Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

I may have something hidng that my antivirus doesn't see

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

I may have something hidng that my antivirus doesn't see

Unread postby Mister Spoo » June 23rd, 2015, 12:34 am

So, me being me I'm being super paranoid. I downloaded a program to change font of windows 8 since I couldn't change it without a program and well I changed the font back after I realized how stupid it was and I'm worried about anything being on my PC that might be malicious and or spyware related and I scanned with both malware bytes and Kaspersky anti virus and they didn't find anything but I'm worried because a few things are off putting about my recent performance. Now this could mean nothing but I'm still worried.

As I was typing this my character limit has hit over the maximum limit: Your message contains 128609 characters. The maximum number of allowed characters is 100000. As a result I will attach the logs that were concluded from the scans
You do not have the required permissions to view the files attached to this post.
Mister Spoo
Regular Member
 
Posts: 23
Joined: June 23rd, 2015, 12:01 am
Advertisement
Register to Remove

Re: I may have something hidng that my antivirus doesn't see

Unread postby wannabeageek » June 25th, 2015, 4:48 pm

Looking over your logs. Be back soon with more instructions.
wannabeageek
MRU Master
MRU Master
 
Posts: 1871
Joined: November 23rd, 2009, 10:21 pm
Location: California

Re: I may have something hidng that my antivirus doesn't see

Unread postby wannabeageek » June 25th, 2015, 6:18 pm

Hello Mister Spoo, and Welcome to MalWare Removal forums!

My name is wannabeageek and I'll be helping you with any malware problems.

Before we begin, please read and follow these important guidelines, so things will proceed smoothly.
  1. The instructions being given are for YOUR computer and system only!
    Using these instructions on a different computer can cause damage to that computer and possibly render it inoperable!
  2. You must have Administrator rights, permissions for this computer.
  3. DO NOT run any other fix or removal tools unless instructed to do so!
  4. DO NOT install any other software (or hardware) during the cleaning process until we are done as well as
    DO NOT Remove, or Scan with anything on your system unless I ask. This adds more items to be researched.
    Extra Additions and Removals of files make the analysis more difficult.
  5. Only post your problem at (1) one help site. Applying fixes from multiple help sites can cause problems.
  6. Print each set of instructions if possible - your Internet connection will not be available during some fix processes.
  7. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
  8. Only reply to this thread, do not start another one. Please, continue responding, until I give you the "All Clean!" :cheers:
    Absence of symptoms does not mean that everything is clear.

I am currently reviewing your logs and will return, as soon as possible, with additional instructions. In the meantime...

Note: If you haven't done so already, please read this topic ALL USERS OF THIS FORUM MUST READ THIS FIRST where the conditions for receiving help here are explained.

Please read all instructions carefully before executing and perform the steps, in the order given.
lf you have any questions or problems executing these instructions, <<STOP>> do not proceed, post back with the question or problem.

Please be aware that removing Malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.

Because of this, I advise you to backup any personal files and folders before you start




P2P Advisory!
IMPORTANT There are signs of one or more P2P (Peer to Peer) File Sharing Programs installed on your computer.
BitTorrent

As long as you have the P2P program(s) installed, per Forum Policy, I can offer you no further assistance.
If you choose NOT to remove the program(s)...indicate that in your next reply and this topic will be closed.
Otherwise, please perform the following steps:
Remove P2P Program(s)

  1. Right-click in the screen's bottom-left corner and choose the Control Panel from the pop-up menu.
  2. When the Control Panel appears, choose Uninstall a Program from the Programs category.
  3. Locate the following program:
    BitTorrent
  4. Click on the Uninstall button to uninstall it.
  5. When Windows asks whether you're sure, click Yes.
    Carefully read any prompts...
    Some uninstallers prompt in a way to trick you into keeping the program, sometimes, preventing them from being uninstalled again!
  6. When the program(s) have been uninstalled... Close Control Panel.
By using any form of P2P networking to download files you can anticipate infestations of malware to occur. The P2P program
itself, may be safe but the files may not... use P2P at your own risk! Keep in mind that this practice may be the source of your current malware infestation.
Reference... siting risk factors, using P2P programs: How to Prevent the Online Invasion of Spyware and Adware
wannabeageek
MRU Master
MRU Master
 
Posts: 1871
Joined: November 23rd, 2009, 10:21 pm
Location: California

Re: I may have something hidng that my antivirus doesn't see

Unread postby wannabeageek » June 27th, 2015, 4:20 pm

Hi Mister Spoo.

It has been two days since my last post.

  • Do you still need help?
  • Do you need more time?
  • Are you having problems following my instructions?
  • According to Malware Removal's latest policy, topics can be closed after 3 days without a response.
  • If you do not reply within the next 24 hours, this topic will be closed.
wannabeageek
MRU Master
MRU Master
 
Posts: 1871
Joined: November 23rd, 2009, 10:21 pm
Location: California

Re: I may have something hidng that my antivirus doesn't see

Unread postby Mister Spoo » June 28th, 2015, 2:06 pm

Ah ok, I am here alright Ill remove the Bittorrent but what happens after that
Mister Spoo
Regular Member
 
Posts: 23
Joined: June 23rd, 2015, 12:01 am

Re: I may have something hidng that my antivirus doesn't see

Unread postby wannabeageek » June 28th, 2015, 4:47 pm

Greetings Mister Spoo,

This happens after that,(removal of bittorrent):

Hereinafter you must post requested scans as plain text in the post. DO NOT post any as attachments, or your thread may get closed. It's one of those rules of the site, you know.

Step 1.
TSG - SysInfo utility
  • Right mouse click on this link:SysInfo utility
  • Select from the pop up box:
    "Save link as..."
  • From the left panel of the pop up box, scroll up and select desktop.
  • Click the "Save" button.
From your desktop:
  • Right Mouse click SysInfo.exe, select "Run As Administrator" to run it... if UAC prompts, please allow it.
  • Right click, select copy and then paste in your next post.


Step 2.
TDSSKiller

Please goto Bleepingcomputer TDSSKiller Download.
Click on the .exe version download button.
  • Move this file to your desktop from the folder that your browser saved it in.
    Most likely here: C:\Users\???????\Downloads or %userprofile%\downloads
    Move to here: C:\Users\???????\Desktop or %userprofile%\Desktop
  • Once on your desktop, right-click TDSSKiller.exe and select "Run as administrator" to run it. If prompted by UAC, please allow it.
  • Click on Start Scan, the scan will run.
  • When the scan has finished, if it finds anything please click on the drop down arrow next to Cure and select Skip
  • Now click on Report to open the log file created by TDSSKiller in your root directory C:\
  • To find the log go to Start > Computer > C:
  • A log file should be created on your C: drive named something like TDSSKiller.2.4.0.0 24.07.2010.
  • Post the contents of that log in your next reply please.
  • DO NOT TRY TO FIX ANYTHING AT THIS POINT


What I need back from you:
Post each separately.
  1. Contents of SysInfo utility results Step 1.
  2. Contents of TDSSKiller.2.4.0.0 24.07.2015 Step 2.
  3. Any problem executing the instructions?
Thanks,
wbg
wannabeageek
MRU Master
MRU Master
 
Posts: 1871
Joined: November 23rd, 2009, 10:21 pm
Location: California

Re: I may have something hidng that my antivirus doesn't see

Unread postby Mister Spoo » June 28th, 2015, 5:06 pm

Alright, so I did the sysinfo but there was an error using the program because this is what popped up
Tech Support Guy System Info Utility version 1.0.0.2
OS Version:
Processor:
Processor Count:
RAM:
Graphics Card:
Hard Drives:
Motherboard:
Antivirus: None
Mister Spoo
Regular Member
 
Posts: 23
Joined: June 23rd, 2015, 12:01 am

Re: I may have something hidng that my antivirus doesn't see

Unread postby Mister Spoo » June 28th, 2015, 5:10 pm

and as for the kasperky scan it hit over the character limit what do I do?
Mister Spoo
Regular Member
 
Posts: 23
Joined: June 23rd, 2015, 12:01 am

Re: I may have something hidng that my antivirus doesn't see

Unread postby wannabeageek » June 28th, 2015, 6:34 pm

Split the kasperky scan into 2 or 3 parts a necessary to post the results
wannabeageek
MRU Master
MRU Master
 
