Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

HTML/Framer through AVG - Recurring Problem


  • This topic is locked This topic is locked
35 replies to this topic

#1 albatrossuk

albatrossuk

  • Members
  • 22 posts
  • OFFLINE
  •  

Posted 12 December 2015 - 08:43 AM

I've been getting a warning from AVG for a while now for a HTML/Framer malware.  It always appears in a randomly named temp folder (c:\USERS\MATT\AppData\Local\Temp\tmpxxxxxxx).  Every time I remove it the problem comes back shortly afterwards, either a few hours or a day.  I've tried a number of removal tools and run them in safe mode but I still get the same message.

 

 

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:09-12-2015
Ran by MATT (administrator) on MATT-PC (12-12-2015 20:05:03)
Running from C:\Users\MATT\Downloads
Loaded Profiles: MATT & UpdatusUser (Available Profiles: MATT & UpdatusUser & DefaultAppPool)
Platform: Microsoft Windows 10 Pro Version 1511 (X86) Language: Spanish (Spain, International Sort)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgcsrvx.exe
() C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avgsvcx.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgwdsvcx.exe
(Symantec Corporation) C:\Program Files\Norton Utilities 15\Tools\Disk Doctor\DiskDoctorSrv.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Symantec Corporation) C:\Program Files\Norton Utilities 15\Tools\SpeedDisk\SpeedDiskSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(Nitro PDF Software) C:\Program Files\Nitro PDF\Professional\NitroPDFDriverService.exe
() C:\Program Files\CyberLink\Shared files\RichVideo.exe
(Microsoft Corporation) C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
(Sony Corporation) C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(SMART Technologies) C:\Program Files\SMART Technologies\Education Software\SMARTHelperService.exe
(Nalpeiron Ltd.) C:\Windows\System32\NLSSRV32.EXE
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgemcx.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Symantec Corporation) C:\Program Files\Norton Utilities 15\Tools\Disk Doctor\DiskDoctorSrvProxy.exe
(Symantec Corporation) C:\Program Files\Norton Utilities 15\Tools\SpeedDisk\SpeedDiskSrvProxy.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\ProgramData\Avg_Update_1215av\AVG-Secure-Search-Update_1215av.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.29.1\GoogleCrashHandler.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Av\avgui.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\Framework\Common\avguix.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Ruiware) C:\Program Files\Ruiware\WinPatrol\WinPatrol.exe
(BitTorrent Inc.) C:\Users\MATT\AppData\Roaming\uTorrent\uTorrent.exe
(BitTorrent Inc.) C:\Users\MATT\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe
(BitTorrent Inc.) C:\Users\MATT\AppData\Roaming\uTorrent\updates\3.4.5_41372\utorrentie.exe
(Sony Corporation) C:\Program Files\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_1.11.19004.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
(Google Inc.) C:\Users\MATT\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MATT\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MATT\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MATT\AppData\Local\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Users\MATT\AppData\Local\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1537320 2009-06-19] (Synaptics Incorporated)
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [981688 2015-04-30] (Microsoft Corporation)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\Av\avgui.exe [3855272 2015-11-20] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguix.exe [1136552 2015-11-12] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCui.exe [994304 2015-10-30] (Microsoft Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2757424 2015-11-13] (NVIDIA Corporation)
HKU\S-1-5-21-619215122-3655858824-2443121906-1000\...\Run: [Google Update] => C:\Users\MATT\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc.)
HKU\S-1-5-21-619215122-3655858824-2443121906-1000\...\Run: [WinPatrol] => C:\Program Files\Ruiware\WinPatrol\winpatrol.exe [1238152 2015-04-23] (Ruiware)
HKU\S-1-5-21-619215122-3655858824-2443121906-1000\...\Run: [uTorrent] => C:\Users\MATT\AppData\Roaming\uTorrent\uTorrent.exe [2026520 2015-12-04] (BitTorrent Inc.)
HKU\S-1-5-21-619215122-3655858824-2443121906-1000\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [22790776 2015-11-04] (Google)
HKU\S-1-5-21-619215122-3655858824-2443121906-1004\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [515072 2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MATT\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll [2012-02-15] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MATT\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll [2012-02-15] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\MATT\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll [2012-02-15] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} =>  No File
GroupPolicyScripts: Restriction <======= ATTENTION
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
ProxyServer: [S-1-5-21-619215122-3655858824-2443121906-1000] => http=82.113.142.185:3128
AutoConfigURL: [S-1-5-21-619215122-3655858824-2443121906-1000] => http=82.113.142.185:3128
Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{a1efa3ba-a4a4-4ec4-b957-44995504327c}: [DhcpNameServer] 192.168.0.1
 
Internet Explorer:
==================
HKU\S-1-5-21-619215122-3655858824-2443121906-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://login.lataminternet.com/
HKU\S-1-5-21-619215122-3655858824-2443121906-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={8D7ECDEA-EEB3-467B-8A40-F1BC3DFBEFAF}&mid=97dc776c266747cd9eb3d15650b6b80b-c7796f2cf1b6623549e054395218af25b884e5b5&lang=en&ds=AVG&coid=avgtbavg&cmpid=0215pi&pr=fr&d=2015-05-02 10:49:26&v=4.1.0.411&pid=wtu&sg=&sap=hp
HKU\S-1-5-21-619215122-3655858824-2443121906-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://uk.msn.com/?ocid=iehp
SearchScopes: HKLM -> DefaultScope {F8305D7D-CF69-465a-9003-813C6013A702} URL = hxxp://start.flashvideodownloader.org/result.php?cx=partner-pub-5087362176467115:lyglkqaff6i&cof=FORID:10&ie=ISO-8859-1&sa=Search&q={searchTerms}
SearchScopes: HKLM -> {F8305D7D-CF69-465a-9003-813C6013A702} URL = hxxp://start.flashvideodownloader.org/result.php?cx=partner-pub-5087362176467115:lyglkqaff6i&cof=FORID:10&ie=ISO-8859-1&sa=Search&q={searchTerms}
SearchScopes: HKLM -> {F8305D7D-CF79-465a-9003-813C6013A702} URL = hxxp://start.flashvideodownloader.org/result.php?cx=partner-pub-5087362176467115:h6z8ss-efx2&cof=FORID:10&ie=ISO-8859-1&sa=Search&q={searchTerms}
SearchScopes: HKU\S-1-5-21-619215122-3655858824-2443121906-1000 -> {F8305D7D-CF69-465a-9003-813C6013A702} URL = hxxp://start.flashvideodownloader.org/result.php?cx=partner-pub-5087362176467115:lyglkqaff6i&cof=FORID:10&ie=ISO-8859-1&sa=Search&q={searchTerms}
SearchScopes: HKU\S-1-5-21-619215122-3655858824-2443121906-1000 -> {F8305D7D-CF79-465a-9003-813C6013A702} URL = hxxp://start.flashvideodownloader.org/result.php?cx=partner-pub-5087362176467115:h6z8ss-efx2&cof=FORID:10&ie=ISO-8859-1&sa=Search&q={searchTerms}
BHO: Open FVD Suite IE Plugin -> {2B171655-A70C-5c18-B693-6CB5DC269D44} -> C:\Program Files\FVDIEPlugin\FVDIEPlugin_1.dll [2011-03-04] (www.flashvideodownloader.org/fvd-suite/)
BHO: DivX Plus Web Player HTML5 <video> -> {326E768D-4182-46FD-9C16-1449A49795F4} -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2011-02-08] (DivX, LLC)
BHO: DivX HiQ -> {593DDEC6-7468-4cdd-90E1-42DADAA222E9} -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2011-02-08] (DivX, LLC)
BHO: SMART Notebook Download Utility -> {67BCF957-85FC-4036-8DC4-D4D80E00A77B} -> C:\Program Files\SMART Technologies\Education Software\NotebookPlugin.dll [2013-08-23] (SMART Technologies ULC.)
BHO: Search Helper -> {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -> C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-09-23] (Microsoft Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-27] (Microsoft Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_31\bin\ssv.dll [2015-01-29] (Oracle Corporation)
BHO: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files\Windows Live\Companion\companioncore.dll [2012-03-09] (Microsoft Corporation)
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-01-17] (Skype Technologies S.A.)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-01-29] (Oracle Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2015-10-19] (Hewlett-Packard Company)
Toolbar: HKLM - FVD Suite IE Plugin - {2B171655-A70C-5c18-B693-6CB5DC269D41} - C:\Program Files\FVDIEPlugin\FVDIEPlugin_1.dll [2011-03-04] (www.flashvideodownloader.org/fvd-suite/)
Toolbar: HKU\S-1-5-21-619215122-3655858824-2443121906-1000 -> FVD Suite IE Plugin - {2B171655-A70C-5C18-B693-6CB5DC269D41} - C:\Program Files\FVDIEPlugin\FVDIEPlugin_1.dll [2011-03-04] (www.flashvideodownloader.org/fvd-suite/)
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-27] (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-01-17] (Skype Technologies S.A.)
 
FireFox:
========
FF ProfilePath: C:\Users\MATT\AppData\Roaming\Mozilla\Firefox\Profiles\1bfhkrnw.default
FF Homepage: hxxps://mysearch.avg.com/?cid={8D7ECDEA-EEB3-467B-8A40-F1BC3DFBEFAF}&mid=97dc776c266747cd9eb3d15650b6b80b-c7796f2cf1b6623549e054395218af25b884e5b5&lang=en&ds=AVG&coid=avgtbavg&cmpid=0215pi&pr=fr&d=2015-05-02 10:49:26&v=4.1.0.411&pid=wtu&sg=&sap=hp
FF Keyword.URL: hxxp://login.lataminternet.com/search.php?q=
FF NetworkProxy: "http", "82.113.142.185"
FF NetworkProxy: "http_port", 3128
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_20_0_0_235.dll [2015-12-11] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw.dll [2012-04-26] (Adobe Systems, Inc.)
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2013-10-02] ()
FF Plugin: @divx.com/DivX Browser Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll [2011-02-08] (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-01-25] (DivX, LLC.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-01-29] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-01-29] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-09] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-10-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-619215122-3655858824-2443121906-1000: @tools.google.com/Google Update;version=3 -> C:\Users\MATT\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-619215122-3655858824-2443121906-1000: @tools.google.com/Google Update;version=9 -> C:\Users\MATT\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-619215122-3655858824-2443121906-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\MATT\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-04-24] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-619215122-3655858824-2443121906-1000: sony.com/MediaGoDetector -> C:\Program Files\Sony\Media Go\npMediaGoDetector.dll [2013-04-25] (Sony Network Entertainment International LLC)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2006-10-27] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2015-10-01] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll [2013-05-28] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll [2013-05-28] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll [2013-05-28] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll [2013-05-28] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll [2013-05-28] (Apple Inc.)
FF Extension: Google Analytics Opt-out Browser Add-on - C:\Users\MATT\AppData\Roaming\Mozilla\Firefox\Profiles\1bfhkrnw.default\extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi [2012-03-17] [not signed]
FF Extension: DownloadHelper - C:\Users\MATT\AppData\Roaming\Mozilla\Firefox\Profiles\1bfhkrnw.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-08-22] [not signed]
FF Extension: Flash Video Downloader - Full HD Download - C:\Users\MATT\AppData\Roaming\Mozilla\Firefox\Profiles\1bfhkrnw.default\Extensions\artur.dubovoy@gmail.com [2014-04-24] [not signed]
FF Extension: Firebug - C:\Users\MATT\AppData\Roaming\Mozilla\Firefox\Profiles\1bfhkrnw.default\Extensions\firebug@software.joehewitt.com.xpi [2013-10-11] [not signed]
FF Extension: Firefox Universal Uploader (fireuploader) - C:\Users\MATT\AppData\Roaming\Mozilla\Firefox\Profiles\1bfhkrnw.default\Extensions\{0200c2a9-70da-4f6d-b527-f5f7d7877228}.xpi [2011-04-03] [not signed]
FF Extension: Adblock Plus - C:\Users\MATT\AppData\Roaming\Mozilla\Firefox\Profiles\1bfhkrnw.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-04-24] [not signed]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2014-04-24] [not signed]
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video
FF Extension: DivX Plus Web Player HTML5 &video& - C:\Program Files\DivX\DivX Plus Web Player\firefox\html5video [2011-04-13] [not signed]
FF HKLM\...\Firefox\Extensions: [{6904342A-8307-11DF-A508-4AE2DFD72085}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa
FF Extension: DivX HiQ - C:\Program Files\DivX\DivX Plus Web Player\firefox\wpa [2011-04-13] [not signed]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2013-10-26]
 
Chrome: 
=======
CHR Profile: C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Magic Actions for YouTube™) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Default\Extensions\abjcfabbhafbcdfjoecdgepllmpfceif [2015-09-11]
CHR Extension: (Google Drive) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-19]
CHR Extension: (Google Cast) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Default\Extensions\boadgeojelhgndaghljhdicfkmllpafd [2015-08-18]
CHR Extension: (Nanny for Google Chrome ™) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Default\Extensions\cljcgchbnolheggdgaeclffeagnnmhno [2013-01-03]
CHR Extension: (Blur) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Default\Extensions\epanfjkfahimkgomnigadpkobaefekcd [2015-09-11]
CHR Extension: (ZenMate Security, Privacy & Unblock VPN) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2015-09-04]
CHR Extension: (DivX HiQ) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Default\Extensions\fnjbmmemklcjgepojigaapkoodmkgbae [2011-06-13]
CHR Extension: (Google Docs Offline) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-06]
CHR Extension: (AdBlock) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-09-04]
CHR Extension: (TweetDeck by Twitter) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbdpomandigafcibbmofojjchbcdagbl [2015-07-29]
CHR Extension: (Get Flash) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Default\Extensions\innejflndneacnpgjkdhejmejgpnhfgf [2011-06-13] [UpdateUrl: hxxp://ruzanow.ru/extensions/updates.xml] <==== ATTENTION
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-22]
CHR Extension: (Skype Click to Call) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-05-21]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2014-11-27]
CHR Extension: (Chrome Web Store Payments) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-29]
CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2011-06-13]
CHR Extension: (Transcribe: transcribe audio/interviews fast!) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Default\Extensions\ogokenmicnjdfhmhocanoemnddmpcjjm [2015-03-30]
CHR Profile: C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Google Slides) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-05]
CHR Extension: (Google Docs) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-11]
CHR Extension: (Google Drive) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-24]
CHR Extension: (YouTube) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Google Search) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-30]
CHR Extension: (Google Sheets) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-05]
CHR Extension: (DivX HiQ) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fnjbmmemklcjgepojigaapkoodmkgbae [2015-09-11]
CHR Extension: (Google Docs Offline) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-19]
CHR Extension: (AdBlock) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-12-05]
CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2015-12-12]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2015-09-11]
CHR Extension: (Chrome Web Store Payments) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-09-11]
CHR Extension: (DivX Plus Web Player HTML5 <video>) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nneajnkjbffgblleaoojgaacokifdkhm [2015-09-11]
CHR Extension: (Hola - Unlimited Proxy VPN) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\opalpjjboefohnelaemnhdhlceibbcgl [2015-11-28]
CHR Extension: (Gmail) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-11]
CHR Profile: C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Profile 2
CHR HKLM\...\Chrome\Extension: [fnjbmmemklcjgepojigaapkoodmkgbae] - C:\Program Files\DivX\DivX Plus Web Player\google_chrome\wpa\wpa.crx [2011-02-08]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2012-01-17]
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\google_chrome\html5video\html5video.crx [2011-02-08]
CHR HKU\S-1-5-21-619215122-3655858824-2443121906-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\MATT\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2015-11-01]
CHR HKU\S-1-5-21-619215122-3655858824-2443121906-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
StartMenuInternet: Google Chrome.2I7LCQ7OPLBOZMI7W7ORK3WHZI - C:\Users\MATT\AppData\Local\Google\Chrome\Application\chrome.exe
 
==================== Services (Whitelisted) ========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
S3 AvgAMPS; C:\Program Files\AVG\Av\avgamps.exe [615584 2015-11-20] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files\AVG\Av\avgidsagent.exe [3857272 2015-11-20] (AVG Technologies CZ, s.r.o.)
R2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [862632 2015-11-12] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\Av\avgwdsvcx.exe [579776 2015-11-20] (AVG Technologies CZ, s.r.o.)
R2 DiskDoctorService; C:\Program Files\Norton Utilities 15\Tools\Disk Doctor\DiskDoctorSrv.exe [1029480 2010-11-30] (Symantec Corporation)
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [1074480 2014-04-04] (Flexera Software LLC)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [922928 2015-11-13] (NVIDIA Corporation)
R2 HPSupportSolutionsFrameworkService; C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [25800 2015-09-28] (Hewlett-Packard Company)
R2 MDM; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-27] (Microsoft Corporation) [File not signed]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2015-04-30] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [284504 2015-04-30] (Microsoft Corporation)
R2 NitroDriverReadSpool; C:\Program Files\Nitro PDF\Professional\NitroPDFDriverService.exe [196928 2011-03-21] (Nitro PDF Software)
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1872688 2015-11-13] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6288688 2015-11-13] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4611888 2015-11-13] (NVIDIA Corporation)
R2 PMBDeviceInfoProvider; C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [494592 2015-06-02] (Sony Corporation)
R2 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [167936 2006-06-07] () [File not signed]
R2 SMARTHelperService; C:\Program Files\SMART Technologies\Education Software\SMARTHelperService.exe [539952 2013-08-23] (SMART Technologies)
S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155520 2015-06-10] (Avanquest Software)
R2 SpeedDiskService; C:\Program Files\Norton Utilities 15\Tools\SpeedDisk\SpeedDiskSrv.exe [1037672 2010-11-30] (Symantec Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [280376 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23256 2015-10-30] (Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files\AVG Web TuneUp\WtuSystemSupport.exe [1205136 2015-09-30] ()
 
