Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Internet Security Alert! Interesting Observation


  • This topic is locked This topic is locked
69 replies to this topic

#1 Madfod

Madfod

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:57 AM

Posted 27 February 2018 - 07:13 PM

"Quote" from billjordan:

"I've got a machine that keeps getting the Internet Security Alert! Code: 055BCCAC9FEC pop up messages.  I've run through the steps in https://www.bleepingcomputer.com/virus-removal/remove-the-internet-security-alert-tech-support-scam and thought it was licked with a few items that were removed, but it just appeared again.  Oddly enough, this pop-up seems to be browser agnostic.  I've had it pop up in Firefox originally, Chrome a few days ago, and most recently it appeared in Edge.

 

post-1084792-0-73989200-1518187188_thumb

 

post-1084792-0-30021000-1518187204_thumb

 

Quote JSntgRvr.  "Lets edit the HOSTS file:"

Thanks for the help JSntgRvr.  I absolutely understand that it's not infected and is a scam.  Usually I'm pretty good at getting rid of these, but this one has me stumped.

 

Quote billjordan "I'll make the change to the HOSTS file shortly though I'm not sure how much it will help.  Every time I get that popup message, it's a different IP address and a different phone number that shows up in the URL and pop-up message, but worth a shot."

 

 

Hi everybody!

I am having this same issue, and for the life of me cannot get rid of it. This post describes almost exactly what I had for extensions, in Chrome..., same agnostic behavior... Furthermore I am able to reproduce the pop on Other computers.  I was home sick a few weeks ago and logged into my Work email accnt.,  and Low and Behold it pops up on my home computer, which has never had this, or any other malware afflicting it, it is strictly for gaming. Within two minutes of logging into ...@sbcglobal.net  the pop-up occurred. One can Never say Never,  but I am almost certain it has not been compromised, with malware..., since Win10 was Clean Installed, back during the Beta release. Although my Home computer has never been infected, the email accnt,  ...@sbcglobal.net I am using, I am Sure, is a member of the Dark Web, based on incoming email with obvious, Dubious intentions... 

 

   Another interesting facet, is that it does not occur while browsing, unless I am logged into the mail accnt. And when I say Browsing, I dont mean Surfing, I only visit websites from Distributors/Dealers of promotional items, Directly , not form Google Search... Most are Secure websites found in the Sage directory.  I can precipitate the the popup by copy/cut from an email, or flipping back and forth thru the mail, or opening one of my folders. It rarely happens while browsing from other tabs, although, it occurs occasionally,  while logged in to mail. And have never seen it pop up while browsing, without being logged in to mail. Also if I click on the check box enough, I finally get the Chrome warning" You are About to Visit..."   Stay or Leave... Once that pops up I can close the Tab normally, otherwise TaskMon is the only way to close it.

 

   Having read extensively on this topic, I find conflicting opinions on whether it resides on the PC or not. I have been removing malware from computers since Win95, with a 98% success rate, and would agree with the "File is on the PC" camp, however, I have scanned this PC with everything I can throw at it, and find Nothing! I know from experience that files/programs can be quite obscure, and sometimes it takes Forgetting about all the scanners/finders, and use your Gut instincts and Powers of Observation to root out the most obscure intrusions... So at this point I am not so sure it is resident.

 

   I have removed Java, all media players, and all 3rd party programming/apps, scanned and deleted files in and out of Safe Mode, thinking Java or Adobe had been hijacked... but to no avail.  I am not privy to All the processes/scripts that Normally run in an Email server,  Nor am I an Engineer,or Systems Analyst...so I am kinda lost in that context.  Outside Java and Adobe or a few other Known Non-intrusive add-ons within the browser I am not sure what the potential might be...

   

   Is it possible the mail server  is serving UP this little beast ?  

I have never seen such a pesky, persistent bug like this one, any help or insight would be greatly appreciated... Thanks in advance !

 

Madfod  :deadhorse: 

 

Attached File  Addition.txt   48.75KB   5 downloads

Attached File  FRST.txt   77.06KB   8 downloads


Edited by hamluis, 27 February 2018 - 07:55 PM.


BC AdBot (Login to Remove)

 


#2 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,635 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:02:57 AM

Posted 27 February 2018 - 07:38 PM

Hi

Welcome :)

I'll be helping you with your computer.

Please read this post completely before beginning. If there's anything that you do not understand, please don't hesitate to ask before proceeding.

Please take note of the guidelines for this fix:
  • Please note that I am a volunteer. I do have a family, a career, and other endeavors that may prevent immediate responses that meet your schedule. Do note that the differences in time zones could present a problem as well. Your patience and understanding will be greatly appreciated.
  • First of all, the procedures we are about to perform are specific to your problem and should only be used on this specific computer.
  • Do not make any changes to your computer that include installing/uninstalling programs, deleting files, modifying the registry, nor running scanners or tools of any kind unless specifically requested by me.
  • Please read ALL instructions carefully and perform the steps fully and in the order they are written.
  • If things appear to be better, let me know. Just because the symptoms no longer exist as before, does not mean that you are clean.
  • Continue to read and follow my instructions until I tell you that your machine is clean.
  • If you have any questions at all, please do not hesitate to ask before performing the task that I ask of you, and please wait for my reply before you proceed.
  • Scanning with programs and reading the logs do take a fair amount of time. Again, your patience will be necessary. :)
Let's begin... :)

I will be reviewing your logs. BRB

No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#3 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,635 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:02:57 AM

Posted 27 February 2018 - 08:43 PM

  • Highlight the entire content of the quote box below.

Start::
FirewallRules: [{C07308EB-2F65-4840-89B5-8E2429B9E20F}] => (Allow) LPort=5357
1999-01-12 10:34 - 1999-01-12 10:34 - 000023541 _____ () C:\Users\Brenda new\lang.dat
1998-07-27 17:41 - 1998-07-27 17:41 - 000000450 _____ () C:\Users\Brenda new\os.dat
1999-01-12 11:42 - 1999-01-12 11:42 - 000073728 _____ (InstallShield Software Corporation) C:\Users\Brenda new\Setup.exe
1998-10-27 13:06 - 1998-10-27 13:06 - 000027648 _____ (InstallShield Software Corporation) C:\Users\Brenda new\_ISDel.exe
1998-09-29 16:34 - 1998-09-29 16:34 - 000034816 _____ (InstallShield Software Corporation) C:\Users\Brenda new\_Setup.dll
2016-07-06 08:29 - 2016-07-06 08:48 - 000000115 _____ () C:\Users\Brenda new\AppData\Roaming\LogFile.txt
2017-06-13 11:29 - 2017-06-13 11:29 - 000036195 _____ () C:\Users\Brenda new\AppData\Roaming\QBFileDrTool.log
2018-01-26 16:45 - 2018-01-26 16:45 - 000272988 _____ () C:\Users\Brenda new\AppData\Local\ars.cache
2015-12-11 15:20 - 2016-04-02 11:54 - 000855645 _____ () C:\Users\Brenda new\AppData\Local\BTServer.log
2018-01-26 16:45 - 2018-01-26 16:45 - 000720965 _____ () C:\Users\Brenda new\AppData\Local\census.cache
2018-01-26 15:54 - 2018-01-26 15:54 - 000000036 _____ () C:\Users\Brenda new\AppData\Local\housecall.guid.cache
2017-11-01 13:05 - 2017-11-01 13:05 - 000000869 _____ () C:\Users\Brenda new\AppData\Local\recently-used.xbel
2016-06-21 14:04 - 2016-08-26 13:12 - 000007600 _____ () C:\Users\Brenda new\AppData\Local\resmon.resmoncfg
2018-01-26 16:07 - 2018-01-26 16:07 - 000000010 _____ () C:\Users\Brenda new\AppData\Local\sponge.last.runtime.cache
FirewallRules: [{527242E7-3E9F-4F7B-AC57-0FF221550008}] => (Allow) LPort=2869
AlternateDataStreams: C:\ProgramData\Temp:5C321E34 [125]
AlternateDataStreams: C:\Users\Brenda new\Desktop\flag1.jpeg:3or4kl4x13tuuug3Byamue2s4b [97]
AlternateDataStreams: C:\Users\Brenda new\Desktop\flag1.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Brenda new\Desktop\flag2.jpeg:3or4kl4x13tuuug3Byamue2s4b [97]
AlternateDataStreams: C:\Users\Brenda new\Desktop\flag2.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Brenda new\Desktop\flag_1.jpeg:3or4kl4x13tuuug3Byamue2s4b [97]
AlternateDataStreams: C:\Users\Brenda new\Desktop\flag_1.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Brenda new\Desktop\flag_2.jpeg:3or4kl4x13tuuug3Byamue2s4b [97]
AlternateDataStreams: C:\Users\Brenda new\Desktop\flag_2.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Brenda new\Desktop\IRW.jpeg:3or4kl4x13tuuug3Byamue2s4b [97]
AlternateDataStreams: C:\Users\Brenda new\Desktop\IRW.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Brenda new\Desktop\Meeks.jpeg:3or4kl4x13tuuug3Byamue2s4b [97]
AlternateDataStreams: C:\Users\Brenda new\Desktop\Meeks.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
FirewallRules: [{8D802168-C852-43D7-B3D6-65B35F7C2D0C}] => (Allow) LPort=1900
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{F002C8AA-8BB1-4B6B-AB8B-1ACD27D6080C}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
Tcpip\..\Interfaces\{FEF9C558-5046-4FF8-85F3-E5B4B780BBA9}: [DhcpNameServer] 192.168.1.1
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - No File
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
CMD: Echo 0.0.0.0 unms.elcarpenter.com >> C:\windows\system32\Drivers\etc\hosts
CMD: Echo 0.0.0.0 atl-bb1-link.telia.net >> C:\windows\system32\Drivers\etc\hosts
CMD: Echo 0.0.0.0 ash-bb3-link.telia.net >> C:\windows\system32\Drivers\etc\hosts
CMD: Echo 0.0.0.0 nyk-bb3-link.telia.net >> C:\windows\system32\Drivers\etc\hosts
CMD: Echo 0.0.0.0 nyk-b3-link.telia.net >> C:\windows\system32\Drivers\etc\hosts
CMD: fltmc instances
Folder: C:\Windows\System32\Drivers
Reg: Reg query "HKLM\SYSTEM\Select"
Removeproxy:
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: ipconfig /flushdns
CMD: netsh winsock reset catalog
CMD: netsh int ip reset C:\resettcpip.txt
CMD: FOR /F "usebackq delims==" %i IN (`wevtutil el`) DO wevtutil cl "%i"
CMD: Bitsadmin /Reset /Allusers
EMPTYTEMP:
Reboot:
End::

  • Right click on the highlighted text and select Copy.
  • Start FRST (FRST64) with Administrator privileges
  • Press the Fix button. FRST will process the lines copied above from the clipboard.
  • When finished, a log file (Fixlog.txt) will pop up and saved in the same location the tool was ran from.

Please copy and paste its contents in your next reply.

 

If possible, right click on the popup, click on View Page Source and save that information as a text file. Zip that file a upload it here.

 

Let me know when done.


No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#4 Madfod

Madfod
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:57 AM

Posted 28 February 2018 - 10:28 AM

I understand... take your time , I have been at this for a month now, a few more days will not be missed...
Here is the report you requested.
I tried to copy the source code yesterday but everything you click on either minimizes or full screens the popup, and i didnt think to use the hot key , but it seems there is no hotkey in Chrome for viewing source code, only the console/ui, but i will look again.
I have not been able to precipitate the popup after running FRST fix, so i will try throughout the day to make that observation.
Thanks for your time...
Madfod  :deadhorse:
 
Fix result of Farbar Recovery Scan Tool (x64) Version: 28.02.2018
Ran by Brenda new (28-02-2018 08:45:57) Run:1
Running from C:\Users\Brenda new\Desktop
Loaded Profiles: Brenda new & QBDataServiceUser27 (Available Profiles: Brenda new & Edwards & QBDataServiceUser18 & QBDataServiceUser27)
Boot Mode: Normal
==============================================
 
fixlist content:
*****************
FirewallRules: [{C07308EB-2F65-4840-89B5-8E2429B9E20F}] => (Allow) LPort=5357
1999-01-12 10:34 - 1999-01-12 10:34 - 000023541 _____ () C:\Users\Brenda new\lang.dat
1998-07-27 17:41 - 1998-07-27 17:41 - 000000450 _____ () C:\Users\Brenda new\os.dat
1999-01-12 11:42 - 1999-01-12 11:42 - 000073728 _____ (InstallShield Software Corporation) C:\Users\Brenda new\Setup.exe
1998-10-27 13:06 - 1998-10-27 13:06 - 000027648 _____ (InstallShield Software Corporation) C:\Users\Brenda new\_ISDel.exe
1998-09-29 16:34 - 1998-09-29 16:34 - 000034816 _____ (InstallShield Software Corporation) C:\Users\Brenda new\_Setup.dll
2016-07-06 08:29 - 2016-07-06 08:48 - 000000115 _____ () C:\Users\Brenda new\AppData\Roaming\LogFile.txt
2017-06-13 11:29 - 2017-06-13 11:29 - 000036195 _____ () C:\Users\Brenda new\AppData\Roaming\QBFileDrTool.log
2018-01-26 16:45 - 2018-01-26 16:45 - 000272988 _____ () C:\Users\Brenda new\AppData\Local\ars.cache
2015-12-11 15:20 - 2016-04-02 11:54 - 000855645 _____ () C:\Users\Brenda new\AppData\Local\BTServer.log
2018-01-26 16:45 - 2018-01-26 16:45 - 000720965 _____ () C:\Users\Brenda new\AppData\Local\census.cache
2018-01-26 15:54 - 2018-01-26 15:54 - 000000036 _____ () C:\Users\Brenda new\AppData\Local\housecall.guid.cache
2017-11-01 13:05 - 2017-11-01 13:05 - 000000869 _____ () C:\Users\Brenda new\AppData\Local\recently-used.xbel
2016-06-21 14:04 - 2016-08-26 13:12 - 000007600 _____ () C:\Users\Brenda new\AppData\Local\resmon.resmoncfg
2018-01-26 16:07 - 2018-01-26 16:07 - 000000010 _____ () C:\Users\Brenda new\AppData\Local\sponge.last.runtime.cache
FirewallRules: [{527242E7-3E9F-4F7B-AC57-0FF221550008}] => (Allow) LPort=2869
AlternateDataStreams: C:\ProgramData\Temp:5C321E34 [125]
AlternateDataStreams: C:\Users\Brenda new\Desktop\flag1.jpeg:3or4kl4x13tuuug3Byamue2s4b [97]
AlternateDataStreams: C:\Users\Brenda new\Desktop\flag1.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Brenda new\Desktop\flag2.jpeg:3or4kl4x13tuuug3Byamue2s4b [97]
AlternateDataStreams: C:\Users\Brenda new\Desktop\flag2.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Brenda new\Desktop\flag_1.jpeg:3or4kl4x13tuuug3Byamue2s4b [97]
AlternateDataStreams: C:\Users\Brenda new\Desktop\flag_1.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Brenda new\Desktop\flag_2.jpeg:3or4kl4x13tuuug3Byamue2s4b [97]
AlternateDataStreams: C:\Users\Brenda new\Desktop\flag_2.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Brenda new\Desktop\IRW.jpeg:3or4kl4x13tuuug3Byamue2s4b [97]
AlternateDataStreams: C:\Users\Brenda new\Desktop\IRW.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Brenda new\Desktop\Meeks.jpeg:3or4kl4x13tuuug3Byamue2s4b [97]
AlternateDataStreams: C:\Users\Brenda new\Desktop\Meeks.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
FirewallRules: [{8D802168-C852-43D7-B3D6-65B35F7C2D0C}] => (Allow) LPort=1900
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{F002C8AA-8BB1-4B6B-AB8B-1ACD27D6080C}: [NameServer] 8.8.8.8,8.8.4.4,4.2.2.1,4.2.2.2,208.67.222.222,208.67.220.220,8.26.56.26,8.20.247.20,156.154.70.1,156.154.71.1
Tcpip\..\Interfaces\{FEF9C558-5046-4FF8-85F3-E5B4B780BBA9}: [DhcpNameServer] 192.168.1.1
GroupPolicy: Restriction - Chrome <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - No File
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
CMD: Echo 0.0.0.0 unms.elcarpenter.com >> C:\windows\system32\Drivers\etc\hosts
CMD: Echo 0.0.0.0 atl-bb1-link.telia.net >> C:\windows\system32\Drivers\etc\hosts
CMD: Echo 0.0.0.0 ash-bb3-link.telia.net >> C:\windows\system32\Drivers\etc\hosts
CMD: Echo 0.0.0.0 nyk-bb3-link.telia.net >> C:\windows\system32\Drivers\etc\hosts
CMD: Echo 0.0.0.0 nyk-b3-link.telia.net >> C:\windows\system32\Drivers\etc\hosts
CMD: fltmc instances
Folder: C:\Windows\System32\Drivers
Reg: Reg query "HKLM\SYSTEM\Select"
Removeproxy:
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: ipconfig /flushdns
CMD: netsh winsock reset catalog
CMD: netsh int ip reset C:\resettcpip.txt
CMD: FOR /F "usebackq delims==" %i IN (`wevtutil el`) DO wevtutil cl "%i"
CMD: Bitsadmin /Reset /Allusers
EMPTYTEMP:
Reboot:
 