Posts: 1871
Joined: November 23rd, 2009, 10:21 pm
Location: California

Re: I may have something hidng that my antivirus doesn't see

Unread postby Mister Spoo » June 28th, 2015, 8:21 pm

Alright here is the kaspersky report
16:07:07.0166 0xd868 TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
16:07:07.0166 0xd868 UEFI system
16:07:10.0826 0xd868 ============================================================
16:07:10.0826 0xd868 Current date / time: 2015/06/28 16:07:10.0826
16:07:10.0826 0xd868 SystemInfo:
16:07:10.0826 0xd868
16:07:10.0826 0xd868 OS Version: 6.3.9600 ServicePack: 0.0
16:07:10.0826 0xd868 Product type: Workstation
16:07:10.0826 0xd868 ComputerName: MISTER-SPOO
16:07:10.0826 0xd868 UserName: James
16:07:10.0826 0xd868 Windows directory: C:\WINDOWS
16:07:10.0826 0xd868 System windows directory: C:\WINDOWS
16:07:10.0826 0xd868 Running under WOW64
16:07:10.0826 0xd868 Processor architecture: Intel x64
16:07:10.0826 0xd868 Number of processors: 4
16:07:10.0826 0xd868 Page size: 0x1000
16:07:10.0826 0xd868 Boot type: Normal boot
16:07:10.0826 0xd868 ============================================================
16:07:11.0747 0xd868 KLMD registered as C:\WINDOWS\system32\drivers\57363626.sys
16:07:13.0395 0xd868 System UUID: {38C8D1CD-536A-5BBC-8377-B60EED42C06F}
16:07:14.0868 0xd868 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:07:14.0873 0xd868 ============================================================
16:07:14.0873 0xd868 \Device\Harddisk0\DR0:
16:07:14.0886 0xd868 GPT partitions:
16:07:14.0905 0xd868 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {697149CF-76BC-4488-9021-176C4CEC736A}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x190000
16:07:14.0905 0xd868 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {D8D2E8AA-38EF-4F67-BAD0-F90520D5C5F2}, Name: EFI system partition, StartLBA 0x190800, BlocksNum 0x82000
16:07:14.0905 0xd868 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {4F793193-9DEE-461D-8097-8663E6D4828F}, Name: Microsoft reserved partition, StartLBA 0x212800, BlocksNum 0x40000
16:07:14.0905 0xd868 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {500F4F32-77D5-47C4-816F-CC3C29F7B1CE}, Name: Basic data partition, StartLBA 0x252800, BlocksNum 0x72A1C000
16:07:14.0905 0xd868 \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {09CAE19E-A3E1-4D27-B9AC-3E1503C72B9B}, Name: Basic data partition, StartLBA 0x72C6E800, BlocksNum 0x1A98000
16:07:14.0905 0xd868 MBR partitions:
16:07:14.0905 0xd868 ============================================================
16:07:14.0938 0xd868 C: <-> \Device\Harddisk0\DR0\Partition4
16:07:14.0938 0xd868 ============================================================
16:07:14.0938 0xd868 Initialize success
16:07:14.0938 0xd868 ============================================================
16:07:27.0654 0xf170 ============================================================
16:07:27.0655 0xf170 Scan started
16:07:27.0655 0xf170 Mode: Manual;
16:07:27.0655 0xf170 ============================================================
16:07:27.0655 0xf170 KSN ping started
16:07:50.0002 0xf170 KSN ping finished: true
16:07:51.0963 0xf170 ================ Scan system memory ========================
16:07:51.0963 0xf170 System memory - ok
16:07:51.0963 0xf170 ================ Scan services =============================
16:07:52.0077 0xf170 [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
16:07:52.0237 0xf170 1394ohci - ok
16:07:52.0278 0xf170 [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
16:07:52.0306 0xf170 3ware - ok
16:07:52.0354 0xf170 [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
16:07:52.0367 0xf170 ACPI - ok
16:07:52.0388 0xf170 [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
16:07:52.0391 0xf170 acpiex - ok
16:07:52.0395 0xf170 [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
16:07:52.0506 0xf170 acpipagr - ok
16:07:52.0528 0xf170 [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
16:07:52.0558 0xf170 AcpiPmi - ok
16:07:52.0563 0xf170 [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
16:07:52.0591 0xf170 acpitime - ok
16:07:52.0708 0xf170 [ A542C712794FB8FBD27E37271C730F36, 8C327BFAC10C7BBD48277D4FEB862D58CA1F22DC10F0632BB8B18CF54A507216 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:07:52.0709 0xf170 AdobeARMservice - ok
16:07:52.0781 0xf170 [ 1234A12B71DAE034E45C714AE5A54412, 079E6BC834F38322ED5ED76295EC3961ED894084EF5CB171DFFBD9B3822CC78D ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:07:52.0785 0xf170 AdobeFlashPlayerUpdateSvc - ok
16:07:52.0819 0xf170 [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS
16:07:52.0882 0xf170 ADP80XX - ok
16:07:52.0916 0xf170 [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc C:\WINDOWS\System32\aelupsvc.dll
16:07:52.0919 0xf170 AeLookupSvc - ok
16:07:52.0950 0xf170 [ 374E27295F0A9DCAA8FC96370F9BEEA5, 51C394E0C2322D7D093941A1B8766171B5D1F47DF2FE0834209492891EA7D999 ] AFD C:\WINDOWS\system32\drivers\afd.sys
16:07:53.0029 0xf170 AFD - ok
16:07:53.0099 0xf170 [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440 C:\WINDOWS\system32\drivers\agp440.sys
16:07:53.0155 0xf170 agp440 - ok
16:07:53.0187 0xf170 [ FE14D249D39368CA62D8DA6BC94AC694, E1036E22BFBD3750FD2D3DA6AB939B2DD54E824F4BD3E6539EF0E45AB5453DD1 ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
16:07:53.0225 0xf170 ahcache - ok
16:07:53.0255 0xf170 [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG C:\WINDOWS\System32\alg.exe
16:07:53.0303 0xf170 ALG - ok
16:07:53.0333 0xf170 [ 497D44465C4FD98FD8F2C5C951595AC7, 7A2382C8C3C9D917961AD56880C47F2DD46B9A40FF30E5FA37EA9B245D7031BF ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
16:07:53.0337 0xf170 AMD External Events Utility - ok
16:07:53.0352 0xf170 AMD FUEL Service - ok
16:07:53.0369 0xf170 [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
16:07:53.0396 0xf170 AmdK8 - ok
16:07:53.0856 0xf170 [ 7045BFC51C38EBCD1FC91E7447552689, 70D0BB983CAD762F1CBEACAA0E22A2129C1A587BCFB8BAE97F2CB65E7426D964 ] amdkmdag C:\WINDOWS\system32\DRIVERS\atikmdag.sys
16:07:54.0148 0xf170 amdkmdag - ok
16:07:54.0217 0xf170 [ 6A41403A294608E4B047BD2774EFF5D4, C82DA9F39F299AB8EC11CFF5B3CD4FEE628B98BAB1A88F3D6D099C22A52AA576 ] amdkmdap C:\WINDOWS\system32\DRIVERS\atikmpag.sys
16:07:54.0504 0xf170 amdkmdap - ok
16:07:54.0535 0xf170 [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
16:07:54.0560 0xf170 AmdPPM - ok
16:07:54.0584 0xf170 [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
16:07:54.0667 0xf170 amdsata - ok
16:07:54.0693 0xf170 [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
16:07:54.0722 0xf170 amdsbs - ok
16:07:54.0741 0xf170 [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
16:07:54.0770 0xf170 amdxata - ok
16:07:54.0801 0xf170 [ 9F10670B87E493CB7E91FC28A3CBFB39, 80AB4212AA655240E9B699467BB1A40C57E4016E3B898128B773782824E0A26E ] amd_sata C:\WINDOWS\system32\drivers\amd_sata.sys
16:07:54.0802 0xf170 amd_sata - ok
16:07:54.0811 0xf170 [ CB456201A3893830162F9894A5868952, 569510E46B188B24C16D7132B0ECCAA4CE60A5DAE733ECBB3D8A1595A5962AA3 ] amd_xata C:\WINDOWS\system32\drivers\amd_xata.sys
16:07:54.0820 0xf170 amd_xata - ok
16:07:54.0861 0xf170 [ 4126D30992B26303E47E8981313FD6D6, 4C8DB2DDDB88FBEA87CDBFB93D9855B40043778878AF4A5571C174434F9C0D4C ] AmUStor C:\WINDOWS\system32\drivers\AmUStor.SYS
16:07:54.0937 0xf170 AmUStor - ok
16:07:54.0969 0xf170 [ F2154A205F4B784B61A72AEBC72BDC5F, A1D962BCF952FAD8016D9210327E7C1044BF4D3D035C7443F8671DDA16E0A390 ] AODDriver4.2 C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
16:07:54.0971 0xf170 AODDriver4.2 - ok
16:07:55.0008 0xf170 [ 415DD71628795197F7AFC176CBADC74E, 5F0359053A6CD6EE239139E0E6F46E1FA9A73F017C0CE9B7BC052216B2C846EC ] AppID C:\WINDOWS\system32\drivers\appid.sys
16:07:55.0068 0xf170 AppID - ok
16:07:55.0092 0xf170 [ 34B2E222F82D05398DAE7203B36B6A2B, AC04BC6B5A36A6807FFE302E9ACF073342B4D76B0BB386249251CB3CA1852CE8 ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
16:07:55.0132 0xf170 AppIDSvc - ok
16:07:55.0160 0xf170 [ 680BFB820C5A943AB709BAA2B1EF27F2, A51D2A7976A762FE470C13C6D1BA0319A0FB19C9E66BF02AA44F83EAEC7130F8 ] Appinfo C:\WINDOWS\System32\appinfo.dll
16:07:55.0163 0xf170 Appinfo - ok
16:07:55.0223 0xf170 [ 612CB66D93ED0F2F21BB109840C7D813, 75484123DA27B8942B13148FCF061C75A08A50386A095143736B593E9C772173 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:07:55.0224 0xf170 Apple Mobile Device Service - ok
16:07:55.0276 0xf170 [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll
16:07:55.0288 0xf170 AppReadiness - ok
16:07:55.0330 0xf170 [ 573542B5E97772021B73E854DA861DAA, C3FD00FA28060F8D7CDFD455BBB5FF8239CB76DDFFF2BDAE6AA944674DD993D3 ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll
16:07:55.0351 0xf170 AppXSvc - ok
16:07:55.0384 0xf170 [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
16:07:55.0423 0xf170 arcsas - ok
16:07:55.0505 0xf170 [ 31E2470E61D5A390405BA41C279D8446, ADA2518DCB78529F716622E45775283CBBB8CA61A4E90B99C2D799C23C8AFCAA ] asComSvc C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
16:07:55.0519 0xf170 asComSvc - ok
16:07:55.0576 0xf170 [ 798DE15F187C1F013095BBBEB6FB6197, 436CCAB6F62FA2D29827916E054ADE7ACAE485B3DE1D3E5C6C62D3DEBF1480E7 ] AsIO C:\WINDOWS\syswow64\drivers\AsIO.sys
16:07:55.0639 0xf170 AsIO - ok
16:07:55.0659 0xf170 [ 1392B92179B07B672720763D9B1028A5, B4D47EA790920A4531E3DF5A4B4B0721B7FEA6B49A35679F0652F1E590422602 ] AsUpIO C:\WINDOWS\syswow64\drivers\AsUpIO.sys
16:07:55.0680 0xf170 AsUpIO - ok
16:07:55.0718 0xf170 [ 44A17208F438F915FCB490DE8FF052AD, 1B60EEEEB837C5917F57B21C5A99ADBFE6D799EFEEF40A53BF3877CD13F019D2 ] Asus WebStorage Windows Service C:\Program Files (x86)\ASUS\WebStorage\2.0.3.226\AsusWSWinService.exe
16:07:55.0721 0xf170 Asus WebStorage Windows Service - ok
16:07:55.0746 0xf170 [ 3DB7721F06BC2FEDB25029EA23AB27DA, 221861148C66FE53E4D6EE49C6E656479AB5804A2D348A280A1CD8093E8AB788 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
16:07:55.0768 0xf170 AsyncMac - ok
16:07:55.0792 0xf170 [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi C:\WINDOWS\system32\drivers\atapi.sys
16:07:55.0794 0xf170 atapi - ok
16:07:55.0821 0xf170 [ AEB8BC801F11E436EBD8D347F866F7A1, 5C1DBFDD1D705E8CD8680DA3AC933EE47676FFB5FB0800CD0FCDAB5C379356B3 ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdWB6.sys
16:07:55.0857 0xf170 AtiHDAudioService - ok
16:07:55.0894 0xf170 [ 8779FDAE68BC948B0FE152E758CC8DA7, 13070C2073F8E7546B48AE9CF54067B9BB75DFCD98F2987B90FFAD20D40D54CF ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
16:07:55.0900 0xf170 AudioEndpointBuilder - ok
16:07:55.0929 0xf170 [ 61EA45A645854FE81D8A924E2D93DFFE, 34F79532297F609CA93C380B68BB8B7B0F027F9C8F4FB8E02A9A43EA3D155F1B ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
16:07:55.0948 0xf170 Audiosrv - ok
16:07:56.0041 0xf170 [ 9C7C876ACB9B707ECD08BD434C46A4D3, 4135E95C0E531854268D2009ACD6F932D8ADC4D31E72D3B942F731C60ECCDF1D ] AVP15.0.2 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\avp.exe
16:07:56.0045 0xf170 AVP15.0.2 - ok
16:07:56.0084 0xf170 [ F9E224D23B9E0527916DD92FDDDCD524, F4DBDA41DFADBD80F05DA5938B4E6C85F7C952DA1B0044957A9D43B9EE138C52 ] AvrcpService C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe
16:07:56.0085 0xf170 AvrcpService - ok
16:07:56.0126 0xf170 [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
16:07:56.0172 0xf170 AxInstSV - ok
16:07:56.0217 0xf170 [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
16:07:56.0279 0xf170 b06bdrv - ok
16:07:56.0300 0xf170 [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
16:07:56.0317 0xf170 BasicDisplay - ok
16:07:56.0363 0xf170 [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
16:07:56.0401 0xf170 BasicRender - ok
16:07:56.0425 0xf170 [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys
16:07:56.0459 0xf170 bcmfn2 - ok
16:07:56.0491 0xf170 [ 77D760E9B477C21487C171F561497F98, 2393D466CEC863C771C5BB4CD81B251635DC084386134B8E13F74F3E1C6D68DF ] BDESVC C:\WINDOWS\System32\bdesvc.dll
16:07:56.0538 0xf170 BDESVC - ok
16:07:56.0571 0xf170 [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep C:\WINDOWS\system32\drivers\Beep.sys
16:07:56.0592 0xf170 Beep - ok
16:07:56.0640 0xf170 [ 7BCB00EA702F78EC74CD9699D85CE80B, 17241ADAA13051B560DB9FA9079CAE6321D5B49788B596C125DC912443B00421 ] BFE C:\WINDOWS\System32\bfe.dll
16:07:56.0658 0xf170 BFE - ok
16:07:56.0725 0xf170 [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS C:\WINDOWS\System32\qmgr.dll
16:07:56.0794 0xf170 BITS - ok
16:07:56.0852 0xf170 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:07:56.0859 0xf170 Bonjour Service - ok
16:07:56.0878 0xf170 [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
16:07:56.0881 0xf170 bowser - ok
16:07:56.0925 0xf170 [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
16:07:56.0932 0xf170 BrokerInfrastructure - ok
16:07:56.0972 0xf170 [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser C:\WINDOWS\System32\browser.dll
16:07:56.0976 0xf170 Browser - ok
