Windows\System32\Tasks\Uninstaller_SkipUac_Patrick_Massengale
2015-05-17 16:39 - 2015-05-17 16:39 - 00000322 _____ () C:\Windows\Tasks\Uninstaller_SkipUac_Patrick_Massengale.job
2015-05-17 16:32 - 2015-05-17 16:32 - 00000834 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2015-05-17 03:37 - 2015-05-18 16:15 - 00000912 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-17 03:37 - 2015-05-18 15:42 - 00000916 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-17 00:31 - 2015-05-17 01:28 - 00003259 _____ () C:\Users\Patrick Massengale\Desktop\The Help Card.txt
2015-05-16 16:37 - 2015-05-16 16:37 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-05-12 21:36 - 2015-05-12 21:36 - 00000081 _____ () C:\Users\Patrick Massengale\Desktop\https---www.youtube.com-watch-v=m6KqYfjVt50&spfreload=1.url
2015-05-12 21:36 - 2015-05-12 21:36 - 00000074 _____ () C:\Users\Patrick Massengale\Desktop\https---www.youtube.com-watch-v=6jF8LICSFH8#t=14.url
2015-05-12 21:36 - 2015-05-12 21:36 - 00000069 _____ () C:\Users\Patrick Massengale\Desktop\https---www.youtube.com-watch-v=pnuoqSjwQ5s.url
2015-05-12 21:22 - 2015-05-05 11:59 - 00792568 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-05-12 21:22 - 2015-05-05 11:59 - 00178168 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-05-12 20:01 - 2015-04-30 14:35 - 00124112 _____ (Microsoft Corporation) C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-12 20:01 - 2015-04-30 14:35 - 00102608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-05-12 19:20 - 2015-04-30 17:05 - 00429568 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-05-12 19:20 - 2015-04-30 16:48 - 00358912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-05-12 19:20 - 2015-04-24 15:32 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-05-12 19:20 - 2015-04-13 16:48 - 04180480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-05-12 19:20 - 2015-04-09 19:00 - 01996800 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2015-05-12 19:20 - 2015-04-09 18:50 - 01387008 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2015-05-12 19:20 - 2015-04-09 18:34 - 02256896 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-05-12 19:20 - 2015-04-09 18:26 - 01560576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2015-05-12 19:20 - 2015-04-09 18:11 - 01943040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dwmcore.dll
2015-05-12 19:20 - 2015-04-08 16:55 - 00410128 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2015-05-12 19:20 - 2015-04-02 18:35 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\PhotoMetadataHandler.dll
2015-05-12 19:20 - 2015-04-02 18:14 - 00364544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PhotoMetadataHandler.dll
2015-05-12 19:20 - 2015-04-01 16:22 - 02985984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2015-05-12 19:20 - 2015-04-01 16:20 - 04417536 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2015-05-12 19:20 - 2015-03-31 21:45 - 01491456 _____ (Microsoft Corporation) C:\Windows\system32\dbghelp.dll
2015-05-12 19:20 - 2015-03-31 20:31 - 01207296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbghelp.dll
2015-05-12 19:20 - 2015-03-29 23:47 - 00561928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-05-12 19:20 - 2015-03-26 21:27 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2015-05-12 19:20 - 2015-03-26 20:50 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2015-05-12 19:20 - 2015-03-26 20:48 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-05-12 19:20 - 2015-03-19 19:56 - 00080384 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ahcache.sys
2015-05-12 19:20 - 2015-03-17 11:26 - 00467776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2015-05-12 19:20 - 2015-03-12 22:03 - 00239424 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2015-05-12 19:20 - 2015-03-12 22:03 - 00154432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2015-05-12 19:20 - 2015-03-12 20:02 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\udfs.sys
2015-05-12 19:20 - 2015-03-12 19:11 - 02162176 _____ (Microsoft Corporation) C:\Windows\system32\SRH.dll
2015-05-12 19:20 - 2015-03-12 18:39 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SRH.dll
2015-05-12 19:20 - 2015-03-12 18:29 - 00410017 _____ () C:\Windows\system32\ApnDatabase.xml
2015-05-12 19:20 - 2015-03-10 19:49 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-05-12 19:20 - 2015-03-10 19:09 - 00021504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-05-12 19:20 - 2015-03-08 20:02 - 00057856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthhfenum.sys
2015-05-12 19:20 - 2015-03-05 21:08 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\wpdshext.dll
2015-05-12 19:20 - 2015-03-05 20:47 - 01696256 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2015-05-12 19:20 - 2015-03-05 20:43 - 01969664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wpdshext.dll
2015-05-12 19:20 - 2015-03-04 17:09 - 01429504 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-05-12 19:20 - 2015-03-03 19:32 - 00172544 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Input.Inking.dll
2015-05-12 19:20 - 2015-03-03 19:12 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Input.Inking.dll
2015-05-12 19:20 - 2015-02-17 17:19 - 00186368 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2015-05-12 19:20 - 2015-01-29 18:53 - 02819584 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2015-05-12 19:19 - 2015-04-21 11:14 - 24971776 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-05-12 19:19 - 2015-04-21 10:50 - 00584192 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-05-12 19:19 - 2015-04-21 10:50 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-05-12 19:19 - 2015-04-21 10:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-05-12 19:19 - 2015-04-21 10:37 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-05-12 19:19 - 2015-04-21 10:35 - 00816640 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-05-12 19:19 - 2015-04-21 10:31 - 06025728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-05-12 19:19 - 2015-04-21 10:24 - 19691008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-05-12 19:19 - 2015-04-21 10:13 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2015-05-12 19:19 - 2015-04-21 10:11 - 00504320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-05-12 19:19 - 2015-04-21 10:09 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-05-12 19:19 - 2015-04-21 10:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-05-12 19:19 - 2015-04-21 10:07 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2015-05-12 19:19 - 2015-04-21 10:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-05-12 19:19 - 2015-04-21 10:04 - 02278400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-05-12 19:19 - 2015-04-21 09:59 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2015-05-12 19:19 - 2015-04-21 09:58 - 00664576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-05-12 19:19 - 2015-04-21 09:52 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-05-12 19:19 - 2015-04-21 09:49 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-05-12 19:19 - 2015-04-21 09:49 - 00720384 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-05-12 19:19 - 2015-04-21 09:49 - 00374272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-05-12 19:19 - 2015-04-21 09:46 - 02125824 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-05-12 19:19 - 2015-04-21 09:40 - 14401536 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-05-12 19:19 - 2015-04-21 09:38 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-05-12 19:19 - 2015-04-21 09:37 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2015-05-12 19:19 - 2015-04-21 09:36 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-05-12 19:19 - 2015-04-21 09:32 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2015-05-12 19:19 - 2015-04-21 09:31 - 04305920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-05-12 19:19 - 2015-04-21 09:28 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-05-12 19:19 - 2015-04-21 09:27 - 02352128 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-05-12 19:19 - 2015-04-21 09:26 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-05-12 19:19 - 2015-04-21 09:26 - 00327168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-05-12 19:19 - 2015-04-21 09:25 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-05-12 19:19 - 2015-04-21 09:17 - 12828672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-05-12 19:19 - 2015-04-21 09:15 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-05-12 19:19 - 2015-04-21 09:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-05-12 19:19 - 2015-04-21 09:02 - 01882112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-05-12 19:19 - 2015-04-21 08:58 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-05-12 19:19 - 2015-04-21 08:56 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-05-11 16:31 - 2015-05-17 16:33 - 00000000 ____D () C:\Users\Patrick Massengale\AppData\Local\CrashDumps
2015-05-08 02:36 - 2015-05-08 02:36 - 00003122 _____ () C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1565451652-3773726845-3366320369-1001
2015-05-03 17:53 - 2015-05-03 17:53 - 00000000 ____D () C:\ProgramData\NVIDIA
2015-05-03 17:53 - 2014-12-13 02:03 - 06859408 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2015-05-03 17:53 - 2014-12-13 02:03 - 03513488 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvc64.dll
2015-05-03 17:53 - 2014-12-13 02:03 - 02558608 _____ (NVIDIA Corporation) C:\Windows\system32\nvsvcr.dll
2015-05-03 17:53 - 2014-12-13 02:03 - 00935240 _____ (NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
2015-05-03 17:53 - 2014-12-13 02:03 - 00386368 _____ (NVIDIA Corporation) C:\Windows\system32\nvmctray.dll
2015-05-03 17:53 - 2014-12-13 02:03 - 00062608 _____ (NVIDIA Corporation) C:\Windows\system32\nvshext.dll
2015-05-03 17:53 - 2014-12-12 17:11 - 04151176 _____ () C:\Windows\system32\nvcoproc.bin
2015-05-03 14:49 - 2015-03-13 13:41 - 01557648 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcvadgenco64.dll
2015-05-03 14:49 - 2015-03-13 13:41 - 00101576 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcaparm.dll
2015-05-03 14:49 - 2015-03-13 13:41 - 00040136 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvadarm.sys
2015-05-03 14:47 - 2015-05-03 14:47 - 00000000 ____D () C:\Windows\pss
2015-05-03 14:27 - 2015-05-03 14:38 - 00000145 _____ () C:\Users\Patrick Massengale\Desktop\NVIDIA Tech Support.txt
2015-05-03 13:43 - 2015-05-03 13:43 - 00000000 ____D () C:\ProgramData\LogiShrd
2015-05-03 13:42 - 2015-05-03 13:42 - 00000000 ____D () C:\Users\Patrick Massengale\AppData\Local\Logitech
2015-05-03 13:42 - 2015-05-03 13:42 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech
2015-05-03 13:41 - 2015-05-03 13:42 - 00000000 ____D () C:\Program Files\Logitech Gaming Software
2015-05-03 13:40 - 2015-05-03 13:40 - 00000000 ____D () C:\Users\Patrick Massengale\AppData\Roaming\Logitech
2015-05-03 13:40 - 2015-05-03 13:40 - 00000000 ____D () C:\Users\Patrick Massengale\AppData\Roaming\Logishrd
2015-05-03 02:59 - 2015-05-03 03:00 - 00000000 ____D () C:\Users\Patrick Massengale\AppData\Local\Sniper3
2015-05-03 02:49 - 2015-05-05 10:47 - 00000000 ____D () C:\Users\Patrick Massengale\AppData\Local\DisplayFusion
2015-05-03 02:44 - 2015-05-03 02:44 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-05-03 02:32 - 2015-05-03 02:32 - 00000000 ____D () C:\Users\Patrick Massengale\Documents\DisplayFusion Backups
2015-05-03 02:30 - 2015-05-03 02:49 - 00000000 ____D () C:\Users\Patrick Massengale\AppData\Roaming\DisplayFusion
2015-05-03 02:30 - 2015-05-03 02:30 - 00000000 ____D () C:\ProgramData\Binary Fortress Software
2015-05-03 02:29 - 2015-05-03 02:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DisplayFusion
2015-05-03 02:29 - 2015-05-03 02:32 - 00000000 ____D () C:\Program Files (x86)\DisplayFusion
2015-05-03 01:33 - 2015-05-03 01:33 - 00000000 ____D () C:\Users\Patrick Massengale\AppData\Local\openvr
2015-05-03 01:32 - 2015-05-03 01:32 - 00000000 ____D () C:\Users\Patrick Massengale\AppData\Local\Steam
2015-05-03 01:14 - 2015-05-03 01:14 - 00129312 _____ (Intel Corporation) C:\Windows\system32\Drivers\TeeDriverx64.sys
2015-05-03 01:11 - 2015-05-03 01:11 - 04425816 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RTKVHD64.sys
2015-05-03 01:11 - 2015-05-03 01:11 - 03218800 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtkApi64.dll
2015-05-03 01:11 - 2015-05-03 01:11 - 02909552 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtPgEx64.dll
2015-05-03 01:11 - 2015-05-03 01:11 - 02702040 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTSnMg64.cpl
2015-05-03 01:11 - 2015-05-03 01:11 - 02421480 _____ (Yamaha Corporation) C:\Windows\system32\YamahaAE2.dll
2015-05-03 01:11 - 2015-05-03 01:11 - 01413776 _____ (Synopsys, Inc.) C:\Windows\system32\SRRPTR64.dll
2015-05-03 01:11 - 2015-05-03 01:11 - 01104040 _____ (SRS Labs, Inc.) C:\Windows\system32\slcnt64.dll
2015-05-03 01:11 - 2015-05-03 01:11 - 00943784 _____ (DTS, Inc.) C:\Windows\system32\sl3apo64.dll
2015-05-03 01:11 - 2015-05-03 01:11 - 00836240 _____ (Sound Research, Corp.) C:\Windows\system32\SEHDRA64.dll
2015-05-03 01:11 - 2015-05-03 01:11 - 00734376 _____ (DTS, Inc.) C:\Windows\system32\sltech64.dll
2015-05-03 01:11 - 2015-05-03 01:11 - 00650384 _____ (Sound Research, Corp.) C:\Windows\system32\SECOMN64.dll
2015-05-03 01:11 - 2015-05-03 01:11 - 00542352 _____ (Sound Research, Corp.) C:\Windows\SysWOW64\SECOMN32.DLL
2015-05-03 01:11 - 2015-05-03 01:11 - 00454288 _____ (Synopsys, Inc.) C:\Windows\system32\SRAPO64.dll
2015-05-03 01:11 - 2015-05-03 01:11 - 00434832 _____ (Sound Research, Corp.) C:\Windows\system32\SEAPO64.dll
2015-05-03 01:11 - 2015-05-03 01:11 - 00369296 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM64.dll
2015-05-03 01:11 - 2015-05-03 01:11 - 00329360 _____ (Synopsys, Inc.) C:\Windows\SysWOW64\SRCOM.dll
2015-05-03 01:11 - 2015-05-03 01:11 - 00329360 _____ (Synopsys, Inc.) C:\Windows\system32\SRCOM.dll
2015-05-03 01:11 - 2015-05-03 01:11 - 00250536 _____ (TODO: <Company name>) C:\Windows\system32\slprp64.dll
2015-05-03 01:11 - 2015-05-03 01:11 - 00213432 _____ (TOSHIBA Corporation) C:\Windows\system32\tossaemaxapo64.dll
2015-05-03 01:10 - 2015-05-03 01:10 - 72113152 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoRes64.dat
2015-05-03 01:10 - 2015-05-03 01:10 - 12975360 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO3064.dll
2015-05-03 01:10 - 2015-05-03 01:10 - 12834736 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxVoiceAPO4064.dll
2015-05-03 01:10 - 2015-05-03 01:10 - 07087448 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64A.dll
2015-05-03 01:10 - 2015-05-03 01:10 - 06242576 _____ (Dolby Laboratories) C:\Windows\system32\DDPP64AF3.dll
2015-05-03 01:10 - 2015-05-03 01:10 - 05615552 _____ (Nahimic Inc) C:\Windows\system32\NAHIMICV2apo.dll
2015-05-03 01:10 - 2015-05-03 01:10 - 03182104 _____ (Fortemedia Corporation) C:\Windows\system32\FMAPO64.dll
2015-05-03 01:10 - 2015-05-03 01:10 - 02814832 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RltkAPO64.dll
2015-05-03 01:10 - 2015-05-03 01:10 - 02789808 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO7064.dll
2015-05-03 01:10 - 2015-05-03 01:10 - 02503536 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RltkAPO.dll
2015-05-03 01:10 - 2015-05-03 01:10 - 01953864 _____ () C:\Windows\system32\Drivers\RTAIODAT.DAT
2015-05-03 01:10 - 2015-05-03 01:10 - 01939800 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64A.dll
2015-05-03 01:10 - 2015-05-03 01:10 - 01933584 _____ (Dolby Laboratories) C:\Windows\system32\DDPD64AF3.dll
2015-05-03 01:10 - 2015-05-03 01:10 - 01709272 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RCoInstII64.dll
2015-05-03 01:10 - 2015-05-03 01:10 - 01558720 _____ (Conexant Systems Inc.) C:\Windows\system32\CX64APO.dll
2015-05-03 01:10 - 2015-05-03 01:10 - 01360640 _____ (Waves Audio Ltd.) C:\Windows\system32\MaxxAudioAPO6064.dll
2015-05-03 01:10 - 2015-05-03 01:10 - 01298136 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RTCOM64.dll
2015-05-03 01:10 - 2015-05-03 01:10 - 00631000 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\RtDataProc64.dll
2015-05-03 01:10 - 2015-05-03 01:10 - 00336144 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64AF3.dll
2015-05-03 01:10 - 2015-05-03 01:10 - 00315736 _____ (Dolby Laboratories) C:\Windows\system32\DDPO64A.dll
2015-05-03 01:10 - 2015-05-03 01:10 - 00306288 _____ (ICEpower a/s) C:\Windows\system32\ICEsoundAPO64.dll
2015-05-03 01:10 - 2015-05-03 01:10 - 00284944 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64F3.dll
2015-05-03 01:10 - 2015-05-03 01:10 - 00261464 _____ (Dolby Laboratories) C:\Windows\system32\DDPA64.dll
2015-05-03 01:06 - 2015-01-10 15:32 - 00128288 _____ (IObit) C:\Windows\system32\IObitSmartDefragExtension.dll
2015-04-24 12:34 - 2015-04-24 12:34 - 00001404 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2015-04-24 12:34 - 2015-04-24 12:34 - 00001331 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2015-04-24 12:34 - 2015-04-24 12:34 - 00000000 ____D () C:\Windows\en
2015-04-24 12:34 - 2015-04-24 12:34 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2015-04-24 12:33 - 2015-04-24 12:33 - 00000000 ____D () C:\Windows\PCHEALTH
2015-04-24 12:33 - 2015-04-24 12:33 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2015-04-24 12:24 - 2015-05-04 01:24 - 00000000 ____D () C:\Users\Patrick Massengale\AppData\Local\Windows Live
2015-04-24 12:11 - 2015-04-24 12:11 - 00000000 ____D () C:\Users\Patrick Massengale\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-04-24 12:07 - 2015-05-18 16:25 - 00005026 _____ () C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for PATGAMES-Patrick Massengale PATGAMES
2015-04-24 12:05 - 2015-04-24 12:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-04-24 12:04 - 2015-04-24 12:05 - 00000000 ____D () C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7
2015-04-24 12:04 - 2015-04-24 12:05 - 00000000 ____D () C:\Program Files\iTunes
2015-04-24 12:04 - 2015-04-24 12:04 - 00000000 ____D () C:\Program Files\iPod
2015-04-24 12:04 - 2015-04-24 12:04 - 00000000 ____D () C:\Program Files (x86)\iTunes
2015-04-24 12:00 - 2015-04-24 12:00 - 00001118 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-04-24 11:59 - 2015-04-14 09:38 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-04-24 11:59 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-04-24 11:59 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-05-18 16:30 - 2014-05-04 08:03 - 00000830 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-05-18 16:19 - 2013-09-29 22:04 - 00885800 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-05-18 16:15 - 2014-05-02 02:45 - 00000000 ___RD () C:\Users\Patrick Massengale\Dropbox
2015-05-18 16:15 - 2014-05-02 02:45 - 00000000 ____D () C:\Users\Patrick Massengale\AppData\Roaming\Dropbox
2015-05-18 16:15 - 2014-05-01 18:29 - 00000000 ___DO () C:\Users\Patrick Massengale\SkyDrive
2015-05-18 16:15 - 2014-05-01 18:07 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-05-18 16:14 - 2013-08-22 08:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-05-18 16:10 - 2015-04-17 11:26 - 00000658 _____ () C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-1565451652-3773726845-3366320369-1001.job
2015-05-18 16:02 - 2014-05-01 18:05 - 00003978 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{45068C9C-A4A3-463F-A5B2-0944560689DD}
2015-05-18 16:00 - 2013-08-22 09:36 - 00000000 ____D () C:\Windows\system32\sru
2015-05-18 15:13 - 2013-08-22 07:25 - 00524288 ___SH () C:\Windows\system32\config\BBI
2015-05-18 09:42 - 2013-08-22 09:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-05-18 02:00 - 2014-05-02 02:17 - 00000000 ____D () C:\Users\Patrick Massengale\AppData\Local\Adobe
2015-05-17 16:40 - 2014-05-02 12:41 - 00000000 ____D () C:\Program Files (x86)\IObit
2015-05-17 16:38 - 2014-05-02 12:41 - 00000000 ____D () C:\Users\Patrick Massengale\AppData\Roaming\IObit
2015-05-17 16:32 - 2014-05-02 00:27 - 00000000 ____D () C:\Program Files\CCleaner
2015-05-17 15:53 - 2014-05-01 18:36 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-05-17 03:37 - 2014-05-01 18:05 - 00003888 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-05-17 03:37 - 2014-05-01 18:05 - 00003652 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-05-17 02:43 - 2013-08-22 09:36 - 00000000 ____D () C:\Windows\rescache
2015-05-16 20:28 - 2014-06-05 22:26 - 00000000 ____D () C:\Users\Patrick Massengale\AppData\Local\HP
2015-05-16 00:38 - 2014-05-02 12:42 - 00000000 ____D () C:\ProgramData\ProductData
2015-05-12 21:43 - 2014-05-02 12:41 - 00000000 ____D () C:\ProgramData\IObit
2015-05-12 21:26 - 2014-05-02 02:45 - 00000000 ____D () C:\Users\Patrick Massengale\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-05-12 21:22 - 2013-08-22 08:44 - 05111328 _____ () C:\Windows\system32\FNTCACHE.DAT
2015-05-12 21:21 - 2014-10-18 18:35 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2015-05-12 21:21 - 2014-10-18 18:35 - 00000000 ____D () C:\Program Files (x86)\Microsoft Silverlight
2015-05-12 21:20 - 2013-08-22 09:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2015-05-12 21:20 - 2013-08-22 07:36 - 00000000 ____D () C:\Windows\system32\AdvancedInstallers
2015-05-12 20:09 - 2013-08-22 09:20 - 00000000 ____D () C:\Windows\CbsTemp
2015-05-12 19:58 - 2014-05-01 18:55 - 00000000 ____D () C:\Windows\system32\MRT
2015-05-12 19:48 - 2014-05-01 18:55 - 140425016 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-05-12 19:41 - 2014-10-18 18:36 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-05-12 19:35 - 2013-09-29 21:51 - 00000000 ____D () C:\Program Files\Windows Journal
2015-05-08 02:44 - 2014-05-06 22:44 - 00000000 ____D () C:\Users\Patrick Massengale\AppData\Roaming\TS3Client
2015-05-08 02:36 - 2014-05-02 00:47 - 00000000 ___RD () C:\Users\Patrick Massengale\OneDrive
2015-05-05 18:45 - 2014-08-24 01:23 - 00181248 ___SH () C:\Users\Patrick Massengale\Desktop\Thumbs.db
2015-05-04 13:48 - 2014-05-01 18:04 - 00000000 ____D () C:\Users\Patrick Massengale
2015-05-04 12:05 - 2014-05-02 00:33 - 00000000 ____D () C:\Program Files\Microsoft Office 15
2015-05-04 02:13 - 2014-08-07 10:38 - 00000000 ____D () C:\Windows\Minidump
2015-05-04 01:43 - 2014-05-02 00:31 - 00000000 ____D () C:\Users\Patrick Massengale\Documents\Outlook Files
2015-05-04 01:40 - 2014-05-13 00:48 - 00000000 ____D () C:\Users\Patrick Massengale\AppData\Local\C1889E1F-6C5E-4FCE-BD22-3231968DD5AD.aplzod
2015-05-04 01:17 - 2014-05-02 03:31 - 00000090 _____ () C:\Windows\QBChanUtil_Trigger.ini
2015-05-04 00:52 - 2014-05-02 04:14 - 00000000 ____D () C:\ProgramData\Origin
2015-05-03 17:53 - 2014-05-01 18:54 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2015-05-03 17:53 - 2014-05-01 18:54 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
2015-05-03 17:53 - 2014-05-01 18:54 - 00000000 ____D () C:\Program Files (x86)\NVIDIA Corporation
2015-05-03 17:53 - 2013-08-22 09:36 - 00000000 ____D () C:\Windows\Help
2015-05-03 17:36 - 2014-05-02 00:26 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-05-03 17:13 - 2014-05-02 02:15 - 00000000 ____D () C:\temp
2015-05-03 17:11 - 2014-11-06 17:16 - 00000000 ____D () C:\Users\Admin\AppData\Local\NVIDIA Corporation
2015-05-03 17:11 - 2014-05-02 00:28 - 00000000 ____D () C:\Users\Patrick Massengale\AppData\Local\NVIDIA Corporation
2015-05-03 14:58 - 2013-08-22 09:36 - 00000000 ____D () C:\Windows\LiveKernelReports
2015-05-03 02:45 - 2014-05-03 17:26 - 00000000 ____D () C:\ProgramData\Oracle
2015-05-03 02:44 - 2014-12-20 13:52 - 00000000 ____D () C:\Program Files (x86)\Java
2015-05-03 01:11 - 2014-05-01 19:34 - 00000000 ____D () C:\Windows\SysWOW64\RTCOM
2015-05-03 01:07 - 2014-05-01 18:36 - 00001181 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2015-04-25 05:20 - 2013-08-22 09:36 - 00000000 ____D () C:\Windows\AppCompat
2015-04-24 12:33 - 2013-08-22 09:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2015-04-24 12:06 - 2014-12-20 13:31 - 00000000 ____D () C:\Windows\system32\appraiser
2015-04-24 12:06 - 2014-07-09 19:32 - 00000000 ___SD () C:\Windows\system32\CompatTel
2015-04-24 12:04 - 2014-05-02 04:59 - 00000000 ____D () C:\Program Files\Common Files\Apple
2015-04-24 12:00 - 2014-05-01 18:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-04-24 12:00 - 2014-05-01 18:07 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware

==================== Files in the root of some directories =======

2014-06-08 22:42 - 2014-11-02 16:21 - 0007620 _____ () C:\Users\Patrick Massengale\AppData\Local\Resmon.ResmonCfg
2014-06-05 22:28 - 2014-06-05 22:28 - 0000057 _____ () C:\ProgramData\Ament.ini
2014-05-01 19:34 - 2014-05-01 19:34 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some content of TEMP:
====================
C:\Users\Patrick Massengale\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpco8vif.dll
C:\Users\Patrick Massengale\AppData\Local\Temp\Quarantine.exe
C:\Users\Patrick Massengale\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-05-07 05:16

==================== End Of Log ============================

 

I will post another log as this one was also too long.