*****************
 
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{C07308EB-2F65-4840-89B5-8E2429B9E20F}" => removed successfully
C:\Users\Brenda new\lang.dat => moved successfully
C:\Users\Brenda new\os.dat => moved successfully
C:\Users\Brenda new\Setup.exe => moved successfully
C:\Users\Brenda new\_ISDel.exe => moved successfully
C:\Users\Brenda new\_Setup.dll => moved successfully
C:\Users\Brenda new\AppData\Roaming\LogFile.txt => moved successfully
C:\Users\Brenda new\AppData\Roaming\QBFileDrTool.log => moved successfully
C:\Users\Brenda new\AppData\Local\ars.cache => moved successfully
C:\Users\Brenda new\AppData\Local\BTServer.log => moved successfully
C:\Users\Brenda new\AppData\Local\census.cache => moved successfully
C:\Users\Brenda new\AppData\Local\housecall.guid.cache => moved successfully
C:\Users\Brenda new\AppData\Local\recently-used.xbel => moved successfully
C:\Users\Brenda new\AppData\Local\resmon.resmoncfg => moved successfully
C:\Users\Brenda new\AppData\Local\sponge.last.runtime.cache => moved successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{527242E7-3E9F-4F7B-AC57-0FF221550008}" => removed successfully
C:\ProgramData\Temp => ":5C321E34" ADS removed successfully
C:\Users\Brenda new\Desktop\flag1.jpeg => ":3or4kl4x13tuuug3Byamue2s4b" ADS could not remove.
C:\Users\Brenda new\Desktop\flag1.jpeg => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully
C:\Users\Brenda new\Desktop\flag2.jpeg => ":3or4kl4x13tuuug3Byamue2s4b" ADS could not remove.
C:\Users\Brenda new\Desktop\flag2.jpeg => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully
C:\Users\Brenda new\Desktop\flag_1.jpeg => ":3or4kl4x13tuuug3Byamue2s4b" ADS could not remove.
C:\Users\Brenda new\Desktop\flag_1.jpeg => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully
C:\Users\Brenda new\Desktop\flag_2.jpeg => ":3or4kl4x13tuuug3Byamue2s4b" ADS could not remove.
C:\Users\Brenda new\Desktop\flag_2.jpeg => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully
C:\Users\Brenda new\Desktop\IRW.jpeg => ":3or4kl4x13tuuug3Byamue2s4b" ADS could not remove.
C:\Users\Brenda new\Desktop\IRW.jpeg => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully
C:\Users\Brenda new\Desktop\Meeks.jpeg => ":3or4kl4x13tuuug3Byamue2s4b" ADS could not remove.
C:\Users\Brenda new\Desktop\Meeks.jpeg => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8D802168-C852-43D7-B3D6-65B35F7C2D0C}" => removed successfully
"HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\\DhcpNameServer" => removed successfully
"HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{F002C8AA-8BB1-4B6B-AB8B-1ACD27D6080C}\\NameServer" => removed successfully
"HKLM\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{FEF9C558-5046-4FF8-85F3-E5B4B780BBA9}\\DhcpNameServer" => removed successfully
C:\windows\system32\GroupPolicy\Machine => moved successfully
C:\windows\system32\GroupPolicy\GPT.ini => moved successfully
C:\windows\SysWOW64\GroupPolicy\GPT.ini => moved successfully
"HKLM\SOFTWARE\Policies\Google" => removed successfully
"HKLM\Software\Classes\PROTOCOLS\Handler\livecall" => removed successfully
HKLM\Software\Classes\CLSID\{828030A1-22C1-4009-854F-8E305202313F} => key not found
"HKLM\Software\Classes\PROTOCOLS\Handler\msnim" => removed successfully
HKLM\Software\Classes\CLSID\{828030A1-22C1-4009-854F-8E305202313F} => key not found
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers\00avast" => removed successfully
HKLM\Software\Classes\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found
 
========= Echo 0.0.0.0 unms.elcarpenter.com >> C:\windows\system32\Drivers\etc\hosts =========
 
0.0.0.0 unms.elcarpenter.com 
 
========= End of CMD: =========
 
 
========= Echo 0.0.0.0 atl-bb1-link.telia.net >> C:\windows\system32\Drivers\etc\hosts =========
 
0.0.0.0 atl-bb1-link.telia.net 
 
========= End of CMD: =========
 
 
========= Echo 0.0.0.0 ash-bb3-link.telia.net >> C:\windows\system32\Drivers\etc\hosts =========
 
0.0.0.0 ash-bb3-link.telia.net 
 
========= End of CMD: =========
 
 
========= Echo 0.0.0.0 nyk-bb3-link.telia.net >> C:\windows\system32\Drivers\etc\hosts =========
 
0.0.0.0 nyk-bb3-link.telia.net 
 
========= End of CMD: =========
 
 
========= Echo 0.0.0.0 nyk-b3-link.telia.net >> C:\windows\system32\Drivers\etc\hosts =========
 
0.0.0.0 nyk-b3-link.telia.net 
 
========= End of CMD: =========
 
 
========= fltmc instances =========
 
Filter                Volume Name                              Altitude        Instance Name      Frame  VlStatus
--------------------  -------------------------------------  ------------  ---------------------  -----  --------
MpFilter              \Device\Mup                             328000       MpFilter Instance        0    
MpFilter              C:                                      328000       MpFilter Instance        0    
MpFilter              D:                                      328000       MpFilter Instance        0    
MpFilter              \Device\HarddiskVolume1                 328000       MpFilter Instance        0    
MpFilter              \Device\HarddiskVolumeShadowCopy9       328000       MpFilter Instance        0    
luafv                 C:                                      135000       luafv                    0    
FileInfo              \Device\Mup                              45000       FileInfo                 0    
FileInfo              C:                                       45000       FileInfo                 0    
FileInfo              D:                                       45000       FileInfo                 0    
FileInfo              \Device\HarddiskVolume1                  45000       FileInfo                 0    
FileInfo              \Device\HarddiskVolumeShadowCopy9        45000       FileInfo                 0    
 
========= End of CMD: =========
 
 
========================= Folder: C:\Windows\System32\Drivers ========================
 