16:07:56.0990 0xf170 [ EF34418FFEEB881CAF2905989A804864, CD5A79C00ABE8ABDA1204915FB059349C6A8D332F71D211FEFCBE2EAF2E748FC ] BTDevManager C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
16:07:56.0991 0xf170 BTDevManager - ok
16:07:57.0053 0xf170 [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
16:07:57.0086 0xf170 BthAvrcpTg - ok
16:07:57.0119 0xf170 [ 1104A31260CCF4318C884E0AE6C513BF, A8F83B558944DEF0F84414A11DC3CB90C3A92377B46760EC0A9B8BC22FB0D5C7 ] BthEnum C:\WINDOWS\System32\drivers\BthEnum.sys
16:07:57.0151 0xf170 BthEnum - ok
16:07:57.0184 0xf170 [ 272A62B660A48AEF366F8A1836CED19F, 78EFAC6B1B2313482329BBFFBF0DDA6462BD88E5BE3C817C5E8E0EAF3074C925 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
16:07:57.0206 0xf170 BthHFEnum - ok
16:07:57.0213 0xf170 [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys
16:07:57.0262 0xf170 bthhfhid - ok
16:07:57.0297 0xf170 [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv C:\WINDOWS\System32\BthHFSrv.dll
16:07:57.0327 0xf170 BthHFSrv - ok
16:07:57.0370 0xf170 [ D30C67473A2E229662D21F27EAA9AAA5, D009C4836B0DFE963D8E3DEEDE611068838F2BBCAB146E6D70692FAB838E11F1 ] BthLEEnum C:\WINDOWS\System32\drivers\BthLEEnum.sys
16:07:57.0381 0xf170 BthLEEnum - ok
16:07:57.0446 0xf170 [ 07E33226AD218A2A162662A05CAFB52F, 0AC3D8B79EDA6DA232FA4E1CAF6592420A9EDE96350D1F0504C2434261684F0B ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
16:07:57.0469 0xf170 BTHMODEM - ok
16:07:57.0500 0xf170 [ 25BB93167DEF270188072603F92A1EF5, CE4637CE4B63420E218F53CAF89A8C85D036B879B80456FEF3C7C395590E26BB ] BthPan C:\WINDOWS\System32\drivers\bthpan.sys
16:07:57.0504 0xf170 BthPan - ok
16:07:57.0571 0xf170 [ C37F4930795B771400C63C3C87E7A6C2, 0D0F54184B2DAA45F646E4F69B85C4411E8DFA88EB4763BB0F386055A420F217 ] BTHPORT C:\WINDOWS\System32\Drivers\BTHport.sys
16:07:57.0652 0xf170 BTHPORT - ok
16:07:57.0727 0xf170 [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv C:\WINDOWS\system32\bthserv.dll
16:07:57.0730 0xf170 bthserv - ok
16:07:57.0744 0xf170 [ 08EA90955AED2D959EE67DF6EDF0E2B6, 0A70AA67E5DD24C473C66A570C0FEBA9D398A0F0AD8386FE05D01C4D16346968 ] BTHUSB C:\WINDOWS\System32\Drivers\BTHUSB.sys
16:07:57.0781 0xf170 BTHUSB - ok
16:07:57.0896 0xf170 [ FECA9F830A5C6BAB9978E6781A26AE2B, CA1681A2F4FA849815B8E823805E078DB9C050CEE86E9E394B2A37B57CC474A6 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
16:07:57.0918 0xf170 c2cautoupdatesvc - ok
16:07:58.0006 0xf170 [ 5B33709F7FE59BB625F113EED86AFC5C, 8D29FE242D55526FDEB2CB4009B5DE19C93972E872BE6328AD3305E360A3D44B ] c2cpnrsvc C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
16:07:58.0033 0xf170 c2cpnrsvc - ok
16:07:58.0080 0xf170 [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
16:07:58.0114 0xf170 cdfs - ok
16:07:58.0137 0xf170 [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
16:07:58.0186 0xf170 cdrom - ok
16:07:58.0225 0xf170 [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
16:07:58.0236 0xf170 CertPropSvc - ok
16:07:58.0241 0xf170 [ 5832CD83F5E84BFF8BD93727685852CB, 4E0E170335E566E89E7FEA70629ACEF3E4BB8A54001AE81333FC99B983DB73F2 ] cfwids C:\WINDOWS\system32\drivers\cfwids.sys
16:07:58.0282 0xf170 cfwids - ok
16:07:58.0287 0xf170 [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass C:\WINDOWS\System32\drivers\circlass.sys
16:07:58.0295 0xf170 circlass - ok
16:07:58.0329 0xf170 [ 8EB7E70C2D348FE2476A2E3F2D585E3D, 2B5D407FACF1D049261026CC552A7C93B028A661B0F4E959815EAE7670054127 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
16:07:58.0338 0xf170 CLFS - ok
16:07:58.0360 0xf170 [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
16:07:58.0367 0xf170 CmBatt - ok
16:07:58.0412 0xf170 [ 429B31D047CFAD3CA5DD38120A2CE455, 5CC1459CBBBF2E6788635D4C277B116D90AE01DBE7AD561EB41A668F64801E80 ] cm_km_w C:\WINDOWS\system32\DRIVERS\cm_km_w.sys
16:07:58.0418 0xf170 cm_km_w - ok
16:07:58.0447 0xf170 [ 5E5AB950693F2C6D6ACBEE3A74697ED7, 3790A7DD0AC65F47A697A577744FDFA4CC1CA3422884C84E499F97AC91BA84F3 ] CNG C:\WINDOWS\system32\Drivers\cng.sys
16:07:58.0463 0xf170 CNG - ok
16:07:58.0480 0xf170 [ 81F2B52C47B8AD32CC4FF967FC8D73DA, 13D84B4096E0F9AB9D04F6CD9E9C0DE4B6DF6F11D63C797266D719FD2429A655 ] CompFilter64 C:\WINDOWS\System32\drivers\lvbflt64.sys
16:07:58.0525 0xf170 CompFilter64 - ok
16:07:58.0553 0xf170 [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus C:\WINDOWS\System32\drivers\CompositeBus.sys
16:07:58.0560 0xf170 CompositeBus - ok
16:07:58.0564 0xf170 COMSysApp - ok
16:07:58.0576 0xf170 [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv C:\WINDOWS\system32\drivers\condrv.sys
16:07:58.0605 0xf170 condrv - ok
16:07:58.0631 0xf170 [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
16:07:58.0636 0xf170 CryptSvc - ok
16:07:58.0650 0xf170 [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam C:\WINDOWS\system32\drivers\dam.sys
16:07:58.0679 0xf170 dam - ok
16:07:58.0724 0xf170 [ A6F17C299A03BAFEFB9257C462A19E00, EB68967D28355271897166D7B6FD963D1E546D3C24AE1AEAAC561F94357A9345 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
16:07:58.0738 0xf170 DcomLaunch - ok
16:07:58.0764 0xf170 [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc C:\WINDOWS\System32\defragsvc.dll
16:07:58.0773 0xf170 defragsvc - ok
16:07:58.0813 0xf170 [ B40056F9D352DBB6ABAE6DA70EE1D6E1, F8FB4A265996FC4F589F277C7B0A1770C9F0ADF644FC68C6CCE0E3B42E6E37AC ] Device Handle Service C:\Windows\SysWOW64\AsHookDevice.exe
16:07:58.0819 0xf170 Device Handle Service - ok
16:07:58.0870 0xf170 [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
16:07:58.0880 0xf170 DeviceAssociationService - ok
16:07:58.0914 0xf170 [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
16:07:58.0925 0xf170 DeviceInstall - ok
16:07:58.0964 0xf170 [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
16:07:58.0979 0xf170 Dfsc - ok
16:07:59.0013 0xf170 [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus C:\WINDOWS\system32\DRIVERS\ssudbus.sys
16:07:59.0065 0xf170 dg_ssudbus - ok
16:07:59.0099 0xf170 [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
16:07:59.0108 0xf170 Dhcp - ok
16:07:59.0176 0xf170 [ 3ECB752A6963B1CBC9AD65ED89C8ACED, 1D47D2EBD2C8D2B9F8D2D12A5FD93E6B10335EB6B23252DDEA6DF2233655FA59 ] DiagTrack C:\WINDOWS\system32\diagtrack.dll
16:07:59.0204 0xf170 DiagTrack - ok
16:07:59.0238 0xf170 [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk C:\WINDOWS\system32\drivers\disk.sys
16:07:59.0241 0xf170 disk - ok
16:07:59.0268 0xf170 [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
16:07:59.0275 0xf170 dmvsc - ok
16:07:59.0318 0xf170 [ 33ADFB7453BF3271463712C4BCE61AD1, A1DB30F874BA7B2C4C653494D70B46B94BF7D39D0DD8559F6CA7A14B676FD617 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
16:07:59.0324 0xf170 Dnscache - ok
16:07:59.0371 0xf170 [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc C:\WINDOWS\System32\dot3svc.dll
16:07:59.0418 0xf170 dot3svc - ok
16:07:59.0472 0xf170 [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS C:\WINDOWS\system32\dps.dll
16:07:59.0477 0xf170 DPS - ok
16:07:59.0514 0xf170 [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
16:07:59.0535 0xf170 drmkaud - ok
16:07:59.0557 0xf170 [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
16:07:59.0562 0xf170 DsmSvc - ok
16:07:59.0627 0xf170 [ E1BB0B6F00F470B451AB45EA13EBA0B3, 3A2FC2175B69A5EB98D6C2D563DBFDCB320647AB87A14E47FAE800423DCACDAB ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
16:07:59.0657 0xf170 DXGKrnl - ok
16:07:59.0674 0xf170 [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost C:\WINDOWS\System32\eapsvc.dll
16:07:59.0684 0xf170 Eaphost - ok
16:07:59.0766 0xf170 [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
16:07:59.0830 0xf170 ebdrv - ok
16:07:59.0899 0xf170 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS C:\WINDOWS\System32\lsass.exe
16:07:59.0901 0xf170 EFS - ok
16:07:59.0914 0xf170 [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
16:07:59.0917 0xf170 EhStorClass - ok
16:07:59.0930 0xf170 [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
16:07:59.0951 0xf170 EhStorTcgDrv - ok
16:07:59.0963 0xf170 [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
16:07:59.0982 0xf170 ErrDev - ok
16:08:00.0011 0xf170 [ 4DFF30CABF8D894137AD7F4A78E2BCE0, 821245D23B979ADAA95F9059A27F3B9E772C4261B61868E8AF717512494A9B1F ] EuMusDesignVirtualAudioCableWdm C:\WINDOWS\system32\DRIVERS\vrtaucbl.sys
16:08:00.0014 0xf170 EuMusDesignVirtualAudioCableWdm - ok
16:08:00.0078 0xf170 [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem C:\WINDOWS\system32\es.dll
16:08:00.0088 0xf170 EventSystem - ok
16:08:00.0103 0xf170 [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat C:\WINDOWS\system32\drivers\exfat.sys
16:08:00.0151 0xf170 exfat - ok
16:08:00.0202 0xf170 Fabs - ok
16:08:00.0221 0xf170 [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
16:08:00.0227 0xf170 fastfat - ok
16:08:00.0275 0xf170 [ 304B6AEC4639A7CCCCF544C6BA6177B2, B75CDD52FD3890B3008E06C503945D1E36478F0EC5E067C8DBC2822D7935D24B ] Fax C:\WINDOWS\system32\fxssvc.exe
16:08:00.0317 0xf170 Fax - ok
16:08:00.0324 0xf170 [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
16:08:00.0332 0xf170 fdc - ok
16:08:00.0362 0xf170 [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
16:08:00.0365 0xf170 fdPHost - ok
16:08:00.0374 0xf170 [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub C:\WINDOWS\system32\fdrespub.dll
16:08:00.0399 0xf170 FDResPub - ok
16:08:00.0426 0xf170 [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc C:\WINDOWS\system32\fhsvc.dll
16:08:00.0449 0xf170 fhsvc - ok
16:08:00.0481 0xf170 [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
16:08:00.0484 0xf170 FileInfo - ok
16:08:00.0495 0xf170 [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
16:08:00.0530 0xf170 Filetrace - ok
16:08:00.0610 0xf170 [ 5BD96D8C5411ACE71A7EAACAF0EF2903, 2AF58E6060C7DEC44B4CA30E14E164473CD4089AE475DAFFC61DFE56990C1147 ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
16:08:00.0662 0xf170 FirebirdServerMAGIXInstance - ok
16:08:00.0677 0xf170 [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
16:08:00.0685 0xf170 flpydisk - ok
16:08:00.0727 0xf170 [ C1FB505A73FA2E9019D32444AB33B75A, 765F0635C18295855CA4C0394192E8B94BA2EA1C4D74F86B720358ABA019FFAA ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
16:08:00.0735 0xf170 FltMgr - ok
16:08:00.0779 0xf170 [ 6C068E7207F183FF3647E45D2599E80C, D65C9888522CA29596D5C8BEFF42356F0310E812117E72C1D612BA089C0940D9 ] FontCache C:\WINDOWS\system32\FntCache.dll
16:08:00.0807 0xf170 FontCache - ok
16:08:00.0966 0xf170 [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:08:01.0084 0xf170 FontCache3.0.0.0 - ok
16:08:01.0126 0xf170 [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
16:08:01.0134 0xf170 FsDepends - ok
16:08:01.0155 0xf170 [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
16:08:01.0162 0xf170 Fs_Rec - ok
16:08:01.0212 0xf170 [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
16:08:01.0224 0xf170 fvevol - ok
16:08:01.0237 0xf170 [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM C:\WINDOWS\System32\drivers\fxppm.sys
16:08:01.0261 0xf170 FxPPM - ok
16:08:01.0291 0xf170 [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx C:\WINDOWS\system32\drivers\gagp30kx.sys
16:08:01.0333 0xf170 gagp30kx - ok
16:08:01.0404 0xf170 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
16:08:01.0448 0xf170 GEARAspiWDM - ok
16:08:01.0496 0xf170 [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
16:08:01.0503 0xf170 gencounter - ok
16:08:01.0629 0xf170 [ 55FC14B287C6FF306C32B42628CE0D8C, F22D7BA248D616A76AFAC5DA21A419FF13BC4346F402685F6FC6671B04528110 ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
16:08:01.0647 0xf170 GfExperienceService - ok
16:08:01.0700 0xf170 [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
16:08:01.0713 0xf170 GPIOClx0101 - ok
16:08:01.0856 0xf170 [ 0D03F87D4FF4ADBAF8336DD80548155A, BC10CFA88EA2F41A8D96CB810B7953A4C168B79273A3E804A9F020F49AB58CD3 ] gpsvc C:\WINDOWS\System32\gpsvc.dll
16:08:01.0884 0xf170 gpsvc - ok
16:08:01.0962 0xf170 [ 7797D1580D933056023B822BB5CD0FE2, 24585AAFB43862AE4B9228B513658D906550EC8A475C67182933FB233621A85D ] Hamachi C:\WINDOWS\system32\DRIVERS\Hamdrv.sys
16:08:01.0970 0xf170 Hamachi - ok
16:08:01.0996 0xf170 [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\WINDOWS\system32\drivers\HdAudio.sys
16:08:02.0003 0xf170 HdAudAddService - ok
16:08:02.0045 0xf170 [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
16:08:02.0054 0xf170 HDAudBus - ok
16:08:02.0069 0xf170 [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
16:08:02.0077 0xf170 HidBatt - ok
16:08:02.0121 0xf170 [ 42F88B57CAE42FC10059C887B3FCFCEA, 9363AA2B8E839A6935A7C6A36C491938DF78024886DCCE6D29CB18E1D6A6D806 ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
16:08:02.0148 0xf170 HidBth - ok
16:08:02.0171 0xf170 [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
16:08:02.0195 0xf170 hidi2c - ok
16:08:02.0200 0xf170 [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
16:08:02.0207 0xf170 HidIr - ok