#3 Hookmeistr

Hookmeistr
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Rio Rancho, NM USA
  • Local time:02:23 AM

Posted 18 May 2015 - 06:26 PM

FRST64 2nd log (Addition.txt):

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-05-2015 02
Ran by Patrick Massengale at 2015-05-18 16:33:16
Running from C:\Users\Patrick Massengale\Downloads
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Admin (S-1-5-21-1565451652-3773726845-3366320369-1005 - Administrator - Enabled) => C:\Users\Admin
Administrator (S-1-5-21-1565451652-3773726845-3366320369-500 - Administrator - Disabled)
Guest (S-1-5-21-1565451652-3773726845-3366320369-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1565451652-3773726845-3366320369-1004 - Limited - Enabled)
Patrick Massengale (S-1-5-21-1565451652-3773726845-3366320369-1001 - Administrator - Enabled) => C:\Users\Patrick Massengale

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

64 Bit HP CIO Components Installer (Version: 17.2.1 - Hewlett-Packard) Hidden
ACDSee Pro 7 (64-bit) (HKLM\...\{D2A6EC54-CB46-49E4-A6FC-A9179F9D9D12}) (Version: 7.1.164 - ACD Systems International Inc.)
ACDSee Video Converter 4.0 (HKLM-x32\...\ACDSee_acdVC) (Version: 4.0.0.117 - ACD Systems International Inc.)
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.08 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 17.0.0.144 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.7.1.418 - Adobe Systems Incorporated)
Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 4.4 64-bit (HKLM\...\{11A955CD-4398-405A-886D-E464C3618FBF}) (Version: 4.4.1 - Adobe)
Adobe® Content Viewer (HKLM-x32\...\com.adobe.dmp.contentviewer) (Version: 3.4.3 - Adobe Systems, Incorporated)
Aimersoft DRM Media Converter(Build 1.5.5.0) (HKLM-x32\...\Aimersoft DRM Media Converter_is1) (Version:  - Aimersoft Software)
Aimersoft DVD Creator(Build 3.0.0) (HKLM-x32\...\Aimersoft DVD Creator_is1) (Version:  - Aimersoft Software)
Aimersoft Video Editor(Build 3.6.2) (HKLM-x32\...\Aimersoft Video Editor_is1) (Version:  - Aimersoft Software)
ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (32-bit) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Audible Download Manager (HKLM-x32\...\AudibleDownloadManager) (Version: 6.6.0.15 - Audible, Inc.)
Avant Browser (remove only) (HKLM-x32\...\AvantBrowser) (Version: 12.5.0.0 - Avant Force)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Battlefield 3™ (HKLM-x32\...\{76285C16-411A-488A-BCE3-C83CB933D8CF}) (Version: 1.6.0.0 - Electronic Arts)
Battlefield 4™ (HKLM-x32\...\{ABADE36E-EC37-413B-8179-B432AD3FACE7}) (Version: 1.4.2.25648 - Electronic Arts)
Battlefield: Bad Company™ 2 (HKLM-x32\...\{3AC8457C-0385-4BEA-A959-E095F05D6D67}) (Version: 1.0.1.0 - Electronic Arts)
Battlelog Web Plugins (HKLM-x32\...\Battlelog Web Plugins) (Version: 2.3.0 - EA Digital Illusions CE AB)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Burnout™ Paradise: The Ultimate Box (HKLM-x32\...\{9A996B6A-846E-4A89-B9C4-17546B7BE49F}) (Version: 1.1.0.0 - Electronic Arts)
Capture One 7.2 (HKLM\...\CaptureOne7_is1) (Version: 7.2.4.22 - Phase One A/S)
Capture One 8.1 (HKLM\...\CaptureOne8_is1) (Version: 8.1.1.20 - Phase One A/S)
CCleaner (HKLM\...\CCleaner) (Version: 5.05 - Piriform)
ChrisPC Win Experience Index 2.00 (HKLM-x32\...\{1116089C-14B5-1A23-8113-6124567ABCDE}_is1) (Version:  - Chris P.C. srl)
Citrix Online Launcher (HKLM-x32\...\{3D5F07C3-1B93-47F8-9F8A-DE8E47BF1669}) (Version: 1.0.209 - Citrix)
CPUID CPU-Z 1.69.2 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
Crusader No Remorse (HKLM-x32\...\{2AEA735F-B393-4D89-93EF-5849CB72B4A3}) (Version: 1.0.0.2 - Electronic Arts)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dead Space™ (HKLM-x32\...\{9789E33B-317A-44B2-AF9A-FF8708AD93E0}) (Version: 1.0.0.222 - Electronic Arts)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
DisplayFusion (HKLM-x32\...\Steam App 227260) (Version:  - Binary Fortress Software)
DisplayFusion 7.1 (HKLM-x32\...\B076073A-5527-4f4f-B46B-B10692277DA2_is1) (Version: 7.1.0.0 - Binary Fortress Software)
doubleTwist Sync (HKLM-x32\...\doubleTwist) (Version: 4.0.4.19767 - doubleTwist Corporation)
Dragon Age: Origins (HKLM-x32\...\{AEC81925-9C76-4707-84A9-40696C613ED3}) (Version: 1.05.0.0 - Electronic Arts)
Dragon Age™ II (HKLM-x32\...\{4D565319-8B91-41CB-961C-0DDC86101AC5}) (Version: 1.04.8524.0 - Electronic Arts)
Dropbox (HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\Dropbox) (Version: 3.4.6 - Dropbox, Inc.)
Elevated Installer (x32 Version: 3.2.27.0 - Garmin Ltd or its subsidiaries) Hidden
ESN Sonar (HKLM-x32\...\ESN Sonar-0.70.4) (Version: 0.70.4 - ESN Social Software AB)
FIFA 14 (HKLM-x32\...\{AA7A2800-1E75-4240-855B-03AFF8E5171E}) (Version: 1.0.0.7 - Electronic Arts)
FileZilla Client 3.9.0.3 (HKLM-x32\...\FileZilla Client) (Version: 3.9.0.3 - Tim Kosse)
Garmin Communicator Plugin (HKLM-x32\...\{71DBFBF2-F7EB-4268-8485-9471D83C4E66}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin x64 (HKLM\...\{70A381F1-C161-4D61-A20C-BE12FC6777DF}) (Version: 4.2.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{855d8086-4275-4bd3-a7a8-b44da3a56d7a}) (Version: 3.2.27.0 - Garmin Ltd or its subsidiaries)
Garmin Express (x32 Version: 3.2.27.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (x32 Version: 3.2.27.0 - Garmin Ltd or its subsidiaries) Hidden
Gauntlet™  (HKLM-x32\...\Steam App 258970) (Version:  - Arrowhead Game Studios)
GO Contact Sync Mod (HKLM-x32\...\{CD178FDD-086A-4C2E-935E-8CDB747B0F29}) (Version: 3.6.1 - WebGear, Create Software, Stru.be, saller.NET)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 42.0.2311.152 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
GoToAssist Corporate (HKLM-x32\...\GoToAssist) (Version: 10.4.0.957 - Citrix Online, a division of Citrix Systems, Inc.)
GoToMeeting 7.1.8.2553 (HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\GoToMeeting) (Version: 7.1.8.2553 - CitrixOnline)
HP ENVY 120 series Basic Device Software (HKLM\...\{0E96CEFA-F256-4E54-BB46-34FA4A8847D7}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP ENVY 120 series Help (HKLM-x32\...\{B45F1BFE-C8D5-4F09-BD54-90CB32BEDE12}) (Version: 28.0.0 - Hewlett Packard)
HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
Illustrator CS6 x64 (Version: 1.2.0000 - Adobe Systems Incorporated) Hidden
InDesign CS6 x64 (Version: 1.2.0000 - Adobe Systems Incorporated) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel® Network Connections 18.5.54.0 (HKLM\...\PROSetDX) (Version: 18.5.54.0 - Intel)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
Java 7 Update 72 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217072FF}) (Version: 7.0.720 - Oracle)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Logitech Gaming Software 8.58 (HKLM\...\Logitech Gaming Software) (Version: 8.58.183 - Logitech Inc.)
Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Medal of Honor™ Warfighter (HKLM-x32\...\{1040143F-FEFB-4B90-8E51-E47D40E14C4E}) (Version: 1.0.0.3 - Electronic Arts)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.3.188.0 - Microsoft Corporation)
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 15.0.4711.1003 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\OneDriveSetup.exe) (Version: 17.3.5849.0427 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 38.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 38.0.1 (x86 en-US)) (Version: 38.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 37.0 - Mozilla)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
Need for Speed™ Hot Pursuit (HKLM-x32\...\{83A606F5-BF6F-42ED-9F33-B9F74297CDED}) (Version: 1.0.0.0 - Electronic Arts)
Need for Speed™ Most Wanted (HKLM-x32\...\{FB0127F3-985B-44CE-AE29-378CAF60B361}) (Version: 1.5.0.0 - Electronic Arts)
Need for Speed™ Rivals (HKLM-x32\...\{E0A32336-AA27-4053-99B2-C3380B7B95AC}) (Version: 1.4.0.0 - Electronic Arts)
Need for Speed™ The Run (HKLM-x32\...\{0EDC9BA0-016E-406a-86DA-04FC1BE00C21}) (Version: 1.1.0.0 - Electronic Arts)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4711.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4711.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4711.1003 - Microsoft Corporation) Hidden
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Photomatix Pro version 5.0.4 (HKLM\...\PhotomatixPro5x64_is1) (Version: 5.0.4 - HDRsoft Ltd)
Photoshop CS6 x64 (Version: 1.2.0000 - Adobe Systems Incorporated) Hidden
Premiere Pro CS6 x64 (Version: 1.2.0000 - Adobe Systems Incorporated) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.993 - Even Balance, Inc.)
QuickBooks (x32 Version: 24.0.4006.2403 - Intuit Inc.) Hidden
QuickBooks Premier: Accountant Edition 2014 (HKLM-x32\...\{48DCE40F-BD78-4EEA-B810-6F371716A5DD}) (Version: 24.0.4006.2403 - Intuit Inc.)
QuickBooks Runtime Redistributable (HKLM\...\{F2A4F809-2DE6-4D27-888B-4D2BB8DAF20E}) (Version: 1.00.0000 - Intuit Inc.)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7460 - Realtek Semiconductor Corp.)
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
SHIELD Wireless Controller Driver (Version: 2.4.1.21 - NVIDIA Corporation) Hidden
SimCity 2000 Special Edition (HKLM-x32\...\{59D2C751-F7BE-4E9F-9C8C-1F16013802C7}) (Version: 2.0.0.1 - Electronic Arts)
Sniper Elite 3 (HKLM-x32\...\Steam App 238090) (Version:  - Rebellion)
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.15 - TeamSpeak Systems GmbH)
thinkorswim (HKLM\...\9968-4488-2169-7623) (Version: desktop - thinkorswim, Inc)
Titanfall™ (HKLM-x32\...\{347EE0C3-0690-48F6-A231-53853C2A80D6}) (Version: 1.0.10.1 - Electronic Arts)
TrackballWorks (HKLM-x32\...\{51ADFD15-6B63-4F8E-8076-F4E31FFEE32A}) (Version: 1.1.18 - Kensington Computer Products Group)
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WD Drive Utilities (HKLM-x32\...\{F9784E1D-4455-4BFF-A97A-1B1355A4FFDB}) (Version: 1.0.6.3 - Western Digital Technologies, Inc.)
WD Quick View (HKLM-x32\...\{D0A3A97D-7918-4B0B-B91E-775E00C36122}) (Version: 2.4.2.26 - Western Digital Technologies, Inc.)
WD Security (HKLM-x32\...\{2B58AB2C-D980-47FD-8633-E360314BA662}) (Version: 1.0.6.3 - Western Digital Technologies, Inc.)
WD SmartWare (HKLM\...\{6BB4E4E8-17B9-4534-8A8E-89E53F12769C}) (Version: 2.4.2.26 - Western Digital Technologies, Inc.)
WD SmartWare Installer (HKLM-x32\...\{2d588de7-f4f6-4d6d-8719-32cbb9637e9e}) (Version: 2.4.2.26 - Western Digital Technologies, Inc.)
Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows Driver Package - Leaf Imaging Ltd. Image  (02/11/2010 ) (HKLM\...\A35BD68D4A1B3E191138E3C9AA417190A9468F7E) (Version: 02/11/2010  - Leaf Imaging Ltd.)
Windows Driver Package - Leaf Imaging Ltd. Image  (12/03/2014 1.2.0.0) (HKLM\...\B758007C752D28F7C3542875CEEBDADCAE5941AE) (Version: 12/03/2014 1.2.0.0 - Leaf Imaging Ltd.)
Windows Driver Package - Phase One / Mamiya V-Grip USB Driver (09/28/2010 1.1.0.1) (HKLM\...\0F81152D3B5D40D8F497EC1750B8EFF11FEED116) (Version: 09/28/2010 1.1.0.1 - Phase One / Mamiya)
Windows Driver Package - Phase One / Mamiya V-Grip USB Driver (12/03/2014 1.2.0.0) (HKLM\...\3F504CC0B024052107934E093CC26DA720256A7A) (Version: 12/03/2014 1.2.0.0 - Phase One / Mamiya)
Windows Driver Package - Phase One A/S (WinUSB) USBDevice  (05/30/2013 1.12.0.68182) (HKLM\...\1D6C98F8A5FED93B7C062B26DD383655CE271976) (Version: 05/30/2013 1.12.0.68182 - Phase One A/S)
Windows Driver Package - Phase One A/S (WinUSB) USBDevice  (12/03/2014 1.13.0.0) (HKLM\...\7C6570ABBEB2F08EFBC23ED7925AE72DA6167BD8) (Version: 12/03/2014 1.13.0.0 - Phase One A/S)
Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Wing Commander III (HKLM-x32\...\{F96B9930-E22A-44D6-81B5-6C8E92C21B4B}) (Version: 2.0.0.2 - Electronic Arts)
Yahoo! Messenger (HKLM-x32\...\Yahoo! Messenger) (Version:  - Yahoo! Inc.)
Yahoo! Software Update (HKLM-x32\...\Yahoo! Software Update) (Version:  - )

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\Patrick Massengale\AppData\Local\Citrix\GoToMeeting\1468\G2MOutlookAddin64.dll (Citrix Online, a division of Citrix Systems, Inc.)
CustomCLSID: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Patrick Massengale\AppData\Local\Microsoft\OneDrive\17.3.5849.0427\amd64\FileSyncApi64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll (Dropbox, Inc.)

==================== Restore Points  =========================

03-05-2015 01:08:16 Driver Booster : Intel® 8 Series/C220 Series USB EHCI #1 - 8C26
12-05-2015 19:34:48 Windows Update

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 07:25 - 2013-08-22 07:25 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0434137E-BEE5-4772-AC45-FB73597078C1} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2014-03-19] (Microsoft)
Task: {043640D1-A09C-4F8A-B618-3AE67D5C30CA} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-04-22] (Microsoft Corporation)
Task: {111CEEBD-95F9-4D53-B4B8-4FE8FF60F3BA} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe [2014-12-31] ()
Task: {194E6B77-6F80-4D69-8DE1-2EF830F035B6} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-05-12] (Microsoft Corporation)
Task: {1F4D8414-8F0C-4A14-BD5D-78C3CFCFD508} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-14] (Adobe Systems Incorporated)
Task: {28942633-AC79-4B34-BF5C-D7445BBB5F85} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-23] (Microsoft Corporation)
Task: {2F2CBAEB-737A-451B-8B23-E8D2E96B53CD} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-03-23] (Microsoft Corporation)
Task: {3B6E9953-0A51-47B6-BC55-08BE7DC52B9F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-04-23] (Piriform Ltd)
Task: {576038A7-2EE7-4BBE-BAC4-2470C056F903} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {58EB96BE-39AF-4188-963E-E05F2DD63537} - System32\Tasks\Uninstaller_SkipUac_Administrator => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: {5EFD9FFA-EDBB-4769-886A-CD6D7E3C36D9} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2015-04-22] (Microsoft Corporation)
Task: {612A4783-863F-474C-A18A-8346A5707E4D} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2015-04-22] (Microsoft Corporation)
Task: {6EC3527C-9C26-4CC7-A0ED-F12A275588C0} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {70115DCB-E490-4C36-B0D8-03FEE93D6D79} - \Optimize Start Menu Cache Files-S-1-5-21-1565451652-3773726845-3366320369-1005 No Task File <==== ATTENTION
Task: {712A3C5D-D98A-4522-9123-38C16A6B0703} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2014-03-19] (Microsoft Corporation)
Task: {77BEF2ED-B471-43A5-99EB-156870E8FA04} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-hookmeistr@yahoo.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated)
Task: {7DE9298A-CC5F-4E1F-9870-FC00A149A621} - System32\Tasks\Uninstaller_SkipUac_Patrick_Massengale => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: {82007483-796C-4E03-AF2B-9F2D6E70A8B8} - System32\Tasks\G2MUpdateTask-S-1-5-21-1565451652-3773726845-3366320369-1001 => C:\Users\Patrick Massengale\AppData\Local\Citrix\GoToMeeting\2553\g2mupdate.exe [2015-04-17] (Citrix Online, a division of Citrix Systems, Inc.)
Task: {99E0A738-3B0A-4F73-BB7D-0385E219AE67} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1565451652-3773726845-3366320369-1001 => %localappdata%\Microsoft\OneDrive\OneDrive.exe
Task: {A540043C-9244-433E-9735-4828AE9562F5} - System32\Tasks\{D7EAE67F-9075-4EEE-B294-A1C0062BC465} => pcalua.exe -a C:\PROGRA~2\Run_Dregol\\uninstall.exe -c /uninstaller
Task: {B2E237B2-AAEB-4E12-8F96-3D53E3B38963} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2014-03-19] (Microsoft Corporation)
Task: {BECF02B5-CA5B-470A-A4A6-EBD4BC0BD950} - System32\Tasks\Microsoft Office 15 Sync Maintenance for PATGAMES-Patrick Massengale PATGAMES => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe [2015-03-10] (Microsoft Corporation)
Task: {C2A9A52E-A29C-498A-BB54-B5D7CDFBBF7D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-01] (Google Inc.)
Task: {C9CB3E48-5706-4C6B-8508-CDA0B16265FB} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxcontent => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-23] (Microsoft Corporation)
Task: {CE4171A2-CDB6-4EA0-9C70-550D13A3B787} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-05-01] (Google Inc.)
Task: {EA1B10F1-96F7-451A-8498-1B9F7B3AF87F} - System32\Tasks\Microsoft\Windows\Setup\gwx\runappraiser => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-03-23] (Microsoft Corporation)
Task: {F5C332B4-E1BA-4B4A-B2AA-490962EE9C34} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-1565451652-3773726845-3366320369-1001.job => C:\Users\Patrick Massengale\AppData\Local\Citrix\GoToMeeting\2553\g2mupdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\Uninstaller_SkipUac_Administrator.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: C:\Windows\Tasks\Uninstaller_SkipUac_Patrick_Massengale.job => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe

==================== Loaded Modules (Whitelisted) ==============

2015-05-03 17:53 - 2014-12-13 02:03 - 00117576 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-01-20 23:35 - 2015-01-20 23:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-01-20 23:35 - 2015-01-20 23:35 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-05-01 18:53 - 2013-07-04 04:32 - 00936728 ____N () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
2015-05-04 12:02 - 2014-05-20 09:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2014-05-02 04:23 - 2014-09-30 02:37 - 00076888 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2014-07-16 11:06 - 2014-07-16 11:06 - 00672416 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
2015-03-17 03:21 - 2015-01-27 09:29 - 08898720 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll
2014-09-18 01:23 - 2014-09-18 01:23 - 00866584 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2015-03-12 12:23 - 2015-03-12 12:23 - 01050904 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2014-09-18 01:23 - 2014-09-18 01:23 - 00059160 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2015-03-12 12:23 - 2015-03-12 12:23 - 00242456 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2015-05-18 16:14 - 2015-05-18 16:14 - 00031744 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2014-05-01 18:53 - 2013-07-04 04:32 - 00104448 ____N () C:\Program Files (x86)\ASUS\AXSP\1.01.02\ATKEX.dll
2014-11-21 05:48 - 2014-11-21 05:48 - 00316576 _____ () C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\AppVIsvStream32.dll
2013-09-14 01:51 - 2013-09-14 01:51 - 00087952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\zlib1.dll
2013-09-14 01:50 - 2013-09-14 01:50 - 01242952 _____ () C:\Program Files (x86)\Common Files\Apple\Internet Services\libxml2.dll
2015-05-18 16:15 - 2015-05-18 16:15 - 00043008 _____ () c:\Users\Patrick Massengale\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpco8vif.dll
2015-03-04 15:45 - 2015-03-04 15:45 - 00750080 _____ () C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2015-03-04 15:45 - 2015-03-04 15:45 - 00047616 _____ () C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\libEGL.dll
2015-03-04 15:45 - 2015-03-04 15:45 - 00865280 _____ () C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
2015-03-04 15:45 - 2015-03-04 15:45 - 00200704 _____ () C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
2014-05-01 19:35 - 2013-09-03 17:52 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\ProgramData\Nalpeiron:user.ns1
AlternateDataStreams: C:\ProgramData\Nalpeiron:user.ns2
AlternateDataStreams: C:\ProgramData\Nalpeiron:user.ns3
AlternateDataStreams: C:\ProgramData\Nalpeiron:user.ns4
AlternateDataStreams: C:\Users\Patrick Massengale\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\Patrick Massengale\AppData\Local\Temporary Internet Files:WsCjykMsGRZqn7KDBKmXEcn02O
AlternateDataStreams: C:\Users\Patrick Massengale\AppData\Local\Temporary Internet Files:wtiahlSXc5F8W5tXBPygqF28RQ

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\GoToAssist => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\str => ""="service"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, the associated entry will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\...\100sexlinks.com -> 100sexlinks.com

There are 4788 more restricted sites.