===================== Drivers (Whitelisted) ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R3 athr; C:\WINDOWS\System32\drivers\athwn.sys [3205632 2015-10-30] (Qualcomm Atheros Communications, Inc.)
S0 Avgbootx; C:\WINDOWS\System32\DRIVERS\avgbootx.sys [19072 2015-09-09] (AVG Technologies CZ, s.r.o.)
R1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [149936 2015-11-06] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\WINDOWS\System32\DRIVERS\avgidsdriverx.sys [255920 2015-11-06] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [231344 2015-08-20] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\WINDOWS\system32\DRIVERS\avgidsshimw8x.sys [31664 2015-11-20] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [229296 2015-10-21] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [308656 2015-08-14] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [193968 2015-11-06] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [36784 2015-08-10] (AVG Technologies CZ, s.r.o.)
R1 Avgwfpx; C:\WINDOWS\system32\DRIVERS\avgwfpx.sys [238000 2015-10-08] (AVG Technologies CZ, s.r.o.)
R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-04] () [File not signed]
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [32384 2015-11-07] ()
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [170200 2015-11-24] (Malwarebytes)
R0 MpFilter; C:\WINDOWS\System32\DRIVERS\MpFilter.sys [245096 2015-03-05] (Microsoft Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [18736 2015-11-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad32v.sys [44840 2015-08-11] (NVIDIA Corporation)
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [494080 2015-10-30] (Realtek                                            )
R3 SMARTMouseFilterx86; C:\WINDOWS\System32\drivers\SMARTMouseFilterx86.sys [8192 2013-08-12] (SMART Technologies)
R3 SMARTVHidMini2000x86; C:\WINDOWS\System32\drivers\SMARTVHidMini2000x86.sys [7680 2013-08-12] (SMART Technologies)
R3 SMARTVTabletPCx86; C:\WINDOWS\System32\drivers\SMARTVTabletPCx86.sys [15872 2013-08-12] (SMART Technologies ULC)
R0 speedfan; C:\WINDOWS\System32\speedfan.sys [21696 2010-12-18] (Almico Software)
S0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [436792 2012-04-03] (Duplex Secure Ltd.)
S3 SymDSMon; C:\Windows\system32\drivers\SymDSMon.sys [128248 2010-11-30] (Symantec Corporation)
S3 SYMSpeedDisk; C:\Windows\system32\drivers\SymSpeedDisk.sys [108800 2010-11-30] (Symantec Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37400 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [246104 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [98648 2015-10-30] (Microsoft Corporation)
R3 WinDriver6; C:\WINDOWS\system32\drivers\windrvr6.sys [193696 2008-07-03] (Jungo)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [163328 2015-10-30] (Microsoft Corporation)
R2 {22D78859-9CE9-4B77-BF18-AC83E81A9263}; C:\Program Files\HP\QuickPlay\000.fcl [87536 2009-09-09] (CyberLink Corp.)
U3 idsvc; no ImagePath
U3 wpcsvc; no ImagePath
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-12-12 20:05 - 2015-12-12 20:09 - 00033844 _____ C:\Users\MATT\Downloads\FRST.txt
2015-12-12 20:04 - 2015-12-12 20:05 - 00000000 ____D C:\FRST
2015-12-12 19:43 - 2015-12-12 19:43 - 00000024 _____ C:\Users\MATT\dns.txt
2015-12-12 18:17 - 2015-12-12 20:04 - 01720320 _____ (Farbar) C:\Users\MATT\Downloads\FRST.exe
2015-12-12 14:38 - 2015-12-12 14:38 - 00007567 _____ C:\Users\MATT\Downloads\440046.zip
2015-12-11 17:22 - 2015-11-24 17:03 - 02918808 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-12-11 17:22 - 2015-11-24 15:54 - 02756096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2015-12-11 17:22 - 2015-11-24 14:11 - 18678272 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-12-11 17:22 - 2015-11-24 14:09 - 19338240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-12-11 17:22 - 2015-11-24 14:08 - 12125184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-12-11 17:21 - 2015-12-01 13:51 - 01821024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2015-12-11 17:21 - 2015-11-24 18:04 - 01539744 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-12-11 17:21 - 2015-11-24 16:26 - 01273728 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2015-12-11 17:21 - 2015-11-24 15:48 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\readingviewresources.dll
2015-12-11 17:21 - 2015-11-24 15:47 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-12-11 17:21 - 2015-11-24 15:39 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wshrm.dll
2015-12-11 17:21 - 2015-11-24 15:33 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rmcast.sys
2015-12-11 17:21 - 2015-11-24 15:19 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2015-12-11 17:21 - 2015-11-24 15:14 - 00415744 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2015-12-11 17:21 - 2015-11-24 15:03 - 00503296 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-12-11 17:21 - 2015-11-24 15:02 - 01154560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-12-11 17:21 - 2015-11-24 14:59 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2015-12-11 17:21 - 2015-11-24 14:57 - 01328128 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2015-12-11 17:21 - 2015-11-24 14:41 - 02977280 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-12-11 17:21 - 2015-11-24 14:04 - 02155008 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-12-09 18:33 - 2015-12-09 18:34 - 00488076 _____ C:\Users\MATT\Downloads\AP2 Term 2 ECA selection letter (1).pdf
2015-12-09 18:28 - 2015-12-09 18:28 - 00488076 _____ C:\Users\MATT\Downloads\AP2 Term 2 ECA selection letter.pdf
2015-12-09 18:21 - 2015-12-09 18:21 - 00353109 _____ C:\Users\MATT\Downloads\AP1 Cross-Campus Christmas Concert Performers Letter 2015.pdf
2015-12-09 18:13 - 2015-12-09 18:13 - 00420102 _____ C:\Users\MATT\Downloads\AP1 Carol Concert 2015 Performers Letter.pdf
2015-12-07 18:29 - 2015-12-07 18:29 - 00579452 _____ C:\Users\MATT\Downloads\0654_y17_sp_2.pdf
2015-12-07 18:24 - 2015-12-07 18:32 - 00000000 ____D C:\ProgramData\Avg_Update_1215av
2015-12-06 20:27 - 2015-12-06 20:27 - 02652325 _____ C:\Users\MATT\Downloads\Topic 6.2 - Newtons law of gravitation (1).pptx
2015-12-06 19:22 - 2015-12-06 20:28 - 00000000 ____D C:\Users\MATT\AppData\Local\Deployment
2015-12-06 19:21 - 2015-12-06 19:22 - 02652325 _____ C:\Users\MATT\Downloads\Topic 6.2 - Newtons law of gravitation.pptx
2015-12-06 19:16 - 2015-12-06 19:16 - 00000898 _____ C:\Users\MATT\Downloads\gravity-and-orbits_en.jnlp
2015-12-06 19:16 - 2015-12-06 19:16 - 00000796 _____ C:\Users\MATT\Downloads\rotation_en.jnlp
2015-12-06 18:03 - 2015-12-06 18:03 - 00000000 ____D C:\Users\MATT\AppData\Local\MicrosoftEdge
2015-12-06 16:29 - 2015-12-06 17:13 - 133950339 _____ C:\Users\MATT\Downloads\1gbv5.mp4
2015-12-06 14:17 - 2015-12-06 14:17 - 01013744 _____ (DivX, LLC) C:\Users\MATT\Downloads\DivXInstaller.exe
2015-12-06 10:04 - 2015-12-06 12:26 - 00000332 _____ C:\WINDOWS\Tasks\HPCeeScheduleForMATT.job
2015-12-05 23:06 - 2015-12-05 23:06 - 00019770 _____ C:\Users\MATT\Downloads\narcos.s01.e02.the.sword.of.simon.bolivar.(2015).spa.1cd.(6307237).zip
2015-12-05 23:03 - 2015-12-05 23:03 - 00018416 _____ C:\Users\MATT\Downloads\narcos.s01.e02.the.sword.of.simon.bolivar.(2015).spa.1cd.(6286597).zip
2015-12-05 22:59 - 2015-12-05 22:59 - 00010087 _____ C:\Users\MATT\Downloads\narcos.s01.e02.the.sword.of.simon.bolivar.(2015).spa.1cd.(6295816).zip
2015-12-05 22:49 - 2015-12-05 22:49 - 00010169 _____ C:\Users\MATT\Downloads\narcos.s01.e02.the.sword.of.simon.bolivar.(2015).spa.1cd.(6343068).zip
2015-12-05 21:14 - 2015-12-05 21:14 - 00028829 _____ C:\Users\MATT\Downloads\narcos.s01.e01.descenso.(2015).spa.1cd.(6304858).zip
2015-12-05 21:13 - 2015-12-05 21:13 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdMtpDr_01_11_00.Wdf
2015-12-05 16:04 - 2015-12-05 16:04 - 00000215 _____ C:\Users\MATT\Desktop\Fallout.url
2015-12-05 11:31 - 2015-12-05 11:31 - 00000000 ____D C:\Users\MATT\AppData\Roaming\Fallout
2015-12-04 20:52 - 2015-12-04 20:52 - 00000020 ___SH C:\Users\DefaultAppPool\ntuser.ini
2015-12-04 20:52 - 2015-12-04 20:52 - 00000000 _SHDL C:\Users\DefaultAppPool\Reciente
2015-12-04 20:52 - 2015-12-04 20:52 - 00000000 _SHDL C:\Users\DefaultAppPool\Plantillas
2015-12-04 20:52 - 2015-12-04 20:52 - 00000000 _SHDL C:\Users\DefaultAppPool\Mis documentos
2015-12-04 20:52 - 2015-12-04 20:52 - 00000000 _SHDL C:\Users\DefaultAppPool\Menú Inicio
2015-12-04 20:52 - 2015-12-04 20:52 - 00000000 _SHDL C:\Users\DefaultAppPool\Impresoras
2015-12-04 20:52 - 2015-12-04 20:52 - 00000000 _SHDL C:\Users\DefaultAppPool\Entorno de red
2015-12-04 20:52 - 2015-12-04 20:52 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Mis vídeos
2015-12-04 20:52 - 2015-12-04 20:52 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Mis imágenes
2015-12-04 20:52 - 2015-12-04 20:52 - 00000000 _SHDL C:\Users\DefaultAppPool\Documents\Mi música
2015-12-04 20:52 - 2015-12-04 20:52 - 00000000 _SHDL C:\Users\DefaultAppPool\Datos de programa
2015-12-04 20:52 - 2015-12-04 20:52 - 00000000 _SHDL C:\Users\DefaultAppPool\Configuración local
2015-12-04 20:52 - 2015-12-04 20:52 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2015-12-04 20:52 - 2015-12-04 20:52 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Historial
2015-12-04 20:52 - 2015-12-04 20:52 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Datos de programa
2015-12-04 20:52 - 2015-12-04 20:52 - 00000000 _SHDL C:\Users\DefaultAppPool\AppData\Local\Archivos temporales de Internet
2015-12-04 20:52 - 2015-12-04 20:52 - 00000000 ____D C:\Users\DefaultAppPool
2015-12-04 20:52 - 2015-11-26 23:54 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\TuneUp Software
2015-12-04 20:52 - 2015-11-26 23:54 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Roaming\Media Center Programs
2015-12-04 20:52 - 2015-11-26 23:54 - 00000000 ____D C:\Users\DefaultAppPool\AppData\LocalGoogle
2015-12-04 20:52 - 2015-11-26 23:54 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Local\Microsoft Help
2015-12-04 20:52 - 2015-11-26 23:54 - 00000000 ____D C:\Users\DefaultAppPool\AppData\Local\Google
2015-12-04 17:13 - 2015-11-22 17:41 - 05797728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-12-04 17:12 - 2015-11-22 17:41 - 01859448 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-12-04 17:12 - 2015-11-22 17:34 - 00975200 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-12-04 17:12 - 2015-11-22 17:34 - 00023776 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-12-04 17:12 - 2015-11-22 17:26 - 00431232 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWanAPI.dll
2015-12-04 17:12 - 2015-11-22 17:25 - 00063528 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwapi.dll
2015-12-04 17:12 - 2015-11-22 17:24 - 00051128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2015-12-04 17:12 - 2015-11-22 17:24 - 00043376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsUtilsV2.dll
2015-12-04 17:12 - 2015-11-22 17:23 - 00076128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdstor.sys
2015-12-04 17:12 - 2015-11-22 17:20 - 00504624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2015-12-04 17:12 - 2015-11-22 17:20 - 00139616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2015-12-04 17:12 - 2015-11-22 17:14 - 02185840 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2015-12-04 17:12 - 2015-11-22 17:09 - 00641728 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-12-04 17:12 - 2015-11-22 17:08 - 00364176 _____ (Microsoft Corporation) C:\WINDOWS\system32\services.exe
2015-12-04 17:12 - 2015-11-22 16:43 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManagerProxy.dll
2015-12-04 17:12 - 2015-11-22 16:42 - 13017600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2015-12-04 17:12 - 2015-11-22 16:42 - 00138240 _____ (Microsoft Corporation) C:\WINDOWS\system32\ETWCoreUIComponentsResources.dll
2015-12-04 17:12 - 2015-11-22 16:38 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssign32.dll
2015-12-04 17:12 - 2015-11-22 16:37 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2015-12-04 17:12 - 2015-11-22 16:33 - 00463360 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2015-12-04 17:12 - 2015-11-22 16:33 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-12-04 17:12 - 2015-11-22 16:32 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CellularAPI.dll
2015-12-04 17:12 - 2015-11-22 16:32 - 00340480 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2015-12-04 17:12 - 2015-11-22 16:32 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-12-04 17:12 - 2015-11-22 16:32 - 00240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2015-12-04 17:12 - 2015-11-22 16:31 - 00470528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApi.dll
2015-12-04 17:12 - 2015-11-22 16:30 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2015-12-04 17:12 - 2015-11-22 16:30 - 00484864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmsvc.dll
2015-12-04 17:12 - 2015-11-22 16:28 - 00948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2015-12-04 17:12 - 2015-11-22 16:28 - 00686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-12-04 17:12 - 2015-11-22 16:27 - 02049024 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-12-04 17:12 - 2015-11-22 16:27 - 01944576 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2015-12-04 17:12 - 2015-11-22 16:27 - 00706048 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-12-04 17:12 - 2015-11-22 16:27 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-12-04 17:12 - 2015-11-22 16:27 - 00241664 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll
2015-12-04 17:12 - 2015-11-22 16:26 - 01139200 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2015-12-04 17:12 - 2015-11-22 16:26 - 00951808 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2015-12-04 17:12 - 2015-11-22 16:26 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2015-12-04 17:12 - 2015-11-22 16:26 - 00421888 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2015-12-04 17:12 - 2015-11-22 16:24 - 00245760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2015-12-04 17:12 - 2015-11-22 16:23 - 03197440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2015-12-04 17:12 - 2015-11-22 16:20 - 01860096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2015-12-04 17:12 - 2015-11-22 16:20 - 01793024 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-12-04 17:12 - 2015-11-22 16:20 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2015-12-04 17:12 - 2015-11-22 16:19 - 02064384 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-12-04 17:12 - 2015-11-22 16:18 - 01505280 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-12-04 17:12 - 2015-11-22 16:18 - 00748032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2015-12-04 17:12 - 2015-11-22 16:17 - 02680320 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-12-04 17:12 - 2015-11-22 16:17 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-12-04 17:12 - 2015-11-22 16:17 - 01925120 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-12-04 17:12 - 2015-11-22 16:17 - 01086464 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2015-12-04 17:12 - 2015-11-22 16:16 - 01706496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActiveSyncProvider.dll
2015-12-04 17:12 - 2015-11-22 16:11 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2015-12-04 17:11 - 2015-11-22 16:42 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2015-12-04 17:11 - 2015-11-22 16:42 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanprotdim.dll
2015-12-04 17:11 - 2015-11-22 16:39 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcertinst.exe
2015-12-04 17:11 - 2015-11-22 16:39 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2015-12-04 17:11 - 2015-11-22 16:39 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\iernonce.dll
2015-12-04 17:11 - 2015-11-22 16:37 - 00061440 _____ (Microsoft Corporation) C:\WINDOWS\system32\iesetup.dll
2015-12-04 17:11 - 2015-11-22 16:35 - 00203264 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2015-12-04 17:11 - 2015-11-22 16:33 - 06529024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2015-12-04 17:11 - 2015-11-22 16:33 - 00433664 _____ (Microsoft Corporation) C:\WINDOWS\system32\MBMediaManager.dll
2015-12-04 17:11 - 2015-11-22 16:32 - 00346112 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2015-12-04 17:11 - 2015-11-22 16:31 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2015-12-04 17:11 - 2015-11-22 16:30 - 01764864 _____ (Microsoft Corporation) C:\WINDOWS\system32\pnidui.dll
2015-12-04 17:11 - 2015-11-22 16:29 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2015-12-04 17:11 - 2015-11-22 16:29 - 00607744 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2015-12-04 17:11 - 2015-11-22 16:29 - 00385024 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2015-12-04 17:11 - 2015-11-22 16:28 - 01443328 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2015-12-04 17:11 - 2015-11-22 16:28 - 00793600 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2015-12-04 17:11 - 2015-11-22 16:28 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2015-12-04 17:11 - 2015-11-22 16:27 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2015-12-04 17:11 - 2015-11-22 16:25 - 06297088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2015-12-04 17:11 - 2015-11-22 16:23 - 05202944 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2015-12-04 17:11 - 2015-11-22 16:19 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2015-12-04 17:10 - 2015-11-22 16:48 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2015-12-04 17:10 - 2015-11-22 16:48 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosResource.dll
2015-12-04 17:10 - 2015-11-22 16:45 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MapControls.dll
2015-12-04 17:10 - 2015-11-22 16:45 - 00036352 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCoreRes.dll
2015-12-04 17:10 - 2015-11-22 16:45 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosTrace.dll
2015-12-04 17:10 - 2015-11-22 16:45 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-MosHost.dll
2015-12-04 17:10 - 2015-11-22 16:44 - 01268736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2015-12-04 17:10 - 2015-11-22 16:44 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2015-12-04 17:10 - 2015-11-22 16:44 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ihvrilproxy.dll
2015-12-04 17:10 - 2015-11-22 16:44 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\rilproxy.dll
2015-12-04 17:10 - 2015-11-22 16:43 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvcProxy.dll
2015-12-04 17:10 - 2015-11-22 16:42 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2015-12-04 17:10 - 2015-11-22 16:42 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsplib.dll
2015-12-04 17:10 - 2015-11-22 16:42 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2015-12-04 17:10 - 2015-11-22 16:42 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\nativemap.dll
2015-12-04 17:10 - 2015-11-22 16:42 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2015-12-04 17:10 - 2015-11-22 16:42 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlStringsRes.dll
2015-12-04 17:10 - 2015-11-22 16:40 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2015-12-04 17:10 - 2015-11-22 16:40 - 00049152 _____ (Microsoft Corporation) C:\WINDOWS\system32\XblAuthTokenBrokerExt.dll
2015-12-04 17:10 - 2015-11-22 16:40 - 00023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2015-12-04 17:10 - 2015-11-22 16:39 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2015-12-04 17:10 - 2015-11-22 16:39 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2015-12-04 17:10 - 2015-11-22 16:38 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapstoasttask.dll
2015-12-04 17:10 - 2015-11-22 16:37 - 00050688 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2015-12-04 17:10 - 2015-11-22 16:37 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wwanpref.dll
2015-12-04 17:10 - 2015-11-22 16:34 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcmcsp.dll
2015-12-04 17:10 - 2015-11-22 16:34 - 00166912 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2015-12-04 17:10 - 2015-11-22 16:33 - 00205824 _____ (Nokia) C:\WINDOWS\system32\NmaDirect.dll
2015-12-04 17:10 - 2015-11-22 16:33 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwancfg.dll
2015-12-04 17:10 - 2015-11-22 16:28 - 00100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2015-12-04 17:10 - 2015-11-22 16:25 - 00133632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2015-12-04 17:10 - 2015-11-22 16:24 - 00083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2015-12-04 17:10 - 2015-11-22 16:24 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2015-11-28 21:10 - 2015-11-28 21:10 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2015-11-28 18:03 - 2015-11-28 18:03 - 00000000 ____D C:\Users\MATT\AppData\Local\NetworkTiles
2015-11-28 15:46 - 2015-11-28 15:46 - 00000000 ____D C:\Users\MATT\AppData\Roaming\11bitstudios
2015-11-28 14:29 - 2015-11-28 14:29 - 00000000 ____D C:\Users\MATT\AppData\Local\PeerDistRepub
2015-11-28 11:47 - 2015-11-28 11:47 - 05795840 _____ C:\Users\MATT\s-1-5-21-619215122-3655858824-2443121906-1000.rrr
2015-11-28 10:36 - 2015-11-28 10:36 - 00000000 ____D C:\WINDOWS\PCHEALTH
2015-11-28 10:32 - 2015-11-13 01:37 - 00091384 _____ C:\WINDOWS\system32\NvRtmpStreamer32.dll
2015-11-28 10:30 - 2015-11-28 10:30 - 00000000 ____D C:\ProgramData\Package Cache
2015-11-28 10:02 - 2015-11-28 10:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-11-28 09:56 - 2015-11-28 09:57 - 28849904 _____ C:\Users\MATT\Downloads\vlc-2.2.1-win32.exe
2015-11-28 07:53 - 2015-11-28 08:00 - 282848848 _____ (NVIDIA Corporation) C:\Users\MATT\Downloads\341.74-notebook-win10-64bit-international.exe
2015-11-28 07:28 - 2015-12-06 10:04 - 00000000 ____D C:\Users\MATT\AppData\Local\Hewlett-Packard
2015-11-28 07:28 - 2015-11-28 07:28 - 00000000 ____D C:\Users\MATT\AppData\Roaming\Hewlett-Packard
2015-11-28 07:22 - 2015-11-28 07:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2015-11-28 07:21 - 2015-11-28 07:43 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2015-11-28 07:21 - 2015-11-28 07:21 - 00000000 ____D C:\System.sav
2015-11-27 18:54 - 2015-11-28 07:07 - 40538576 _____ (Hewlett-Packard ) C:\Users\MATT\Downloads\sp72974.exe
2015-11-27 18:17 - 2015-11-27 18:36 - 239676440 _____ (NVIDIA Corporation) C:\Users\MATT\Downloads\359.00-notebook-win10-32bit-international-whql.exe
2015-11-27 17:57 - 2015-11-27 17:59 - 37668288 _____ (NVIDIA Corporation) C:\Users\MATT\Downloads\GeForce_Experience_v2.5.15.54.exe
2015-11-27 17:43 - 2015-11-27 17:43 - 00000000 ____D C:\NVIDIA
2015-11-27 17:34 - 2015-11-27 17:42 - 282835496 _____ (NVIDIA Corporation) C:\Users\MATT\Downloads\341.81-notebook-win10-64bit-international.exe
2015-11-27 16:49 - 2015-11-27 16:50 - 26495352 _____ C:\Users\MATT\Downloads\vlc-2.2.1-win32.7z
2015-11-27 06:48 - 2015-11-27 06:49 - 00000000 ____D C:\Users\MATT\AppData\Local\Comms
2015-11-27 06:28 - 2015-11-27 06:29 - 00002368 _____ C:\Users\MATT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-11-27 06:28 - 2015-11-27 06:29 - 00000000 ___RD C:\Users\MATT\OneDrive
2015-11-27 06:05 - 2015-11-27 06:05 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2015-11-27 06:03 - 2015-11-27 06:03 - 00001047 _____ C:\Users\MATT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Optional Features.lnk
2015-11-27 05:59 - 2015-11-27 05:59 - 00000000 ____D C:\Users\MATT\AppData\Local\Publishers
2015-11-27 05:56 - 2015-11-27 05:56 - 00000000 __RHD C:\Users\Public\AccountPictures
2015-11-27 05:56 - 2015-11-27 05:56 - 00000000 ____D C:\Users\MATT\AppData\Local\ActiveSync
2015-11-27 05:55 - 2015-12-11 17:40 - 00000000 ____D C:\Users\MATT\AppData\Local\Packages
2015-11-27 05:54 - 2015-11-27 05:54 - 00000000 ____D C:\Users\MATT\AppData\Local\TileDataLayer
2015-11-27 05:53 - 2015-11-27 05:53 - 00000020 ___SH C:\Users\MATT\ntuser.ini
2015-11-27 05:13 - 2015-11-28 11:17 - 00000000 ___DC C:\WINDOWS\Panther
2015-11-27 05:04 - 2015-11-27 05:04 - 00000000 ____D C:\Windows.old
2015-11-27 05:03 - 2015-11-27 05:03 - 21125408 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 09918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 02179584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 02001408 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00791552 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00727752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00704352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2015-11-27 05:03 - 2015-11-27 05:03 - 00647168 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00586080 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00540752 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-11-27 05:03 - 2015-11-27 05:03 - 00520704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00511320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00471392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-11-27 05:03 - 2015-11-27 05:03 - 00454056 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00443744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2015-11-27 05:03 - 2015-11-27 05:03 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00405048 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2015-11-27 05:03 - 2015-11-27 05:03 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmkvsrcsnk.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00366224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2015-11-27 05:03 - 2015-11-27 05:03 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00297072 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2015-11-27 05:03 - 2015-11-27 05:03 - 00296488 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00238080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\deviceaccess.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft-Windows-AppModelExecEvents.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00204288 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00199168 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00160768 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-11-27 05:03 - 2015-11-27 05:03 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00135168 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringservice.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00116728 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfps.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00113624 _____ (Microsoft Corporation) C:\WINDOWS\system32\EncDump.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2015-11-27 05:03 - 2015-11-27 05:03 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00081088 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00073360 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2015-11-27 05:03 - 2015-11-27 05:03 - 00042496 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringclient.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00040448 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00037376 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00032040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2015-11-27 05:03 - 2015-11-27 05:03 - 00030048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wimmount.sys
2015-11-27 05:03 - 2015-11-27 05:03 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2015-11-27 05:03 - 2015-11-27 05:03 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.proxy.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\tetheringconfigsp.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\IcsEntitlementHost.exe
2015-11-27 05:03 - 2015-11-27 05:03 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2015-11-27 05:03 - 2015-11-27 05:03 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2015-11-27 04:58 - 2015-10-30 01:42 - 05739520 _____ (Microsoft Corporation) C:\WINDOWS\system32\prm0009.dll
2015-11-27 04:58 - 2015-10-30 01:41 - 02629632 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsLexicons0009.dll
2015-11-27 04:58 - 2015-10-30 01:24 - 04847616 _____ (Microsoft Corporation) C:\WINDOWS\system32\NlsData0009.dll
2015-11-27 04:37 - 2015-11-27 04:37 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2015-11-27 04:32 - 2015-11-27 04:32 - 00000000 ____D C:\WINDOWS\system32\XPSViewer
2015-11-27 04:32 - 2015-11-27 04:32 - 00000000 ____D C:\WINDOWS\system32\msmq
2015-11-27 04:32 - 2015-11-27 04:32 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2015-11-27 04:32 - 2015-11-27 04:32 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-11-27 04:32 - 2015-11-27 04:32 - 00000000 ____D C:\inetpub
2015-11-27 04:32 - 2015-11-27 00:00 - 00000000 ____D C:\Program Files\MSBuild
2015-11-27 04:30 - 2015-10-23 23:47 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2015-11-27 04:30 - 2015-10-23 23:47 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-11-27 04:30 - 2015-10-23 23:47 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2015-11-27 00:26 - 2015-11-27 00:26 - 00000000 _SHDL C:\Users\Default\Reciente
2015-11-27 00:26 - 2015-11-27 00:26 - 00000000 _SHDL C:\Users\Default\Plantillas
2015-11-27 00:26 - 2015-11-27 00:26 - 00000000 _SHDL C:\Users\Default\Mis documentos
2015-11-27 00:26 - 2015-11-27 00:26 - 00000000 _SHDL C:\Users\Default\Menú Inicio
2015-11-27 00:26 - 2015-11-27 00:26 - 00000000 _SHDL C:\Users\Default\Impresoras
2015-11-27 00:26 - 2015-11-27 00:26 - 00000000 _SHDL C:\Users\Default\Entorno de red
2015-11-27 00:26 - 2015-11-27 00:26 - 00000000 _SHDL C:\Users\Default\Documents\Mis vídeos
2015-11-27 00:26 - 2015-11-27 00:26 - 00000000 _SHDL C:\Users\Default\Documents\Mis imágenes
2015-11-27 00:26 - 2015-11-27 00:26 - 00000000 _SHDL C:\Users\Default\Documents\Mi música
2015-11-27 00:26 - 2015-11-27 00:26 - 00000000 _SHDL C:\Users\Default\Datos de programa
2015-11-27 00:26 - 2015-11-27 00:26 - 00000000 _SHDL C:\Users\Default\Configuración local
2015-11-27 00:26 - 2015-11-27 00:26 - 00000000 _SHDL C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2015-11-27 00:26 - 2015-11-27 00:26 - 00000000 _SHDL C:\Users\Default\AppData\Local\Historial
2015-11-27 00:26 - 2015-11-27 00:26 - 00000000 _SHDL C:\Users\Default\AppData\Local\Datos de programa
2015-11-27 00:26 - 2015-11-27 00:26 - 00000000 _SHDL C:\Users\Default\AppData\Local\Archivos temporales de Internet
2015-11-27 00:26 - 2015-11-27 00:26 - 00000000 _SHDL C:\Users\Default User\Documents\Mis vídeos
2015-11-27 00:26 - 2015-11-27 00:26 - 00000000 _SHDL C:\Users\Default User\Documents\Mis imágenes
2015-11-27 00:26 - 2015-11-27 00:26 - 00000000 _SHDL C:\Users\Default User\Documents\Mi música
2015-11-27 00:26 - 2015-11-27 00:26 - 00000000 _SHDL C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2015-11-27 00:26 - 2015-11-27 00:26 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Historial
2015-11-27 00:26 - 2015-11-27 00:26 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Datos de programa
2015-11-27 00:26 - 2015-11-27 00:26 - 00000000 _SHDL C:\Users\Default User\AppData\Local\Archivos temporales de Internet
2015-11-27 00:20 - 2015-12-12 17:36 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-27 00:19 - 2015-11-27 00:19 - 00021648 _____ C:\WINDOWS\system32\emptyregdb.dat
2015-11-27 00:08 - 2015-11-27 00:08 - 00000020 ___SH C:\Users\UpdatusUser\ntuser.ini
2015-11-27 00:08 - 2015-11-27 00:08 - 00000000 ____D C:\ProgramData\USOShared
2015-11-26 23:54 - 2015-11-26 23:54 - 00001544 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-11-26 23:54 - 2015-11-26 23:54 - 00000000 ____D C:\Users\Default\AppData\Roaming\TuneUp Software
2015-11-26 23:54 - 2015-11-26 23:54 - 00000000 ____D C:\Users\Default\AppData\Roaming\Media Center Programs
2015-11-26 23:54 - 2015-11-26 23:54 - 00000000 ____D C:\Users\Default\AppData\LocalGoogle
2015-11-26 23:54 - 2015-11-26 23:54 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2015-11-26 23:54 - 2015-11-26 23:54 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2015-11-26 23:54 - 2015-11-26 23:54 - 00000000 ____D C:\Users\Default User\AppData\Roaming\TuneUp Software
2015-11-26 23:54 - 2015-11-26 23:54 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Media Center Programs
2015-11-26 23:54 - 2015-11-26 23:54 - 00000000 ____D C:\Users\Default User\AppData\LocalGoogle
2015-11-26 23:54 - 2015-11-26 23:54 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2015-11-26 23:54 - 2015-11-26 23:54 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2015-11-26 23:39 - 2015-11-26 23:39 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2015-11-26 23:31 - 2015-12-12 19:43 - 00000000 ____D C:\Users\MATT
2015-11-26 23:31 - 2015-12-12 17:30 - 00000000 ____D C:\Users\UpdatusUser
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\UpdatusUser\Reciente
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\UpdatusUser\Plantillas
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\UpdatusUser\Mis documentos
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\UpdatusUser\Menú Inicio
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\UpdatusUser\Impresoras
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\UpdatusUser\Entorno de red
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Mis vídeos
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Mis imágenes
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\UpdatusUser\Documents\Mi música
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\UpdatusUser\Datos de programa
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\UpdatusUser\Configuración local
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Historial
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Datos de programa
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\UpdatusUser\AppData\Local\Archivos temporales de Internet
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\MATT\Reciente
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\MATT\Plantillas
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\MATT\Mis documentos
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\MATT\Menú Inicio
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\MATT\Impresoras
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\MATT\Entorno de red
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\MATT\Documents\Mis vídeos
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\MATT\Documents\Mis imágenes
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\MATT\Documents\Mi música
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\MATT\Datos de programa
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\MATT\Configuración local
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\MATT\AppData\Roaming\Microsoft\Windows\Start Menu\Programas
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\MATT\AppData\Local\Historial
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\MATT\AppData\Local\Datos de programa
2015-11-26 23:31 - 2015-11-26 23:31 - 00000000 _SHDL C:\Users\MATT\AppData\Local\Archivos temporales de Internet
2015-11-26 23:30 - 2015-11-28 07:10 - 02091686 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-26 23:24 - 2015-11-26 23:40 - 00000000 ____D C:\ProgramData\NVIDIA
2015-11-26 23:24 - 2015-11-26 23:24 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_SynTP_01009.Wdf
2015-11-26 23:24 - 2015-11-26 23:24 - 00000000 ____D C:\Program Files\Synaptics
2015-11-26 23:24 - 2015-11-26 23:24 - 00000000 ____D C:\Program Files\CONEXANT
2015-11-26 23:23 - 2015-11-27 18:06 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-11-26 23:23 - 2015-11-26 23:40 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-11-26 23:23 - 2015-10-13 23:47 - 04388016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-11-26 23:23 - 2015-10-13 23:47 - 03060912 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc.dll
2015-11-26 23:23 - 2015-10-13 23:47 - 02553520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-11-26 23:23 - 2015-10-13 23:47 - 00670512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-11-26 23:23 - 2015-10-13 23:47 - 00374904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-11-26 23:23 - 2015-10-13 23:47 - 00061560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-11-26 23:23 - 2015-10-13 21:55 - 05972783 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-11-26 23:22 - 2015-11-26 23:22 - 00000000 ____H C:\WINDOWS\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2015-11-26 23:15 - 2015-12-12 17:36 - 00353816 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-11-26 21:41 - 2015-11-27 00:24 - 00014259 _____ C:\WINDOWS\diagerr.xml
2015-11-26 21:41 - 2015-11-27 00:24 - 00013338 _____ C:\WINDOWS\diagwrn.xml
2015-11-23 16:44 - 2015-11-23 16:49 - 263883677 _____ C:\Users\MATT\Downloads\Displacement reaction vid.wmv
2015-11-19 23:06 - 2015-11-19 23:06 - 24208056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv32.dll
2015-11-19 23:06 - 2015-11-19 23:06 - 15301816 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2015-11-19 23:06 - 2015-11-19 23:06 - 10715832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-11-19 23:06 - 2015-11-19 23:06 - 03996472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-11-19 23:06 - 2015-11-19 23:06 - 01069368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco3234192.dll
2015-11-19 23:06 - 2015-11-19 23:06 - 00920248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco3234192.dll
2015-11-19 23:06 - 2015-11-19 23:06 - 00916152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR.dll
2015-11-19 23:06 - 2015-11-19 23:06 - 00903984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco3220103.dll
2015-11-19 23:06 - 2015-11-19 23:06 - 00877752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC.dll
2015-11-19 23:06 - 2015-11-19 23:06 - 00171312 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda32v.sys
2015-11-19 23:06 - 2015-11-19 23:06 - 00077096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapo32v.dll
2015-11-19 23:06 - 2015-11-19 23:06 - 00037160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap32.dll
2015-11-19 23:00 - 2015-11-19 23:00 - 16278496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2um.dll
2015-11-19 23:00 - 2015-11-19 23:00 - 14633424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dum.dll
2015-11-19 23:00 - 2015-11-19 23:00 - 11379416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-11-19 23:00 - 2015-11-19 23:00 - 11316168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-11-19 23:00 - 2015-11-19 23:00 - 02857536 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi.dll
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2015-12-12 20:09 - 2010-05-20 07:11 - 00000000 ____D C:\Users\MATT\AppData\Roaming\uTorrent
2015-12-12 20:04 - 2015-10-30 12:13 - 00000000 ____D C:\Windows
2015-12-12 19:41 - 2011-06-13 02:29 - 00000920 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-619215122-3655858824-2443121906-1000UA.job
2015-12-12 19:32 - 2012-04-13 09:24 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-12-12 19:22 - 2011-01-17 04:50 - 00001048 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-12 17:55 - 2015-10-30 12:48 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-12-12 17:43 - 2012-09-27 08:25 - 00000000 ___RD C:\Users\MATT\Google Drive
2015-12-12 17:41 - 2015-10-26 17:33 - 00000000 ____D C:\Users\MATT\AppData\LocalLow\uTorrent
2015-12-12 17:40 - 2011-01-17 04:50 - 00001044 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-12 17:34 - 2015-10-30 12:13 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-12-12 17:31 - 2015-10-30 12:48 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-12-12 17:27 - 2010-05-20 08:20 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-12-12 15:50 - 2010-07-05 06:24 - 00000000 ____D C:\Program Files\Common Files\Steam
2015-12-12 15:49 - 2010-07-05 06:24 - 00000000 ____D C:\Program Files\Steam
2015-12-12 15:42 - 2010-05-20 07:56 - 00000000 ____D C:\Users\MATT\Downloads\Torrents
2015-12-12 15:36 - 2010-05-21 08:54 - 00000000 ____D C:\Users\MATT\AppData\Roaming\vlc
2015-12-12 14:36 - 2015-10-30 12:48 - 00000000 ___HD C:\Program Files\WindowsApps
2015-12-12 09:25 - 2010-05-19 06:08 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-12-12 09:24 - 2015-10-30 12:39 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-12-12 09:24 - 2010-06-04 11:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-12-12 08:32 - 2015-05-02 06:46 - 00000000 ____D C:\ProgramData\MFAData
2015-12-11 21:41 - 2011-06-13 02:29 - 00000868 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-619215122-3655858824-2443121906-1000Core.job
2015-12-11 19:59 - 2013-08-13 06:58 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-12-11 19:20 - 2010-05-20 06:42 - 137798368 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-12-11 17:03 - 2015-10-30 12:13 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-12-09 10:39 - 2010-05-19 06:22 - 00247976 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-12-07 18:35 - 2011-05-17 04:54 - 00000000 ____D C:\Users\MATT\AppData\Roaming\Nitro PDF
2015-12-06 19:23 - 2010-05-19 06:30 - 00095664 _____ C:\Users\MATT\AppData\Local\GDIPFONTCACHEV1.DAT
2015-12-06 08:36 - 2015-05-20 08:39 - 00000000 ____D C:\Users\MATT\AppData\Local\Steam
2015-12-05 21:20 - 2015-10-30 12:47 - 00000000 ____D C:\WINDOWS\INF
2015-12-05 11:07 - 2015-10-30 12:48 - 00000000 ____D C:\WINDOWS\rescache
2015-12-05 02:03 - 2015-10-30 12:48 - 00000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2015-12-02 16:39 - 2015-05-02 07:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2015-12-01 07:33 - 2015-10-30 12:49 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-12-01 07:33 - 2015-10-30 12:49 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-11-28 13:46 - 2013-04-21 09:03 - 00000000 __RHD C:\Users\MATT\Downloads\Adobe
2015-11-28 11:48 - 2015-10-30 12:13 - 76546048 _____ C:\WINDOWS\system32\config\software.rmbak
2015-11-28 11:48 - 2015-10-30 12:13 - 00524288 _____ C:\WINDOWS\system32\config\default.rmbak
2015-11-28 11:46 - 2010-05-19 07:21 - 00000000 ____D C:\ProgramData\Temp
2015-11-28 11:18 - 2011-03-26 04:50 - 00000000 ____D C:\Program Files\Norton Utilities 15
2015-11-28 11:12 - 2015-05-02 22:45 - 00000000 ____D C:\Program Files\AVG Web TuneUp
2015-11-28 11:12 - 2014-09-04 04:33 - 00000000 __SHD C:\found.000
2015-11-28 11:12 - 2012-08-19 02:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Warcraft III
2015-11-28 10:39 - 2015-10-30 12:48 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2015-11-28 10:31 - 2014-03-14 08:07 - 00000000 ____D C:\Users\MATT\AppData\Local\NVIDIA Corporation
2015-11-28 10:25 - 2010-12-02 06:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Macromedia
2015-11-28 10:25 - 2010-12-02 06:04 - 00000000 ____D C:\Program Files\Macromedia
2015-11-28 10:22 - 2010-12-02 06:05 - 00000000 ____D C:\ProgramData\Macromedia
2015-11-28 10:21 - 2010-12-02 06:04 - 00000000 ____D C:\Program Files\Common Files\Macromedia
2015-11-28 10:11 - 2011-01-15 07:35 - 00000000 ____D C:\Program Files\Google
2015-11-28 10:09 - 2014-02-09 04:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2015-11-28 10:09 - 2009-07-14 11:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-11-28 10:08 - 2011-04-11 03:32 - 00000000 ____D C:\Program Files\Common Files\AVSMedia
2015-11-28 10:08 - 2011-04-11 03:31 - 00000000 ____D C:\Program Files\AVS4YOU
2015-11-28 10:06 - 2010-05-19 06:15 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2015-11-28 09:11 - 2010-07-13 06:56 - 00000000 ____D C:\Users\MATT\AppData\Roaming\TuneUpMedia
2015-11-28 07:21 - 2010-05-19 07:20 - 00000000 ____D C:\Program Files\Hewlett-Packard
2015-11-28 07:18 - 2010-05-19 07:21 - 00000000 ____D C:\Users\MATT\AppData\Roaming\hpqLog
2015-11-28 07:10 - 2015-10-30 22:07 - 00914496 _____ C:\WINDOWS\system32\perfh00A.dat
2015-11-28 07:10 - 2015-10-30 22:07 - 00199666 _____ C:\WINDOWS\system32\perfc00A.dat
2015-11-28 07:07 - 2010-05-19 06:49 - 00000000 ____D C:\SWSETUP
2015-11-28 03:45 - 2015-11-01 12:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2015-11-28 03:33 - 2015-10-30 12:48 - 00000000 ____D C:\WINDOWS\AppCompat
2015-11-27 17:58 - 2011-04-13 05:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vernier Software
2015-11-27 17:58 - 2011-04-13 05:25 - 00000000 ____D C:\Program Files\Vernier Software
2015-11-27 17:57 - 2013-01-31 10:28 - 00000000 ____D C:\WINDOWS\system32\SupportAppXL
2015-11-27 17:52 - 2012-08-19 02:51 - 00000000 ____D C:\Program Files\Warcraft III
2015-11-27 17:20 - 2010-05-21 08:40 - 00000000 ____D C:\Users\MATT\AppData\Roaming\Media Player Classic
2015-11-27 16:42 - 2013-12-06 04:45 - 00000000 ____D C:\Users\MATT\AppData\Local\ElevatedDiagnostics
2015-11-27 06:21 - 2015-10-30 12:48 - 00000000 ___RD C:\WINDOWS\DevicesFlow
2015-11-27 06:08 - 2015-10-30 22:07 - 00000000 ____D C:\WINDOWS\OCR
2015-11-27 05:59 - 2015-10-30 12:48 - 00000000 ___RD C:\WINDOWS\PurchaseDialog
2015-11-27 05:59 - 2015-10-30 12:48 - 00000000 ___RD C:\WINDOWS\PrintDialog
2015-11-27 05:59 - 2015-10-30 12:48 - 00000000 ___RD C:\WINDOWS\MiracastView
2015-11-27 05:58 - 2015-10-30 12:48 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2015-11-27 05:13 - 2015-10-30 12:48 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2015-11-27 05:03 - 2015-10-30 12:48 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-27 05:03 - 2015-10-30 12:48 - 00000000 ____D C:\WINDOWS\Provisioning
2015-11-27 05:03 - 2015-10-30 12:13 - 00000000 ____D C:\WINDOWS\system32\Dism
2015-11-27 04:56 - 2015-10-30 22:10 - 00000000 ____D C:\Program Files\Windows Journal
2015-11-27 04:56 - 2015-10-30 22:07 - 00000000 ____D C:\WINDOWS\system32\winrm
2015-11-27 04:56 - 2015-10-30 22:07 - 00000000 ____D C:\WINDOWS\system32\WCN
2015-11-27 04:56 - 2015-10-30 22:07 - 00000000 ____D C:\WINDOWS\system32\slmgr
2015-11-27 04:56 - 2015-10-30 22:07 - 00000000 ____D C:\WINDOWS\system32\Printing_Admin_Scripts
2015-11-27 04:56 - 2015-10-30 12:48 - 00000000 ___SD C:\WINDOWS\system32\F12
2015-11-27 04:56 - 2015-10-30 12:48 - 00000000 ___SD C:\WINDOWS\system32\dsc
2015-11-27 04:56 - 2015-10-30 12:48 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2015-11-27 04:56 - 2015-10-30 12:48 - 00000000 ____D C:\WINDOWS\system32\migwiz
2015-11-27 04:56 - 2015-10-30 12:48 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2015-11-27 04:56 - 2015-10-30 12:48 - 00000000 ____D C:\Program Files\Windows Defender
2015-11-27 04:56 - 2015-10-30 12:13 - 00000000 ____D C:\WINDOWS\servicing
2015-11-27 04:32 - 2015-10-30 12:48 - 00000000 ____D C:\WINDOWS\system32\MUI
2015-11-27 04:32 - 2015-10-30 12:48 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2015-11-27 04:31 - 2015-10-30 12:45 - 01014272 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2015-11-27 04:31 - 2015-10-30 12:45 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2015-11-27 04:31 - 2015-10-30 12:45 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2015-11-27 04:31 - 2015-10-30 12:45 - 00266240 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2015-11-27 04:31 - 2015-10-30 12:45 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2015-11-27 04:31 - 2015-10-30 12:45 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2015-11-27 04:31 - 2015-10-30 12:45 - 00130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2015-11-27 04:31 - 2015-10-30 12:45 - 00104960 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2015-11-27 04:31 - 2015-10-30 12:45 - 00096768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2015-11-27 04:31 - 2015-10-30 12:45 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2015-11-27 04:31 - 2015-10-30 12:45 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2015-11-27 04:31 - 2015-10-30 12:45 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2015-11-27 04:31 - 2015-10-30 12:45 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2015-11-27 04:31 - 2015-10-30 12:45 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2015-11-27 04:31 - 2015-10-30 12:45 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2015-11-27 04:31 - 2015-10-30 12:45 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2015-11-27 04:31 - 2015-10-30 12:45 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2015-11-27 04:31 - 2015-10-30 12:45 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2015-11-27 04:31 - 2015-10-30 12:45 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2015-11-27 04:31 - 2015-10-30 12:45 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2015-11-27 04:31 - 2015-10-30 12:45 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2015-11-27 00:28 - 2015-10-30 12:48 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2015-11-27 00:26 - 2015-10-30 12:48 - 00000000 ____D C:\Program Files\Windows NT
2015-11-27 00:22 - 2015-10-30 12:48 - 00000000 ____D C:\WINDOWS\Registration
2015-11-27 00:19 - 2015-10-30 12:48 - 00000000 __RSD C:\WINDOWS\Media
2015-11-27 00:18 - 2015-10-30 12:48 - 00000000 __RHD C:\Users\Public\Libraries
2015-11-27 00:13 - 2015-06-26 21:45 - 00000000 ____D C:\Program Files\Common Files\AV
2015-11-27 00:12 - 2015-10-30 12:48 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-11-27 00:08 - 2015-10-30 12:48 - 00000000 ____D C:\WINDOWS\system32\spool
2015-11-27 00:08 - 2015-10-30 12:48 - 00000000 ____D C:\ProgramData\USOPrivate
2015-11-27 00:00 - 2015-10-30 22:10 - 00000000 ____D C:\WINDOWS\ShellNew
2015-11-27 00:00 - 2015-07-15 05:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Action Cam Movie Creator and PlayMemories Home
2015-11-27 00:00 - 2015-05-02 21:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinPatrol
2015-11-27 00:00 - 2015-04-30 07:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitmanPro
2015-11-27 00:00 - 2015-03-26 09:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Particles in motion
2015-11-27 00:00 - 2015-03-10 07:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3
2015-11-27 00:00 - 2015-01-28 13:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-11-27 00:00 - 2015-01-02 09:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-11-27 00:00 - 2014-12-30 07:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sound Lock
2015-11-27 00:00 - 2014-10-10 22:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Algodoo
2015-11-27 00:00 - 2014-07-07 08:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Last.fm
2015-11-27 00:00 - 2014-05-18 02:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2015-11-27 00:00 - 2014-03-12 10:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-11-27 00:00 - 2014-03-04 06:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Liberty Instruments, Inc
2015-11-27 00:00 - 2013-12-17 09:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2015-11-27 00:00 - 2013-09-28 04:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-11-27 00:00 - 2013-07-09 09:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\calibre - E-book Management
2015-11-27 00:00 - 2013-06-20 06:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MediaMonkey
2015-11-27 00:00 - 2013-05-28 09:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2015-11-27 00:00 - 2013-03-02 04:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2015-11-27 00:00 - 2013-01-14 03:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SDFormatter
2015-11-27 00:00 - 2012-12-25 01:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Transcribe!
2015-11-27 00:00 - 2012-09-25 09:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2015-11-27 00:00 - 2012-08-05 05:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DOSBox-0.74
2015-11-27 00:00 - 2012-06-14 04:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Guitar Pro 5
2015-11-27 00:00 - 2012-05-31 05:44 - 00000000 ____D C:\Users\MATT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-11-27 00:00 - 2012-04-08 07:42 - 00000000 ____D C:\WINDOWS\es
2015-11-27 00:00 - 2012-04-08 07:34 - 00000000 ____D C:\WINDOWS\en
2015-11-27 00:00 - 2012-03-18 08:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TimeAdjuster
2015-11-27 00:00 - 2012-02-06 22:41 - 00000000 ____D C:\Users\MATT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2015-11-27 00:00 - 2011-10-14 03:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SubSync
2015-11-27 00:00 - 2011-10-10 22:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PitchPerfect Musical Instrument Tuner
2015-11-27 00:00 - 2011-10-10 22:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audio Related Programs
2015-11-27 00:00 - 2011-06-13 02:32 - 00000000 ____D C:\Users\MATT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-11-27 00:00 - 2011-06-12 06:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FVD Suite IE Plugin
2015-11-27 00:00 - 2011-05-03 05:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedFan
2015-11-27 00:00 - 2011-04-13 06:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX Plus
2015-11-27 00:00 - 2011-04-13 05:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2015-11-27 00:00 - 2011-04-06 04:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SMART Technologies
2015-11-27 00:00 - 2011-03-26 04:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Utilities 15
2015-11-27 00:00 - 2010-12-10 18:44 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2015-11-27 00:00 - 2010-08-29 22:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Companion
2015-11-27 00:00 - 2010-07-16 06:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinFF
2015-11-27 00:00 - 2010-07-05 06:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2015-11-27 00:00 - 2010-06-21 03:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunesKeys
2015-11-27 00:00 - 2010-05-20 09:27 - 00000000 ____D C:\Users\MATT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Norton
2015-11-27 00:00 - 2010-05-20 07:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Soulseek NS
2015-11-27 00:00 - 2010-05-19 07:49 - 00000000 ____D C:\Users\MATT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-11-27 00:00 - 2010-05-19 07:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-11-27 00:00 - 2010-05-19 06:15 - 00000000 ____D C:\Users\MATT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD
2015-11-27 00:00 - 2010-05-19 06:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink PowerDVD
2015-11-26 23:54 - 2009-07-14 09:37 - 00000000 ____D C:\Users\Default.migrated
2015-11-26 23:44 - 2015-10-30 12:48 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2015-11-26 23:44 - 2015-10-30 12:48 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-11-26 23:44 - 2015-10-30 12:48 - 00000000 ____D C:\WINDOWS\system32\Macromed
2015-11-26 23:44 - 2015-10-30 12:48 - 00000000 ____D C:\WINDOWS\system32\IME
2015-11-26 23:44 - 2011-07-04 02:26 - 00000000 ____D C:\WINDOWS\system32\SPReview
2015-11-26 23:44 - 2011-07-04 02:24 - 00000000 ____D C:\WINDOWS\system32\EventProviders
2015-11-26 23:44 - 2010-05-19 07:45 - 00000000 ____D C:\WINDOWS\system32\sda
2015-11-26 23:41 - 2015-10-30 12:48 - 00000000 ____D C:\WINDOWS\schemas
2015-11-26 23:41 - 2015-10-30 12:48 - 00000000 ____D C:\WINDOWS\Resources
2015-11-26 23:41 - 2015-10-30 12:48 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-11-26 23:41 - 2015-10-30 12:48 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-11-26 23:41 - 2014-09-01 07:05 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2015-11-26 23:41 - 2014-05-18 02:26 - 00000000 __SHD C:\WINDOWS\system32\AI_RecycleBin
2015-11-26 23:41 - 2012-06-18 09:33 - 00000000 ____D C:\WINDOWS\system32\Adobe
2015-11-26 23:40 - 2015-10-30 22:07 - 00000000 ____D C:\WINDOWS\DigitalLocker
2015-11-26 23:40 - 2015-10-30 12:48 - 00000000 __SHD C:\Program Files\Windows Sidebar
2015-11-26 23:40 - 2015-09-30 17:43 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-11-26 23:40 - 2014-08-30 11:31 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2015-11-26 23:40 - 2013-09-04 06:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2015-11-26 23:40 - 2013-07-01 02:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPUBSOFT
2015-11-26 23:40 - 2013-07-01 01:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
2015-11-26 23:40 - 2011-10-15 04:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IB Questionbank
2015-11-26 23:40 - 2010-05-19 07:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink YouCam
2015-11-26 23:39 - 2015-10-30 12:48 - 00000000 ____D C:\Program Files\Common Files\System
2015-11-26 23:39 - 2015-10-30 12:48 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-11-26 23:39 - 2009-07-14 11:52 - 00000000 ____D C:\Program Files\Microsoft Games
2015-11-26 23:39 - 2009-07-14 11:52 - 00000000 ____D C:\Program Files\DVD Maker
2015-11-26 23:37 - 2009-07-14 09:37 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2015-11-26 23:36 - 2014-03-15 22:34 - 00000000 ____D C:\Users\MATT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sony Mobile
2015-11-26 23:36 - 2012-03-18 08:02 - 00000000 ____D C:\Users\MATT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TimeAdjuster
2015-11-26 23:36 - 2011-09-11 06:54 - 00000000 ____D C:\Users\MATT\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Hermitech Laboratory
2015-11-26 23:29 - 2015-10-30 12:13 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-11-26 23:23 - 2015-10-30 12:48 - 00000000 ____D C:\WINDOWS\Help
2015-11-26 23:16 - 2015-10-30 22:14 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2015-11-26 22:09 - 2009-07-14 11:34 - 00020880 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-26 22:09 - 2009-07-14 11:34 - 00020880 ____H C:\WINDOWS\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-26 21:43 - 2015-10-30 22:31 - 00000000 ___HD C:\$WINDOWS.~BT
2015-11-24 19:59 - 2015-01-02 09:53 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-11-23 22:09 - 2010-08-09 00:38 - 00000000 ____D C:\Users\MATT\AppData\Local\CrashDumps
2015-11-20 08:05 - 2015-08-14 14:17 - 00031664 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\Drivers\avgidsshimw8x.sys
2015-11-15 21:32 - 2010-05-21 07:15 - 00000000 ____D C:\Users\MATT\AppData\Roaming\Skype
2015-11-13 01:37 - 2014-10-09 04:38 - 01316000 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge.dll
2015-11-13 01:37 - 2014-03-12 10:06 - 01509824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap.dll
 
==================== Files in the root of some directories =======
 
2015-02-14 04:20 - 2015-02-14 04:20 - 37340813 _____ () C:\Users\MATT\AppData\Roaming\-= Insomnia [Ragecraft II] =-.zip
2010-05-19 07:48 - 2010-05-19 07:48 - 0000000 _____ () C:\Users\MATT\AppData\Local\AtStart.txt
2010-06-06 09:31 - 2015-05-10 01:25 - 0005632 _____ () C:\Users\MATT\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2010-05-19 07:48 - 2010-05-19 07:48 - 0000000 _____ () C:\Users\MATT\AppData\Local\DSwitch.txt
2010-05-19 07:48 - 2010-05-19 07:48 - 0000000 _____ () C:\Users\MATT\AppData\Local\QSwitch.txt
2011-03-26 07:20 - 2011-03-26 07:20 - 0000017 _____ () C:\Users\MATT\AppData\Local\resmon.resmoncfg
2010-05-21 07:16 - 2010-05-21 07:16 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2010-05-19 07:42 - 2011-03-25 06:26 - 0000249 _____ () C:\ProgramData\hpqp.ini
2010-05-19 23:25 - 2012-08-31 08:36 - 0000021 _____ () C:\ProgramData\hpqp.txt
 
==================== Bamital & volsnap =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2015-12-11 19:02
 
==================== End of FRST.txt ============================

Attached Files



BC AdBot (Login to Remove)

 


#2 albatrossuk

albatrossuk
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  

Posted 12 December 2015 - 08:49 AM

Apologies.  I received an error every time I posted and thought it hadn't sent! Is there a way to remove the duplicates?