2015-12-11 15:20 - 2015-12-11 15:20 - 000000000 _RASH [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\103C_HP_cPC_750-175se_Y53316J_0U_Q2MD549_E15AM3FCW604_4A_I2B4B_SHP_V1.04_BA0.07_T151026_W748-1_L409_M16320_J2000_7Intel_86E3_93.40_#151201_N10EC8168;10ECB723_Z_G10DE1382_Ohp DVDRW DU8A6SH SCSI CdRom Device.MRK
2009-07-13 18:06 - 2009-07-13 18:06 - 000068096 ____A [64EDD3F59DB321947969FDF1DD747323] (Microsoft Corporation) C:\Windows\System32\Drivers\1394bus.sys
2010-11-20 21:23 - 2010-11-20 21:23 - 000229888 ____A [A87D604AEA360176311474C87A63BB88] (Microsoft Corporation) C:\Windows\System32\Drivers\1394ohci.sys
2010-11-20 21:23 - 2010-11-20 21:23 - 000334208 ____A [D81D9E70B8A6DD14D42D7B4EFA65D5F2] (Microsoft Corporation) C:\Windows\System32\Drivers\acpi.sys
2010-11-20 21:23 - 2010-11-20 21:23 - 000012800 ____A [99F8E788246D495CE3794D7E7821D2CA] (Microsoft Corporation) C:\Windows\System32\Drivers\acpipmi.sys
2009-06-10 14:36 - 2009-07-13 19:52 - 000491088 ____A [2F6B34B83843F0C5118B63AC634F5BF4] (Adaptec, Inc.) C:\Windows\System32\Drivers\adp94xx.sys
2009-07-13 15:59 - 2009-07-13 19:52 - 000339536 ____A [597F78224EE9224EA1A13D6350CED962] (Adaptec, Inc.) C:\Windows\System32\Drivers\adpahci.sys
2009-07-13 15:59 - 2009-07-13 19:52 - 000182864 ____A [E109549C90F62FB570B9540C4B148E54] (Adaptec, Inc.) C:\Windows\System32\Drivers\adpu320.sys
2017-05-10 13:43 - 2017-04-04 08:53 - 000496128 ____A [0DC2A9882540DEA4A55B08785E09D8FC] (Microsoft Corporation) C:\Windows\System32\Drivers\afd.sys
2009-07-13 18:10 - 2009-07-13 18:10 - 000060416 ____A [7ECFF9B22276B73F43A99A15A6094E90] (Microsoft Corporation) C:\Windows\System32\Drivers\agilevpn.sys
2009-07-13 17:38 - 2009-07-13 19:52 - 000061008 ____A [608C14DBA7299D8CB6ED035A68A15799] (Microsoft Corporation) C:\Windows\System32\Drivers\AGP440.sys
2009-07-13 17:19 - 2009-07-13 19:52 - 000015440 ____A [5812713A477A3AD7363C7438CA2EE038] (Acer Laboratories Inc.) C:\Windows\System32\Drivers\aliide.sys
2009-07-13 17:19 - 2009-07-13 19:52 - 000015440 ____A [1FF8B4431C353CE385C875F194924C0C] (Microsoft Corporation) C:\Windows\System32\Drivers\amdide.sys
2009-07-13 17:19 - 2009-07-13 17:19 - 000064512 ____A [7024F087CFF1833A806193EF9D22CDA9] (Microsoft Corporation) C:\Windows\System32\Drivers\amdk8.sys
2009-07-13 17:19 - 2009-07-13 17:19 - 000060928 ____A [1E56388B3FE0D031C44144EB8C4D6217] (Microsoft Corporation) C:\Windows\System32\Drivers\amdppm.sys
2013-12-03 19:18 - 2013-12-03 19:18 - 000107904 ____A [D4121AE6D0C0E7E13AA221AA57EF2D49] (Advanced Micro Devices) C:\Windows\System32\Drivers\amdsata.sys
2009-06-10 14:37 - 2009-07-13 19:52 - 000194128 ____A [F67F933E79241ED32FF46A4F29B5120B] (AMD Technologies Inc.) C:\Windows\System32\Drivers\amdsbs.sys
2013-12-03 19:18 - 2013-12-03 19:18 - 000027008 ____A [540DAF1CEA6094886D72126FD7C33048] (Advanced Micro Devices) C:\Windows\System32\Drivers\amdxata.sys
2018-02-14 07:14 - 2018-01-12 10:11 - 000062464 ____A [EA01EDE8A8A2D6D5C21533542510D006] (Microsoft Corporation) C:\Windows\System32\Drivers\appid.sys
2009-07-13 15:59 - 2009-07-13 19:52 - 000087632 ____A [C484F8CEB1717C540242531DB7845C4E] (Adaptec, Inc.) C:\Windows\System32\Drivers\arc.sys
2009-07-13 15:59 - 2009-07-13 19:52 - 000097856 ____A [019AF6924AEFE7839F61C830227FE79C] (Adaptec, Inc.) C:\Windows\System32\Drivers\arcsas.sys
2009-07-13 18:10 - 2009-07-13 18:10 - 000023040 ____A [769765CE2CC62867468CEA93969B2242] (Microsoft Corporation) C:\Windows\System32\Drivers\asyncmac.sys
2009-07-13 17:19 - 2009-07-13 19:52 - 000024128 ____A [02062C0B390B7729EDC9E69C680A6F3C] (Microsoft Corporation) C:\Windows\System32\Drivers\atapi.sys
2013-12-03 19:15 - 2013-12-03 19:15 - 000155584 ____A [059F00DEF82BF41E433B7ED465847726] (Microsoft Corporation) C:\Windows\System32\Drivers\ataport.sys
2009-06-10 14:34 - 2009-06-10 14:34 - 000270848 ____A [B5ACE6968304A3900EEB1EBFD9622DF2] (Broadcom Corporation) C:\Windows\System32\Drivers\b57nd60a.sys
2009-07-13 17:31 - 2009-07-13 19:52 - 000028240 ____A [F4DE2AE7A9E1BADAC70BC71EA2C17612] (Microsoft Corporation) C:\Windows\System32\Drivers\battc.sys
2009-07-13 18:00 - 2009-07-13 18:00 - 000006656 ____A [16A47CE2DECC9B099349A5F840654746] (Microsoft Corporation) C:\Windows\System32\Drivers\beep.sys
2009-07-13 17:35 - 2009-07-13 17:35 - 000045056 ____A [61583EE3C3A17003C4ACD0475646B4D3] (Microsoft Corporation) C:\Windows\System32\Drivers\blbdrive.sys
2016-11-09 02:18 - 2016-10-05 08:54 - 000090112 ____A [ABA3984C822E4D3F889699912D85D6C5] (Microsoft Corporation) C:\Windows\System32\Drivers\bowser.sys
2009-07-13 19:19 - 2009-06-10 14:41 - 000018432 ____A [F09EEE9EDC320B5E1501F749FDE686C8] (Brother Industries, Ltd.) C:\Windows\System32\Drivers\BrFiltLo.sys
2009-07-13 19:20 - 2009-06-10 14:41 - 000008704 ____A [B114D3098E9BDB8BEA8B053685831BE6] (Brother Industries, Ltd.) C:\Windows\System32\Drivers\BrFiltUp.sys
2009-07-13 19:05 - 2009-07-13 19:01 - 000095232 ____A [5C2F352A4E961D72518261257AAE204B] (Microsoft Corporation) C:\Windows\System32\Drivers\bridge.sys
2009-07-13 19:19 - 2009-07-13 19:19 - 000286720 ____A [43BEA8D483BF1870F018E2D02E06A5BD] (Brother Industries Ltd.) C:\Windows\System32\Drivers\BrSerId.sys
2009-07-13 19:20 - 2009-06-10 14:41 - 000047104 ____A [A6ECA2151B08A09CACECA35C07F05B42] (Brother Industries Ltd.) C:\Windows\System32\Drivers\BrSerWdm.sys
2009-07-13 19:20 - 2009-06-10 14:41 - 000014976 ____A [B79968002C277E869CF38BD22CD61524] (Brother Industries Ltd.) C:\Windows\System32\Drivers\BrUsbMdm.sys
2009-07-13 19:20 - 2009-06-10 14:41 - 000014720 ____A [A87528880231C54E75EA7A44943B38BF] (Brother Industries Ltd.) C:\Windows\System32\Drivers\BrUsbSer.sys
2009-07-13 18:06 - 2009-07-13 18:06 - 000041984 ____A [CF98190A94F62E405C8CB255018B2315] (Microsoft Corporation) C:\Windows\System32\Drivers\bthenum.sys
2009-07-13 18:06 - 2009-07-13 18:06 - 000072192 ____A [9DA669F11D1F894AB4EB69BF546A42E8] (Microsoft Corporation) C:\Windows\System32\Drivers\bthmodem.sys
2017-07-11 19:28 - 2017-07-05 22:56 - 000119296 ____A [5A8951D195AFEF979C4AB02A129EBC37] (Microsoft Corporation) C:\Windows\System32\Drivers\bthpan.sys
2013-12-03 19:09 - 2013-12-03 19:09 - 000552960 ____A [738D0E9272F59EB7A1449C3EC118E6C4] (Microsoft Corporation) C:\Windows\System32\Drivers\bthport.sys
2013-12-03 19:04 - 2013-12-03 19:04 - 000080384 ____A [F188B7394D81010767B6DF3178519A37] (Microsoft Corporation) C:\Windows\System32\Drivers\BTHUSB.SYS
2009-06-10 14:34 - 2009-06-10 14:34 - 000468480 ____A [3E5B191307609F7514148C6832BB0842] (Broadcom Corporation) C:\Windows\System32\Drivers\bxvbda.sys
2009-07-13 17:19 - 2009-07-13 17:19 - 000092160 ____A [B8BD2BB284668C84865658C77574381A] (Microsoft Corporation) C:\Windows\System32\Drivers\cdfs.sys
2010-11-20 21:23 - 2010-11-20 21:23 - 000147456 ____A [F036CE71586E93D94DAB220D7BDF4416] (Microsoft Corporation) C:\Windows\System32\Drivers\cdrom.sys
2009-07-13 18:06 - 2009-07-13 18:06 - 000045568 ____A [D7CD5C4E1B71FA62050515314CFB52CF] (Microsoft Corporation) C:\Windows\System32\Drivers\circlass.sys
2010-11-20 21:24 - 2010-11-20 21:24 - 000179072 ____A [ACFAD0B512226C7A83C7CB09FD55A9AD] (Microsoft Corporation) C:\Windows\System32\Drivers\Classpnp.sys
2009-07-13 17:31 - 2009-07-13 17:31 - 000017664 ____A [0840155D0BDDF1190F84A663C284BD33] (Microsoft Corporation) C:\Windows\System32\Drivers\CmBatt.sys
2009-07-13 17:19 - 2009-07-13 19:52 - 000017488 ____A [E19D3F095812725D88F9001985B94EDD] (CMD Technology, Inc.) C:\Windows\System32\Drivers\cmdide.sys
2016-12-13 21:41 - 2016-11-20 08:07 - 000467392 ____A [A98CED39AD91B445E2E442A9BD67E8B4] (Microsoft Corporation) C:\Windows\System32\Drivers\cng.sys
2009-07-13 17:31 - 2009-07-13 19:52 - 000021584 ____A [102DE219C3F61415F964C88E9085AD14] (Microsoft Corporation) C:\Windows\System32\Drivers\compbatt.sys
2010-11-20 21:23 - 2010-11-20 21:23 - 000038912 ____A [03EDB043586CCEBA243D689BDDA370A8] (Microsoft Corporation) C:\Windows\System32\Drivers\CompositeBus.sys
2009-07-13 18:01 - 2009-07-13 19:47 - 000039504 ____A [3E588B60EC061686BA05D33574A344C6] (Microsoft Corporation) C:\Windows\System32\Drivers\crashdmp.sys
2009-07-13 18:01 - 2009-07-13 19:47 - 000024144 ____A [1C827878A998C18847245FE1F34EE597] (Microsoft Corporation) C:\Windows\System32\Drivers\crcdisk.sys
2010-11-20 21:24 - 2010-11-20 21:24 - 000514560 ____A [54DA3DFD29ED9F1619B6F53F3CE55E49] (Microsoft Corporation) C:\Windows\System32\Drivers\csc.sys
2018-01-05 07:27 - 2017-12-31 19:41 - 000106496 ____A [7D2D2284833760A82308CF09F7618E8B] (Microsoft Corporation) C:\Windows\System32\Drivers\dfsc.sys
2009-07-13 17:37 - 2009-07-13 17:37 - 000040448 ____A [13096B05847EC78F0977F2C0F79E9AB3] (Microsoft Corporation) C:\Windows\System32\Drivers\discache.sys
2016-08-03 03:38 - 2016-01-20 18:51 - 000073664 ____A [616387BBD83372220B09DE95F4E67BBC] (Microsoft Corporation) C:\Windows\System32\Drivers\disk.sys
2014-05-22 22:07 - 2014-05-22 22:07 - 000027584 ____A [B3222734D80013D2C73841B0C549FA63] (Microsoft Corporation) C:\Windows\System32\Drivers\Diskdump.sys
2010-11-21 01:16 - 2010-11-20 21:23 - 000071168 ____A [5DB085A8A6600BE6401F2B24EECB5415] (Microsoft Corporation) C:\Windows\System32\Drivers\dmvsc.sys
2016-01-13 09:26 - 2015-12-08 12:54 - 000116736 ____A [C51B07394A087DA666A410DBFD26663A] (Microsoft Corporation) C:\Windows\System32\Drivers\drmk.sys
2016-01-13 09:26 - 2015-12-08 12:11 - 000005632 ____A [26FE888505E5A945B0536AF9A2A27A6F] (Microsoft Corporation) C:\Windows\System32\Drivers\drmkaud.sys
2009-07-13 17:19 - 2009-07-13 19:47 - 000028736 ____A [839B5FE3D48E9F35B22C21A3D5103F6C] (Microsoft Corporation) C:\Windows\System32\Drivers\Dumpata.sys
2009-07-13 17:21 - 2009-07-13 19:43 - 000055128 ____A [814DB88F2641691575A455CF25354098] (Microsoft Corporation) C:\Windows\System32\Drivers\dumpfve.sys
2009-07-13 17:38 - 2009-07-13 17:38 - 000016896 ____A [BF24D6F2ED97FE830BFD52B246F98E67] (Microsoft Corporation) C:\Windows\System32\Drivers\dxapi.sys
2009-07-13 17:38 - 2009-07-13 17:38 - 000098816 ____A [FEDE0629ECB23650D48989517D4914DA] (Microsoft Corporation) C:\Windows\System32\Drivers\dxg.sys
2017-07-11 19:28 - 2017-05-16 09:35 - 000986856 ____A [5CEF80AE869336376F550ECAE91E424A] (Microsoft Corporation) C:\Windows\System32\Drivers\dxgkrnl.sys
2017-07-11 19:28 - 2017-05-16 09:35 - 000265448 ____A [1792FCF97D2420514F9102C18B015B29] (Microsoft Corporation) C:\Windows\System32\Drivers\dxgmms1.sys
2009-06-10 14:36 - 2009-07-13 19:47 - 000530496 ____A [0E5DA5369A0FCAEA12456DD852545184] (Emulex) C:\Windows\System32\Drivers\elxstor.sys
2009-07-13 17:31 - 2009-07-13 17:31 - 000009728 ____A [34A3C54752046E79A126E15C51DB409B] (Microsoft Corporation) C:\Windows\System32\Drivers\errdev.sys
2018-02-21 09:56 - 2018-02-21 09:56 - 000022704 ____A [3B32CAA07D672F8A2E0DF5CB3A873F45] () C:\Windows\System32\Drivers\EsgScanner.sys
2009-06-10 14:34 - 2009-06-10 14:34 - 003286016 ____A [DC5D737F51BE844D8C82C695EB17372F] (Broadcom Corporation) C:\Windows\System32\Drivers\evbda.sys
2017-05-10 13:43 - 2017-03-10 09:55 - 000195584 ____A [7E45F8B117419ABA3BB26579F6E70324] (Microsoft Corporation) C:\Windows\System32\Drivers\exfat.sys
2017-05-10 13:43 - 2017-03-10 09:55 - 000205312 ____A [6EDFA237D25433C03F42FBFDB16BDD24] (Microsoft Corporation) C:\Windows\System32\Drivers\fastfat.sys
2009-07-13 18:00 - 2009-07-13 18:00 - 000029696 ____A [D765D19CD8EF61F650C384F62FAC00AB] (Microsoft Corporation) C:\Windows\System32\Drivers\fdc.sys
2009-07-13 17:34 - 2009-07-13 19:47 - 000070224 ____A [655661BE46B5F5F3FD454E2C3095B930] (Microsoft Corporation) C:\Windows\System32\Drivers\fileinfo.sys
2009-07-13 17:25 - 2009-07-13 17:25 - 000034304 ____A [5F671AB5BC87EEA04EC38A6CD5962A47] (Microsoft Corporation) C:\Windows\System32\Drivers\filetrace.sys
2009-07-13 18:00 - 2009-07-13 18:00 - 000024576 ____A [C172A0F53008EAEB8EA33FE10E177AF5] (Microsoft Corporation) C:\Windows\System32\Drivers\flpydisk.sys
2018-01-05 07:27 - 2017-12-31 20:21 - 000288488 ____A [DC591A7A196E99EFB5A48D708CB989FD] (Microsoft Corporation) C:\Windows\System32\Drivers\fltMgr.sys
2013-12-03 19:06 - 2013-12-03 19:06 - 000023408 ____A [6BD9295CC032DD3077C671FCCF579A7B] (Microsoft Corporation) C:\Windows\System32\Drivers\fs_rec.sys
2009-07-13 17:26 - 2009-07-13 19:47 - 000055376 ____A [D43703496149971890703B4B1B723EAC] (Microsoft Corporation) C:\Windows\System32\Drivers\fsdepends.sys
2016-08-02 10:34 - 2014-03-31 20:06 - 000058056 ____A [8DE1B4F579F8F8897409856F3BB7A7D2] (Microsoft Corporation) C:\Windows\System32\Drivers\fssfltr.sys
2013-12-03 19:12 - 2013-12-03 19:12 - 000223752 ____A [8F6322049018354F45F05A2FD2D4E5E0] (Microsoft Corporation) C:\Windows\System32\Drivers\fvevol.sys
2018-02-14 07:14 - 2018-01-12 10:44 - 000287976 ____A [3358D5C8287B18A91DC00A962E444413] (Microsoft Corporation) C:\Windows\System32\Drivers\FWPKCLNT.SYS
2009-07-13 17:38 - 2009-07-13 19:47 - 000065088 ____A [8C778D335C9D272CFD3298AB02ABE3B6] (Microsoft Corporation) C:\Windows\System32\Drivers\GAGP30KX.SYS
2009-06-10 14:30 - 2009-06-10 14:30 - 003440660 ____A [7F29903CB8F5590D52DB0C9F97049A25] () C:\Windows\System32\Drivers\gm.dls
2009-07-13 16:13 - 2009-06-10 14:30 - 000000646 ____A [7111BFA692A22E4B3C07F1E6C6FF6F72] () C:\Windows\System32\Drivers\gmreadme.txt
2009-07-13 16:53 - 2009-06-10 14:31 - 000031232 ____A [F2523EF6460FC42405B12248338AB2F0] (Hauppauge Computer Works, Inc.) C:\Windows\System32\Drivers\hcw85cir.sys
2010-11-20 21:23 - 2010-11-20 21:23 - 000122368 ____A [97BFED39B6B79EB12CDDBFEED51F56BB] (Microsoft Corporation) C:\Windows\System32\Drivers\hdaudbus.sys
2010-11-20 21:23 - 2010-11-20 21:23 - 000350208 ____A [975761C778E33CD22498059B91E7373A] (Microsoft Corporation) C:\Windows\System32\Drivers\HdAudio.sys
2015-07-06 22:32 - 2015-07-06 22:32 - 000064512 ____A [E371FC5C4E76CE5313E68398F7950FB8] (Intel Corporation) C:\Windows\System32\Drivers\HECIx64.sys
2009-07-13 17:31 - 2009-07-13 17:31 - 000026624 ____A [78E86380454A7B10A5EB255DC44A355F] (Microsoft Corporation) C:\Windows\System32\Drivers\hidbatt.sys
2009-07-13 18:06 - 2009-07-13 18:06 - 000100864 ____A [7FD2A313F7AFE5C4DAB14798C48DD104] (Microsoft Corporation) C:\Windows\System32\Drivers\hidbth.sys
2018-02-14 07:14 - 2018-01-12 10:16 - 000076288 ____A [6B02DE33BDDCCE332984349476003421] (Microsoft Corporation) C:\Windows\System32\Drivers\hidclass.sys
2009-07-13 18:06 - 2009-07-13 18:06 - 000046592 ____A [0A77D29F311B88CFAE3B13F9C1A73825] (Microsoft Corporation) C:\Windows\System32\Drivers\hidir.sys
2018-02-14 07:14 - 2018-01-12 10:15 - 000032896 ____A [D15D2C01BF9E478DBB4A133629C6DB72] (Microsoft Corporation) C:\Windows\System32\Drivers\hidparse.sys
2018-02-14 07:14 - 2018-01-12 10:16 - 000030208 ____A [6F5E5CC271EB0C17688D892A3D4B83F6] (Microsoft Corporation) C:\Windows\System32\Drivers\hidusb.sys
2010-11-20 21:23 - 2010-11-20 21:23 - 000078720 ____A [39D2ABCD392F3D8A6DCE7B60AE7B8EFC] (Hewlett-Packard Company) C:\Windows\System32\Drivers\HpSAMD.sys
2018-01-05 07:27 - 2017-12-31 19:41 - 000754176 ____A [93C367EA831FB39DEE3BA96539A187FB] (Microsoft Corporation) C:\Windows\System32\Drivers\http.sys
2010-11-20 21:24 - 2010-11-20 21:24 - 000014720 ____A [A5462BD6884960C9DC85ED49D34FF392] (Microsoft Corporation) C:\Windows\System32\Drivers\hwpolicy.sys
2009-07-13 17:19 - 2009-07-13 17:19 - 000105472 ____A [FA55C73D4AFFA7EE23AC4BE53B4592D3] (Microsoft Corporation) C:\Windows\System32\Drivers\i8042prt.sys
2015-07-29 18:44 - 2015-07-29 18:44 - 001462720 ____A [5F6CA62BE8ECC4D0E1F5D4D4A02B456B] (Intel Corporation) C:\Windows\System32\Drivers\iaStorA.sys
2015-07-29 18:44 - 2015-07-29 18:44 - 000031144 ____A [45A1574508EFD53CB0A2AECD339753F6] (Intel Corporation) C:\Windows\System32\Drivers\iaStorF.sys
2013-12-03 19:18 - 2013-12-03 19:18 - 000410496 ____A [AAAF44DB3BD0B9D1FB6969B23ECC8366] (Intel Corporation) C:\Windows\System32\Drivers\iaStorV.sys
2009-07-13 15:59 - 2009-07-13 19:48 - 000044112 ____A [5C18831C61933628F5BB0EA2675B9D21] (Intel Corp./ICP vortex GmbH) C:\Windows\System32\Drivers\iirsp.sys
2009-07-13 17:19 - 2009-07-13 19:48 - 000016960 ____A [F00F20E70C6EC3AA366910083A0518AA] (Microsoft Corporation) C:\Windows\System32\Drivers\intelide.sys
2015-07-11 01:29 - 2015-07-11 01:29 - 000018720 ____A [63C827AAE9117D8EB9C4AF4621797996] (Intel Corporation) C:\Windows\System32\Drivers\IntelMEFWVer.dll
2009-07-13 17:19 - 2009-07-13 17:19 - 000062464 ____A [ADA036632C664CAA754079041CF1F8C1] (Microsoft Corporation) C:\Windows\System32\Drivers\intelppm.sys
2010-11-20 21:24 - 2010-11-20 21:24 - 000082944 ____A [C9F0E1BD74365A8771590E9008D22AB6] (Microsoft Corporation) C:\Windows\System32\Drivers\ipfltdrv.sys
2010-11-20 21:23 - 2010-11-20 21:23 - 000078848 ____A [0FC1AEA580957AA8817B8F305D18CA3A] (Microsoft Corporation) C:\Windows\System32\Drivers\IPMIDrv.sys
2009-07-13 18:10 - 2009-07-13 18:10 - 000116224 ____A [AF9B39A7E7B6CAA203B3862582E9F2D0] (Microsoft Corporation) C:\Windows\System32\Drivers\ipnat.sys
2009-07-13 18:09 - 2009-07-13 18:09 - 000120320 ____A [05360B1EA5A2ABF620D1D96EBD8BD8F1] (Microsoft Corporation) C:\Windows\System32\Drivers\irda.sys