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1565451652-3773726845-3366320369-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Patrick Massengale\AppData\Local\DisplayFusion\Wallpaper_1.png
DNS Servers: 192.168.0.1 - 205.171.2.65

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\StartupFolder: => "Audible Download Manager.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Intuit Data Protect.lnk"
HKLM\...\StartupApproved\StartupFolder: => "QuickBooks_Standard_21.lnk"
HKLM\...\StartupApproved\StartupFolder: => "QuickBooks Update Agent.lnk"
HKLM\...\StartupApproved\Run: => "ACPW07EN"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "IAStorIcon"
HKLM\...\StartupApproved\Run: => "ShadowPlay"
HKLM\...\StartupApproved\Run: => "NvBackend"
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run32: => "VIDC04EN"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "AdobeCS6ServiceManager"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "Aimersoft Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "Intuit SyncManager"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "QuickTime Task"
HKLM\...\StartupApproved\Run32: => "SwitchBoard"
HKLM\...\StartupApproved\Run32: => "Kensington TrackballWorks Helper"
HKLM\...\StartupApproved\Run32: => "WD Drive Unlocker"
HKLM\...\StartupApproved\Run32: => "WD Quick View"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [{864ADC4A-A537-4552-A0C0-012E704149AA}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{01CB24D2-163A-4458-A289-349490828EDB}] => (Allow) F:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8A456311-A7D9-403B-B76A-F2FA0BFC2F2A}] => (Allow) F:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{76FAF4EA-AE54-4E36-9A78-A3DC4D0AFF82}] => (Allow) F:\Program Files (x86)\Origin Games\Need for Speed The Run\Need For Speed The Run.exe
FirewallRules: [{2256AB2C-36A7-4368-8E53-8301D7384D15}] => (Allow) F:\Program Files (x86)\Origin Games\Need for Speed The Run\Need For Speed The Run.exe
FirewallRules: [{8E514209-F486-471A-8651-D4D05AD20A76}] => (Allow) F:\Program Files (x86)\Origin Games\Need for Speed™ Rivals\NFS14_x86.exe
FirewallRules: [{728D9799-EF17-4CBC-A1D4-A59994073F8F}] => (Allow) F:\Program Files (x86)\Origin Games\Need for Speed™ Rivals\NFS14_x86.exe
FirewallRules: [{D4BBD918-B6AF-42BA-9369-3ECDFF3CDB2E}] => (Allow) F:\Program Files (x86)\Origin Games\Need for Speed™ Rivals\NFS14.exe
FirewallRules: [{0AA6C4B6-221B-4A41-A642-A85AD0399822}] => (Allow) F:\Program Files (x86)\Origin Games\Need for Speed™ Rivals\NFS14.exe
FirewallRules: [{FA0E8D68-B2A1-4C65-B71B-7A0C8BBAC9B5}] => (Allow) F:\Program Files (x86)\Origin Games\Battlefield Bad Company 2\BFBC2Game.exe
FirewallRules: [{CCB274B5-7A03-4277-9FC3-878AFD9FB8FA}] => (Allow) F:\Program Files (x86)\Origin Games\Battlefield Bad Company 2\BFBC2Game.exe
FirewallRules: [{A96ACBFD-F2AE-4E84-B778-F0FE5294C055}] => (Allow) F:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe
FirewallRules: [{00914E2F-FBF4-46D5-855F-FE93627E2C4A}] => (Allow) F:\Program Files (x86)\Origin Games\Dead Space\Dead Space.exe
FirewallRules: [{2111101A-CD34-45A9-97FB-1629392AE52F}] => (Allow) F:\Program Files (x86)\Origin Games\Dragon Age\bin_ship\daorigins.exe
FirewallRules: [{D9F0CE27-7FB2-4F46-ADB5-C07445899FD8}] => (Allow) F:\Program Files (x86)\Origin Games\Dragon Age\bin_ship\daorigins.exe
FirewallRules: [{63D0A838-E71C-4626-80A6-49336C77BFAF}] => (Allow) F:\Program Files (x86)\Origin Games\Need for Speed™ Most Wanted\NFS13.exe
FirewallRules: [{7C0483D0-1974-4BD0-B87C-179D6AFBF33A}] => (Allow) F:\Program Files (x86)\Origin Games\Need for Speed™ Most Wanted\NFS13.exe
FirewallRules: [{50783B0C-839C-42EC-8409-90F6EF1741C6}] => (Allow) F:\Program Files (x86)\Origin Games\Burnout Paradise\BurnoutParadise.exe
FirewallRules: [{6AF77392-2843-428A-B4BF-ED2C79465A2C}] => (Allow) F:\Program Files (x86)\Origin Games\Burnout Paradise\BurnoutParadise.exe
FirewallRules: [{40015A31-A6B2-4DE7-BAFC-A4DEDFF4F533}] => (Allow) F:\Program Files (x86)\Origin Games\Medal of Honor Warfighter\MOHW.exe
FirewallRules: [{9B63E832-9B77-4589-8A74-0124968F02D9}] => (Allow) F:\Program Files (x86)\Origin Games\Medal of Honor Warfighter\MOHW.exe
FirewallRules: [{AC4CA5A2-2AFD-44E3-A62B-791E30EA32DA}] => (Allow) F:\Program Files (x86)\Origin Games\Need for Speed Hot Pursuit\Launcher.exe
FirewallRules: [{20734216-98B4-46DC-A5DC-FF0472C19D37}] => (Allow) F:\Program Files (x86)\Origin Games\Need for Speed Hot Pursuit\Launcher.exe
FirewallRules: [{6B1F216C-0345-4B48-997A-C94A1A859633}] => (Allow) F:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{2AF711A6-3F0C-4928-9C87-EF018F077BF4}] => (Allow) F:\Program Files (x86)\Origin Games\Battlefield 3\bf3.exe
FirewallRules: [{889A4CF9-4EB5-4458-B19D-221DD7C50C53}] => (Allow) F:\Program Files (x86)\Origin Games\Dragon Age II\bin_ship\DragonAge2.exe
FirewallRules: [{BB9D1D21-7EFE-4615-8088-E5B73295A6DF}] => (Allow) F:\Program Files (x86)\Origin Games\Dragon Age II\bin_ship\DragonAge2.exe
FirewallRules: [{9998B7BC-5779-4FC4-A291-F77D3E8DEF42}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{9728D53F-512C-43FB-98FD-8D20DF534265}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{CB9AD7BE-35D7-4419-9B61-B2FBBB1BA9EA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{8DFA6051-2DA3-4F7A-B0EE-4BBB53AB28D0}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{7DD7DCF4-1CC9-4847-909B-B44F88C4E45C}C:\users\patrick massengale\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\patrick massengale\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{86A1157C-B2F2-48C1-B517-698021BE81DA}C:\users\patrick massengale\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\patrick massengale\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{8CA7FE1F-135C-4374-A06B-665508800E8E}] => (Allow) C:\Program Files\HP\HP ENVY 120 series\Bin\DeviceSetup.exe
FirewallRules: [{2287A16D-AD0E-4D93-A598-55994D6323CC}] => (Allow) C:\Program Files\HP\HP ENVY 120 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{554567A7-6D7E-4A1E-9634-7ABA688571BC}] => (Allow) C:\Program Files\HP\HP ENVY 120 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{40C46EBD-8A80-40F3-9521-FFF962E75B3B}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
FirewallRules: [{2B507DC4-DFB6-4C02-A0B7-AA3626574693}] => (Allow) C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe
FirewallRules: [{671D0FB4-E56A-48D4-845A-A8DFCC892826}] => (Allow) F:\Program Files (x86)\Origin Games\FIFA 14\Game\fifa14.exe
FirewallRules: [{A42A91F5-A918-4B3E-8EB7-B251F0DBE5BB}] => (Allow) F:\Program Files (x86)\Origin Games\FIFA 14\Game\fifa14.exe
FirewallRules: [{F3E8B3CD-1BF7-4E94-8080-220FC8FA2ED8}] => (Allow) F:\Program Files (x86)\Origin Games\Wing Commander III\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{773E0B1F-764B-4F40-8610-F134BEA9115E}] => (Allow) F:\Program Files (x86)\Origin Games\Wing Commander III\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{0C0693EA-0B1E-414C-A09D-1405206C81B2}] => (Allow) F:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{595269A5-F8C3-4780-B07B-A46720D5DD33}] => (Allow) F:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{0713D7DE-B040-4584-A46E-6B89341B0A2E}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Half-Life 2\hl2.exe
FirewallRules: [{6F36F8AA-440E-4A53-A219-C7053B5B6295}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Half-Life 2\hl2.exe
FirewallRules: [{3346A8C2-33B0-40EB-A375-510B2A6E0F4C}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{7F68774A-9A90-4050-9B51-0AB6B8379652}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{BCDC11C6-AC87-46EA-B2DE-F2E04790DCF6}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Half-Life 2 Deathmatch\hl2.exe
FirewallRules: [{AEACDB20-1D54-4BCB-9F03-07447EB739E9}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Half-Life 2 Deathmatch\hl2.exe
FirewallRules: [{4B56F59C-A82D-4A51-ADA1-11A33DF120B7}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{8BCF1876-33EB-44AE-A686-451F9E6DE301}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Portal 2\portal2.exe
FirewallRules: [{E3497736-4D72-443B-9F61-695E6D3E0CF3}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Unreal Tournament 3\Binaries\UT3.exe
FirewallRules: [{CD6C95E0-6A4E-44C5-A306-34E999CB129E}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Unreal Tournament 3\Binaries\UT3.exe
FirewallRules: [{1C40F115-6454-4605-A17B-457F138222F6}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Dawn of War 2\DOW2.exe
FirewallRules: [{F4AC33BD-5850-46EF-986F-352FF98B0EFF}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Dawn of War 2\DOW2.exe
FirewallRules: [{6AD77820-5497-48CE-B740-58F49022969C}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
FirewallRules: [{5CF6CE79-55F2-4CBC-8651-324F79256261}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Red Orchestra 2\Binaries\Win32\ROGame.exe
FirewallRules: [{6270D125-929C-455E-B689-60009F549B5A}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\bin\SniperEliteV2.exe
FirewallRules: [{22F96BE7-890C-4571-B799-A3CF27EF7949}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\bin\SniperEliteV2.exe
FirewallRules: [{13DA17E1-21FB-4B9E-A99C-861ACE910569}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Air Conflicts Secret Wars\ACSW.exe
FirewallRules: [{33D6FDFC-7D1B-4D55-9E49-C0949A69599D}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Air Conflicts Secret Wars\ACSW.exe
FirewallRules: [{64CC8570-ABAB-4141-8B48-8B74865662D4}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Air Conflicts Secret Wars\Configure.exe
FirewallRules: [{DF073CAD-280F-4F1C-B179-148CA132A887}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Air Conflicts Secret Wars\Configure.exe
FirewallRules: [{3B6B71BA-9C70-4902-B935-FF66AA00A106}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops II\t6mp.exe
FirewallRules: [{2FD430C2-D49B-408A-B346-E63505F90429}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops II\t6mp.exe
FirewallRules: [{666C0DE8-EF5A-49EB-815D-803F68962F6A}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Ghosts\iw6sp64_ship.exe
FirewallRules: [{C07016D6-F20C-4F88-A176-BE50A83836BA}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Ghosts\iw6sp64_ship.exe
FirewallRules: [{30277266-5094-466A-902A-BF3D753AE0AB}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Ghosts\iw6mp64_ship.exe
FirewallRules: [{FBA8458E-8915-4A46-9FBA-07E08097D8D1}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Ghosts\iw6mp64_ship.exe
FirewallRules: [{BF1D1E5B-B5A7-4AF6-A919-847CF8CE1120}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Rising Storm Beta\Binaries\Win32\ROGame.exe
FirewallRules: [{18CC1373-901D-4492-AD3A-8135E71B9746}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Rising Storm Beta\Binaries\Win32\ROGame.exe
FirewallRules: [{A279BA4E-9EC1-4F88-A032-81DF2407745E}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Company of Heroes Relaunch\RelicCOH.exe
FirewallRules: [{2796DE43-2EF2-4DFB-B6E5-81636086F2CA}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Company of Heroes Relaunch\RelicCOH.exe
FirewallRules: [{0BEEFA3A-62DD-4E7F-961E-170EB5BBD40E}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Dawn of War II - Retribution\DOW2.exe
FirewallRules: [{0AF4A4B3-1D1E-47F1-8668-3022FDB942B9}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Dawn of War II - Retribution\DOW2.exe
FirewallRules: [{73386BC4-D268-4DE0-8FD7-6D239B278C17}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Gauntlet\binaries\gauntlet.exe
FirewallRules: [{0EE80A22-DF66-4F3B-8688-81E5F420EF31}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Gauntlet\binaries\gauntlet.exe
FirewallRules: [{9A64D55E-87AE-48A7-A9D8-471BF67B6A86}] => (Allow) F:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [{87773A40-3F7E-41C6-9F63-850D98F9CBA9}] => (Allow) F:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [{2FB9CA24-C584-4FD1-BF2E-45687948A335}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{3D803687-F751-47FD-9C9A-20F5DEA82211}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{87729DBA-A9DD-447F-8CB9-4208BA3C0590}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{6FAC341C-CA70-4AE2-915A-F9DC51DAA465}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{EB0E0B1C-1BAD-4FF1-AA60-13B2503DFA0C}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{5CB2E5D2-26AF-42E5-BA10-F7D67911EE40}] => (Allow) C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.4\SonarHost.exe
FirewallRules: [{AC6B0CCD-D075-4A8A-A977-D4492C9A64ED}] => (Allow) F:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{40C0C5C9-FBA7-4E41-9A13-9BA4D15008A6}] => (Allow) F:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{7235AF2F-60F9-4E1A-A9A5-74E32D050D5A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{7E046E36-6591-4F6F-AFEF-5FD24B0E6585}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3507\Agent.exe
FirewallRules: [{451388C5-96F8-43A7-8FAB-A0C18A770E3C}] => (Allow) F:\Program Files (x86)\Battle.net\Diablo III\Diablo III.exe
FirewallRules: [{F4E45229-CB0D-4F51-B6B6-BADB92452582}] => (Allow) F:\Program Files (x86)\Battle.net\Diablo III\Diablo III.exe
FirewallRules: [{7E08B6E5-255D-4F2F-806D-3A9486AF442D}] => (Allow) F:\Program Files (x86)\Origin Games\Crusader No Remorse\data\Game\DOSBox\DOSBox.exe
FirewallRules: [{8E7A3AE4-ACE3-44A6-9D7F-FD51D58D5823}] => (Allow) F:\Program Files (x86)\Origin Games\Crusader No Remorse\data\Game\DOSBox\DOSBox.exe
FirewallRules: [{33852BCE-9FAD-49EB-ACCB-96883F0EC7CF}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{F46BFFE5-3406-459E-ADC6-896AFE11DBFE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{520AAE1B-E2C9-43D4-82DD-E699A8C405BD}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{7E9AFE2E-9A32-42DE-A222-6993790EE443}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe
FirewallRules: [{FFB5C018-9A86-42B5-885C-492874D5F7FF}] => (Allow) F:\Program Files (x86)\Origin Games\SimCity 2000 SE\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{038917B5-28CC-405F-A135-B8B87C550879}] => (Allow) F:\Program Files (x86)\Origin Games\SimCity 2000 SE\Game\Game\DOSBox\DOSBox.exe
FirewallRules: [{14FBA640-0BD9-4DDF-9A2F-48D84C31723F}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Portal\hl2.exe
FirewallRules: [{10A5E557-CD99-4D7C-B16E-34F2E4B766D3}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Portal\hl2.exe
FirewallRules: [{298B1120-9D01-47AA-83D2-AE40E80574A9}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\DogFighter\bin\x86_vc11\DogFighterSteam.exe
FirewallRules: [{6180D269-00A8-4C9E-858C-538B3F3D6906}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\DogFighter\bin\x86_vc11\DogFighterSteam.exe
FirewallRules: [TCP Query User{471E4677-F757-4F3C-BF04-08D2A2CE4C1F}C:\program files\onone software\perfect photo suite 9\perfect photo suite 9.exe] => (Allow) C:\program files\onone software\perfect photo suite 9\perfect photo suite 9.exe
FirewallRules: [UDP Query User{C75FF77E-3C51-4132-BF69-D207FA2F7E1F}C:\program files\onone software\perfect photo suite 9\perfect photo suite 9.exe] => (Allow) C:\program files\onone software\perfect photo suite 9\perfect photo suite 9.exe
FirewallRules: [{5AF63901-E2D4-4A70-8C20-E16AF9F0DD22}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{C0355C5D-EDB2-4802-A39A-3091E6C2F9F8}] => (Allow) F:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [{A567DC5E-457B-4686-A47D-0BFFF2D728A7}] => (Allow) F:\Program Files (x86)\Origin Games\Titanfall\Titanfall.exe
FirewallRules: [{BCA22AA1-F498-4E1A-AC07-1CA51608BABA}] => (Allow) F:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{16C937D2-868F-470F-86D4-374C178E6076}] => (Allow) F:\Program Files (x86)\Origin Games\Battlefield 4\bf4_x86.exe
FirewallRules: [{78ADEC31-B53A-4747-A1D9-B1BDDB3E503B}] => (Allow) F:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{E88EC72F-3769-4094-B5A7-3C2366A45447}] => (Allow) F:\Program Files (x86)\Origin Games\Battlefield 4\bf4.exe
FirewallRules: [{CBB9570E-A18E-4259-B119-63F55A2375F6}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{34640A93-40E0-4908-A7B2-7B784B310DE6}] => (Allow) LPort=2869
FirewallRules: [{AD6F4980-C304-4DF3-AA2C-EFFAF21808F5}] => (Allow) LPort=1900
FirewallRules: [{99B0E4BD-35D6-4EF4-91C4-2EC66EAC62FD}] => (Allow) C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{870B4AC6-E691-46DE-9578-2616A7AB3008}] => (Allow) C:\Users\Patrick Massengale\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{0F3E94B9-A6F4-48EC-BD85-1CF0DF73D825}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3816144F-B64F-40FC-8B8E-0A42AB765EE3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{942A564F-ABA5-4DF3-AEA8-2139BB227828}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Warhammer 40,000 Space Marine\SpaceMarine.exe
FirewallRules: [{7DD12AC7-9F08-463A-9ACF-F12A3FA975DF}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Warhammer 40,000 Space Marine\SpaceMarine.exe
FirewallRules: [{500C5A0B-476E-4B2F-BA51-E652C26DBF28}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{ADB8AB5C-183E-4E0D-B9D3-9C7B67304C9D}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite V2\Launcher\SniperV2Launcher.exe
FirewallRules: [{C24D5C2F-07ED-49E0-A82C-5BB0FEC63001}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{38A9A6E5-A856-418F-BEA1-F1DB33F53F41}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Skyrim\SkyrimLauncher.exe
FirewallRules: [{4937F166-FE3F-400C-B13E-7301D509ECB4}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\DisplayFusion\DisplayFusionLauncher.exe
FirewallRules: [{8D52F08B-2608-4628-A5D0-0169EA608D61}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\DisplayFusion\DisplayFusionLauncher.exe
FirewallRules: [{F6FC7322-ADE3-4541-B660-3FB526E18ABC}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [{B40EB98E-0D70-443C-85A2-438619BEE0B3}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Call of Duty Black Ops II\t6zm.exe
FirewallRules: [{A35E1D9F-EA21-4846-AE7B-6D2312587F9E}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe
FirewallRules: [{091205E8-C22C-44C7-BDF0-34AA2129174F}] => (Allow) F:\Program Files (x86)\Steam\SteamApps\common\Sniper Elite 3\Launcher\Sniper3Launcher.exe
FirewallRules: [{A9BF9AC0-42A8-4912-A472-25580C914100}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [{3521CA8D-F60A-4A51-9E87-BDF785EF1C88}] => (Allow) C:\Program Files\Logitech Gaming Software\LCore.exe
FirewallRules: [TCP Query User{19853AE7-4661-44DD-AF37-8665A59EC94F}F:\program files (x86)\steam\steamapps\common\sniper elite 3\bin\sniperelite3.exe] => (Allow) F:\program files (x86)\steam\steamapps\common\sniper elite 3\bin\sniperelite3.exe
FirewallRules: [UDP Query User{593047D3-584D-4987-A6EF-041EFB6FAA4C}F:\program files (x86)\steam\steamapps\common\sniper elite 3\bin\sniperelite3.exe] => (Allow) F:\program files (x86)\steam\steamapps\common\sniper elite 3\bin\sniperelite3.exe
FirewallRules: [{68E8ADD5-9727-4C9E-87B7-E8E60F6701F3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (05/18/2015 04:01:01 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest.

Error: (05/18/2015 03:13:51 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll4

Error: (05/18/2015 03:12:53 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: rdyboost4

Error: (05/18/2015 03:04:10 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest.

Error: (05/18/2015 02:15:00 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest.

Error: (05/18/2015 02:07:44 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest.

Error: (05/18/2015 11:28:38 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest.

Error: (05/18/2015 09:54:51 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifest.

Error: (05/18/2015 02:42:32 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15813

Error: (05/18/2015 02:42:32 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15813

System errors:
=============
Error: (05/18/2015 04:15:25 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error:
%%1058

Error: (05/18/2015 04:15:17 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error:
%%1058

Error: (05/18/2015 04:14:45 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 3:53:47 PM on ‎5/‎18/‎2015 was unexpected.

Error: (05/18/2015 04:14:36 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT AUTHORITY)
Description: 32212256841151632

Error: (05/18/2015 03:23:43 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Intel® Dynamic Application Loader Host Interface Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (05/18/2015 03:23:43 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Intel® Rapid Storage Technology service terminated unexpectedly.  It has done this 1 time(s).

Error: (05/18/2015 03:23:43 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The iPod Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (05/18/2015 03:23:38 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The WD Backup service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (05/18/2015 03:23:38 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The WD Drive Manager service terminated unexpectedly.  It has done this 1 time(s).

Error: (05/18/2015 03:23:38 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The QBIDPService service terminated unexpectedly.  It has done this 1 time(s).

Microsoft Office Sessions:
=========================
Error: (05/18/2015 04:01:01 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifestc:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe

Error: (05/18/2015 03:13:51 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll4

Error: (05/18/2015 03:12:53 PM) (Source: Perflib) (EventID: 1023) (User: )
Description: rdyboost4

Error: (05/18/2015 03:04:10 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifestc:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe

Error: (05/18/2015 02:15:00 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifestc:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe

Error: (05/18/2015 02:07:44 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifestc:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe

Error: (05/18/2015 11:28:38 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifestc:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe

Error: (05/18/2015 09:54:51 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_a9f497a901334c74.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17784_none_624760d1ecb7236e.manifestc:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe

Error: (05/18/2015 02:42:32 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15813

Error: (05/18/2015 02:42:32 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15813

CodeIntegrity Errors:
===================================
  Date: 2015-05-18 16:01:39.919
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-05-18 16:01:39.357
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-05-18 16:01:38.810
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-05-18 16:01:38.232
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-05-18 16:01:37.716
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-05-18 16:01:37.231
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-05-18 16:01:36.673
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-05-18 16:01:36.251
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-05-18 16:01:35.848
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-05-18 16:01:35.368
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

Processor: Intel® Core™ i7-4770K CPU @ 3.50GHz
Percentage of memory in use: 15%
Total physical RAM: 16322.12 MB
Available physical RAM: 13817.08 MB
Total Pagefile: 32706.12 MB
Available Pagefile: 30020.78 MB
Total Virtual: 131072 MB
Available Virtual: 131071.77 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.37 GB) (Free:115.83 GB) NTFS
Drive f: (Data 2TB) (Fixed) (Total:1863.01 GB) (Free:224.89 GB) NTFS
Drive g: (WD_Green1TB) (Fixed) (Total:931.51 GB) (Free:709.8 GB) NTFS
Drive h: (WD_Green1TB) (Fixed) (Total:931.51 GB) (Free:709.87 GB) NTFS
Drive i: (My Passport 2TB) (Fixed) (Total:1862.98 GB) (Free:1520.25 GB) NTFS
Drive j: (My Passport 1TB) (Fixed) (Total:931.48 GB) (Free:405.4 GB) NTFS
Drive l: (My Book) (Fixed) (Total:3725.99 GB) (Free:3436.64 GB) NTFS
Drive p: (My Book - 2 TB) (Fixed) (Total:1862.98 GB) (Free:1640.21 GB) NTFS
Drive q: (My Book - 600GB) (Fixed) (Total:596.17 GB) (Free:107.03 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 1863 GB) (Disk ID: 000EEB46)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 232.9 GB) (Disk ID: BDF0655F)

Partition: GPT Partition Type.

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 524913B2)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 5249138D)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 4 (MBR Code: Windows XP) (Size: 1863 GB) (Disk ID: 00021365)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 5.

========================================================
Disk: 6 (Size: 596.2 GB) (Disk ID: ACDD9B22)
Partition 1: (Not Active) - (Size=596.2 GB) - (Type=07 NTFS)

========================================================
Disk: 7 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: 00023F15)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 8 (MBR Code: Windows XP) (Size: 1863 GB) (Disk ID: A523C7A7)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)

==================== End Of Log ============================

 

Will again continue....


JRT log:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.7.2 (05.15.2015:1)
OS: Windows 8.1 Pro x64
Ran by Patrick Massengale on Mon 05/18/2015 at 15:22:45.37
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Tasks

Successfully deleted: [Task] C:\Windows\system32\tasks\Optimize Start Menu Cache Files-S-1-5-21-1565451652-3773726845-3366320369-1001
Successfully deleted: [Task] C:\Windows\system32\tasks\Optimize Start Menu Cache Files-S-1-5-21-1565451652-3773726845-3366320369-1005