 

Deleted duplicates. xXToffeeXx~


Edited by xXToffeeXx, 12 December 2015 - 09:21 AM.


#3 nasdaq

nasdaq

  • Malware Response Team
  • 40,456 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:02:09 AM

Posted 12 December 2015 - 09:46 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===


Press the windows key Windows_Logo_key.gif+ r on your keyboard at the same time. This will open the RUN BOX.
Type Notepad and and click the OK key.
Please copy the entire contents of the code box below to the a new file.
 
start

CreateRestorePoint:
EmptyTemp:
CloseProcesses:

() C:\ProgramData\Avg_Update_1215av\AVG-Secure-Search-Update_1215av.exe
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} =>  No File
GroupPolicyScripts: Restriction <======= ATTENTION
HKU\S-1-5-21-619215122-3655858824-2443121906-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={8D7ECDEA-EEB3-467B-8A40-F1BC3DFBEFAF}&mid=97dc776c266747cd9eb3d15650b6b80b-c7796f2cf1b6623549e054395218af25b884e5b5&lang=en&ds=AVG&coid=avgtbavg&cmpid=0215pi&pr=fr&d=2015-05-02 10:49:26&v=4.1.0.411&pid=wtu&sg=&sap=hp
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
FF Homepage: hxxps://mysearch.avg.com/?cid={8D7ECDEA-EEB3-467B-8A40-F1BC3DFBEFAF}&mid=97dc776c266747cd9eb3d15650b6b80b-c7796f2cf1b6623549e054395218af25b884e5b5&lang=en&ds=AVG&coid=avgtbavg&cmpid=0215pi&pr=fr&d=2015-05-02 10:49:26&v=4.1.0.411&pid=wtu&sg=&sap=hp
CHR Extension: (Get Flash) - C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Default\Extensions\innejflndneacnpgjkdhejmejgpnhfgf [2011-06-13] [UpdateUrl: hxxp://ruzanow.ru/extensions/updates.xml] <==== ATTENTION
U3 idsvc; no ImagePath
U3 wpcsvc; no ImagePath
C:\Users\MATT\AppData\Local\Google\Chrome\User Data\Default\Extensions\innejflndneacnpgjkdhejmejgpnhfgf
CustomCLSID: HKU\S-1-5-21-619215122-3655858824-2443121906-1000_Classes\CLSID\{035FBE31-3755-450A-A775-5E6BBD43D344}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-619215122-3655858824-2443121906-1000_Classes\CLSID\{095A2EEC-F7FE-42E8-96FB-C20E53081908}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-619215122-3655858824-2443121906-1000_Classes\CLSID\{0E55CBE1-B06A-49B6-AD8D-9EFAA0160C6F}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-619215122-3655858824-2443121906-1000_Classes\CLSID\{218D2740-5A50-42A8-AB9F-62FF1B168782}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-619215122-3655858824-2443121906-1000_Classes\CLSID\{320F0FDB-BE0A-4648-9D18-4A2C3448C007}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-619215122-3655858824-2443121906-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-619215122-3655858824-2443121906-1000_Classes\CLSID\{62A0D750-DED9-448C-B693-406B34BB0892}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-619215122-3655858824-2443121906-1000_Classes\CLSID\{634059C0-D264-4B2C-AE80-F73E48D33E5B}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-619215122-3655858824-2443121906-1000_Classes\CLSID\{6D7374DE-63AA-473C-8C02-60D9CDCD84C5}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-619215122-3655858824-2443121906-1000_Classes\CLSID\{91EFB276-CEFE-48EC-BB3A-57795A7B4008}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-619215122-3655858824-2443121906-1000_Classes\CLSID\{A45426FB-E444-42B2-AA56-419F8FBEEC61}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-619215122-3655858824-2443121906-1000_Classes\CLSID\{A54D478D-4F70-4F72-9A74-17C9986E35AB}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-619215122-3655858824-2443121906-1000_Classes\CLSID\{C5A2122B-A05B-4FD8-AE49-91990AE10998}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-619215122-3655858824-2443121906-1000_Classes\CLSID\{D0D38C6E-BF64-4C42-840D-3E0019D9F7A6}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-619215122-3655858824-2443121906-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\MATT\AppData\Local\Google\Update\1.3.28.15\psuser.dll => No File
CustomCLSID: HKU\S-1-5-21-619215122-3655858824-2443121906-1000_Classes\CLSID\{DB25D157-76D4-41C1-97B5-359E4A4CECEB}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-619215122-3655858824-2443121906-1000_Classes\CLSID\{EB06378B-ABB6-4B3C-9B40-D488DD8A6E93}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-619215122-3655858824-2443121906-1000_Classes\CLSID\{FB994D36-B312-46CE-A40B-CF63980641F9}\InprocServer32 -> no filepath
CustomCLSID: HKU\S-1-5-21-619215122-3655858824-2443121906-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> no filepath
Task: {002FFC84-13C9-4B19-A4E7-5730D5849B89} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {15899D93-EED3-4981-B89C-0ED4DA66599B} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {2D2AF355-B5F9-4C75-A82C-53B013A9374D} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {50FBA5DC-3F38-4297-9AB8-011F11E362B1} - \Microsoft\Windows\Setup\xtgt\refreshxtgtconfig -> No File <==== ATTENTION
Task: {51B27201-8FBF-42E0-870D-EBE8369F4D82} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {958CA53F-4566-4E9F-958D-CF7DBF6650D4} - System32\Tasks\AVG_SYS_TASK_1215av_DELETE => C:\ProgramData\Avg_Update_1215av\AVG-Secure-Search-Update_1215av.exe [2015-11-22] ()
Task: {9B081599-BB71-4E42-8C1B-71979265E2D1} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {A653B9D4-DD08-48A5-8432-8903AEDDEACC} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {B0BE16CF-3822-40E3-BD47-55293CB93638} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {BC63F480-BE9C-4529-AC25-BCDD66651539} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {D40CC3C3-B375-40E9-A797-6D7354980406} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {DFDDD71F-8884-4922-A268-267F8904C3CB} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {E77F1CCB-D504-4C9C-8AB1-5F757B90FFC7} - System32\Tasks\AVG_SYS_TASK_1215av => C:\ProgramData\Avg_Update_1215av\AVG-Secure-Search-Update_1215av.exe [2015-11-22] ()
Task: {EAE95D80-CBC3-430F-8871-F70994E55184} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
2015-12-07 18:32 - 2015-11-22 18:53 - 02784656 _____ () C:\ProgramData\Avg_Update_1215av\AVG-Secure-Search-Update_1215av.exe
AlternateDataStreams: C:\Windows:nlsPreferences
AlternateDataStreams: C:\Program Files\Algodoo:Win32App_1
AlternateDataStreams: C:\Program Files\Apple Software Update:Win32App_1
AlternateDataStreams: C:\Program Files\Audacity:Win32App_1
AlternateDataStreams: C:\Program Files\Bonjour:Win32App_1
AlternateDataStreams: C:\Program Files\Calibre2:Win32App_1
AlternateDataStreams: C:\Program Files\CCleaner:Win32App_1
AlternateDataStreams: C:\Program Files\Guitar Pro 5:Win32App_1
AlternateDataStreams: C:\Program Files\Hewlett-Packard:Win32App_1
AlternateDataStreams: C:\Program Files\HitmanPro:Win32App_1
AlternateDataStreams: C:\Program Files\iTunes:Win32App_1
AlternateDataStreams: C:\Program Files\iTunesKeys:Win32App_1
AlternateDataStreams: C:\Program Files\K-Lite Codec Pack:Win32App_1
AlternateDataStreams: C:\Program Files\Lame For Audacity:Win32App_1
AlternateDataStreams: C:\Program Files\Last.fm:Win32App_1
AlternateDataStreams: C:\Program Files\Malwarebytes Anti-Malware:Win32App_1
AlternateDataStreams: C:\Program Files\MediaMonkey:Win32App_1
AlternateDataStreams: C:\Program Files\Microsoft CAPICOM 2.1.0.2:Win32App_1
AlternateDataStreams: C:\Program Files\Microsoft Office:Win32App_1
AlternateDataStreams: C:\Program Files\Microsoft Security Client:Win32App_1
AlternateDataStreams: C:\Program Files\Microsoft Silverlight:Win32App_1
AlternateDataStreams: C:\Program Files\Microsoft SQL Server Compact Edition:Win32App_1
AlternateDataStreams: C:\Program Files\Microsoft Visual Studio 8:Win32App_1
AlternateDataStreams: C:\Program Files\Mozilla Firefox:Win32App_1
AlternateDataStreams: C:\Program Files\MSBuild:Win32App_1
AlternateDataStreams: C:\Program Files\Norton Utilities 15:Win32App_1
AlternateDataStreams: C:\Program Files\Particles in motion:Win32App_1
AlternateDataStreams: C:\Program Files\QuickTime:Win32App_1
AlternateDataStreams: C:\Program Files\Steam:Win32App_1
AlternateDataStreams: C:\Program Files\SystemRequirementsLab:Win32App_1
AlternateDataStreams: C:\Program Files\Transcribe!:Win32App_1
AlternateDataStreams: C:\Program Files\Windows Live:Win32App_1
AlternateDataStreams: C:\Program Files\WinFF:Win32App_1
AlternateDataStreams: C:\WINDOWS\system32\Adobe:Win32App_1
AlternateDataStreams: C:\Program Files\Common Files\Adobe:Win32App_1
AlternateDataStreams: C:\Program Files\Common Files\DESIGNER:Win32App_1
AlternateDataStreams: C:\Program Files\Common Files\Macromedia:Win32App_1
AlternateDataStreams: C:\Program Files\Common Files\microsoft shared:Win32App_1
AlternateDataStreams: C:\Program Files\Common Files\Skype:Win32App_1
AlternateDataStreams: C:\Program Files\Common Files\SMART Technologies:Win32App_1
AlternateDataStreams: C:\Program Files\Common Files\Vernier Software:Win32App_1
AlternateDataStreams: C:\ProgramData\Temp:D287FACF
AlternateDataStreams: C:\ProgramData\Temp:D3A96964

End
Save the file as fixlist.txt in the same folder where the Farbar tool is running from.
The location is listed in the 3rd line of the Farbar log you have submitted.

Run FRST and click Fix only once and wait.

Restart the computer normally to reset the registry.

The tool will create a log (Fixlog.txt) please post it to your reply.
===

Please download AdwCleaner by Xplode onto your Desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Click the LogFile button and the report will open in Notepad.
IMPORTANT
  • If you click the Clean button all items listed in the report will be removed.
If you find some false positive items or programs that you wish to keep, Close the AdwCleaner windows.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Check off the element(s) you wish to keep.
  • Click on the Clean button follow the prompts.
  • A log file will automatically open after the scan has finished.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleanerCx.txt (x is a number).
===

Please post the logs for my review.

Let me know if the problem persists.

#4 albatrossuk

albatrossuk
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  

Posted 12 December 2015 - 10:15 AM

Thanks for the quick reply nasdaq!

 

While running it I had an AVG Detection message which looked a little odd.  I don't want to click on the button, and I can't click anything else so I had to take a literal screenshot with my phone, which I've attached.

 

Any advice on what to do now?

Attached Files



#5 nasdaq

nasdaq

  • Malware Response Team
  • 40,456 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:02:09 AM

Posted 13 December 2015 - 07:19 AM

Looks like AVG has identified a bad file in your Temporary folder.

Click on the button and trust AVG.

#6 albatrossuk

albatrossuk
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  

Posted 13 December 2015 - 09:57 AM

Thanks again.  After the Adwcleaner scan (before cleaning) the same warning popped up.  I've attached a screenshot of that warning too, just in case.

 

...actually as I was writing this I got the same warning after cleaning, this warning is attached as AVG Warning 2.  I hit 'Protect Me'.

Attached Files



#7 nasdaq

nasdaq

  • Malware Response Team
  • 40,456 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:02:09 AM

Posted 13 December 2015 - 01:51 PM

Lets check further.

You will need to temporarily disable your AV program so it does not interfere.
Info on how to disable your security applications How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs - Security Mini-Guides.

Download Zeok tool from here

When the download appears, save to the Desktop.
On the Desktop, right-click the Zoek.exe file and select: Run as Administrator
(Give it a few seconds to appear.)

Click the Options in bold the following options are available to you.
Select only the check boxes for the options in bold.
 

Running Processes
Installed Programs
Startup Information
FireFox look
Chrome Look
Auto Clean


Do a Quick Scan
HijackThis log
Uninstall list
Shortcut Fix
Do a Deep Scan
Installer List
IE Default
Silent Runner
System Restore Info
Symlink Check
Reset Chrome
System Specs
Recently created
Empty Temp
Auto Clean



Now...
Close any open Browsers.
Click the Run script button, and wait. It takes a few minutes to run all the script.

When the tool finishes, the zoek-results.log is opened in Notepad.
The log is also found on the systemdrive, normally C:\
If a reboot is needed, the log is opened after the reboot.
Do
Please attach the zoek-results.log in your reply. It's probably too long to post.

How to:
In the Reply section in the bottom of the topic Click the "more reply Options" button.
attachlogs.png

Attach the file.
Select the "Choose a File" navigate to the location of the File.
Click the file you wish to Attach.

Click the Add reply button.

Make sure you Enable your AV Program.

Let me know if the problem persists

Edited by nasdaq, 13 December 2015 - 01:51 PM.


#8 albatrossuk

albatrossuk
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  

Posted 14 December 2015 - 08:09 AM

OK, here's the Zoek log.

 

EDIT: Just got the same warning again.

Attached Files


Edited by albatrossuk, 14 December 2015 - 08:15 AM.


#9 nasdaq

nasdaq

  • Malware Response Team
  • 40,456 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:02:09 AM

Posted 14 December 2015 - 10:10 AM

Your log is clean.

AVG is working well.

You are presently notified when something is or will be deleted.

You can stop this action. Try this.

http://www.technipages.com/disable-avg-popup-notifications

Keep me posted.

#10 albatrossuk

albatrossuk
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  

Posted 14 December 2015 - 10:38 AM

Thanks Nasdaq.  I don't fully understand though, I'm still getting the warning.  I just restarted to double check and it popped up again after a few minutes.  Does this mean the computer is still infected?



#11 nasdaq

nasdaq

  • Malware Response Team
  • 40,456 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:02:09 AM

Posted 14 December 2015 - 01:39 PM

Lets check further.

--RogueKiller--
  • Download & SAVE to your Desktop Download RogueKiller
  • Quit all programs that you may have started.
  • Please disconnect any USB or external drives from the computer before you run this scan!
  • For Vista or Windows 7, right-click and select "Run as Administrator to start"
  • For Windows XP, double-click to start.
  • Wait until Prescan has finished ...
  • When instructed Click on "Scan" button
  • Wait until the Status box shows "Scan Finished"
  • Click on "Report"
  • Click on Export TXT button save the file as RogueReport.txt
  • The file RogueReport.txt will be saved in the desktop.
  • Close the program.
  • Open the file with Notepad and Copy/paste the content into your next reply.
<<<>>>

Read carefully and follow these steps.
TDSS
  • Download TDSSKiller and save it to your Desktop.
  • Doubleclick on TDSSKiller.exe to run the application.
  • Then click on Start Scan.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.

    TDSSKillerSuspicious-1.png
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • Important: Do NOT change the default action on your own unless instructed by a malware Helper! Doing so may render your computer unbootable.
    TDSSKillerMal-1.png
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.

    TDSSKillerCompleted.png
  • If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.
===

Download http://public.avast.com/~gmerek/aswMBR.exe (aswMBR.exe) to your desktop. Double click the aswMBR.exe to run it.
  • Click the "Scan" button to start scan.
  • Upon completion of the scan, click Save log, and save it to your desktop. (Note - do not select any Fix at this time) <- IMPORTANT
  • Please paste the contents of that log in your next reply.
There shall also be a file on your desktop named MBR.dat. Right click that file and select Send To>Compressed (zipped) folder. Please attach that zipped file in your next reply.
===

Wait for further instructions.

#12 albatrossuk

albatrossuk
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  

Posted 15 December 2015 - 10:55 AM

Ran steps 1 and 2 without issue. Rogue Killer picked up a couple of things but I didn't clean them since the instructions didn't say to. TDSS came up clean.

Then I left aswmbr running and came back to the message "No bootable device -- insert boot disk and press any key"!

Restarted the computer and the same message!

#13 nasdaq

nasdaq

  • Malware Response Team
  • 40,456 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:02:09 AM

Posted 15 December 2015 - 11:46 AM

Rogue Killer picked up a couple of things but I didn't clean them since the instructions didn't say to


Please post the log for my review.

===

Please run the aswMBR tool and instead of selecting a SCAN select the FIX button.

Post the log for my review.

Let me know what problem persists.

#14 albatrossuk

albatrossuk
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  

Posted 15 December 2015 - 02:25 PM

The logfile is saved on my desktop, but I can't get to it until the laptop boots.

#15 albatrossuk

albatrossuk
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  

Posted 16 December 2015 - 05:22 AM

It's booted fine this morning.

 

He's the RogueKiller log:

 

RogueKiller V11.0.3.0 [Dec 14 2015] (Free) by Adlice Software
 
Operating System : Windows 10 (10.0.10586) 32 bits version
Started in : Normal mode
User : MATT [Administrator]
Started from : C:\Users\MATT\Desktop\RogueKiller (1).exe
Mode : Scan -- Date : 12/15/2015 21:33:39
 
¤¤¤ Processes : 0 ¤¤¤
 
¤¤¤ Registry : 3 ¤¤¤
[PUP] HKEY_LOCAL_MACHINE\Software\Partner -> Found
[Hidden.From.SCM] HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\WUDFRd (system32\drivers\WudfRd.sys) -> Found
[PUM.Proxy] HKEY_USERS\S-1-5-21-619215122-3655858824-2443121906-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings | ProxyServer : http=82.113.142.185:3128  -> Found
 
¤¤¤ Tasks : 0 ¤¤¤
 
¤¤¤ Files : 1 ¤¤¤
[Hidden.ADS][[[ADS]]] C:\Windows:nlsPreferences -> Found
 
¤¤¤ Hosts File : 0 ¤¤¤
 
¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤
 
¤¤¤ Web browsers : 2 ¤¤¤
[PUM.Proxy][FIREFX:Config] 1bfhkrnw.default : user_pref("network.proxy.http", "82.113.142.185"); -> Found
[PUM.Proxy][FIREFX:Config] 1bfhkrnw.default : user_pref("network.proxy.http_port", 3128); -> Found
 
¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: WDC WD5000BEVT-22A0RT0 +++++
--- User ---
[MBR] 1fdd2b84619a4c0120b4fcc5901ba428
[BSP] 6d46358a8c5e0de47b2fbd64a1e1d549 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 476838 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK
 