2009-07-13 18:08 - 2009-07-13 18:08 - 000017920 ____A [3ABF5E7213EB28966D55D58B515D5CE9] (Microsoft Corporation) C:\Windows\System32\Drivers\irenum.sys
2009-07-13 17:31 - 2009-07-13 19:48 - 000020544 ____A [2F7B28DC3E1183E5EB418DF55C204F38] (Microsoft Corporation) C:\Windows\System32\Drivers\isapnp.sys
2015-07-26 22:24 - 2015-07-26 22:24 - 000403752 ____A [A7A2E0D3932B1986990AC7077B1658CD] (Intel Corporation) C:\Windows\System32\Drivers\iusb3hub.sys
2015-07-26 22:24 - 2015-07-26 22:24 - 000814376 ____A [FD9C74D20E6F97EDC442091F9DBC1189] (Intel Corporation) C:\Windows\System32\Drivers\iusb3xhc.sys
2009-07-13 17:19 - 2009-07-13 19:48 - 000050768 ____A [BC02336F1CBA7DCC7D1213BB588A68A5] (Microsoft Corporation) C:\Windows\System32\Drivers\kbdclass.sys
2010-11-20 21:23 - 2010-11-20 21:23 - 000033280 ____A [0705EFF5B42A9DB58548EEC3B26BB484] (Microsoft Corporation) C:\Windows\System32\Drivers\kbdhid.sys
2010-11-20 21:24 - 2010-11-20 21:24 - 000243712 ____A [24FBF5CC5C04150073C315A7C83521EE] (Microsoft Corporation) C:\Windows\System32\Drivers\ks.sys
2018-02-14 07:14 - 2018-01-12 10:44 - 000095464 ____A [9707CED0085D27639F467BAB6601E4E9] (Microsoft Corporation) C:\Windows\System32\Drivers\ksecdd.sys
2018-02-14 07:14 - 2018-01-12 10:44 - 000154856 ____A [0A53691F99095C1AAD0785780BE01CF5] (Microsoft Corporation) C:\Windows\System32\Drivers\ksecpkg.sys
2009-07-13 18:00 - 2009-07-13 18:00 - 000020992 ____A [6869281E78CB31A43E969F06B57347C4] (Microsoft Corporation) C:\Windows\System32\Drivers\ksthunk.sys
2009-07-13 18:08 - 2009-07-13 18:08 - 000060928 ____A [1538831CF8AD2979A04C423779465827] (Microsoft Corporation) C:\Windows\System32\Drivers\lltdio.sys
2009-07-13 15:59 - 2009-07-13 19:48 - 000114752 ____A [1A93E54EB0ECE102495A51266DCDB6A6] (LSI Corporation) C:\Windows\System32\Drivers\lsi_fc.sys
2009-07-13 15:59 - 2009-07-13 19:48 - 000106560 ____A [1047184A9FDC8BDBFF857175875EE810] (LSI Corporation) C:\Windows\System32\Drivers\lsi_sas.sys
2009-07-13 15:59 - 2009-07-13 19:48 - 000065600 ____A [30F5C0DE1EE8B5BC9306C1F0E4A75F93] (LSI Corporation) C:\Windows\System32\Drivers\lsi_sas2.sys
2009-07-13 15:59 - 2009-07-13 19:48 - 000115776 ____A [0504EACAFF0D3C8AED161C4B0D369D4A] (LSI Corporation) C:\Windows\System32\Drivers\lsi_scsi.sys
2017-11-14 14:23 - 2017-10-11 18:20 - 000113152 ____A [5416CEB2916BBE635288C4D1075B045E] (Microsoft Corporation) C:\Windows\System32\Drivers\luafv.sys
2012-09-21 12:49 - 2012-09-21 12:49 - 000266828 ____A [835C775A6871D2A2EA6FC343B6B4C9A2] () C:\Windows\System32\Drivers\LVAFT.cfg
2012-09-21 13:04 - 2012-09-21 13:04 - 000351520 ____A [A401CFF74982D8DF851F20307C806073] (Logitech Inc.) C:\Windows\System32\Drivers\lvrs64.sys
2016-01-27 15:08 - 2018-02-26 08:42 - 000000000 ____A [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\lvuvc.hs
2012-09-21 13:04 - 2012-09-21 13:04 - 004763680 ____A [13384CB5F5813E65F31078D6ABFAAF38] (Logitech Inc.) C:\Windows\System32\Drivers\lvuvc64.sys
2017-09-25 08:57 - 2012-06-20 10:51 - 000020232 ____A [D7F57860E779B84AB982E8F4F23E30D1] (HandSet Incorporated) C:\Windows\System32\Drivers\massfilter_hs.sys
2018-01-30 15:30 - 2017-11-29 09:11 - 000077432 ____A [680AF1647150CF9B061FF40E71C7396A] () C:\Windows\System32\Drivers\mbae64.sys
2009-07-13 18:01 - 2009-07-13 18:01 - 000022016 ____A [3C9F072F9DCA856B9FB7A20CBD4281AC] (Microsoft Corporation) C:\Windows\System32\Drivers\mcd.sys
2009-06-10 14:37 - 2009-07-13 19:48 - 000035392 ____A [A55805F747C6EDB6A9080D7C633BD0F4] (LSI Corporation) C:\Windows\System32\Drivers\megasas.sys
2009-07-13 15:59 - 2009-07-13 19:48 - 000284736 ____A [BAF74CE0072480C3B6B7C13B2A94D6B3] (LSI Corporation, Inc.) C:\Windows\System32\Drivers\MegaSR.sys
2009-07-13 18:10 - 2009-07-13 18:10 - 000040448 ____A [800BA92F7010378B09F9ED9270F07137] (Microsoft Corporation) C:\Windows\System32\Drivers\modem.sys
2009-07-13 17:38 - 2009-07-13 17:38 - 000030208 ____A [B03D591DC7DA45ECE20B3B467E6AADAA] (Microsoft Corporation) C:\Windows\System32\Drivers\monitor.sys
2009-07-13 17:19 - 2009-07-13 19:48 - 000049216 ____A [7D27EA49F3C1F687D357E77A470AEA99] (Microsoft Corporation) C:\Windows\System32\Drivers\mouclass.sys
2009-07-13 18:00 - 2009-07-13 18:00 - 000031232 ____A [D3BF052C40B0C4166D9FD86A4288C1E6] (Microsoft Corporation) C:\Windows\System32\Drivers\mouhid.sys
2017-06-14 01:36 - 2017-05-07 09:33 - 000094440 ____A [072D8646E23ECF8A3F5F0157017B4DB6] (Microsoft Corporation) C:\Windows\System32\Drivers\mountmgr.sys
2016-08-25 09:46 - 2016-08-25 09:46 - 000295000 ____A [3665AB2F67F4024F5F3F80335ED5322A] (Microsoft Corporation) C:\Windows\System32\Drivers\MpFilter.sys
2010-11-20 21:23 - 2010-11-20 21:23 - 000155008 ____A [A44B420D30BD56E145D6A2BC8768EC58] (Microsoft Corporation) C:\Windows\System32\Drivers\mpio.sys
2018-01-05 07:27 - 2017-12-31 19:54 - 000077312 ____A [6D9BB8B53394B62540A3971FCE2BE8DB] (Microsoft Corporation) C:\Windows\System32\Drivers\mpsdrv.sys
2016-10-11 21:09 - 2016-09-08 08:55 - 000142336 ____A [98DB1790F0A584E0A2528B92B052417F] (Microsoft Corporation) C:\Windows\System32\Drivers\mrxdav.sys
2018-02-14 07:14 - 2018-01-12 10:03 - 000159744 ____A [2C52CF0B64FFAD73DCF00EFBBB4A0238] (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb.sys
2018-02-14 07:15 - 2018-01-12 10:02 - 000291328 ____A [14E322C2046C9C8DBF55F7E21B414140] (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb10.sys
2018-02-14 07:14 - 2018-01-12 10:02 - 000129536 ____A [F90F90CB9FA037CFF9E61A8E6B1655C7] (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb20.sys
2010-11-20 21:23 - 2010-11-20 21:23 - 000031104 ____A [C25F0BAFA182CBCA2DD3C851C2E75796] (Microsoft Corporation) C:\Windows\System32\Drivers\msahci.sys
2010-11-20 21:23 - 2010-11-20 21:23 - 000140672 ____A [DB801A638D011B9633829EB6F663C900] (Microsoft Corporation) C:\Windows\System32\Drivers\msdsm.sys
2009-07-13 17:19 - 2009-07-13 17:19 - 000026112 ____A [AA3FB40E17CE1388FA1BEDAB50EA8F96] (Microsoft Corporation) C:\Windows\System32\Drivers\msfs.sys
2015-12-01 17:02 - 2015-12-01 17:02 - 000000000 ___AH [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\Msft_Kernel_TeeDriverx64_01011.Wdf
2013-12-03 14:19 - 2013-12-03 14:19 - 000000000 ___AH [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2016-05-03 10:36 - 2016-05-03 10:36 - 000000000 ___AH [D41D8CD98F00B204E9800998ECF8427E] () C:\Windows\System32\Drivers\Msft_User_WpdMtpDr_01_09_00.Wdf
2013-12-03 19:16 - 2013-12-03 19:16 - 000000003 ____A [933222B19FF3E7EA5F65517EA1F7D57E] () C:\Windows\System32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2016-08-04 02:02 - 2012-06-02 08:57 - 000000003 ____A [933222B19FF3E7EA5F65517EA1F7D57E] () C:\Windows\System32\Drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
2009-07-13 18:06 - 2009-07-13 18:06 - 000008192 ____A [F9D215A46A8B9753F61767FA72A20326] (Microsoft Corporation) C:\Windows\System32\Drivers\mshidkmdf.sys
2009-07-13 17:19 - 2009-07-13 19:48 - 000015424 ____A [D916874BBD4F8B07BFB7FA9B3CCAE29D] (Microsoft Corporation) C:\Windows\System32\Drivers\msisadrv.sys
2014-05-22 22:07 - 2014-05-22 22:07 - 000274880 ____A [96BB922A0981BC7432C8CF52B5410FE6] (Microsoft Corporation) C:\Windows\System32\Drivers\msiscsi.sys
2009-07-13 18:00 - 2009-07-13 18:00 - 000011136 ____A [49CCF2C4FEA34FFAD8B1B59D49439366] (Microsoft Corporation) C:\Windows\System32\Drivers\mskssrv.sys
2009-07-13 18:00 - 2009-07-13 18:00 - 000007168 ____A [BDD71ACE35A232104DDD349EE70E1AB3] (Microsoft Corporation) C:\Windows\System32\Drivers\mspclock.sys
2009-07-13 18:00 - 2009-07-13 18:00 - 000006784 ____A [4ED981241DB27C3383D72092B618A1D0] (Microsoft Corporation) C:\Windows\System32\Drivers\mspqm.sys
2010-11-20 21:24 - 2010-11-20 21:24 - 000366976 ____A [759A9EEB0FA9ED79DA1FB7D4EF78866D] (Microsoft Corporation) C:\Windows\System32\Drivers\msrpc.sys
2009-07-13 17:31 - 2009-07-13 19:48 - 000032320 ____A [0EED230E37515A0EAEE3C2E1BC97B288] (Microsoft Corporation) C:\Windows\System32\Drivers\mssmbios.sys
2009-07-13 18:00 - 2009-07-13 18:00 - 000008064 ____A [2E66F9ECB30B4221A318C92AC2250779] (Microsoft Corporation) C:\Windows\System32\Drivers\mstee.sys
2009-07-13 18:02 - 2009-07-13 18:02 - 000015360 ____A [7EA404308934E675BFFDE8EDF0757BCD] (Microsoft Corporation) C:\Windows\System32\Drivers\MTConfig.sys
2015-03-12 22:14 - 2015-03-12 22:14 - 000104896 ____A [AA0C2BA3782E92BD85E2264BE418E67C] (Microsoft Corporation) C:\Windows\System32\Drivers\mup.sys
2018-01-05 07:27 - 2017-12-31 20:21 - 000948968 ____A [261F27367EB6EA6478B940811F0A6F03] (Microsoft Corporation) C:\Windows\System32\Drivers\ndis.sys
2009-07-13 18:08 - 2009-07-13 18:08 - 000035328 ____A [9F9A1F53AAD7DA4D6FEF5BB73AB811AC] (Microsoft Corporation) C:\Windows\System32\Drivers\ndiscap.sys
2018-01-05 07:27 - 2017-12-31 19:55 - 000024064 ____A [3F217F77899654833B650ED6A1372BE4] (Microsoft Corporation) C:\Windows\System32\Drivers\ndistapi.sys
2010-11-20 21:24 - 2010-11-20 21:24 - 000056832 ____A [136185F9FB2CC61E573E676AA5402356] (Microsoft Corporation) C:\Windows\System32\Drivers\ndisuio.sys
2010-11-20 21:24 - 2010-11-20 21:24 - 000164352 ____A [53F7305169863F0A2BDDC49E116C2E11] (Microsoft Corporation) C:\Windows\System32\Drivers\ndiswan.sys
2018-01-05 07:27 - 2017-12-31 19:55 - 000058368 ____A [E46AF308E96F7730F59B0F250A884CD6] (Microsoft Corporation) C:\Windows\System32\Drivers\ndproxy.sys
2018-01-05 07:27 - 2017-12-31 19:55 - 000045056 ____A [2E19EB10185992AB08BC3688AACA4CE2] (Microsoft Corporation) C:\Windows\System32\Drivers\netbios.sys
2017-09-13 03:10 - 2017-08-11 00:00 - 000262656 ____A [734837208CAFD6E0959A7A0333C95C9D] (Microsoft Corporation) C:\Windows\System32\Drivers\netbt.sys
2018-02-14 07:14 - 2018-01-12 10:44 - 000377064 ____A [617EF17748C1B7B9F5A6D767340FB74F] (Microsoft Corporation) C:\Windows\System32\Drivers\netio.sys
2009-07-13 15:59 - 2009-07-13 19:48 - 000051264 ____A [77889813BE4D166CDAB78DDBA990DA92] (IBM Corporation) C:\Windows\System32\Drivers\nfrd960.sys
2013-09-27 08:53 - 2016-08-25 09:46 - 000135928 ____A [CE5F6E635FE4506AE6F2D6EB87425128] (Microsoft Corporation) C:\Windows\System32\Drivers\NisDrvWFP.sys
2009-07-13 17:19 - 2009-07-13 17:19 - 000044032 ____A [1E4C4AB5C9B8DD13179BBDC75A2A01F7] (Microsoft Corporation) C:\Windows\System32\Drivers\npfs.sys
2017-09-13 03:10 - 2017-08-10 23:58 - 000026112 ____A [BE313E566EEA2A4B7F9AAC9782A567D4] (Microsoft Corporation) C:\Windows\System32\Drivers\nsiproxy.sys
2018-01-05 07:27 - 2017-12-31 20:21 - 001680616 ____A [A97B92D11270695B15C3663BCCB737D3] (Microsoft Corporation) C:\Windows\System32\Drivers\ntfs.sys
2009-07-13 17:19 - 2009-07-13 17:19 - 000006144 ____A [9899284589F75FA8724FF3D16AED75C1] (Microsoft Corporation) C:\Windows\System32\Drivers\null.sys
2009-07-13 17:38 - 2009-07-13 19:48 - 000122960 ____A [270D7CD42D6E3979F6DD0146650F0E05] (Microsoft Corporation) C:\Windows\System32\Drivers\NV_AGP.SYS
2016-01-13 18:44 - 2016-01-13 18:43 - 000204648 ____A [B9E5A80F646DDFEF158773722A466EA3] (NVIDIA Corporation) C:\Windows\System32\Drivers\nvhda64v.sys
2016-01-13 18:44 - 2016-01-13 18:43 - 011055248 ____A [45F83C99EDF3253D047F692A42C1A51A] (NVIDIA Corporation) C:\Windows\System32\Drivers\nvlddmkm.sys
2013-12-03 19:18 - 2013-12-03 19:18 - 000148352 ____A [0A92CB65770442ED0DC44834632F66AD] (NVIDIA Corporation) C:\Windows\System32\Drivers\nvraid.sys
2013-12-03 19:18 - 2013-12-03 19:18 - 000166272 ____A [DAB0E87525C10052BF65F06152F37E4A] (NVIDIA Corporation) C:\Windows\System32\Drivers\nvstor.sys
2016-01-13 18:44 - 2016-01-13 18:43 - 000046768 ____A [6AC68DDFCAC19A300D738AF3493E46AA] (NVIDIA Corporation) C:\Windows\System32\Drivers\nvvad64v.sys
2017-10-11 00:51 - 2017-09-13 09:05 - 000324608 ____A [9FB2A095B1166CB3C9A06651863B3452] (Microsoft Corporation) C:\Windows\System32\Drivers\nwifi.sys
2009-07-13 18:06 - 2009-07-13 18:06 - 000072832 ____A [3589478E4B22CE21B41FA1BFC0B8B8A0] (Microsoft Corporation) C:\Windows\System32\Drivers\ohci1394.sys
2018-01-05 07:27 - 2017-12-31 19:55 - 000131584 ____A [4CE827A5433451551E99C2C1D20E4A43] (Microsoft Corporation) C:\Windows\System32\Drivers\pacer.sys
2009-07-13 18:00 - 2009-07-13 18:00 - 000097280 ____A [0086431C29C35BE1DBC43F52CC273887] (Microsoft Corporation) C:\Windows\System32\Drivers\parport.sys
2013-12-03 19:07 - 2013-12-03 19:07 - 000075120 ____A [E9766131EEADE40A27DC27D2D68FBA9C] (Microsoft Corporation) C:\Windows\System32\Drivers\partmgr.sys
2010-11-20 21:23 - 2010-11-20 21:23 - 000184704 ____A [94575C0571D1462A0F70BDE6BD6EE6B3] (Microsoft Corporation) C:\Windows\System32\Drivers\pci.sys
2009-07-13 17:19 - 2009-07-13 19:45 - 000012352 ____A [B5B8B5EF2E5CB34DF8DCF8831E3534FA] (Microsoft Corporation) C:\Windows\System32\Drivers\pciide.sys
2009-07-13 17:19 - 2009-07-13 19:45 - 000048720 ____A [144497DAA145BA0F7BE896064146C058] (Microsoft Corporation) C:\Windows\System32\Drivers\pciidex.sys
2009-07-13 17:31 - 2009-07-13 19:45 - 000220752 ____A [B2E81D4E87CE48589F98CB8C05B01F2F] (Microsoft Corporation) C:\Windows\System32\Drivers\pcmcia.sys
2009-07-13 17:19 - 2009-07-13 19:45 - 000050768 ____A [D6B9C2E1A11A3A4B26A182FFEF18F603] (Microsoft Corporation) C:\Windows\System32\Drivers\pcw.sys
2016-10-11 21:09 - 2016-06-14 11:11 - 000663552 ____A [EA4D67448BE493D543F1730D6CD04694] (Microsoft Corporation) C:\Windows\System32\Drivers\PEAuth.sys
2016-01-13 09:26 - 2015-12-08 12:12 - 000230400 ____A [647599CAE8CA0EF2FB09C4B150BC97FF] (Microsoft Corporation) C:\Windows\System32\Drivers\portcls.sys
2009-07-13 17:19 - 2009-07-13 17:19 - 000060416 ____A [0D922E23C041EFB1C3FAC2A6F943C9BF] (Microsoft Corporation) C:\Windows\System32\Drivers\processr.sys
2009-06-10 14:37 - 2009-07-13 19:45 - 001524816 ____A [A53A15A11EBFD21077463EE2C7AFEEF0] (QLogic Corporation) C:\Windows\System32\Drivers\ql2300.sys
2009-07-13 15:59 - 2009-07-13 19:45 - 000128592 ____A [4F6D12B51DE1AAEFF7DC58C4D75423C8] (QLogic Corporation) C:\Windows\System32\Drivers\ql40xx.sys
2009-07-13 18:09 - 2009-07-13 18:09 - 000046592 ____A [76707BB36430888D9CE9D705398ADB6C] (Microsoft Corporation) C:\Windows\System32\Drivers\qwavedrv.sys
2009-07-13 18:10 - 2009-07-13 18:10 - 000014848 ____A [5A0DA8AD5762FA2D91678A8A01311704] (Microsoft Corporation) C:\Windows\System32\Drivers\rasacd.sys
2010-11-20 21:24 - 2010-11-20 21:24 - 000129536 ____A [471815800AE33E6F1C32FB1B97C490CA] (Microsoft Corporation) C:\Windows\System32\Drivers\rasl2tp.sys
2009-07-13 18:10 - 2009-07-13 18:10 - 000092672 ____A [855C9B1CD4756C5E9A2AA58A15F58C25] (Microsoft Corporation) C:\Windows\System32\Drivers\raspppoe.sys
2010-11-20 21:24 - 2010-11-20 21:24 - 000111104 ____A [F92A2C41117A11A00BE01CA01A7FCDE9] (Microsoft Corporation) C:\Windows\System32\Drivers\raspptp.sys
2009-07-13 18:10 - 2009-07-13 18:10 - 000083968 ____A [E8B1E447B008D07FF47D016C2B0EEECB] (Microsoft Corporation) C:\Windows\System32\Drivers\rassstp.sys
2017-12-13 02:42 - 2017-10-11 18:20 - 000317440 ____A [FB45727105E27756B3252572A138FA19] (Microsoft Corporation) C:\Windows\System32\Drivers\rdbss.sys
2009-07-13 18:17 - 2009-07-13 18:17 - 000024064 ____A [302DA2A0539F2CF54D7C6CC30C1F2D8D] (Microsoft Corporation) C:\Windows\System32\Drivers\rdpbus.sys
2009-07-13 18:16 - 2009-07-13 18:16 - 000007680 ____A [CEA6CC257FC9B7715F1C2B4849286D24] (Microsoft Corporation) C:\Windows\System32\Drivers\RDPCDD.sys
2010-11-20 21:25 - 2010-11-20 21:25 - 000165888 ____A [1B6163C503398B23FF8B939C67747683] (Microsoft Corporation) C:\Windows\System32\Drivers\rdpdr.sys
2009-07-13 18:16 - 2009-07-13 18:16 - 000007680 ____A [BB5971A4F00659529A5C44831AF22365] (Microsoft Corporation) C:\Windows\System32\Drivers\RDPENCDD.sys
2009-07-13 18:16 - 2009-07-13 18:16 - 000008192 ____A [216F3FA57533D98E1F74DED70113177A] (Microsoft Corporation) C:\Windows\System32\Drivers\RDPREFMP.sys
2015-12-15 12:02 - 2014-07-16 19:21 - 000212480 ____A [FE571E088C2D83619D2D48D4E961BF41] (Microsoft Corporation) C:\Windows\System32\Drivers\rdpwd.sys
2018-01-05 07:27 - 2017-12-31 20:21 - 000213736 ____A [F4287A980C0AA41DE3073F053E5EA73C] (Microsoft Corporation) C:\Windows\System32\Drivers\rdyboost.sys
2009-07-13 18:06 - 2009-07-13 18:06 - 000158720 ____A [3DD798846E2C28102B922C56E71B7932] (Microsoft Corporation) C:\Windows\System32\Drivers\rfcomm.sys
2015-12-15 12:03 - 2015-11-05 03:53 - 000146944 ____A [5BD6B1EC997FF3DD779D62E05D2079A8] (Microsoft Corporation) C:\Windows\System32\Drivers\rmcast.sys
2013-12-03 19:08 - 2013-12-03 19:08 - 000041472 ____A [0E01641D96889BDEB22DE12D30575B08] (Microsoft Corporation) C:\Windows\System32\Drivers\RNDISMP.sys
2009-07-13 18:10 - 2009-07-13 18:10 - 000011264 ____A [388D3DD1A6457280F3BADBA9F3ACD6B1] (Microsoft Corporation) C:\Windows\System32\Drivers\rootmdm.sys
2009-07-13 18:08 - 2009-07-13 18:08 - 000076800 ____A [DDC86E4F8E7456261E637E3552E804FF] (Microsoft Corporation) C:\Windows\System32\Drivers\rspndr.sys
2015-05-28 23:12 - 2015-05-28 23:12 - 000986368 ____A [4EAC4109FF3DD488C0F8D1D57588210E] (Realtek ) C:\Windows\System32\Drivers\Rt64win7.sys