 

~~~ Registry Values

 

~~~ Registry Keys

 

~~~ Files

 

~~~ Folders

 

~~~ FireFox

Successfully deleted: [Folder] C:\Users\Patrick Massengale\AppData\Roaming\mozilla\firefox\profiles\vsu1102e.default\extensions\staged
Emptied folder: C:\Users\Patrick Massengale\AppData\Roaming\mozilla\firefox\profiles\vsu1102e.default\minidumps [13 files]

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 05/18/2015 at 15:26:44.55
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

TDSSKiller log:

 

16:35:43.0720 0x0cd8  TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
16:35:43.0720 0x0cd8  UEFI system
16:35:47.0501 0x0cd8  ============================================================
16:35:47.0501 0x0cd8  Current date / time: 2015/05/18 16:35:47.0501
16:35:47.0501 0x0cd8  SystemInfo:
16:35:47.0501 0x0cd8 
16:35:47.0501 0x0cd8  OS Version: 6.3.9600 ServicePack: 0.0
16:35:47.0501 0x0cd8  Product type: Workstation
16:35:47.0501 0x0cd8  ComputerName: PATGAMES
16:35:47.0502 0x0cd8  UserName: Patrick Massengale
16:35:47.0502 0x0cd8  Windows directory: C:\Windows
16:35:47.0502 0x0cd8  System windows directory: C:\Windows
16:35:47.0502 0x0cd8  Running under WOW64
16:35:47.0502 0x0cd8  Processor architecture: Intel x64
16:35:47.0502 0x0cd8  Number of processors: 8
16:35:47.0502 0x0cd8  Page size: 0x1000
16:35:47.0502 0x0cd8  Boot type: Normal boot
16:35:47.0502 0x0cd8  ============================================================
16:35:47.0670 0x0cd8  KLMD registered as C:\Windows\system32\drivers\05427439.sys
16:35:48.0189 0x0cd8  System UUID: {A7AEF9DE-BFC6-EA71-7035-250AC8698C87}
16:35:50.0161 0x0cd8  Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:35:50.0161 0x0cd8  Drive \Device\Harddisk1\DR1 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:35:50.0162 0x0cd8  Drive \Device\Harddisk2\DR2 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:35:50.0162 0x0cd8  Drive \Device\Harddisk3\DR3 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:35:50.0165 0x0cd8  Drive \Device\Harddisk4\DR4 - Size: 0x1D1BF100000 ( 1862.99 Gb ), SectorSize: 0x200, Cylinders: 0x3B5FD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:35:50.0166 0x0cd8  Drive \Device\Harddisk5\DR5 - Size: 0x3A37F700000 ( 3725.99 Gb ), SectorSize: 0x1000, Cylinders: 0xED7F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:35:50.0167 0x0cd8  Drive \Device\Harddisk6\DR6 - Size: 0x950B056000 ( 596.17 Gb ), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:35:50.0644 0x0cd8  Drive \Device\Harddisk7\DR7 - Size: 0xE8DED00000 ( 931.48 Gb ), SectorSize: 0x200, Cylinders: 0x1DAFD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:35:50.0644 0x0cd8  Drive \Device\Harddisk8\DR8 - Size: 0x1D1BF100000 ( 1862.99 Gb ), SectorSize: 0x200, Cylinders: 0x3B5FD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:35:50.0645 0x0cd8  ============================================================
16:35:50.0645 0x0cd8  \Device\Harddisk0\DR0:
16:35:50.0646 0x0cd8  MBR partitions:
16:35:50.0646 0x0cd8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xE8E07482
16:35:50.0646 0x0cd8  \Device\Harddisk1\DR1:
16:35:50.0647 0x0cd8  GPT partitions:
16:35:50.0648 0x0cd8  \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {666F0AD4-4B20-49EE-914E-7B6773E8283D}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x96000
16:35:50.0648 0x0cd8  \Device\Harddisk1\DR1\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {F3E92CD8-17A6-48E5-B2D0-5720EDBA6DCB}, Name: EFI system partition, StartLBA 0x96800, BlocksNum 0x32000
16:35:50.0648 0x0cd8  \Device\Harddisk1\DR1\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {0E66EF4A-A200-4D32-896F-4799012B8E61}, Name: Microsoft reserved partition, StartLBA 0xC8800, BlocksNum 0x40000
16:35:50.0648 0x0cd8  \Device\Harddisk1\DR1\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {C704479B-3968-4DF6-877A-D596AB0038FB}, Name: Basic data partition, StartLBA 0x108800, BlocksNum 0x1D0BD000
16:35:50.0648 0x0cd8  MBR partitions:
16:35:50.0648 0x0cd8  \Device\Harddisk2\DR2:
16:35:50.0648 0x0cd8  MBR partitions:
16:35:50.0648 0x0cd8  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74709082
16:35:50.0648 0x0cd8  \Device\Harddisk3\DR3:
16:35:50.0648 0x0cd8  MBR partitions:
16:35:50.0648 0x0cd8  \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74709082
16:35:50.0648 0x0cd8  \Device\Harddisk4\DR4:
16:35:50.0649 0x0cd8  MBR partitions:
16:35:50.0649 0x0cd8  \Device\Harddisk4\DR4\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8DF8000
16:35:50.0649 0x0cd8  \Device\Harddisk5\DR5:
16:35:50.0649 0x0cd8  MBR partitions:
16:35:50.0649 0x0cd8  \Device\Harddisk5\DR5\Partition1: MBR, Type 0x7, StartLBA 0x100, BlocksNum 0x3A37F600
16:35:50.0649 0x0cd8  \Device\Harddisk6\DR6:
16:35:50.0650 0x0cd8  MBR partitions:
16:35:50.0650 0x0cd8  \Device\Harddisk6\DR6\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x4A856E82
16:35:50.0650 0x0cd8  \Device\Harddisk7\DR7:
16:35:50.0650 0x0cd8  MBR partitions:
16:35:50.0650 0x0cd8  \Device\Harddisk7\DR7\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x746F6000
16:35:50.0650 0x0cd8  \Device\Harddisk8\DR8:
16:35:50.0650 0x0cd8  MBR partitions:
16:35:50.0650 0x0cd8  \Device\Harddisk8\DR8\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8DF8000
16:35:50.0650 0x0cd8  ============================================================
16:35:50.0651 0x0cd8  C: <-> \Device\Harddisk1\DR1\Partition4
16:35:50.0652 0x0cd8  F: <-> \Device\Harddisk0\DR0\Partition1
16:35:50.0669 0x0cd8  Q: <-> \Device\Harddisk6\DR6\Partition1
16:35:50.0671 0x0cd8  P: <-> \Device\Harddisk4\DR4\Partition1
16:35:50.0672 0x0cd8  G: <-> \Device\Harddisk3\DR3\Partition1
16:35:50.0674 0x0cd8  H: <-> \Device\Harddisk2\DR2\Partition1
16:35:51.0015 0x0cd8  J: <-> \Device\Harddisk7\DR7\Partition1
16:35:51.0566 0x0cd8  I: <-> \Device\Harddisk8\DR8\Partition1
16:35:51.0568 0x0cd8  L: <-> \Device\Harddisk5\DR5\Partition1
16:35:51.0568 0x0cd8  ============================================================
16:35:51.0568 0x0cd8  Initialize success
16:35:51.0568 0x0cd8  ============================================================
16:35:53.0762 0x08d4  ============================================================
16:35:53.0762 0x08d4  Scan started
16:35:53.0762 0x08d4  Mode: Manual;
16:35:53.0762 0x08d4  ============================================================
16:35:53.0762 0x08d4  KSN ping started
16:35:56.0165 0x08d4  KSN ping finished: true
16:35:57.0184 0x08d4  ================ Scan system memory ========================
16:35:57.0185 0x08d4  System memory - ok
16:35:57.0185 0x08d4  ================ Scan services =============================
16:35:57.0231 0x08d4  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
16:35:57.0239 0x08d4  1394ohci - ok
16:35:57.0330 0x08d4  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\Windows\system32\drivers\3ware.sys
16:35:57.0334 0x08d4  3ware - ok
16:35:57.0378 0x08d4  [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
16:35:57.0404 0x08d4  ACPI - ok
16:35:57.0417 0x08d4  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
16:35:57.0421 0x08d4  acpiex - ok
16:35:57.0430 0x08d4  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
16:35:57.0431 0x08d4  acpipagr - ok
16:35:57.0441 0x08d4  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
16:35:57.0442 0x08d4  AcpiPmi - ok
16:35:57.0451 0x08d4  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\Windows\System32\drivers\acpitime.sys
16:35:57.0452 0x08d4  acpitime - ok
16:35:57.0463 0x08d4  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:35:57.0467 0x08d4  AdobeARMservice - ok
16:35:57.0506 0x08d4  [ B04A4810C6CC205F9DC72DC22E4AB236, 547321F5C28C80D4818372D65E2A33D4BAC593015DD6613B24586FE4B4A95D5D ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:35:57.0519 0x08d4  AdobeFlashPlayerUpdateSvc - ok
16:35:57.0577 0x08d4  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\Windows\system32\drivers\ADP80XX.SYS
16:35:57.0615 0x08d4  ADP80XX - ok
16:35:57.0647 0x08d4  [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:35:57.0657 0x08d4  AeLookupSvc - ok
16:35:57.0700 0x08d4  [ 374E27295F0A9DCAA8FC96370F9BEEA5, 51C394E0C2322D7D093941A1B8766171B5D1F47DF2FE0834209492891EA7D999 ] AFD             C:\Windows\system32\drivers\afd.sys
16:35:57.0728 0x08d4  AFD - ok
16:35:57.0742 0x08d4  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\Windows\system32\drivers\agp440.sys
16:35:57.0746 0x08d4  agp440 - ok
16:35:57.0757 0x08d4  [ FE14D249D39368CA62D8DA6BC94AC694, E1036E22BFBD3750FD2D3DA6AB939B2DD54E824F4BD3E6539EF0E45AB5453DD1 ] ahcache         C:\Windows\system32\DRIVERS\ahcache.sys
16:35:57.0762 0x08d4  ahcache - ok
16:35:57.0775 0x08d4  [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG             C:\Windows\System32\alg.exe
16:35:57.0780 0x08d4  ALG - ok
16:35:57.0795 0x08d4  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\Windows\System32\drivers\amdk8.sys
16:35:57.0800 0x08d4  AmdK8 - ok
16:35:57.0817 0x08d4  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
16:35:57.0822 0x08d4  AmdPPM - ok
16:35:57.0835 0x08d4  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
16:35:57.0839 0x08d4  amdsata - ok
16:35:57.0862 0x08d4  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
16:35:57.0875 0x08d4  amdsbs - ok
16:35:57.0885 0x08d4  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
16:35:57.0886 0x08d4  amdxata - ok
16:35:57.0899 0x08d4  [ 415DD71628795197F7AFC176CBADC74E, 5F0359053A6CD6EE239139E0E6F46E1FA9A73F017C0CE9B7BC052216B2C846EC ] AppID           C:\Windows\system32\drivers\appid.sys
16:35:57.0903 0x08d4  AppID - ok
16:35:57.0913 0x08d4  [ 34B2E222F82D05398DAE7203B36B6A2B, AC04BC6B5A36A6807FFE302E9ACF073342B4D76B0BB386249251CB3CA1852CE8 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
16:35:57.0916 0x08d4  AppIDSvc - ok
16:35:57.0929 0x08d4  [ 680BFB820C5A943AB709BAA2B1EF27F2, A51D2A7976A762FE470C13C6D1BA0319A0FB19C9E66BF02AA44F83EAEC7130F8 ] Appinfo         C:\Windows\System32\appinfo.dll
16:35:57.0935 0x08d4  Appinfo - ok
16:35:57.0950 0x08d4  [ 612CB66D93ED0F2F21BB109840C7D813, 75484123DA27B8942B13148FCF061C75A08A50386A095143736B593E9C772173 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:35:57.0954 0x08d4  Apple Mobile Device Service - ok
16:35:57.0975 0x08d4  [ 1A8EA3500576DD4B43E9318F10709E0E, 85F8581C319DE241B223366F08A5F9301858DA9DA1A0CAA10ED387A2B99EC216 ] AppMgmt         C:\Windows\System32\appmgmts.dll
16:35:57.0985 0x08d4  AppMgmt - ok
16:35:58.0021 0x08d4  [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness    C:\Windows\system32\AppReadiness.dll
16:35:58.0049 0x08d4  AppReadiness - ok
16:35:58.0140 0x08d4  [ 573542B5E97772021B73E854DA861DAA, C3FD00FA28060F8D7CDFD455BBB5FF8239CB76DDFFF2BDAE6AA944674DD993D3 ] AppXSvc         C:\Windows\system32\appxdeploymentserver.dll
16:35:58.0206 0x08d4  AppXSvc - ok
16:35:58.0223 0x08d4  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\Windows\system32\drivers\arcsas.sys
16:35:58.0229 0x08d4  arcsas - ok
16:35:58.0289 0x08d4  [ BBF8F831C7720DD5135D8C4C8325187A, 2630C68200D7BD49A5772830D6B369C0EC337C2558A9562DD564DF042249ECC0 ] asComSvc        C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
16:35:58.0334 0x08d4  asComSvc - ok
16:35:58.0344 0x08d4  [ 798DE15F187C1F013095BBBEB6FB6197, 436CCAB6F62FA2D29827916E054ADE7ACAE485B3DE1D3E5C6C62D3DEBF1480E7 ] AsIO            C:\Windows\syswow64\drivers\AsIO.sys
16:35:58.0346 0x08d4  AsIO - ok
16:35:58.0359 0x08d4  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\Windows\system32\drivers\atapi.sys
16:35:58.0361 0x08d4  atapi - ok
16:35:58.0379 0x08d4  [ 8779FDAE68BC948B0FE152E758CC8DA7, 13070C2073F8E7546B48AE9CF54067B9BB75DFCD98F2987B90FFAD20D40D54CF ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
16:35:58.0391 0x08d4  AudioEndpointBuilder - ok
16:35:58.0459 0x08d4  [ 61EA45A645854FE81D8A924E2D93DFFE, 34F79532297F609CA93C380B68BB8B7B0F027F9C8F4FB8E02A9A43EA3D155F1B ] Audiosrv        C:\Windows\System32\Audiosrv.dll
16:35:58.0503 0x08d4  Audiosrv - ok
16:35:58.0518 0x08d4  [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
16:35:58.0524 0x08d4  AxInstSV - ok
16:35:58.0562 0x08d4  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
16:35:58.0588 0x08d4  b06bdrv - ok
16:35:58.0600 0x08d4  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
16:35:58.0603 0x08d4  BasicDisplay - ok
16:35:58.0614 0x08d4  [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys
16:35:58.0616 0x08d4  BasicRender - ok
16:35:58.0637 0x08d4  [ F8FE7E12F8151E0A17C23CF840599F9A, 5D1AA3A5DAC08B521A7BE775F32434AFF1F5F19B69CD16D2D94B0D399E61C371 ] bcbtums         C:\Windows\system32\drivers\bcbtums.sys
16:35:58.0646 0x08d4  bcbtums - ok
16:35:58.0780 0x08d4  [ ACB44407FF63C3A5A22AB5782F209604, 86BE221F07EB49D2149710CCCE4F0C24677560FEFD41F093C6D2BA0C962CF5C3 ] BcmBtRSupport   C:\Windows\system32\BtwRSupportService.exe
16:35:58.0889 0x08d4  BcmBtRSupport - ok
16:35:58.0905 0x08d4  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\Windows\System32\drivers\bcmfn2.sys
16:35:58.0906 0x08d4  bcmfn2 - ok
16:35:58.0931 0x08d4  [ 77D760E9B477C21487C171F561497F98, 2393D466CEC863C771C5BB4CD81B251635DC084386134B8E13F74F3E1C6D68DF ] BDESVC          C:\Windows\System32\bdesvc.dll
16:35:58.0949 0x08d4  BDESVC - ok
16:35:58.0958 0x08d4  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\Windows\system32\drivers\Beep.sys
16:35:58.0959 0x08d4  Beep - ok
16:35:59.0018 0x08d4  [ 22A5582ACF0CEE97268D7868C69F35CE, 78A44C10966FE467D3FCC76BE37647AE2CC2BCA9DE5715AD9E643162B23C3A19 ] BFE             C:\Windows\System32\bfe.dll
16:35:59.0060 0x08d4  BFE - ok
16:35:59.0116 0x08d4  [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS            C:\Windows\System32\qmgr.dll
16:35:59.0164 0x08d4  BITS - ok
16:35:59.0199 0x08d4  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:35:59.0221 0x08d4  Bonjour Service - ok
16:35:59.0236 0x08d4  [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
16:35:59.0242 0x08d4  bowser - ok
16:35:59.0265 0x08d4  [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
16:35:59.0279 0x08d4  BrokerInfrastructure - ok
16:35:59.0294 0x08d4  [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser         C:\Windows\System32\browser.dll
16:35:59.0301 0x08d4  Browser - ok
16:35:59.0312 0x08d4  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys
16:35:59.0314 0x08d4  BthAvrcpTg - ok
16:35:59.0325 0x08d4  [ 1104A31260CCF4318C884E0AE6C513BF, A8F83B558944DEF0F84414A11DC3CB90C3A92377B46760EC0A9B8BC22FB0D5C7 ] BthEnum         C:\Windows\System32\drivers\BthEnum.sys
16:35:59.0328 0x08d4  BthEnum - ok
16:35:59.0338 0x08d4  [ 272A62B660A48AEF366F8A1836CED19F, 78EFAC6B1B2313482329BBFFBF0DDA6462BD88E5BE3C817C5E8E0EAF3074C925 ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys
16:35:59.0342 0x08d4  BthHFEnum - ok
16:35:59.0352 0x08d4  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys
16:35:59.0354 0x08d4  bthhfhid - ok
16:35:59.0386 0x08d4  [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv        C:\Windows\System32\BthHFSrv.dll
16:35:59.0403 0x08d4  BthHFSrv - ok
16:35:59.0415 0x08d4  [ 07E33226AD218A2A162662A05CAFB52F, 0AC3D8B79EDA6DA232FA4E1CAF6592420A9EDE96350D1F0504C2434261684F0B ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
16:35:59.0419 0x08d4  BTHMODEM - ok
16:35:59.0467 0x08d4  [ 25BB93167DEF270188072603F92A1EF5, CE4637CE4B63420E218F53CAF89A8C85D036B879B80456FEF3C7C395590E26BB ] BthPan          C:\Windows\System32\drivers\bthpan.sys
16:35:59.0473 0x08d4  BthPan - ok
16:35:59.0565 0x08d4  [ C37F4930795B771400C63C3C87E7A6C2, 0D0F54184B2DAA45F646E4F69B85C4411E8DFA88EB4763BB0F386055A420F217 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
16:35:59.0623 0x08d4  BTHPORT - ok
16:35:59.0640 0x08d4  [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv         C:\Windows\system32\bthserv.dll
16:35:59.0646 0x08d4  bthserv - ok
16:35:59.0664 0x08d4  [ 08EA90955AED2D959EE67DF6EDF0E2B6, 0A70AA67E5DD24C473C66A570C0FEBA9D398A0F0AD8386FE05D01C4D16346968 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
16:35:59.0669 0x08d4  BTHUSB - ok
16:35:59.0688 0x08d4  [ BC279FCEE9FC8CBF991D5DE539771AA9, 5DE007672BFBFA78C44CC08251F495420402AFF4AD01541AA84AD37BD4A58190 ] btwampfl        C:\Windows\system32\DRIVERS\btwampfl.sys
16:35:59.0697 0x08d4  btwampfl - ok
16:35:59.0709 0x08d4  [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
16:35:59.0713 0x08d4  cdfs - ok
16:35:59.0736 0x08d4  [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\Windows\System32\drivers\cdrom.sys
16:35:59.0745 0x08d4  cdrom - ok
16:35:59.0774 0x08d4  [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] CertPropSvc     C:\Windows\System32\certprop.dll
16:35:59.0783 0x08d4  CertPropSvc - ok
16:35:59.0794 0x08d4  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\Windows\System32\drivers\circlass.sys
16:35:59.0797 0x08d4  circlass - ok
16:35:59.0827 0x08d4  [ 8EB7E70C2D348FE2476A2E3F2D585E3D, 2B5D407FACF1D049261026CC552A7C93B028A661B0F4E959815EAE7670054127 ] CLFS            C:\Windows\system32\drivers\CLFS.sys
16:35:59.0846 0x08d4  CLFS - ok
16:35:59.0996 0x08d4  [ 1352A95AD8150440E0A5DD9745154D74, CF78A6267A246F747844FFA255783B5867B0A7232C65AF6224B25B2FBB893313 ] ClickToRunSvc   C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
16:36:00.0127 0x08d4  ClickToRunSvc - ok
16:36:00.0155 0x08d4  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
16:36:00.0157 0x08d4  CmBatt - ok
16:36:00.0186 0x08d4  [ 5E5AB950693F2C6D6ACBEE3A74697ED7, 3790A7DD0AC65F47A697A577744FDFA4CC1CA3422884C84E499F97AC91BA84F3 ] CNG             C:\Windows\system32\Drivers\cng.sys
16:36:00.0208 0x08d4  CNG - ok
16:36:00.0220 0x08d4  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\Windows\System32\drivers\CompositeBus.sys
16:36:00.0222 0x08d4  CompositeBus - ok
16:36:00.0227 0x08d4  COMSysApp - ok
16:36:00.0235 0x08d4  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\Windows\system32\drivers\condrv.sys
16:36:00.0237 0x08d4  condrv - ok
16:36:00.0253 0x08d4  [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
16:36:00.0260 0x08d4  CryptSvc - ok
16:36:00.0289 0x08d4  [ 9DBC32A45CFA67074432D2AF6C2832B6, B3B26302961A95EDFD4F994D56B1E5A8452266E0C2161D15C1213BBE376227A2 ] CSC             C:\Windows\system32\drivers\csc.sys
16:36:00.0311 0x08d4  CSC - ok
16:36:00.0350 0x08d4  [ 86079FF8A3B625ABAEB68841D2BF6FE6, 49FF4D458DF8FAB4ECA8CAD9BBF88C929C8B9AB7F063938A6A332B31F2C0F8EB ] CscService      C:\Windows\System32\cscsvc.dll
16:36:00.0382 0x08d4  CscService - ok
16:36:00.0392 0x08d4  [ 389C998C64319CD97625B0550E52ECFA, DD0EDDD9C8412F78D2D2B648D67DA887C3040E05DF29F48F71299CB68FDDD0F8 ] dam             C:\Windows\system32\drivers\dam.sys
16:36:00.0395 0x08d4  dam - ok
16:36:00.0438 0x08d4  [ A6F17C299A03BAFEFB9257C462A19E00, EB68967D28355271897166D7B6FD963D1E546D3C24AE1AEAAC561F94357A9345 ] DcomLaunch      C:\Windows\system32\rpcss.dll
16:36:00.0474 0x08d4  DcomLaunch - ok
16:36:00.0510 0x08d4  [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc       C:\Windows\System32\defragsvc.dll
16:36:00.0532 0x08d4  defragsvc - ok
16:36:00.0563 0x08d4  [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\Windows\system32\das.dll
16:36:00.0584 0x08d4  DeviceAssociationService - ok
16:36:00.0597 0x08d4  [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll
16:36:00.0607 0x08d4  DeviceInstall - ok
16:36:00.0621 0x08d4  [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
16:36:00.0628 0x08d4  Dfsc - ok
16:36:00.0643 0x08d4  [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
16:36:00.0648 0x08d4  dg_ssudbus - ok
16:36:00.0675 0x08d4  [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp            C:\Windows\system32\dhcpcore.dll
16:36:00.0694 0x08d4  Dhcp - ok
16:36:00.0775 0x08d4  [ 9703EC57F5BBB94F89CA80A5D0C12221, 29639F73AA86AA42401A1DB0AF4E76012E617879EC03AD7591210164BA105EBF ] DiagTrack       C:\Windows\system32\diagtrack.dll
16:36:00.0845 0x08d4  DiagTrack - ok
16:36:00.0867 0x08d4  [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk            C:\Windows\system32\drivers\disk.sys
16:36:00.0872 0x08d4  disk - ok
16:36:01.0040 0x08d4  [ 94E99DB4BC81C00FFAB5701C1E5A09AB, A203047EAE1FCEFD23AF9D0431D112AF0C83D712E7FFFD67EBE9D8E7EB133FB2 ] DisplayFusionService C:\Program Files (x86)\DisplayFusion\DisplayFusionService.exe
16:36:01.0181 0x08d4  DisplayFusionService - ok
16:36:01.0197 0x08d4  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys
16:36:01.0198 0x08d4  dmvsc - ok
16:36:01.0214 0x08d4  [ E9AE4FAE83FB38A2962F9032B24CEB3C, CC7D2D8C97CB779791613D76D6E4AF5D628C948C28BAC584C3C7F6A5A6036FBA ] Dnscache        C:\Windows\System32\dnsrslvr.dll
16:36:01.0225 0x08d4  Dnscache - ok
16:36:01.0242 0x08d4  [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc         C:\Windows\System32\dot3svc.dll
16:36:01.0253 0x08d4  dot3svc - ok
16:36:01.0268 0x08d4  [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS             C:\Windows\system32\dps.dll
16:36:01.0276 0x08d4  DPS - ok
16:36:01.0283 0x08d4  [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
16:36:01.0284 0x08d4  drmkaud - ok