16:08:02.0243 0xf170 [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv C:\WINDOWS\system32\hidserv.dll
16:08:02.0245 0xf170 hidserv - ok
16:08:02.0280 0xf170 [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
16:08:02.0300 0xf170 HidUsb - ok
16:08:02.0335 0xf170 [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc C:\WINDOWS\system32\kmsvc.dll
16:08:02.0345 0xf170 hkmsvc - ok
16:08:02.0381 0xf170 [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
16:08:02.0409 0xf170 HomeGroupListener - ok
16:08:02.0470 0xf170 [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
16:08:02.0496 0xf170 HomeGroupProvider - ok
16:08:02.0523 0xf170 [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
16:08:02.0533 0xf170 HpSAMD - ok
16:08:02.0583 0xf170 [ E87A6D3B8FECD5B93BC0CFBB48C27970, 55C49B6F3822450447C082B40A263F3370694DB53AD0018ADEB911E4A9F65A88 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
16:08:02.0629 0xf170 HTTP - ok
16:08:02.0650 0xf170 [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
16:08:02.0667 0xf170 hwpolicy - ok
16:08:02.0677 0xf170 [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
16:08:02.0684 0xf170 hyperkbd - ok
16:08:02.0689 0xf170 [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
16:08:02.0696 0xf170 HyperVideo - ok
16:08:02.0739 0xf170 [ D887446F3F6051C60C26F4FD1FC8D43F, A3235C64E9D5378E3409FA7CDD9DB0DD1B3CE6A6EB018F2C40558EB9C427A498 ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
16:08:02.0749 0xf170 i8042prt - ok
16:08:02.0753 0xf170 [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
16:08:02.0760 0xf170 iaLPSSi_GPIO - ok
16:08:02.0769 0xf170 [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
16:08:02.0778 0xf170 iaLPSSi_I2C - ok
16:08:02.0839 0xf170 [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV C:\WINDOWS\system32\drivers\iaStorAV.sys
16:08:02.0872 0xf170 iaStorAV - ok
16:08:02.0886 0xf170 [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
16:08:02.0915 0xf170 iaStorV - ok
16:08:02.0920 0xf170 IEEtwCollectorService - ok
16:08:03.0026 0xf170 [ 3DBDBD9581C015F02651D6A89801FAD5, 81B6D302C9CD29AD8319515056CFBCD0BD25619B2B166937ACD5F1416B568837 ] IKEEXT C:\WINDOWS\System32\ikeext.dll
16:08:03.0087 0xf170 IKEEXT - ok
16:08:03.0259 0xf170 [ 32E41A65AAA964000D0D908B906BB2DC, 10EB45C419FB3851353FF99CB64077EAE454A0729D8265E0136D3A714B49C1C4 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
16:08:03.0314 0xf170 IntcAzAudAddService - ok
16:08:03.0365 0xf170 [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide C:\WINDOWS\system32\drivers\intelide.sys
16:08:03.0410 0xf170 intelide - ok
16:08:03.0464 0xf170 [ A770340FC02B999EF0DE6C2A6BC8437C, 214567BE706B21BEA7EC13AF6B10FBFF658000511DBBA79BAA28D1D4EFD029A7 ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys
16:08:03.0467 0xf170 intelpep - ok
16:08:03.0484 0xf170 [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
16:08:03.0493 0xf170 intelppm - ok
16:08:03.0512 0xf170 [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
16:08:03.0546 0xf170 IpFilterDriver - ok
16:08:03.0587 0xf170 [ A5800036E4EA06697A34742A24ACFBE1, BA67060526E9213000B4206F86A74F904999AD7018EFCBE4FE9708650DA9D973 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
16:08:03.0601 0xf170 iphlpsvc - ok
16:08:03.0642 0xf170 [ 9C096BF5E10CA8BFA56F32522A89FAF1, 6C1151160799338DA351C7237AB049926C6C15F24F5E154BBF5929B4A96C0B8D ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
16:08:03.0651 0xf170 IPMIDRV - ok
16:08:03.0684 0xf170 [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
16:08:03.0694 0xf170 IPNAT - ok
16:08:03.0740 0xf170 [ E61BB95A7CB49696D25A0C4EBD108156, 65D95A0DBC408AD18D5E344A5E875551E6CC044038DE438E4EA1102A234FC529 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
16:08:03.0751 0xf170 iPod Service - ok
16:08:03.0772 0xf170 [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
16:08:03.0779 0xf170 IRENUM - ok
16:08:03.0827 0xf170 [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
16:08:03.0834 0xf170 isapnp - ok
16:08:03.0875 0xf170 [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
16:08:03.0903 0xf170 iScsiPrt - ok
16:08:03.0937 0xf170 [ A1D4D34A56DF1D5122CDB265038A2E72, AE061BA1A65C98AF875FA18878B014B57E33594D4AC4C39B050AA532E2220F83 ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
16:08:03.0939 0xf170 kbdclass - ok
16:08:03.0979 0xf170 [ 4A34D7084B862A92F3ABC4969166B3D3, 87B2635873DA4DD06D9E3B8E4313CBDBDC1488E4E340EC2101393EC65823771F ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
16:08:04.0014 0xf170 kbdhid - ok
16:08:04.0038 0xf170 [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic C:\WINDOWS\system32\DRIVERS\kdnic.sys
16:08:04.0045 0xf170 kdnic - ok
16:08:04.0057 0xf170 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso C:\WINDOWS\system32\lsass.exe
16:08:04.0059 0xf170 KeyIso - ok
16:08:04.0117 0xf170 [ 5781DA0CFB8833F5D8AEB433233C7294, 5EF52B532257E8CD34CEAFA405FF022CB1127B6A92BEE5578BC73B0380556D2A ] kl1 C:\WINDOWS\system32\DRIVERS\kl1.sys
16:08:04.0127 0xf170 kl1 - ok
16:08:04.0149 0xf170 [ EE7A44540B65B6FF617DCB8929C9FDAE, E9FB0BEAA1692CEBE8F6E1DED6AE49EFE2679F606CD251AE2222095D37129CDA ] kldisk C:\WINDOWS\system32\DRIVERS\kldisk.sys
16:08:04.0159 0xf170 kldisk - ok
16:08:04.0221 0xf170 [ F2EB9202FCCC81E0902D3C5A70037A44, 9554851BB68228500E69536B0C484B32FC92B85A76A7F1F268549212D0D5CFCA ] klelam C:\WINDOWS\system32\DRIVERS\klelam.sys
16:08:04.0228 0xf170 klelam - ok
16:08:04.0272 0xf170 [ 6C76992FC40A857A24C5D96602E9C3B1, 87DF4C915B9B926891A252A1D126B262DC9A37A508AAEFC5957C4C7AB297D7E3 ] klflt C:\WINDOWS\system32\DRIVERS\klflt.sys
16:08:04.0276 0xf170 klflt - ok
16:08:04.0298 0xf170 [ 7827C35B1FCEE1AF63987EEDC7BC649F, B45CD43B0096850086EB62A53B50EAE16745D533B9542FC7B4D6A7AEFA2B3615 ] klhk C:\WINDOWS\system32\DRIVERS\klhk.sys
16:08:04.0304 0xf170 klhk - ok
16:08:04.0337 0xf170 [ AD093C0B2C9CAD65CA0C16379E666CC7, F366AEC60674B58060A3FFBD4CD0E6E566D10DF4D5F6DA699D6BD9A565AA59A4 ] KLIF C:\WINDOWS\system32\DRIVERS\klif.sys
16:08:04.0354 0xf170 KLIF - ok
16:08:04.0377 0xf170 [ 082E4E17C8C56205D7A3A74F52FAD991, BF664A675549F0456983B974FC94614FDE5DC778033ACE0936B78A0FBCB52226 ] KLIM6 C:\WINDOWS\system32\DRIVERS\klim6.sys
16:08:04.0379 0xf170 KLIM6 - ok
16:08:04.0397 0xf170 [ 72EB703CBD490DE11FB468F290A47493, AA7469DA253EFC3B534BA2D0BBBCD95F82DBAA48E4CBC9F67DAD7B118C3F85D3 ] klkbdflt C:\WINDOWS\system32\DRIVERS\klkbdflt.sys
16:08:04.0398 0xf170 klkbdflt - ok
16:08:04.0402 0xf170 klkbdflt2 - ok
16:08:04.0418 0xf170 [ 039C35F0CA2866447C6C38F6653DD0BF, 7F084E1CA2FEA6E3D3FBE3DC8D0362BB5ADCF53B2CB3F1349EF96F39131E1D6D ] klmouflt C:\WINDOWS\system32\DRIVERS\klmouflt.sys
16:08:04.0420 0xf170 klmouflt - ok
16:08:04.0435 0xf170 [ B33399BCA2034648520E34987CE2C0C9, F93B38D7DFAAE44B929BC2F739F03A9A67C6FA4AFC29B07DF96D2C7011DCB1AF ] klpd C:\WINDOWS\system32\DRIVERS\klpd.sys
16:08:04.0444 0xf170 klpd - ok
16:08:04.0479 0xf170 [ C66A4C640B7F9606668D35D726D2FF51, B6708A516D55FDDB3C5F018827D4E0B52D2B65D7B0DC33A9AECC301A05A860DE ] klwfp C:\WINDOWS\system32\DRIVERS\klwfp.sys
16:08:04.0527 0xf170 klwfp - ok
16:08:04.0560 0xf170 [ 88D5EF6EE17C280167D42B53282AB4BD, CFFF8D7CE24FCE62FB2C21E1B09DF914612C1EF96876855537B207F7BD83E872 ] Klwtp C:\WINDOWS\system32\DRIVERS\klwtp.sys
16:08:04.0568 0xf170 Klwtp - ok
16:08:04.0623 0xf170 [ 1AAA539F0F16716466596C37599C7AF2, 888ABC477C2720CA55BC30C8D5FA0A5490F41B62F2A5502F808E9F709FFC0DBB ] kneps C:\WINDOWS\system32\DRIVERS\kneps.sys
16:08:04.0628 0xf170 kneps - ok
16:08:04.0655 0xf170 [ 4E829B18D5BAEC29893792A3C671A847, 64C3B99F53A9D1ACA802B46B09E820AD210B667D5A1CD0ADAF1F12944B15B52E ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
16:08:04.0658 0xf170 KSecDD - ok
16:08:04.0719 0xf170 [ 15C8C65CEA018C02EA0F648448C491C5, DF909704D22D891BE439B2E3D8386EA659444F91DC92AABFF9766446AEE5EBC0 ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
16:08:04.0723 0xf170 KSecPkg - ok
16:08:04.0819 0xf170 [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
16:08:04.0833 0xf170 ksthunk - ok
16:08:04.0861 0xf170 [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
16:08:04.0878 0xf170 KtmRm - ok
16:08:04.0929 0xf170 [ CA2828DDE4B09FEFFDB7CE68B3D8D00A, B514792FF1EF36C678BB51644A1C420105D5E2CD6DD5A89A3FB252D08277A40C ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
16:08:04.0937 0xf170 LanmanServer - ok
16:08:04.0989 0xf170 [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
16:08:05.0027 0xf170 LanmanWorkstation - ok
16:08:05.0068 0xf170 [ 2B7479EB47731A8ACBA28AF4C4BDA32D, 67AEB98E7B41337FEFD92CC81BFAD25FBB679998B318C110A4873B1AD8927A97 ] lfsvc C:\WINDOWS\System32\GeofenceMonitorService.dll
16:08:05.0100 0xf170 lfsvc - ok
16:08:05.0109 0xf170 [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio C:\WINDOWS\system32\DRIVERS\lltdio.sys
16:08:05.0170 0xf170 lltdio - ok
16:08:05.0209 0xf170 [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
16:08:05.0223 0xf170 lltdsvc - ok
16:08:05.0267 0xf170 [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
16:08:05.0291 0xf170 lmhosts - ok
16:08:05.0318 0xf170 [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
16:08:05.0328 0xf170 LSI_SAS - ok
16:08:05.0335 0xf170 [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2 C:\WINDOWS\system32\drivers\lsi_sas2.sys
16:08:05.0344 0xf170 LSI_SAS2 - ok
16:08:05.0358 0xf170 [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3 C:\WINDOWS\system32\drivers\lsi_sas3.sys
16:08:05.0367 0xf170 LSI_SAS3 - ok
16:08:05.0373 0xf170 [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
16:08:05.0381 0xf170 LSI_SSS - ok
16:08:05.0431 0xf170 [ 9A7A7E45DAED2E8C2816716D8D28236A, C94787988826E546A8DC752BD6BE4EA7423DC3762B2D371DB297A63F865A95FF ] LSM C:\WINDOWS\System32\lsm.dll
16:08:05.0449 0xf170 LSM - ok
16:08:05.0498 0xf170 [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
16:08:05.0502 0xf170 luafv - ok
16:08:05.0528 0xf170 [ A0A527569856B9814E8920F52EBB67F5, 4347277C84B47E4CC048850BDEFB258CFB3B476AA99FD503FD71FBB70FFF5ACF ] LVRS64 C:\WINDOWS\system32\DRIVERS\lvrs64.sys
16:08:05.0564 0xf170 LVRS64 - ok
16:08:05.0726 0xf170 [ 415E344294D1C0D04627B29146F68481, B4A1A05BDF07E8F226A98E51F62BE18BE2C046A084C495BD8A95CABC79FD0614 ] LVUVC64 C:\WINDOWS\system32\DRIVERS\lvuvc64.sys
16:08:05.0817 0xf170 LVUVC64 - ok
16:08:05.0856 0xf170 [ 1E9E32AEC3E1EB1B31B8169F33168B56, 39114585E1FDBBA31E1F781C6A627281907183F94626EB347B08D1F78992ED2A ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
16:08:05.0858 0xf170 MBAMProtector - ok
16:08:05.0919 0xf170 [ 516E29AD03BDF610CC36A95AE692FE42, 09F913B169AD775FF587AE59AEC5DD2A2D8646803F48BF616C74EEC0DE3BE7A2 ] MBAMScheduler C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
16:08:05.0948 0xf170 MBAMScheduler - ok
16:08:05.0980 0xf170 [ 2B983F067AEE3F9EB4DF5E97F45D21D1, 0B9ED0E91FF01A5445927650113E320C3C0EA16F1401AA55A509DDBF704DF22F ] MBAMService C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
16:08:05.0997 0xf170 MBAMService - ok
16:08:06.0035 0xf170 [ E9CD058C79EA15B4AA93E259FA713B07, 2B09F65188D8782F9C797545F2F791EC7EAB85D8914B2C0B30BD869C412E3980 ] MBAMSwissArmy C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
16:08:06.0039 0xf170 MBAMSwissArmy - ok
16:08:06.0061 0xf170 [ 28B597A61C9AC9B59BC0573D70A62CBF, 032C095ECDAEEE800BD9C7AB08C089E7530A9DD09AE577D1612035F2BFFAA61C ] MBAMWebAccessControl C:\WINDOWS\system32\drivers\mwac.sys
16:08:06.0063 0xf170 MBAMWebAccessControl - ok
16:08:06.0091 0xf170 [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas C:\WINDOWS\system32\drivers\megasas.sys
16:08:06.0099 0xf170 megasas - ok
16:08:06.0122 0xf170 [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr C:\WINDOWS\system32\drivers\megasr.sys
16:08:06.0141 0xf170 megasr - ok
16:08:06.0149 0xf170 [ D9D93198D7479C8FC52375806CFDC1CF, 856806C154367F3E32B7FCC797719D37942A1249138DD8DA87B95BC757CB8A95 ] mfeapfk C:\WINDOWS\system32\drivers\mfeapfk.sys
16:08:06.0169 0xf170 mfeapfk - ok
16:08:06.0193 0xf170 [ EBC37DF7D14D33056C46CCD233A3E9DF, 3FDE4214B888004ED8FF93DEBA80EABA738E66A592078032414E94F9F769D3DF ] mfeavfk C:\WINDOWS\system32\drivers\mfeavfk.sys
16:08:06.0219 0xf170 mfeavfk - ok
16:08:06.0242 0xf170 [ 381EECD28C170978837DE41835647F07, DD385B4C6C1BB2B775ED39E7045EB000676BF2B29DD0BA3D31FE95969DC63DF4 ] mfeelamk C:\WINDOWS\system32\drivers\mfeelamk.sys
16:08:06.0268 0xf170 mfeelamk - ok
16:08:06.0327 0xf170 [ 89A8491264921184753B472F96A68E2F, 4FC0ACF8023C6324789F6300B4646C23EDCDA6B6409B277DA3C7B000EC94C4D4 ] mfefire C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
16:08:06.0331 0xf170 mfefire - ok
16:08:06.0346 0xf170 [ 688FC9DB0D8319413F99C020D646A0BD, 52FB02DD79CB04F5559965B2EF4020FA65194163D3BB8289697A063B3A864360 ] mfefirek C:\WINDOWS\system32\drivers\mfefirek.sys
16:08:06.0366 0xf170 mfefirek - ok
16:08:06.0386 0xf170 [ 205FF925AACA86BF19B1395D22463AF7, 1447338FEB4EBE18E4D2B37BC1A09723EC8DF52D28FEBB38B86552CDA06F303C ] mfehidk C:\WINDOWS\system32\drivers\mfehidk.sys
16:08:06.0402 0xf170 mfehidk - ok
16:08:06.0431 0xf170 [ 5E03DF8154CCA4D5B236B8AFAF3ECE48, B35B786EE7476A189771CA741862D13C7BBF9233367396371413849FF48C7E23 ] mfevtp C:\Windows\system32\mfevtps.exe