And the TDSS log:
21:57:07.0341 0x229c  TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
21:57:12.0321 0x229c  ============================================================
21:57:12.0321 0x229c  Current date / time: 2015/12/15 21:57:12.0321
21:57:12.0321 0x229c  SystemInfo:
21:57:12.0321 0x229c  
21:57:12.0321 0x229c  OS Version: 10.0.10586 ServicePack: 0.0
21:57:12.0321 0x229c  Product type: Workstation
21:57:12.0321 0x229c  ComputerName: MATT-PC
21:57:12.0321 0x229c  UserName: MATT
21:57:12.0321 0x229c  Windows directory: C:\WINDOWS
21:57:12.0321 0x229c  System windows directory: C:\WINDOWS
21:57:12.0321 0x229c  Processor architecture: Intel x86
21:57:12.0321 0x229c  Number of processors: 2
21:57:12.0321 0x229c  Page size: 0x1000
21:57:12.0321 0x229c  Boot type: Normal boot
21:57:12.0321 0x229c  ============================================================
21:57:14.0420 0x229c  KLMD registered as C:\WINDOWS\system32\drivers\52591062.sys
21:57:18.0545 0x229c  System UUID: {7EBF649B-6429-EFB5-5E4A-CD4900DE838A}
21:57:20.0436 0x229c  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0x10E5F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xE0, Type 'K0', Flags 0x00000050
21:57:20.0436 0x229c  ============================================================
21:57:20.0436 0x229c  \Device\Harddisk0\DR0:
21:57:20.0436 0x229c  MBR partitions:
21:57:20.0436 0x229c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
21:57:20.0436 0x229c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353000
21:57:20.0436 0x229c  ============================================================
21:57:20.0514 0x229c  C: <-> \Device\Harddisk0\DR0\Partition2
21:57:20.0545 0x229c  D: <-> \Device\Harddisk0\DR0\Partition1
21:57:20.0545 0x229c  ============================================================
21:57:20.0545 0x229c  Initialize success
21:57:20.0545 0x229c  ============================================================
21:57:28.0424 0x09d4  ============================================================
21:57:29.0861 0x09d4  Scan started
21:57:29.0861 0x09d4  Mode: Manual; 
21:57:29.0861 0x09d4  ============================================================
21:57:29.0861 0x09d4  KSN ping started
21:57:35.0400 0x09d4  KSN ping finished: true
21:57:38.0697 0x09d4  ================ Scan system memory ========================
21:57:38.0697 0x09d4  System memory - ok
21:57:38.0697 0x09d4  ================ Scan services =============================
21:57:39.0103 0x09d4  [ FB8D2D4BFD7A88943DFE6F196309004D, E2EADF3EBEA8841ED34A52900FFEA45F842F0997D78BC6BAF764201F1970F2EB ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
21:57:39.0103 0x09d4  1394ohci - ok
21:57:39.0150 0x09d4  [ 533B10DEEAB26696E6E36EC731B7D529, EF64596CEE31B398D249F811DF9B72A910FB9B157D77C9795C1B43AFEE327C8F ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
21:57:39.0166 0x09d4  3ware - ok
21:57:39.0213 0x09d4  [ 49EF4B22FDEAB411EC9E185D6E040B55, 3938293F5215D667A28EE83031BAE9EFD400C43F82EBE0CC8B6C2C4892B4829F ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
21:57:39.0244 0x09d4  ACPI - ok
21:57:39.0244 0x09d4  [ EAC463769226F6B56A1631C860038B62, 7A3812128EDC16EEEFC5635979826B8D441A737F3E2F41746CDE4704F11EC04A ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
21:57:39.0259 0x09d4  acpiex - ok
21:57:39.0275 0x09d4  [ 2F8584E995D918D65348B7B04766FD65, 32D40A01A36AB503B984E317D620FDF45C4A87C7E343190C3FF4BE03D58EBA6F ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
21:57:39.0275 0x09d4  acpipagr - ok
21:57:39.0340 0x09d4  [ 3850E00C80DE0D5CA81F2D80F54E8D1B, 7DE3C3ACE0146D10B0D88A95B8AC0D817EF74AFD36649851B2F25D4229C1BDC3 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
21:57:39.0340 0x09d4  AcpiPmi - ok
21:57:39.0356 0x09d4  [ 022D57B8524BAC85C74C40AD8A3CFF31, FA1C78C5CE05A4FF50BEAB17B95485026C5D28D6462A3815884169867FB72EE9 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
21:57:39.0371 0x09d4  acpitime - ok
21:57:39.0465 0x09d4  [ 5DB2C6B908C50767E2EDAA294A7566B5, 13AE4879D679BB0C6B2A5A5B13910359815A9D2E569BC1DE740B5A387A78CF33 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
21:57:39.0481 0x09d4  AdobeARMservice - ok
21:57:39.0652 0x09d4  [ F54564025D2284AE498E51D7C139F971, AAA48F38B81DB894854E8C84DB2E1F5C8447AA982D27C0BB78FF2786D9F80F83 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
21:57:39.0668 0x09d4  AdobeFlashPlayerUpdateSvc - ok
21:57:39.0824 0x09d4  [ 90D2195E7357C8A1450223BAEDC6F856, AF69B2E5D58ED597B07679AC26BAFD4B03EED4B1FF80E0D9C07F9B335AE3E793 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
21:57:39.0902 0x09d4  ADP80XX - ok
21:57:39.0981 0x09d4  [ 0E423A5854E1265F3B6D27332601355F, B13FB6AD9757D838EDA216CDEC1FA6DE48F79C00FDDC7BB2B644D1ADE5A4217A ] AFD             C:\WINDOWS\system32\drivers\afd.sys
21:57:40.0012 0x09d4  AFD - ok
21:57:40.0027 0x09d4  [ E84A11EFFE15A551A3E67CCB6985108C, 357FA06089ED7E35589A937123F090FAA87D22AD948C50F1C797B348799266B2 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
21:57:40.0027 0x09d4  agp440 - ok
21:57:40.0059 0x09d4  [ 11BC9F8550B2DE51BE6910F56D413740, 84B161E3F69681D0CBCB3C8CECA1C61262B15C756EDAEA6E0F5F488BE059D18C ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
21:57:40.0074 0x09d4  ahcache - ok
21:57:40.0121 0x09d4  [ 8DA92DB9585C83775024C19ED5EFA3C4, 45708FCCE16C6DF63A3702F9311470FC4F7349958B64400C3E43F2F81A6DD3CC ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
21:57:40.0137 0x09d4  AJRouter - ok
21:57:40.0246 0x09d4  [ 2DF4759AE499CEB7A4A81A50BED5D056, 706A46789E77D345F991B6433AEA1D4FE26DBB45FC2FC034BAB559D5FEF9E5A8 ] ALG             C:\WINDOWS\System32\alg.exe
21:57:40.0246 0x09d4  ALG - ok
21:57:40.0277 0x09d4  [ D6148B25A9C87FADE773FAA077DB57D0, 30BA3F8515222FFE003FD0DA7ADEF57493C8928B69D32F1754C1B64E3BFA3CD0 ] amdagp          C:\WINDOWS\system32\drivers\amdagp.sys
21:57:40.0277 0x09d4  amdagp - ok
21:57:40.0309 0x09d4  [ 041F4910E2110ADAF6F2C58404F7DC57, 17C612DB9223D068B9CAE7E487938B6143115C457812D17F8AB4919EFE660F6F ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
21:57:40.0309 0x09d4  AmdK8 - ok
21:57:40.0356 0x09d4  [ 7F412975418E252CDB79D3BFCDAD1317, 1621DC37F9284CF18EDC5852581BE7B0059FC1619EBB1481432E105F6C1E7C91 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
21:57:40.0371 0x09d4  AmdPPM - ok
21:57:40.0402 0x09d4  [ FB115921FA9C6ACB3D99A1BB95822983, DC3C5A3AB8247409944858793795B5E4D231DE1F50955A8F5015D1C0F04FF581 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
21:57:40.0402 0x09d4  amdsata - ok
21:57:40.0434 0x09d4  [ 0B0037ADF21A4A199356CCF43D0DBAAF, 1033FC37ED7BF7F21D78DB896EBF17D3CC87828615DD0333CB50BBFD38B4BA80 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
21:57:40.0449 0x09d4  amdsbs - ok
21:57:40.0465 0x09d4  [ 22BA036FD3C92A6B44BEFB482D3C75D9, 1A165A9060BF368C2AB5BDE5D2939F425AB8C24FA6819B2B718507F5DB4FD864 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
21:57:40.0465 0x09d4  amdxata - ok
21:57:40.0574 0x09d4  [ 46831BCB51397B026F8ECA5E900F808E, 25D03E8C1C2982583908BE168F4CC0EEC5EA245AFF6CC6E13B1352FA5BD8B821 ] AppHostSvc      C:\WINDOWS\system32\inetsrv\apphostsvc.dll
21:57:40.0574 0x09d4  AppHostSvc - ok
21:57:40.0637 0x09d4  [ 7136D377AC4DED9C71E2B6DBC9D6EFBA, 27951DA4C7F3659FEFE7FD5E1975609BF6171B9546AA847253FE803F8F46B85C ] AppID           C:\WINDOWS\system32\drivers\appid.sys
21:57:40.0652 0x09d4  AppID - ok
21:57:40.0699 0x09d4  [ B29ED7940F18A2F7ECC21539A44412FD, 9FF9115710EDBC526A57BEF721D25DC324812030F6C65365F3EFAAE14EAEB0AF ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
21:57:40.0699 0x09d4  AppIDSvc - ok
21:57:40.0715 0x09d4  [ 8B90CF7BEA089F77766780F5970DA544, 63334631E7A146361A2389C3A4AF505383AC68F02DB1305B3D44BBEFEC72FDF2 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
21:57:40.0715 0x09d4  Appinfo - ok
21:57:40.0793 0x09d4  [ F518545E5B7623AD49ABE7F8776EFA46, CD39B6EC0D80C6DB857F34D4AC5C31085271B51B8851A56FEFC052B20B7CC40C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:57:40.0793 0x09d4  Apple Mobile Device - ok
21:57:40.0809 0x09d4  [ 27C54BCC50C711E288116CD8914B67AC, F46336BB184341EE8CC5C9FB6BC607630B89E8D56D83914F72D3114408E1EF44 ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
21:57:40.0824 0x09d4  AppMgmt - ok
21:57:40.0840 0x09d4  [ 6AE7C3FD22F25792D67EC1648B46BF45, 4ED5237FE800F0CABFC0E767FCF0005AADC7E4364E651DF087400EE46FCD9EC0 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
21:57:40.0856 0x09d4  AppReadiness - ok
21:57:40.0996 0x09d4  [ 7E7D3CD1705E477A2FB50C681D93C6F2, DFAA3D9F22384431C4ED07CCBED6344D6E3FC0C15AA094A8E925F8A7BB3BF8B0 ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
21:57:41.0074 0x09d4  AppXSvc - ok
21:57:41.0137 0x09d4  [ 50964D19126E2154EAAC042E1475A420, 04D9750DE8DA7B7AB072EA887B47D52BAB71674C8518FCDCB69E8A395D576EC1 ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
21:57:41.0137 0x09d4  arcsas - ok
21:57:41.0324 0x09d4  [ DE2DE0C1CCEFBD7A1405959138F97BCE, BDA0F2D9B33621134F1A460C9184FB9EBA10BD7F0A4AEAB4894557C37C89D58A ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
21:57:41.0340 0x09d4  aspnet_state - ok
21:57:41.0356 0x09d4  [ 90175BAF06E538A2DE23D511EB108ABE, E51EB42118AAF8A7782B35C320DE2982FF0BF3BACE1EFFAE4F6EEC54D045101B ] AsyncMac        C:\WINDOWS\System32\drivers\asyncmac.sys
21:57:41.0371 0x09d4  AsyncMac - ok
21:57:41.0387 0x09d4  [ 845E9A40B9B3CAD20B5EE45A2A58EE11, B5B60F509F4B2DF52E3E435E4B6673085562894D30080D43BAADC678EA22A051 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
21:57:41.0387 0x09d4  atapi - ok
21:57:41.0527 0x09d4  [ E28FFF148854FCA75D111F70EA2D509D, 1738A817DB3536B69FF7D9AAADAA1E47342AC6AD404D539C04803B7DF880DE13 ] athr            C:\WINDOWS\System32\drivers\athwn.sys
21:57:41.0668 0x09d4  athr - ok
21:57:41.0746 0x09d4  [ CDB06D408F4804AA2205BD41729AA1E1, 47107968BA58CBEC1C783F5CF11F33F4B9945FF80791634BF354D94833596A15 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
21:57:41.0762 0x09d4  AudioEndpointBuilder - ok
21:57:41.0840 0x09d4  [ 5320852E9149DCF43A336B2B634BA96E, 0FD92354EED1E6E76B76E10178D6BF74FD04EC79E76F13F696F971A92944166F ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
21:57:41.0887 0x09d4  Audiosrv - ok
21:57:41.0981 0x09d4  [ 381ACF5D04BE19C77EB76FB40BF18401, 618D6C3A0416B0454369F9EA565652EE7EA4F8B26C22A06B737195721BBC1C68 ] AvgAMPS         C:\Program Files\AVG\Av\avgamps.exe
21:57:42.0027 0x09d4  AvgAMPS - ok
21:57:42.0043 0x09d4  [ FB3C1C01C565C22765F3B1BED370CC9E, 88EE66944F15A3FA954C22323A116774D9E0755F94FE7E73128D22E6F8D64162 ] Avgbootx        C:\WINDOWS\system32\DRIVERS\avgbootx.sys
21:57:42.0059 0x09d4  Avgbootx - ok
21:57:42.0090 0x09d4  [ E18E4D3EDCB2DF71B48F6ED72BC68654, 1034DF01FB1EADFC73985D060DD6851715507AD6D68830BD6679E90D911BC197 ] Avgdiskx        C:\WINDOWS\system32\DRIVERS\avgdiskx.sys
21:57:42.0090 0x09d4  Avgdiskx - ok
21:57:42.0314 0x09d4  [ 5DA084E973407AFC5E74CBC2FEAF81A8, ACA1869A78B5D4FE40D658EDE9F48202FD0E925042D7EEBBC84FEBF12C872214 ] AVGIDSAgent     C:\Program Files\AVG\Av\avgidsagent.exe
21:57:42.0486 0x09d4  AVGIDSAgent - ok
21:57:42.0580 0x09d4  [ 6A3992330168AD16289CD95E2637E32F, B10F70C6E8E40CD59B8E093CC274D5A61D7BACF3A5A05172848B30C053F17272 ] AVGIDSDriver    C:\WINDOWS\system32\DRIVERS\avgidsdriverx.sys
21:57:42.0580 0x09d4  AVGIDSDriver - ok
21:57:42.0658 0x09d4  [ 58D2DD279EF94567F3ADE0A183AA8E73, 3039A598B2EE9D0A1BD2C2B1004279470710A6B450D4800C9CE89B8D3AB21ED3 ] AVGIDSHX        C:\WINDOWS\system32\DRIVERS\avgidshx.sys
21:57:42.0845 0x09d4  AVGIDSHX - ok
21:57:42.0876 0x09d4  [ 05507CFA40090B6899DAAA2628BA6E17, 9E1B2BFBB07DBE31B64BCC1E584B3DB11A6A3A7E12E522AF229FF4D992CD26C6 ] AVGIDSShim      C:\WINDOWS\system32\DRIVERS\avgidsshimw8x.sys
21:57:42.0876 0x09d4  AVGIDSShim - ok
21:57:42.0939 0x09d4  [ 9458A6E6F281873F8F6D8CC4E39BF1A3, EE6DBA70A14E6F947E34F1351EDC1C164CD1C1D67BA7D87DEA7A5069CF0AC226 ] Avgldx86        C:\WINDOWS\system32\DRIVERS\avgldx86.sys
21:57:42.0955 0x09d4  Avgldx86 - ok
21:57:42.0986 0x09d4  [ 671832356F02077F305F711FF8894BDA, DD0F193EF2F40DDEEABBEE13A4D669654AECF57B0C54CBF87FA8871536688C83 ] Avglogx         C:\WINDOWS\system32\DRIVERS\avglogx.sys
21:57:43.0189 0x09d4  Avglogx - ok
21:57:43.0220 0x09d4  [ 0D23D83E871E281CE9108B630FA745D7, 87A9ABAC65B17504C09FA3B96C70362BF8E017F8C9AA2B00D96DE72BBA42F5EC ] Avgmfx86        C:\WINDOWS\system32\DRIVERS\avgmfx86.sys
21:57:43.0423 0x09d4  Avgmfx86 - ok
21:57:43.0455 0x1050  Object required for P2P: [ E84A11EFFE15A551A3E67CCB6985108C ] agp440
21:57:43.0470 0x09d4  [ 961DA8B7CE470D85D67262A3E3F45F63, 86987FAF0E69D819F7EBA30C2C11C4650AC5F6CC64977DE8E790D3D6F0639F74 ] Avgrkx86        C:\WINDOWS\system32\DRIVERS\avgrkx86.sys
21:57:43.0533 0x09d4  Avgrkx86 - ok
21:57:43.0720 0x09d4  [ 0543F1849909482740738F2AB2FE0314, 0137ACBDADFA6B03AB5CB98781E581871E29FA94D915974111C49DCB0C9AC958 ] avgsvc          C:\Program Files\AVG\Framework\Common\avgsvcx.exe
21:57:43.0814 0x09d4  avgsvc - ok
21:57:43.0955 0x09d4  [ 799759F0F6825875A7178C15CD2D7E8D, B40DF8F31281FC6C7212C26BB8C1E76DD92A9B2B92A8C1E55B0AB7A200A5F43A ] avgwd           C:\Program Files\AVG\Av\avgwdsvcx.exe
21:57:43.0970 0x09d4  avgwd - ok
21:57:44.0017 0x09d4  [ F55D84E43B6720F4F1417C1A4FCE4E4F, 9977BC16F92F536DEF1DBE2EC747764063998A5F732D9842186DAAFDE0A1D35C ] Avgwfpx         C:\WINDOWS\system32\DRIVERS\avgwfpx.sys
21:57:44.0033 0x09d4  Avgwfpx - ok
21:57:44.0095 0x09d4  [ 51F1C18B1A04499A84CAE34D1B176423, 2A97C86BB2145C528C9CD339EDC61C7E13057BB16AB343725ECC1F2563352307 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
21:57:44.0111 0x09d4  AxInstSV - ok
21:57:44.0173 0x09d4  [ 2586B2D1AD9013859CFB684A2B85BE19, 145700908A7AFDD5CFFE52A4327F213CC218B39F4226C47D4F74FC00B79862BB ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
21:57:44.0173 0x09d4  BasicDisplay - ok
21:57:44.0189 0x09d4  [ 2ED165E5B159D7F1102F2645C0C8484C, E1F2B092AE1966D0B75F75DA2540B5735167637F34CBBECEBC71897AC2CEC8C7 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
21:57:44.0189 0x09d4  BasicRender - ok
21:57:44.0220 0x09d4  [ 045ED769BF5396D346FA7493F47DF811, D0A57A040E3B18AC3A5ED56BF2D26E334DA0381AB686CC3F0517953EC3F7B46D ] bcmfn           C:\WINDOWS\System32\drivers\bcmfn.sys
21:57:44.0220 0x09d4  bcmfn - ok
21:57:44.0236 0x09d4  [ E4D6B5E5E5CD2606391220B156235692, 4633C60BDA9FCB892054D4F338323A4C9E35915D1BF7571A38AC25D51C1BFBE5 ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
21:57:44.0236 0x09d4  bcmfn2 - ok
21:57:44.0283 0x09d4  [ 258D2B5BF961B1E20CF4DA8BBAC77CB5, D30710C0A1C220C4947A6386C84B40199E5906E4D498FFAF266813F6D8EE6B82 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
21:57:44.0283 0x09d4  BDESVC - ok
21:57:44.0346 0x09d4  [ 4EE5D422C102493A29DE4D41A37A05B3, 8A1C4E67C0511DDEBB67D1E830356640433E7B99E666AE9E1E7644F6933DA7F9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
21:57:44.0346 0x09d4  Beep - ok
21:57:44.0424 0x09d4  [ C89191A10746F426FEBDA21E6757162A, 2D09C7A6E7AB7F86C834912E16B0A76FC2971D2F00549DA26D46E92104121E07 ] BFE             C:\WINDOWS\System32\bfe.dll
21:57:44.0455 0x09d4  BFE - ok
21:57:44.0564 0x09d4  [ E2A7666D946B70B9CB4DFF2ADFEFFAC7, 9B929A6EF236BF37EDAE0B7A13CAAAC1F3A5CE4CCFD37E8FF4094F4BBF9D6DD4 ] BITS            C:\WINDOWS\System32\qmgr.dll
21:57:44.0705 0x09d4  BITS - ok
21:57:44.0783 0x09d4  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:57:44.0861 0x09d4  Bonjour Service - ok
21:57:44.0924 0x09d4  [ D2CD25ED5627D0E5996E715BAB0FD33E, AF08FDBB372A1D19397335FD3544B793D3859ED40BFD83B2D0763E27AA2CA174 ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
21:57:44.0924 0x09d4  bowser - ok
21:57:45.0017 0x09d4  [ 396664454EA4B790F0A7F7F79FD718E7, 2C79F356094C2A9877E914F7B145112187ED41BD7642B843434FA659E649BA53 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
21:57:45.0111 0x09d4  BrokerInfrastructure - ok
21:57:45.0143 0x09d4  [ 3D82BFF21A672C975C942A51E46083F4, 8285987D0E740162879D795351BFDE181D9F42EC26895A81DEFB5D9C6CFE1F4F ] Browser         C:\WINDOWS\System32\browser.dll
21:57:45.0158 0x09d4  Browser - ok
21:57:45.0252 0x09d4  [ 0CBEDEE41532934F2FBCF3051C74C32B, BAD117A3A679CDE7F13EE13B6C87910BE0B3F58D5B2B56B3C07834835D0E2C97 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
21:57:45.0252 0x09d4  BthAvrcpTg - ok
21:57:45.0330 0x09d4  [ 215A1078B116C35AD62899DEB86EDE4B, 752C649BD769A8BE50962E59B89FE19A56837ADB730A6F48EAA05DD475D27306 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
21:57:45.0330 0x09d4  BthHFEnum - ok
21:57:45.0346 0x09d4  [ 48CDC2E2AC676370D60A2BF1D2988E29, 8D5122DF2564495163F25E909F18D651D22D91D4E63B8F922B21DD9AAADE60FB ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
21:57:45.0346 0x09d4  bthhfhid - ok
21:57:45.0361 0x09d4  [ 88735782434A8F01F5B189A8B28EE5ED, 22175E8E63DD36D909A99D92843ED130F3CC039B76E41577DA89EF8BAD138075 ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
21:57:45.0377 0x09d4  BthHFSrv - ok
21:57:45.0408 0x09d4  [ F0767FC04C52F8A153519E3188A8F53C, 9E7B83828D03F63F02A6BBEA4BB61A12EA57EC3C44B8C499CE41ECFEEDECA287 ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
21:57:45.0408 0x09d4  BTHMODEM - ok
21:57:45.0424 0x09d4  [ EB6F8ED91137E6D590B5987D52ACDE45, 2390C79D6F780F375531CCDA79E45F9B93E0BEBA477C630BFBE0AA28A90C3662 ] bthserv         C:\WINDOWS\system32\bthserv.dll
21:57:45.0424 0x09d4  bthserv - ok
21:57:45.0486 0x09d4  [ 5963AB18758E5CDFBAFC43E711768CB0, 8B93B90E0829FA62827B02526E210FBEE0A6D5E4245C6C0045B3EC888D1CA103 ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
21:57:45.0486 0x09d4  buttonconverter - ok
21:57:45.0533 0x09d4  [ 53453E09F6A80A5019E93792F3E0BC04, 946F63821BC4E88A59A25B197F495A383A4B37958B122A3961BA1E8D843076F6 ] CapImg          C:\WINDOWS\System32\drivers\capimg.sys
21:57:45.0564 0x09d4  CapImg - ok
21:57:45.0596 0x09d4  [ 40FF3DCC427730779DDF301A0F9FC0E1, D1E9464694D3761307BA579373319A8C206E76CB0A7E88B2220208C025CC46A8 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
21:57:45.0596 0x09d4  cdfs - ok
21:57:45.0627 0x09d4  [ 6898F88DC3FEBB85CFD1034A5BBBB4E9, C65DC212681D0208A4AF8A7755E667BAD06D5EE3C660DA4A741C5A8A228FA20B ] CDPSvc          C:\WINDOWS\System32\CDPSvc.dll
21:57:45.0627 0x09d4  CDPSvc - ok
21:57:45.0642 0x09d4  [ 568DF0072AD005D29D6E987698C8225A, 304498CBFF4055711DBB51F3900FFAD8D89F2E42DA9BFCBE1835DC94530834CA ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
21:57:45.0658 0x09d4  cdrom - ok
21:57:45.0674 0x09d4  [ 79A68462E4512E766F0683F6AAC79E6E, F162489C0179BDCAD53C042C1519D0DD7F4E53ABC2DD1832FEA093B180BAB388 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
21:57:45.0689 0x09d4  CertPropSvc - ok
21:57:45.0736 0x09d4  [ 99BF5121E3CA714FE5E95899BCB5F029, 93669E1AEFDDF89AFD5E8F0B749C4580A21457C1F47745323049F55DD4606559 ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
21:57:45.0736 0x09d4  circlass - ok
21:57:45.0752 0x09d4  [ 60DC4AA07EED9ADE1C20306E7516CEFD, 89A0131E7C4F202259117C94888685CF119A80F99F2473B5509DA26C749A3F14 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
21:57:45.0752 0x09d4  CLFS - ok
21:57:45.0799 0x09d4  [ 62EBACF9981C4AA8AC52F7857049DE20, D8C6CC16756B065460495020F79DA30E0FE40A93990B07CAADBCD576FCA69C01 ] ClipSVC         C:\WINDOWS\System32\ClipSVC.dll
21:57:45.0830 0x09d4  ClipSVC - ok
21:57:45.0892 0x09d4  [ 09785DC4980820BF1C24B2806FA25DB2, 4628279268C3093AC6B90A7311FF190FC79C87349A104C1CD3DC2BB3BC34DF05 ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
21:57:45.0892 0x09d4  CmBatt - ok
21:57:45.0971 0x09d4  [ 7D30C95B11EE389E962DD04C60C2D270, 41CC7CE8755EEF35A35CF7D2C67AD17C143014EA2DC644D0CA530426732571B7 ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
21:57:46.0002 0x09d4  CNG - ok
21:57:46.0033 0x09d4  [ F35951B62F65F1EA254D4ACF8EA020CD, FAC86E10DF527334E5AD12FE1255CC48E9F0F7C7CED480D26DD9F3A274A16C55 ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
21:57:46.0033 0x09d4  cnghwassist - ok
21:57:46.0096 0x09d4  [ DDA0CB141150FEF87419926790CD26C8, BF55242E918CB4214EEEE54EDC346777EFF8958547679712600B025C399C1792 ] CnxtHdAudService C:\WINDOWS\system32\drivers\CHDRT32.sys
21:57:46.0096 0x09d4  CnxtHdAudService - ok
21:57:46.0142 0x09d4  [ F9A79C5B27037821112C50A9C8FB367A, D9990AE1A0CA767E54C9D3FD2C6EA2A068DFD5A270102E915F71648A0C59097B ] Com4QLBEx       C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
21:57:46.0158 0x09d4  Com4QLBEx - ok
21:57:46.0315 0x09d4  [ 973C1A799DEEA49AAEA717420B32E7C9, 5B48CF1D805B19E079C5EF0F22D5CF5B405B5B6E0B3BF6B542810D5BE54211D5 ] CompositeBus    C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_x86_dd1d60cd48926252\CompositeBus.sys
21:57:46.0330 0x09d4  CompositeBus - ok
21:57:46.0346 0x09d4  COMSysApp - ok
21:57:46.0471 0x09d4  [ 4E74758815B5E551124F6D7F51423BFA, F7AD1DB2413231FBB3D7585FC75036B75EFA6ED3ED9E62343F9E7D6EBF3DF789 ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
21:57:46.0471 0x09d4  condrv - ok
21:57:46.0549 0x09d4  [ 44F416C22E606AC1933DE6E346C67FF5, B6A5C5CB4BFD32BC564EAF3F7B550BAFE17D7C323B749F2D04C3F7F2C4F03006 ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
21:57:46.0596 0x09d4  CoreMessagingRegistrar - ok
21:57:46.0674 0x09d4  [ 80CFCA32F94E4246CA65253E3B3E2A67, D1BEC8C3E263852F09FF2D4BC6190E46147B7C82774841A04D4E4AFD0626C581 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
21:57:46.0674 0x09d4  CryptSvc - ok
21:57:46.0768 0x09d4  [ 0FD8B17051C07DA3AE0C18B56F877712, EBE9C9439A00BA2FC0D255357DBCF9779ADBCA1AB02928D46D71B218E65CEF60 ] CSC             C:\WINDOWS\system32\drivers\csc.sys
21:57:46.0862 0x09d4  CSC - ok
21:57:46.0924 0x09d4  [ 07A9DD9F7A9B932352DD4C5DD3D78DF1, A78B34A7C6C5D4E0589FA4EF1A45315791F66415877546CF9B1438ECE34B270C ] CscService      C:\WINDOWS\System32\cscsvc.dll
21:57:46.0971 0x09d4  CscService - ok
21:57:46.0987 0x09d4  [ FD288AF672CF286EA8717C307F5709CF, 3CDACF6119D8AB270EBE684BDA496CE5B0BAAD84A6907E7CE17ACBDD559F5A17 ] dam             C:\WINDOWS\system32\drivers\dam.sys
21:57:46.0987 0x09d4  dam - ok
21:57:47.0096 0x09d4  [ 4C0499B1D34B8E097DAD8B26DC26BCB2, 8855D7ACF8DD445CBA3A929D0DA8E6BFF6F7B05D10422F5F2BF3C95E517035DB ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
21:57:47.0158 0x09d4  DcomLaunch - ok
21:57:47.0237 0x09d4  [ DFDA1AD0394C0B40A02F91B43B79B06A, BD252BCB3AEAC8111A920BEF41502EE9F4B7FBA7BC6CF0843D19C7C57962E8EC ] DcpSvc          C:\WINDOWS\system32\dcpsvc.dll
21:57:47.0252 0x09d4  DcpSvc - ok
21:57:47.0331 0x09d4  [ 4DD99CA12878C9E782EFA72DB47D4BF8, 822AEE2F419D8A977E7EB15914E717EE975D74317C863D183E4EFBDFAD3B8B2D ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
21:57:47.0362 0x09d4  defragsvc - ok
21:57:47.0456 0x09d4  [ F46B5B494AE3DE0D3120EEC9E166CB1E, 2D76C9E8209FCE09672084BDFB6EE7FF3E6453E75D4D78ECB2E3489848A61BC8 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
21:57:47.0471 0x09d4  DeviceAssociationService - ok
21:57:47.0549 0x09d4  [ F8CE95063897444AC54E83D8414EFEBE, 3A4174B4B474BAFDDF84511C83861D2B2620C5E049C9FAA3E3A6037F7F254C64 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
21:57:47.0565 0x09d4  DeviceInstall - ok
21:57:47.0612 0x09d4  [ 666C38366AABA2CB29F8EB2268A9682E, 79EB9766D9A0BD49C8C7E505B85A58FCBDC2938C464E0C46C15BDA3AD6E96217 ] DevQueryBroker  C:\WINDOWS\system32\DevQueryBroker.dll
21:57:47.0612 0x09d4  DevQueryBroker - ok
21:57:47.0690 0x09d4  [ 903EC9934C38FA7357C1DC83339A0D55, 4EB2B2F1CE26DDB63E3FF1D81368D53B5C9C0613B807013030EBE86FE8F1FFBD ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
21:57:47.0690 0x2770  Object required for P2P: [ 7E7D3CD1705E477A2FB50C681D93C6F2 ] AppXSvc
21:57:47.0690 0x09d4  Dfsc - ok
21:57:47.0815 0x09d4  [ 560B0DCE52DFED6623B27C9BAFA6F236, BB4156BB1CCA64CCDE065870DAE56CD58BF05CEBF7C3B17C7A821FDF02A8B157 ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
21:57:47.0956 0x09d4  dg_ssudbus - ok
21:57:48.0018 0x09d4  [ 3974582863F6720B9B6D843CA9BDA71E, E8F89665103A0EBEDD390D6981B06AF1C8F7E393AA4BEF3D225AADB665865040 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
21:57:48.0018 0x09d4  Dhcp - ok
21:57:48.0143 0x09d4  [ 77F94B8619CEC74EC031970396830F08, 9F098A5A416BAC6EE840775ADC69976B0FE85988785B1DD12E640413F4BD9336 ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
21:57:48.0143 0x09d4  diagnosticshub.standardcollector.service - ok
21:57:48.0206 0x09d4  [ 99014E6DC8A03DEA9C8A499E259E52DF, 8CA18C5CCB7A9CD86D6BD67D8DA11B46D0D5D56BB0E2BC3F06F6B8FBD1456F12 ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
21:57:48.0252 0x09d4  DiagTrack - ok
21:57:48.0284 0x09d4  [ 0C63DDB97D5A7B8732BE3F5855908773, 2D701A20E84E4B71A53642FE5C73231ADC14931D8DDF01FFFBA7F24714711A25 ] disk            C:\WINDOWS\system32\drivers\disk.sys
21:57:48.0299 0x09d4  disk - ok
21:57:48.0424 0x09d4  [ 7C85CC5570BF718D2B9AD9F53B1B5B55, A8177F14CC2E40ECAC07C2C9971F8B6E181B890BC845296AABDDC2EA268FFD0A ] DiskDoctorService C:\Program Files\Norton Utilities 15\Tools\Disk Doctor\DiskDoctorSrv.exe
21:57:48.0503 0x09d4  DiskDoctorService - ok
21:57:48.0581 0x09d4  [ A4C4B936A5EB65EAB9AE4D6A8FC18226, 19A5001427DCD3B8245DA2343C841ECEB9FF525D860700CBB2305BA9B18332D6 ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
21:57:48.0596 0x09d4  DmEnrollmentSvc - ok
21:57:48.0612 0x06f4  Object required for P2P: [ 0CBEDEE41532934F2FBCF3051C74C32B ] BthAvrcpTg
21:57:48.0643 0x09d4  [ 6895FB5AF4621853BC7701C185B3F4CC, DF54CC44AD8DC6DA2CD9D899A3F63F490C8CE44CE151D2F8A05B6739BA12885E ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
21:57:48.0643 0x09d4  dmvsc - ok
21:57:48.0706 0x09d4  [ 1B6AE2010A905B1B00BBFDACAD576A1F, F5BDD054E58DBCE0701608ABD10B41C0EA299BB9F8041E10BF2692B05FCA472A ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
21:57:48.0706 0x09d4  dmwappushservice - ok
21:57:48.0815 0x09d4  [ 05818088C2A96CBDF1181E326FEA7476, 841BE0FB14527ED6EBF415D590032DD0FB43EF6EE95DB5A392289C9106CD5DA3 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
21:57:48.0846 0x09d4  Dnscache - ok
21:57:48.0862 0x09d4  [ 7E940BB0B57EFCA2B2A6F9FB8E251713, 0527C35E1C6FD9B5FF1952727C7E38111024573518BFBB7267B87077CC1BAB41 ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
21:57:48.0878 0x09d4  dot3svc - ok
21:57:48.0909 0x09d4  [ A1519D4DE96ED66DF5BEC61587F078EE, 324474AC5C4E9773242E75A6C36EA302984A6BECDB55DFC13C190D806577E0FF ] DPS             C:\WINDOWS\system32\dps.dll
21:57:48.0909 0x09d4  DPS - ok
21:57:48.0940 0x09d4  [ F82FE91B43208CAA608839AC5092E755, 357AFB04A646D27D594DFD6BE37947360247EEB5D035D201AA8F8C993FDE4837 ] drmkaud         C:\WINDOWS\system32\DRIVERS\drmkaud.sys
21:57:48.0940 0x09d4  drmkaud - ok
21:57:48.0987 0x09d4  [ EBBCE5A8305C668A6270D50DE5B040B4, 1292A3DF0091BD4484E07AFF72B7C8B3B0F9D683D90684D8110723DB09B7631C ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
21:57:48.0987 0x09d4  DsmSvc - ok
21:57:49.0018 0x09d4  [ 35FE50D818514B9165DB63A2854A3985, D92A4C009D2D66E46D998F204DEBB25AF65F3EB3D6C99C245F7D5ADD83894B77 ] DsSvc           C:\WINDOWS\System32\DsSvc.dll
21:57:49.0034 0x09d4  DsSvc - ok
21:57:49.0159 0x09d4  [ 50610F7F69646DA84D7AE631ED987579, 85BE19DCA6C3BC40BF4791AB94755A9E0775ABF1391D98C25DA0C2AC09F97DCA ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
21:57:49.0237 0x09d4  DXGKrnl - ok
21:57:49.0300 0x09d4  [ 577EA366AD718B77750C05E22AE19843, 4905C3F08903C619C320B2BB9CE31AF46F28A3D95D961894571968273347BCA3 ] EapHost         C:\WINDOWS\System32\eapsvc.dll
21:57:49.0300 0x09d4  EapHost - ok
21:57:49.0378 0x09d4  [ AC27D700DCEE3715249C9815A361B2BB, 81CD19D69A8A2D994EFB166A830C007317FD000262E3F0D7043CD9BB19BE6A5A ] EFS             C:\WINDOWS\System32\lsass.exe
21:57:49.0393 0x09d4  EFS - ok
21:57:49.0393 0x09d4  [ D2EC767AFFA76FAC2DC9D9AE779E3CAC, 4B16081E8DBF279FAE2B04D92A0C4CDCA80B62B0CBF697C31745C52A32F9C967 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
21:57:49.0409 0x09d4  EhStorClass - ok
21:57:49.0487 0x09d4  [ 901E228F78A9FD9F4166954F7DEC4759, D8CC5E15B92B21AEEC4C60A377B3431A22EB5B0355CA20BECF5DE7EC2423D168 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
21:57:49.0487 0x09d4  EhStorTcgDrv - ok