2015-08-06 05:31 - 2015-08-06 05:31 - 031085611 ____A [042C8CB94F7D7AB56BED791DBF056642] () C:\Windows\System32\Drivers\RTAIODAT.DAT
2015-12-01 17:03 - 2014-12-23 11:33 - 000064216 ____A [B76AD50B3B557F1FCF46E314EA4012D5] (Realtek Semiconductor Corporation) C:\Windows\System32\Drivers\RtkAvrcp.sys
2015-12-01 17:03 - 2015-05-28 10:52 - 000598272 ____A [BB367BE8F01921CEE61A2861188850DC] (Realtek Semiconductor Corporation) C:\Windows\System32\Drivers\RtkBtfilter.sys
2015-12-01 16:55 - 2015-12-01 17:06 - 000007873 ____A [54902ED22557398FB3899606A83C5B48] () C:\Windows\System32\Drivers\rtkhdasetting.zip
2015-08-06 05:31 - 2015-08-06 05:31 - 004577024 ____A [0673227369C14ACC35057CDADC50B3D7] (Realtek Semiconductor Corp.) C:\Windows\System32\Drivers\RTKVHD64.sys
2016-01-13 18:49 - 2016-01-13 18:48 - 000402136 ____A [AB959F26FBB851A9D31E2F229DB3FA1A] (Realsil Semiconductor Corporation) C:\Windows\System32\Drivers\RtsUer.sys
2015-07-16 20:37 - 2016-01-13 18:47 - 004471000 ____A [3D6C59523A502DAB9DD0AE11EA0E46B4] (Realtek Semiconductor Corporation ) C:\Windows\System32\Drivers\rtwlane.sys
2010-11-20 21:23 - 2010-11-20 21:23 - 000103808 ____A [AC03AF3329579FFFB455AA2DAABBE22B] (Microsoft Corporation) C:\Windows\System32\Drivers\sbp2port.sys
2010-11-20 21:24 - 2010-11-20 21:24 - 000029696 ____A [253F38D0D7074C02FF8DEB9836C97D2B] (Microsoft Corporation) C:\Windows\System32\Drivers\scfilter.sys
2010-11-20 21:24 - 2010-11-20 21:24 - 000171392 ____A [1B1E264203D4EF9D3DA1987AD70355AB] (Microsoft Corporation) C:\Windows\System32\Drivers\scsiport.sys
2009-07-13 20:36 - 2009-06-10 14:37 - 000023040 ____A [3EA8A16169C26AFBEB544E0E48421186] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) C:\Windows\System32\Drivers\secdrv.sys
2009-07-13 18:00 - 2009-07-13 18:00 - 000023552 ____A [CB624C0035412AF0DEBEC78C41F5CA1B] (Microsoft Corporation) C:\Windows\System32\Drivers\serenum.sys
2009-07-13 18:00 - 2009-07-13 18:00 - 000094208 ____A [C1D8E28B2C2ADFAEC4BA89E9FDA69BD6] (Microsoft Corporation) C:\Windows\System32\Drivers\serial.sys
2009-07-13 18:00 - 2009-07-13 18:00 - 000026624 ____A [1C545A7D0691CC4A027396535691C3E3] (Microsoft Corporation) C:\Windows\System32\Drivers\sermouse.sys
2009-07-13 18:01 - 2009-07-13 18:01 - 000014336 ____A [A554811BCD09279536440C964AE35BBF] (Microsoft Corporation) C:\Windows\System32\Drivers\sffdisk.sys
2009-07-13 18:01 - 2009-07-13 18:01 - 000013824 ____A [FF414F0BAEFEBA59BC6C04B3DB0B87BF] (Microsoft Corporation) C:\Windows\System32\Drivers\sffp_mmc.sys
2010-11-20 21:23 - 2010-11-20 21:23 - 000014336 ____A [DD85B78243A19B59F0637DCF284DA63C] (Microsoft Corporation) C:\Windows\System32\Drivers\sffp_sd.sys
2009-07-13 18:01 - 2009-07-13 18:01 - 000016896 ____A [A9D601643A1647211A1EE2EC4E433FF4] (Microsoft Corporation) C:\Windows\System32\Drivers\sfloppy.sys
2009-06-10 14:37 - 2009-07-13 19:45 - 000043584 ____A [843CAF1E5FDE1FFD5FF768F23A51E2E1] (Silicon Integrated Systems Corp.) C:\Windows\System32\Drivers\sisraid2.sys
2009-07-13 15:59 - 2009-07-13 19:45 - 000080464 ____A [6A6C106D42E9FFFF8B9FCB4F754F6DA4] (Silicon Integrated Systems) C:\Windows\System32\Drivers\sisraid4.sys
2009-07-13 18:09 - 2009-07-13 18:09 - 000093184 ____A [548260A7B8654E024DC30BF8A7C5BAA4] (Microsoft Corporation) C:\Windows\System32\Drivers\smb.sys
2009-07-13 18:00 - 2009-07-13 18:00 - 000020992 ____A [A80348BA03E96C70852959655CA3E084] (Microsoft Corporation) C:\Windows\System32\Drivers\smclib.sys
2009-07-13 14:27 - 2009-07-13 19:45 - 000019008 ____A [B9E31E5CACDFE584F34F730A677803F9] (Microsoft Corporation) C:\Windows\System32\Drivers\spldr.sys
2009-06-10 14:48 - 2009-06-10 14:48 - 000426496 ____A [FFF95479C7AB1550F0750A5D01744211] (Microsoft Corporation) C:\Windows\System32\Drivers\spsys.sys
2018-01-05 07:27 - 2017-12-31 19:42 - 000460288 ____A [8980499A526581794A20B12E2E264661] (Microsoft Corporation) C:\Windows\System32\Drivers\srv.sys
2018-01-05 07:27 - 2017-12-31 19:42 - 000406016 ____A [9B90A439B97EBBD2A9ABEFFBBC1EEC71] (Microsoft Corporation) C:\Windows\System32\Drivers\srv2.sys
2018-01-05 07:27 - 2017-12-31 19:42 - 000168448 ____A [9E30361776E07AD940791927A0FC9B3A] (Microsoft Corporation) C:\Windows\System32\Drivers\srvnet.sys
2009-07-13 15:59 - 2009-07-13 19:45 - 000024656 ____A [F3817967ED533D08327DC73BC4D5542A] (Promise Technology) C:\Windows\System32\Drivers\stexstor.sys
2014-12-09 00:11 - 2014-12-09 00:11 - 000050616 ____A [C89E6A28E6D3FC8E3E3202AA1262B2FD] (Microsoft Corporation) C:\Windows\System32\Drivers\stornvme.sys
2014-05-22 22:07 - 2014-05-22 22:07 - 000190912 ____A [A3F0BC5897F9D3786A3CB695B163633A] (Microsoft Corporation) C:\Windows\System32\Drivers\storport.sys
2010-11-21 01:16 - 2010-11-20 21:23 - 000034688 ____A [D34E4943D5AC096C8EDEEBFD80D76E23] (Microsoft Corporation) C:\Windows\System32\Drivers\storvsc.sys
2015-07-23 19:31 - 2015-07-23 19:31 - 000069888 ____A [36E0DDD19038C92B7C7709BFA03F813F] (Microsoft Corporation) C:\Windows\System32\Drivers\stream.sys
2009-07-13 18:00 - 2009-07-13 19:45 - 000012496 ____A [D01EC09B6711A5F8E7E6564A4D0FBC90] (Microsoft Corporation) C:\Windows\System32\Drivers\swenum.sys
2009-07-13 18:01 - 2009-07-13 18:01 - 000029184 ____A [6E316C01CBA8B785FE495F5CC4F48C6F] (Microsoft Corporation) C:\Windows\System32\Drivers\tape.sys
2018-02-14 07:15 - 2018-01-12 10:44 - 001894120 ____A [8A54B9C4206FBAB2CEE3525CFD365241] (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys
2016-09-14 01:13 - 2016-07-07 09:08 - 000046080 ____A [7FE5586314EE7D6AA8483264A089E5AF] (Microsoft Corporation) C:\Windows\System32\Drivers\tcpipreg.sys
2010-11-20 21:24 - 2010-11-20 21:24 - 000026624 ____A [6F020A220388ECA0AB6062DC27BD16B6] (Microsoft Corporation) C:\Windows\System32\Drivers\tdi.sys
2009-07-13 18:16 - 2009-07-13 18:16 - 000015872 ____A [3371D21011695B16333A3934340C4E7C] (Microsoft Corporation) C:\Windows\System32\Drivers\tdpipe.sys
2015-12-15 11:50 - 2012-02-16 22:57 - 000023552 ____A [51C5ECEB1CDEE2468A1748BE550CFBC8] (Microsoft Corporation) C:\Windows\System32\Drivers\tdtcp.sys
2017-08-09 01:48 - 2017-07-29 08:56 - 000117248 ____A [4DD986720F7CB7A8A5D1226793097B9A] (Microsoft Corporation) C:\Windows\System32\Drivers\tdx.sys
2015-07-07 22:45 - 2015-07-07 22:45 - 000184608 ____A [48F64A35BA9F2E4AC0587DDA555FF951] (Intel Corporation) C:\Windows\System32\Drivers\TeeDriverW8x64.sys
2015-07-07 22:45 - 2015-07-07 22:45 - 000178976 ____A [E88F45EA2909C9E636A3CDC38EB2EDDD] (Intel Corporation) C:\Windows\System32\Drivers\TeeDriverx64.sys
2010-11-20 21:23 - 2010-11-20 21:23 - 000063360 ____A [561E7E1F06895D78DE991E01DD0FB6E5] (Microsoft Corporation) C:\Windows\System32\Drivers\termdd.sys
2018-01-26 15:55 - 2017-10-17 10:40 - 000334488 ____A [ED0881F203E72E113F562B074B653A52] (Trend Micro Inc.) C:\Windows\System32\Drivers\tmcomm.sys
2016-08-03 03:38 - 2016-02-05 13:03 - 000147904 ____A [48DDEF0B921DD331536CC82C1A8FF64F] (Microsoft Corporation) C:\Windows\System32\Drivers\tpm.sys
2018-02-21 16:16 - 2018-02-21 16:16 - 000028272 ____A [0D5A09B08568760AE85A801FCBC0F83D] () C:\Windows\System32\Drivers\TrueSight.sys
2016-02-22 13:27 - 2016-02-22 13:27 - 000452040 ____A [3E75A47D2DEFD2683DCA409572FBE8B2] (BitDefender S.R.L.) C:\Windows\System32\Drivers\Trufos.sys
2017-10-11 00:51 - 2017-08-13 15:45 - 000040448 ____A [2CF58216424757ED29605B4F18EC443C] (Microsoft Corporation) C:\Windows\System32\Drivers\tssecsrv.sys
2010-11-20 21:24 - 2010-11-20 21:24 - 000059392 ____A [D11C783E3EF9A3C52C0EBE83CC5000E9] (Microsoft Corporation) C:\Windows\System32\Drivers\TsUsbFlt.sys
2010-11-20 21:23 - 2010-11-20 21:23 - 000031232 ____A [9CC2CCAE8A84820EAECB886D477CBCB8] (Microsoft Corporation) C:\Windows\System32\Drivers\TsUsbGD.sys
2010-11-20 21:24 - 2010-11-20 21:24 - 000125440 ____A [3566A8DAAFA27AF944F5D705EAA64894] (Microsoft Corporation) C:\Windows\System32\Drivers\tunnel.sys
2009-07-13 17:38 - 2009-07-13 19:45 - 000064080 ____A [B4DD609BD7E282BFC683CEC7EAAAAD67] (Microsoft Corporation) C:\Windows\System32\Drivers\UAGP35.SYS
2010-11-20 21:23 - 2010-11-20 21:23 - 000328192 ____A [FF4232A1A64012BAA1FD97C7B67DF593] (Microsoft Corporation) C:\Windows\System32\Drivers\udfs.sys
2009-07-13 17:38 - 2009-07-13 19:45 - 000064592 ____A [4BFE1BC28391222894CBF1E7D0E42320] (Microsoft Corporation) C:\Windows\System32\Drivers\ULIAGPKX.SYS
2010-11-20 21:23 - 2010-11-20 21:23 - 000048640 ____A [DC54A574663A895C8763AF0FA1FF7561] (Microsoft Corporation) C:\Windows\System32\Drivers\umbus.sys
2009-07-13 18:06 - 2009-07-13 18:06 - 000009728 ____A [B2E8E8CB557B156DA5493BBDDCC1474D] (Microsoft Corporation) C:\Windows\System32\Drivers\umpass.sys
2015-12-01 17:02 - 2015-07-26 22:24 - 000041984 ____A [2CAF6E9B08605A82D66E11C157CCBE02] (Intel Corporation) C:\Windows\System32\Drivers\USB3Ver.dll
2013-12-03 19:12 - 2013-12-03 19:12 - 000019968 ____A [92B3172E8C14C1444682F510843A9988] (Microsoft Corporation) C:\Windows\System32\Drivers\usb8023.sys
2016-12-21 12:20 - 2016-12-21 12:20 - 000054784 ____A [F957092C63CD71D85903CA0D8370F473] (Apple, Inc.) C:\Windows\System32\Drivers\usbaapl64.sys
2013-12-03 19:16 - 2013-12-03 19:16 - 000109824 ____A [B0435098C81D04CAFFF80DDB746CD3A2] (Microsoft Corporation) C:\Windows\System32\Drivers\USBAUDIO.sys
2010-11-20 21:24 - 2010-11-20 21:24 - 000032896 ____A [292A8E03B3FCE04E39B5BE9B14132030] (Microsoft Corporation) C:\Windows\System32\Drivers\USBCAMD2.sys
2017-11-14 14:23 - 2017-10-17 20:06 - 000099840 ____A [9E68E917FB4B5C983438969643F53BEF] (Microsoft Corporation) C:\Windows\System32\Drivers\usbccgp.sys
2013-12-03 19:16 - 2013-12-03 19:16 - 000100864 ____A [80B0F7D5CCF86CEB5D402EAAF61FEC31] (Microsoft Corporation) C:\Windows\System32\Drivers\usbcir.sys
2017-11-14 14:23 - 2017-10-17 20:06 - 000007808 ____A [D017EED379FFE7CCFF0F825D53AB8096] (Microsoft Corporation) C:\Windows\System32\Drivers\usbd.sys
2017-11-14 14:23 - 2017-10-17 20:06 - 000056320 ____A [3F9D3902CE931E2A28DD8452AE915B67] (Microsoft Corporation) C:\Windows\System32\Drivers\usbehci.sys
2017-11-14 14:23 - 2017-10-17 20:06 - 000344064 ____A [86B65EEBC03B936DE8B26E5A18D98FA2] (Microsoft Corporation) C:\Windows\System32\Drivers\usbhub.sys
2017-11-14 14:23 - 2017-10-17 20:06 - 000025600 ____A [099C2931C6F73EB1B9E13C560F61B50D] (Microsoft Corporation) C:\Windows\System32\Drivers\usbohci.sys
2017-11-14 14:23 - 2017-10-17 20:06 - 000327168 ____A [03BE4B07FADA1FEA51480453EA229642] (Microsoft Corporation) C:\Windows\System32\Drivers\usbport.sys
2009-07-13 18:38 - 2009-07-13 18:38 - 000025088 ____A [73188F58FB384E75C4063D29413CEE3D] (Microsoft Corporation) C:\Windows\System32\Drivers\usbprint.sys
2010-11-20 21:24 - 2010-11-20 21:24 - 000031744 ____A [C3EC945DEC43C00E2AD4C98DDDD064C7] (Microsoft Corporation) C:\Windows\System32\Drivers\usbrpm.sys
2013-12-03 19:15 - 2013-12-03 19:15 - 000042496 ____A [9661DA76B4531B2DA272ECCE25A8AF24] (Microsoft Corporation) C:\Windows\System32\Drivers\usbscan.sys
2016-03-08 14:51 - 2016-02-03 12:07 - 000091648 ____A [D029DD09E22EB24318A8FC3D8138BA43] (Microsoft Corporation) C:\Windows\System32\Drivers\USBSTOR.SYS
2017-11-14 14:23 - 2017-10-17 20:06 - 000030720 ____A [5D7651347C7D702F4A5DE53603DC024F] (Microsoft Corporation) C:\Windows\System32\Drivers\usbuhci.sys
2013-12-03 19:16 - 2013-12-03 19:16 - 000185344 ____A [1F775DA4CF1A3A1834207E975A72E9D7] (Microsoft Corporation) C:\Windows\System32\Drivers\usbvideo.sys
2009-07-13 18:01 - 2009-07-13 19:45 - 000036432 ____A [C5C876CCFC083FF3B128F933823E87BD] (Microsoft Corporation) C:\Windows\System32\Drivers\vdrvroot.sys
2009-07-13 17:38 - 2009-07-13 17:38 - 000029184 ____A [53E92A310193CB3C03BEA963DE7D9CFC] (Microsoft Corporation) C:\Windows\System32\Drivers\vga.sys
2009-07-13 17:38 - 2009-07-13 17:38 - 000029184 ____A [DA4DA3F5E02943C2DC8C6ED875DE68DD] (Microsoft Corporation) C:\Windows\System32\Drivers\vgapnp.sys
2010-11-20 21:23 - 2010-11-20 21:23 - 000215936 ____A [2CE2DF28C83AEAF30084E1B1EB253CBB] (Microsoft Corporation) C:\Windows\System32\Drivers\vhdmp.sys
2009-07-13 17:19 - 2009-07-13 19:45 - 000017488 ____A [E5689D93FFE4E5D66C0178761240DD54] (VIA Technologies, Inc.) C:\Windows\System32\Drivers\viaide.sys
2009-07-13 17:38 - 2009-07-13 17:38 - 000129024 ____A [E7353D59C9842BC7299FAEB7E7E09340] (Microsoft Corporation) C:\Windows\System32\Drivers\videoprt.sys
2010-11-21 01:16 - 2010-11-20 21:23 - 000199552 ____A [86EA3E79AE350FEA5331A1303054005F] (Microsoft Corporation) C:\Windows\System32\Drivers\vmbus.sys
2010-11-21 01:16 - 2010-11-20 21:23 - 000021760 ____A [7DE90B48F210D29649380545DB45A187] (Microsoft Corporation) C:\Windows\System32\Drivers\VMBusHID.sys
2010-11-21 01:16 - 2010-11-20 21:23 - 000006656 ____A [E60C0A09F997826C7627B244195AB581] (Microsoft Corporation) C:\Windows\System32\Drivers\vms3cap.sys
2010-11-21 01:16 - 2010-11-20 21:23 - 000046464 ____A [7785DC213270D2FC066538DAF94087E7] (Microsoft Corporation) C:\Windows\System32\Drivers\vmstorfl.sys
2010-11-20 21:23 - 2010-11-20 21:23 - 000071552 ____A [D2AAFD421940F640B407AEFAAEBD91B0] (Microsoft Corporation) C:\Windows\System32\Drivers\volmgr.sys
2017-08-09 01:48 - 2017-07-07 09:33 - 000363752 ____A [85C5468BC395819AE2A0C747334BA14C] (Microsoft Corporation) C:\Windows\System32\Drivers\volmgrx.sys
2015-12-01 16:41 - 2015-12-01 16:41 - 000296320 ____A [DF8126BD41180351A093A3AD2FC8903B] (Microsoft Corporation) C:\Windows\System32\Drivers\volsnap.sys
2009-06-10 14:37 - 2009-07-13 19:45 - 000161872 ____A [5E2016EA6EBACA03C04FEAC5F330D997] (VIA Technologies Inc.,Ltd) C:\Windows\System32\Drivers\vsmraid.sys
2009-07-13 18:07 - 2009-07-13 18:07 - 000024576 ____A [36D4720B72B5C5D9CB2B9C29E9DF67A1] (Microsoft Corporation) C:\Windows\System32\Drivers\vwifibus.sys
2015-12-01 16:40 - 2015-12-01 16:40 - 000060416 ____A [13A0DECD1794DE60A8427862C8669D27] (Microsoft Corporation) C:\Windows\System32\Drivers\vwififlt.sys
2015-12-01 16:40 - 2015-12-01 16:40 - 000018432 ____A [49003B357D101CDC474937437ECF5ABC] (Microsoft Corporation) C:\Windows\System32\Drivers\vwifimp.sys
2009-07-13 18:02 - 2009-07-13 18:02 - 000027776 ____A [4E9440F4F152A7B944CB1663D3935A3E] (Microsoft Corporation) C:\Windows\System32\Drivers\wacompen.sys
2018-01-05 07:27 - 2017-12-31 19:55 - 000088576 ____A [DC4CB3626E7423B9D83CF1B4857FDF15] (Microsoft Corporation) C:\Windows\System32\Drivers\wanarp.sys
2009-07-13 17:37 - 2009-07-13 17:37 - 000042496 ____A [FC438D1430B28618E2D0C7C332A710AD] (Microsoft Corporation) C:\Windows\System32\Drivers\watchdog.sys
2009-07-13 17:19 - 2009-07-13 19:45 - 000021056 ____A [72889E16FF12BA0F235467D6091B17DC] (Microsoft Corporation) C:\Windows\System32\Drivers\wd.sys
2015-04-30 00:01 - 2015-04-30 00:01 - 000023200 ____A [D0335A55E5C3F812548E18300C2ACB62] (Western Digital Technologies) C:\Windows\System32\Drivers\wdcsam64.sys
2013-12-03 19:16 - 2013-12-03 19:16 - 000785624 ____A [E2C933EDBC389386EBE6D2BA953F43D8] (Microsoft Corporation) C:\Windows\System32\Drivers\Wdf01000.sys
2013-12-03 19:16 - 2013-12-03 19:16 - 000054376 ____A [AEA0A67275CFBA0E463E00C6E9A1DDAE] (Microsoft Corporation) C:\Windows\System32\Drivers\WdfLdr.sys
2009-07-13 18:09 - 2009-07-13 18:09 - 000012800 ____A [611B23304BF067451A9FDEE01FBDD725] (Microsoft Corporation) C:\Windows\System32\Drivers\wfplwf.sys
2009-07-13 17:29 - 2009-07-13 19:45 - 000022096 ____A [05ECAEC3E4529A7153B3136CEB49F0EC] (Microsoft Corporation) C:\Windows\System32\Drivers\wimmount.sys
2010-11-21 01:16 - 2010-11-20 21:23 - 000052096 ____A [B4A1002206F6810EABC027DBBCE3B737] (Microsoft Corporation) C:\Windows\System32\Drivers\winhv.sys
2010-11-20 21:23 - 2010-11-20 21:23 - 000041984 ____A [FE88B288356E7B47B74B13372ADD906D] (Microsoft Corporation) C:\Windows\System32\Drivers\winusb.sys
2009-07-13 17:31 - 2009-07-13 17:31 - 000014336 ____A [F6FF8944478594D0E414D3F048F0D778] (Microsoft Corporation) C:\Windows\System32\Drivers\wmiacpi.sys
2009-07-13 17:19 - 2009-07-13 19:45 - 000016464 ____A [FC146F46872D4C5B529B89A5131FD1E6] (Microsoft Corporation) C:\Windows\System32\Drivers\wmilib.sys
2009-07-13 18:10 - 2009-07-13 18:10 - 000021504 ____A [6BCC1D7D2FD2453957C5479A32364E52] (Microsoft Corporation) C:\Windows\System32\Drivers\ws2ifsl.sys
2009-07-13 18:39 - 2009-07-13 18:39 - 000023040 ____A [8D918B1DB190A4D9B1753A66FA8C96E8] (Microsoft Corporation) C:\Windows\System32\Drivers\WSDPrint.sys
2009-07-13 18:35 - 2009-07-13 18:35 - 000025088 ____A [4A2A5C50DD1A63577D3ACA94269FBC7F] (Microsoft Corporation) C:\Windows\System32\Drivers\WSDScan.sys
2016-08-04 02:02 - 2012-07-25 20:26 - 000087040 ____A [AB886378EEB55C6C75B4F2D14B6C869F] (Microsoft Corporation) C:\Windows\System32\Drivers\WUDFPf.sys
2016-08-04 02:02 - 2012-07-25 20:26 - 000198656 ____A [DDA4CAF29D8C0A297F886BFE561E6659] (Microsoft Corporation) C:\Windows\System32\Drivers\WUDFRd.sys
2010-11-21 01:06 - 2017-11-14 16:15 - 000000000 ____D [00000000000000000000000000000000] () C:\Windows\System32\Drivers\en-US