16:08:06.0434 0xf170 mfevtp - ok
16:08:06.0445 0xf170 [ FD426ABB976F264C5741D724B0046B06, B03AEFB874C7C5EC80A18F9E6670C0F8C4F5AC0F94FF43BE956C9CD0DB03BF8F ] mfewfpk C:\WINDOWS\system32\drivers\mfewfpk.sys
16:08:06.0453 0xf170 mfewfpk - ok
16:08:06.0492 0xf170 [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS C:\WINDOWS\system32\mmcss.dll
16:08:06.0496 0xf170 MMCSS - ok
16:08:06.0523 0xf170 [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem C:\WINDOWS\system32\drivers\modem.sys
16:08:06.0531 0xf170 Modem - ok
16:08:06.0546 0xf170 [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor C:\WINDOWS\System32\drivers\monitor.sys
16:08:06.0553 0xf170 monitor - ok
16:08:06.0593 0xf170 [ 2A2F8D5284E59815169A88F1FC9CEE28, 58EFBCF3C849FD088CFB7FE287FC7D9DD7E03D4E6AA98F0497C09E4596E42538 ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
16:08:06.0601 0xf170 mouclass - ok
16:08:06.0636 0xf170 [ 91223A2AE2955B3E0DA3DB79C3A897A6, 32B59CF1586C2300D60AF8A1D819515033ACC7F7A1F3523FC4AC7725E29B5A90 ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
16:08:06.0644 0xf170 mouhid - ok
16:08:06.0683 0xf170 [ D1D82F007A079A4D623DBD1F36EF30A1, 7901F81B62C5A4196D75A10C05386B16831CB290EFB9A1611CECF281068C520F ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
16:08:06.0686 0xf170 mountmgr - ok
16:08:06.0715 0xf170 [ 9FC679D10A7377BB04ECC3D0E2E26B53, 24ACD4EC1618A052C29E4463138B28F62C8B78D442DB82F4925E64FC5849A096 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:08:06.0719 0xf170 MozillaMaintenance - ok
16:08:06.0737 0xf170 [ 6FC047578785B0435F4E2660946D1ADC, 8AEA5659F01FC2F75160922C69622502DABA39F33CB90D5178DD679A1CDE617D ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
16:08:06.0769 0xf170 mpsdrv - ok
16:08:06.0814 0xf170 [ C18AA14126ADC66478E8E962B2DFAA98, A6F8CE9D88D590DC083253004392572C3BD02C33433CD6C0D9117D2AA7171EEC ] MpsSvc C:\WINDOWS\system32\mpssvc.dll
16:08:06.0836 0xf170 MpsSvc - ok
16:08:06.0878 0xf170 [ DB32958F0E704EFBF7F15161A569E39F, 8A26448B954F8A16EE9BA72EF47F6C549A75B30BD13FEB5A29EB099A74D8F678 ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
16:08:06.0901 0xf170 MRxDAV - ok
16:08:06.0947 0xf170 [ 31233271EDE50D1BBB220F78AFA60486, 2122FAB5BD353DF63CF0FE9CEDBD5DFD1F26F2DE04303E1B3FFB03AA02AECED9 ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
16:08:06.0956 0xf170 mrxsmb - ok
16:08:06.0995 0xf170 [ 3E28B99198B514DFEB152EACF913025E, 6C1D8353DCD5F811F39C0C3CB5DF3D2457F0D17EE80FB06196AA169E3D19E9B2 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
16:08:07.0002 0xf170 mrxsmb10 - ok
16:08:07.0044 0xf170 [ 6276AC2AA203CF47811F6EFBBD214FBF, AE55D87D863A626347B0074F4E962080F1989A94153DAF8475593249F616DA2F ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
16:08:07.0062 0xf170 mrxsmb20 - ok
16:08:07.0119 0xf170 [ F3C060444777A59FC63D920719E43CCD, 8766A2746E3DFB0749E902F458141269335CA6F0CEDCA3D5F8C204637C19E783 ] MsBridge C:\WINDOWS\system32\DRIVERS\bridge.sys
16:08:07.0146 0xf170 MsBridge - ok
16:08:07.0175 0xf170 [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC C:\WINDOWS\System32\msdtc.exe
16:08:07.0186 0xf170 MSDTC - ok
16:08:07.0210 0xf170 [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
16:08:07.0212 0xf170 Msfs - ok
16:08:07.0229 0xf170 [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
16:08:07.0237 0xf170 msgpiowin32 - ok
16:08:07.0253 0xf170 [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
16:08:07.0259 0xf170 mshidkmdf - ok
16:08:07.0266 0xf170 [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
16:08:07.0273 0xf170 mshidumdf - ok
16:08:07.0296 0xf170 [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
16:08:07.0298 0xf170 msisadrv - ok
16:08:07.0318 0xf170 [ 4EAEEBAC8CFF4E0D717DFA920BC58A90, A65CB1BB3392B6A04B978348CAC18A414560A6B04A727F22DFC0ADB20DD3AF6B ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
16:08:07.0329 0xf170 MSiSCSI - ok
16:08:07.0333 0xf170 msiserver - ok
16:08:07.0339 0xf170 [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
16:08:07.0340 0xf170 MSKSSRV - ok
16:08:07.0380 0xf170 [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp C:\WINDOWS\system32\DRIVERS\mslldp.sys
16:08:07.0414 0xf170 MsLldp - ok
16:08:07.0418 0xf170 [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
16:08:07.0425 0xf170 MSPCLOCK - ok
16:08:07.0432 0xf170 [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
16:08:07.0454 0xf170 MSPQM - ok
16:08:07.0486 0xf170 [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
16:08:07.0494 0xf170 MsRPC - ok
16:08:07.0513 0xf170 [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
16:08:07.0520 0xf170 mssmbios - ok
16:08:07.0526 0xf170 [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
16:08:07.0532 0xf170 MSTEE - ok
16:08:07.0543 0xf170 [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
16:08:07.0569 0xf170 MTConfig - ok
16:08:07.0595 0xf170 [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup C:\WINDOWS\system32\Drivers\mup.sys
16:08:07.0598 0xf170 Mup - ok
16:08:07.0611 0xf170 [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
16:08:07.0620 0xf170 mvumis - ok
16:08:07.0666 0xf170 [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent C:\WINDOWS\system32\qagentRT.dll
16:08:07.0678 0xf170 napagent - ok
16:08:07.0722 0xf170 [ 008F7CED69FD5B30CBDE1E03C6F36A27, D4ADA7834C470B17A3CD976012DC5A511B32545B9F91D23D09A85722E0B75320 ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
16:08:07.0740 0xf170 NativeWifiP - ok
16:08:07.0784 0xf170 [ BFCE1225D10619029E68946929CEB64C, 499F560331FFBA82E3D673B47F027FDAB7BEE4F2CB5B811D69E0218839F6E6A5 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
16:08:07.0789 0xf170 NcaSvc - ok
16:08:07.0827 0xf170 [ 267C97373110B7AFD3B46DF60B6CBB85, CEBB99F71D47634BB9C04DF2836DF6B47F15B3073FEFC237F85526DF01E4E38B ] NcbService C:\WINDOWS\System32\ncbservice.dll
16:08:07.0835 0xf170 NcbService - ok
16:08:07.0880 0xf170 [ 9ACED0F5B458C9011F39143326494E93, 9DFFC7EE7DE6FD92545EC6A203213C498A01EEFB0BC55460D339BCE498E56A7F ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
16:08:07.0889 0xf170 NcdAutoSetup - ok
16:08:07.0985 0xf170 [ 6D3A2565E01B3E4B0F1BEDB0D4B00B3F, 95F2608E17CA3E25BD7958D1A49F7030EC8088BC1DF12422F1DAC5BA99113E34 ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
16:08:08.0007 0xf170 NDIS - ok
16:08:08.0053 0xf170 [ 8CECC8DA55F3274181FD1EA28AD76664, 188112424CEF97FB926A0FB915260B803555A775DD2E1846725A9C8616300F42 ] NdisCap C:\WINDOWS\system32\DRIVERS\ndiscap.sys
16:08:08.0060 0xf170 NdisCap - ok
16:08:08.0104 0xf170 [ 269882812E9A68FFF1AFE1283D428322, 50B99EBC42DA9B46A8C2C28C9BADCF58AE3079535CDD1227D0F5C86291C715FF ] NdisImPlatform C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
16:08:08.0108 0xf170 NdisImPlatform - ok
16:08:08.0140 0xf170 [ 82821F4EEC776B4CF11695A38F3ABA46, 23184F9D31E662855DC4D23EFE7C2FE00E5487D3762B6024704A5D8C87762E1C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
16:08:08.0184 0xf170 NdisTapi - ok
16:08:08.0204 0xf170 [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
16:08:08.0224 0xf170 Ndisuio - ok
16:08:08.0242 0xf170 [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
16:08:08.0249 0xf170 NdisVirtualBus - ok
16:08:08.0267 0xf170 [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
16:08:08.0279 0xf170 NdisWan - ok
16:08:08.0287 0xf170 [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy C:\WINDOWS\system32\DRIVERS\ndiswan.sys
16:08:08.0290 0xf170 NdisWanLegacy - ok
16:08:08.0327 0xf170 [ DDD7F92A83F74D1476B71FBA9530A8DC, D3F94FC9F48854E09B0B77CE5E1C1DB948D54EAC63C5583437051BB893B5A386 ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
16:08:08.0347 0xf170 NDProxy - ok
16:08:08.0388 0xf170 [ 3083926D1CC5B56EA0786527B557DD1B, 3C3F0CA0D43398576DBE8F677B353ADDA7E8F56829874958CE668E31261C1590 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
16:08:08.0409 0xf170 Ndu - ok
16:08:08.0455 0xf170 [ 42FF4975D032CAE558AE4BB8448F6E5A, 0B8FACF3382443DED79A8004A6AA14C32471A6A1C6BAA543AA9F3FEC52620A6D ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
16:08:08.0457 0xf170 NetBIOS - ok
16:08:08.0479 0xf170 [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
16:08:08.0514 0xf170 NetBT - ok
16:08:08.0540 0xf170 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] Netlogon C:\WINDOWS\system32\lsass.exe
16:08:08.0542 0xf170 Netlogon - ok
16:08:08.0564 0xf170 [ 8F074B62E66B6117D9598C62A12069C5, 5FDB19045D3E2F6D0F0C5158AC2ECB0D5404CD2AF7A319755D7E3753CA3B7CF3 ] Netman C:\WINDOWS\System32\netman.dll
16:08:08.0571 0xf170 Netman - ok
16:08:08.0638 0xf170 [ 4A04B1CD5BFB4A978C5F60E86D6C3E45, A946922C1C38ADD3CF9D3B09DDCC301AE4DAC960A081B2F42B32BE1E7095B3FD ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
16:08:08.0651 0xf170 netprofm - ok
16:08:08.0704 0xf170 [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:08:08.0773 0xf170 NetTcpPortSharing - ok
16:08:08.0801 0xf170 [ D4DCE03870314D3354F3501F9DDD4123, 5BFE8299B3F72B8C39A4965365CBF5BA151024451F02DD872FAD1CC35CF94CEA ] netvsc C:\WINDOWS\System32\drivers\netvsc63.sys
16:08:08.0813 0xf170 netvsc - ok
16:08:08.0858 0xf170 [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
16:08:08.0869 0xf170 NlaSvc - ok
16:08:08.0897 0xf170 [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
16:08:08.0900 0xf170 Npfs - ok
16:08:08.0910 0xf170 [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
16:08:08.0917 0xf170 npsvctrig - ok
16:08:08.0974 0xf170 [ 0F12A72A753CFD7FB0631EE8D08FE983, 860A96471F6CD90DDA9AB3A48E95CEAD826C87D2FA98A00EF91B61C44A4C8B82 ] nsi C:\WINDOWS\system32\nsisvc.dll
16:08:08.0978 0xf170 nsi - ok
16:08:09.0042 0xf170 [ 0E046FF5823B95326D10CF1B4AF23541, 39D22715003746527AB4BFEDED8C34B695DAF589091AE7F3A2A2C4B8A35675A9 ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
16:08:09.0061 0xf170 nsiproxy - ok
16:08:09.0145 0xf170 [ 7F68063A5A0461E02BC860CE0E6BFDDC, 47E9F75D27B97278B74034B7D3951A26B1644911ED321455E08D935731C858DE ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
16:08:09.0184 0xf170 Ntfs - ok
16:08:09.0209 0xf170 [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null C:\WINDOWS\system32\drivers\Null.sys
16:08:09.0216 0xf170 Null - ok
16:08:09.0229 0xf170 NVHDA - ok
16:08:09.0659 0xf170 [ BF769EC1CC472FAD4C6EAEEB96ED857E, BBF8BA2B703BF4C36DFC7F69B4D8E477C8162BEC492C6C5D1A7751C19305ABE8 ] nvlddmkm C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
16:08:09.0993 0xf170 nvlddmkm - ok
16:08:10.0199 0xf170 [ DCAA93D28D6FC75A4D80AE410008BA90, 7EDB69747C95FB68A4DF1932CF45E078DE94364D7A37D83A29952977A41D1FD7 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
16:08:10.0228 0xf170 NvNetworkService - ok
16:08:10.0284 0xf170 [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
16:08:10.0307 0xf170 nvraid - ok
16:08:10.0329 0xf170 [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
16:08:10.0353 0xf170 nvstor - ok
16:08:10.0386 0xf170 [ 9408391358F3B9FD0F59E27151383C51, 777A41DE1D8D71833369D1335A083BA8F197317CB62D0E65EFFCC9760D84F2AB ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
16:08:10.0388 0xf170 NvStreamKms - ok
16:08:10.0410 0xf170 NvStreamSvc - ok
16:08:10.0488 0xf170 [ 039ACFA07F59DB2109BB6A2C0FA2C0D9, E641179FCDB83BBFFADDDECD646F69D667F494BFC41FCE1F035EE78A944C6D5B ] nvsvc C:\WINDOWS\system32\nvvsvc.exe
16:08:10.0507 0xf170 nvsvc - ok
16:08:10.0552 0xf170 [ D0EB00C3BDD50E9CABA534CF829593E8, 6E11117DC30E834C70DC9381A67D057BC2DADA956855A0EEA9801D45C75536B1 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
16:08:10.0612 0xf170 nvvad_WaveExtensible - ok
16:08:10.0627 0xf170 [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp C:\WINDOWS\system32\drivers\nv_agp.sys
16:08:10.0636 0xf170 nv_agp - ok
16:08:10.0759 0xf170 [ FCE83ABDE761C87D17EA65960455F0E5, E59C13E26845FE0537AEBF0E4A9DC0AF3E6DF55C7A54247FC8078AC5DE666AD4 ] Origin Client Service C:\Program Files (x86)\Origin\OriginClientService.exe
16:08:11.0254 0xf170 Origin Client Service - ok
16:08:11.0299 0xf170 [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
16:08:11.0315 0xf170 p2pimsvc - ok
16:08:11.0347 0xf170 [ FD8F61F0D1F64BBB3D835F39A3F979C9, E5C5F86576488EA7F605E26C06EE5AFB36506A446F60C894D55E0A148BF7F02D ] p2psvc C:\WINDOWS\system32\p2psvc.dll
16:08:11.0363 0xf170 p2psvc - ok
16:08:11.0399 0xf170 [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport C:\WINDOWS\System32\drivers\parport.sys
16:08:11.0408 0xf170 Parport - ok
16:08:11.0447 0xf170 [ BAFF6122CFC9F95CA175AD8C348179A4, 079A912D951DF6A57BC1BDB0D182977EE9592751EC9DDCDA2932BDEDB333850C ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
16:08:11.0450 0xf170 partmgr - ok
16:08:11.0500 0xf170 [ ABE95ABE27A8BD9701782BBCD82C9925, AE3BA1E9ECDE692374D8DAC95A8DAA289DD2470E3D8D58EFAD9F83A37F3AC8E5 ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
16:08:11.0512 0xf170 PcaSvc - ok
16:08:11.0556 0xf170 [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci C:\WINDOWS\system32\drivers\pci.sys
16:08:11.0564 0xf170 pci - ok
Mister Spoo
Regular Member
 