21:57:49.0534 0x09d4  [ 39EB0DC8CA2BFCF5449E1012987C4BD1, 4141DBC88501FDF59E440B1AF2406AA3F401E04842FE0146514D0AB3FF3CBC55 ] embeddedmode    C:\WINDOWS\System32\embeddedmodesvc.dll
21:57:49.0534 0x09d4  embeddedmode - ok
21:57:49.0549 0x09d4  [ 773E20E0091FE86875E83E391F963569, 0B6CC8A9ED9D44FF6500F9E96BFD164DA767305BFC84D0DE96B5FD8EEACA0824 ] EntAppSvc       C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
21:57:49.0565 0x09d4  EntAppSvc - ok
21:57:49.0612 0x09d4  [ 63EE973821C43B935681F581BE8C5E25, 6AFC221B46582372FA91CF60CE0A036D798550858F3156AE6ED240892A6AD61A ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
21:57:49.0612 0x09d4  ErrDev - ok
21:57:49.0737 0x09d4  [ 468EF07E739F81FBBD367FA1714F8460, 1E79F3766ED857074952E25F3DE850E13790B33F3837A5F49E6035B5A0798572 ] EventSystem     C:\WINDOWS\system32\es.dll
21:57:49.0753 0x09d4  EventSystem - ok
21:57:49.0846 0x09d4  [ D59E0F039B9E2A32CC570F086ACE5D8C, 69E815A0F53DFF3789A4D8C56E0422D459E2E9BC089FD4A3A4FD78E39D68CA99 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
21:57:49.0878 0x09d4  exfat - ok
21:57:49.0940 0x09d4  [ 0CC52839EE6EF38117A558FD94996E34, 94310ADD038E5AD7FD8811E469C966E5A3F8B758B988FEF8B6518CB078161C89 ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
21:57:49.0940 0x09d4  fastfat - ok
21:57:50.0018 0x09d4  [ 6B0FCD1624269C471B06E2B0588FA079, FDE5BDEC1363924BFE631F4461ED72A8C0AFFB36564ED033534058FB40EB5E08 ] Fax             C:\WINDOWS\system32\fxssvc.exe
21:57:50.0065 0x09d4  Fax - ok
21:57:50.0128 0x09d4  [ 1A2342AAD334EB05901C285B0B8CCC3C, 49CE99F9092A4F84DAB2117F7B1F873374B4F952A550F2FE33923F2155CBE24E ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
21:57:50.0128 0x09d4  fdc - ok
21:57:50.0175 0x09d4  [ DCA7FB79DC57783C3C75B388F57BD39A, 777BA0E5DBA80583916E4238E925C17EC8BC08BF2DBD54CA3C19FEE910C86EAE ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
21:57:50.0175 0x09d4  fdPHost - ok
21:57:50.0190 0x09d4  [ 842E3DE3767353C8BE7209D784BBCD44, BC1E6D6343E6158D6D081B999DB752E646F6CB33A61C1F6ECFBB00C681C0A676 ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
21:57:50.0190 0x09d4  FDResPub - ok
21:57:50.0206 0x09d4  [ A5AE4F313879B308BAE541D3D45C6F00, FB561169E1B73C11637C1868E41BFAC36C96C52E2A462489A8354E131B7F92EC ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
21:57:50.0206 0x09d4  fhsvc - ok
21:57:50.0268 0x09d4  [ B3C4ACF0613E4E924201C8EBB6A67F93, D5832EAFB49386CF8D51A1627136A01C4788AF23C1A1267C96F6D0FFB9F3D2CE ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
21:57:50.0268 0x09d4  FileCrypt - ok
21:57:50.0284 0x09d4  [ 8FE19EC177769B3A8FF13A4F92920DB3, 25BA3C2E3F5DD0E9B18F43897A739A2FC0601B31F8A68A8CCF0D0FDCEF6FDCAB ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
21:57:50.0284 0x09d4  FileInfo - ok
21:57:50.0315 0x09d4  [ E125E9C492589AF597A4B770057A3A12, 29345311BC0534362B7EDEB0D26B286B8B0A41DA46E196B195E8C7D0DE5CCA57 ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
21:57:50.0362 0x09d4  Filetrace - ok
21:57:50.0471 0x09d4  [ 00EDB531DFB127197D625204B138269B, 0CE6536344CE30F06C6CD04BEB202C935B10439200B9CE792B4440D2EE3CB9D9 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
21:57:50.0565 0x09d4  FLEXnet Licensing Service - ok
21:57:50.0581 0x2770  Object send P2P result: true
21:57:50.0596 0x2770  Object required for P2P: [ 0543F1849909482740738F2AB2FE0314 ] avgsvc
21:57:50.0628 0x09d4  [ 756C635C598803DF1A6E506247F35BF0, B6465774C1BCD622329C5BB804497F9E9997092D125E003D0EAE33E55AE1D8DF ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
21:57:50.0628 0x09d4  flpydisk - ok
21:57:50.0674 0x09d4  [ 2308364B5ED19C2603AE3F21A166C959, 46EEF48D938BE0D3284159BE53ED2E2A0A45582039CC7784E4976B2989AAF482 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
21:57:50.0674 0x09d4  FltMgr - ok
21:57:50.0815 0x09d4  [ 58D1E83DDD1524B69E7D12D4662E2D16, B5D6348A95618FED99815EF2DC9C351744A3D9382C4A234833D6DF0AA08ACD43 ] FontCache       C:\WINDOWS\system32\FntCache.dll
21:57:50.0893 0x09d4  FontCache - ok
21:57:51.0128 0x09d4  [ FB71B03636A04D0EEEB8E9762CFD3782, AD76A6981147D89A68BF290D1AA47230864D6F603BA1D7FBEFE930BFDAAD0E53 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
21:57:51.0128 0x09d4  FontCache3.0.0.0 - ok
21:57:51.0190 0x09d4  [ E432D770EF3653E9E6FACFA3483A990A, 6A18357055713B4CB673DE6B69A7AC35495407117A9D106F46A896E4B477729B ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
21:57:51.0190 0x09d4  FsDepends - ok
21:57:51.0221 0x09d4  [ B0082808A6856A252F7CDD939892CE50, 3A069239629C4F54049A2CFC6642AC5102ECEAA74470BAA9DDB1AB108D1060EE ] fssfltr         C:\WINDOWS\system32\DRIVERS\fssfltr.sys
21:57:51.0237 0x09d4  fssfltr - ok
21:57:51.0334 0x09d4  [ 28DDEEEC44E988657B732CF404D504CB, 47F83018E5449CDCED3DD447991788EBAAC92C418D4513FBA9408C45E9AB8E7E ] fsssvc          C:\Program Files\Windows Live\Family Safety\fsssvc.exe
21:57:51.0428 0x09d4  fsssvc - ok
21:57:51.0459 0x09d4  [ D33F6D08ADFF6F80385E3960DB0D83A9, 61DFAE382AD2D4758B012471A12F0D44C2F37A7F06EC332CA4AE63A15364329C ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:57:51.0459 0x09d4  Fs_Rec - ok
21:57:51.0521 0x09d4  [ A08C1BAA6B85196EC545574E7052F453, E37AE8C1E6BE9C2F015DFE00D2E54C7D1D228F9462116B5DC26F017D43122D10 ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
21:57:51.0537 0x09d4  fvevol - ok
21:57:51.0584 0x09d4  [ 60492E91A999D09669A4AB17091581AD, DD48D49EB5EB1B6161C34A76D6D3F4CAFCB3F0ECF9F6BE563A9B2068E63F848C ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
21:57:51.0584 0x09d4  gagp30kx - ok
21:57:51.0678 0x09d4  [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
21:57:51.0678 0x09d4  GEARAspiWDM - ok
21:57:51.0771 0x09d4  [ 26202FC5B0A82FD5F0106F976CD7A92D, 5DDA9560F9B98E7DC8F796FB6D754E17B9DE20BE68B4A6743714C81C67984129 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
21:57:51.0771 0x09d4  gencounter - ok
21:57:51.0803 0x09d4  [ D8F0CFCE925CCE536DE75E6F9811510D, 52344745C6414D72F1EC1F10F7CD06FECE44426498E9C595171D1287BC80A9DA ] genericusbfn    C:\WINDOWS\System32\drivers\genericusbfn.sys
21:57:51.0818 0x09d4  genericusbfn - ok
21:57:51.0990 0x09d4  [ 56A8BCA7D7F2B622DE309A2C3741A9C9, 6AB13FDFE3DF1FA3CD60DB7A0B19808A6638FD8206221C425495C69069405137 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
21:57:52.0037 0x09d4  GfExperienceService - ok
21:57:52.0115 0x09d4  [ 77EBF3E9386DAA51551AF429052D88D0, 94C3294BB9E14B07448734AE65B37801D3FF15BEC987D182A929A017FEF7B276 ] giveio          C:\WINDOWS\system32\giveio.sys
21:57:52.0131 0x09d4  giveio - ok
21:57:52.0225 0x09d4  [ 73EFE8A2747BB87F66B5646AA2262AE4, 368AAFA38F214D474206B914A4258B3679CB0B1C9080D32DFB3BF890BD5611A8 ] GPIO            C:\WINDOWS\System32\drivers\iaiogpio.sys
21:57:52.0225 0x09d4  GPIO - ok
21:57:52.0303 0x09d4  [ 59C3B230FBE68CCFECF38C07ABC16C98, FF0B1041AE07E07F54A618B3FEFE1A279751DC0B5DD94CBF5DA8C9C06053412A ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
21:57:52.0318 0x09d4  GPIOClx0101 - ok
21:57:52.0428 0x09d4  [ B8CBA89F042D40448959007CE9E50092, F844BCFE16DF84961B88209C3A1D23A120FA6DA1CDF16321D712F82D844251DA ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
21:57:52.0459 0x06f4  Object send P2P result: true
21:57:52.0459 0x06f4  Object required for P2P: [ 60DC4AA07EED9ADE1C20306E7516CEFD ] CLFS
21:57:52.0537 0x09d4  gpsvc - ok
21:57:52.0568 0x09d4  [ C27E32C315891FF4C87ADBC7590F8DA9, CCB27265EADBF196484B54AC643927CBE64610FAFD2FA734850D4CDA7F24691B ] GpuEnergyDrv    C:\WINDOWS\system32\drivers\gpuenergydrv.sys
21:57:52.0568 0x09d4  GpuEnergyDrv - ok
21:57:52.0646 0x09d4  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
21:57:52.0662 0x09d4  gupdate - ok
21:57:52.0678 0x09d4  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
21:57:52.0693 0x09d4  gupdatem - ok
21:57:52.0725 0x09d4  [ C1B577B2169900F4CF7190C39F085794, 73E104B96A48F4C80D8C37254ECB0891D15C0D2F0C251B57C168F90D60316447 ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
21:57:52.0725 0x09d4  gusvc - ok
21:57:52.0787 0x09d4  [ 1CB5E8AA58EE45207109AD07D50BB7D2, D431EC189BD2C80D20BF7F321160E6524B1AC3285E02D377F9DEC2DD66B8ED43 ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
21:57:52.0787 0x09d4  HDAudBus - ok
21:57:52.0818 0x09d4  [ 833941648D37C327BF38B8A2C5CB955B, A213EA83C03FD17D24770AB3D456F6DCDFD8E336EA711722C3DC818990548278 ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
21:57:52.0818 0x09d4  HidBatt - ok
21:57:52.0865 0x09d4  [ 3611C7F77B30C90BDF5C66333EAC9253, 75AD48384D6040AE4B8C6E5D2A2AA15A9DA2060AF915E76008E227CE7F650E01 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
21:57:52.0881 0x09d4  HidBth - ok
21:57:52.0897 0x09d4  [ 2217CA086F9A6EA24D98E5EB06CE0F32, 3142E44EF04F1A646A1123899E17B8206B7508EBBB75599E12E15C4951C91248 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
21:57:52.0897 0x09d4  hidi2c - ok
21:57:52.0912 0x09d4  [ ED909E1BBF334A8A98F7F2B1A9FB7796, 55531604E058A1ABCB20134CCE5AFD9F3ACBEC055CA8D3EB36F77CC6FE5B95BC ] hidinterrupt    C:\WINDOWS\System32\drivers\hidinterrupt.sys
21:57:52.0928 0x09d4  hidinterrupt - ok
21:57:52.0943 0x09d4  [ 0B166BC4B839032BC88A94042E6C5355, 5EE0217BCEE4D85BE2B3C3D53C07FA344DBF6A86A689AF9763826698BB53E5BE ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
21:57:52.0943 0x09d4  HidIr - ok
21:57:53.0006 0x09d4  [ CB8FDF512167635C405462929B869173, 2B09946125699BB6DD1B24C2DB64502C220941252822351D5F83A36E571A843F ] hidserv         C:\WINDOWS\system32\hidserv.dll
21:57:53.0006 0x09d4  hidserv - ok
21:57:53.0021 0x09d4  [ F04A843EEE1CED85726678C00019CEE5, 1FEC747708A2931F905C1A4C9B6F5B8D053B3ED6AD69984FD5E2362F7B54D6C1 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
21:57:53.0037 0x09d4  HidUsb - ok
21:57:53.0068 0x09d4  [ 0F74981B87F07A23660627324893FEDF, 72EAE157642CCE597E6532FE944584A5C192C501E60F92011E5D2AE7C331046C ] hitmanpro37     C:\Windows\system32\drivers\hitmanpro37.sys
21:57:53.0068 0x09d4  hitmanpro37 - ok
21:57:53.0131 0x09d4  [ 6F3AD096BFF288C8B325CB51748D7806, 726D18FEFBC5068C74EA3286E614890D3CFFFEE36C760B4C27C9EAFAD42D7F97 ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
21:57:53.0146 0x09d4  HomeGroupListener - ok
21:57:53.0225 0x09d4  [ 5C3B0AA4F5CB66261CB9C02F3086E870, 318E37B5DAD59EDAC35B60637629ED4A5BEED2E0BD48E58623A8994C0F73C781 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
21:57:53.0303 0x09d4  HomeGroupProvider - ok
21:57:53.0321 0x1050  Object send P2P result: true
21:57:53.0321 0x1050  Object required for P2P: [ 46831BCB51397B026F8ECA5E900F808E ] AppHostSvc
21:57:53.0383 0x09d4  [ 1210960FF8928950D2A786895B0C424A, 22C8785E024CFDD3A43FAEAAA96B8332C37E9B6C765AB7AFBCD3DAA2DC9EFFC7 ] HpqKbFiltr      C:\WINDOWS\System32\drivers\HpqKbFiltr.sys
21:57:53.0383 0x09d4  HpqKbFiltr - ok
21:57:53.0524 0x09d4  [ 7B7DE6B3DC30F3246958F42C67A6F7BB, 4B66B90CFEC2231B905B21DECC4EC7C6500E546F080A452EF67E724EDF37ADD9 ] hpqwmiex        C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
21:57:53.0602 0x09d4  hpqwmiex - ok
21:57:53.0633 0x09d4  [ 916D0E02CE190CEAB13859159B0AC4D3, 0635677B38513E1665E223F04FED1563922FE11D793360B6E0FF6CA6A26DD0BD ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
21:57:53.0649 0x09d4  HpSAMD - ok
21:57:53.0758 0x09d4  [ CB5A8B34FA37AE53053F2D3DF05AC1E6, 2C7357079A66AE609F49900181B013E735B4A01C45DA316CD1E8698F93DE6EA8 ] HPSupportSolutionsFrameworkService C:\Program Files\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
21:57:53.0758 0x2844  Object required for P2P: [ A5AE4F313879B308BAE541D3D45C6F00 ] fhsvc
21:57:53.0758 0x09d4  HPSupportSolutionsFrameworkService - ok
21:57:53.0914 0x09d4  [ 210388FD8225B02BD83D77628AAE64A9, EFB755244CDF8344E14528CF46A6D43C1E8266A307603A63023D8955925FE0C3 ] HsfXAudioService C:\WINDOWS\system32\XAudio32.dll
21:57:53.0961 0x09d4  HsfXAudioService - ok
21:57:54.0071 0x09d4  [ 227C3BA25012752BB7450235392C719F, 95C57347FDCD44D06325778EA2B451A26FF9F2BAB3092244102026E8FF20B03F ] HSF_DPV         C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys
21:57:54.0102 0x09d4  HSF_DPV - ok
21:57:54.0133 0x09d4  [ 4DF5C76302DC2F8F3465966C8426A292, D5A7C1DB3E282A11936EEE75E3ACEF07599962E0EEC5726233B3A741B783550E ] HSXHWAZL        C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
21:57:54.0133 0x09d4  HSXHWAZL - ok
21:57:54.0242 0x09d4  [ 43DFEEF9B81A711631A54443F8F8304F, EF19BB624DC8CE793FF2B9D9625C2EB405CCAF24C66702FC346CEA5A4E06AA1C ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
21:57:54.0289 0x09d4  HTTP - ok
21:57:54.0305 0x09d4  [ 77C4AEA23D5DA47FF163203D6558544D, BFC04A837BE6F36D4BDB8737E505ECD6022AD9CB2CA226A2D1491FAFDE9B9D37 ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
21:57:54.0305 0x09d4  hwpolicy - ok
21:57:54.0352 0x2770  Object send P2P result: true
21:57:54.0352 0x2770  Object required for P2P: [ 2586B2D1AD9013859CFB684A2B85BE19 ] BasicDisplay
21:57:54.0352 0x09d4  [ C7F351B16A3DAF63F3C9D7710F1C7970, 781FDD8AFB123EBA169C6E2E0081DF41CF4195EC6AAFBD86CD50A128F0BD46D1 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
21:57:54.0367 0x09d4  hyperkbd - ok
21:57:54.0399 0x09d4  [ 14DDBB0CBE11A736C089A4F2813A5EDF, A5F5C6D69D99E99CB0CD7677614626F303AF66F874BCC68ADAA59607E7A0829B ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
21:57:54.0399 0x09d4  i8042prt - ok
21:57:54.0414 0x09d4  [ 801117B7AA15AD1C341C3CF371AFF325, 54796FA01ED4C0D9792EAD413908ED39E7084D60BCC6FE053EE25CFA370EBB75 ] iai2c           C:\WINDOWS\System32\drivers\iai2c.sys
21:57:54.0430 0x09d4  iai2c - ok
21:57:54.0446 0x09d4  [ 646D3B416BC970C3CD2F53844FD156A5, 045CBA642382B33DB1E222302B14DD46838895A73CE50426FD180B4CA918253A ] iaioi2c         C:\WINDOWS\System32\drivers\iaioi2c.sys
21:57:54.0446 0x09d4  iaioi2c - ok
21:57:54.0492 0x09d4  [ 8CFFB5797ADA7215993581A5FA51EF16, 4DB5F578C85A4A7B8BCFD399400366138D98A3FF5119135AB520C962B144BCFF ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
21:57:54.0539 0x09d4  iaStorAV - ok
21:57:54.0618 0x09d4  [ 26D396F60FDD0313CD97B4750F4FCC84, 0BB33FA1C1096558142A81CA327F669F44E089C1B96A5B1F5C7A78A1DD43F56F ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
21:57:54.0633 0x09d4  iaStorV - ok
21:57:54.0680 0x09d4  [ CBEBD6D9314AD2047BD23F16509D8E4A, 39BF9450C14FD51FC4DADB7EB7C6422191DC81DE1D653231465D1D5C98050D34 ] icssvc          C:\WINDOWS\System32\tetheringservice.dll
21:57:54.0696 0x09d4  icssvc - ok
21:57:54.0696 0x09d4  IEEtwCollectorService - ok
21:57:54.0805 0x09d4  [ F442AA05290319CDD5E646ED9FCCE768, CC89F9ECDB39909B02B9E4471A3C23FDAF3BEE58DCF0BCB828467AF58FD13CB4 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
21:57:54.0852 0x09d4  IKEEXT - ok
21:57:54.0914 0x09d4  [ A5DC79385A81C24A14904EFD96339121, B53B0A94228BA7DC93D61C2A557D0940FCD69759DDEDAA6D79F58119D08AE8DF ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
21:57:54.0914 0x09d4  intelide - ok
21:57:54.0946 0x09d4  [ 8C2C98E6A17CA85FC2D15E53696D65AB, CBF1E792F7C0E00A06F53EEAAD1A2136217640ADD6E1DCEFD7F562D5D87A25F1 ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
21:57:54.0946 0x09d4  intelpep - ok
21:57:55.0008 0x09d4  [ 0710A97CE4ACBF8307231AB40015B474, B60363F47DD5CB97B4EAC07001988C764C1892F3E5BB55B07AF4EA59050F7934 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
21:57:55.0008 0x2ab4  Object required for P2P: [ 4DD99CA12878C9E782EFA72DB47D4BF8 ] defragsvc
21:57:55.0024 0x09d4  intelppm - ok
21:57:55.0039 0x09d4  [ C30E3C4A9ABA790D65005AC0D0BE6370, 964C0EB94D3E8D6B4264393A4AF066B3412217FE6EF815A13072E9DCE4FDA23D ] IoQos           C:\WINDOWS\system32\drivers\ioqos.sys
21:57:55.0039 0x09d4  IoQos - ok
21:57:55.0117 0x09d4  [ 7A290DFB2FA6DC0F0A9FFBA746AE3DFB, A71174B2ED442FAF31112B1C8D587674EF359D115326140D289EBAD27C0D318D ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:57:55.0117 0x09d4  IpFilterDriver - ok
21:57:55.0274 0x09d4  [ AE14D1AF243846A255D56FB63C4942DD, BB38AD7BA29786437DEFAD9AB23D61EA722E2C9678843B78B4B8EAC6045023A9 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
21:57:55.0358 0x09d4  iphlpsvc - ok
21:57:55.0389 0x09d4  [ B7C0ED2BC3CF918B1A1DE3C1234AC40D, FFDF259F8E82400EAE9E2732F1B02AF47890300271F1A08CCCCC7066B72715F4 ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
21:57:55.0389 0x09d4  IPMIDRV - ok
21:57:55.0405 0x09d4  [ F97C1D68DE39952F880F98CFCE0DAF1A, CC124B8639AF4181DCCA7F2CF1BA452B4788306E9D2BFC5516E50B0EF985A014 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
21:57:55.0421 0x09d4  IPNAT - ok
21:57:55.0483 0x09d4  [ 066F2BBE2EEC9A42B065B552BF356B4E, AE86DB5BFD4748C54C0C224E7FBEA3C032F1071A39303DF35AA04869D3950B7A ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
21:57:55.0514 0x09d4  iPod Service - ok
21:57:55.0561 0x09d4  [ F55E0DB077851C173E0005A2BD98C95D, 309CAAD2A7EEDADAF4AFEB119930018D53643664F2F390E623DEDCBCCA5C95E1 ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
21:57:55.0577 0x09d4  IRENUM - ok
21:57:55.0655 0x09d4  [ BD75A64FE423170B06D81624CC16284C, D6B30A5998AC6E4BCB683F7180BFF16078D3734CB4D61005583D5C17E963CF64 ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
21:57:55.0655 0x09d4  isapnp - ok
21:57:55.0780 0x09d4  [ 41E22053211B29FD4514D3D36EC986EF, 6C515784C95C1AFE988D2F0F8680F2F34F8536822B787BC7F6393AF15A723DD1 ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
21:57:55.0780 0x09d4  iScsiPrt - ok
21:57:55.0858 0x09d4  [ 93B1D122E8CCB431F82E73749ACA77C2, BF98422FB3C1E9CA9045370410E6117F3F9F3B07F9D1E9867B4F4D4265E5B259 ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
21:57:55.0858 0x09d4  kbdclass - ok
21:57:55.0874 0x09d4  [ A906C71E1BF30A194FAE5EACDEFEEC21, 402B483F2F0B24E23E62514BA96D7303A0BA978D983F01D9EC9519E203F389E3 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
21:57:55.0874 0x09d4  kbdhid - ok
21:57:55.0889 0x09d4  [ 545E0110E125943EA66541A4D91290A6, 6F1FA994CEA4C959D9C81CED731D3082388DA155D703D0004FD380F17A439ACD ] kdnic           C:\WINDOWS\System32\drivers\kdnic.sys
21:57:55.0889 0x09d4  kdnic - ok
21:57:55.0968 0x09d4  [ AC27D700DCEE3715249C9815A361B2BB, 81CD19D69A8A2D994EFB166A830C007317FD000262E3F0D7043CD9BB19BE6A5A ] KeyIso          C:\WINDOWS\system32\lsass.exe
21:57:55.0968 0x09d4  KeyIso - ok
21:57:56.0014 0x09d4  [ FD83780B75CF973F81D4222225E6865A, 2B0F9D94339C860BC883B7861AED0631D7925182ADADCE156DE3B3D00CCC2EAA ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
21:57:56.0014 0x09d4  KSecDD - ok
21:57:56.0061 0x09d4  [ 6A813C491F74C68F518E7968CFE1D771, 8302F4D047F0C1D6243C32C5A2A939AC43190885901C3C49CFBFF476578AC8D1 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
21:57:56.0061 0x09d4  KSecPkg - ok
21:57:56.0139 0x09d4  [ 49F4696619533F4D87886A76C8DB1125, FF63439AAB3BA27840CAD266815295100F827E85C41545E12E371D3F98115C85 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
21:57:56.0171 0x09d4  KtmRm - ok
21:57:56.0233 0x06f4  Object send P2P result: true
21:57:56.0280 0x1050  Object send P2P result: true
21:57:56.0296 0x09d4  [ CBDBC3EB8206910DE197EB4CA46A6F50, F1C331179EB727290C497A6C790CC03E280FB93184CFA14E2001983FA1B637B4 ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
21:57:56.0296 0x09d4  LanmanServer - ok
21:57:56.0389 0x09d4  [ 664625E21EB8AD5ED60AA105504EDE3B, 1367EB5377B419BD6D047681A1BDB47F9A5EC41ED210EBFF50FEEB17A42A3FAE ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
21:57:56.0389 0x09d4  LanmanWorkstation - ok
21:57:56.0499 0x09d4  [ 5DB9E3823196DD092C74BB50FC28F9A8, 9C5DC10A7330C88DDA5ABFE297C78AF1F6834F127AC9FEBF6C6D4F63BDA49B87 ] lfsvc           C:\WINDOWS\System32\lfsvc.dll
21:57:56.0514 0x09d4  lfsvc - ok
21:57:56.0530 0x09d4  [ 5CEC504F98484A0BD6125E145206E06B, B999F445DE6C6F2455028A1546B0E8D7487EB8DD118F714CE780A0E31212F112 ] LicenseManager  C:\WINDOWS\system32\LicenseManagerSvc.dll
21:57:56.0530 0x09d4  LicenseManager - ok
21:57:56.0624 0x09d4  [ 373B5D08F6C20C98FB2390BC87AE6CFB, 126686951F1FD23D01E7046939AC770C836647FF5BD18A25B21D65EECE42CC3B ] lltdio          C:\WINDOWS\system32\drivers\lltdio.sys
21:57:56.0639 0x09d4  lltdio - ok
21:57:56.0655 0x09d4  [ 17316806A34415FC2A9EE91C31509E3B, 856E4D6E0B444C52BEDCB5346769D44F02E5A0EAAD99781AF091E2D1CCE86B93 ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
21:57:56.0655 0x2844  Object send P2P result: true
21:57:56.0671 0x09d4  lltdsvc - ok
21:57:56.0780 0x09d4  [ E86CB99D42377C34F5E1C92CCF4DB2FC, 3ABC88F859CC08B7BF1A4D6800A489D9A6A4BEA00952D7E9943C4C01E1E359E6 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
21:57:56.0780 0x09d4  lmhosts - ok
21:57:56.0905 0x09d4  [ 611CCF74A32835BD737B37A46E60E98E, 05DAA1FE3004BA2399FDAC350ADCBCE79E2BDBCD48CA751D21A5E2C2E953D267 ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
21:57:56.0905 0x09d4  LSI_SAS - ok
21:57:56.0968 0x09d4  [ 09B3B5C44F4E6C3B088622727559FBDC, 21F8BD13CE1183FE9FEE4E39310DBA74A866EDDEC19D974185DBA3683BDC63A9 ] LSI_SAS2i       C:\WINDOWS\system32\drivers\lsi_sas2i.sys
21:57:56.0968 0x09d4  LSI_SAS2i - ok
21:57:56.0999 0x09d4  [ 497BA2351A7748EAD8C5F78EAB02DF7B, 79F8678D7C3AF227A03B93A31EC4E75549AC7799C883E0E743616C7AC042B9D0 ] LSI_SAS3i       C:\WINDOWS\system32\drivers\lsi_sas3i.sys
21:57:56.0999 0x09d4  LSI_SAS3i - ok
21:57:57.0014 0x09d4  [ E9395CB4168B9D2F3A8E3CF18F2E21C1, B1EAE07495F19B2AE5481111C58B86590B6200E3B022F218B25CF64D5E90DB86 ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
21:57:57.0030 0x09d4  LSI_SSS - ok
21:57:57.0077 0x09d4  [ 6BABB74EC1998BBC32A626BA76B6217C, A91F2B5A13AB597DDCD723BB64CCC550A5F76C655017EF883760FBB500988130 ] LSM             C:\WINDOWS\System32\lsm.dll
21:57:57.0124 0x09d4  LSM - ok
21:57:57.0202 0x09d4  [ 6F3CA54B215222C61CAE35F42048E9C9, 22046C1F728782238004E1C70A13F957B2507B6B452423F6D9437771772F9F1F ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
21:57:57.0218 0x09d4  luafv - ok
21:57:57.0249 0x09d4  [ 2B0BD5E02D32C008083DE099586EC8D8, 8F62539DA44CC555D56E1D76D0173F495BD9D2C8266BCB73CF3DADCF642A8E77 ] MapsBroker      C:\WINDOWS\System32\moshost.dll
21:57:57.0249 0x09d4  MapsBroker - ok
21:57:57.0296 0x09d4  [ 5023F594D5448E16F920157174C61358, A8A188CA4E9995BBFCD419680A43EE8AD1E0C7EE529BEC8E0922581386982C4F ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
21:57:57.0296 0x09d4  MBAMSwissArmy - ok
21:57:57.0360 0x2770  Object send P2P result: true
21:57:57.0360 0x2770  Object required for P2P: [ 2ED165E5B159D7F1102F2645C0C8484C ] BasicRender
21:57:57.0391 0x09d4  [ 7CF1B716372B89568AE4C0FE769F5869, 0D70A7A594BCFBB26D7249C0F4B0AF9EF874F2318B3FDCE44648CC61279594ED ] MDM             C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
21:57:57.0407 0x09d4  MDM - ok
21:57:57.0422 0x09d4  [ 0CEA2D0D3FA284B85ED5B68365114F76, E6FF0EC98FDC3F628438B613C356C237E68686E3B5B17A58A60C16F4B9A2B968 ] mdmxsdk         C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
21:57:57.0422 0x09d4  mdmxsdk - ok
21:57:57.0500 0x09d4  [ 9996A2D4AA02E7EC365CB002623BEDD8, 4278FB6724E418896AA53B4A8899416A1D314DBE79BE54D6F4E3235DAD22B329 ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
21:57:57.0500 0x09d4  megasas - ok
21:57:57.0578 0x09d4  [ EC4C9BD08D216E50C39BBEF14EE288EA, 443C225CDED8FE239BBC1BA43328F411124498B3B4EBB46B090E0177303A3594 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
21:57:57.0610 0x09d4  megasr - ok
21:57:57.0703 0x09d4  [ A0BA354F493A681EA3D1D24ADDBF9188, 3C4E716DF2BA24FE10C030D75BC16457CE7311B0DEA558ACDD72C55E4855E127 ] MessagingService C:\WINDOWS\System32\MessagingService.dll
21:57:57.0703 0x09d4  MessagingService - ok
21:57:57.0860 0x09d4  [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
21:57:57.0875 0x09d4  Microsoft Office Groove Audit Service - ok
21:57:57.0907 0x09d4  [ BC6A2EEA0C9C315F8506E9E52B6DFBA1, 296CAEE7AE96973F7A4679DC8B59D5B0B43CDFB6FFC71645FC6B0DF84EFAA302 ] MMCSS           C:\WINDOWS\system32\drivers\mmcss.sys
21:57:57.0907 0x09d4  MMCSS - ok
21:57:57.0969 0x09d4  [ 8027E8E8C05DDE62E633D2776A58B37F, E3665265284309153AD098135F839A0C88AB4FBD1827D05F1A1E09CBF67CAA22 ] Modem           C:\WINDOWS\system32\drivers\modem.sys
21:57:57.0969 0x09d4  Modem - ok
21:57:57.0985 0x09d4  [ 4991C8029A6C540AE4B3943C36C1E81C, E1E5A50EE17755F1A103DA34ED974999003909C5B772F65A413F48D3519D6E6C ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
21:57:57.0985 0x09d4  monitor - ok
21:57:58.0047 0x09d4  [ AD4F6603C7B6CBFF0734F42137CB2D28, 47CD49BC8DB942AF2811F26F0854750827A20C81771BE59169D27EB23E5703FA ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
21:57:58.0063 0x09d4  mouclass - ok
21:57:58.0078 0x09d4  [ CBC561116A824A781DB5C53D5758E893, F87CDB3CB0E19A95F56A3E18A4C9452CC5C0E2BA121EBDCE527DDECBA1A3CC0A ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
21:57:58.0078 0x09d4  mouhid - ok
21:57:58.0094 0x09d4  [ D3A190AD51B1187F5D408553A59FB587, 206612CEA87C6868A121560853ED85FB5327255B839EFED008D763A5722333FA ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
21:57:58.0094 0x09d4  mountmgr - ok
21:57:58.0172 0x09d4  [ AEE4E9CC59CDEB55B1ECB0E596E796BE, 674F6F38D86D238AFD6223E03A862F8B43DD8499FBC2D4B7A04E510EC5EACF3B ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
21:57:58.0172 0x09d4  MozillaMaintenance - ok
21:57:58.0266 0x09d4  [ F112DA773EC3E9D3CDE9221ED300E033, 693C416B281DA3489C096812D0E4E0413C05798D36AF534624C3B29551CE68A4 ] MpFilter        C:\WINDOWS\system32\DRIVERS\MpFilter.sys
21:57:58.0282 0x09d4  MpFilter - ok
21:57:58.0485 0x09d4  [ BB7BB66A8DAF16950F83AE7BF498AF8F, A96FC3BE055C52B98E7ECDF68D69081620F829B04B5496C73D87F271E40EA638 ] MpKsl7b989224   c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{681763A5-CCFF-483E-AA32-3C9DB2B85A2D}\MpKsl7b989224.sys
21:57:58.0485 0x09d4  MpKsl7b989224 - ok
21:57:58.0547 0x09d4  [ 4037CA096170510A51982DE2E7DE416C, 9DA13D9976B2DF57E56F599D261ED95CFB5469CBA38922BEF45BAF5322F42C72 ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
21:57:58.0547 0x09d4  mpsdrv - ok
21:57:58.0688 0x09d4  [ E31AEFB5A9E257043A974320115A5F59, 48D7DF0340F455EDEB306B63348E2B5E1AA3637946E01A7AACF08C80575FE41A ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
21:57:58.0750 0x09d4  MpsSvc - ok
21:57:58.0813 0x09d4  [ 535AB6879744310AF30A047E92920883, 84EF1DDE5A31B44E304D18906807107C6EB38405C006499DA483A825415B66E7 ] MQAC            C:\WINDOWS\system32\drivers\mqac.sys
21:57:58.0828 0x09d4  MQAC - ok
21:57:58.0891 0x09d4  [ AF49C73CF934E5E2CCAC0A304A6AF4FE, 6FBED9FBA1307DA3912C4BEE351F92415F318D22630895B2E270BEEE4D2B5D05 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
21:57:58.0891 0x09d4  MRxDAV - ok
21:57:58.0922 0x06f4  Object required for P2P: [ 801117B7AA15AD1C341C3CF371AFF325 ] iai2c
21:57:58.0985 0x09d4  [ 95848668B7DB1638D83391CE56E2B517, FFB62B4F331275E6811F418050626F0951E80D873DF1B40C2F9C893C0E4B3762 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:57:58.0985 0x09d4  mrxsmb - ok
21:57:59.0016 0x09d4  [ 6E0C3BD2490F4D487D73E50ACFE730A6, AC83E5EA39A948494236BDA3EB3DE3AB548D5BF4FA8C6B8F1E2D7B66ED99E203 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
21:57:59.0016 0x09d4  mrxsmb10 - ok
21:57:59.0032 0x09d4  [ 56DBA6170A515AA35B70ED15940BC7AF, 78897F8F661A2A4C014B187BC69F70BEE157A9359F56B9F161D42AF2F263D222 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
21:57:59.0032 0x09d4  mrxsmb20 - ok
21:57:59.0078 0x09d4  [ 612D4893590120C7A6D90CE68FF6B82B, 201A56DDAB8D05B1046BBFF35EB4A5620813774C21409D66929683139112A0C1 ] MsBridge        C:\WINDOWS\system32\drivers\bridge.sys
21:57:59.0094 0x09d4  MsBridge - ok
21:57:59.0141 0x09d4  [ 91FA34D09924BF87407C790CFBC3EEB5, 2FD543826A16D7BA9A3FBB290D9D61A813BD9BC702705E7FC509CC41B6FC0F12 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
21:57:59.0157 0x09d4  MSDTC - ok
21:57:59.0172 0x09d4  [ D7094E04F8F5F84F1C2D0651594EC47C, F6F9181963C665BABB6DF204963D820D51DDB3DCEEA7F54A61E90979104491E6 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
21:57:59.0172 0x09d4  Msfs - ok
21:57:59.0188 0x09d4  [ 2067E7F5063160AC11C1914FA7E8FDDD, 7CD22C6D9536D3B44DE7EBD1EAC73BA75876C6FB43726DFCBA2F163AA68FD722 ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
21:57:59.0203 0x09d4  msgpiowin32 - ok