2010-11-21 01:06 - 2010-11-21 01:06 - 000011776 ____A [54DB21D20958E3D690BCC9F85E760354] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\1394ohci.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000009216 ____A [32022C811A44B86FF45D20ACAB6D9BF6] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\acpi.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000014848 ____A [E6A5E6AD9C6F4F30061068F321C0EC5A] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\afd.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002560 ____A [112E5E0E93886F5F4662F8AB16A41953] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\AGP440.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002048 ____A [431EEF89634DC46CCADD489A5E242D96] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\amdide.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000014336 ____A [5A407CCC623EF4748FCFD65D8BF36E53] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\amdk8.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000014336 ____A [02EF6091D3B2E3DD52148D69B084CC6A] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\amdppm.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000003072 ____A [0AB55BC2F5C3B1F6DD41C4A8F2C598AE] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ataport.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000003072 ____A [2990593CBE18904D5EC0D8D012F56BE0] (ATI Technologies Inc.) C:\Windows\System32\Drivers\en-US\atikmdag.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000007168 ____A [39C77D306B5BC4EE5B84F257BD8C11D4] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\battc.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000025600 ____A [D33E31F95C553085F8F008269716AE3C] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\bfe.dll.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002560 ____A [19772EAF65F4DC67D258A0204BDF53BB] (Brother Industries Ltd.) C:\Windows\System32\Drivers\en-US\BrParwdm.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000010240 ____A [E2D40298D837850BE3D3ED553D557916] (Brother Industries Ltd.) C:\Windows\System32\Drivers\en-US\BrSerIb.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000010240 ____A [FFFAE2F485EE4846D3926D8143DC52D0] (Brother Industries Ltd.) C:\Windows\System32\Drivers\en-US\BrSerId.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002048 ____A [996AD950DC5511CAC3E23887F36D00CE] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\bthenum.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000004608 ____A [9F6C0ED8C73E45B8B39E93C4F19EC51D] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\bthpan.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000007680 ____A [E811F270074C90EFFB62E26419C5A478] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\bthport.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002560 ____A [427AFD042BF91F651AAAF2F8333946D3] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\BTHUSB.SYS.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002048 ____A [E4AD0963F2B4C256C9B752809FF5A17D] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\cdrom.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002048 ____A [E113E3358247C4399ACAA9394A13CAC1] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\disk.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002560 ____A [4DF602FA4237A02CFBA5443807ACE756] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\Dot4usb.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000005120 ____A [9F29D656CAA5CB37DC988FC1B0899728] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\fltmgr.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000014336 ____A [F376F1DB8D6B5C7D4AACA77016547269] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\fvevol.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002560 ____A [F800E677010DCCC1D1F3DD80C1208ADD] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\GAGP30KX.SYS.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000004096 ____A [CF9ED88D2707FB6175D56A8EEF56AE2A] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\hdaudbus.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000003072 ____A [C9AFAE18805C92774E55D85C34687D98] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\HdAudio.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000003072 ____A [6289F615503FABB5721E885F76C21094] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\hidbth.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000032256 ____A [E7385B794486432C74CA8CBEAE1E957C] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\http.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000010240 ____A [7932917F9F40083310D3C597CA89138A] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\i8042prt.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000014336 ____A [A9DAE67F67C8736EAB89BE629A100134] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\intelppm.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000006144 ____A [32E82AD8C30775AF16F8FCB6B233768E] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\IPMIDrv.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000003584 ____A [13121C32919056A572109E59591E3DD1] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ipnat.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000003584 ____A [095EE8818E7CFEEFCA144737D5EE7EC5] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\isapnp.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000004608 ____A [07E46CC39BDC4296D798560E248C4C8F] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\kbdclass.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002560 ____A [7776875C8810B7995B7F8935A73C5675] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\kbdhid.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000006144 ____A [09654F384E8F48403AFEED23EC29D98A] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\luafv.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000003584 ____A [B9D5D5C08D86E45933607821949F64A3] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\modem.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000004096 ____A [586AF4C75447643EA998E7AFE717F6B3] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\mouclass.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002560 ____A [A15D1C07F7CF3AF5F8595187D7B2D7BA] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\mouhid.sys.mui
2015-12-15 12:04 - 2015-07-15 12:02 - 000002560 ____A [DCB0BF8BEDF446B36EE1A77C0D86F31F] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\mountmgr.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000026624 ____A [5824985855E951FD7081EDA73014159F] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\mpio.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000005632 ____A [21DDE99325EE591D56E838F65372FCDC] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\msdsm.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000003072 ____A [21AD775A1C84C086E630D3C8BEE807FF] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\mssmbios.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002560 ____A [CD483881C9EEAA0A092BADB0E9E31D44] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\MTConfig.sys.mui
2015-03-12 22:14 - 2015-03-12 22:14 - 000012800 ____A [8129E93C338F8E40619784FF4D003063] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\mup.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000035328 ____A [C3DB52AAA8F7FBE7BB48BBE1552FD9D4] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ndis.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000005632 ____A [0E5C3B2A88938BFA39A3660525EED627] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ndiscap.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000003072 ____A [82364E6C73DE7B0D9A14ED696663691D] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ndisuio.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000059904 ____A [826CC149F7AE403090D8EE13421907D3] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ntfs.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002560 ____A [402C5F373E3348172A21E2C4E47FE9A5] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\NV_AGP.SYS.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000013824 ____A [4A911620A8D4A92B4829088313262C65] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\nwifi.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000011776 ____A [FCF1928FC42F3FF495AABBF531925912] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ohci1394.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000015360 ____A [FE8EE46359CCA5797116E999AC9027E8] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\pacer.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000003584 ____A [1897DD879E564636B62C7438BEDD7ED8] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\parport.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002560 ____A [5B7B4A639557BCCBF6CFB19D01CED6F6] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\partmgr.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000008192 ____A [852A0E7E335D7403456C5493C3602DFA] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\pci.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000004096 ____A [C4179FB59F7C58207724DD200A50A623] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\pcmcia.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002560 ____A [A32BF5D2ABCE0A52AC08759883100FA1] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\pnpmem.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000003584 ____A [FD3DC59E253F1588CFDC984A08D5AB06] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\portcls.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000014336 ____A [12EE9100FC4EE882DC9D807518EA456F] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\processr.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000003584 ____A [9AE150B07FBB235F7DD98B016B728245] (SCM Microsystems, Inc.) C:\Windows\System32\Drivers\en-US\pscr.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002560 ____A [EBF10A20E41E54D35E24BB1477B3790A] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\qwavedrv.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000004608 ____A [836EC1DA853C3CC5AFA72FF1C56FECC1] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\rdbss.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002560 ____A [6289416B950764322B45E9C55A5645B4] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\rdpwd.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000003072 ____A [0A86155D9CF13C36C1C11097895B7D23] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\RNDISMP.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000003072 ____A [69A5BEFB6D15DB21FEA9ACC7E514B29E] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\rndismp6.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000003072 ____A [0A86155D9CF13C36C1C11097895B7D23] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\rndismpx.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002560 ____A [68A170329824FD91839D15DA6CB616C8] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\scfilter.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000003072 ____A [67BDCDBBB8FB81865DCDB07142471C81] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\scsiport.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000010240 ____A [28FDCD5276E588B1C82E8390C331A672] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\serial.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000005120 ____A [EC3DB882F53F67457701F2674E16A255] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\sermouse.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002560 ____A [531E4F70FCD5D5A278EAB6E2D1849847] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\serscan.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002560 ____A [8B900D6E6253E72975747D40F0B4CE4D] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\srv.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000044032 ____A [147A70680DFE10726938C932C529C500] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\tcpip.sys.mui
2016-08-03 03:38 - 2016-02-05 12:53 - 000008192 ____A [132547D30ECBC0DEE0E52A4B1F19D085] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\tpm.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000003072 ____A [21F72D8267B7CADE3A734212E5B6B8B4] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\tsusbflt.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000007680 ____A [00D0ADEB9470F4E73C675F4271579AEE] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\tunnel.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002560 ____A [258EE691A306B61FD78F6EA2AE68EC4D] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\UAGP35.SYS.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002560 ____A [0603331E5CCDC80476C869C22AB49CEC] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ULIAGPKX.SYS.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000003072 ____A [B1EF6396D59394A839242635B193C19D] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\umbus.sys.mui
2017-11-14 14:23 - 2017-10-17 20:29 - 000003072 ____A [5E8FE83DC4ECB24D27A864AA0AC28A61] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\usbehci.sys.mui
2017-11-14 14:23 - 2017-10-17 20:29 - 000011776 ____A [7727F33D6C8F04492AB36F34808B43FE] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\usbhub.sys.mui
2017-11-14 14:23 - 2017-10-17 20:29 - 000024576 ____A [536FFFDE85B0E5FAA180FDD206156CA6] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\usbport.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002048 ____A [A477495EDAB1FC652C3E7F48D9879E61] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\usbrpm.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000003584 ____A [B6CBD22F79E099E7B9C7AD30B0EB3E33] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\vdrvroot.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000003584 ____A [9EA0366724437C0448BC242C90D073BF] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\vhdmp.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002560 ____A [8B43588430EBA0E1C4C6B2909B3FA616] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\volmgrx.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000023552 ____A [308E04CFA8407B0C7099C9D40BC19023] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\volsnap.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002048 ____A [AC0CDAA74A6DF9FA99D39BA5E3E32852] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\vwifibus.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000004096 ____A [4820660F8636CA590F6DDE44037C240A] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\wacompen.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002048 ____A [29F6CD4D49286520658A9F8257DB95ED] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\wd.sys.mui
2015-12-01 16:40 - 2015-12-01 16:40 - 000002560 ____A [986A09DC5E1645ED4733065547DCC5DD] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\wdf01000.sys.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000002048 ____A [FA13EB401D8A26D185C6D0B2AA1427E5] (Microsoft Corporation) C:\Windows\System32\Drivers\en-US\ws2ifsl.sys.mui
2009-07-13 21:20 - 2018-01-24 18:00 - 000000000 ____D [00000000000000000000000000000000] () C:\Windows\System32\Drivers\etc
2009-07-13 20:34 - 2018-01-24 18:00 - 000000027 ____N [6A4029CFF35FD4BA34C001C1ED5D9945] () C:\Windows\System32\Drivers\etc\hosts
2016-01-06 16:36 - 2018-02-26 08:44 - 000000440 ____A [90399DB9591FD7A4F2D5C812B45A33D2] () C:\Windows\System32\Drivers\etc\hosts.ics
2009-07-13 20:35 - 2009-06-10 15:00 - 000003683 ____A [18413B90E1B291EC3E777A845C37CFEE] () C:\Windows\System32\Drivers\etc\lmhosts.sam
2009-07-13 20:34 - 2009-06-10 15:00 - 000000407 ____A [B65A1232FB4B35827CE7C5E2F8EC8947] () C:\Windows\System32\Drivers\etc\networks
2009-07-13 20:34 - 2009-06-10 15:00 - 000001358 ____A [7700D22FA108234E623D65FA72D9E29C] () C:\Windows\System32\Drivers\etc\protocol
2009-07-13 20:34 - 2009-06-10 15:00 - 000017463 ____A [D9E1A01B480D961B7CF0509D597A92D6] () C:\Windows\System32\Drivers\etc\services
2009-07-13 21:20 - 2016-08-02 12:21 - 000000000 ____D [00000000000000000000000000000000] () C:\Windows\System32\Drivers\UMDF
2009-07-13 18:21 - 2009-07-13 19:41 - 000299520 ____A [91D6F0AB79AA36FFB932157865206F35] (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\WpdFs.dll
2015-06-23 17:19 - 2015-06-23 17:19 - 001195008 ____A [E506DF49926F3086124F629D3352976E] (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\WpdMtpDr.dll
2010-11-21 01:06 - 2010-11-21 01:06 - 000000000 ____D [00000000000000000000000000000000] () C:\Windows\System32\Drivers\UMDF\en-US
2010-11-21 01:06 - 2010-11-21 01:06 - 000002560 ____A [5D15B0705E707F02D71B9547007D2727] (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\en-US\WpdMtpDr.dll.mui
2010-11-21 01:06 - 2010-11-21 01:06 - 000006144 ____A [930D103D5C3BE0F6074C67C0F3296602] (Microsoft Corporation) C:\Windows\System32\Drivers\UMDF\en-US\WUDFUsbccidDriver.dll.mui
 