Posts: 23
Joined: June 23rd, 2015, 12:01 am

Re: I may have something hidng that my antivirus doesn't see

Unread postby Mister Spoo » June 28th, 2015, 8:21 pm

part 2 of kaspersky report
16:08:11.0576 0xf170 [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide C:\WINDOWS\system32\drivers\pciide.sys
16:08:11.0578 0xf170 pciide - ok
16:08:11.0603 0xf170 [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
16:08:11.0630 0xf170 pcmcia - ok
16:08:11.0652 0xf170 [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw C:\WINDOWS\system32\drivers\pcw.sys
16:08:11.0655 0xf170 pcw - ok
16:08:11.0695 0xf170 [ 24A8DFC07E4BAF29AEA26E383D4CC886, 1B903FE52CD816662D37A8113930B4B7019B6996D49F1982D8F42933A3525A67 ] pdc C:\WINDOWS\system32\drivers\pdc.sys
16:08:11.0698 0xf170 pdc - ok
16:08:11.0747 0xf170 [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
16:08:11.0783 0xf170 PEAUTH - ok
16:08:11.0843 0xf170 [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
16:08:11.0901 0xf170 PerfHost - ok
16:08:11.0974 0xf170 [ 70B39E7241F750A248798CE82C44596D, 54A72199EB277EE586611DCBC21654786FD2196F91D5884C4F531297893CC3EC ] pla C:\WINDOWS\system32\pla.dll
16:08:12.0006 0xf170 pla - ok
16:08:12.0047 0xf170 [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
16:08:12.0050 0xf170 PlugPlay - ok
16:08:12.0092 0xf170 [ CD421DDB5C6E5458CE52EDC36DE7DC5B, 7B9C0A8B2B86BBF5D7E02F2620B0015A2530CBBC99724BE20313DE53EB31D62E ] PnkBstrA C:\WINDOWS\system32\PnkBstrA.exe
16:08:12.0094 0xf170 PnkBstrA - ok
16:08:12.0137 0xf170 [ 4570F8A37D221660F3A09D6F4DD4BA94, 0EA190CFFA53DF9CCA2D53A4EF1BCB837BA3F2489A3AC5BD11F6D6ED811D118E ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
16:08:12.0145 0xf170 PNRPAutoReg - ok
16:08:12.0166 0xf170 [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
16:08:12.0173 0xf170 PNRPsvc - ok
16:08:12.0210 0xf170 [ BDD52AB4AEBB8B1904568DBD0CCB70CB, C3D1DBA349C79B43DCDD9EF5255C5EE973EFB844235B808B5EF9B63A51FF00AA ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
16:08:12.0226 0xf170 PolicyAgent - ok
16:08:12.0256 0xf170 [ C8DD82C3035E60D671B8CC5DF128D3A9, 6AABF632CBEDA9A7B553BC9134FF100CB6FDC88000D499D2883408FCEDD97576 ] Power C:\WINDOWS\system32\umpo.dll
16:08:12.0261 0xf170 Power - ok
16:08:12.0280 0xf170 [ E075CC071022BD4E9BE7C024717C0E0A, BE65A8C1082AE8DF8C37CA06B2BCC521478AC153EA7388B03F7FAE3913920E75 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
16:08:12.0289 0xf170 PptpMiniport - ok
16:08:12.0395 0xf170 [ E3514CE7CB4AF80ECCA383F065BC77C0, 1EA06D358A07EB9DFB703CEFC4EB834B947B899E0ACFE1C494E2DAED63F1D4B5 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
16:08:12.0479 0xf170 PrintNotify - ok
16:08:12.0528 0xf170 [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor C:\WINDOWS\System32\drivers\processr.sys
16:08:12.0537 0xf170 Processor - ok
16:08:12.0577 0xf170 [ 19424364D8C03B990C4281BE53963FD0, 958FC8436E6B754858E20BC48B0D4B269991E8CA94C15C2761BF04ED52591907 ] ProfSvc C:\WINDOWS\system32\profsvc.dll
16:08:12.0584 0xf170 ProfSvc - ok
16:08:12.0630 0xf170 [ FC0141B4A5AD6D637D883C1A89FC45C5, DCE8942C02EEDAE7A57707CA60CAC3A8CD6BA68E6571E405CA882D4DD6D69E43 ] Psched C:\WINDOWS\system32\DRIVERS\pacer.sys
16:08:12.0655 0xf170 Psched - ok
16:08:12.0693 0xf170 [ DAA9DEE0A5D5F238C4EE54C2C7FB67C5, 7EC8C603BD92699AC35BDCD294F13BEE90D5C2C195FD93A3F16928BFCF53CA93 ] QWAVE C:\WINDOWS\system32\qwave.dll
16:08:12.0708 0xf170 QWAVE - ok
16:08:12.0750 0xf170 [ 83868EB2924E6BC21A54337C65D614D1, 8D1BE01EBD190231153B867C32120DC8FBFBD32050448A778134D435D76A0B07 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
16:08:12.0758 0xf170 QWAVEdrv - ok
16:08:12.0791 0xf170 [ B337B1F1E82A83E20A1743E008E25C0F, A2E8AF041B4CAB78AEE28A2147A189FF0F9D2FCEFB167D60FBBA0A787A5A5BE7 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
16:08:12.0801 0xf170 RasAcd - ok
16:08:12.0835 0xf170 [ E8FFD8BE3C50E7A71C5FBB87BDD1128E, 3E3EB906CC9A1CCA09580DA9F94DD0E1162CABD343874B76718DC4F2E9069C4E ] RasAgileVpn C:\WINDOWS\system32\DRIVERS\AgileVpn.sys
16:08:12.0845 0xf170 RasAgileVpn - ok
16:08:12.0895 0xf170 [ 044638489B4A5FE5334F46C5314A0826, E06CC2A9EF369794DAD69FBB5AFD1676D4283DDAB2AD5E3EFE454C473F62F955 ] RasAuto C:\WINDOWS\System32\rasauto.dll
16:08:12.0906 0xf170 RasAuto - ok
16:08:12.0922 0xf170 [ BBB6272B7F46C4640A8CDB8A70C3450F, 4266C3ABD0D1D0219F715EA0F155744F7C1E3A7B722BE863831B57AE785419A2 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
16:08:12.0944 0xf170 Rasl2tp - ok
16:08:12.0982 0xf170 [ F83B38FCD4F69157B3D158433FA149CC, AB103BD3E2B3B134CB355C556DF70BCF0CF4DB11EFF7DB4A9876D5AA43D81293 ] RasMan C:\WINDOWS\System32\rasmans.dll
16:08:13.0022 0xf170 RasMan - ok
16:08:13.0030 0xf170 [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
16:08:13.0054 0xf170 RasPppoe - ok
16:08:13.0084 0xf170 [ 41F631007A158FEBB67F0E2AD1601BBA, EB5EA7277F4178BC27E55BF850AEBCD84B6BED80B2383CFB29548824AAFED135 ] RasSstp C:\WINDOWS\system32\DRIVERS\rassstp.sys
16:08:13.0093 0xf170 RasSstp - ok
16:08:13.0170 0xf170 [ 67EAD2898F681B4ECA6E385AA39C8539, BD3D46234DD4FB6232CFF073E75CA8E35E06B416D205DCD6564E30D7548ED6F6 ] Razer Game Scanner Service C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
16:08:13.0175 0xf170 Razer Game Scanner Service - ok
16:08:13.0223 0xf170 [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
16:08:13.0232 0xf170 rdbss - ok
16:08:13.0251 0xf170 [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
16:08:13.0277 0xf170 rdpbus - ok
16:08:13.0301 0xf170 [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
16:08:13.0312 0xf170 RDPDR - ok
16:08:13.0354 0xf170 [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
16:08:13.0362 0xf170 RdpVideoMiniport - ok
16:08:13.0397 0xf170 [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
16:08:13.0403 0xf170 rdyboost - ok
16:08:13.0457 0xf170 [ 615DFD97DEA56CE1C3A52185A3038FF8, 707BF5F9FAE478A12656D15013F507CC1335E7B72BD21CA99BB813CB95E37BC0 ] ReFS C:\WINDOWS\system32\drivers\ReFS.sys
16:08:13.0485 0xf170 ReFS - ok
16:08:13.0538 0xf170 [ 0CF7CB56BF2D5E9DBCEE0185CB626FAD, 2BD2E2FB1D2EADD1F70EF55E8523C353F95D4FEB1BAD5017FA4D94F790F27825 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
16:08:13.0567 0xf170 RemoteAccess - ok
16:08:13.0591 0xf170 [ AC8785B53F8436058C90450DA1840AE7, CC1FFC2713910211F8A6AD532DBB9253ACD188CBD784F1BE6613DF382825A3C1 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
16:08:13.0603 0xf170 RemoteRegistry - ok
16:08:13.0646 0xf170 [ DC66AE45816614D2999DCD3834DCCC4E, 1C26225135E851DDD1307F52401DD7055B26B3F3B8FDD693B21042C2896E235A ] RFCOMM C:\WINDOWS\System32\drivers\rfcomm.sys
16:08:13.0657 0xf170 RFCOMM - ok
16:08:13.0708 0xf170 [ FBA61BB4C484A01A655AFB18FF86C417, D53B2110CB09D0A909C4E330C468351BFE076BB056CCDDCB8ADA2FB91E96352E ] RichVideo64 C:\Program Files\CyberLink\Shared files\RichVideo64.exe
16:08:13.0714 0xf170 RichVideo64 - ok
16:08:13.0756 0xf170 [ 65B9FDE300A6DECC03BA44C4616DCAD6, CAD992982733DD20282A3453DC4E554AE1FC077C35479C0CA4E8BC3A9DCD3BB0 ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
16:08:13.0760 0xf170 RpcEptMapper - ok
16:08:13.0798 0xf170 [ A737B433ABAF3F2DCB2BD7B4CC582B26, 3B5706B0CF0969A9F82060FD4DCC745F2D83C066B663FE8A4F0F493B64032C9C ] RpcLocator C:\WINDOWS\system32\locator.exe
16:08:13.0818 0xf170 RpcLocator - ok
16:08:13.0864 0xf170 [ A6F17C299A03BAFEFB9257C462A19E00, EB68967D28355271897166D7B6FD963D1E546D3C24AE1AEAAC561F94357A9345 ] RpcSs C:\WINDOWS\system32\rpcss.dll
16:08:13.0878 0xf170 RpcSs - ok
16:08:13.0911 0xf170 [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr C:\WINDOWS\system32\DRIVERS\rspndr.sys
16:08:13.0947 0xf170 rspndr - ok
16:08:13.0996 0xf170 [ 078212D920664313F2224C4F1202FAAE, 160B38D7331BA6862CF7287E4F7F0932F9981DD21BB28FB44587FA94E326E930 ] RtkBtFilter C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys
16:08:14.0015 0xf170 RtkBtFilter - ok
16:08:14.0050 0xf170 [ 948D5E71CF9DB59961353A355EA45139, A23D012B07A92CC217C67C904CDFBA2BCCDCC2BD49B24FB694BD230D000F2B7B ] RTL8168 C:\WINDOWS\system32\DRIVERS\Rt630x64.sys
16:08:14.0074 0xf170 RTL8168 - ok
16:08:14.0161 0xf170 [ 109B480DC954126DC272AFDB85C00C6C, 1EC9E071B586F758C4F142E3645E50C217CC6366C8D04AA74034FB0EAC8ACD43 ] RTWlanE C:\WINDOWS\system32\DRIVERS\rtwlane.sys
16:08:14.0219 0xf170 RTWlanE - ok
16:08:14.0244 0xf170 [ 8295DB01432C1D1F3D0F4A27AB349730, 7FE8CC442829B8136A96E19F17070C29DA2C5F1B9EA2B5EBACCB965783F96356 ] rzendpt C:\WINDOWS\System32\drivers\rzendpt.sys
16:08:14.0252 0xf170 rzendpt - ok
16:08:14.0290 0xf170 [ F17F84511E7DFDEEAB646F0699A006D7, 5237937841FBD1F99A5D6161DEBA26182DDAF617CA98946EE7DB0AB67FC149EA ] rzpmgrk C:\WINDOWS\system32\drivers\rzpmgrk.sys
16:08:14.0299 0xf170 rzpmgrk - ok
16:08:14.0326 0xf170 [ FEF60A37301E1F5A3020FA3487FB2CD7, 0C925468C3376458D0E1EC65E097BD1A81A03901035C0195E8F6EF904EF3F901 ] rzpnk C:\WINDOWS\system32\drivers\rzpnk.sys
16:08:14.0358 0xf170 rzpnk - ok
16:08:14.0380 0xf170 [ 77C5AB228FE307C55FEF0C575E218771, 73C9D4593DA694B2D52817F608E749296D9CC1C44906C97204595476B68AD50F ] rzudd C:\WINDOWS\System32\drivers\rzudd.sys
16:08:14.0391 0xf170 rzudd - ok
16:08:14.0412 0xf170 [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
16:08:14.0419 0xf170 s3cap - ok
16:08:14.0464 0xf170 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] SamSs C:\WINDOWS\system32\lsass.exe
16:08:14.0465 0xf170 SamSs - ok
16:08:14.0483 0xf170 [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
16:08:14.0605 0xf170 sbp2port - ok
16:08:14.0664 0xf170 [ 74A3B67F03877D06B09B1B40C5ED582E, A8FF9BF416F0BF365BFB4E1796859825C811A74B5E54DDDCE8345193BEEBE206 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
16:08:14.0676 0xf170 SCardSvr - ok
16:08:14.0715 0xf170 [ 8B9C4D55B4A536FB01C360DDB9533574, 9B939FE68F6F9C171ED0D91E2CE1E67515295D34EC23606BCDFD097DCC8CFD4A ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll
16:08:14.0726 0xf170 ScDeviceEnum - ok
16:08:14.0761 0xf170 [ 13BEA6C882D4D877A5A85CA149C86BC1, 8E9BE5C2A36D5881D9985C3A31309FE03966EA13A3541D3C5B542AB67FA0D55F ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
16:08:14.0768 0xf170 scfilter - ok
16:08:14.0834 0xf170 [ A626F5E446860F22835E783142D7AE33, 3A786639E1FABCA512F4F91A10811DD3C4D9C9C9BB893362E4D019219D0BD8E2 ] Schedule C:\WINDOWS\system32\schedsvc.dll
16:08:14.0860 0xf170 Schedule - ok
16:08:14.0882 0xf170 [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
16:08:14.0885 0xf170 SCPolicySvc - ok
16:08:14.0914 0xf170 [ C54B6B2170BF628FD42F799A66956D75, BCF460A124CAA6F1F1A9A7BCBDCC2D5E39B0404D96B7C9FFAC806E041782B91E ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
16:08:14.0928 0xf170 sdbus - ok
16:08:14.0969 0xf170 [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
16:08:14.0978 0xf170 sdstor - ok
16:08:15.0001 0xf170 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\WINDOWS\system32\drivers\secdrv.sys
16:08:15.0008 0xf170 secdrv - ok
16:08:15.0046 0xf170 [ BA24CEA7152239F42ECD04AFB7C89D24, A2A11EABB0C283772B74667C7544B61BEB1B9745FBF065E831542129EB585AFA ] seclogon C:\WINDOWS\system32\seclogon.dll