16:36:01.0299 0x08d4  [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
16:36:01.0308 0x08d4  DsmSvc - ok
16:36:01.0393 0x08d4  [ E1BB0B6F00F470B451AB45EA13EBA0B3, 3A2FC2175B69A5EB98D6C2D563DBFDCB320647AB87A14E47FAE800423DCACDAB ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
16:36:01.0453 0x08d4  DXGKrnl - ok
16:36:01.0483 0x08d4  [ 9A74A943232DDE109D5507A30853A1A2, 995FA48AFA9D2438968DC41F246012BE07EE96A0D630FB3059CEFBFB0E75FBA2 ] e1dexpress      C:\Windows\system32\DRIVERS\e1d64x64.sys
16:36:01.0499 0x08d4  e1dexpress - ok
16:36:01.0530 0x08d4  [ FA988D76745C917CDFE20031C06DE860, B01AA3611869854D3BCA8B6CD7A6F48CC3537145DD3EBE50F5BEF72239924BF7 ] e1iexpress      C:\Windows\system32\DRIVERS\e1i63x64.sys
16:36:01.0551 0x08d4  e1iexpress - ok
16:36:01.0565 0x08d4  [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost         C:\Windows\System32\eapsvc.dll
16:36:01.0572 0x08d4  Eaphost - ok
16:36:01.0787 0x08d4  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
16:36:01.0948 0x08d4  ebdrv - ok
16:36:01.0967 0x08d4  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS             C:\Windows\System32\lsass.exe
16:36:01.0971 0x08d4  EFS - ok
16:36:01.0982 0x08d4  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys
16:36:01.0987 0x08d4  EhStorClass - ok
16:36:02.0003 0x08d4  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
16:36:02.0009 0x08d4  EhStorTcgDrv - ok
16:36:02.0018 0x08d4  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\Windows\System32\drivers\errdev.sys
16:36:02.0019 0x08d4  ErrDev - ok
16:36:02.0062 0x08d4  [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem     C:\Windows\system32\es.dll
16:36:02.0088 0x08d4  EventSystem - ok
16:36:02.0108 0x08d4  [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\Windows\system32\drivers\exfat.sys
16:36:02.0118 0x08d4  exfat - ok
16:36:02.0140 0x08d4  [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
16:36:02.0150 0x08d4  fastfat - ok
16:36:02.0191 0x08d4  [ 304B6AEC4639A7CCCCF544C6BA6177B2, B75CDD52FD3890B3008E06C503945D1E36478F0EC5E067C8DBC2822D7935D24B ] Fax             C:\Windows\system32\fxssvc.exe
16:36:02.0225 0x08d4  Fax - ok
16:36:02.0235 0x08d4  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\Windows\System32\drivers\fdc.sys
16:36:02.0237 0x08d4  fdc - ok
16:36:02.0245 0x08d4  [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost         C:\Windows\system32\fdPHost.dll
16:36:02.0248 0x08d4  fdPHost - ok
16:36:02.0258 0x08d4  [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub        C:\Windows\system32\fdrespub.dll
16:36:02.0263 0x08d4  FDResPub - ok
16:36:02.0275 0x08d4  [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc           C:\Windows\system32\fhsvc.dll
16:36:02.0282 0x08d4  fhsvc - ok
16:36:02.0294 0x08d4  [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
16:36:02.0298 0x08d4  FileInfo - ok
16:36:02.0308 0x08d4  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
16:36:02.0310 0x08d4  Filetrace - ok
16:36:02.0319 0x08d4  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
16:36:02.0321 0x08d4  flpydisk - ok
16:36:02.0350 0x08d4  [ C1FB505A73FA2E9019D32444AB33B75A, 765F0635C18295855CA4C0394192E8B94BA2EA1C4D74F86B720358ABA019FFAA ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
16:36:02.0367 0x08d4  FltMgr - ok
16:36:02.0445 0x08d4  [ 6C068E7207F183FF3647E45D2599E80C, D65C9888522CA29596D5C8BEFF42356F0310E812117E72C1D612BA089C0940D9 ] FontCache       C:\Windows\system32\FntCache.dll
16:36:02.0516 0x08d4  FontCache - ok
16:36:02.0530 0x08d4  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:36:02.0533 0x08d4  FontCache3.0.0.0 - ok
16:36:02.0543 0x08d4  [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
16:36:02.0546 0x08d4  FsDepends - ok
16:36:02.0553 0x08d4  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
16:36:02.0555 0x08d4  Fs_Rec - ok
16:36:02.0595 0x08d4  [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
16:36:02.0618 0x08d4  fvevol - ok
16:36:02.0627 0x08d4  [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\Windows\System32\drivers\fxppm.sys
16:36:02.0629 0x08d4  FxPPM - ok
16:36:02.0637 0x08d4  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
16:36:02.0640 0x08d4  gagp30kx - ok
16:36:02.0664 0x08d4  [ DA3E277F51F300CCAB335D5382148E27, AE3DE9CA0B70DE4D157BCEB5D84B30D53A14E7DF445B3DC70768FCDC955226DB ] Garmin Core Update Service C:\Program Files (x86)\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe
16:36:02.0681 0x08d4  Garmin Core Update Service - ok
16:36:02.0691 0x08d4  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:36:02.0693 0x08d4  GEARAspiWDM - ok
16:36:02.0700 0x08d4  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
16:36:02.0701 0x08d4  gencounter - ok
16:36:02.0721 0x08d4  [ 097AAE27A78BC99E98A49F7234E4BA9C, 1422DA830045E77DF11732935FE7E3AC7F4FD4D1A574A054E1CCFD6A5923AAB3 ] GoToAssist      C:\Program Files (x86)\Citrix\GoToAssist\957\g2aservice.exe
16:36:02.0733 0x08d4  GoToAssist - ok
16:36:02.0749 0x08d4  [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys
16:36:02.0755 0x08d4  GPIOClx0101 - ok
16:36:02.0830 0x08d4  [ 0D03F87D4FF4ADBAF8336DD80548155A, BC10CFA88EA2F41A8D96CB810B7953A4C168B79273A3E804A9F020F49AB58CD3 ] gpsvc           C:\Windows\System32\gpsvc.dll
16:36:02.0884 0x08d4  gpsvc - ok
16:36:02.0899 0x08d4  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:36:02.0904 0x08d4  gupdate - ok
16:36:02.0918 0x08d4  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:36:02.0923 0x08d4  gupdatem - ok
16:36:02.0954 0x08d4  [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:36:02.0970 0x08d4  HdAudAddService - ok
16:36:02.0983 0x08d4  [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
16:36:02.0986 0x08d4  HDAudBus - ok
16:36:02.0994 0x08d4  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys
16:36:02.0995 0x08d4  HidBatt - ok
16:36:03.0007 0x08d4  [ 42F88B57CAE42FC10059C887B3FCFCEA, 9363AA2B8E839A6935A7C6A36C491938DF78024886DCCE6D29CB18E1D6A6D806 ] HidBth          C:\Windows\System32\drivers\hidbth.sys
16:36:03.0011 0x08d4  HidBth - ok
16:36:03.0020 0x08d4  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
16:36:03.0022 0x08d4  hidi2c - ok
16:36:03.0030 0x08d4  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\Windows\System32\drivers\hidir.sys
16:36:03.0032 0x08d4  HidIr - ok
16:36:03.0041 0x08d4  [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv         C:\Windows\system32\hidserv.dll
16:36:03.0045 0x08d4  hidserv - ok
16:36:03.0053 0x08d4  [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
16:36:03.0055 0x08d4  HidUsb - ok
16:36:03.0066 0x08d4  [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc          C:\Windows\system32\kmsvc.dll
16:36:03.0072 0x08d4  hkmsvc - ok
16:36:03.0090 0x08d4  [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:36:03.0102 0x08d4  HomeGroupListener - ok
16:36:03.0127 0x08d4  [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:36:03.0147 0x08d4  HomeGroupProvider - ok
16:36:03.0156 0x08d4  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
16:36:03.0159 0x08d4  HpSAMD - ok
16:36:03.0205 0x08d4  [ E87A6D3B8FECD5B93BC0CFBB48C27970, 55C49B6F3822450447C082B40A263F3370694DB53AD0018ADEB911E4A9F65A88 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
16:36:03.0244 0x08d4  HTTP - ok
16:36:03.0269 0x08d4  [ E5805896A55D4166C20F216249F40FA3, F426BF60D5B916E7A778EF24C49FE1FFE1B2977C2ABD2977FD5C38C6E6CB139F ] HWiNFO32        C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS
16:36:03.0270 0x08d4  HWiNFO32 - ok
16:36:03.0278 0x08d4  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
16:36:03.0279 0x08d4  hwpolicy - ok
16:36:03.0286 0x08d4  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
16:36:03.0287 0x08d4  hyperkbd - ok
16:36:03.0294 0x08d4  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\Windows\system32\DRIVERS\HyperVideo.sys
16:36:03.0295 0x08d4  HyperVideo - ok
16:36:03.0308 0x08d4  [ 49EE0AE9E5B64FFBBD06D55C4984B598, 8866627F9241B24A59C81D8BCC67A4DCA87576F589599BA291D0E323F679EB4D ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
16:36:03.0312 0x08d4  i8042prt - ok
16:36:03.0320 0x08d4  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\Windows\System32\drivers\iaLPSSi_GPIO.sys
16:36:03.0321 0x08d4  iaLPSSi_GPIO - ok
16:36:03.0331 0x08d4  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\Windows\System32\drivers\iaLPSSi_I2C.sys
16:36:03.0335 0x08d4  iaLPSSi_I2C - ok
16:36:03.0380 0x08d4  [ 57CD95DEB3529181BCC931DD2DFB2341, 03ACF906E4C3CF954F503900F42C7A60FCD5624772B90A956F032484146E42B7 ] iaStorA         C:\Windows\system32\drivers\iaStorA.sys
16:36:03.0405 0x08d4  iaStorA - ok
16:36:03.0447 0x08d4  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\Windows\system32\drivers\iaStorAV.sys
16:36:03.0473 0x08d4  iaStorAV - ok
16:36:03.0481 0x08d4  [ 20E83F4632E15A5E9E716FF2E8AC7FAE, 7CA1A4924F432AD30ED7FA6247C6513DA173EE31132AE115E85C0ED7E5971029 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
16:36:03.0482 0x08d4  IAStorDataMgrSvc - ok
16:36:03.0512 0x08d4  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
16:36:03.0528 0x08d4  iaStorV - ok
16:36:03.0535 0x08d4  IEEtwCollectorService - ok
16:36:03.0605 0x08d4  [ 57322EBB67A59FB64E228F31A84CA43D, 258DA26BDFAB635F145E55CF65CDFCFE4EB91454E3F930489E92810250EF9FD7 ] IKEEXT          C:\Windows\System32\ikeext.dll
16:36:03.0648 0x08d4  IKEEXT - ok
16:36:03.0841 0x08d4  [ 4261A4DFAE9F2EAA36536718D1EFDA35, 7A1E9F490261631EE10DED4BACA924515A097E2677A6EB59BEA3327CB7FE4A13 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:36:04.0001 0x08d4  IntcAzAudAddService - ok
16:36:04.0057 0x08d4  [ 0DB1E3F6189C628675F855C0EB510419, 989F539E82105019D2D81255369B96DC65826CD2A421DA09809155B26F69C555 ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
16:36:04.0082 0x08d4  Intel® Capability Licensing Service Interface - ok
16:36:04.0129 0x08d4  [ 492AAF2FF66F437F0E796574B116EFC3, 6BF21C61ED05705DD58203952A750D1AB4D4B62F3A2B640BBBD9B85D1ECC3E5C ] Intel® Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
16:36:04.0156 0x08d4  Intel® Capability Licensing Service TCP IP Interface - ok
16:36:04.0173 0x08d4  [ CBF7341E55A8348C7AB01A9870C7D948, A5084DF3C6321788C88A9E6B5F43FE5BCFDBB579BDE3A4D5F55558C6D13035A5 ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
16:36:04.0180 0x08d4  Intel® PROSet Monitoring Service - ok
16:36:04.0186 0x08d4  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\Windows\system32\drivers\intelide.sys
16:36:04.0187 0x08d4  intelide - ok
16:36:04.0193 0x08d4  [ 7AA01AB1C110916825E6E1389F1B9AF2, E2885955AFA0908E194B1BC364C9582249B2B2AFFF93F17F3414F55B1E5F2C42 ] intelpep        C:\Windows\system32\drivers\intelpep.sys
16:36:04.0195 0x08d4  intelpep - ok
16:36:04.0206 0x08d4  [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\Windows\System32\drivers\intelppm.sys
16:36:04.0210 0x08d4  intelppm - ok
16:36:04.0219 0x08d4  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:36:04.0222 0x08d4  IpFilterDriver - ok
16:36:04.0268 0x08d4  [ A5800036E4EA06697A34742A24ACFBE1, BA67060526E9213000B4206F86A74F904999AD7018EFCBE4FE9708650DA9D973 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
16:36:04.0299 0x08d4  iphlpsvc - ok
16:36:04.0309 0x08d4  [ 9C096BF5E10CA8BFA56F32522A89FAF1, 6C1151160799338DA351C7237AB049926C6C15F24F5E154BBF5929B4A96C0B8D ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys
16:36:04.0312 0x08d4  IPMIDRV - ok
16:36:04.0323 0x08d4  [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
16:36:04.0328 0x08d4  IPNAT - ok
16:36:04.0354 0x08d4  [ E61BB95A7CB49696D25A0C4EBD108156, 65D95A0DBC408AD18D5E344A5E875551E6CC044038DE438E4EA1102A234FC529 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
16:36:04.0375 0x08d4  iPod Service - ok
16:36:04.0382 0x08d4  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\Windows\system32\drivers\irenum.sys
16:36:04.0383 0x08d4  IRENUM - ok
16:36:04.0389 0x08d4  [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\Windows\system32\drivers\isapnp.sys
16:36:04.0390 0x08d4  isapnp - ok
16:36:04.0411 0x08d4  [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
16:36:04.0421 0x08d4  iScsiPrt - ok
16:36:04.0434 0x08d4  [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
16:36:04.0439 0x08d4  jhi_service - ok
16:36:04.0447 0x08d4  [ 5917AFE4A3F695A54B99C1849C8207FE, DD57638966F2F0387DCF9DA4BBAEE3CDD8CC6F1A2D49581A0374D46A565BED4F ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
16:36:04.0449 0x08d4  kbdclass - ok
16:36:04.0456 0x08d4  [ 8CD840A062F6BDF41DDE3ACB96164B72, AEAE867F3557C1CE6B931E19D7144A3BD3CBABD81B1542667680D54FC24DEBE1 ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
16:36:04.0457 0x08d4  kbdhid - ok
16:36:04.0463 0x08d4  [ DB7A09BC90DF20F44F16F8B0F9ED3491, 2DF5E042284D61368A5801B2557351B2C4B1044AA6F966DF4DDCE7B453D1B9AE ] kbldfltr        C:\Windows\system32\drivers\kbldfltr.sys
16:36:04.0464 0x08d4  kbldfltr - ok
16:36:04.0470 0x08d4  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\Windows\system32\DRIVERS\kdnic.sys
16:36:04.0471 0x08d4  kdnic - ok
16:36:04.0477 0x08d4  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso          C:\Windows\system32\lsass.exe
16:36:04.0480 0x08d4  KeyIso - ok
16:36:04.0488 0x08d4  [ 4E829B18D5BAEC29893792A3C671A847, 64C3B99F53A9D1ACA802B46B09E820AD210B667D5A1CD0ADAF1F12944B15B52E ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
16:36:04.0492 0x08d4  KSecDD - ok
16:36:04.0503 0x08d4  [ 15C8C65CEA018C02EA0F648448C491C5, DF909704D22D891BE439B2E3D8386EA659444F91DC92AABFF9766446AEE5EBC0 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
16:36:04.0509 0x08d4  KSecPkg - ok
16:36:04.0516 0x08d4  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
16:36:04.0517 0x08d4  ksthunk - ok
16:36:04.0542 0x08d4  [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm           C:\Windows\system32\msdtckrm.dll
16:36:04.0556 0x08d4  KtmRm - ok
16:36:04.0576 0x08d4  [ 305BB2AC00D46542E0A653AB63F4ABB1, E3BE57A0EBB1194656D20C11688863A7864B06223419F688D82881F9F49604B6 ] LADF_CaptureOnly C:\Windows\system32\DRIVERS\ladfGSCamd64.sys
16:36:04.0590 0x08d4  LADF_CaptureOnly - ok
16:36:04.0598 0x08d4  [ 28CDDC7D478A6313F55077416DCBD0DE, EE4174FC9444856DF0693D1A5F16EB88352A3B012AA82D49C462980703981A7A ] LADF_RenderOnly C:\Windows\system32\DRIVERS\ladfGSRamd64.sys
16:36:04.0602 0x08d4  LADF_RenderOnly - ok
16:36:04.0620 0x08d4  [ CA2828DDE4B09FEFFDB7CE68B3D8D00A, B514792FF1EF36C678BB51644A1C420105D5E2CD6DD5A89A3FB252D08277A40C ] LanmanServer    C:\Windows\system32\srvsvc.dll
16:36:04.0633 0x08d4  LanmanServer - ok
16:36:04.0648 0x08d4  [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:36:04.0661 0x08d4  LanmanWorkstation - ok
16:36:04.0685 0x08d4  [ 2B7479EB47731A8ACBA28AF4C4BDA32D, 67AEB98E7B41337FEFD92CC81BFAD25FBB679998B318C110A4873B1AD8927A97 ] lfsvc           C:\Windows\System32\GeofenceMonitorService.dll
16:36:04.0703 0x08d4  lfsvc - ok
16:36:04.0711 0x08d4  [ FA529FB35694C24BF98A9EF67C1CD9D0, 7B3C587C38CF13D514140F0A55E58997D6071D1DEFD97E274E3F490660AC6075 ] LGBusEnum       C:\Windows\system32\drivers\LGBusEnum.sys
16:36:04.0712 0x08d4  LGBusEnum - ok
16:36:04.0717 0x08d4  [ 94B29CE153765E768F004FB3440BE2B0, E74C01CEBDA589CDDE35CBCBAA18700E3742DD3B48A90DB3630992467FFC5024 ] LGVirHid        C:\Windows\system32\drivers\LGVirHid.sys
16:36:04.0718 0x08d4  LGVirHid - ok
16:36:04.0726 0x08d4  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
16:36:04.0729 0x08d4  lltdio - ok
16:36:04.0746 0x08d4  [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc         C:\Windows\System32\lltdsvc.dll
16:36:04.0757 0x08d4  lltdsvc - ok
16:36:04.0763 0x08d4  [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts         C:\Windows\System32\lmhsvc.dll
16:36:04.0765 0x08d4  lmhosts - ok
16:36:04.0792 0x08d4  [ 6A35B295812CE7064CFBCD9F254169CF, 561DD131FED6F90686D8C031B45B87B6D065C7E0C8804AEFCDE239725AAEE43E ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
16:36:04.0804 0x08d4  LMS - ok
16:36:04.0817 0x08d4  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
16:36:04.0821 0x08d4  LSI_SAS - ok
16:36:04.0831 0x08d4  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
16:36:04.0835 0x08d4  LSI_SAS2 - ok
16:36:04.0844 0x08d4  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\Windows\system32\drivers\lsi_sas3.sys
16:36:04.0847 0x08d4  LSI_SAS3 - ok
16:36:04.0855 0x08d4  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys
16:36:04.0858 0x08d4  LSI_SSS - ok
16:36:04.0890 0x08d4  [ 9A7A7E45DAED2E8C2816716D8D28236A, C94787988826E546A8DC752BD6BE4EA7423DC3762B2D371DB297A63F865A95FF ] LSM             C:\Windows\System32\lsm.dll
16:36:04.0916 0x08d4  LSM - ok
16:36:04.0928 0x08d4  [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv           C:\Windows\system32\drivers\luafv.sys
16:36:04.0932 0x08d4  luafv - ok
16:36:04.0938 0x08d4  [ 1E9E32AEC3E1EB1B31B8169F33168B56, 39114585E1FDBBA31E1F781C6A627281907183F94626EB347B08D1F78992ED2A ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
16:36:04.0939 0x08d4  MBAMProtector - ok
16:36:05.0009 0x08d4  [ 516E29AD03BDF610CC36A95AE692FE42, 09F913B169AD775FF587AE59AEC5DD2A2D8646803F48BF616C74EEC0DE3BE7A2 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
16:36:05.0069 0x08d4  MBAMScheduler - ok
16:36:05.0115 0x08d4  [ 2B983F067AEE3F9EB4DF5E97F45D21D1, 0B9ED0E91FF01A5445927650113E320C3C0EA16F1401AA55A509DDBF704DF22F ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
16:36:05.0156 0x08d4  MBAMService - ok
16:36:05.0173 0x08d4  [ E9CD058C79EA15B4AA93E259FA713B07, 2B09F65188D8782F9C797545F2F791EC7EAB85D8914B2C0B30BD869C412E3980 ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
16:36:05.0180 0x08d4  MBAMSwissArmy - ok
16:36:05.0190 0x08d4  [ 28B597A61C9AC9B59BC0573D70A62CBF, 032C095ECDAEEE800BD9C7AB08C089E7530A9DD09AE577D1612035F2BFFAA61C ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
16:36:05.0194 0x08d4  MBAMWebAccessControl - ok
16:36:05.0204 0x08d4  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\Windows\system32\drivers\megasas.sys
16:36:05.0207 0x08d4  megasas - ok
16:36:05.0250 0x08d4  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\Windows\system32\drivers\megasr.sys
16:36:05.0279 0x08d4  megasr - ok
16:36:05.0293 0x08d4  [ 1BC9159CF58BABD89419072EA180A8F6, 6C9AB779C2355A341800A8F93AAAF9B19FAFF444CD6A7BD27C63D53F379A75EF ] MEIx64          C:\Windows\system32\DRIVERS\TeeDriverx64.sys
16:36:05.0300 0x08d4  MEIx64 - ok
16:36:05.0311 0x08d4  [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS           C:\Windows\system32\mmcss.dll
16:36:05.0317 0x08d4  MMCSS - ok
16:36:05.0326 0x08d4  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\Windows\system32\drivers\modem.sys
16:36:05.0329 0x08d4  Modem - ok
16:36:05.0339 0x08d4  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\Windows\System32\drivers\monitor.sys
16:36:05.0341 0x08d4  monitor - ok
16:36:05.0351 0x08d4  [ 08374E4E5B8914DE6067CBA99F61E930, CBB1390D6523FC968BEDF78FD13699488621ACB2CD1DF55D1606316090548661 ] mouclass        C:\Windows\System32\drivers\mouclass.sys
16:36:05.0355 0x08d4  mouclass - ok
16:36:05.0364 0x08d4  [ 5FCBAB60598AE119E02B4C27DE6B99EA, 36F30094F700DE41C293047ACB49ED1961DD927BEDAD8DFDAB7023D4D24CB0DE ] mouhid          C:\Windows\System32\drivers\mouhid.sys
16:36:05.0366 0x08d4  mouhid - ok
16:36:05.0379 0x08d4  [ D1D82F007A079A4D623DBD1F36EF30A1, 7901F81B62C5A4196D75A10C05386B16831CB290EFB9A1611CECF281068C520F ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
16:36:05.0385 0x08d4  mountmgr - ok
16:36:05.0397 0x08d4  [ DD370A8148862150BA81A3F5C56A1E40, F56B84297BDC32266CB69D10FB2D66B8B332D60CAB7E64E4E3AC2BB749BBD31B ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:36:05.0405 0x08d4  MozillaMaintenance - ok
16:36:05.0416 0x08d4  [ 6FC047578785B0435F4E2660946D1ADC, 8AEA5659F01FC2F75160922C69622502DABA39F33CB90D5178DD679A1CDE617D ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
16:36:05.0420 0x08d4  mpsdrv - ok
16:36:05.0471 0x08d4  [ C18AA14126ADC66478E8E962B2DFAA98, A6F8CE9D88D590DC083253004392572C3BD02C33433CD6C0D9117D2AA7171EEC ] MpsSvc          C:\Windows\system32\mpssvc.dll
16:36:05.0516 0x08d4  MpsSvc - ok
16:36:05.0532 0x08d4  [ DB32958F0E704EFBF7F15161A569E39F, 8A26448B954F8A16EE9BA72EF47F6C549A75B30BD13FEB5A29EB099A74D8F678 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
16:36:05.0540 0x08d4  MRxDAV - ok
16:36:05.0568 0x08d4  [ 31233271EDE50D1BBB220F78AFA60486, 2122FAB5BD353DF63CF0FE9CEDBD5DFD1F26F2DE04303E1B3FFB03AA02AECED9 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
16:36:05.0588 0x08d4  mrxsmb - ok
16:36:05.0612 0x08d4  [ 3E28B99198B514DFEB152EACF913025E, 6C1D8353DCD5F811F39C0C3CB5DF3D2457F0D17EE80FB06196AA169E3D19E9B2 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:36:05.0627 0x08d4  mrxsmb10 - ok
16:36:05.0647 0x08d4  [ 6276AC2AA203CF47811F6EFBBD214FBF, AE55D87D863A626347B0074F4E962080F1989A94153DAF8475593249F616DA2F ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:36:05.0657 0x08d4  mrxsmb20 - ok
16:36:05.0670 0x08d4  [ F3C060444777A59FC63D920719E43CCD, 8766A2746E3DFB0749E902F458141269335CA6F0CEDCA3D5F8C204637C19E783 ] MsBridge        C:\Windows\system32\DRIVERS\bridge.sys