====== End of Folder: ======
 
 
========= Reg query "HKLM\SYSTEM\Select" =========
 
 
HKEY_LOCAL_MACHINE\SYSTEM\Select
    Current    REG_DWORD    0x1
    Default    REG_DWORD    0x1
    Failed    REG_DWORD    0x0
    LastKnownGood    REG_DWORD    0x2
 
 
 
========= End of Reg: =========
 
 
========= RemoveProxy: =========
 
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => removed successfully
"HKU\S-1-5-21-276656373-3833887971-3109750036-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
"HKU\S-1-5-21-276656373-3833887971-3109750036-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => removed successfully
"HKU\S-1-5-21-276656373-3833887971-3109750036-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => removed successfully
 
 
========= End of RemoveProxy: =========
 
 
========= netsh advfirewall reset =========
 
Ok.
 
 
========= End of CMD: =========
 
 
========= netsh advfirewall set allprofiles state ON =========
 
Ok.
 
 
========= End of CMD: =========
 
 
========= ipconfig /flushdns =========
 
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========= End of CMD: =========
 
 
========= netsh winsock reset catalog =========
 
 
Sucessfully reset the Winsock Catalog.
You must restart the computer in order to complete the reset.
 
 
========= End of CMD: =========
 
 
========= netsh int ip reset C:\resettcpip.txt =========
 
Reseting Global, OK!
Reseting Interface, OK!
Reseting Unicast Address, OK!
Reseting Route, OK!
Restart the computer to complete this action.
 
 
========= End of CMD: =========
 
 
========= FOR /F "usebackq delims==" %i IN (`wevtutil el`) DO wevtutil cl "%i" =========
 
 
========= End of CMD: =========
 
 
========= Bitsadmin /Reset /Allusers =========
 
 
BITSADMIN version 3.0 [ 7.5.7601 ]
BITS administration utility.
© Copyright 2000-2006 Microsoft Corp.
 
BITSAdmin is deprecated and is not guaranteed to be available in future versions of Windows.
Administrative tools for the BITS service are now provided by BITS PowerShell cmdlets.
 