16:08:15.0049 0xf170 seclogon - ok
16:08:15.0090 0xf170 [ 81FE9A81EDF8016816C9E91FBFBF7D35, 87FB92A3D15F312F0B9C423EF851061A944B013E5668D8C9A441B4DC0EB690AF ] SENS C:\WINDOWS\System32\sens.dll
16:08:15.0093 0xf170 SENS - ok
16:08:15.0141 0xf170 [ 6E4012AE67F09F867EF620C8D5524C0B, 63933E51F8E413E63481369CE2F9FD224560550FBD3BD2B4573E9F4AD88708A2 ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
16:08:15.0148 0xf170 SensrSvc - ok
16:08:15.0164 0xf170 [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
16:08:15.0172 0xf170 SerCx - ok
16:08:15.0208 0xf170 [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys
16:08:15.0219 0xf170 SerCx2 - ok
16:08:15.0225 0xf170 [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
16:08:15.0232 0xf170 Serenum - ok
16:08:15.0255 0xf170 [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial C:\WINDOWS\System32\drivers\serial.sys
16:08:15.0264 0xf170 Serial - ok
16:08:15.0296 0xf170 [ 96B01F117057FB4DAE0FF919ACB55770, D0F58F1CAE4F81D60FCE60BB0065A34B4F897E8105DF17B6DAA334938CD25A56 ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
16:08:15.0318 0xf170 sermouse - ok
16:08:15.0361 0xf170 [ 3A2F1A7472C3B7CC9B89C8516C726488, 9BCBBAC10C900EA7B30822B463A77EE5067F217C4B490857A09E5277983CB89B ] SessionEnv C:\WINDOWS\system32\sessenv.dll
16:08:15.0370 0xf170 SessionEnv - ok
16:08:15.0386 0xf170 [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
16:08:15.0394 0xf170 sfloppy - ok
16:08:15.0445 0xf170 [ 8081FF3DAE8159FE8956B09BC29CE983, AC0F305AEE8B1AB2E1275F1D33EC1D2F3E23F234F831BD9D41F415A94A19D3AB ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
16:08:15.0461 0xf170 SharedAccess - ok
16:08:15.0511 0xf170 [ 7FD9A61A3523A61FC135D61D6E160314, 409E1CF7A62FD90CBC31AEAFBB7230B02DBEC6CFCA2D266D221A7643FAEBA13B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
16:08:15.0526 0xf170 ShellHWDetection - ok
16:08:15.0550 0xf170 [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
16:08:15.0557 0xf170 SiSRaid2 - ok
16:08:15.0565 0xf170 [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
16:08:15.0575 0xf170 SiSRaid4 - ok
16:08:15.0609 0xf170 [ 704B4F81729F676BBF034529FC334D82, 1E50DAF97836807A500284385D99272780A8B69CA88761250451060B207824F8 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
16:08:15.0615 0xf170 SkypeUpdate - ok
16:08:15.0649 0xf170 [ 3C84DCCE5B322F745A75CA8BA3A0F6B3, 1FB94A8A1C63D6FDB82E28ED5B696B3CB1F64183A89A3B5153B266C292CB7815 ] smphost C:\WINDOWS\System32\smphost.dll
16:08:15.0657 0xf170 smphost - ok
16:08:15.0702 0xf170 [ D0EB0DF8C603BBA084351A92732B1CBE, E24ED8F78EF41C1BC17386AE4BBCE0DC892C5B89B12C03FC9FB61D359B13F1B4 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
16:08:15.0711 0xf170 SNMPTRAP - ok
16:08:15.0736 0xf170 [ D24B1945ED1F9C96DA786DBBF1E983CE, B46CB0B72B7A3DF94A46B8D65E38535C5F8E72A55CF2DC48EFA1F9A0108691C4 ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
16:08:15.0746 0xf170 spaceport - ok
16:08:15.0762 0xf170 [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
16:08:15.0770 0xf170 SpbCx - ok
16:08:15.0824 0xf170 [ FCB156A6745631A67DEA61827061D483, 9275ABFA1E1E595969A71C0DA228D18D1B868BF46E097E1276142BD80F8A32C9 ] Spooler C:\WINDOWS\System32\spoolsv.exe
16:08:15.0839 0xf170 Spooler - ok
16:08:16.0012 0xf170 [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc C:\WINDOWS\system32\sppsvc.exe
16:08:16.0109 0xf170 sppsvc - ok
16:08:16.0162 0xf170 [ 6416E79A58A8FCC33A447A4DDDD3BF04, 839E3107ACCD520C309BD6C8324DF7A8EB724EAD442AB1F1CACB0D83F84BE488 ] srv C:\WINDOWS\system32\DRIVERS\srv.sys
16:08:16.0171 0xf170 srv - ok
16:08:16.0226 0xf170 [ 00D8AC8E3053290BDE6EA2FB6810D2FC, 957FEF84CBBAE71829529AE99A1B24F52D7831BD666442D0132FBB825409A75D ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
16:08:16.0240 0xf170 srv2 - ok
16:08:16.0285 0xf170 [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
16:08:16.0291 0xf170 srvnet - ok
16:08:16.0309 0xf170 [ CF6C3037839CF78421A94F9060C2886F, CA98C180AE03F5BE8FEFFBA75BD98DEE2AD4FA975E1EF83215C9CD2476946811 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
16:08:16.0316 0xf170 SSDPSRV - ok
16:08:16.0357 0xf170 [ 198A737DBA666F4808D62E9A8277A6B7, 90B6E5E2ACE95D850C913A3A1DA1F966C44955C530004C228FA93B2A536F5C27 ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
16:08:16.0369 0xf170 SstpSvc - ok
16:08:16.0415 0xf170 [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
16:08:16.0426 0xf170 ssudmdm - ok
16:08:16.0476 0xf170 [ 2B12949BD1E9DAC31A3FB9D3E0B472A7, BE4E23232274A55E8B3C1FBD564FE38ADE34FF60CB2F577B1FF76B52BBE62DAB ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
16:08:16.0489 0xf170 Steam Client Service - ok
16:08:16.0582 0xf170 [ D2B4376F9F36C5873A6CF99EF5750724, 2A5C12EE3657D4A6819080549ADFA3288E0DAC975114D9466DCCC3ED922D2539 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
16:08:16.0589 0xf170 Stereo Service - ok
16:08:16.0614 0xf170 [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
16:08:16.0621 0xf170 stexstor - ok
16:08:16.0675 0xf170 [ 63E9CE568CF1192771A5F0460DE7D2B9, C27B21FD2C14AD41A59EF62EB8AC95C08EB13CCB1CEECD8378B8CDD4DC352E69 ] stisvc C:\WINDOWS\System32\wiaservc.dll
16:08:16.0698 0xf170 stisvc - ok
16:08:16.0706 0xf170 [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci C:\WINDOWS\system32\drivers\storahci.sys
16:08:16.0734 0xf170 storahci - ok
16:08:16.0766 0xf170 [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt C:\WINDOWS\system32\drivers\vmstorfl.sys
16:08:16.0774 0xf170 storflt - ok
16:08:16.0814 0xf170 [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys
16:08:16.0823 0xf170 stornvme - ok
16:08:16.0859 0xf170 [ A45F5AC9D8069D0EC66E3CA73103073B, 996788F1C58E016E8E5CF3FD1D220A3C40AFFD6C21361A34636415DB12E0D381 ] StorSvc C:\WINDOWS\system32\storsvc.dll
16:08:16.0895 0xf170 StorSvc - ok
16:08:16.0931 0xf170 [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
16:08:16.0939 0xf170 storvsc - ok
16:08:16.0974 0xf170 [ E395BE02F80A79A6CF973BA38DBB8135, 4C6F85B0EB8E7725BA720F9742561D229726C0D7C17505D1E79F19A5626F6325 ] svsvc C:\WINDOWS\system32\svsvc.dll
16:08:16.0982 0xf170 svsvc - ok
16:08:17.0020 0xf170 [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum C:\WINDOWS\System32\drivers\swenum.sys
16:08:17.0043 0xf170 swenum - ok
16:08:17.0088 0xf170 [ 1C71D72D4997A284128FBEE770726330, 21682BDE74A1108FED1124FB1EA35A03CBFA94ABE1B89CC0FADB4DD82596C43E ] swprv C:\WINDOWS\System32\swprv.dll
16:08:17.0104 0xf170 swprv - ok
16:08:17.0171 0xf170 [ 3114CB46C2853CA71525428CB0C7CB58, A9CC51506AABBC23BAB2B90E30AB13197A72268A3DE6D2F281C1C367ED7118AE ] SysMain C:\WINDOWS\system32\sysmain.dll
16:08:17.0197 0xf170 SysMain - ok
16:08:17.0222 0xf170 [ 23BECB70654B192A7E378DEE3DBD8D42, 7596174AE7508B62C40A429645198F6A420D0CD5B62A10AB78516113584E7EDB ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
16:08:17.0231 0xf170 SystemEventsBroker - ok
16:08:17.0275 0xf170 [ D6A71B95ACF71ACA63B67232059F1BCD, C5CEC032E7AB507500D1CC7A4E65DA6322412C798201A9D770CBDE892E50DFC8 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
16:08:17.0286 0xf170 TabletInputService - ok
16:08:17.0334 0xf170 [ 5A5BAB1CA9621E73E25EE4744B67CDA6, 479EBD7BAE1E2AD431153FDC016742F7A8D824716EAB1A4CA87EBBD21D61DECD ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
16:08:17.0368 0xf170 TapiSrv - ok
16:08:17.0443 0xf170 [ 468273F7089A3A33D149955F0F203FA4, 18FD0B73FBD63550E904EE76D4323EFE163BFF8C3DC6DE67F4BE6003C7DC6879 ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
16:08:17.0492 0xf170 Tcpip - ok
16:08:17.0553 0xf170 [ 468273F7089A3A33D149955F0F203FA4, 18FD0B73FBD63550E904EE76D4323EFE163BFF8C3DC6DE67F4BE6003C7DC6879 ] TCPIP6 C:\WINDOWS\system32\DRIVERS\tcpip.sys
16:08:17.0591 0xf170 TCPIP6 - ok
16:08:17.0637 0xf170 [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
16:08:17.0645 0xf170 tcpipreg - ok
16:08:17.0667 0xf170 [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
16:08:17.0677 0xf170 tdx - ok
16:08:17.0694 0xf170 [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
16:08:17.0702 0xf170 terminpt - ok
16:08:17.0762 0xf170 [ C50997E282576DA492EBA66B059D4196, EBD793CB396F9503376207FA60353F5672DEDB620C8E01C8D6AE0030B3B03339 ] TermService C:\WINDOWS\System32\termsrv.dll
16:08:17.0797 0xf170 TermService - ok
16:08:17.0829 0xf170 [ 2180DBCE75B914E5E5BBFFFAAE97AA21, 8000AECC8855903DB50ABA7E304396D1FCEAE8DC9ADD4FC50275CF24B4D914DE ] Themes C:\WINDOWS\system32\themeservice.dll
16:08:17.0832 0xf170 Themes - ok
16:08:17.0867 0xf170 [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] THREADORDER C:\WINDOWS\system32\mmcss.dll
16:08:17.0869 0xf170 THREADORDER - ok
16:08:17.0912 0xf170 [ B5ED9CC61798C7D44BD535D40B89EFB5, 1BDCEAA9AF2096381870D92129C748F4EE06A1167ABA9367B9DD43BAF27E3F5B ] TimeBroker C:\WINDOWS\System32\TimeBrokerServer.dll
16:08:17.0920 0xf170 TimeBroker - ok
16:08:17.0950 0xf170 [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM C:\WINDOWS\system32\drivers\tpm.sys
16:08:17.0961 0xf170 TPM - ok
16:08:18.0006 0xf170 [ 884113C2BB703FE806C8608B75F34831, 24DE5750CA4363455412BABB0B1FAB08497153E8F158ED44958F100410F93506 ] TrkWks C:\WINDOWS\System32\trkwks.dll
16:08:18.0012 0xf170 TrkWks - ok
16:08:18.0066 0xf170 [ 44A94FB4C76528D2382FFE04B05827C3, B0BCDF7CD1D65E61A9061D539D83527A89B69583958F8A26C6BF9766C1B61E0C ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
16:08:18.0068 0xf170 TrustedInstaller - ok
16:08:18.0095 0xf170 [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys
16:08:18.0133 0xf170 TsUsbFlt - ok
16:08:18.0171 0xf170 [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
16:08:18.0178 0xf170 TsUsbGD - ok
16:08:18.0201 0xf170 [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel C:\WINDOWS\system32\DRIVERS\tunnel.sys
16:08:18.0229 0xf170 tunnel - ok
16:08:18.0236 0xf170 [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35 C:\WINDOWS\system32\drivers\uagp35.sys
16:08:18.0244 0xf170 uagp35 - ok
16:08:18.0272 0xf170 [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
16:08:18.0281 0xf170 UASPStor - ok
16:08:18.0325 0xf170 [ 807F8CF3E973305FC435C61CBBEE2A49, 43CDEAC2BFC5091C11DFC0E7F7171AF9A598AE56CB056C3CF382AE7807F79EF0 ] UCX01000 C:\WINDOWS\System32\drivers\ucx01000.sys
16:08:18.0338 0xf170 UCX01000 - ok
16:08:18.0378 0xf170 [ C61EAF8E1E4B2F62BA4FDF457440B2C6, 961F76A789925234AC27F56AAE34556FA06088D71580B42C24B0BC209EAFD67E ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
16:08:18.0403 0xf170 udfs - ok
16:08:18.0423 0xf170 [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys
16:08:18.0431 0xf170 UEFI - ok
16:08:18.0470 0xf170 [ A867F0F978EE64C87FADC3B100869EE4, 2686BE85F963D0D0BB275E92E5B543280D8742CF10772303E3189D0719B6A277 ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe
16:08:18.0479 0xf170 UI0Detect - ok
16:08:18.0495 0xf170 [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx C:\WINDOWS\system32\drivers\uliagpkx.sys