21:57:59.0219 0x09d4  [ 1E0CB295ABF08EB6DC9AA8CF6D33E001, 8C9DFBBA0FCBBFFD28475ED921C43AEA65B9BAB72BBF884D27E9348118A7E651 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
21:57:59.0219 0x09d4  mshidkmdf - ok
21:57:59.0235 0x09d4  [ C81FED291A9F425184CC72F1AED64F7E, 2D47B6DE5AA4F603F128D1DEC4CCD9F32752099A146D6C692F0CB58F94E84ED1 ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
21:57:59.0235 0x09d4  mshidumdf - ok
21:57:59.0266 0x09d4  [ 5295CE68F72A22D12FC1505B84640C2F, FC307C1A4FABB5EE97BBD56F37AD88A362FB9F620B602C875ACDFDF3AE55F8CE ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
21:57:59.0266 0x09d4  msisadrv - ok
21:57:59.0329 0x09d4  [ F223080ED94DFBB6A4044A640F55157F, 672806C976C429B152F46A15F8D0888834EAE20A79C13D3BA20AC7D9C30D39B3 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
21:57:59.0329 0x09d4  MSiSCSI - ok
21:57:59.0345 0x09d4  msiserver - ok
21:57:59.0423 0x09d4  [ A4C341573EFA765B3A7874C7D3D92D46, 687779C51CCB4DCE44E88B021EC85BE5B54F1F956A4882D8D4389B63877C1304 ] MSKSSRV         C:\WINDOWS\system32\DRIVERS\MSKSSRV.sys
21:57:59.0423 0x09d4  MSKSSRV - ok
21:57:59.0454 0x09d4  [ ACEB854E7D89E88EA94ED9F7FAB11FE0, 9309408E7FA52ED6F809032D651B2B7724AAA59548496684687306D073519D61 ] MsLldp          C:\WINDOWS\system32\drivers\mslldp.sys
21:57:59.0454 0x09d4  MsLldp - ok
21:57:59.0501 0x09d4  [ CC09BB7FDEFC5763CCB3CF7DAE2D76CF, F8F00900EDBA2F64BF136DD0B6C83CAF07C72F24F3D49C78B7EA24757FDBC6D0 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
21:57:59.0501 0x09d4  MsMpSvc - ok
21:57:59.0563 0x09d4  [ 74B99BB1420921413073E9CC41D65613, 5CA69CB370A63286ABCE3BAE4F8B0AE6498DEE4655E15CF688EF995FE4A99460 ] MSMQ            C:\WINDOWS\system32\mqsvc.exe
21:57:59.0579 0x09d4  MSMQ - ok
21:57:59.0595 0x09d4  [ A6D1472D89F3FA6A9E2C6EE43F020ED2, 5E39667A72759266A5E9A78E780D5B53432D55453CE5948A4E17B5E002D75656 ] MSPCLOCK        C:\WINDOWS\system32\DRIVERS\MSPCLOCK.sys
21:57:59.0595 0x09d4  MSPCLOCK - ok
21:57:59.0642 0x09d4  [ 5BA5EBA2F1452E525267AB0F523EC7E2, 66D4767170DF7D1167F92B13956781622F96D44C48EAD50A6F62AC8BBF26D818 ] MSPQM           C:\WINDOWS\system32\DRIVERS\MSPQM.sys
21:57:59.0642 0x09d4  MSPQM - ok
21:57:59.0751 0x09d4  [ 5A7335C9C55283F5FCF21053FB5A759B, D03BF0D2C520302CF5F89A97F139158572012DCA5ED01D852AAAF0650A06872C ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
21:57:59.0782 0x09d4  MsRPC - ok
21:57:59.0829 0x09d4  [ EF107B9BDA0C241EB45C970C840A6575, 12D557AB655B0190C290950009507430621701A566E257AB4E428A58B014FE03 ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
21:57:59.0829 0x09d4  mssmbios - ok
21:57:59.0907 0x09d4  [ 07CA316EE395669E5561EF81C0986B9F, BDA73D423F8EB70BD8B456220D9B92C49B8AE065E85B9D1C100DB96DC2958A89 ] MSTEE           C:\WINDOWS\system32\DRIVERS\MSTEE.sys
21:57:59.0907 0x09d4  MSTEE - ok
21:57:59.0938 0x09d4  [ B810626D319D4B5E4BD9BF85FD813A88, F0FDBCA42B8860CE0F00BD594C1B519619C9B7F44B0C74F80C576382551AB78F ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
21:57:59.0938 0x09d4  MTConfig - ok
21:57:59.0938 0x09d4  [ C09931CF6195E58D726466AB40609DBD, ED0C8BDC5D7698E70803CB46A6334208998544157AD3C8075E4972192C028C3A ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
21:57:59.0954 0x09d4  Mup - ok
21:58:00.0001 0x09d4  [ 269D818745A242640355702646A74B99, 48F01F96C5AE295B032F1BE5DC8D21748CE020508CF0323F37FD2AD625097141 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
21:58:00.0017 0x09d4  mvumis - ok
21:58:00.0063 0x09d4  [ C9FEEC602942731C463FAC58117F018A, B27AFAF50AFB357B603CA5E61D540E64F9557B0F47A321052FC04E2799B32DAC ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
21:58:00.0079 0x09d4  NativeWifiP - ok
21:58:00.0157 0x09d4  [ A6807B464D7B36156E4DDFAAC92935D2, 01FFE1AFE1FA29C713EEC5C0251B8923F0851AF9C9333F89ECACF57ABF983702 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
21:58:00.0157 0x09d4  NcaSvc - ok
21:58:00.0173 0x09d4  [ 3488A1306FD96743DC638CA07F6C466F, EA8685CABB875500D534EEA82767848E6D555491E495A734EA5B332B95EF600A ] NcbService      C:\WINDOWS\System32\ncbservice.dll
21:58:00.0188 0x09d4  NcbService - ok
21:58:00.0204 0x09d4  [ 470A1322F39A089FF4CE11E60C309EDA, EE7328F3179DC5306F66435B80D6B998C4DC370069CAB210C3715E45B78B2DA7 ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
21:58:00.0220 0x09d4  NcdAutoSetup - ok
21:58:00.0267 0x09d4  [ 471CF5F6D7C5FDC912F52DF52C8C1E71, 46AA75F229E93A5361CB3E3BE771C384B1885903B446991FB6FC14191B2F1959 ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
21:58:00.0313 0x09d4  NDIS - ok
21:58:00.0329 0x09d4  [ 5E4E278F613D345E11DC961D2399FEA4, 87DBFCD994000AB7102113409AA7566C30988A4F1096B197DB60AA4BC46095DC ] NdisCap         C:\WINDOWS\system32\drivers\ndiscap.sys
21:58:00.0329 0x09d4  NdisCap - ok
21:58:00.0345 0x2770  Object send P2P result: true
21:58:00.0392 0x09d4  [ 66EAF91097BC2A8B7EC8DFD4C75E0453, B642774346D8733BBCE50A1542643594745AD2503E34AB9AFCBDB52148F3F7FF ] NdisImPlatform  C:\WINDOWS\system32\drivers\NdisImPlatform.sys
21:58:00.0392 0x09d4  NdisImPlatform - ok
21:58:00.0423 0x09d4  [ DD421C7B39693EF60C4793D535B50E41, 9196CFC949DD9A5C1568A6FA9D9E58171D6F3F03C13CD231CD6FC0037E71A47B ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:58:00.0423 0x09d4  NdisTapi - ok
21:58:00.0470 0x09d4  [ A8DDCFF13A50B872D04731AE369A72B7, 1C5B8CDFC8499B97CDB65D5EE9906B8F6865899521FF3BB96FBDBF7E07FBABF0 ] Ndisuio         C:\WINDOWS\system32\drivers\ndisuio.sys
21:58:00.0470 0x09d4  Ndisuio - ok
21:58:00.0470 0x09d4  [ D3285C154415EA9C4B5FBCB7063E436C, 16B72073107C61E14FAA99444E19709CBCFE4F91CF1FDE43CE68FDD37FE29848 ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
21:58:00.0470 0x09d4  NdisVirtualBus - ok
21:58:00.0548 0x09d4  [ 0174FE40EA6219317FA6B5F846B7C29A, 56953C52FB20E366403D89EC7E0C6F1473969C217E32E1D723BD12DC8A2F676B ] NdisWan         C:\WINDOWS\System32\drivers\ndiswan.sys
21:58:00.0563 0x09d4  NdisWan - ok
21:58:00.0595 0x09d4  [ 0174FE40EA6219317FA6B5F846B7C29A, 56953C52FB20E366403D89EC7E0C6F1473969C217E32E1D723BD12DC8A2F676B ] ndiswanlegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:58:00.0595 0x09d4  ndiswanlegacy - ok
21:58:00.0673 0x09d4  [ 9CCEA21891D79F180F00E07806CF93AB, 22C9A801845319C97924849C3C3C03C09D276C9D3C04FBFE2DEDB1CF92E9AECF ] ndproxy         C:\WINDOWS\system32\DRIVERS\NDProxy.sys
21:58:00.0688 0x09d4  ndproxy - ok
21:58:00.0720 0x09d4  [ B2BE5E04514EBFE842AD07A5B80327CD, E2485F8E0505F083734F0505B1F7540ED63DCC222228DCA9D6CA22698BB82E7D ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
21:58:00.0720 0x09d4  Ndu - ok
21:58:00.0735 0x09d4  [ 15F48CB9C97B69EB901A3E0EBB496167, 305D6C95ED0836E200EEC326A2A2D7915545F75A423394A7DFC93A0477C64D60 ] NetBIOS         C:\WINDOWS\system32\drivers\netbios.sys
21:58:00.0735 0x09d4  NetBIOS - ok
21:58:00.0751 0x09d4  [ 1CA44BC32773FCB9FE4ADAA077AB642E, C4F0F3D749C798C63EFC8AD2FCAE2B0FDD3E5FBB8B7C89710C390A9610869405 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
21:58:00.0767 0x09d4  NetBT - ok
21:58:00.0782 0x09d4  [ AC27D700DCEE3715249C9815A361B2BB, 81CD19D69A8A2D994EFB166A830C007317FD000262E3F0D7043CD9BB19BE6A5A ] Netlogon        C:\WINDOWS\system32\lsass.exe
21:58:00.0782 0x09d4  Netlogon - ok
21:58:00.0845 0x2ab4  Object send P2P result: true
21:58:00.0845 0x2ab4  Object required for P2P: [ F46B5B494AE3DE0D3120EEC9E166CB1E ] DeviceAssociationService
21:58:00.0845 0x09d4  [ B14E3E38986965A586998E8236785D6D, C3D5EFC08AB0BC5DF8628F3646F8F1F8D64535DE3581F95E4C9383985B50A7D0 ] Netman          C:\WINDOWS\System32\netman.dll
21:58:00.0860 0x09d4  Netman - ok
21:58:00.0985 0x09d4  [ 9E9BEB22644CE1DA521A1D7821BF891F, 5480D52AE1942205B513F916DBCBF5B5F2FFF92D927F4E598FBA618E75BBC2E9 ] NetMsmqActivator C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:58:01.0032 0x09d4  NetMsmqActivator - ok
21:58:01.0063 0x09d4  [ 9E9BEB22644CE1DA521A1D7821BF891F, 5480D52AE1942205B513F916DBCBF5B5F2FFF92D927F4E598FBA618E75BBC2E9 ] NetPipeActivator C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:58:01.0063 0x09d4  NetPipeActivator - ok
21:58:01.0126 0x09d4  [ 59AD5BF8D86257472313941748164F94, 5F31A835953CB05A46086CAEFA9F8CA56A4596D87B794FF6F32F8D691ECD45F3 ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
21:58:01.0142 0x09d4  netprofm - ok
21:58:01.0220 0x09d4  [ 98FC1BFA170AEA4E08814CCE8A00A26D, 1461FC0DBE7659E25B58743F3C36DCE113579A4B6E11CAECC4AD11EA848397E8 ] NetSetupSvc     C:\WINDOWS\System32\NetSetupSvc.dll
21:58:01.0235 0x09d4  NetSetupSvc - ok
21:58:01.0251 0x09d4  [ 9E9BEB22644CE1DA521A1D7821BF891F, 5480D52AE1942205B513F916DBCBF5B5F2FFF92D927F4E598FBA618E75BBC2E9 ] NetTcpActivator C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:58:01.0267 0x09d4  NetTcpActivator - ok
21:58:01.0267 0x09d4  [ 9E9BEB22644CE1DA521A1D7821BF891F, 5480D52AE1942205B513F916DBCBF5B5F2FFF92D927F4E598FBA618E75BBC2E9 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
21:58:01.0282 0x09d4  NetTcpPortSharing - ok
21:58:01.0376 0x09d4  [ 8B27F3D72DCDEED66E2FD0952E2E0CFC, B8FE6691E4B7404D8DCD38E59CEB0932043897DF1D23D2C11FAAE5EF112ECCD3 ] NgcCtnrSvc      C:\WINDOWS\System32\NgcCtnrSvc.dll
21:58:01.0392 0x09d4  NgcCtnrSvc - ok
21:58:01.0423 0x09d4  [ 091E970EBA5426A701B7AB5B1C3C5E4D, AEBD30A0643ACA1E7E2A35C26EDAE1C054C8543D345A00F6D86288A120987089 ] NgcSvc          C:\WINDOWS\system32\ngcsvc.dll
21:58:01.0439 0x09d4  NgcSvc - ok
21:58:01.0517 0x09d4  [ 780FF28BCD8470C5FDDEEF69982AA295, 1ED386E87E0AA733F23D554D2BF4EF4168DB9A419B7BA0BA8FBA20F118BE21DF ] NisDrv          C:\WINDOWS\system32\DRIVERS\NisDrvWFP.sys
21:58:01.0533 0x09d4  NisDrv - ok
21:58:01.0642 0x09d4  [ 3FF257F54649D4F19E39263C5D581CD1, 1F201EEE770A452AA30C6270AAA456A77F9F3A102F473E12C22D3B8809932C1B ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
21:58:01.0658 0x09d4  NisSrv - ok
21:58:01.0720 0x09d4  [ 318268162EB9646F7F30B441273F143B, 76958F4D21C84305F8E691F5BBCC7C347A5C53139A1DB9239770B1CC807EBA39 ] NitroDriverReadSpool C:\Program Files\Nitro PDF\Professional\NitroPDFDriverService.exe
21:58:01.0720 0x09d4  NitroDriverReadSpool - ok
21:58:01.0783 0x09d4  [ 1B755030521ABBC61672D762ED68595A, 8ACAF2FFC456D146148645224A34646C2C4325910DC5E2B6D94128FCBFB721EC ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
21:58:01.0798 0x09d4  NlaSvc - ok
21:58:01.0814 0x09d4  [ 23688F610A5A16DD8B4D93D2F7BD44F6, C84BB6FAB61C643D57DE9A1593476E35694B17F3074B26358159439E2E5860F2 ] nlsX86cc        C:\Windows\system32\NLSSRV32.EXE
21:58:01.0829 0x09d4  nlsX86cc - ok
21:58:01.0892 0x09d4  [ AE369CFADC557F15AAA45A96FC6F5DF6, FCCEF624B5B88AFD36DB93343EEBC60AEBD9B7215241D7E7DB43724EEA38021A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
21:58:01.0892 0x09d4  Npfs - ok
21:58:01.0954 0x09d4  [ 06368C63820FBCF1DD9E87757A6C92DD, C3915F69E12F73B2C9D727DE4C27E74828C7B3710C740A0A417EEBAB66D13D2B ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
21:58:01.0954 0x06f4  Object send P2P result: true
21:58:01.0954 0x09d4  npsvctrig - ok
21:58:01.0986 0x09d4  [ 0EFE36BE7E0AE8E43972BCE5C037845F, E25157BF6D0FCED42E9A0C0EAA3CFFB2C45FBFF640C9EA8D03AD24F1903BA3C2 ] nsi             C:\WINDOWS\system32\nsisvc.dll
21:58:02.0001 0x09d4  nsi - ok
21:58:02.0001 0x09d4  [ 88D14F6047B6E276C55FA3F85F770D2A, CF8AAFED7F02AEBA48805465B6C0655B9811D30B791B774AD8C18F50A71F09A8 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
21:58:02.0001 0x09d4  nsiproxy - ok
21:58:02.0158 0x09d4  [ 67CC605D5DDF5D9DC8BF5FBED1FF89B7, 3277141B2939A3D1F4D302753C4BA4112B07DDF9276C58F05A9667E1A433BB73 ] NTFS            C:\WINDOWS\system32\drivers\NTFS.sys
21:58:02.0267 0x09d4  NTFS - ok
21:58:02.0298 0x09d4  [ DFD914F2033F8A69D3DA357DEF474C31, 26320A842FE8F6F0A2F8D17E225654A63D9FFA6DF28A143628D9A08F320CDC62 ] Null            C:\WINDOWS\system32\drivers\Null.sys
21:58:02.0298 0x09d4  Null - ok
21:58:02.0361 0x09d4  [ 430427F0B5DC94706956478582F2A247, 7A5109E5FCB3A3B0ADF0A2D345673492B11CCC6D0031699AEEA98582C2C65B3B ] NVHDA           C:\WINDOWS\system32\drivers\nvhda32v.sys
21:58:02.0376 0x09d4  NVHDA - ok
21:58:02.0892 0x09d4  [ 6312C3E4BB203A9E952A11B8F074B917, 84346067CA1AD75D5A6BC2127D853BE2185330CF46F9EFB33804B15E41D987C9 ] nvlddmkm        C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
21:58:03.0361 0x09d4  nvlddmkm - ok
21:58:03.0533 0x09d4  [ 2CCD9A74A0F9C7605EAFA3F3AC8DC476, DEE95B0C0CA4525850E06AD3C1233A6C6E88D97EE874F83801686B87FD23F0BC ] NvNetworkService C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
21:58:03.0673 0x09d4  NvNetworkService - ok
21:58:03.0720 0x09d4  [ F3A3A757559C735001AC71A191577E8B, 7977C2439B9A53B0A71907B29BC3238F8D8E2974B4B9E0A65DE3AC1BB5772AA0 ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
21:58:03.0720 0x09d4  nvraid - ok
21:58:03.0751 0x09d4  [ 4EACAB016B1239921387500173BFAE41, A1D2261B7501A1B0E169615A0F1F8EC50845EAD6E59BFD115E38C3D363892BA0 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
21:58:03.0751 0x09d4  nvstor - ok
21:58:03.0830 0x2ab4  Object send P2P result: true
21:58:03.0830 0x2ab4  Object required for P2P: [ F8CE95063897444AC54E83D8414EFEBE ] DeviceInstall
21:58:03.0830 0x09d4  [ 639ACDF6BB612E3EC5D6D25C69C77BCB, 360FBF601566B31382B61A52DAB051DA8D96374E1397D79472B1512A8CEB1EB7 ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
21:58:03.0830 0x09d4  NvStreamKms - ok
21:58:04.0142 0x09d4  [ 6E035CE4623634F9ACC015F0CC895547, 8FCF0B671F28585D02E5484885E6852FC05C5EAC6E863E5B588894506A7446E4 ] NvStreamNetworkSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
21:58:04.0470 0x09d4  NvStreamNetworkSvc - ok
21:58:04.0751 0x09d4  [ C196DA57E838EA68BD65BDAADCCBD4F2, C3B8B9EAB728CF7F2DED04857B2C70B1811D7956FA80B31484E19187919EFBB6 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
21:58:04.0986 0x09d4  NvStreamSvc - ok
21:58:05.0080 0x09d4  [ 7137488F35BAE86CA8F8B71E054814F8, 5530DB925BC9B37A50A060883A931F3B4162D755329C057CB01A811C60B5C223 ] nvsvc           C:\WINDOWS\system32\nvvsvc.exe
21:58:05.0126 0x09d4  nvsvc - ok
21:58:05.0205 0x09d4  [ 813B806949EE12980BA93771637D0315, BE30739FE6A64551D2E26A6352680DEF7AB499B4A076E18A7EBAB43D3A9C1B0E ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
21:58:05.0330 0x09d4  nvUpdatusService - ok
21:58:05.0392 0x09d4  [ C2A9985C97DF5946AEAE7C001625410C, A0B00BFB2B6E5F19E8DBFAB74C65B9590659909168D7CB559037C5E64C44F3D0 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad32v.sys
21:58:05.0392 0x09d4  nvvad_WaveExtensible - ok
21:58:05.0455 0x09d4  [ AB6FBB9E2ADEF7664479205C5A8B4549, 3E4B58631135B59C4C0A380B6B42C2DBC9480191B6FCB5D5E7377EF22D872AB7 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
21:58:05.0470 0x09d4  nv_agp - ok
21:58:05.0533 0x09d4  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:58:05.0564 0x09d4  odserv - ok
21:58:05.0689 0x09d4  [ 50DAD4774843C2E1BD861D7A0A15AD44, 3A1B1C122AB6039A19E3712C949DD70032627FEF7E78747325F0284C93A2A8B8 ] OneSyncSvc      C:\WINDOWS\System32\APHostService.dll
21:58:05.0736 0x09d4  OneSyncSvc - ok
21:58:05.0876 0x09d4  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:58:05.0892 0x09d4  ose - ok
21:58:05.0955 0x09d4  [ A4BEB92A407D0D8C019248AFBEEEF79D, CA87B21B14D5F6D3B8086FFC86E1C8E444EA45244C1EC59465C5BDBFADBC5709 ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
21:58:05.0970 0x09d4  p2pimsvc - ok
21:58:06.0064 0x09d4  [ 4CD729415F7A6395604E1545A07241F1, BCB754DC841D00F41181D26F25417736E4479A62A4A26C208623251F17E3FBEC ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
21:58:06.0095 0x09d4  p2psvc - ok
21:58:06.0158 0x09d4  [ B69B323395ABC1303EB9F69E9B8460F8, 54497F3C37DC5E6BFAC34B87A3F53D5F76B7B734F290CB8831B35B8C0BBB24EA ] Parport         C:\WINDOWS\System32\drivers\parport.sys
21:58:06.0173 0x09d4  Parport - ok
21:58:06.0173 0x09d4  [ EE23562B266542D49DF7A8648A2794B1, 3358449601E8931184C677CEDF2D95F57568C46CE709E89A097F35BAAC83FE7E ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
21:58:06.0189 0x09d4  partmgr - ok
21:58:06.0205 0x09d4  [ B5F6CE391E5510F45F74061A9B5A5B06, A7B2481AFB30D3EBA1B2E4091D4DF27E3F28052A6B61EF93E38DEB07CAE8552A ] Parvdm          C:\WINDOWS\System32\drivers\parvdm.sys
21:58:06.0205 0x09d4  Parvdm - ok
21:58:06.0220 0x09d4  [ 8D799FCBD568989BC2639F01FA05D312, 011F47B26D58BF4C3986E75B5651BB67213BE24D04AE0B0AF5ECFA925D5810CE ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
21:58:06.0236 0x09d4  PcaSvc - ok
21:58:06.0251 0x09d4  [ E77F502CCE1105AD4F46B46EB60C561B, CE349B148A14204FBEB6488E84C6593B82F236BE79E23033298B18F2807AB683 ] pci             C:\WINDOWS\system32\drivers\pci.sys
21:58:06.0267 0x09d4  pci - ok
21:58:06.0267 0x09d4  [ ECEC3D77767962C04D7F97B91455DDA0, A5FBB840B9910258A8ECDC88D118A9595D786C9C27F7E710528A78222C81C1BE ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
21:58:06.0283 0x09d4  pciide - ok
21:58:06.0298 0x09d4  [ BC67657EE279C7AA2335CC678770367C, 33A56E4FCF378D496730399C96FC717B32BFE8E3BD48EFEDE3B769E322DBE330 ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
21:58:06.0298 0x09d4  pcmcia - ok
21:58:06.0314 0x09d4  [ 92E594462D997A2A9E3AAB6B21D9C580, 927242B06B2AB2D3C9E6FC5973CCD2EA6AE94364FFC867C8C446E305403188D0 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
21:58:06.0314 0x09d4  pcw - ok
21:58:06.0330 0x09d4  [ C887431C908C12BFA1746801E684A58D, DFCAA835B97015ADC1787ADF2E06A58B8E75D926BF61D115718B0446EC20F085 ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
21:58:06.0330 0x09d4  pdc - ok
21:58:06.0408 0x09d4  [ E31B9C22C1B7F245ADA4CF9DB12FBCB7, 94A2C0EC2E3777818E6BF6354BD6104CB700CF29A844248342EBEC1B9903BD9C ] PEAuth          C:\WINDOWS\system32\drivers\peauth.sys
21:58:06.0455 0x09d4  PEAuth - ok
21:58:06.0595 0x09d4  [ D3E28D33C0FE1494F87820E992B0A7B4, A974BE23C0E49B68211790EFC7EFB88E6F6E69930424AE977E7F65FD0BAF699E ] PeerDistSvc     C:\WINDOWS\system32\peerdistsvc.dll
21:58:06.0689 0x09d4  PeerDistSvc - ok
21:58:06.0736 0x09d4  [ 8763C09E1C0DC49D6C96E12364387B89, FCEFF945FEBB460357FBE4448FFE7BB839D89FE57BE92C42F56EF1CE71D9BDCD ] percsas2i       C:\WINDOWS\system32\drivers\percsas2i.sys
21:58:06.0736 0x09d4  percsas2i - ok
21:58:06.0751 0x09d4  [ 70BE20D700E853153AAEF254B56B8EB3, 04B13FABECADFAE348DB7BE1ED3CD7330A8BCE0CD43AB84A3EA8B66F00DE798D ] percsas3i       C:\WINDOWS\system32\drivers\percsas3i.sys
21:58:06.0751 0x09d4  percsas3i - ok
21:58:06.0783 0x2ab4  Object send P2P result: true
21:58:06.0783 0x2ab4  Object required for P2P: [ 666C38366AABA2CB29F8EB2268A9682E ] DevQueryBroker
21:58:06.0798 0x09d4  [ 9B04C3C223DD5F6E4BA19470C39097E4, E6EFB13344024B6547078F905AAE54E3610FBDC26A0641C3844A23C9E4C1CFC5 ] PhoneSvc        C:\WINDOWS\System32\PhoneService.dll
21:58:06.0830 0x09d4  PhoneSvc - ok
21:58:06.0892 0x09d4  [ F66050B29E553AAB339F002F5FA11EB6, 4C6F44540CB67798CE3185ED160288AF11A65A27FBE2B4CDDD236DC18E198289 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
21:58:06.0908 0x09d4  PimIndexMaintenanceSvc - ok
21:58:06.0986 0x09d4  [ E3CA6F4ADE51C84515E54914E65E4273, 6F3FF1CDF98A61548EBD06856AD0C4489C3F4186271C183E170B0C11F9364435 ] pla             C:\WINDOWS\system32\pla.dll
21:58:07.0033 0x09d4  pla - ok
21:58:07.0142 0x09d4  [ F8CE95063897444AC54E83D8414EFEBE, 3A4174B4B474BAFDDF84511C83861D2B2620C5E049C9FAA3E3A6037F7F254C64 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
21:58:07.0158 0x09d4  PlugPlay - ok
21:58:07.0173 0x09d4  Object required for P2P: [ F8CE95063897444AC54E83D8414EFEBE ] PlugPlay
21:58:09.0821 0x2ab4  Object send P2P result: true
21:58:10.0165 0x09d4  Object send P2P result: true
21:58:10.0321 0x09d4  [ C05C0788D72D1A90DEE3F627DAC524C4, EACE9D78D4B13CEBE53513F7EB343E2707E63C1870CF45591D849737A516894C ] PMBDeviceInfoProvider C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
21:58:10.0368 0x09d4  PMBDeviceInfoProvider - ok
21:58:10.0462 0x09d4  [ FAA70D79F0592A078F2D5F935D344A3A, 693C0C02A405A238924B493603924E2A1D5384D160E15E71FD12ABC9AED74F76 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
21:58:10.0462 0x09d4  PNRPAutoReg - ok
21:58:10.0571 0x09d4  [ A4BEB92A407D0D8C019248AFBEEEF79D, CA87B21B14D5F6D3B8086FFC86E1C8E444EA45244C1EC59465C5BDBFADBC5709 ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
21:58:10.0571 0x09d4  PNRPsvc - ok
21:58:10.0743 0x09d4  [ 0AB5A24C47A6DAE3E51748BD91609856, E594C1860AB89B4EC8FC6FEC900CF161FD23A6E4835C84C598057024191500F8 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
21:58:10.0758 0x09d4  PolicyAgent - ok
21:58:10.0821 0x09d4  [ ADE9728231FF3568D9D846E0AAA63AB9, 32B818B3A20ED106A1417FC1A09C67932CA368E46919B7568E52735D5FB9CBED ] Power           C:\WINDOWS\system32\umpo.dll
21:58:10.0837 0x09d4  Power - ok
21:58:10.0930 0x09d4  [ 32F7EA4FED6D588CB95F3939EF93C47F, A5966CB8D53121BD9CCC28FCE457D8E8F19FA3939E2D139E27FC60F228061B6E ] PptpMiniport    C:\WINDOWS\System32\drivers\raspptp.sys
21:58:10.0930 0x09d4  PptpMiniport - ok
21:58:11.0196 0x09d4  [ 42DE22BB4E675AE8DADD9038B26F8EFE, 943B0D037544F2567F04F779549B82048B6885D791FADFAAF43DB2CA91804AA3 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\W32X86\3\PrintConfig.dll
21:58:11.0368 0x09d4  PrintNotify - ok
21:58:11.0415 0x09d4  [ 6D595CD068691AFC59E7ED3B760CE12E, 8483F90212C4A7B0A3DD662D691347C8D8C0D10243CDD23CC4DC3724A9BD32E7 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
21:58:11.0430 0x09d4  Processor - ok
21:58:11.0493 0x09d4  [ F1E4D06B51A110D0106286FF7F094359, B557F289A957C6C6364F8A6EBF4C553F87386546E9A7975484701CBDEB41BC9D ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
21:58:11.0508 0x09d4  ProfSvc - ok
21:58:11.0571 0x09d4  [ ED52651C95D36C639A88DC639AD46A8B, BF880F5568D67787A4C8D8A164D5B9545290BF3EF893B29045C23650AC51A05C ] Psched          C:\WINDOWS\system32\drivers\pacer.sys
21:58:11.0571 0x09d4  Psched - ok
21:58:11.0649 0x09d4  [ 0CBE5AA15BAAEB6FF579868854744F22, 70481141E7D64A19417D2B08053D1B770711B3356582C46BBD3BD512264D9E22 ] QWAVE           C:\WINDOWS\system32\qwave.dll
21:58:11.0649 0x09d4  QWAVE - ok
21:58:11.0712 0x09d4  [ 07B60F91EDFA2519AF0701F1CD6EFE16, 1A8BC7D82A0B85DEA914FE23BC59C48101BC9CC0572CDD6A2F220B6915969DD4 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
21:58:11.0712 0x09d4  QWAVEdrv - ok
21:58:11.0758 0x09d4  [ 5C4EEC621C8ECFAA03EEEF93DE03C595, FDA1D4EE654F19DBD9811CE570FFE1478724AFD85A24EC0EBB3E52E396768975 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:58:11.0758 0x09d4  RasAcd - ok
21:58:11.0790 0x2e28  Object required for P2P: [ 664625E21EB8AD5ED60AA105504EDE3B ] LanmanWorkstation
21:58:11.0821 0x09d4  [ FB5AC6F46F4F7F877358442866A16D29, C5AE9A7102EEB4175DF6B48A4A9989AF7DECE61FB1F2AF69E2BCA273C35AFE7E ] RasAgileVpn     C:\WINDOWS\System32\drivers\AgileVpn.sys
21:58:11.0821 0x09d4  RasAgileVpn - ok
21:58:11.0883 0x09d4  [ 71C859923AB05F9D6788586809921650, F9DB0379B2AA8713C7FC2D2919E2571AA81E13609C6C28036912816052D04ED2 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
21:58:11.0899 0x09d4  RasAuto - ok
21:58:11.0915 0x09d4  [ BE374F3DBF29B4094C25679081B22D79, 61099C4F61D5D804A4801041BDAF276C1177EC863ABDF6F6343070B6A02AEAAD ] Rasl2tp         C:\WINDOWS\System32\drivers\rasl2tp.sys
21:58:11.0930 0x09d4  Rasl2tp - ok
21:58:11.0946 0x09d4  [ 9E020DCA50E63751779E21CA294D5F77, 482EB86DCA12617BE4EE294B7B0D9791BD4190AAEB69EBE5E625DA34613E8406 ] RasMan          C:\WINDOWS\System32\rasmans.dll
21:58:11.0993 0x09d4  RasMan - ok
21:58:12.0024 0x09d4  [ F20245B35228B55324DAEED158CCBA75, 2813D701A3444F679BB521DE8FB207C3668814B208A15885D7FEB555A13880AF ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:58:12.0024 0x09d4  RasPppoe - ok
21:58:12.0087 0x09d4  [ 1C0DE9EFAD982DF7FA4216AC100AE48E, 814C7F103A1291EEC35D709091F63175CEEC6A399F41C5F7903E669CD9C23B61 ] RasSstp         C:\WINDOWS\System32\drivers\rassstp.sys
21:58:12.0087 0x09d4  RasSstp - ok
21:58:12.0118 0x09d4  [ EBA52E812B8888593ACDAA931238A171, 54FA8E3B52C9E54E73428B9544A85FAE436347005E656E7249534737E7F8467D ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:58:12.0133 0x09d4  rdbss - ok
21:58:12.0165 0x09d4  [ 81DCA0CDB005CA556A32AFB69C61BBA4, 3A804380DDC5FC6EEC897140295208E341996D4179A6F1F14B6E48FBDF01A88E ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
21:58:12.0180 0x09d4  rdpbus - ok
21:58:12.0212 0x09d4  [ 288DA2E52BFE6A90937FF9A994FA56ED, 8EB5FF580867D796EAA93B9A167A564653943429D8B849CEDBEF2FBF0ED026EA ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
21:58:12.0212 0x09d4  RDPDR - ok
21:58:12.0258 0x09d4  [ 1120A66FB9E6C41F2C5F817A27C3EA7C, BDE2E39CDAADCD7BEB5A8CF34F0CA852FE16C32D92D987B9028E8158DB7ACEF3 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
21:58:12.0258 0x09d4  RdpVideoMiniport - ok
21:58:12.0305 0x09d4  [ 9E0CECE19D5435C92B4928CA5F4A7DBA, 26E6D0D0493F961418540F40A84355AFDBF2C7E81F7E03FAD791B7A7F8D40BA1 ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
21:58:12.0321 0x09d4  rdyboost - ok
21:58:12.0415 0x09d4  [ 3298EBAA3AE46370FC3DFE475CB5CCFA, 5612BF352B3D2AC6FF4AA8C493B9A7A84C0461941387FC19B39D66CF3D1D6D33 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
21:58:12.0446 0x09d4  RemoteAccess - ok
21:58:12.0508 0x09d4  [ 313FB1A4E115664A9A710256856255D2, 416F8F4C55DB4A351DB4BE53402D6560985143F0FBFE01E84A33E84ADE7B41A8 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
21:58:12.0524 0x09d4  RemoteRegistry - ok
21:58:12.0712 0x09d4  [ 40C9B573467A5CC8E3215764ACAA71BB, 9FEF73735C10A08C0C8840B3943143375A26C71E70A973169585A48E0FC3F050 ] RetailDemo      C:\WINDOWS\system32\RDXService.dll
21:58:12.0743 0x09d4  RetailDemo - ok
21:58:12.0852 0x09d4  [ BD517C7FB119997EFFBE39D5E4B37B05, 4B03555714824FE6C247FA9DF910671D7F1BA18C13DD82E5E7147F7AAB2BF6B1 ] RichVideo       C:\Program Files\CyberLink\Shared files\RichVideo.exe
21:58:12.0852 0x09d4  RichVideo - ok
21:58:12.0962 0x09d4  [ ED7DEA401C5AF2B14DBE76B95774D7CC, CE618E4AAE7C240806E97191F098ABA82B70F5D7B5661C501C516BEDCCA2E1B4 ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
21:58:12.0977 0x09d4  RpcEptMapper - ok
21:58:13.0040 0x09d4  [ A8B0BC7906026B9132B2421F4536F813, CC6A8EB2F5D7088B952269672ADDB70661EFE066EE8478BAF313105637216BFA ] RpcLocator      C:\WINDOWS\system32\locator.exe
21:58:13.0055 0x09d4  RpcLocator - ok
21:58:13.0118 0x09d4  [ 4C0499B1D34B8E097DAD8B26DC26BCB2, 8855D7ACF8DD445CBA3A929D0DA8E6BFF6F7B05D10422F5F2BF3C95E517035DB ] RpcSs           C:\WINDOWS\system32\rpcss.dll
21:58:13.0133 0x09d4  RpcSs - ok
21:58:13.0196 0x09d4  [ DC83F205844B3FB7E5E141E49EC999D9, 9FDE19CA36DE4DF4DAE2841CD1994C769FCBAD723ACE03198C4FC2FD4F14270F ] rspndr          C:\WINDOWS\system32\drivers\rspndr.sys
21:58:13.0196 0x09d4  rspndr - ok
21:58:13.0274 0x09d4  [ 434DCF7AE4300C876AA40873E3113983, 096F4D05D249C5AB96555C9E1B31139447203ACABCC9E7DF5E690CC5D66B761A ] RSUSBSTOR       C:\WINDOWS\System32\Drivers\RtsUStor.sys
21:58:13.0290 0x09d4  RSUSBSTOR - ok
21:58:13.0339 0x09d4  [ 4CEEB741C01369C2FABAB4603DA6A109, 646447098EC2177879429808942A130342D93A7AD4AF51D53E68BB12FB681581 ] rt640x86        C:\WINDOWS\System32\drivers\rt640x86.sys
21:58:13.0370 0x09d4  rt640x86 - ok
21:58:13.0386 0x09d4  [ 46A5689B7ED4A894EB2CBD7D42B32B4E, A9E7884E67EB4BC8540BACD97961B9960B54EC543BBB03A96F125A7CEBD26606 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
21:58:13.0386 0x09d4  s3cap - ok
21:58:13.0417 0x09d4  [ AC27D700DCEE3715249C9815A361B2BB, 81CD19D69A8A2D994EFB166A830C007317FD000262E3F0D7043CD9BB19BE6A5A ] SamSs           C:\WINDOWS\system32\lsass.exe
21:58:13.0417 0x09d4  SamSs - ok
21:58:13.0480 0x09d4  [ 3474F4025781EEA401D709BE23CFC556, 9DF79045D29F104EEF9BABBE4606CEE2E4C0996F935FAFC6D06D5B97A07E9650 ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
21:58:13.0495 0x09d4  sbp2port - ok
21:58:13.0573 0x09d4  [ 864413BB298EEF6F62FF22D3F0F613C9, 9FB714756130391F8AB0EBAD1558244384BA938CCACBC64CE2C68A04CDE5F254 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
21:58:13.0589 0x09d4  SCardSvr - ok
21:58:13.0589 0x09d4  [ F2B217FE8FC01854C45D89E563FD965A, 648E65AA4ECE9839E50002D1B805D3310A23E5F53F517F0ADF88761CCC54F886 ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
21:58:13.0605 0x09d4  ScDeviceEnum - ok