0 out of 0 jobs canceled.
 
========= End of CMD: =========
 
 
=========== EmptyTemp: ==========
 
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 93838125 B
Java, Flash, Steam htmlcache => 160751 B
Windows/system/drivers => 37627030 B
Edge => 0 B
Chrome => 698682671 B
Firefox => 11253537 B
Opera => 0 B
 
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 91868 B
systemprofile32 => 66088 B
LocalService => 0 B
NetworkService => 75187904 B
Brenda new => 433725574 B
Edwards => 547185 B
QBDataServiceUser18 => 0 B
QBDataServiceUser27 => 0 B
 
RecycleBin => 6706607112 B
EmptyTemp: => 7.5 GB temporary data Removed.
 
================================
 
 
The system needed a reboot.
 
==== End of Fixlog 08:48:23 ====


#5 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,635 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:02:57 AM

Posted 28 February 2018 - 11:29 AM

Let me know if the popup returns.


No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#6 Madfod

Madfod
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:57 AM

Posted 01 March 2018 - 10:39 AM

It's back... I left my mail up last night, and this morning it was back. When I maximized the page, this Deceptive Site Warning replaced it, when i clicked the back arrow it closed the tab, so I was unable to capture the code or screenshot. I did manage to get the Deceptive Site captured but it closed before I could get the source code for it. The Deceptive site is a warning from Chrome and no threat, but I have not seen it close the tab like that, in the past I had to End Task.

 I will try again today to capture the code for both... Although, it could take another day or two...

I will keep you posted.

 

Thanks

Madfod :deadhorse:

Attached Files



#7 Madfod

Madfod
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:57 AM

Posted 01 March 2018 - 12:14 PM

Here ya go! Source code for ESA

The zip file was uploaded to your link.

Attached Files



#8 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,635 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:02:57 AM

Posted 01 March 2018 - 12:30 PM

Yes, that is Chrome's Security. Will be here.


No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#9 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,635 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:02:57 AM

Posted 01 March 2018 - 12:31 PM

Duplicate


Edited by JSntgRvr, 01 March 2018 - 12:31 PM.

No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#10 Madfod

Madfod
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:57 AM

Posted 01 March 2018 - 01:30 PM

 Just got this redirect, it tried to load  another page and then redirected to this. This was while reading mail.

Attached Files



#11 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,635 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:02:57 AM

Posted 01 March 2018 - 01:38 PM

It is giving me the same results. There must be something in Chrome calling this upon.

 

Remove Chrome and test.


No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#12 Madfod

Madfod
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:57 AM

Posted 02 March 2018 - 03:00 PM

   :axe: My rustiness is shinning Brightly... If I had a nickle for every time I've uninstalled IE, for similar circumstances, I could retire comfortably  :ranting:

But, in my defense, the agnostic behavior as billjordan describes, and the fact that it happened at home on another computer had be baffled

 No ISA overnight and none so far today.... Hopefully you killed it :bowdown:

Will keep you posted...

 

Madfod :deadhorse:


Edited by Madfod, 02 March 2018 - 03:00 PM.


#13 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,635 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:02:57 AM

Posted 02 March 2018 - 03:13 PM

Seems that the latest security update on chrome do not allow to remove extensions. Upon restart, Chrome will restore all files and registry items. The most probable way is to copy and paste the following (chrome://extensions/) to the address box and load. You may then remove the extension.


No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#14 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,635 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:02:57 AM

Posted 04 March 2018 - 07:39 PM

How is it going?


No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#15 Madfod

Madfod
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:57 AM

Posted 05 March 2018 - 09:25 AM

Nice going Chrome!!! if the bugs are not enough... :smash:

No redirects from Chrome ,  IE, or Mozilla over the weekend, However, Mozilla keeps crashing, not sure if it is related, I haven't had the time to read the log carefully, but here it is if you want to take a look. I rarely use Mozilla so it is not an issue at the moment, was using it to see if we could get a redirect out of it...

Thanks for your help, I will continue my observation this week to see if I can trigger the redirect again... So far so good!  I also want to try it again at home.

 

Thanks again!

Madfod :deadhorse:

 

 

 

AdapterDeviceID: 0x1382
AdapterDriverVersion: 10.18.13.5362
AdapterSubsysID: 6893103c
AdapterVendorID: 0x10de
Add-ons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:47.0.2,loop%40mozilla.org:1.3.2,e10srollout%40mozilla.org:1.0,firefox%40getpocket.com:1.0.2,websensehelper%40mozilla.org:1.0
AvailablePageFile: 22771335168
AvailablePhysicalMemory: 7095263232
AvailableVirtualMemory: 179032064
BIOS_Manufacturer: AMI
BlockedDllList: 
BreakpadReserveAddress: 46858240
BreakpadReserveSize: 67108864
BuildID: 20161031133903
ContainsMemoryReport: 1
CrashTime: 1520167315
E10SCohort: unsupportedChannel
EMCheckCompatibility: true
FramePoisonBase: 00000000f0de0000
FramePoisonSize: 65536
InstallTime: 1519999250
IsGarbageCollecting: 1
Notes: AdapterVendorID: 0x10de, AdapterDeviceID: 0x1382, AdapterSubsysID: 6893103c, AdapterDriverVersion: 10.18.13.5362
FP(D000-L100000-W00000000-T0000) D2D1.1? DWrite? DWrite+ D2D1.1+ D3D11 Layers? D3D11 Layers+ WebGL? EGL? EGL+ GL Context? GL Context+ WebGL+ 
OOMAllocationSize: 1438938
ProductID: {ec8030f7-c20a-464f-9b0e-13a3a9e97384}
ProductName: Firefox
ReleaseChannel: release
SafeMode: 0
SecondsSinceLastCrash: 180197
StartupTime: 1519999250
SystemMemoryUsePercentage: 58
TelemetryEnvironment: {"build":{"applicationId":"{ec8030f7-c20a-464f-9b0e-13a3a9e97384}","applicationName":"Firefox","architecture":"x86","buildId":"20161031133903","version":"47.0.2","vendor":"Mozilla","platformVersion":"47.0.2","xpcomAbi":"x86-msvc","hotfixVersion":"20170302.01"},"partner":{"distributionId":null,"distributionVersion":null,"partnerId":null,"distributor":null,"distributorChannel":null,"partnerNames":[]},"system":{"memoryMB":16320,"virtualMaxMB":4096,"cpu":{"count":8,"cores":4,"vendor":"GenuineIntel","family":6,"model":94,"stepping":3,"l2cacheKB":256,"l3cacheKB":8192,"speedMHz":3408,"extensions":["hasMMX","hasSSE","hasSSE2","hasSSE3","hasSSSE3","hasSSE4_1","hasSSE4_2"]},"os":{"name":"Windows_NT","version":"6.1","locale":"en-US","servicePackMajor":1,"servicePackMinor":0,"installYear":2015},"hdd":{"profile":{"model":"ST2000DM001-1ER164","revision":"HP51"},"binary":{"model":"ST2000DM001-1ER164","revision":"HP51"},"system":{"model":"ST2000DM001-1ER164","revision":"HP51"}},"gfx":{"D2DEnabled":true,"DWriteEnabled":true,"adapters":[{"description":"NVIDIA GeForce GTX 745","vendorID":"0x10de","deviceID":"0x1382","subsysID":"6893103c","RAM":4095,"driver":"nvd3dumx,nvwgf2umx,nvwgf2umx nvd3dum,nvwgf2um,nvwgf2um","driverVersion":"10.18.13.5362","driverDate":"7-22-2015","GPUActive":true}],"monitors":[{"screenWidth":1920,"screenHeight":1080,"refreshRate":60,"pseudoDisplay":false}],"features":{"compositor":"d3d11","d3d11":{"status":"available","version":45056,"warp":false,"textureSharing":true,"blacklisted":false},"d2d":{"status":"available","version":"1.1"}}},"isWow64":true},"settings":{"blocklistEnabled":true,"e10sEnabled":false,"e10sCohort":"unsupportedChannel","telemetryEnabled":false,"locale":"en-US","update":{"channel":"release","enabled":true,"autoDownload":true},"userPrefs":{"browser.cache.disk.capacity":358400,"browser.newtabpage.enhanced":true,"browser.shell.checkDefaultBrowser":false},"addonCompatibilityCheckEnabled":true,"isDefaultBrowser":false,"defaultSearchEngine":"google","defaultSearchEngineData":{"name":"Google","loadPath":"jar:[app]/omni.ja!browser/google.xml","submissionURL":"https://www.google.com/search?q=&ie=utf-8&oe=utf-8&client=firefox-b"}},"profile":{"creationDate":16904},"addons":{"activeAddons":{"loop@mozilla.org":{"blocklisted":false,"description":"Web sharing for Firefox","name":"Firefox Hello","userDisabled":false,"appDisabled":false,"version":"1.3.2","scope":1,"type":"extension","foreignInstall":false,"hasBinaryComponents":false,"installDay":16899,"updateDay":17592,"isSystem":true},"e10srollout@mozilla.org":{"blocklisted":false,"description":"Staged rollout of Firefox multi-process feature.","name":"Multi-process staged rollout","userDisabled":false,"appDisabled":false,"version":"1.0","scope":1,"type":"extension","foreignInstall":false,"hasBinaryComponents":false,"installDay":17592,"updateDay":17592,"isSystem":true},"firefox@getpocket.com":{"blocklisted":false,"description":"When you find something you want to view later, put it in Pocket.","name":"Pocket","userDisabled":false,"appDisabled":false,"version":"1.0.2","scope":1,"type":"extension","foreignInstall":false,"hasBinaryComponents":false,"installDay":17592,"updateDay":17592,"isSystem":true},"websensehelper@mozilla.org":{"blocklisted":false,"description":"Checks for the non-presence of Websense to allow updates to happen.","name":"Websense Helper","userDisabled":false,"appDisabled":false,"version":"1.0","scope":1,"type":"extension","foreignInstall":false,"hasBinaryComponents":false,"installDay":17592,"updateDay":17592,"isSystem":true}},"theme":{"id":"{972ce4c6-7e08-4474-a285-3208198ce6fd}","blocklisted":false,"description":"The default theme.","name":"Default","userDisabled":false,"appDisabled":false,"version":"47.0.2","scope":4,"foreignInstall":false,"hasBinaryComponents":false,"installDay":16899,"updateDay":17592},"activePlugins":[{"name":"Adobe Acrobat","version":"18.11.20036.3123","description":"Adobe PDF Plug-In For Firefox and Netscape 18.11.20036","blocklisted":false,"disabled":false,"clicktoplay":true,"mimeTypes":["application/pdf","application/vnd.adobe.pdfxml","application/vnd.adobe.x-mars","application/vnd.fdf","application/vnd.adobe.xfdf","application/vnd.adobe.xdp+xml","application/vnd.adobe.xfd+xml"],"updateDay":17573},{"name":"Google Update","version":"1.3.33.7","description":"Google Update","blocklisted":false,"disabled":false,"clicktoplay":true,"mimeTypes":["application/x-vnd.google.update3webcontrol.3","application/x-vnd.google.oneclickctrl.9"],"updateDay":17591},{"name":"Photo Gallery","version":"16.4.3528.331","description":"NPWLPG","blocklisted":false,"disabled":false,"clicktoplay":true,"mimeTypes":["application/x-wlpg3-detect","application/x-wlpg-detect"],"updateDay":16161},{"name":"Intel® Identity Protection Technology","version":"4.0.68.0","description":"Intel web components for Intel® Identity Protection Technology","blocklisted":false,"disabled":false,"clicktoplay":true,"mimeTypes":["application/x-vnd-intel-webapi-ipt-4.0.68"],"updateDay":16546},{"name":"Intel® Identity Protection Technology","version":"4.0.68.0","description":"Intel web components updater - Installs and updates the Intel web components","blocklisted":false,"disabled":false,"clicktoplay":true,"mimeTypes":["application/x-vnd-intel-webapi-updater"],"updateDay":16546},{"name":"RocketLife Secure Plug-In Layer","version":"1.0.5.0","description":"A component of your photo software powered by RocketLife","blocklisted":false,"disabled":false,"clicktoplay":true,"mimeTypes":["application/x-rocketlife-plugin"],"updateDay":15152},{"name":"Foxit PhantomPDF Plugin for Mozilla","version":"2.2.4.1020","description":"Foxit PhantomPDF Plug-In For Firefox and Netscape","blocklisted":false,"disabled":false,"clicktoplay":true,"mimeTypes":["application/pdf","application/vnd.fdf"],"updateDay":16363}],"activeGMPlugins":{"gmp-gmpopenh264":{"version":"1.6","userDisabled":false,"applyBackgroundUpdates":1},"gmp-eme-adobe":{"version":"17","userDisabled":false,"applyBackgroundUpdates":1},"gmp-widevinecdm":{"version":null,"userDisabled":false,"applyBackgroundUpdates":1}},"activeExperiment":{},"persona":null}}
Theme: classic/1.0
Throttleable: 1
TotalPageFile: 34223181824
TotalPhysicalMemory: 17112551424
TotalVirtualMemory: 4294836224
UptimeTS: 559374.18307191
Vendor: Mozilla
Version: 47.0.2
Winsock_LSP: MSAFD Tcpip [TCP/IPv6] : 2 : 23 : 1 : 6 : 0x20066 : 0x8 : %SystemRoot%\system32\mswsock.dll :  : f9eab0c0-26d4-11d0-bbbf-00aa006c34e4 
 MSAFD Tcpip [UDP/IPv6] : 2 : 23 : 2 : 17 : 0x20609 : 0x8 : %SystemRoot%\system32\mswsock.dll :  : f9eab0c0-26d4-11d0-bbbf-00aa006c34e4 
 MSAFD Tcpip [RAW/IPv6] : 2 : 23 : 3 : 0 : 0x20609 : 0xc : %SystemRoot%\system32\mswsock.dll :  : f9eab0c0-26d4-11d0-bbbf-00aa006c34e4 
 MSAFD Tcpip [TCP/IP] : 2 : 2 : 1 : 6 : 0x20066 : 0x8 : %SystemRoot%\system32\mswsock.dll :  : e70f1aa0-ab8b-11cf-8ca3-00805f48a192 
 MSAFD Tcpip [UDP/IP] : 2 : 2 : 2 : 17 : 0x20609 : 0x8 : %SystemRoot%\system32\mswsock.dll :  : e70f1aa0-ab8b-11cf-8ca3-00805f48a192 
 MSAFD Tcpip [RAW/IP] : 2 : 2 : 3 : 0 : 0x20609 : 0xc : %SystemRoot%\system32\mswsock.dll :  : e70f1aa0-ab8b-11cf-8ca3-00805f48a192 
 MSAFD RfComm [Bluetooth] : 2 : 32 : 1 : 3 : 0x20026 : 0x8 : %SystemRoot%\system32\mswsock.dll :  : 9fc48064-7298-43e4-b7bd-181f2089792a 
 RSVP TCPv6 Service Provider : 2 : 23 : 1 : 6 : 0x22066 : 0x8 : %SystemRoot%\system32\mswsock.dll :  : 9d60a9e0-337a-11d0-bd88-0000c082e69a 
 RSVP TCP Service Provider : 2 : 2 : 1 : 6 : 0x22066 : 0x8 : %SystemRoot%\system32\mswsock.dll :  : 9d60a9e0-337a-11d0-bd88-0000c082e69a 
 RSVP UDPv6 Service Provider : 2 : 23 : 2 : 17 : 0x22609 : 0x8 : %SystemRoot%\system32\mswsock.dll :  : 9d60a9e0-337a-11d0-bd88-0000c082e69a 
 RSVP UDP Service Provider : 2 : 2 : 2 : 17 : 0x22609 : 0x8 : %SystemRoot%\system32\mswsock.dll :  : 9d60a9e0-337a-11d0-bd88-0000c082e69a
useragent_locale: en-US
 
This report also contains technical information about the state of the application when it crashed.

Edited by Madfod, 05 March 2018 - 09:31 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users