16:36:05.0677 0x08d4  MsBridge - ok
16:36:05.0691 0x08d4  [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC           C:\Windows\System32\msdtc.exe
16:36:05.0700 0x08d4  MSDTC - ok
16:36:05.0716 0x08d4  [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\Windows\system32\drivers\Msfs.sys
16:36:05.0718 0x08d4  Msfs - ok
16:36:05.0728 0x08d4  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys
16:36:05.0731 0x08d4  msgpiowin32 - ok
16:36:05.0739 0x08d4  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
16:36:05.0740 0x08d4  mshidkmdf - ok
16:36:05.0748 0x08d4  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys
16:36:05.0749 0x08d4  mshidumdf - ok
16:36:05.0757 0x08d4  [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
16:36:05.0759 0x08d4  msisadrv - ok
16:36:05.0774 0x08d4  [ 4EAEEBAC8CFF4E0D717DFA920BC58A90, A65CB1BB3392B6A04B978348CAC18A414560A6B04A727F22DFC0ADB20DD3AF6B ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
16:36:05.0784 0x08d4  MSiSCSI - ok
16:36:05.0791 0x08d4  msiserver - ok
16:36:05.0804 0x08d4  [ 4C1A0E9B4C6CC09E8C68FD33998013AA, 190ADFCCAE844DB9F807BD9668EB90BE0C9887719DF2820E66D121655AF27614 ] MsKeyboardFilter C:\Windows\System32\KeyboardFilterSvc.dll
16:36:05.0810 0x08d4  MsKeyboardFilter - ok
16:36:05.0819 0x08d4  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
16:36:05.0821 0x08d4  MSKSSRV - ok
16:36:05.0832 0x08d4  [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp          C:\Windows\system32\DRIVERS\mslldp.sys
16:36:05.0836 0x08d4  MsLldp - ok
16:36:05.0845 0x08d4  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
16:36:05.0846 0x08d4  MSPCLOCK - ok
16:36:05.0855 0x08d4  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
16:36:05.0856 0x08d4  MSPQM - ok
16:36:05.0886 0x08d4  [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
16:36:05.0904 0x08d4  MsRPC - ok
16:36:05.0918 0x08d4  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
16:36:05.0920 0x08d4  mssmbios - ok
16:36:05.0927 0x08d4  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
16:36:05.0929 0x08d4  MSTEE - ok
16:36:05.0937 0x08d4  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
16:36:05.0938 0x08d4  MTConfig - ok
16:36:05.0949 0x08d4  [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup             C:\Windows\system32\Drivers\mup.sys
16:36:05.0954 0x08d4  Mup - ok
16:36:05.0964 0x08d4  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\Windows\system32\drivers\mvumis.sys
16:36:05.0968 0x08d4  mvumis - ok
16:36:05.0998 0x08d4  [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent        C:\Windows\system32\qagentRT.dll
16:36:06.0022 0x08d4  napagent - ok
16:36:06.0057 0x08d4  [ 008F7CED69FD5B30CBDE1E03C6F36A27, D4ADA7834C470B17A3CD976012DC5A511B32545B9F91D23D09A85722E0B75320 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
16:36:06.0079 0x08d4  NativeWifiP - ok
16:36:06.0097 0x08d4  [ BFCE1225D10619029E68946929CEB64C, 499F560331FFBA82E3D673B47F027FDAB7BEE4F2CB5B811D69E0218839F6E6A5 ] NcaSvc          C:\Windows\System32\ncasvc.dll
16:36:06.0108 0x08d4  NcaSvc - ok
16:36:06.0127 0x08d4  [ 267C97373110B7AFD3B46DF60B6CBB85, CEBB99F71D47634BB9C04DF2836DF6B47F15B3073FEFC237F85526DF01E4E38B ] NcbService      C:\Windows\System32\ncbservice.dll
16:36:06.0137 0x08d4  NcbService - ok
16:36:06.0148 0x08d4  [ 9ACED0F5B458C9011F39143326494E93, 9DFFC7EE7DE6FD92545EC6A203213C498A01EEFB0BC55460D339BCE498E56A7F ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
16:36:06.0155 0x08d4  NcdAutoSetup - ok
16:36:06.0220 0x08d4  [ 6D3A2565E01B3E4B0F1BEDB0D4B00B3F, 95F2608E17CA3E25BD7958D1A49F7030EC8088BC1DF12422F1DAC5BA99113E34 ] NDIS            C:\Windows\system32\drivers\ndis.sys
16:36:06.0275 0x08d4  NDIS - ok
16:36:06.0289 0x08d4  [ 8CECC8DA55F3274181FD1EA28AD76664, 188112424CEF97FB926A0FB915260B803555A775DD2E1846725A9C8616300F42 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
16:36:06.0292 0x08d4  NdisCap - ok
16:36:06.0307 0x08d4  [ 269882812E9A68FFF1AFE1283D428322, 50B99EBC42DA9B46A8C2C28C9BADCF58AE3079535CDD1227D0F5C86291C715FF ] NdisImPlatform  C:\Windows\system32\DRIVERS\NdisImPlatform.sys
16:36:06.0314 0x08d4  NdisImPlatform - ok
16:36:06.0323 0x08d4  [ DC1D9F692C2AD84C214584C28501C1F7, 96FC0D1EC48FED963E02648541A2AAC8E72ED00D797EA8E3D0ED02F5EB4816C5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
16:36:06.0325 0x08d4  NdisTapi - ok
16:36:06.0336 0x08d4  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
16:36:06.0340 0x08d4  Ndisuio - ok
16:36:06.0347 0x08d4  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\Windows\System32\drivers\NdisVirtualBus.sys
16:36:06.0349 0x08d4  NdisVirtualBus - ok
16:36:06.0370 0x08d4  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
16:36:06.0381 0x08d4  NdisWan - ok
16:36:06.0402 0x08d4  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy   C:\Windows\system32\DRIVERS\ndiswan.sys
16:36:06.0413 0x08d4  NdisWanLegacy - ok
16:36:06.0424 0x08d4  [ 0BBE2FA30BAD58C9ADC01E4F84A3D2A1, 913AEC8A5F735C2EFDCB417E4077AB5A15457C601E6E88A1F4FA52C91E6E0BBF ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
16:36:06.0428 0x08d4  NDProxy - ok
16:36:06.0440 0x08d4  [ 3083926D1CC5B56EA0786527B557DD1B, 3C3F0CA0D43398576DBE8F677B353ADDA7E8F56829874958CE668E31261C1590 ] Ndu             C:\Windows\system32\drivers\Ndu.sys
16:36:06.0446 0x08d4  Ndu - ok
16:36:06.0455 0x08d4  [ F69CE47C64A55E92B1CDAB37CBDFA518, 5B7968D6FA586FC60B489B53CB504A86C6FF2BC94F697C2EFAC73B278AB7BC19 ] Net Driver HPZ12 C:\Windows\System32\HPZinw12.dll
16:36:06.0460 0x08d4  Net Driver HPZ12 - ok
16:36:06.0471 0x08d4  [ 42FF4975D032CAE558AE4BB8448F6E5A, 0B8FACF3382443DED79A8004A6AA14C32471A6A1C6BAA543AA9F3FEC52620A6D ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
16:36:06.0474 0x08d4  NetBIOS - ok
16:36:06.0498 0x08d4  [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
16:36:06.0512 0x08d4  NetBT - ok
16:36:06.0521 0x08d4  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] Netlogon        C:\Windows\system32\lsass.exe
16:36:06.0526 0x08d4  Netlogon - ok
16:36:06.0551 0x08d4  [ 8F074B62E66B6117D9598C62A12069C5, 5FDB19045D3E2F6D0F0C5158AC2ECB0D5404CD2AF7A319755D7E3753CA3B7CF3 ] Netman          C:\Windows\System32\netman.dll
16:36:06.0567 0x08d4  Netman - ok
16:36:06.0608 0x08d4  [ 4A04B1CD5BFB4A978C5F60E86D6C3E45, A946922C1C38ADD3CF9D3B09DDCC301AE4DAC960A081B2F42B32BE1E7095B3FD ] netprofm        C:\Windows\System32\netprofmsvc.dll
16:36:06.0638 0x08d4  netprofm - ok
16:36:06.0666 0x08d4  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:36:06.0673 0x08d4  NetTcpPortSharing - ok
16:36:06.0686 0x08d4  [ D4DCE03870314D3354F3501F9DDD4123, 5BFE8299B3F72B8C39A4965365CBF5BA151024451F02DD872FAD1CC35CF94CEA ] netvsc          C:\Windows\System32\drivers\netvsc63.sys
16:36:06.0691 0x08d4  netvsc - ok
16:36:06.0721 0x08d4  [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc          C:\Windows\System32\nlasvc.dll
16:36:06.0742 0x08d4  NlaSvc - ok
16:36:06.0753 0x08d4  [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
16:36:06.0756 0x08d4  Npfs - ok
16:36:06.0766 0x08d4  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\Windows\System32\drivers\npsvctrig.sys
16:36:06.0768 0x08d4  npsvctrig - ok
16:36:06.0778 0x08d4  [ 0F12A72A753CFD7FB0631EE8D08FE983, 860A96471F6CD90DDA9AB3A48E95CEAD826C87D2FA98A00EF91B61C44A4C8B82 ] nsi             C:\Windows\system32\nsisvc.dll
16:36:06.0782 0x08d4  nsi - ok
16:36:06.0791 0x08d4  [ 0E046FF5823B95326D10CF1B4AF23541, 39D22715003746527AB4BFEDED8C34B695DAF589091AE7F3A2A2C4B8A35675A9 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
16:36:06.0794 0x08d4  nsiproxy - ok
16:36:06.0927 0x08d4  [ 7F68063A5A0461E02BC860CE0E6BFDDC, 47E9F75D27B97278B74034B7D3951A26B1644911ED321455E08D935731C858DE ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
16:36:07.0024 0x08d4  Ntfs - ok
16:36:07.0038 0x08d4  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\Windows\system32\drivers\Null.sys
16:36:07.0040 0x08d4  Null - ok
16:36:07.0056 0x08d4  [ 7E4355930B28C2798D9F09AB9F81151F, 941C730F3B75BDF99639E76350031EDD15F18D8D860F3B1282C28B62096E7717 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
16:36:07.0066 0x08d4  NVHDA - ok
16:36:07.0549 0x08d4  [ ED4D88A04D22E6B00DB6BC8FACDBAFED, 38DDB9B353D3A24DD8390C6FB58FD513B46F9F715BC7E68D0958E78EACC3D3FA ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
16:36:07.0944 0x08d4  nvlddmkm - ok
16:36:07.0976 0x08d4  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
16:36:07.0981 0x08d4  nvraid - ok
16:36:07.0994 0x08d4  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
16:36:08.0000 0x08d4  nvstor - ok
16:36:08.0003 0x08d4  NvStreamKms - ok
16:36:08.0043 0x08d4  [ B7CD89EFA562A991F2864EFD3147473A, D38BAE7883BC073562C3C77DF59663B820CFE8305A3319C6E5CF8E48752E18C1 ] nvsvc           C:\Windows\system32\nvvsvc.exe
16:36:08.0074 0x08d4  nvsvc - ok
16:36:08.0082 0x08d4  [ 288D387C13E1760B3430B68A0C6A1CDB, 5EFBAE25C8AAC93A82331632F61099FE7BBC42EF15B689E534EB0A96EDD60CDA ] NVVADARM        C:\Windows\system32\drivers\nvvadarm.sys
16:36:08.0083 0x08d4  NVVADARM - ok
16:36:08.0088 0x08d4  nvvad_WaveExtensible - ok
16:36:08.0098 0x08d4  [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
16:36:08.0102 0x08d4  nv_agp - ok
16:36:08.0235 0x08d4  [ D06C2368C93396C6B983CE60523BA99F, ABC90E2DC2DE577AFA37BF34630502AA209C9556DFCC1757844D95D9370FFA8C ] Origin Client Service F:\Program Files (x86)\Origin\OriginClientService.exe
16:36:08.0328 0x08d4  Origin Client Service - ok
16:36:08.0347 0x08d4  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:36:08.0355 0x08d4  ose - ok
16:36:08.0381 0x08d4  [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
16:36:08.0403 0x08d4  p2pimsvc - ok
16:36:08.0433 0x08d4  [ FD8F61F0D1F64BBB3D835F39A3F979C9, E5C5F86576488EA7F605E26C06EE5AFB36506A446F60C894D55E0A148BF7F02D ] p2psvc          C:\Windows\system32\p2psvc.dll
16:36:08.0457 0x08d4  p2psvc - ok
16:36:08.0474 0x08d4  [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport         C:\Windows\System32\drivers\parport.sys
16:36:08.0479 0x08d4  Parport - ok
16:36:08.0491 0x08d4  [ BAFF6122CFC9F95CA175AD8C348179A4, 079A912D951DF6A57BC1BDB0D182977EE9592751EC9DDCDA2932BDEDB333850C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
16:36:08.0496 0x08d4  partmgr - ok
16:36:08.0536 0x08d4  [ ABE95ABE27A8BD9701782BBCD82C9925, AE3BA1E9ECDE692374D8DAC95A8DAA289DD2470E3D8D58EFAD9F83A37F3AC8E5 ] PcaSvc          C:\Windows\System32\pcasvc.dll
16:36:08.0561 0x08d4  PcaSvc - ok
16:36:08.0592 0x08d4  [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci             C:\Windows\system32\drivers\pci.sys
16:36:08.0606 0x08d4  pci - ok
16:36:08.0614 0x08d4  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\Windows\system32\drivers\pciide.sys
16:36:08.0616 0x08d4  pciide - ok
16:36:08.0633 0x08d4  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
16:36:08.0639 0x08d4  pcmcia - ok
16:36:08.0649 0x08d4  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\Windows\system32\drivers\pcw.sys
16:36:08.0652 0x08d4  pcw - ok
16:36:08.0663 0x08d4  [ ED54A75050211DC77F9B98C41E026858, F92FB59ADE88469EAA50E91D43165C68CC32FDE11595A0069FD43103A674FE44 ] pdc             C:\Windows\system32\drivers\pdc.sys
16:36:08.0668 0x08d4  pdc - ok
16:36:08.0718 0x08d4  [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
16:36:08.0751 0x08d4  PEAUTH - ok
16:36:08.0897 0x08d4  [ A35EC8F902475350DA31BDF0E1402A91, 5AB43B4BD70B44A62FFD21A9D3CB8D1BC035B6E001DBB1BAC30D6D7A07475D83 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
16:36:09.0008 0x08d4  PeerDistSvc - ok
16:36:09.0043 0x08d4  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\Windows\SysWow64\perfhost.exe
16:36:09.0047 0x08d4  PerfHost - ok
16:36:09.0159 0x08d4  [ 70B39E7241F750A248798CE82C44596D, 54A72199EB277EE586611DCBC21654786FD2196F91D5884C4F531297893CC3EC ] pla             C:\Windows\system32\pla.dll
16:36:09.0235 0x08d4  pla - ok
16:36:09.0253 0x08d4  [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
16:36:09.0263 0x08d4  PlugPlay - ok
16:36:09.0274 0x08d4  [ 1C5C9532D52D1C81E44BE2A43C02D5E8, 90A11C87A8D1A99FB842F291B9576DCA02381B3DB8D67390AEBA56BAB1B9A833 ] Pml Driver HPZ12 C:\Windows\System32\HPZipm12.dll
16:36:09.0279 0x08d4  Pml Driver HPZ12 - ok
16:36:09.0286 0x08d4  PnkBstrA - ok
16:36:09.0295 0x08d4  [ 4570F8A37D221660F3A09D6F4DD4BA94, 0EA190CFFA53DF9CCA2D53A4EF1BCB837BA3F2489A3AC5BD11F6D6ED811D118E ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
16:36:09.0300 0x08d4  PNRPAutoReg - ok
16:36:09.0325 0x08d4  [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
16:36:09.0347 0x08d4  PNRPsvc - ok
16:36:09.0397 0x08d4  [ BDD52AB4AEBB8B1904568DBD0CCB70CB, C3D1DBA349C79B43DCDD9EF5255C5EE973EFB844235B808B5EF9B63A51FF00AA ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
16:36:09.0418 0x08d4  PolicyAgent - ok
16:36:09.0453 0x08d4  [ C8DD82C3035E60D671B8CC5DF128D3A9, 6AABF632CBEDA9A7B553BC9134FF100CB6FDC88000D499D2883408FCEDD97576 ] Power           C:\Windows\system32\umpo.dll
16:36:09.0460 0x08d4  Power - ok
16:36:09.0614 0x08d4  [ 3C96A45CA3403A276B0F045C448EC27B, C0011DB8C5A85817CAF815CC0095EE2C1CDD5964DCD8EAF4C35A2495D6A873CC ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
16:36:09.0750 0x08d4  PrintNotify - ok
16:36:09.0769 0x08d4  [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\Windows\System32\drivers\processr.sys
16:36:09.0774 0x08d4  Processor - ok
16:36:09.0790 0x08d4  [ 19424364D8C03B990C4281BE53963FD0, 958FC8436E6B754858E20BC48B0D4B269991E8CA94C15C2761BF04ED52591907 ] ProfSvc         C:\Windows\system32\profsvc.dll
16:36:09.0801 0x08d4  ProfSvc - ok
16:36:09.0814 0x08d4  [ FC0141B4A5AD6D637D883C1A89FC45C5, DCE8942C02EEDAE7A57707CA60CAC3A8CD6BA68E6571E405CA882D4DD6D69E43 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
16:36:09.0820 0x08d4  Psched - ok
16:36:09.0829 0x08d4  [ C7965E4418EFACDDFE578FA2216753F8, 130ACE7B0B1E7721C402A31C491B360DADE710D5CB0CE542517F9BCC5B151F6E ] QBCFMonitorService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
16:36:09.0831 0x08d4  QBCFMonitorService - ok
16:36:09.0841 0x08d4  [ 9EE9AA5D1FB3F3B99467A20B03B47C5D, 5C43150DF7FC7786DD7568219860BEC89460EE13889B37F01A6D15D4059EC146 ] QBFCService     C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
16:36:09.0844 0x08d4  QBFCService - ok
16:36:09.0920 0x08d4  [ 4347F8AD6D63BF75A6075B9817C3AE26, 5F7F595FBE1FC8745F3817E5A5773FBA3BC23AAB2D674FCD74C6B0BAFFAC06BA ] QBVSS           C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe
16:36:09.0976 0x08d4  QBVSS - ok
16:36:10.0007 0x08d4  [ DAA9DEE0A5D5F238C4EE54C2C7FB67C5, 7EC8C603BD92699AC35BDCD294F13BEE90D5C2C195FD93A3F16928BFCF53CA93 ] QWAVE           C:\Windows\system32\qwave.dll
16:36:10.0025 0x08d4  QWAVE - ok
16:36:10.0035 0x08d4  [ 83868EB2924E6BC21A54337C65D614D1, 8D1BE01EBD190231153B867C32120DC8FBFBD32050448A778134D435D76A0B07 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
16:36:10.0038 0x08d4  QWAVEdrv - ok
16:36:10.0046 0x08d4  [ B337B1F1E82A83E20A1743E008E25C0F, A2E8AF041B4CAB78AEE28A2147A189FF0F9D2FCEFB167D60FBBA0A787A5A5BE7 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
16:36:10.0048 0x08d4  RasAcd - ok
16:36:10.0061 0x08d4  [ 044638489B4A5FE5334F46C5314A0826, E06CC2A9EF369794DAD69FBB5AFD1676D4283DDAB2AD5E3EFE454C473F62F955 ] RasAuto         C:\Windows\System32\rasauto.dll
16:36:10.0069 0x08d4  RasAuto - ok
16:36:10.0111 0x08d4  [ F83B38FCD4F69157B3D158433FA149CC, AB103BD3E2B3B134CB355C556DF70BCF0CF4DB11EFF7DB4A9876D5AA43D81293 ] RasMan          C:\Windows\System32\rasmans.dll
16:36:10.0140 0x08d4  RasMan - ok
16:36:10.0156 0x08d4  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
16:36:10.0160 0x08d4  RasPppoe - ok
16:36:10.0193 0x08d4  [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
16:36:10.0213 0x08d4  rdbss - ok
16:36:10.0227 0x08d4  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
16:36:10.0229 0x08d4  rdpbus - ok
16:36:10.0249 0x08d4  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
16:36:10.0259 0x08d4  RDPDR - ok
16:36:10.0274 0x08d4  [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:36:10.0276 0x08d4  RdpVideoMiniport - ok
16:36:10.0297 0x08d4  [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
16:36:10.0310 0x08d4  rdyboost - ok
16:36:10.0365 0x08d4  [ 615DFD97DEA56CE1C3A52185A3038FF8, 707BF5F9FAE478A12656D15013F507CC1335E7B72BD21CA99BB813CB95E37BC0 ] ReFS            C:\Windows\system32\drivers\ReFS.sys
16:36:10.0410 0x08d4  ReFS - ok
16:36:10.0435 0x08d4  [ 0CF7CB56BF2D5E9DBCEE0185CB626FAD, 2BD2E2FB1D2EADD1F70EF55E8523C353F95D4FEB1BAD5017FA4D94F790F27825 ] RemoteAccess    C:\Windows\System32\mprdim.dll
16:36:10.0449 0x08d4  RemoteAccess - ok
16:36:10.0469 0x08d4  [ AC8785B53F8436058C90450DA1840AE7, CC1FFC2713910211F8A6AD532DBB9253ACD188CBD784F1BE6613DF382825A3C1 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
16:36:10.0482 0x08d4  RemoteRegistry - ok
16:36:10.0504 0x08d4  [ DC66AE45816614D2999DCD3834DCCC4E, 1C26225135E851DDD1307F52401DD7055B26B3F3B8FDD693B21042C2896E235A ] RFCOMM          C:\Windows\System32\drivers\rfcomm.sys
16:36:10.0513 0x08d4  RFCOMM - ok
16:36:10.0527 0x08d4  [ 65B9FDE300A6DECC03BA44C4616DCAD6, CAD992982733DD20282A3453DC4E554AE1FC077C35479C0CA4E8BC3A9DCD3BB0 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
16:36:10.0534 0x08d4  RpcEptMapper - ok
16:36:10.0542 0x08d4  [ A737B433ABAF3F2DCB2BD7B4CC582B26, 3B5706B0CF0969A9F82060FD4DCC745F2D83C066B663FE8A4F0F493B64032C9C ] RpcLocator      C:\Windows\system32\locator.exe
16:36:10.0545 0x08d4  RpcLocator - ok
16:36:10.0593 0x08d4  [ A6F17C299A03BAFEFB9257C462A19E00, EB68967D28355271897166D7B6FD963D1E546D3C24AE1AEAAC561F94357A9345 ] RpcSs           C:\Windows\system32\rpcss.dll
16:36:10.0636 0x08d4  RpcSs - ok
16:36:10.0649 0x08d4  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
16:36:10.0654 0x08d4  rspndr - ok
16:36:10.0662 0x08d4  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\Windows\System32\drivers\vms3cap.sys
16:36:10.0663 0x08d4  s3cap - ok
16:36:10.0672 0x08d4  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] SamSs           C:\Windows\system32\lsass.exe
16:36:10.0677 0x08d4  SamSs - ok
16:36:10.0693 0x08d4  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
16:36:10.0698 0x08d4  sbp2port - ok
16:36:10.0719 0x08d4  [ 74A3B67F03877D06B09B1B40C5ED582E, A8FF9BF416F0BF365BFB4E1796859825C811A74B5E54DDDCE8345193BEEBE206 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
16:36:10.0731 0x08d4  SCardSvr - ok
16:36:10.0746 0x08d4  [ 8B9C4D55B4A536FB01C360DDB9533574, 9B939FE68F6F9C171ED0D91E2CE1E67515295D34EC23606BCDFD097DCC8CFD4A ] ScDeviceEnum    C:\Windows\System32\ScDeviceEnum.dll
16:36:10.0755 0x08d4  ScDeviceEnum - ok
16:36:10.0765 0x08d4  [ 13BEA6C882D4D877A5A85CA149C86BC1, 8E9BE5C2A36D5881D9985C3A31309FE03966EA13A3541D3C5B542AB67FA0D55F ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
16:36:10.0768 0x08d4  scfilter - ok
16:36:10.0849 0x08d4  [ A626F5E446860F22835E783142D7AE33, 3A786639E1FABCA512F4F91A10811DD3C4D9C9C9BB893362E4D019219D0BD8E2 ] Schedule        C:\Windows\system32\schedsvc.dll
16:36:10.0913 0x08d4  Schedule - ok
16:36:10.0935 0x08d4  [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] SCPolicySvc     C:\Windows\System32\certprop.dll
16:36:10.0944 0x08d4  SCPolicySvc - ok
16:36:10.0962 0x08d4  [ C54B6B2170BF628FD42F799A66956D75, BCF460A124CAA6F1F1A9A7BCBDCC2D5E39B0404D96B7C9FFAC806E041782B91E ] sdbus           C:\Windows\System32\drivers\sdbus.sys
16:36:10.0974 0x08d4  sdbus - ok
16:36:10.0989 0x08d4  [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor          C:\Windows\System32\drivers\sdstor.sys
16:36:10.0993 0x08d4  sdstor - ok
16:36:11.0002 0x08d4  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
16:36:11.0004 0x08d4  secdrv - ok
16:36:11.0014 0x08d4  [ BA24CEA7152239F42ECD04AFB7C89D24, A2A11EABB0C283772B74667C7544B61BEB1B9745FBF065E831542129EB585AFA ] seclogon        C:\Windows\system32\seclogon.dll
16:36:11.0019 0x08d4  seclogon - ok
16:36:11.0031 0x08d4  [ 81FE9A81EDF8016816C9E91FBFBF7D35, 87FB92A3D15F312F0B9C423EF851061A944B013E5668D8C9A441B4DC0EB690AF ] SENS            C:\Windows\System32\sens.dll
16:36:11.0038 0x08d4  SENS - ok
16:36:11.0057 0x08d4  [ 6E4012AE67F09F867EF620C8D5524C0B, 63933E51F8E413E63481369CE2F9FD224560550FBD3BD2B4573E9F4AD88708A2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
16:36:11.0072 0x08d4  SensrSvc - ok
16:36:11.0084 0x08d4  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\Windows\system32\drivers\SerCx.sys
16:36:11.0088 0x08d4  SerCx - ok
16:36:11.0104 0x08d4  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\Windows\system32\drivers\SerCx2.sys
16:36:11.0112 0x08d4  SerCx2 - ok
16:36:11.0121 0x08d4  [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum         C:\Windows\System32\drivers\serenum.sys
16:36:11.0123 0x08d4  Serenum - ok
16:36:11.0137 0x08d4  [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial          C:\Windows\System32\drivers\serial.sys
16:36:11.0142 0x08d4  Serial - ok