21:58:13.0667 0x09d4  [ 0DE6E9DFFD1D252B351F48408593C325, 10F8D64772C8C68F34DB6F90EACFE8A634815F754CE14393909E034D07504B9E ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
21:58:13.0667 0x09d4  scfilter - ok
21:58:13.0714 0x09d4  [ 3520CE71587F7F261AFA5076A7D6407A, 4DE48DEA8C45E0CA6D9FB54E0321E381D636F4372993192FDF1D26686B12E849 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
21:58:13.0745 0x09d4  Schedule - ok
21:58:13.0792 0x09d4  [ 79A68462E4512E766F0683F6AAC79E6E, F162489C0179BDCAD53C042C1519D0DD7F4E53ABC2DD1832FEA093B180BAB388 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
21:58:13.0808 0x09d4  SCPolicySvc - ok
21:58:13.0839 0x09d4  [ 5FF63904B79ACCB6DC758200BF83753C, 33038AC1351CB470C6508C6C0D755F04C870B15DF1921717EDD508348806983A ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
21:58:13.0839 0x09d4  sdbus - ok
21:58:13.0855 0x09d4  [ 02AAF5F0888DF6983F4FC2FDC8F82DAA, 969A3C3427C370AE5CCF25B2EE20EE8AFD79590B49DD0CAAB30BEF5C222196AE ] SDRSVC          C:\WINDOWS\System32\SDRSVC.dll
21:58:13.0855 0x09d4  SDRSVC - ok
21:58:13.0902 0x09d4  [ 57A7585BB9952E90C4A791833EB31B99, 38CD4BA8D59CDF2F422DD5680B6472C72A65DAC18E105A30C036B69144AF5559 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
21:58:13.0902 0x09d4  sdstor - ok
21:58:13.0964 0x09d4  [ 16A252022535B680046F6E34E136D378, 31BCDAA742FDEC9E062C61E78D9E72A7ACBF77D5FEEE76933D0D378787F88E53 ] SeaPort         C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
21:58:13.0980 0x09d4  SeaPort - ok
21:58:14.0011 0x09d4  [ 3DF09096835E12C5F8BE2DA33EB9C4D3, 76785C5D3B752AF0B61AEC0FE94F7E9F422D7041817409C52D0C87EA8F1D2F97 ] seclogon        C:\WINDOWS\system32\seclogon.dll
21:58:14.0011 0x09d4  seclogon - ok
21:58:14.0027 0x09d4  [ 8293D0B96298CA5AFE121C1855A72585, A658A204DD2D401925FBABA576BE256B0A593134510575F04D8497F44CB8EC27 ] SENS            C:\WINDOWS\System32\sens.dll
21:58:14.0027 0x09d4  SENS - ok
21:58:14.0136 0x09d4  [ C45CA6D63BDBD4014C67745EC7608DB8, 896C82AFB1722E43AD580F104D3400D71297A24C8B1245AC52917E58BD893097 ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
21:58:14.0183 0x09d4  SensorDataService - ok
21:58:14.0245 0x09d4  [ 4C27D0E3118F3C23335410C9E8FE00ED, 334EF56587FC2D0DA5E85079064AE7DB2841942B362DAD611506C1AA5813EF91 ] SensorService   C:\WINDOWS\system32\SensorService.dll
21:58:14.0277 0x09d4  SensorService - ok
21:58:14.0355 0x09d4  [ 41D9D380DBFFFA8F3ACCA77772F0D644, 340EA1B0D7464493662CD1545ADB9490AF9670A92889687E07128E1FAF567B5B ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
21:58:14.0370 0x09d4  SensrSvc - ok
21:58:14.0433 0x09d4  [ 717BE0184E6C4CA20C5733F4CE332383, 686CF4DAC254020130BEC88A1D3CD8535ABD4684265E2A6EBB18ED7180535966 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
21:58:14.0448 0x09d4  SerCx - ok
21:58:14.0589 0x09d4  [ 4C6C157F1EFA6C167357D8E3C44AAADE, B6D58C1D42AFCEE6615FAFC6964B15797C3B862AAE44F2A0532264753AA724B0 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
21:58:14.0589 0x09d4  SerCx2 - ok
21:58:14.0605 0x09d4  [ 425BB23B81184F186ED90D0C3DD4E3DE, 17BB8C7373DBEABB9D84000F575C5F00DBCFCB5442584BB5F6AE76B9BCD32B7F ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
21:58:14.0605 0x09d4  Serenum - ok
21:58:14.0667 0x09d4  [ 664B9000F9B2953A25CD4060D24D3052, 741FE585FE2504CD37243A03F48AFE5769CC07C9821F7423657EDE49337C302C ] Serial          C:\WINDOWS\System32\drivers\serial.sys
21:58:14.0667 0x09d4  Serial - ok
21:58:14.0683 0x09d4  [ 0BD8E3C2BCB05F0DE6FDC3BFEE708607, AD674C856A4545CCF38CCEEE9B4577FBCBFF5E3771F5FBC9DAB02A7EC2D86FD9 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
21:58:14.0698 0x09d4  sermouse - ok
21:58:14.0761 0x2e28  Object send P2P result: true
21:58:14.0761 0x2e28  Object required for P2P: [ 95848668B7DB1638D83391CE56E2B517 ] mrxsmb
21:58:14.0777 0x09d4  [ 4EE3F02AEEB6C68F05AFA012AD570D14, 1DCE0C4A0D661285F23A4B81676F2F244DBAF6B1FA6D1B9A370DF5E035769749 ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
21:58:14.0792 0x09d4  SessionEnv - ok
21:58:14.0823 0x09d4  [ 7EF99E869A3DD3B027D79D6F4156593E, DE0A1A42CAA449D66AE100DF6C13F2E25E7ABF0F325B67AF67E7BB2773935CDF ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
21:58:14.0823 0x09d4  sfloppy - ok
21:58:14.0886 0x09d4  [ 267F3F21C85C23428065698B1777C83A, 84AA9AD54E5180A57212978DD4420CA2F8CEC8313557C11EDCE16B4BFA9FFFBB ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
21:58:14.0902 0x09d4  SharedAccess - ok
21:58:15.0073 0x09d4  [ C8F696223A6CBEAE88226F99608E9F2E, 833CAE3D62D25E2C5CEAE34B75DC25FE27BEE9041A214194F024592D45940BBA ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:58:15.0167 0x09d4  ShellHWDetection - ok
21:58:15.0261 0x09d4  [ 5DDA57A3E19147B47B99F08314AAE954, 33DD1A38F1185243ACEA536CDAF7462980CCEAC189CECCEC6A01BFAFFFB6B6C5 ] sisagp          C:\WINDOWS\system32\drivers\sisagp.sys
21:58:15.0261 0x09d4  sisagp - ok
21:58:15.0292 0x09d4  [ CB00A2CA0B4B236D59837B9C43104E6B, 62D0AF3F0ECA81DED1AAD3DAC51AC0F4A583E148915122FEE8788AF176D8E9E2 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
21:58:15.0292 0x09d4  SiSRaid2 - ok
21:58:15.0324 0x09d4  [ 18706B3C33D8A5AE575BD7922846497E, 8E4BCFD2081E1933EB2A6F06BD6A7F625D50F890EDEE15D9DD209FE379F74690 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
21:58:15.0324 0x09d4  SiSRaid4 - ok
21:58:15.0386 0x09d4  [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe
21:58:15.0402 0x09d4  SkypeUpdate - ok
21:58:15.0496 0x09d4  [ 4C65D700CF07A7ED873F79FAE82E8F7F, 50DB5A540EC2D66E041D198E7ACACF2323047582A26DD4FBA1E3D7CFB6BEA452 ] SMARTHelperService C:\Program Files\SMART Technologies\Education Software\SMARTHelperService.exe
21:58:15.0574 0x09d4  SMARTHelperService - ok
21:58:15.0636 0x09d4  [ E78ED320AA4AFC8087E1B51A64A116E3, 957AB7B41E1779E4AC8450581A003D19854584B13FC7DEC4E5E6EB95091B6658 ] SMARTMouseFilterx86 C:\WINDOWS\System32\drivers\SMARTMouseFilterx86.sys
21:58:15.0636 0x09d4  SMARTMouseFilterx86 - ok
21:58:15.0699 0x09d4  [ D4F15E6BD6E8A60EF0A82FAB76ADB6B0, 932AD2B559C07116D618257202E66AAD71CD76EDDA4F099A6D5A449F7D3F0059 ] SMARTVHidMini2000x86 C:\WINDOWS\System32\drivers\SMARTVHidMini2000x86.sys
21:58:15.0699 0x09d4  SMARTVHidMini2000x86 - ok
21:58:15.0730 0x09d4  [ 1F7C57F9843813B41768E969558AD035, 19A2AB36BACD1059A967F2D5C77C85B92907DF13BBD2A5FA8D8EAACA21602AC0 ] SMARTVTabletPCx86 C:\WINDOWS\System32\drivers\SMARTVTabletPCx86.sys
21:58:15.0730 0x09d4  SMARTVTabletPCx86 - ok
21:58:15.0777 0x09d4  [ A5EFBACE0336F264A64B5E38F4FDCBC2, 98A0B1695171309EDA90F20919873986A334DB5CED5F45860EF2DAF26B8DBC37 ] smphost         C:\WINDOWS\System32\smphost.dll
21:58:15.0792 0x09d4  smphost - ok
21:58:15.0871 0x09d4  [ F4E321A6C3062B3FA9C5BE1973F77655, 54FF067419977232ABCE8DEE1F03ED221CBF3D9C8668349EB3EEE401338B61E6 ] SmsRouter       C:\WINDOWS\system32\SmsRouterSvc.dll
21:58:15.0902 0x09d4  SmsRouter - ok
21:58:15.0980 0x09d4  [ 46155FAD8C56504BBCA8234363045082, E7185B6B59D3B6AE09D6B03BC640C128F9E1E4E9BBD7E74FF3541CBE8520CFF7 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
21:58:15.0980 0x09d4  SNMPTRAP - ok
21:58:16.0042 0x09d4  [ 21FF393512F51F5A98620C794B4488A3, 8A35923D3D6993FC014D86F0F7BD5C106586824DB8D26C04DC2AD0B8ED13ED20 ] Sony PC Companion C:\Program Files\Sony\Sony PC Companion\PCCService.exe
21:58:16.0058 0x09d4  Sony PC Companion - ok
21:58:16.0136 0x09d4  [ 9D3FB1E0BFBB8A3F888E55505695741A, 7F1DC6889E3615A7BA2AF859FD27C56669B793DF1AC9D3A474045E04993B98D4 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
21:58:16.0152 0x09d4  spaceport - ok
21:58:16.0183 0x09d4  [ FA225A488BD443F8707103D1569260EE, 0326ECCF9E1D6B7CCF76B05F894492FFF65931F73B0C3963041838DFEBD86DCF ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
21:58:16.0183 0x09d4  SpbCx - ok
21:58:16.0324 0x09d4  [ A8493E43F9D4B22BBED2D424D03ED273, 83F648FB8492650541B2B75D1D84386057E24F24CA28FA79D7F2FBFCF7A40BBE ] SpeedDiskService C:\Program Files\Norton Utilities 15\Tools\SpeedDisk\SpeedDiskSrv.exe
21:58:16.0402 0x09d4  SpeedDiskService - ok
21:58:16.0449 0x09d4  [ 9F70CD5EDCC4EFC48AE21E04FB03BE9D, AD23D77A38655ACB71216824E363DF8AC41A48A1A0080F35A0D23AA14B54460B ] speedfan        C:\WINDOWS\system32\speedfan.sys
21:58:16.0496 0x09d4  speedfan - ok
21:58:16.0558 0x09d4  [ 18FD6616D55CE95F2FE07C97499E2A8E, 8E18175411136959AF0526409A8A0B2D7C889D85F2E0798B0C9334EE8C6A6BD3 ] Spooler         C:\WINDOWS\System32\spoolsv.exe
21:58:16.0574 0x09d4  Spooler - ok
21:58:16.0839 0x09d4  [ EAF4567F7BD43762C959EBCBF1BE90E2, 6F7C56079D715A9DE6E2E1EA88A5ADD77D7D43C5134D595E911939982454A8ED ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
21:58:17.0089 0x09d4  sppsvc - ok
21:58:17.0167 0x09d4  [ A199171385BE17973FD800FA91F8F78A, 815091DC5A3506A3C8414B9D0213A61DF8289BA8645289CC9D338820536B42EA ] sptd            C:\WINDOWS\system32\Drivers\sptd.sys
21:58:17.0199 0x09d4  sptd - ok
21:58:17.0261 0x09d4  [ 171F2EC32EE6812DC8BFA83C73EC54E5, C2F1E651286B01E575348F0A28B34C98AD06C24B5DB61B7001C8E332F26C3A27 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
21:58:17.0308 0x09d4  srv - ok
21:58:17.0324 0x09d4  [ CB8EA447496A34170421D2DADBD35085, 5F4F9CBD6C7CC292A4B4DC4168FF336AAC4F42390D6CFD5F56A7E0BBF2251D3A ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
21:58:17.0340 0x09d4  srv2 - ok
21:58:17.0355 0x09d4  [ CB9C58EE0B356BB166DFD19DDC4E7CAA, 7966C2B796FE7D622EA815361565FE89F985A113E974B69435EE338C5D97F1E6 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
21:58:17.0371 0x09d4  srvnet - ok
21:58:17.0433 0x09d4  [ 2A8BA202D56C370505C56F8872555B9B, 2D1972F6E1C95123673F1C16E582399358FC6880BCA0670C293544D36F3C2BC2 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
21:58:17.0465 0x09d4  SSDPSRV - ok
21:58:17.0543 0x09d4  [ 5A59427FA6FB6C5250A9D171F32D699A, B227F2FC4AC5158EB151726064BDAD8618209BFF1C528A6C8A041EEB52B65AD3 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
21:58:17.0558 0x09d4  SstpSvc - ok
21:58:17.0621 0x09d4  [ 585FDB94DB04AC1C56298D1FD1F1389E, 5CEBAAF3B649E580B3EF2B9B38426D6EE13B244BE1274BA0C0A468EC4CFB680C ] ssudmdm         C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
21:58:17.0715 0x09d4  ssudmdm - ok
21:58:17.0902 0x09d4  [ 2BD4CCE7F96C1538DA6AB581F6D9D0BC, C172AC8510C5E2BC3191BD573838893279AB98CEBB95413CD6E779CFE03A307F ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
21:58:18.0090 0x09d4  StateRepository - ok
21:58:18.0168 0x09d4  [ FD7D26CD1E671DCDC2112494747A3AE1, C8A85F10FD3F4F3FCEF40D46EEF88DB72290421DB5F99EEB818B2E1F69143D5D ] Steam Client Service C:\Program Files\Common Files\Steam\SteamService.exe
21:58:18.0215 0x09d4  Steam Client Service - ok
21:58:18.0277 0x09d4  [ D4379D5350797ED7E8DB376BA2607242, 4072D8A6A8E5DD1AFCB64C8E26507F76765F59F3251424902D63A187187D40C3 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
21:58:18.0277 0x09d4  stexstor - ok
21:58:18.0371 0x09d4  [ 283F6F6740C9F5DC72547C84AAA35487, 519649F3089653B15EA577A691FEFBADEAE9E852B3F2100D6EC521C606F7292F ] StiSvc          C:\WINDOWS\System32\wiaservc.dll
21:58:18.0418 0x09d4  StiSvc - ok
21:58:18.0433 0x09d4  [ 39773B37FE454AF48616DBF2E31BFC06, BB013F922DE53AA4156D8F2688A1A9E78FDBA3A8590D41B0D4C4E3BF6B6AD5F6 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
21:58:18.0449 0x09d4  storahci - ok
21:58:18.0496 0x09d4  [ 691B26EA5058B6A2F49F5A36B0152971, E5A6F80D562B9699158973BA6CC59AC7FC14E743763A2CB4957D0B2A1CD6648D ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
21:58:18.0496 0x09d4  storflt - ok
21:58:18.0527 0x09d4  [ E34791E4376136F4BDD5332CBE99F3B6, 18F278D371D0363455E429DA98EAC2A8F80FCDE195EB448C289658F19FFF94BC ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
21:58:18.0527 0x09d4  stornvme - ok
21:58:18.0558 0x09d4  [ 1CE8E8A4855665DF9308A561A4D559F3, 6A2DF9A8FE98AAE8FA1EAF152C1857DF304165192A9994942C278D252F603517 ] storqosflt      C:\WINDOWS\system32\drivers\storqosflt.sys
21:58:18.0574 0x09d4  storqosflt - ok
21:58:18.0621 0x09d4  [ D44526BFF469DCE126AFAA249E273C2F, 178B34E0EA214A038B5B5E13C27E45FE86C846B55557D9234382C81D07CCEE1A ] StorSvc         C:\WINDOWS\system32\storsvc.dll
21:58:18.0636 0x09d4  StorSvc - ok
21:58:18.0668 0x09d4  [ 2A3381FA0C3C0D52B8404F41CFCDA01D, BED8F9AA2116E15E10195ACE08E6CD66D32F6157B3872B6B26F6EC55DA12D72E ] storufs         C:\WINDOWS\system32\drivers\storufs.sys
21:58:18.0668 0x09d4  storufs - ok
21:58:18.0683 0x09d4  [ 260D5CA9F7962ADE3AA3751DE212A14F, C0190E11379DF406808C82E70CC546CED7766C60DCB2FFB57ACB991C8F9205CF ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
21:58:18.0683 0x09d4  storvsc - ok
21:58:18.0746 0x09d4  [ D7F5C377D02F452BB1791C4B3FF7E635, 28BE92EE75294C23578E8693A531836548AA522A87DAD75CDE2FDE1BA156E4D8 ] svsvc           C:\WINDOWS\system32\svsvc.dll
21:58:18.0746 0x09d4  svsvc - ok
21:58:18.0761 0x09d4  [ 4A3D2E2A4FDFA29F11034D1BB1996E77, 670B59F030F6342FAA396AC8F4E188002F58176022F64972748AB91F958E7468 ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
21:58:18.0761 0x09d4  swenum - ok
21:58:18.0793 0x09d4  [ 40840B91147BAD0E949DDE3DCACF1B5E, ACE413F42BB47F2F196FF14EC9FD4559A761FA93E62D8A05B31087DDD5217184 ] swprv           C:\WINDOWS\System32\swprv.dll
21:58:18.0808 0x09d4  swprv - ok
21:58:18.0855 0x09d4  [ 4C155FA65CBF81513E4B9D088737E9CF, 4928171713181D37EA0E5EEC9FE1CBA8C9B38F50A40BC748466654CB0B513A61 ] SymDSMon        C:\Windows\system32\drivers\SymDSMon.sys
21:58:18.0855 0x09d4  SymDSMon - ok
21:58:18.0871 0x09d4  [ E9983667331D463F1E5B34F9170A9AE0, F40FD426FA8E5A601A93E68247D3CFE51E20E4245B740F51138549BA2F398E71 ] SYMSpeedDisk    C:\Windows\system32\drivers\SymSpeedDisk.sys
21:58:18.0886 0x09d4  SYMSpeedDisk - ok
21:58:18.0933 0x09d4  [ 7859019D71C137D34FDC9A17608BE39A, 563030FEEB7035444392141BC289DCAEAAA3DFB98432D5DA6354B2B81BC41E87 ] Synth3dVsc      C:\WINDOWS\System32\drivers\Synth3dVsc.sys
21:58:18.0933 0x09d4  Synth3dVsc - ok
21:58:18.0996 0x09d4  [ 47183E3520C88FADD5B0C87D57040DA5, 4FCB6833399E86DF567499691E0202341094D6858331A2FAAF961182B1471F7B ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
21:58:18.0996 0x09d4  SynTP - ok
21:58:19.0105 0x09d4  [ B812100FF07F888B3CF0BADC01072004, 3407FB0A56F56E09F327EDE7994DBE51E3EC8C5284BB1FC2FF425883B1C4D8AE ] SysMain         C:\WINDOWS\system32\sysmain.dll
21:58:19.0230 0x09d4  SysMain - ok
21:58:19.0325 0x09d4  [ 41F0148568EAF45C5765C51E3880C087, 04FD6C56EDD539875565136AEC7BEA49EDDA7BFA722885C95A9F1F629C213B1F ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
21:58:19.0371 0x09d4  SystemEventsBroker - ok
21:58:19.0450 0x09d4  [ FF785619E8F8C13A4D034C1C8B5D7573, A4D653C24C85F82255C0403F8A8AD75044328438D35C02831586C0E66F8CCD92 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
21:58:19.0450 0x09d4  TabletInputService - ok
21:58:19.0465 0x09d4  [ F9F665083E8658C49B9B28F11BE8C91D, 98BA6CA48117D241FD495CB17BBFC0CA2A0C012FC3E832D68CC5BCD62A12A0D5 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
21:58:19.0496 0x09d4  TapiSrv - ok
21:58:19.0621 0x09d4  [ EFA268B72C4BB766848B96F43BA1F5AC, 24C54BE6A0774C8E01ABC70BB5756E7EF755606C0C80045000C69187A6A6B123 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
21:58:19.0746 0x09d4  Tcpip - ok
21:58:19.0825 0x09d4  [ EFA268B72C4BB766848B96F43BA1F5AC, 24C54BE6A0774C8E01ABC70BB5756E7EF755606C0C80045000C69187A6A6B123 ] Tcpip6          C:\WINDOWS\system32\drivers\tcpip.sys
21:58:19.0887 0x09d4  Tcpip6 - ok
21:58:19.0918 0x09d4  [ 1F24546CD99E1860F567212ED3A9F29E, 78205A5737891F4CBAA5F9F002A921BE9011C9DDBAE6EDF2BC9F7077A117B194 ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
21:58:19.0918 0x09d4  tcpipreg - ok
21:58:19.0996 0x09d4  [ 1683BCB69B9950CD8C97865F3EC6781E, 705818E09D34E0B3F06DFA7C5D9D14C6E8EE439E0DDB553D10789362CC728D19 ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
21:58:19.0996 0x09d4  tdx - ok
21:58:20.0028 0x09d4  [ 8568FFB7D3932E6AA8A1465A00D4401E, 6FCB7EA0D191BF8BB84192D53F2849AA88F2F9DF882ABA6F1872C6CC40678DF8 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
21:58:20.0043 0x09d4  terminpt - ok
21:58:20.0121 0x09d4  [ 6717123F51A67EFCB9ADC38D2DE84F92, E1741DCB4A477CB8E479D2BA54D9036674164EA8660766478A2D547F4C5F2BC0 ] TermService     C:\WINDOWS\System32\termsrv.dll
21:58:20.0184 0x09d4  TermService - ok
21:58:20.0200 0x09d4  [ 3115A1C9DC2FFDCA9BFDDA63198CB0D1, 9A35DD1E164055C6ABC0311729CEC4D7626101249CA06581C89F286B58DB4A9C ] Themes          C:\WINDOWS\system32\themeservice.dll
21:58:20.0200 0x09d4  Themes - ok
21:58:20.0262 0x09d4  [ AA49272D3EB844FC2CB500BD9A6A2B77, 12981971395A91005FE0782687F06FB008D8E394E294E3930890FAA8018BEA95 ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
21:58:20.0278 0x09d4  TieringEngineService - ok
21:58:20.0293 0x09d4  [ 78B0F51F098074D159DF33BE893C342A, DAD3D83A2765A916C606182C5567477548D6C2DCAE6E0FC033E4A84EF913001D ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
21:58:20.0309 0x09d4  tiledatamodelsvc - ok
21:58:20.0325 0x09d4  [ E91CA1E3440B67CCB05F8B13FB1AB49D, 9D0C25F7FCAB053D8722A9B8E8599FFB7CF741665582EC150F0F144949620364 ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
21:58:20.0340 0x09d4  TimeBroker - ok
21:58:20.0434 0x09d4  [ 87DD174258F870B575F085CEAFA5ED1F, 3980692ED0A1CCB3FDDAEE903B1A7FD427685F0DA9A1C1A88D6B9B4FE7C9A6B9 ] TPM             C:\WINDOWS\System32\drivers\tpm.sys
21:58:20.0450 0x09d4  TPM - ok
21:58:20.0481 0x09d4  [ 6707D96ECE7E447258AE713B4E18E93E, 0BBA089B227596F4032C09AB9C38DA164A60B0BF3C0A8329F4F648BD383D13BB ] TrkWks          C:\WINDOWS\System32\trkwks.dll
21:58:20.0496 0x09d4  TrkWks - ok
21:58:20.0606 0x09d4  [ 782FDC259016D0DF0925CBAD11FF3A96, 4332897BC39B517DBE7335AA6CB46298FCEFF1B264B68F2058579853C2A015F8 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
21:58:20.0606 0x09d4  TrustedInstaller - ok
21:58:20.0668 0x09d4  [ 444DAD7C9DE8259CD33AA02E2DDF9F62, 7D1A1DAFF8B763160A804B3457CCCE1A2D35A1C8384C7E95C6945C9CF65916F8 ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
21:58:20.0668 0x09d4  TsUsbFlt - ok
21:58:20.0700 0x09d4  [ 7A6A6B080CA2DC40EEF2C68F1D914B8B, E85B7884726CD08AAC88B9BA1CF2A03D50109AFE331EEB89D2524A7D580786C5 ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
21:58:20.0700 0x09d4  TsUsbGD - ok
21:58:20.0731 0x09d4  [ E89451DADDC4AE9D85F4B1FE972BE74B, 1F5D85842CC54E94DD4BEB78E805EB182EF1D48230910573D7D879088149CA07 ] tunnel          C:\WINDOWS\System32\drivers\tunnel.sys
21:58:20.0746 0x09d4  tunnel - ok
21:58:20.0793 0x09d4  [ F7E43CE6745617BC3D61D4B3391C9F3A, E6451DD95626612B0E44223E0EEA69D5FAAD69EFF6861F25E019F80AACA1C8CF ] tzautoupdate    C:\WINDOWS\system32\tzautoupdate.dll
21:58:20.0809 0x09d4  tzautoupdate - ok
21:58:20.0825 0x09d4  [ 8B7CDE06707C9AF0C4934E4CC508695D, F2823A12015EDD8BBC7C89B8251AD13699BD5073EE8E352C73C9087A961A1F2C ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
21:58:20.0840 0x09d4  uagp35 - ok
21:58:20.0856 0x09d4  [ A8A7BDB2CB62FD7CE711CA16FB3451DF, B8CE0D15E7B1F59BDFB6CD6DF919438CCB086631B16A44F55E1D15B3FEFFC009 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
21:58:20.0856 0x09d4  UASPStor - ok
21:58:20.0887 0x09d4  [ C9AF8F7C50611D1CBEC31945174FC3AA, 2265FE1AB9A27CCF90AC902DD35894BA8790D13F952625A063C1BEF052C2B1BF ] UcmCx0101       C:\WINDOWS\system32\Drivers\UcmCx.sys
21:58:20.0887 0x09d4  UcmCx0101 - ok
21:58:20.0934 0x09d4  [ 93164F4C774847A6777ACE96C418E895, 74B4393538315F3E69CCCFE903502E6C1E27ACA4ECB6830A012C4CC987FE1C85 ] UcmUcsi         C:\WINDOWS\System32\drivers\UcmUcsi.sys
21:58:20.0950 0x09d4  UcmUcsi - ok
21:58:21.0028 0x09d4  [ 3DFFB0793F36A31165DAA464B09749BD, 4BDA0F505D2509ACD8666AF912A8B0C4C4F68854B3C0C8BB30F1642D174497FA ] Ucx01000        C:\WINDOWS\system32\drivers\ucx01000.sys
21:58:21.0028 0x09d4  Ucx01000 - ok
21:58:21.0059 0x09d4  [ F5944D42BB3E7C49762851A37475D24C, 5F06722348BAE079830E86545D70E20937BFD9520D54FE37E62C200BFCA8B83F ] UdeCx           C:\WINDOWS\system32\drivers\udecx.sys
21:58:21.0059 0x09d4  UdeCx - ok
21:58:21.0106 0x09d4  [ DFAB94D2AA5BF219A603A94413F69D80, 67404C0E72EEE391AC7BF33B73AF3359816D4685A433E0606F9AE4C683EDE21F ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
21:58:21.0106 0x09d4  udfs - ok
21:58:21.0137 0x09d4  [ B661E6B5B37135F597569CC2D379466B, 17C5A8504E816A8B4830EB215474F118715DB7E53B206E8FDD6AEA63AFFD5662 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
21:58:21.0137 0x09d4  UEFI - ok
21:58:21.0168 0x09d4  [ 5BA4BFCAA3B2C6F6F12C350022027EE3, FF6BE9F908789F381209D8E012F276631626CA109D585AD18D2A7D955C38AACE ] Ufx01000        C:\WINDOWS\system32\drivers\ufx01000.sys
21:58:21.0168 0x09d4  Ufx01000 - ok
21:58:21.0200 0x09d4  [ 75019BD006BEA3E4CB8619E58A834ED8, 55ECACB7B810528DADEB77AA30CAA8B97CBECDDC83EC3FDCD54E507CDBB0D922 ] UfxChipidea     C:\WINDOWS\System32\drivers\UfxChipidea.sys
21:58:21.0200 0x09d4  UfxChipidea - ok
21:58:21.0231 0x09d4  [ 37B7C7BAF2425810BFBF18E8260687D6, 786CBB1C11FF82F13E8BFF1017C212A5BADECF2A43213873553C4605F4B4EAD6 ] ufxsynopsys     C:\WINDOWS\System32\drivers\ufxsynopsys.sys
21:58:21.0231 0x09d4  ufxsynopsys - ok
21:58:21.0293 0x09d4  [ 04A986DB61D2E40A9AF177FA11990EBF, A7E220CD02D407C690A897727C52EBF6FA48F239D5FFB070C8DB1BC53A6BD9ED ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
21:58:21.0309 0x09d4  UI0Detect - ok
21:58:21.0327 0x09d4  [ 1F40A2F255499DB5A5949CD3F3BF4381, 9D586171ED2F6C3F02C0325279A487F78A4B43EA2B91656BA4A03F33B6D3646F ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
21:58:21.0343 0x09d4  uliagpkx - ok
21:58:21.0358 0x09d4  [ DBBCCAAA495D5FD25D75AC3535F89BD0, F905BD4330CE2FE68F5E6B8F3212A1C07C993AC72DC39F50FBE6260A005ACD0C ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
21:58:21.0358 0x09d4  umbus - ok
21:58:21.0389 0x09d4  [ 2C9342DB0106ECF032449E650E9616BD, B202690BE1DCC02F344625F65DFF53BD1B7B1001B405BB36DC44E331D034BEF9 ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
21:58:21.0389 0x09d4  UmPass - ok
21:58:21.0452 0x09d4  [ 20634CBA169B149FB56F50F64E7891E7, 16261694DF7A7C06D620B9B5D1B51E5B35150AFE3946BD30E42508CDDC9950A4 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
21:58:21.0468 0x09d4  UmRdpService - ok
21:58:21.0561 0x09d4  [ 3B1D8CE3E56BA82EF02C126226B7C357, 2FBC16D2328C819510527966429880277ECAB190C596F75ED72E4DECE63518F3 ] UnistoreSvc     C:\WINDOWS\System32\unistore.dll
21:58:21.0655 0x09d4  UnistoreSvc - ok
21:58:21.0733 0x09d4  [ 39106986EB2AD2774DA8542C08304FF2, FAD137587AED00CD39A4CE1B2C603F42A26650E77B3C5A487034DECCA01B5BF2 ] upnphost        C:\WINDOWS\System32\upnphost.dll
21:58:21.0749 0x09d4  upnphost - ok
21:58:21.0780 0x09d4  [ BD0C12906FA5E5F87C6D0E253DB9F701, A556792DF50AAC472BF2903C9B887F43BC63C4B8BAE406F141B2CFB8E1FF1F70 ] UrsChipidea     C:\WINDOWS\System32\drivers\urschipidea.sys
21:58:21.0780 0x09d4  UrsChipidea - ok
21:58:21.0811 0x09d4  [ CE109DD08D8F60EE1E126D5417F2CD58, F21D9123AAD6C75D155EFC643E07BF8F5AE059D7AD28959F77F79D097914100B ] UrsCx01000      C:\WINDOWS\system32\drivers\urscx01000.sys
21:58:21.0827 0x09d4  UrsCx01000 - ok
21:58:21.0874 0x09d4  [ 443FC85BE4D5F257F46062FE58BB4E9D, 36CD1A71AC9928E58060D07D7C96A0F63139FBDB2E388B420AF5EDD7AD25E8C6 ] UrsSynopsys     C:\WINDOWS\System32\drivers\urssynopsys.sys
21:58:21.0874 0x09d4  UrsSynopsys - ok
21:58:21.0968 0x09d4  [ 0275FD8F5A518103E8DBF1EBE22DC0EF, 78315BC4091CB07D72B3729EE56ECE3670FAC5E19CE087F84FC88BEB848174CB ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
21:58:21.0983 0x09d4  usbccgp - ok
21:58:22.0093 0x09d4  [ 82FB879A28D64AC7177A6B8E06F27DD9, 1CA4C9FF5D086E5F26EA0630E3C23197D7C2F299EB72BADAE687563795BF5523 ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
21:58:22.0093 0x09d4  usbcir - ok
21:58:22.0093 0x2e28  Object send P2P result: true
21:58:22.0093 0x2e28  Object required for P2P: [ 56DBA6170A515AA35B70ED15940BC7AF ] mrxsmb20
21:58:22.0124 0x09d4  [ 82DDF3B4A7B321E3E27620CF68EE7C4F, 23E280E750F6024FB337EC71B30A553F4FCDDC8B2A6996C468CABE792B5404CB ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
21:58:22.0139 0x09d4  usbehci - ok
21:58:22.0155 0x09d4  [ 4BCA36149697A5BCBD27D462BDE88BFC, 1E1D3682B843DA18ECA991AFF135309044F205DB7BBF4F3304AD55FBFEB48367 ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
21:58:22.0171 0x09d4  usbhub - ok
21:58:22.0233 0x09d4  [ E9B99D64E52B2439EEE238CC2E00559F, 0B0C41A3FF0DF8FB60010728330E12FA0AB7736049C6AB4F3C77CDBE0672B5C6 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
21:58:22.0249 0x09d4  USBHUB3 - ok
21:58:22.0264 0x09d4  [ 14683F2DD9ADD8CE06F2108F063455A6, 9CD0163EBBC19C7691C3D0B94F569CA58D0140FE865CB9A39849ED9341830E11 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
21:58:22.0280 0x09d4  usbohci - ok
21:58:22.0296 0x09d4  [ 05E3B01618985139A82EA0EC8719F977, 32E771E0819EE98D49B81C87A9E7AAD697B2F89B2348A6F3CFC491B047D474D3 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
21:58:22.0296 0x09d4  usbprint - ok
21:58:22.0327 0x09d4  [ 797B66269E15E0869302CE666D2A610A, B497CF910D703EB8104B895322F90F5023E566D15DF637BE913AB059585642E6 ] usbser          C:\WINDOWS\System32\drivers\usbser.sys
21:58:22.0327 0x09d4  usbser - ok
21:58:22.0374 0x09d4  [ F12EF72F066105527F5404A92EA179D2, 65075D08AFE906FEA395F76BB02539EA73E0F85725C7C8FEB0659FAFF84C7E67 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
21:58:22.0374 0x09d4  USBSTOR - ok
21:58:22.0374 0x09d4  [ C05F56A51DFB51CCA57AB586CF5463B8, 082863849F24D5B53343AE0E94C58EB75D7CA91D9886C4F6C9050ECFCA78B7DB ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
21:58:22.0389 0x09d4  usbuhci - ok
21:58:22.0421 0x09d4  [ CE601517EDD54E7769A65487ED467288, B995936358775A4086A10B173C05211259037141DA95FA43452F7A76AEFD58BE ] usbvideo        C:\WINDOWS\System32\Drivers\usbvideo.sys
21:58:22.0421 0x09d4  usbvideo - ok
21:58:22.0452 0x09d4  [ F2F4FED52A4BB8390E5CB56950A2CB35, 3F37B69D7A810C5EF69A0A51F3A67F1D30A902BEA95301293A7282FAC337F663 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
21:58:22.0468 0x09d4  USBXHCI - ok
21:58:22.0561 0x09d4  [ DAAA7FA739F7C2B7B6E6422A470C5D3F, AF08B15EAC570B8D5A0344B85A5952092C2343EA9B05DE32715286721E241B13 ] UserDataSvc     C:\WINDOWS\System32\userdataservice.dll
21:58:22.0655 0x09d4  UserDataSvc - ok
21:58:22.0749 0x09d4  [ 7639D6F891BF69DF953CD7AAE4A3796D, B42D34C279F10EC5575A911DA0AEACFF1BA4C60843650AC1F6C33692131D5ED5 ] UserManager     C:\WINDOWS\System32\usermgr.dll
21:58:22.0796 0x09d4  UserManager - ok
21:58:22.0811 0x09d4  [ C58EE7F330BC2A99460F941133E26A42, B844D49BB81BB1F806A5F09FBB496D0B631F5968DC83C4D38E8CBA4D227DF7EB ] UsoSvc          C:\WINDOWS\system32\usocore.dll
21:58:22.0811 0x09d4  UsoSvc - ok
21:58:22.0843 0x09d4  [ AC27D700DCEE3715249C9815A361B2BB, 81CD19D69A8A2D994EFB166A830C007317FD000262E3F0D7043CD9BB19BE6A5A ] VaultSvc        C:\WINDOWS\system32\lsass.exe
21:58:22.0843 0x09d4  VaultSvc - ok
21:58:22.0858 0x09d4  [ 50BB29EEAD014FE8D36E8B823C458A29, 174460BE8F26BF3890385E176991E599214BBC9B79C4C0B0C7E8AE5C260971D7 ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
21:58:22.0858 0x09d4  vdrvroot - ok
21:58:22.0968 0x09d4  [ CF38EAD39528C9941A70B94E6F374111, 47569861C8D35765E235407DE573CACD811C5C0F432D923D51AF5ABCF9C59AD9 ] vds             C:\WINDOWS\System32\vds.exe
21:58:23.0014 0x09d4  vds - ok
21:58:23.0030 0x09d4  [ 5E4D0F621C33316695E90F192DDD1104, 5E3A828A5ECEE3B582F6E1B2C48C7FFF82FDA7B22866BDFD504DF18E2F029294 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
21:58:23.0046 0x09d4  VerifierExt - ok
21:58:23.0139 0x09d4  [ 206348CFAA86E7D9AB34CA928E15F1C7, 5FEB1ED9C73CDF089AA24A0E2EB0A38F2E2A8E0E5C6577451333D06254D62A9D ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
21:58:23.0171 0x09d4  vhdmp - ok
21:58:23.0249 0x09d4  [ 95DB34CBAAB29B81B47C317501EB7AAD, 9FDA121F2A8EAA94668604D8E640BD2DBF9F57B112BE07756569F23A041A67C3 ] vhf             C:\WINDOWS\System32\drivers\vhf.sys
21:58:23.0264 0x09d4  vhf - ok
21:58:23.0374 0x09d4  [ 878A9F6B1ECDBA9A8F1D56B0DDCDF456, E5E8E1BBF2E627E840432A59DFD14290D69711A47A49ED0F10A96500A22D3000 ] viaagp          C:\WINDOWS\system32\drivers\viaagp.sys
21:58:23.0374 0x09d4  viaagp - ok