16:36:11.0152 0x08d4  [ 148195AE95D9BC7375A08846439FDAC1, 3A2F78FD18AA7A6D659921E19335E943894530874AC5AB5E7219CEF28FA54F7A ] sermouse        C:\Windows\System32\drivers\sermouse.sys
16:36:11.0154 0x08d4  sermouse - ok
16:36:11.0189 0x08d4  [ 3A2F1A7472C3B7CC9B89C8516C726488, 9BCBBAC10C900EA7B30822B463A77EE5067F217C4B490857A09E5277983CB89B ] SessionEnv      C:\Windows\system32\sessenv.dll
16:36:11.0209 0x08d4  SessionEnv - ok
16:36:11.0221 0x08d4  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\Windows\System32\drivers\sfloppy.sys
16:36:11.0223 0x08d4  sfloppy - ok
16:36:11.0254 0x08d4  [ 8081FF3DAE8159FE8956B09BC29CE983, AC0F305AEE8B1AB2E1275F1D33EC1D2F3E23F234F831BD9D41F415A94A19D3AB ] SharedAccess    C:\Windows\System32\ipnathlp.dll
16:36:11.0278 0x08d4  SharedAccess - ok
16:36:11.0322 0x08d4  [ 7FD9A61A3523A61FC135D61D6E160314, 409E1CF7A62FD90CBC31AEAFBB7230B02DBEC6CFCA2D266D221A7643FAEBA13B ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:36:11.0357 0x08d4  ShellHWDetection - ok
16:36:11.0368 0x08d4  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
16:36:11.0371 0x08d4  SiSRaid2 - ok
16:36:11.0382 0x08d4  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
16:36:11.0386 0x08d4  SiSRaid4 - ok
16:36:11.0395 0x08d4  [ 5A474BBF8689F73BD28AD224A4BD0102, 20FDEAE8EF71B6503BDF13035CF5A2C11B19347B54D684F6399DDBBC83413593 ] SmbDrvI         C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys
16:36:11.0397 0x08d4  SmbDrvI - ok
16:36:11.0405 0x08d4  [ 3C84DCCE5B322F745A75CA8BA3A0F6B3, 1FB94A8A1C63D6FDB82E28ED5B696B3CB1F64183A89A3B5153B266C292CB7815 ] smphost         C:\Windows\System32\smphost.dll
16:36:11.0410 0x08d4  smphost - ok
16:36:11.0423 0x08d4  [ D0EB0DF8C603BBA084351A92732B1CBE, E24ED8F78EF41C1BC17386AE4BBCE0DC892C5B89B12C03FC9FB61D359B13F1B4 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
16:36:11.0428 0x08d4  SNMPTRAP - ok
16:36:11.0464 0x08d4  [ D24B1945ED1F9C96DA786DBBF1E983CE, B46CB0B72B7A3DF94A46B8D65E38535C5F8E72A55CF2DC48EFA1F9A0108691C4 ] spaceport       C:\Windows\system32\drivers\spaceport.sys
16:36:11.0485 0x08d4  spaceport - ok
16:36:11.0498 0x08d4  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\Windows\system32\drivers\SpbCx.sys
16:36:11.0503 0x08d4  SpbCx - ok
16:36:11.0551 0x08d4  [ 2E3976C857D7230EC8D2B2276E688255, C0A6A84369CB3E709A6FFEBED2B38AB62D731B79D052D6D6FA8EF855BC428778 ] Spooler         C:\Windows\System32\spoolsv.exe
16:36:11.0594 0x08d4  Spooler - ok
16:36:11.0957 0x08d4  [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc          C:\Windows\system32\sppsvc.exe
16:36:12.0203 0x08d4  sppsvc - ok
16:36:12.0242 0x08d4  [ 6416E79A58A8FCC33A447A4DDDD3BF04, 839E3107ACCD520C309BD6C8324DF7A8EB724EAD442AB1F1CACB0D83F84BE488 ] srv             C:\Windows\system32\DRIVERS\srv.sys
16:36:12.0258 0x08d4  srv - ok
16:36:12.0294 0x08d4  [ 00D8AC8E3053290BDE6EA2FB6810D2FC, 957FEF84CBBAE71829529AE99A1B24F52D7831BD666442D0132FBB825409A75D ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
16:36:12.0321 0x08d4  srv2 - ok
16:36:12.0340 0x08d4  [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
16:36:12.0353 0x08d4  srvnet - ok
16:36:12.0373 0x08d4  [ CF6C3037839CF78421A94F9060C2886F, CA98C180AE03F5BE8FEFFBA75BD98DEE2AD4FA975E1EF83215C9CD2476946811 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
16:36:12.0388 0x08d4  SSDPSRV - ok
16:36:12.0404 0x08d4  [ 198A737DBA666F4808D62E9A8277A6B7, 90B6E5E2ACE95D850C913A3A1DA1F966C44955C530004C228FA93B2A536F5C27 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
16:36:12.0415 0x08d4  SstpSvc - ok
16:36:12.0435 0x08d4  [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys
16:36:12.0446 0x08d4  ssudmdm - ok
16:36:12.0494 0x08d4  [ EBAA82F7C9B97C0E450449178E007340, D470927CC216C4E3EA23236E6C6464187CD3A49C3A4A456F488FEC8E713EA31B ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
16:36:12.0534 0x08d4  Steam Client Service - ok
16:36:12.0545 0x08d4  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
16:36:12.0547 0x08d4  stexstor - ok
16:36:12.0554 0x08d4  [ 8F3C0CCF27CFFE89424F30E9FB3381AB, 74E54541B4A16DC97098428E1715A27557BAB97E05AF346F88958580199C1541 ] StillCam        C:\Windows\System32\drivers\serscan.sys
16:36:12.0556 0x08d4  StillCam - ok
16:36:12.0609 0x08d4  [ 63E9CE568CF1192771A5F0460DE7D2B9, C27B21FD2C14AD41A59EF62EB8AC95C08EB13CCB1CEECD8378B8CDD4DC352E69 ] stisvc          C:\Windows\System32\wiaservc.dll
16:36:12.0645 0x08d4  stisvc - ok
16:36:12.0658 0x08d4  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\Windows\system32\drivers\storahci.sys
16:36:12.0664 0x08d4  storahci - ok
16:36:12.0674 0x08d4  [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
16:36:12.0677 0x08d4  storflt - ok
16:36:12.0689 0x08d4  [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme        C:\Windows\system32\drivers\stornvme.sys
16:36:12.0693 0x08d4  stornvme - ok
16:36:12.0701 0x08d4  [ A45F5AC9D8069D0EC66E3CA73103073B, 996788F1C58E016E8E5CF3FD1D220A3C40AFFD6C21361A34636415DB12E0D381 ] StorSvc         C:\Windows\system32\storsvc.dll
16:36:12.0706 0x08d4  StorSvc - ok
16:36:12.0716 0x08d4  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\Windows\system32\drivers\storvsc.sys
16:36:12.0719 0x08d4  storvsc - ok
16:36:12.0729 0x08d4  [ 03618F935379614837F915D04C45FC0E, 9CC0CBA7AFC58E7F921C13FA3F5269714F1F827535A311E11EA48689C4D539DE ] storvsp         C:\Windows\System32\drivers\storvsp.sys
16:36:12.0733 0x08d4  storvsp - ok
16:36:12.0741 0x08d4  [ E395BE02F80A79A6CF973BA38DBB8135, 4C6F85B0EB8E7725BA720F9742561D229726C0D7C17505D1E79F19A5626F6325 ] svsvc           C:\Windows\system32\svsvc.dll
16:36:12.0746 0x08d4  svsvc - ok
16:36:12.0754 0x08d4  [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum          C:\Windows\System32\drivers\swenum.sys
16:36:12.0756 0x08d4  swenum - ok
16:36:12.0802 0x08d4  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
16:36:12.0828 0x08d4  SwitchBoard - ok
16:36:12.0877 0x08d4  [ 1C71D72D4997A284128FBEE770726330, 21682BDE74A1108FED1124FB1EA35A03CBFA94ABE1B89CC0FADB4DD82596C43E ] swprv           C:\Windows\System32\swprv.dll
16:36:12.0915 0x08d4  swprv - ok
16:36:12.0996 0x08d4  [ 3114CB46C2853CA71525428CB0C7CB58, A9CC51506AABBC23BAB2B90E30AB13197A72268A3DE6D2F281C1C367ED7118AE ] SysMain         C:\Windows\system32\sysmain.dll
16:36:13.0058 0x08d4  SysMain - ok
16:36:13.0088 0x08d4  [ 23BECB70654B192A7E378DEE3DBD8D42, 7596174AE7508B62C40A429645198F6A420D0CD5B62A10AB78516113584E7EDB ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
16:36:13.0106 0x08d4  SystemEventsBroker - ok
16:36:13.0124 0x08d4  [ D6A71B95ACF71ACA63B67232059F1BCD, C5CEC032E7AB507500D1CC7A4E65DA6322412C798201A9D770CBDE892E50DFC8 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:36:13.0135 0x08d4  TabletInputService - ok
16:36:13.0160 0x08d4  [ 5A5BAB1CA9621E73E25EE4744B67CDA6, 479EBD7BAE1E2AD431153FDC016742F7A8D824716EAB1A4CA87EBBD21D61DECD ] TapiSrv         C:\Windows\System32\tapisrv.dll
16:36:13.0175 0x08d4  TapiSrv - ok
16:36:13.0184 0x08d4  [ 52CB368599B9C857B308A52F080786BB, FDDEC8B4F4273FA7C6820E0092107FA5879512BDDA5D88712CB2B63CF9A1613F ] tbwkern         C:\Windows\System32\drivers\tbwkern.sys
16:36:13.0186 0x08d4  tbwkern - ok
16:36:13.0329 0x08d4  [ 3C2DF97A21A9BBE6355B0A51F288EFFF, 47BBE47CFE2379B072AEEC360C4F207059BED9AD18C55FDF2AC0DA9CAD837BFB ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
16:36:13.0424 0x08d4  Tcpip - ok
16:36:13.0583 0x08d4  [ 3C2DF97A21A9BBE6355B0A51F288EFFF, 47BBE47CFE2379B072AEEC360C4F207059BED9AD18C55FDF2AC0DA9CAD837BFB ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
16:36:13.0702 0x08d4  TCPIP6 - ok
16:36:13.0722 0x08d4  [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
16:36:13.0725 0x08d4  tcpipreg - ok
16:36:13.0742 0x08d4  [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
16:36:13.0748 0x08d4  tdx - ok
16:36:13.0759 0x08d4  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
16:36:13.0761 0x08d4  terminpt - ok
16:36:13.0843 0x08d4  [ C50997E282576DA492EBA66B059D4196, EBD793CB396F9503376207FA60353F5672DEDB620C8E01C8D6AE0030B3B03339 ] TermService     C:\Windows\System32\termsrv.dll
16:36:13.0900 0x08d4  TermService - ok
16:36:13.0918 0x08d4  [ 2180DBCE75B914E5E5BBFFFAAE97AA21, 8000AECC8855903DB50ABA7E304396D1FCEAE8DC9ADD4FC50275CF24B4D914DE ] Themes          C:\Windows\system32\themeservice.dll
16:36:13.0925 0x08d4  Themes - ok
16:36:13.0935 0x08d4  [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] THREADORDER     C:\Windows\system32\mmcss.dll
16:36:13.0941 0x08d4  THREADORDER - ok
16:36:13.0968 0x08d4  [ B5ED9CC61798C7D44BD535D40B89EFB5, 1BDCEAA9AF2096381870D92129C748F4EE06A1167ABA9367B9DD43BAF27E3F5B ] TimeBroker      C:\Windows\System32\TimeBrokerServer.dll
16:36:13.0984 0x08d4  TimeBroker - ok
16:36:14.0007 0x08d4  [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM             C:\Windows\system32\drivers\tpm.sys
16:36:14.0015 0x08d4  TPM - ok
16:36:14.0031 0x08d4  [ 884113C2BB703FE806C8608B75F34831, 24DE5750CA4363455412BABB0B1FAB08497153E8F158ED44958F100410F93506 ] TrkWks          C:\Windows\System32\trkwks.dll
16:36:14.0040 0x08d4  TrkWks - ok
16:36:14.0051 0x08d4  [ 44A94FB4C76528D2382FFE04B05827C3, B0BCDF7CD1D65E61A9061D539D83527A89B69583958F8A26C6BF9766C1B61E0C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:36:14.0057 0x08d4  TrustedInstaller - ok
16:36:14.0070 0x08d4  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
16:36:14.0073 0x08d4  TsUsbFlt - ok
16:36:14.0083 0x08d4  [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys
16:36:14.0085 0x08d4  TsUsbGD - ok
16:36:14.0102 0x08d4  [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
16:36:14.0111 0x08d4  tunnel - ok
16:36:14.0120 0x08d4  [ A070ABB9D85582B2BECADBE6FCD12350, 3EBFA349F87933E20C4EADA2FA2E64206CCAC70DFB8B52C2E41670FFB16D7336 ] t_mouse.sys     C:\Windows\system32\DRIVERS\t_mouse.sys
16:36:14.0121 0x08d4  t_mouse.sys - ok
16:36:14.0132 0x08d4  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
16:36:14.0135 0x08d4  uagp35 - ok
16:36:14.0150 0x08d4  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
16:36:14.0154 0x08d4  UASPStor - ok
16:36:14.0175 0x08d4  [ 807F8CF3E973305FC435C61CBBEE2A49, 43CDEAC2BFC5091C11DFC0E7F7171AF9A598AE56CB056C3CF382AE7807F79EF0 ] UCX01000        C:\Windows\System32\drivers\ucx01000.sys
16:36:14.0185 0x08d4  UCX01000 - ok
16:36:14.0208 0x08d4  [ C61EAF8E1E4B2F62BA4FDF457440B2C6, 961F76A789925234AC27F56AAE34556FA06088D71580B42C24B0BC209EAFD67E ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
16:36:14.0224 0x08d4  udfs - ok
16:36:14.0235 0x08d4  [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\Windows\System32\drivers\UEFI.sys
16:36:14.0237 0x08d4  UEFI - ok
16:36:14.0254 0x08d4  [ A867F0F978EE64C87FADC3B100869EE4, 2686BE85F963D0D0BB275E92E5B543280D8742CF10772303E3189D0719B6A277 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
16:36:14.0259 0x08d4  UI0Detect - ok
16:36:14.0271 0x08d4  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
16:36:14.0275 0x08d4  uliagpkx - ok
16:36:14.0286 0x08d4  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\Windows\System32\drivers\umbus.sys
16:36:14.0289 0x08d4  umbus - ok
16:36:14.0297 0x08d4  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\Windows\System32\drivers\umpass.sys
16:36:14.0299 0x08d4  UmPass - ok
16:36:14.0321 0x08d4  [ A023F267A262D5DA6CE1436D9C5E8FD9, 92AD7AF91184C244A7E392F49663143193A80D5D81114546A00F18227DE31D23 ] UmRdpService    C:\Windows\System32\umrdp.dll
16:36:14.0340 0x08d4  UmRdpService - ok
16:36:14.0376 0x08d4  [ C98493DD8E6A50154FAC75C15E1C36BB, CECD1C826C8F7AF05468871BF6A0ACDBB6B0202F4F87F48C6D367E5BD699E800 ] upnphost        C:\Windows\System32\upnphost.dll
16:36:14.0401 0x08d4  upnphost - ok
16:36:14.0413 0x08d4  [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64       C:\Windows\System32\Drivers\usbaapl64.sys
16:36:14.0416 0x08d4  USBAAPL64 - ok
16:36:14.0432 0x08d4  [ DF355EB0199198728027962DCFCDE5FB, 9E158BD07389B4CFF99674716647FA3AABEECBD1A98EDF20E544E099A99A8768 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
16:36:14.0439 0x08d4  usbaudio - ok
16:36:14.0460 0x08d4  [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp         C:\Windows\System32\drivers\usbccgp.sys
16:36:14.0467 0x08d4  usbccgp - ok
16:36:14.0481 0x08d4  [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir          C:\Windows\System32\drivers\usbcir.sys
16:36:14.0487 0x08d4  usbcir - ok
16:36:14.0501 0x08d4  [ 48BA326A3DBA5B5BEB5F2777F4618696, B9EC8155F11A3A7644BD9DC8910681B46AE44AE3BF53F052DF50E9C5555E3229 ] usbehci         C:\Windows\System32\drivers\usbehci.sys
16:36:14.0507 0x08d4  usbehci - ok
16:36:14.0546 0x08d4  [ FEF0BC107812B36849741C3211BA6B60, B3EF738BE1E6B6027F29C9713CD3F367EA067D2BE46580AFBC0FB58046EF6BBD ] usbhub          C:\Windows\System32\drivers\usbhub.sys
16:36:14.0567 0x08d4  usbhub - ok
16:36:14.0599 0x08d4  [ 95B0179BDA907252025DEEA183699FB3, A6BDFB93EE9418A83407024204A41640A08638C60E2BE75C249D102601DC1D80 ] USBHUB3         C:\Windows\System32\drivers\UsbHub3.sys
16:36:14.0622 0x08d4  USBHUB3 - ok
16:36:14.0633 0x08d4  [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci         C:\Windows\System32\drivers\usbohci.sys
16:36:14.0635 0x08d4  usbohci - ok
16:36:14.0644 0x08d4  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\Windows\System32\drivers\usbprint.sys
16:36:14.0646 0x08d4  usbprint - ok
16:36:14.0665 0x08d4  [ 66732C13628BDB1AB0D6FD46027327C2, B582C0F348D8F79419CA5A58F10CA151E06D7CA3BE162344CADA46D9D7FED97C ] USBSTOR         C:\Windows\System32\drivers\USBSTOR.SYS
16:36:14.0673 0x08d4  USBSTOR - ok
16:36:14.0682 0x08d4  [ 064260B3A5868AC894A4943543BC7AB7, D3534E98B34C4AC9A430D7E0AB301A0E5E1511E3117C2FEA392636B0DE2C38E2 ] usbuhci         C:\Windows\System32\drivers\usbuhci.sys
16:36:14.0685 0x08d4  usbuhci - ok
16:36:14.0714 0x08d4  [ 1A20F03700D2B2ED775E38D751EF2F63, 76F8BE9F412D4397437E60A7E6231C80EA9B4F5436C9A8FAB967C78604994AE9 ] USBXHCI         C:\Windows\System32\drivers\USBXHCI.SYS
16:36:14.0731 0x08d4  USBXHCI - ok
16:36:14.0740 0x08d4  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] VaultSvc        C:\Windows\system32\lsass.exe
16:36:14.0745 0x08d4  VaultSvc - ok
16:36:14.0755 0x08d4  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
16:36:14.0758 0x08d4  vdrvroot - ok
16:36:14.0842 0x08d4  [ 8A4D808D1EC7C1C47B2C8BF488A9A07A, 63C07312ADB6F8A8BDE93361C30AC63DAB4DE1141AF54630EEF11E54B0BF983D ] vds             C:\Windows\System32\vds.exe
16:36:14.0908 0x08d4  vds - ok
16:36:14.0931 0x08d4  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt     C:\Windows\system32\drivers\VerifierExt.sys
16:36:14.0940 0x08d4  VerifierExt - ok
16:36:14.0988 0x08d4  [ F6ECFD6128A16A4851CFE98D4E01B011, C349893E8D7FB9B510A3FAD040F70C3C72B0ACDD5F6EB336951849F9E953717D ] vhdmp           C:\Windows\System32\drivers\vhdmp.sys
16:36:15.0016 0x08d4  vhdmp - ok
16:36:15.0025 0x08d4  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\Windows\system32\drivers\viaide.sys
16:36:15.0027 0x08d4  viaide - ok
16:36:15.0047 0x08d4  [ 3CE922E34DB12D9F3C0EA856BC09687C, E50A1885FBC775E49614989ECFEA4ACBBDDA16AF459CC5361EED9E23CC7CD42C ] Vid             C:\Windows\System32\drivers\Vid.sys
16:36:15.0058 0x08d4  Vid - ok
16:36:15.0070 0x08d4  [ 511AD3FF957A0127E6BD336FF6F89C38, 55325BFD0857A1204F7F6F8ED8C91C07B0E20A50402105708E7365ECD9E25A21 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
16:36:15.0076 0x08d4  vmbus - ok
16:36:15.0085 0x08d4  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
16:36:15.0087 0x08d4  VMBusHID - ok
16:36:15.0101 0x08d4  [ 68F8C26DEA2D42E8DEC0778943433C80, 81E8F9D62815F94952CEEABD0689473CC330F7890F66872DCD35A43C06ED33CD ] vmbusr          C:\Windows\System32\drivers\vmbusr.sys
16:36:15.0109 0x08d4  vmbusr - ok
16:36:15.0144 0x08d4  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicguestinterface C:\Windows\System32\ICSvc.dll
16:36:15.0172 0x08d4  vmicguestinterface - ok
16:36:15.0206 0x08d4  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicheartbeat   C:\Windows\System32\ICSvc.dll
16:36:15.0234 0x08d4  vmicheartbeat - ok
16:36:15.0267 0x08d4  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmickvpexchange C:\Windows\System32\ICSvc.dll
16:36:15.0294 0x08d4  vmickvpexchange - ok
16:36:15.0363 0x08d4  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicrdv         C:\Windows\System32\ICSvc.dll
16:36:15.0395 0x08d4  vmicrdv - ok
16:36:15.0422 0x08d4  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicshutdown    C:\Windows\System32\ICSvc.dll
16:36:15.0444 0x08d4  vmicshutdown - ok
16:36:15.0470 0x08d4  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmictimesync    C:\Windows\System32\ICSvc.dll
16:36:15.0492 0x08d4  vmictimesync - ok
16:36:15.0520 0x08d4  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicvss         C:\Windows\System32\ICSvc.dll
16:36:15.0541 0x08d4  vmicvss - ok
16:36:15.0554 0x08d4  [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr          C:\Windows\system32\drivers\volmgr.sys
16:36:15.0557 0x08d4  volmgr - ok
16:36:15.0581 0x08d4  [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
16:36:15.0596 0x08d4  volmgrx - ok
16:36:15.0625 0x08d4  [ 64CA2B4A49A8EAF495E435623ECCE7DB, 81151F295A54DE2B8B88C7F48C86BF58CDFF96F98493509C06D6F41484594386 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
16:36:15.0637 0x08d4  volsnap - ok
16:36:15.0646 0x08d4  [ EF31713EE4C7CCFE4049F7E7F15645A2, 35D198D3F1061E19A7EF89FA1E75377049CD6BCA9702F8076B9F95BB8737E0D4 ] vpci            C:\Windows\System32\drivers\vpci.sys
16:36:15.0649 0x08d4  vpci - ok
16:36:15.0658 0x08d4  [ ADBE96C33D1A5BB1BBAF90B4BC84F523, 6E9C9ED3D51E4B6E494D42ECA6F824AD86D676C12C39BBE6B8BD96366BCB02DA ] vpcivsp         C:\Windows\System32\drivers\vpcivsp.sys
16:36:15.0662 0x08d4  vpcivsp - ok
16:36:15.0676 0x08d4  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
16:36:15.0683 0x08d4  vsmraid - ok
16:36:15.0761 0x08d4  [ 3B7F9612439EA47151EC5EAB232C1C3F, CA08CCB14CB46512F72E2C20454242B18BC57E34C55B42A37B7EC27B79242CDC ] VSS             C:\Windows\system32\vssvc.exe
16:36:15.0820 0x08d4  VSS - ok
16:36:15.0848 0x08d4  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
16:36:15.0860 0x08d4  VSTXRAID - ok
16:36:15.0868 0x08d4  [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
16:36:15.0870 0x08d4  vwifibus - ok
16:36:15.0899 0x08d4  [ DC821E811EFBB65CDD77FBB8B6ECA385, B7C8AACDF81DBA298F2F384983D36B269876C31F0398D89BF9070217A069B96F ] W32Time         C:\Windows\system32\w32time.dll
16:36:15.0918 0x08d4  W32Time - ok
16:36:15.0926 0x08d4  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
16:36:15.0928 0x08d4  WacomPen - ok
16:36:16.0015 0x08d4  [ A81988DCC4FA440AA88B84CA452F5E22, 3573AAA09971E8ADB6FEFA778E02B2D8EE5E4249267CF37A524D9F019CC836FB ] wbengine        C:\Windows\system32\wbengine.exe
16:36:16.0078 0x08d4  wbengine - ok
16:36:16.0108 0x08d4  [ 0F1DFA2FED73FA78B8C3CDE332A870F6, 1089F6F585F5350D349A640EBD3117832DF6B3657EB6667CB00AE217E04ACA17 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
16:36:16.0129 0x08d4  WbioSrvc - ok
16:36:16.0153 0x08d4  [ 0EAEC313B24837613621B4A2536ED382, 61C194ED7FA7D65BBE61A546D5FCA52F52AB08324E084D3EC23C9706E9BF0175 ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
16:36:16.0171 0x08d4  Wcmsvc - ok
16:36:16.0197 0x08d4  [ F6B4C2280FF7C7156AC8A4687B9DA35E, 1899D584D7469BB49355D84080051E2575B033E6312009D9C6C1DD3F7F9AA4C5 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
16:36:16.0218 0x08d4  wcncsvc - ok
16:36:16.0227 0x08d4  [ B7BF1D783F5B2484E8CE1C0C78257F16, 468601199FCCF63DBAE86EE6B8825EA85B2A1EE177413353FFA2CC9CA5249FCD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:36:16.0232 0x08d4  WcsPlugInService - ok
16:36:16.0295 0x08d4  [ 2F0339FCE51257F5930357F1DEE2D39E, 78CE40BD4FD58A3E44BAC8C41594694F0A3B8AA55619558A5B751D6623831A22 ] WDBackup        C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
16:36:16.0335 0x08d4  WDBackup - ok
16:36:16.0345 0x08d4  [ 1751F6B031ADAC34724511057D2E455D, BCBC77DE02718868302F7469E8FBB8F2E7E0F8A5D3E46A5B4D48713E829FBAF6 ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
16:36:16.0348 0x08d4  WdBoot - ok
16:36:16.0354 0x08d4  [ A3D04EBF5227886029B4532F20D026F7, D90F7B9C176008675DA0B5FD7E4973CBC2A04172CEDF8FB7D3B3B4F27B5440D7 ] WDC_SAM         C:\Windows\System32\drivers\wdcsam64.sys
16:36:16.0356 0x08d4  WDC_SAM - ok
16:36:16.0377 0x08d4  [ C50B1A397F35908EEA98C964E77A6A97, FBA623EE0C5A72836ED80C0ACA163461E9B1B601B99C35B9EEE36B07B7F0839E ] WDDriveService  C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
16:36:16.0388 0x08d4  WDDriveService - ok
16:36:16.0440 0x08d4  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
16:36:16.0472 0x08d4  Wdf01000 - ok
16:36:16.0491 0x08d4  [ D296D0F0DB2CD1504F90405603664493, 9531034AE2E027B5C7366713AA9003085501800B35F971D1CE7FFB8E5DAE3825 ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
16:36:16.0502 0x08d4  WdFilter - ok
16:36:16.0512 0x08d4  [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiServiceHost  C:\Windows\system32\wdi.dll
16:36:16.0519 0x08d4  WdiServiceHost - ok
16:36:16.0526 0x08d4  [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiSystemHost   C:\Windows\system32\wdi.dll
16:36:16.0533 0x08d4  WdiSystemHost - ok
16:36:16.0544 0x08d4  [ 9F4DF0043965808973023A9B51A11136, 3A799125CBC5C214D9FBB91C348B39563B1FDB7403B520270752E9A177464723 ] WdNisDrv        C:\Windows\system32\Drivers\WdNisDrv.sys
16:36:16.0549 0x08d4  WdNisDrv - ok
16:36:16.0553 0x08d4  WdNisSvc - ok
16:36:16.0572 0x08d4  [ 185E4111627F7AA6799E1366B5E91D65, 7A02C816DFBCCF47EDB49E5E2005A3D0B80719FAC94F9298D2DBAC63950EDA05 ] WebClient       C:\Windows\System32\webclnt.dll
16:36:16.0584 0x08d4  WebClient - ok
16:36:16.0602 0x08d4  [ 384E1D04FE20845B2559D292F17A9FA1, AD3B0B2B2219691AC30FEEC8AFDB3BBB74B51BB7D02038AE2B4DEA514E245315 ] Wecsvc          C:\Windows\system32\wecsvc.dll
16:36:16.0614 0x08d4  Wecsvc - ok
16:36:16.0621 0x08d4  [ 455014F4E48B67EBE0F032E2B0E06BF2, A36435784A034B27056A0E606683A20C69F1B0AB2B6BAEDEAEAA190F6287CAEF ] WEPHOSTSVC      C:\Windows\system32\wephostsvc.dll
16:36:16.0625 0x08d4  WEPHOSTSVC - ok
16:36:16.0635 0x08d4  [ F13DBA57CEA9B7074B95EDCA6AD2635E, 1D9BA4841EF1343A5D9096B5FE27FC65DC1901D6683DD13516171638549666B5 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
16:36:16.0642 0x08d4  wercplsupport - ok
16:36:16.0652 0x08d4  [ FD7E58B6AA3EABF2D12B9762A20E11E4, 4C5E2E246C5C70074866BB3DBC2AAF483ECE4345004CCB8D1FE285047268685D ] WerSvc          C:\Windows\System32\WerSvc.dll
16:36:16.0659 0x08d4  WerSvc - ok
16:36:16.0674 0x08d4  [ 715ABA3DD164D06457A2A3C92F6EA9D5, E6F8269D2FFC4A548B65724C0A3F53756ED15E47229861FBD40B656EE40FE166 ] WFPLWFS         C:\Windows\system32\DRIVERS\wfplwfs.sys
16:36:16.0680 0x08d4  WFPLWFS - ok
16:36:16.0689 0x08d4  [ 8C840E1FD7584E74BD0CC1EA581EC187, 148E534A94B4882E7396B13FABE17407802292E7890713540080D03D5629C81D ] WiaRpc          C:\Windows\System32\wiarpc.dll
16:36:16.0695 0x08d4  WiaRpc - ok
16:36:16.0702 0x08d4  [ 5F66B7BB330AA80067FC66149A692620, 92C5D7115A168A23108B65EEEB5FBA8FA43D781855355792596D2419160263C2 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
16:36:16.0704 0x08d4  WIMMount - ok
16:36:16.0708 0x08d4  WinDefend - ok
16:36:16.0754 0x08d4  [ 10DAD6A7FC617A221313BD584E3C3A00, F139B878668ECF38FE59831E8595A207D5CEEE76C6FFDA8C9F735435E601A763 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
16:36:16.0788 0x08d4  WinHttpAutoProxySvc - ok
16:36:16.0807 0x08d4  [ FC8BD690321216C32BB58B035B6D5674, D61698DB19D9DB2593B60B6BA13F7B7735667206F41D751D507135469D6D3CDD ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
16:36:16.0818 0x08d4  Winmgmt - ok
16:36:16.0961 0x08d4  [ 75436315AA383CF527695C6D49D0CA59, E3D55F2ACBD45D4D031FA6CA799394459C89BE50FF6ADE4FE36F2CAB2D2E63D0 ] WinRM           C:\Windows\system32\WsmSvc.dll
16:36:17.0096 0x08d4  WinRM - ok
16:36:17.0127 0x08d4  [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUsb          C:\Windows\System32\drivers\WinUsb.sys
16:36:17.0131 0x08d4  WinUsb - ok
16:36:17.0233 0x08d4  [ DC079BA8390089E4EBCA63D27EEA3ECB, 4D549217A68292E2B16C09FD9F84317011EE54A2DAF4E2AB85554267DF0D3249 ] WlanSvc         C:\Windows\System32\wlansvc.dll
16:36:17.0312 0x08d4  WlanSvc - ok
16:36:17.0429 0x08d4  [ 06BF5897949A8F24893F792E876B71F5, 9D3719492A86BF52A56E2EA798FD6FDB5862A03F6D360FCC4B0CEA9BE9792AE4 ] wlidsvc         C:\Windows\system32\wlidsvc.dll
16:36:17.0511 0x08d4  wlidsvc - ok
16:36:17.0526 0x08d4  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
16:36:17.0528 0x08d4  WmiAcpi - ok
16:36:17.0548 0x08d4  [ B96F7A1236C3F21212DE2C40A3DDB005, 5A29EBB6DA036E303611EB1304192655021405BB05452FD37886DDE604FF0D9D ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
16:36:17.0558 0x08d4  wmiApSrv - ok
16:36:17.0563 0x08d4  WMPNetworkSvc - ok
16:36:17.0581 0x08d4  [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof             C:\Windows\system32\drivers\Wof.sys
16:36:17.0589 0x08d4  Wof - ok
16:36:17.0686 0x08d4  [ 588040D595BBF0856CA1ADD941A8ED17, CBC92BB5453FE1BEA6F33239B7CE884F312559591383408EA5F95A006156C5D3 ] workfolderssvc  C:\Windows\system32\workfolderssvc.dll
16:36:17.0770 0x08d4  workfolderssvc - ok
16:36:17.0786 0x08d4  [ A2468CC3509394A33C4C32F99563D845, 62690C7D41F382DF74B8F4B942647842858E37DE35FF2DE028192E4D09ABB2C5 ] wpcfltr         C:\Windows\system32\DRIVERS\wpcfltr.sys
16:36:17.0790 0x08d4  wpcfltr - ok
16:36:17.0797 0x08d4  [ 19F4DF69876DA7E9C4965351560FE6B7, 127247A7964F55EE3AF842D25120F5ACD387632BEE2BF3D28FAC05840CEA19BA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
16:36:17.0802 0x08d4  WPCSvc - ok
16:36:17.0814 0x08d4  [ 2ADE11F3D84709C5F6781E4C59F11683, F003C43396CF8FCF44EAB87583650DB4D2A233322D28D6A78D1694945D9073BB ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
16:36:17.0823 0x08d4  WPDBusEnum - ok
16:36:17.0832 0x08d4  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
16:36:17.0834 0x08d4  WpdUpFltr - ok
16:36:17.0843 0x08d4  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
16:36:17.0845 0x08d4  ws2ifsl - ok
16:36:17.0853 0x08d4  [ ADD2FE1A9F4EE41A6D724819550D4E1F, EE8320496D611F6D264AC21684EACB5DC6F9DD82E055726073C7782D0993AFB3 ] WsAudio_Device(1) C:\Windows\system32\drivers\VirtualAudio1.sys
16:36:17.0856 0x08d4  WsAudio_Device(1) - ok
16:36:17.0871 0x08d4  [ 5596C0960ED6ED7494BF2A55DE428684, C95CF09A657F37F421CC80E16F2F95B8EC59A8D5D48F104551155EAC8E53DCB2 ] wscsvc          C:\Windows\System32\wscsvc.dll
16:36:17.0883 0x08d4  wscsvc - ok
16:36:17.0892 0x08d4  [ F586F3F1BF962FE9AE4316E0D896B22F, 8D0AD48D79294567123D943D0F5B6D5A32D7A82B129A24DC821D3095AFAA100B ] WSDPrintDevice  C:\Windows\System32\drivers\WSDPrint.sys
16:36:17.0893 0x08d4  WSDPrintDevice - ok
16:36:17.0901 0x08d4  [ 58035FD3369879E02D65989C44D27450, B9245DB5C17F7CE94FAA20AB4B0D06A4DFB6133C6E82343758CDC713EB64DFEF ] WSDScan         C:\Windows\System32\drivers\WSDScan.sys
16:36:17.0903 0x08d4  WSDScan - ok
16:36:17.0910 0x08d4  WSearch - ok
16:36:18.0142 0x08d4  [ 6B2D71124C1EA86B74412F414C42431D, 078CC6C9667EF6BDA3E6900BC26A5A5B030CAA66928A6BBB7B7DC43C5C199EDC ] WSService       C:\Windows\System32\WSService.dll
16:36:18.0311 0x08d4  WSService - ok
16:36:18.0480 0x08d4  [ 5F3D70B19BCAC985DA90F22CA2FF45E4, BBD82BAEF0DCA2C6361F8D1ADF5BED36D0F1AB1A2AEADB0E4526B917F40C2E52 ] wuauserv        C:\Windows\system32\wuaueng.dll
16:36:18.0624 0x08d4  wuauserv - ok
16:36:18.0643 0x08d4  [ 481286719402E4BAEFEA0604AB1B5113, F3CF65DF2AB39F79AE4C1335831408418E40726706E0242677E8B96B0FAD988F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:36:18.0648 0x08d4  WudfPf - ok
16:36:18.0664 0x08d4  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFRd          C:\Windows\System32\drivers\WUDFRd.sys
16:36:18.0673 0x08d4  WUDFRd - ok
16:36:18.0688 0x08d4  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFSensorLP    C:\Windows\System32\drivers\WUDFRd.sys
16:36:18.0697 0x08d4  WUDFSensorLP - ok
16:36:18.0707 0x08d4  [ 51D28F7F1F888DDCF2C67DCF3B79A5D3, 74FF2936AFCEB9A36175D5B00EB91A5AD614B52BE3FB3FA9B994A025A484D2B7 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
16:36:18.0714 0x08d4  wudfsvc - ok
16:36:18.0731 0x08d4  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdFs       C:\Windows\System32\drivers\WUDFRd.sys
16:36:18.0740 0x08d4  WUDFWpdFs - ok
16:36:18.0755 0x08d4  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdMtp      C:\Windows\System32\drivers\WUDFRd.sys
16:36:18.0764 0x08d4  WUDFWpdMtp - ok
16:36:18.0792 0x08d4  [ A0900F8F628B5AF6841414EB3CF11E50, 8A531F2472FF4B4D895D469D28C215C834ECADBEF539894B8F3F606079A86184 ] WwanSvc         C:\Windows\System32\wwansvc.dll
16:36:18.0815 0x08d4  WwanSvc - ok
16:36:18.0829 0x08d4  [ A0F661902AFCAAD77CC2ED3894927A10, 0DCD860F7F4029EBFE1F409BA23CC8BAA55BC22084C81940FF170B665E4804BD ] xusb22          C:\Windows\System32\drivers\xusb22.sys
16:36:18.0833 0x08d4  xusb22 - ok
16:36:18.0838 0x08d4  ================ Scan global ===============================
16:36:18.0847 0x08d4  [ 243F54DBA6EB48A369CA465E263ABA4A, 9D9F9DE783D000F3EA130EB68FD71319F21E4F1CD4232FB8B2F8A9A67E08F5F4 ] C:\Windows\system32\basesrv.dll
16:36:18.0864 0x08d4  [ EAB311B0A7A8EA0346F14F08D4BC8F46, 11168E4074679F8A69DA714C0ABD0C68BA49D171B379343F14783C9C563202CA ] C:\Windows\system32\winsrv.dll
16:36:18.0882 0x08d4  [ 3600ED7EA8AED849E20700551C0BD63B, 4A8C346C1646E80B58EF93F87F915A41E05CA2E993BB1C96955AE62A0669AF66 ] C:\Windows\system32\sxssrv.dll
16:36:18.0905 0x08d4  [ E0C7813A97CA7947FF5C18A8F3B61A45, 083BB4F3B20419C87DB656F1465E5F782ACDE76838CDE6207F26AAD035C69DE0 ] C:\Windows\system32\services.exe
16:36:18.0923 0x08d4  [ Global ] - ok
16:36:18.0926 0x08d4  ================ Scan MBR ==================================
16:36:18.0929 0x08d4  [ 0792F22BCC85CFD3B28324561FFFCABB ] \Device\Harddisk0\DR0
16:36:21.0986 0x08d4  \Device\Harddisk0\DR0 - ok
16:36:21.0991 0x08d4  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
16:36:21.0997 0x08d4  \Device\Harddisk1\DR1 - ok
16:36:21.0999 0x08d4  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2
16:36:22.0004 0x08d4  \Device\Harddisk2\DR2 - ok
16:36:22.0006 0x08d4  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk3\DR3
16:36:22.0010 0x08d4  \Device\Harddisk3\DR3 - ok
16:36:22.0013 0x08d4  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk4\DR4
16:36:22.0019 0x08d4  \Device\Harddisk4\DR4 - ok
16:36:22.0022 0x08d4  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk5\DR5
16:36:22.0028 0x08d4  \Device\Harddisk5\DR5 - ok
16:36:22.0506 0x08d4  [ 671B81004FDD1588FA9ED1331C9CECA9 ] \Device\Harddisk6\DR6
16:36:22.0517 0x08d4  \Device\Harddisk6\DR6 - ok
16:36:22.0522 0x08d4  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk7\DR7
16:36:22.0533 0x08d4  \Device\Harddisk7\DR7 - ok
16:36:22.0538 0x08d4  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk8\DR8
16:36:22.0548 0x08d4  \Device\Harddisk8\DR8 - ok
16:36:22.0549 0x08d4  ================ Scan VBR ==================================
16:36:22.0553 0x08d4  [ A22F0AD1353EBCE24D65FA117281D0E4 ] \Device\Harddisk0\DR0\Partition1
16:36:22.0556 0x08d4  \Device\Harddisk0\DR0\Partition1 - ok
16:36:22.0564 0x08d4  [ DEEFF38A9CCE275FA23D1175AF686F32 ] \Device\Harddisk1\DR1\Partition1
16:36:22.0567 0x08d4  \Device\Harddisk1\DR1\Partition1 - ok
16:36:22.0572 0x08d4  [ 8120E5D8FD518CE33A28C9AA94AACF8C ] \Device\Harddisk1\DR1\Partition2
16:36:22.0574 0x08d4  \Device\Harddisk1\DR1\Partition2 - ok
16:36:22.0577 0x08d4  [ 355F56AD5D3788E6816EF0A15E5FE473 ] \Device\Harddisk1\DR1\Partition3
16:36:22.0577 0x08d4  \Device\Harddisk1\DR1\Partition3 - ok
16:36:22.0584 0x08d4  [ 0B9CB8CF98680D921922BF9F9CF24EEB ] \Device\Harddisk1\DR1\Partition4
16:36:22.0587 0x08d4  \Device\Harddisk1\DR1\Partition4 - ok
16:36:22.0592 0x08d4  [ EF2E3D684D920E1F47C93159F6958027 ] \Device\Harddisk2\DR2\Partition1
16:36:22.0595 0x08d4  \Device\Harddisk2\DR2\Partition1 - ok
16:36:22.0601 0x08d4  [ 1F25169A1C402E31E57557EA24DC5781 ] \Device\Harddisk3\DR3\Partition1
16:36:22.0604 0x08d4  \Device\Harddisk3\DR3\Partition1 - ok
16:36:22.0609 0x08d4  [ 97793C6EBE782489632BE676E2C9BE30 ] \Device\Harddisk4\DR4\Partition1
16:36:22.0613 0x08d4  \Device\Harddisk4\DR4\Partition1 - ok
16:36:22.0618 0x08d4  [ 775092D264CAF1D0F47CB4867E1746DD ] \Device\Harddisk5\DR5\Partition1
16:36:22.0621 0x08d4  \Device\Harddisk5\DR5\Partition1 - ok
16:36:22.0628 0x08d4  [ 72A334BE2D63E7932B008BEA433AE71B ] \Device\Harddisk6\DR6\Partition1
16:36:22.0673 0x08d4  \Device\Harddisk6\DR6\Partition1 - ok
16:36:22.0678 0x08d4  [ 88D4D6BF121381C1CFEA1B29A66B31E5 ] \Device\Harddisk7\DR7\Partition1
16:36:22.0682 0x08d4  \Device\Harddisk7\DR7\Partition1 - ok
16:36:22.0688 0x08d4  [ 5DB2964D79F1D8BF196A1BFF5708EE05 ] \Device\Harddisk8\DR8\Partition1
16:36:22.0692 0x08d4  \Device\Harddisk8\DR8\Partition1 - ok
16:36:22.0693 0x08d4  ================ Scan generic autorun ======================
16:36:23.0089 0x08d4  [ F1BC7545F3AF1D8A165BCFB8F7F8F8DA, A409370179BE4088E381F473B744FBDEF1CB8B1D27E9E0D93B663D16E3143DCB ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
16:36:23.0404 0x08d4  RTHDVCPL - ok
16:36:23.0423 0x08d4  [ 4A0477ADCD07EC9D21257A2E456B16C5, CEF9C81730C12283A7600C3D921D89A62B14D1C46544B493F3AF7520DD2D1F79 ] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe
16:36:23.0425 0x08d4  IAStorIcon - ok
16:36:23.0464 0x08d4  [ F5A5DBADCD24BDF33BFDAA789E39C876, A0D931FA339CA1FB6198BF5DF327ECEB0881796FFF92BDE0F9FC2C233C46E83C ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
16:36:23.0485 0x08d4  AdobeAAMUpdater-1.0 - ok
16:36:23.0597 0x08d4  [ BFCD96B6C7126CBAB9587BDAC12FD90C, 156D9624905EA5E372E69FCE0242B9E8CED50AE99763359687E448EB3189F32E ] C:\Program Files\ACD Systems\ACDSee Pro\7.0\acdIDInTouch2.exe
16:36:23.0665 0x08d4  ACPW07EN - ok
16:36:23.0679 0x08d4  [ 076B3EE149E01ADBAC2DC529554A3FD9, 4F65D9D2EE44829AA2264210112851E899165C2346489BEBE679C41420CF7D07 ] C:\Program Files\iTunes\iTunesHelper.exe
16:36:23.0686 0x08d4  iTunesHelper - ok
16:36:23.0700 0x08d4  [ DB367E8C8F46C26A05BA982715CC0DB5, 63AE8DD8E41260123E8C98905BD3D444BED86AEA6353F690483E5CB116433AC2 ] C:\Windows\system32\TiltWheelMouse.exe
16:36:23.0712 0x08d4  MouseDriver - ok
16:36:24.0407 0x08d4  [ 3F0B5EBDEB180C073E01A4A2DFA28C12, 0ACE6F70260E17284B8307D0DD0ACC9B59B379A99AE43429AB644B421ADAE8A7 ] C:\Program Files\Logitech Gaming Software\LCore.exe
16:36:24.0902 0x08d4  Launch LCore - ok
16:36:24.0954 0x08d4  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
16:36:24.0970 0x08d4  SwitchBoard - ok
16:36:25.0033 0x08d4  [ 3EE19173AC7BB16AD239B195D97C13B0, A9E5FC90F20DC7500A186C9D184ED55BC04038FFC6D97714E64C660EAE808A98 ] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
16:36:25.0066 0x08d4  AdobeCS6ServiceManager - ok
16:36:25.0149 0x08d4  [ 0610E1989914B6DA54165A4F2C766721, CFFDCA465C9A6988A747C08346B9A122A4DB08AACE42B8AEB4AE410981044892 ] C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe
16:36:25.0202 0x08d4  WD Drive Unlocker - ok
16:36:25.0461 0x08d4  [ E84F189BE4353A47EBF063D8EA3C4B63, C9AD8FA3E0DE9860D3100E17F90F91C7CAD01730A98E8E12E5936B47EF23E546 ] C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
16:36:25.0653 0x08d4  WD Quick View - ok
16:36:25.0724 0x08d4  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
16:36:25.0760 0x08d4  Adobe ARM - ok
16:36:26.0030 0x08d4  [ 54AF0144A8368F03B20A11D300795333, 22EE1DA6A8782E2BAF9D9B9487DC217F32F4DC4E9D7E05EFB8B3CC408C11A589 ] C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe
16:36:26.0193 0x08d4  Acrobat Assistant 8.0 - ok
16:36:26.0379 0x08d4  [ 1F1A53C41C4A2C618D7230C8CDEC3622, 3C8F4A5A71D9789A7B2774AE35A9842F04A5556E4DE75FAA9647A411AD983BED ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
16:36:26.0504 0x08d4  Adobe Creative Cloud - ok
16:36:26.0603 0x08d4  [ 448F715345016B90F411C16474F8C2B6, B4FC3153E8CFD7B2710828134326B1D287C1903A778A6B3CDB3838D86F6625C4 ] C:\Program Files (x86)\ACD Systems\ACDSee Video Converter 4.0\acdIDInTouch2.exe
16:36:26.0657 0x08d4  VIDC04EN - ok
16:36:26.0775 0x08d4  [ 602FCF22DEAFA853A51701907524D3A5, 9AED1FEB930FE046BB71C6442074DCFCA74E5DF1555EE05693894FF33CC06E81 ] C:\Program Files (x86)\Common Files\Aimersoft\Aimersoft Helper Compact\ASHelper.exe
16:36:26.0849 0x08d4  Aimersoft Helper Compact.exe - ok
16:36:26.0887 0x08d4  [ 6F0BA66FC71642DD28D0DF197F02E82A, 2C9282BDFB67B8AC0862C88F0B81D19E4B2D315C67B4E9445AF29755D9232EBE ] C:\Program Files (x86)\Kensington\TrackballWorks\TbwHelper.exe
16:36:26.0906 0x08d4  Kensington TrackballWorks Helper - ok
16:36:27.0136 0x08d4  [ 4CDF90E852837C827C855F8E8E2C5FE2, 1918CE3A880E2067D52C538096DA2D35DFCA2D742E2ED370CF2DFE22840024FD ] C:\Program Files (x86)\Common Files\Intuit\Sync\IntuitSyncManager.exe
16:36:27.0311 0x08d4  Intuit SyncManager - ok
16:36:27.0329 0x08d4  [ 34D296AFC913E302953C70463EF09A48, BC413307CBC56C039EE8A05B51A56E14EF59678FBB33815AEB320078056C8CE7 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
16:36:27.0334 0x08d4  HP Software Update - ok
16:36:27.0365 0x08d4  [ 271B0D188430670509CB9943D5229205, 74CB5A9D8B5988AE08C0F65C601FC54F8745BAB6825B6FEEFBA8F068D656D8D7 ] C:\Program Files (x86)\QuickTime\QTTask.exe
16:36:27.0385 0x08d4  QuickTime Task - ok
16:36:27.0409 0x08d4  [ 34084D25BE6F48D072AA54DE630438FD, 522C96429FC679C2D07E9254E8D1793FEC018D65CD43D88FE9851CC8CEB61A07 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
16:36:27.0425 0x08d4  SunJavaUpdateSched - ok
16:36:27.0463 0x08d4  [ 6F0BA66FC71642DD28D0DF197F02E82A, 2C9282BDFB67B8AC0862C88F0B81D19E4B2D315C67B4E9445AF29755D9232EBE ] C:\Program Files (x86)\Kensington\TrackballWorks\TbwHelper.exe
16:36:27.0487 0x08d4  Kensington TrackballWorks - ok
16:36:27.0498 0x08d4  [ 48C3EBD6D5E52AFCB1A0FA9B7F9802FA, 4F2E27AA8305FFC94F65C65C5FDB8462C92ED02A7B37627404382C3CAB65AC59 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
16:36:27.0501 0x08d4  iCloudServices - ok
16:36:27.0509 0x08d4  [ 799BCC829F48F19C5689478179060435, 495C6E363982F7BE1785A46C12ED4AC99E0AF98F340F1CE3C55D39EBE6FE33AA ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
16:36:27.0512 0x08d4  ApplePhotoStreams - ok
16:36:27.0697 0x08d4  [ 22F7B9670AD770C7ED7F4738204C8E5C, 7B793AC094CB1B073419B5DAE09DFBB8EBED03D29301F490AA76EA0667613438 ] C:\Program Files\HP\HP ENVY 120 series\Bin\ScanToPCActivationApp.exe
16:36:27.0801 0x08d4  HP ENVY 120 series (NET) - ok
16:36:27.0839 0x08d4  [ E4B1E6B06E2479FCDA44BC27D8D7E5A2, 9E29C1CCA08C94DB3232CA70A28651C6E0430FD5AB044D3CB16963F602A27004 ] C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe
16:36:27.0865 0x08d4  GarminExpressTrayApp - ok
16:36:28.0217 0x08d4  [ C81F59B7D524FB462F73B27757084618, 6C7DF7257ED0D9C69A53B98F15EAF1B42D302659791EE80F48D06BCA11EA09D8 ] C:\Program Files\CCleaner\CCleaner64.exe
16:36:28.0492 0x08d4  CCleaner Monitoring - ok
16:36:28.0748 0x08d4  [ 82DBE87C6461C6A9E8556ADF1762DDB9, B540059C8D90EA351B49F8417DDE3FD8A21909D50019C2B48312CDBCE89F1D19 ] C:\Program Files (x86)\DisplayFusion\DisplayFusion.exe
16:36:29.0070 0x08d4  DisplayFusion - ok
16:36:29.0131 0x08d4  [ C1DCF54DA67BA34970C1F9A139F7302B, C70CBAC304B60C2DB506090BD1E9C168E47B4A7548D51B51F6B38AE05D54A87A ] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
16:36:29.0169 0x08d4  8F1F3AF3834748E5DA9D73C849D714CC4C4BE6FA._service_run - ok
16:36:29.0210 0x08d4  [ 6F0BA66FC71642DD28D0DF197F02E82A, 2C9282BDFB67B8AC0862C88F0B81D19E4B2D315C67B4E9445AF29755D9232EBE ] C:\Program Files (x86)\Kensington\TrackballWorks\TbwHelper.exe
16:36:29.0234 0x08d4  Kensington TrackballWorks - ok
16:36:29.0236 0x08d4  Waiting for KSN requests completion. In queue: 29
16:36:30.0238 0x08d4  Waiting for KSN requests completion. In queue: 29
16:36:31.0238 0x08d4  Waiting for KSN requests completion. In queue: 29
16:36:32.0432 0x08d4  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.7.205.0 ), 0x61100 ( enabled : updated )
16:36:32.0502 0x08d4  Win FW state via NFP2: enabled
16:36:34.0970 0x08d4  ============================================================
16:36:34.0970 0x08d4  Scan finished
16:36:34.0970 0x08d4  ============================================================
16:36:34.0988 0x02ac  Detected object count: 0
16:36:34.0988 0x02ac  Actual detected object count: 0
16:38:23.0000 0x0930  Deinitialize success



#4 Hookmeistr

Hookmeistr
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Rio Rancho, NM USA
  • Local time:02:23 AM

Posted 18 May 2015 - 06:28 PM

That's the last of the log files. Hopefully I didn't duplicate anything as I was cutting/pasting. Let me know what else, if anything, you need from me. Again, thank you VERY much. Your assistance is GREATLY appreciated!!!



#5 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,621 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:23 AM

Posted 23 May 2015 - 06:20 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/576622 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new FRST log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download FRST by Farbar from the following link if you no longer have it available and save it to your destop.

    FRST Download Link

  • When you go to the above page, there will be 32-bit and 64-bit downloads available. Please click on the appropriate one for your version of Windows. If you are unsure as to whether your Windows is 32-bit or 64-bit, please see this tutorial.
  • Double click on the FRST icon and allow it to run.
  • Agree to the usage agreement and FRST will open. Do not make any changes and click on the Scan button.
  • Notepad will open with the results.
  • Post the new logs as explained in the prep guide.
  • Close the program window, and delete the program from your desktop.


As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#6 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,621 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:23 AM

Posted 28 May 2015 - 06:25 PM

Hello again!

I haven't heard from you in 5 days. Therefore, I am going to assume that you no longer need our help, and close this topic.

If you do still need help, please send a Private Message to any Moderator within the next five days. Be sure to include a link to your topic in your Private Message.

Thank you for using Bleeping Computer, and have a great day!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users