21:58:23.0452 0x09d4  [ 963E0592575BCCEAF1310BE36B3872B5, 2863EEDE974CA4C7F91363CBF09D58A4A7CD1A52FCF916F7660FC5434A586766 ] ViaC7           C:\WINDOWS\System32\drivers\viac7.sys
21:58:23.0452 0x09d4  ViaC7 - ok
21:58:23.0484 0x09d4  [ 990AD55A607CB947A15892C434212280, 2B43D26FFF6258A9FE98586ED3055BE6348822A2B2BC2286AB4C8D4D91BC3528 ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
21:58:23.0499 0x09d4  vmbus - ok
21:58:23.0515 0x09d4  [ E3B6FCFB7896FC86702E76A03EE87F8F, 4E64E5FFC6BAFB2D4087AC2E69662AB904301DF84FA65780A25A08D211725E6B ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
21:58:23.0531 0x09d4  VMBusHID - ok
21:58:23.0656 0x09d4  [ C53B8D3281D816C0CBD3A05113ED642B, 1B700653D1A42C9926747E406BFA2183DEE65B596533F12DD321FD6BB6212F88 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
21:58:23.0702 0x09d4  vmicguestinterface - ok
21:58:23.0734 0x09d4  [ C53B8D3281D816C0CBD3A05113ED642B, 1B700653D1A42C9926747E406BFA2183DEE65B596533F12DD321FD6BB6212F88 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
21:58:23.0749 0x09d4  vmicheartbeat - ok
21:58:23.0765 0x09d4  [ C53B8D3281D816C0CBD3A05113ED642B, 1B700653D1A42C9926747E406BFA2183DEE65B596533F12DD321FD6BB6212F88 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
21:58:23.0781 0x09d4  vmickvpexchange - ok
21:58:23.0796 0x09d4  [ C53B8D3281D816C0CBD3A05113ED642B, 1B700653D1A42C9926747E406BFA2183DEE65B596533F12DD321FD6BB6212F88 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
21:58:23.0812 0x09d4  vmicrdv - ok
21:58:23.0827 0x09d4  [ C53B8D3281D816C0CBD3A05113ED642B, 1B700653D1A42C9926747E406BFA2183DEE65B596533F12DD321FD6BB6212F88 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
21:58:23.0843 0x09d4  vmicshutdown - ok
21:58:23.0859 0x09d4  [ C53B8D3281D816C0CBD3A05113ED642B, 1B700653D1A42C9926747E406BFA2183DEE65B596533F12DD321FD6BB6212F88 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
21:58:23.0859 0x09d4  vmictimesync - ok
21:58:23.0890 0x09d4  [ C53B8D3281D816C0CBD3A05113ED642B, 1B700653D1A42C9926747E406BFA2183DEE65B596533F12DD321FD6BB6212F88 ] vmicvmsession   C:\WINDOWS\System32\ICSvc.dll
21:58:23.0906 0x09d4  vmicvmsession - ok
21:58:23.0921 0x09d4  [ C53B8D3281D816C0CBD3A05113ED642B, 1B700653D1A42C9926747E406BFA2183DEE65B596533F12DD321FD6BB6212F88 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
21:58:23.0937 0x09d4  vmicvss - ok
21:58:23.0968 0x09d4  [ 69CC70090A6E765F539CC97765E55527, AFFE39096FF0AC0E783B670B07F524B979F6D25E7B1F09D0CFED26AF337CFCF9 ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
21:58:23.0968 0x09d4  volmgr - ok
21:58:23.0984 0x09d4  [ D65C55174A16701AF39200A353AD2387, 30A5C8E4254A05034863234276B627A9CD41BEAF1861F708F95D58DAA0079897 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
21:58:24.0015 0x09d4  volmgrx - ok
21:58:24.0031 0x09d4  [ 2E5522E831E616B37F06908B7B56C3B3, 31D0A951695402FBB85BAA05106C8D242F57C9E8B87E759C4C40AA3CA44100CF ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
21:58:24.0046 0x09d4  volsnap - ok
21:58:24.0156 0x09d4  [ 72AECD924E0FC8E0241C1DEEA628F33A, D8A53B033AD5137DC3D40B4BB6B12E8E0273744E76EAFFBC4B73C2156A15AC92 ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
21:58:24.0171 0x09d4  vsmraid - ok
21:58:24.0327 0x09d4  [ 3E838CC7A8F514B7E0885556CC0E8974, 613BEF322636EE3065B5C9768F3FC16C61747A5CC15F447F37651ACABE6E78F7 ] VSS             C:\WINDOWS\system32\vssvc.exe
21:58:24.0374 0x09d4  VSS - ok
21:58:24.0421 0x09d4  [ 1F1AD54C55038FE642AAB73C94BC48EF, DE45B884F7B75EF8416019D0396667DE4EF363C19C64490A7357DB611D93027D ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
21:58:24.0437 0x09d4  VSTXRAID - ok
21:58:24.0484 0x09d4  [ 50F54817390D24C40FAEDA63358D4926, 20AAAB4E4A45320CB4D7FA47C3206A83DA77A3274A8CB110F0D59F137A3283EA ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
21:58:24.0499 0x09d4  vwifibus - ok
21:58:24.0499 0x09d4  [ 86040D1A0206B7776DC4984438288AF2, 9B847F327181CFC9E545EEC3D488B6C84D5078AC0CBDC79FF29F80393D13FD25 ] vwififlt        C:\WINDOWS\system32\drivers\vwififlt.sys
21:58:24.0499 0x09d4  vwififlt - ok
21:58:24.0593 0x09d4  [ 2001B4ADA5F1C36C6BFDED9CAA69AE0F, 5035C65F1A994A1B4E89BC077BCDC02B8C5234F9040B8E5F2C739835181FEF26 ] W32Time         C:\WINDOWS\system32\w32time.dll
21:58:24.0624 0x09d4  W32Time - ok
21:58:24.0796 0x09d4  [ 6EAD119F173B7BBC6B6CEDA6DB2712CD, 2A19FAA2ED89B82A52DC2D807A69D873BF6B5FF12E60B28E1AACC3EF9968DE5A ] w3logsvc        C:\WINDOWS\system32\inetsrv\w3logsvc.dll
21:58:24.0812 0x09d4  w3logsvc - ok
21:58:24.0952 0x09d4  [ A51A05F599B10D8BB7279D609967A5F8, A9221878B2A10260B69205195A24BFAC5CDCC401A0D83B30A80F9855330F4FD8 ] W3SVC           C:\WINDOWS\system32\inetsrv\iisw3adm.dll
21:58:24.0999 0x09d4  W3SVC - ok
21:58:25.0031 0x09d4  [ 4C10F9CAC332906B82B31313AA6C85B0, 5EA753A5B36081773AD44D2D5572D6B471EACD92381B6DDFEE5D3608E293DF95 ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
21:58:25.0031 0x09d4  WacomPen - ok
21:58:25.0093 0x09d4  [ 19E3EB287CEEF565A13071F20EA8FE9F, 847097772B099B7F7542991546E30B452E141BB96637A98267C1168010DC1411 ] WalletService   C:\WINDOWS\system32\WalletService.dll
21:58:25.0124 0x09d4  WalletService - ok
21:58:25.0140 0x09d4  [ A6DC318DD7135250BCB7583E10F82E28, ECC2CD1FE8820567EFB8C74EE1086FD7AC05C185E7CD3B7A2BDF17DC90670298 ] wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:58:25.0140 0x09d4  wanarp - ok
21:58:25.0156 0x09d4  [ A6DC318DD7135250BCB7583E10F82E28, ECC2CD1FE8820567EFB8C74EE1086FD7AC05C185E7CD3B7A2BDF17DC90670298 ] wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:58:25.0156 0x09d4  wanarpv6 - ok
21:58:25.0171 0x2e28  Object send P2P result: true
21:58:25.0171 0x2e28  Object required for P2P: [ B14E3E38986965A586998E8236785D6D ] Netman
21:58:25.0187 0x09d4  [ A51A05F599B10D8BB7279D609967A5F8, A9221878B2A10260B69205195A24BFAC5CDCC401A0D83B30A80F9855330F4FD8 ] WAS             C:\WINDOWS\system32\inetsrv\iisw3adm.dll
21:58:25.0202 0x09d4  WAS - ok
21:58:25.0312 0x09d4  [ FDEC36D4D8D4DF2D07323EC35222866A, 71D94DD5FFBFF125A1F49F942C317F55C16AA72025226A9E6FD9B44E1C149A3F ] wbengine        C:\WINDOWS\system32\wbengine.exe
21:58:25.0375 0x09d4  wbengine - ok
21:58:25.0515 0x09d4  [ C9703EACA4117AC19953CA8D55BFCC04, 4FB9B707596B9D4DE9B308ED0D39D22D3DF334FDF1CDE4AD3EE1E5BA1651C0F6 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
21:58:25.0531 0x09d4  WbioSrvc - ok
21:58:25.0609 0x09d4  [ 0E252820367762781E32C5661C5C7104, 05A17F9ECE5DC3CA40D10CCD803648A02954D8DF08B0EC97B3000F0474F91C64 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
21:58:25.0640 0x09d4  Wcmsvc - ok
21:58:25.0703 0x09d4  [ 5B669B6E60E6D5226B717AAB95DC54B3, 8963B111EEFAE689A1FF798E4EB192EF50F266172D06B27BE6A094A093FBC902 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
21:58:25.0718 0x09d4  wcncsvc - ok
21:58:25.0718 0x09d4  [ A29B811BCF499FDAE9200061351EAAE8, D4F6BF349E50CF5859A29AA9A8253099F863297C43BDE213ECB31FEB7DA19202 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
21:58:25.0734 0x09d4  WcsPlugInService - ok
21:58:25.0781 0x09d4  [ 9437CE842271C16F6CBF77BCF0EC189F, 1B9AEF233F711E2BCF05F2273EB07B2CC45AA6B4EE9141B760C45C447AEC8AB8 ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
21:58:25.0781 0x09d4  WdBoot - ok
21:58:25.0922 0x09d4  [ 4DC928F02FA315F4B08A151F8F8A7CF8, E2750AB8DD43BB7D81C4B3FEFD234576A1B0C9139139BA922F284A645A1DD576 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
21:58:25.0937 0x09d4  Wdf01000 - ok
21:58:26.0015 0x09d4  [ 0CC824E96F998502830AC9AA6F5040BF, 793EF6E09230E04937A9B62DAF3101B4B23D8337959096C93F3EC47D084341F5 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
21:58:26.0031 0x09d4  WdFilter - ok
21:58:26.0140 0x09d4  [ ED90C144D3D69EFAA855FBD96EB9E1F4, 779D71FE3BE6CC30ED521930F213BF12A8BA5B06630EF6FA0737F01B104A0CF9 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
21:58:26.0156 0x09d4  WdiServiceHost - ok
21:58:26.0172 0x09d4  [ ED90C144D3D69EFAA855FBD96EB9E1F4, 779D71FE3BE6CC30ED521930F213BF12A8BA5B06630EF6FA0737F01B104A0CF9 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
21:58:26.0172 0x09d4  WdiSystemHost - ok
21:58:26.0250 0x09d4  [ 80E34787D7AB9C4B24388BAA76D9A2D1, 9F8A3D7068569B8CD8D60B19B653EE68F4CC7D33BA7C98E805A1D622FC40E306 ] wdiwifi         C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
21:58:26.0265 0x09d4  wdiwifi - ok
21:58:26.0344 0x09d4  [ 9D2129AA0B3E8CAB551E80E729B5A059, DB09D5732BFDC91DAC612118BE8C76DCF266C84BC4E94DB20CE309966A3BDE84 ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
21:58:26.0344 0x09d4  WdNisDrv - ok
21:58:26.0468 0x09d4  [ 9BC2396B659F78D4BC5DB3444E6DAE73, 7F739225FBBD7F03FF9A36E9BF6D6F5C5294B41DEECF8FD5B612DC261244CFBC ] WdNisSvc        C:\Program Files\Windows Defender\NisSrv.exe
21:58:26.0500 0x09d4  WdNisSvc - ok
21:58:26.0562 0x09d4  [ 5E716E09E2886BDB7A8F7A3FFDE1DAF2, F11D85069702EBBC37A979022FAABA8A4BE132AF43836AAB5BAF3DA9301DCC4D ] WebClient       C:\WINDOWS\System32\webclnt.dll
21:58:26.0578 0x09d4  WebClient - ok
21:58:26.0593 0x09d4  [ CC8EF23C16E2151550365D87DA7DE621, E6A102B5162CFD42E7CBA8DF0AE88334E08414F88A40D9A01AAE4C5ED56A9F1E ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
21:58:26.0593 0x09d4  Wecsvc - ok
21:58:26.0609 0x09d4  [ 2A6F65503E7B8A6799E55A685BC40843, AEB1436A79697558FF9B5678F6D44E975EB8CE1DA0FBA21B0DFEA971A8FEFA87 ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
21:58:26.0609 0x09d4  WEPHOSTSVC - ok
21:58:26.0625 0x09d4  [ 04F92721FB7685E7A47DF87CFD4A4E75, 24907DB5415F35C7FDC4FED46B62A59EF6DB822265F38E59C3E2674F66F6E460 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
21:58:26.0625 0x09d4  wercplsupport - ok
21:58:26.0640 0x09d4  [ A99B2649CA876E74690A95D83C46FA71, 1C77C93D49E95009276E3A57490C19A467261BCB2D22648EE9B43E3BC2F7EE8D ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
21:58:26.0640 0x09d4  WerSvc - ok
21:58:26.0656 0x09d4  [ 4908DA33D0EBE5868706F0205B241C3B, C6929F4E06F74C7EB8331FEB680A23D65E365A09E0B0A8926E4847F9DA17CC1B ] WFPLWFS         C:\WINDOWS\system32\drivers\wfplwfs.sys
21:58:26.0672 0x09d4  WFPLWFS - ok
21:58:26.0687 0x09d4  [ 0F5A70E6FF566CEC1AB05037D4597A4D, CEB563ACA31F06BC2EEFD7532C7C855836AE06DCAEF5D3A9D6AA6A0EC7BA1531 ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
21:58:26.0703 0x09d4  WiaRpc - ok
21:58:26.0750 0x09d4  [ 9E649CA7603DFE8ABB69568524A616BF, 3A0583080445D5A109EABC3B32679FB4800A2D5DDED69AA8DD2978660FDC68DB ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
21:58:26.0750 0x09d4  WIMMount - ok
21:58:26.0828 0x09d4  [ 8B976D4CA270110111DF4F313DA0E6E8, 7A70CBACF65D8A8CB4FE0667B6F7FC1E57AF939A0319CC4CC13BB24F193E759F ] winachsf        C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
21:58:26.0890 0x09d4  winachsf - ok
21:58:26.0953 0x09d4  [ FF29F4C0ADCC2B177C3CC6E4497D2259, 2D967E7DDFA41BF2189FC5C9D8A024D7BC01DC03CFDFD2A211293ACEEE8D97C2 ] WinDefend       C:\Program Files\Windows Defender\MsMpEng.exe
21:58:26.0953 0x09d4  WinDefend - ok
21:58:26.0968 0x09d4  [ D12B86DACE4F869F17DBFF9D7D6FB10F, 92F4B77FE89B605FB5A8D637A1B1E94E29E0380E678369B3A66843262A733B6D ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
21:58:26.0984 0x09d4  WindowsTrustedRT - ok
21:58:26.0984 0x09d4  [ E0AC5561C8DD901E34F0B58A509E6049, D3395E7A72FFAA1CD0E1A4DCF7C85824C03E4A964CDFB330B0966F8CBDCAD4B7 ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
21:58:26.0984 0x09d4  WindowsTrustedRTProxy - ok
21:58:27.0062 0x09d4  [ 451F905BC7BFF9E1CFF2E7AE76196B2C, C43DBAE72156C47D1EDC88567545FA6E543D2B9AC3BED426550CC6166380BCA6 ] WinDriver6      C:\WINDOWS\system32\drivers\windrvr6.sys
21:58:27.0078 0x09d4  WinDriver6 - ok
21:58:27.0172 0x09d4  [ 6A4D0E6844B92800F9E6AE1F37D9AC22, E6C9AB61190612736BAC803F69CCDB1DF01C004D73BF03DE90F096C8DBBE8014 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
21:58:27.0265 0x09d4  WinHttpAutoProxySvc - ok
21:58:27.0359 0x09d4  [ A76997539BAA7A48F2AB39AC4831FA65, 193FCFF9209B6C2F1B466947D2C5A7E5ECB3D91988ADEED46608EDD8D3E7ED8E ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
21:58:27.0375 0x09d4  winmgmt - ok
21:58:27.0531 0x09d4  [ B4C037FE2596070442F6433188A48987, E68A5AC58B21B3E0806389C5CE8FE005B569111736BF561455E8074D62FE2FED ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
21:58:27.0687 0x09d4  WinRM - ok
21:58:27.0750 0x09d4  [ 131719A42F88CD20E6341C65A918AD3B, AE1A6EA0BE00EEB9280737272B47D6A7F9420D0B25CC376541D6014DFE3781B9 ] WINUSB          C:\WINDOWS\System32\drivers\WinUSB.SYS
21:58:27.0766 0x09d4  WINUSB - ok
21:58:27.0891 0x09d4  [ A950BF5B8DFA3BE16CAD1FFD586C4863, 78C08A6F85CAE208FE210B0B1E94D7299478596ECF2804162DEC0ABB407E06D2 ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
21:58:28.0000 0x09d4  WlanSvc - ok
21:58:28.0078 0x09d4  [ 6067ACEF367E79914AF628FA1E9B5330, 491A705267B48C103E00B26BBD21FA8829DB03A88343CBC27264CEE5DE8C8DEF ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:58:28.0078 0x09d4  wlcrasvc - ok
21:58:28.0187 0x2e28  Object send P2P result: true
21:58:28.0203 0x2e28  Object required for P2P: [ E31B9C22C1B7F245ADA4CF9DB12FBCB7 ] PEAuth
21:58:28.0203 0x09d4  [ EEDBC4388F314B4A8F9F28151C7728D0, C4078E40C448A51AA726F84E6E45B9BC872C8FDC806AF784B6ADF00948F48A5E ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
21:58:28.0297 0x09d4  wlidsvc - ok
21:58:28.0359 0x09d4  [ 013D1BA8ECA6EC3F07E261EA27F12C33, 88E78ED01E3F6969943E0753D93323C491635BA04DD2AF37247846FE11436F86 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
21:58:28.0359 0x09d4  WmiAcpi - ok
21:58:28.0422 0x09d4  [ 2D23F04B0F2CB5E801F1F8068DBAF846, A8684583F43B9C175DF67E815E316F26E381B5781633969D80A4F6B8BB4385F6 ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
21:58:28.0438 0x09d4  wmiApSrv - ok
21:58:28.0594 0x09d4  [ 35739D30A925531CD73164E5B24FBF25, 7DCFC260454D2A2FB437FF1E6D1D21A88E8275DEAADE159D249CEE92329D0234 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
21:58:28.0672 0x09d4  WMPNetworkSvc - ok
21:58:28.0766 0x09d4  [ FD5BC5B3215BABB14F58846659B8F3E9, 2FFDBF7D020288925C0BD2FF99D02F213A5496E8642A603FF30E292AD0A9DE93 ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
21:58:28.0781 0x09d4  Wof - ok
21:58:28.0985 0x09d4  [ 04D880EA0488B6FA7943D5B0652585BB, 707F21F691A0812D5CFCE22EAF29114DE445B3FF4B8D2BC236C73D075A0C8479 ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
21:58:29.0094 0x09d4  workfolderssvc - ok
21:58:29.0156 0x09d4  [ 89A5B1F5BC56D9B2D4EFD930806D74EA, 49B011AF335FECDAA49C4E8C2020422764DF49475E0CB4DC9427D6CFFBB17E78 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
21:58:29.0156 0x09d4  wpcfltr - ok
21:58:29.0172 0x09d4  [ 63CFA956241E825FFC46168DFE254AC4, DD532344482B5394C53DAF08B1E388C3557964220F86D9FAE0F8D146E2406E81 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
21:58:29.0188 0x09d4  WPDBusEnum - ok
21:58:29.0203 0x09d4  [ E2CAC0E886E5DE934794E1BF9E241397, E64C7EC432168A2577F70F094DE5C199DFED899784E3062A8EC467FC1739C923 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
21:58:29.0219 0x09d4  WpdUpFltr - ok
21:58:29.0235 0x09d4  [ 290C9982E976C95CC05FA96F37781E9A, 17B6688AE0A02994F5EAF571019F3BD582A3D55DA0E40C44C348D913E3E0A413 ] WpnService      C:\WINDOWS\system32\WpnService.dll
21:58:29.0235 0x09d4  WpnService - ok
21:58:29.0297 0x09d4  [ 9EA6A73D56202174FA6BB091770ADB6C, 57A599245BCA7A2D475AD2A4A09369C1E914EFC68C3B577FF41D87DFFB5680E9 ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
21:58:29.0297 0x09d4  ws2ifsl - ok
21:58:29.0313 0x09d4  [ F1F7D02E5B1003D9E30837D6D58CFEFF, ADAFE8F93E643E6DAFAB7BDC09981526658C50F0F65C24EEDFC46C7EA27271E9 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
21:58:29.0313 0x09d4  wscsvc - ok
21:58:29.0328 0x09d4  WSearch - ok
21:58:29.0485 0x09d4  [ 96D8A03268709CCC8491E45949907BBD, 097FD3AFB301F58B02D003200762E7938DA957B13D5DB9C27FFF7AFED2B9CA94 ] WSService       C:\WINDOWS\System32\WSService.dll
21:58:29.0625 0x09d4  WSService - ok
21:58:29.0735 0x09d4  [ 8B9384F6A1AA6CA40A8AC185EA1EE957, E86BE29E2D83EFD5D9470900E410CF80E8B335A136A2BC8971D44587B8B8A709 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
21:58:29.0828 0x09d4  wuauserv - ok
21:58:29.0906 0x09d4  [ CD8E310F1D88BD14F6D52664BBDD2367, C4E9BDCF5AA65342A17188B72F05D17B2AEBEF69D05CBF729EB271D3B458615B ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
21:58:29.0922 0x09d4  WudfPf - ok
21:58:29.0938 0x09d4  [ EB34555DC8E1A35054499D43C727B99F, AA3FA113FDFA1B359312953E8309643E0990FDAA385FEA14401A535D3DB426EB ] WUDFRd          C:\WINDOWS\system32\drivers\WudfRd.sys
21:58:29.0953 0x09d4  WUDFRd - ok
21:58:30.0063 0x09d4  [ 5F670944322733FAFCC5775D52F49CFF, 138F7ECB4FEAB7D4583B8E0618C995F9DC04EFDB97914059C7639FF31EA5617A ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
21:58:30.0078 0x09d4  wudfsvc - ok
21:58:30.0094 0x09d4  [ EB34555DC8E1A35054499D43C727B99F, AA3FA113FDFA1B359312953E8309643E0990FDAA385FEA14401A535D3DB426EB ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
21:58:30.0094 0x09d4  WUDFWpdFs - ok
21:58:30.0109 0x09d4  [ EB34555DC8E1A35054499D43C727B99F, AA3FA113FDFA1B359312953E8309643E0990FDAA385FEA14401A535D3DB426EB ] WUDFWpdMtp      C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
21:58:30.0109 0x09d4  WUDFWpdMtp - ok
21:58:30.0188 0x09d4  [ A99C583B3D2337EFBA9709CFC484083F, A2E77D5B5442BE07EE0EC57FE1BE2DFAAF5C043AD12D4A67DDA273C9A99E5311 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
21:58:30.0266 0x09d4  WwanSvc - ok
21:58:30.0331 0x09d4  [ 894F963BE999BA9DB5AAC3AED55B115D, F4ECDD57FC5F6E295414745C2B8A2D9F9074C7035A6902456EE4447560863710 ] XAudio          C:\WINDOWS\system32\DRIVERS\XAudio32.sys
21:58:30.0331 0x09d4  XAudio - ok
21:58:30.0377 0x09d4  [ 311E5D44DDFAD1A139CF780715D5DF41, 981D40D29C25A792B098DA94994F5C8BC749C0F8E07FDAF5DFBE2BE2724770FF ] XblAuthManager  C:\WINDOWS\System32\XblAuthManager.dll
21:58:30.0409 0x09d4  XblAuthManager - ok
21:58:30.0534 0x09d4  [ 8307A6BF0BC8C4E66DBAA10207AE99C3, 55CD8376A370BC163374066EC75EBF10A78AE7924E0A587F7F41F3E2351E1B94 ] XblGameSave     C:\WINDOWS\System32\XblGameSave.dll
21:58:30.0565 0x09d4  XblGameSave - ok
21:58:30.0612 0x09d4  [ 25787766F0482077E263CE619EB67594, 5B822F78DDDC3090EA68BE4177CE8BD7F42B86BE416118B46E170B547B869ACD ] xboxgip         C:\WINDOWS\System32\drivers\xboxgip.sys
21:58:30.0627 0x09d4  xboxgip - ok
21:58:30.0674 0x09d4  [ CFCE918609284374E2264205FD9E5D45, 913FB2A12881A27800232EDDFF20D03EE8F35EEDF77A882B6CB337C9DD67A7AE ] XboxNetApiSvc   C:\WINDOWS\system32\XboxNetApiSvc.dll
21:58:30.0721 0x09d4  XboxNetApiSvc - ok
21:58:30.0784 0x09d4  [ B534D7D556C86616DE06E3B6BDFD7675, F5D20311672FA46AA6260A39473584786D4AD7877AEE83B78F330A869D0BA128 ] xinputhid       C:\WINDOWS\System32\drivers\xinputhid.sys
21:58:30.0784 0x09d4  xinputhid - ok
21:58:30.0846 0x09d4  [ 74EC37B9EAF9FCA015B933A526825C7A, E75D73422B4383210F912B424377D5F2DBBF0E9418A2F450636B689572B1B9F6 ] {22D78859-9CE9-4B77-BF18-AC83E81A9263} C:\Program Files\HP\QuickPlay\000.fcl
21:58:30.0846 0x09d4  {22D78859-9CE9-4B77-BF18-AC83E81A9263} - ok
21:58:30.0846 0x09d4  ================ Scan global ===============================
21:58:30.0909 0x09d4  [ E4D7587625E9208B7827D7284E430A51, 8610CC8A718E4B6F74BEA8713612801B5770F2D405ED11BD358538CE439BB5F3 ] C:\WINDOWS\system32\basesrv.dll
21:58:30.0971 0x09d4  [ 4A783017FE4004231BE3EC9737EBACF1, 708DA853397C2BFE3C957021E60CB8BFC6520A9FE68A83A55587A4696824A25E ] C:\WINDOWS\system32\winsrv.dll
21:58:31.0034 0x09d4  [ C499C38DEB5FC8239B08531A7326E405, 4306E649F2E1C791D8FD78ADF8EDCC68D4D8D4F9DEFCF5EEB2C120BBF92B89EF ] C:\WINDOWS\system32\sxssrv.dll
21:58:31.0081 0x09d4  [ C7F8F28E9586661549C9C22785F58739, 974A72727E885089F9273475157AFF303BE4160AD6A193A20FB58267FEA3B886 ] C:\WINDOWS\system32\services.exe
21:58:31.0096 0x09d4  [ Global ] - ok
21:58:31.0096 0x09d4  ================ Scan MBR ==================================
21:58:31.0112 0x09d4  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:58:31.0440 0x09d4  \Device\Harddisk0\DR0 - ok
21:58:31.0440 0x09d4  ================ Scan VBR ==================================
21:58:31.0440 0x09d4  [ B990609D12823C65A2D39AD2EF2E709D ] \Device\Harddisk0\DR0\Partition1
21:58:31.0487 0x09d4  \Device\Harddisk0\DR0\Partition1 - ok
21:58:31.0487 0x09d4  [ 56F3E1FC826A82397210E406CD5F9484 ] \Device\Harddisk0\DR0\Partition2
21:58:31.0534 0x09d4  \Device\Harddisk0\DR0\Partition2 - ok
21:58:31.0534 0x09d4  ================ Scan generic autorun ======================
21:58:31.0674 0x09d4  [ 7D76D318991A81591BD8A0AE63A3907B, 6103C7817CAF63491C59973AC1F26084F5EB0B51CAD3EF7E7CF9683053CBCBDD ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
21:58:31.0784 0x09d4  SynTPEnh - ok
21:58:31.0893 0x09d4  [ 20DE1CDD37A5D3D4177B8D9FEF907D81, F6CE80984852595A677C92B8C555F9B0D398BAE36768E0D6FC7F8C7211D962D2 ] c:\Program Files\Microsoft Security Client\msseces.exe
21:58:31.0909 0x09d4  MSC - ok
21:58:32.0127 0x09d4  [ 87AD93CC767C9C7AB84635DB64564566, 17F4953C8D9125EC61073C20F98780207395AEF6A3BD52D29A9E9450E744B35B ] C:\Program Files\AVG\Av\avgui.exe
21:58:32.0315 0x09d4  AVG_UI - ok
21:58:32.0456 0x09d4  [ B2D3666199175389D771DD94F5C98594, 4238DC200F718DC425F2CF4C2716289845EF207ADFDB1CAC154271FFF8528D9B ] C:\Program Files\AVG\Framework\Common\avguix.exe
21:58:32.0503 0x09d4  AvgUi - ok
21:58:32.0581 0x09d4  [ 2DBCA4E4BB09FF7F8F171CC364DFAF67, D884B06DBB81541EE05D18F7AA24EBF0FB3920A6A649AB2CFA211ED4111A7AFA ] C:\WINDOWS\system32\rundll32.exe
21:58:32.0581 0x09d4  ShadowPlay - ok
21:58:32.0675 0x09d4  [ 00CB4A1F7F111BFBEF972A682D86CF1C, 04A3F816F5E2F9FEB0E32B3B2C4A371286E88736057C1C18F3A9B181CA1438B9 ] C:\Program Files\Windows Defender\MSASCui.exe
21:58:32.0831 0x09d4  WindowsDefender - ok
21:58:33.0425 0x09d4  [ DD37DC13DF1224A8719208AE5CDE2B63, EA365A7358637C555D8CDEDD59BCA574C8B6EB8BB3C1B8790FEC7D76A37FC4AB ] C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
21:58:33.0566 0x09d4  NvBackend - ok
21:58:33.0972 0x09d4  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\System32\OneDriveSetup.exe
21:58:34.0363 0x09d4  OneDriveSetup - ok
21:58:34.0754 0x09d4  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\System32\OneDriveSetup.exe
21:58:35.0144 0x09d4  OneDriveSetup - ok
21:58:35.0488 0x09d4  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] C:\Users\MATT\AppData\Local\Google\Update\GoogleUpdate.exe
21:58:35.0504 0x09d4  Google Update - ok
21:58:35.0535 0x2e28  Object send P2P result: true
21:58:35.0644 0x09d4  [ B4FF41949C2B05064FD369B017728BC2, FEE8D64939440D26268365E4A7585C0C706CBFBFB7858A6FB0D800BD3F5725E0 ] C:\Program Files\Ruiware\WinPatrol\winpatrol.exe
21:58:35.0738 0x09d4  WinPatrol - ok
21:58:36.0113 0x09d4  [ C355D12FA264B22BA44FC67323EBE819, 22FF84541E3FA15150E95658010EBD09BD928EA64903D14ADC5FEA8FE7B8ADA3 ] C:\Users\MATT\AppData\Roaming\uTorrent\uTorrent.exe
21:58:41.0882 0x1194  Object required for P2P: [ 0AB5A24C47A6DAE3E51748BD91609856 ] PolicyAgent
21:58:43.0413 0x09d4  uTorrent - ok
21:58:43.0523 0x09d4  GoogleDriveSync - ok
21:58:43.0710 0x09d4  [ 9F2ECA252720B25E8FEC1CAB2984B98D, 476EE2929901CD43F15869B763376393AA0942A3B934532055E037C6DCE3CD2D ] C:\Users\MATT\AppData\Local\Microsoft\OneDrive\OneDrive.exe
21:58:43.0757 0x09d4  OneDrive - ok
21:58:44.0398 0x09d4  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\System32\OneDriveSetup.exe
21:58:44.0757 0x1194  Object send P2P result: true
21:58:44.0757 0x1194  Object required for P2P: [ F20245B35228B55324DAEED158CCBA75 ] RasPppoe
21:58:44.0773 0x09d4  OneDriveSetup - ok
21:58:44.0882 0x09d4  [ CB396B37F21C205F00ACE39CF999295A, FD8CB2426D4B9F13480DD823F0479E75316F6486262E88E420398A2C7AB91F57 ] C:\Program Files\Windows Mail\wab.exe
21:58:44.0960 0x09d4  WAB Migrate - ok
21:58:45.0351 0x09d4  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\System32\OneDriveSetup.exe
21:58:45.0679 0x09d4  OneDriveSetup - ok
21:58:45.0695 0x09d4  Waiting for KSN requests completion. In queue: 247
21:58:46.0711 0x09d4  Waiting for KSN requests completion. In queue: 247
21:58:47.0711 0x1194  Object send P2P result: true
21:58:47.0711 0x1194  Object required for P2P: [ 3474F4025781EEA401D709BE23CFC556 ] sbp2port
21:58:47.0726 0x09d4  Waiting for KSN requests completion. In queue: 230
21:58:48.0727 0x09d4  Waiting for KSN requests completion. In queue: 230
21:58:49.0743 0x09d4  Waiting for KSN requests completion. In queue: 227
21:58:50.0618 0x1194  Object send P2P result: true
21:58:50.0618 0x1194  Object required for P2P: [ 3DF09096835E12C5F8BE2DA33EB9C4D3 ] seclogon
21:58:50.0759 0x09d4  Waiting for KSN requests completion. In queue: 218
21:58:51.0774 0x09d4  Waiting for KSN requests completion. In queue: 218
21:58:52.0775 0x09d4  Waiting for KSN requests completion. In queue: 218
21:58:53.0494 0x1194  Object send P2P result: true
21:58:53.0541 0x1194  Object required for P2P: [ 50F54817390D24C40FAEDA63358D4926 ] vwifibus
21:58:53.0791 0x09d4  Waiting for KSN requests completion. In queue: 81
21:58:54.0791 0x09d4  Waiting for KSN requests completion. In queue: 81
21:58:55.0807 0x09d4  Waiting for KSN requests completion. In queue: 81
21:58:56.0417 0x1194  Object send P2P result: true
21:58:56.0417 0x1194  Object required for P2P: [ A51A05F599B10D8BB7279D609967A5F8 ] W3SVC
21:58:56.0807 0x09d4  Waiting for KSN requests completion. In queue: 77
21:58:57.0823 0x09d4  Waiting for KSN requests completion. In queue: 77
21:58:58.0839 0x09d4  Waiting for KSN requests completion. In queue: 77
21:58:59.0448 0x1194  Object send P2P result: true
21:58:59.0448 0x1194  Object required for P2P: [ A51A05F599B10D8BB7279D609967A5F8 ] WAS
21:58:59.0854 0x09d4  Waiting for KSN requests completion. In queue: 76
21:59:00.0855 0x09d4  Waiting for KSN requests completion. In queue: 76
21:59:01.0871 0x09d4  Waiting for KSN requests completion. In queue: 76
21:59:02.0872 0x09d4  Waiting for KSN requests completion. In queue: 76
21:59:03.0340 0x1194  Object send P2P result: true
21:59:03.0340 0x1194  Object required for P2P: [ CC8EF23C16E2151550365D87DA7DE621 ] Wecsvc
21:59:03.0887 0x09d4  Waiting for KSN requests completion. In queue: 57
21:59:04.0903 0x09d4  Waiting for KSN requests completion. In queue: 57
21:59:05.0904 0x09d4  Waiting for KSN requests completion. In queue: 57
21:59:06.0919 0x09d4  Waiting for KSN requests completion. In queue: 57
21:59:07.0201 0x1194  Object send P2P result: true
21:59:07.0216 0x1194  Object required for P2P: [ 35739D30A925531CD73164E5B24FBF25 ] WMPNetworkSvc
21:59:07.0920 0x09d4  Waiting for KSN requests completion. In queue: 36
21:59:08.0921 0x09d4  Waiting for KSN requests completion. In queue: 36
21:59:09.0936 0x09d4  Waiting for KSN requests completion. In queue: 36
21:59:10.0186 0x1194  Object send P2P result: true
21:59:10.0186 0x1194  Object required for P2P: [ 96D8A03268709CCC8491E45949907BBD ] WSService
21:59:10.0952 0x09d4  Waiting for KSN requests completion. In queue: 27
21:59:11.0953 0x09d4  Waiting for KSN requests completion. In queue: 27
21:59:12.0953 0x09d4  Waiting for KSN requests completion. In queue: 27
21:59:13.0141 0x1194  Object send P2P result: true
21:59:14.0000 0x09d4  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.8.204.0 ), 0x61000 ( enabled : updated )
21:59:14.0032 0x09d4  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.9.10586.0 ), 0x60100 ( disabled : updated )
21:59:14.0203 0x09d4  AV detected via SS2: AVG AntiVirus Free Edition, C:\Program Files\AVG\Av\avgwsc.exe ( 16.12.0.7294 ), 0x41000 ( enabled : updated )
21:59:14.0219 0x09d4  Win FW state via NFP2: enabled ( trusted )
21:59:16.0923 0x09d4  ============================================================
21:59:16.0923 0x09d4  Scan finished
21:59:16.0923 0x09d4  ============================================================
21:59:16.0939 0x1fa0  Detected object count: 0
21:59:16.0939 0x1fa0  Actual detected object count: 0
 
No log for the aswmbr scan.  I didn't see what happened to give that no bootable media message either.  Do you still want me to run it and press fix?





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users