16:08:18.0503 0xf170 uliagpkx - ok
16:08:18.0515 0xf170 [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus C:\WINDOWS\System32\drivers\umbus.sys
16:08:18.0523 0xf170 umbus - ok
16:08:18.0529 0xf170 [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
16:08:18.0552 0xf170 UmPass - ok
16:08:18.0587 0xf170 [ A023F267A262D5DA6CE1436D9C5E8FD9, 92AD7AF91184C244A7E392F49663143193A80D5D81114546A00F18227DE31D23 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
16:08:18.0602 0xf170 UmRdpService - ok
16:08:18.0648 0xf170 [ C98493DD8E6A50154FAC75C15E1C36BB, CECD1C826C8F7AF05468871BF6A0ACDBB6B0202F4F87F48C6D367E5BD699E800 ] upnphost C:\WINDOWS\System32\upnphost.dll
16:08:18.0660 0xf170 upnphost - ok
16:08:18.0702 0xf170 [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64 C:\WINDOWS\System32\Drivers\usbaapl64.sys
16:08:18.0716 0xf170 USBAAPL64 - ok
16:08:18.0762 0xf170 [ DF355EB0199198728027962DCFCDE5FB, 9E158BD07389B4CFF99674716647FA3AABEECBD1A98EDF20E544E099A99A8768 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys
16:08:18.0765 0xf170 usbaudio - ok
16:08:18.0808 0xf170 [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
16:08:18.0819 0xf170 usbccgp - ok
16:08:18.0844 0xf170 [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
16:08:18.0865 0xf170 usbcir - ok
16:08:18.0893 0xf170 [ 48BA326A3DBA5B5BEB5F2777F4618696, B9EC8155F11A3A7644BD9DC8910681B46AE44AE3BF53F052DF50E9C5555E3229 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
16:08:18.0919 0xf170 usbehci - ok
16:08:18.0950 0xf170 [ 504901430B6E03B99EBB6BF26E0868C6, D00C0904B7008305DCA5D1E6FED153DD8875CAD14D80348E59F42A182FA7E832 ] usbfilter C:\WINDOWS\system32\DRIVERS\usbfilter.sys
16:08:18.0958 0xf170 usbfilter - ok
16:08:19.0005 0xf170 [ FEF0BC107812B36849741C3211BA6B60, B3EF738BE1E6B6027F29C9713CD3F367EA067D2BE46580AFBC0FB58046EF6BBD ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
16:08:19.0014 0xf170 usbhub - ok
16:08:19.0049 0xf170 [ 95B0179BDA907252025DEEA183699FB3, A6BDFB93EE9418A83407024204A41640A08638C60E2BE75C249D102601DC1D80 ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
16:08:19.0067 0xf170 USBHUB3 - ok
16:08:19.0091 0xf170 [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
16:08:19.0098 0xf170 usbohci - ok
16:08:19.0114 0xf170 [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
16:08:19.0121 0xf170 usbprint - ok
16:08:19.0162 0xf170 [ 66732C13628BDB1AB0D6FD46027327C2, B582C0F348D8F79419CA5A58F10CA151E06D7CA3BE162344CADA46D9D7FED97C ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
16:08:19.0173 0xf170 USBSTOR - ok
16:08:19.0207 0xf170 [ 064260B3A5868AC894A4943543BC7AB7, D3534E98B34C4AC9A430D7E0AB301A0E5E1511E3117C2FEA392636B0DE2C38E2 ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
16:08:19.0233 0xf170 usbuhci - ok
16:08:19.0261 0xf170 [ 5C8F604F6DC74177CDD8372D7B1ADFF0, C1DE9A37A7A01CCCBFCE13C1E5B26683F620AB21EDA5A14C82022E2F49C84484 ] usbvideo C:\WINDOWS\System32\Drivers\usbvideo.sys
16:08:19.0274 0xf170 usbvideo - ok
16:08:19.0322 0xf170 [ 44603DA5A87FB491EF59C889EBBB4DDB, 59AA9B6B0B5D66F9312CD3F999D0D9F12F1A2C5D230365AD7287CD71FD86961C ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
16:08:19.0327 0xf170 USBXHCI - ok
16:08:19.0338 0xf170 [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] VaultSvc C:\WINDOWS\system32\lsass.exe
16:08:19.0340 0xf170 VaultSvc - ok
16:08:19.0357 0xf170 [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
16:08:19.0360 0xf170 vdrvroot - ok
16:08:19.0428 0xf170 [ 8A4D808D1EC7C1C47B2C8BF488A9A07A, 63C07312ADB6F8A8BDE93361C30AC63DAB4DE1141AF54630EEF11E54B0BF983D ] vds C:\WINDOWS\System32\vds.exe
16:08:19.0457 0xf170 vds - ok
16:08:19.0483 0xf170 [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
16:08:19.0494 0xf170 VerifierExt - ok
16:08:19.0544 0xf170 [ C06E8481E068F170A258441639AC5792, 2F550530BACB511A195D5047F003B01CB6E04FA9A0DCCF638CB3D51FF5467DC7 ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
16:08:19.0585 0xf170 vhdmp - ok
16:08:19.0597 0xf170 [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide C:\WINDOWS\system32\drivers\viaide.sys
16:08:19.0604 0xf170 viaide - ok
16:08:19.0642 0xf170 [ 511AD3FF957A0127E6BD336FF6F89C38, 55325BFD0857A1204F7F6F8ED8C91C07B0E20A50402105708E7365ECD9E25A21 ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
16:08:19.0651 0xf170 vmbus - ok
16:08:19.0668 0xf170 [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
16:08:19.0682 0xf170 VMBusHID - ok
16:08:19.0733 0xf170 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
16:08:19.0751 0xf170 vmicguestinterface - ok
16:08:19.0766 0xf170 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicheartbeat C:\WINDOWS\System32\ICSvc.dll
16:08:19.0774 0xf170 vmicheartbeat - ok
16:08:19.0789 0xf170 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
16:08:19.0798 0xf170 vmickvpexchange - ok
16:08:19.0813 0xf170 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicrdv C:\WINDOWS\System32\ICSvc.dll
16:08:19.0822 0xf170 vmicrdv - ok
16:08:19.0838 0xf170 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicshutdown C:\WINDOWS\System32\ICSvc.dll
16:08:19.0846 0xf170 vmicshutdown - ok
16:08:19.0861 0xf170 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmictimesync C:\WINDOWS\System32\ICSvc.dll
16:08:19.0870 0xf170 vmictimesync - ok
16:08:19.0885 0xf170 [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicvss C:\WINDOWS\System32\ICSvc.dll
16:08:19.0894 0xf170 vmicvss - ok
16:08:19.0909 0xf170 [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
16:08:19.0912 0xf170 volmgr - ok
16:08:19.0925 0xf170 [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
16:08:19.0933 0xf170 volmgrx - ok
16:08:19.0982 0xf170 [ 64CA2B4A49A8EAF495E435623ECCE7DB, 81151F295A54DE2B8B88C7F48C86BF58CDFF96F98493509C06D6F41484594386 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
16:08:19.0990 0xf170 volsnap - ok
16:08:20.0032 0xf170 [ EF31713EE4C7CCFE4049F7E7F15645A2, 35D198D3F1061E19A7EF89FA1E75377049CD6BCA9702F8076B9F95BB8737E0D4 ] vpci C:\WINDOWS\System32\drivers\vpci.sys
16:08:20.0040 0xf170 vpci - ok
16:08:20.0074 0xf170 [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
16:08:20.0085 0xf170 vsmraid - ok
16:08:20.0156 0xf170 [ 94FAFD473CDD80CE19A21FB9503D7ED1, 953E5E8C753C0017E1258695A76F60CC05D283F7476B9D9C5C8AC78B8E3FCE18 ] VSS C:\WINDOWS\system32\vssvc.exe
16:08:20.0186 0xf170 VSS - ok
16:08:20.0200 0xf170 [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
16:08:20.0214 0xf170 VSTXRAID - ok
16:08:20.0228 0xf170 [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
16:08:20.0235 0xf170 vwifibus - ok
16:08:20.0246 0xf170 [ 6B26AD573CCDD5209DF4397438B76354, 2C8AC314EC471F6D8B0B12D49D621360A10DCADA7C52E73596730C954FF89FCF ] vwififlt C:\WINDOWS\system32\DRIVERS\vwififlt.sys
16:08:20.0274 0xf170 vwififlt - ok
16:08:20.0299 0xf170 [ 0B48E0DFB44EE475F4FD8A8EE599AF30, 28271D4CA0C642304CD8826A3D514F44E3391F9D6D07A1595BB30CE65E7E3494 ] vwifimp C:\WINDOWS\system32\DRIVERS\vwifimp.sys
16:08:20.0306 0xf170 vwifimp - ok
16:08:20.0350 0xf170 [ DC821E811EFBB65CDD77FBB8B6ECA385, B7C8AACDF81DBA298F2F384983D36B269876C31F0398D89BF9070217A069B96F ] W32Time C:\WINDOWS\system32\w32time.dll
16:08:20.0361 0xf170 W32Time - ok
16:08:20.0372 0xf170 [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
16:08:20.0397 0xf170 WacomPen - ok
16:08:20.0427 0xf170 [ 6505C9E72910F91D4C317EECF22D1DE6, 838BAEA6F0BBA916B3291EB165F65DA2F4EC35395678D450EEEB1E540A123FC4 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:08:20.0435 0xf170 Wanarp - ok
16:08:20.0440 0xf170 [ 6505C9E72910F91D4C317EECF22D1DE6, 838BAEA6F0BBA916B3291EB165F65DA2F4EC35395678D450EEEB1E540A123FC4 ] Wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:08:20.0442 0xf170 Wanarpv6 - ok
16:08:20.0513 0xf170 [ A81988DCC4FA440AA88B84CA452F5E22, 3573AAA09971E8ADB6FEFA778E02B2D8EE5E4249267CF37A524D9F019CC836FB ] wbengine C:\WINDOWS\system32\wbengine.exe
16:08:20.0545 0xf170 wbengine - ok
16:08:20.0568 0xf170 [ 0F1DFA2FED73FA78B8C3CDE332A870F6, 1089F6F585F5350D349A640EBD3117832DF6B3657EB6667CB00AE217E04ACA17 ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
16:08:20.0578 0xf170 WbioSrvc - ok
16:08:20.0624 0xf170 [ 0EAEC313B24837613621B4A2536ED382, 61C194ED7FA7D65BBE61A546D5FCA52F52AB08324E084D3EC23C9706E9BF0175 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
16:08:20.0633 0xf170 Wcmsvc - ok
16:08:20.0651 0xf170 [ F6B4C2280FF7C7156AC8A4687B9DA35E, 1899D584D7469BB49355D84080051E2575B033E6312009D9C6C1DD3F7F9AA4C5 ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
16:08:20.0662 0xf170 wcncsvc - ok
16:08:20.0700 0xf170 [ B7BF1D783F5B2484E8CE1C0C78257F16, 468601199FCCF63DBAE86EE6B8825EA85B2A1EE177413353FFA2CC9CA5249FCD ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
16:08:20.0721 0xf170 WcsPlugInService - ok
16:08:20.0747 0xf170 [ 1751F6B031ADAC34724511057D2E455D, BCBC77DE02718868302F7469E8FBB8F2E7E0F8A5D3E46A5B4D48713E829FBAF6 ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys
16:08:20.0755 0xf170 WdBoot - ok
16:08:20.0810 0xf170 [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
16:08:20.0827 0xf170 Wdf01000 - ok
16:08:20.0858 0xf170 [ D296D0F0DB2CD1504F90405603664493, 9531034AE2E027B5C7366713AA9003085501800B35F971D1CE7FFB8E5DAE3825 ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys
16:08:20.0885 0xf170 WdFilter - ok
16:08:20.0911 0xf170 [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
16:08:20.0915 0xf170 WdiServiceHost - ok
16:08:20.0921 0xf170 [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
16:08:20.0924 0xf170 WdiSystemHost - ok
16:08:20.0937 0xf170 [ 9F4DF0043965808973023A9B51A11136, 3A799125CBC5C214D9FBB91C348B39563B1FDB7403B520270752E9A177464723 ] WdNisDrv C:\WINDOWS\system32\Drivers\WdNisDrv.sys
16:08:20.0947 0xf170 WdNisDrv - ok
16:08:20.0964 0xf170 WdNisSvc - ok
16:08:21.0009 0xf170 [ 185E4111627F7AA6799E1366B5E91D65, 7A02C816DFBCCF47EDB49E5E2005A3D0B80719FAC94F9298D2DBAC63950EDA05 ] WebClient C:\WINDOWS\System32\webclnt.dll
16:08:21.0080 0xf170 WebClient - ok
16:08:21.0114 0xf170 [ 384E1D04FE20845B2559D292F17A9FA1, AD3B0B2B2219691AC30FEEC8AFDB3BBB74B51BB7D02038AE2B4DEA514E245315 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
16:08:21.0127 0xf170 Wecsvc - ok
16:08:21.0168 0xf170 [ 455014F4E48B67EBE0F032E2B0E06BF2, A36435784A034B27056A0E606683A20C69F1B0AB2B6BAEDEAEAA190F6287CAEF ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
16:08:21.0176 0xf170 WEPHOSTSVC - ok
16:08:21.0210 0xf170 [ F13DBA57CEA9B7074B95EDCA6AD2635E, 1D9BA4841EF1343A5D9096B5FE27FC65DC1901D6683DD13516171638549666B5 ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
16:08:21.0214 0xf170 wercplsupport - ok
16:08:21.0225 0xf170 [ FD7E58B6AA3EABF2D12B9762A20E11E4, 4C5E2E246C5C70074866BB3DBC2AAF483ECE4345004CCB8D1FE285047268685D ] WerSvc C:\WINDOWS\System32\WerSvc.dll
16:08:21.0230 0xf170 WerSvc - ok
16:08:21.0271 0xf170 [ BAB713B409258DB7B5D9F9693F802B0E, C0D0391EC4FDC07E0A07F4EEB2DC9CC5B2BE5D2E292E7D01929E8D39D6F73EA5 ] WFPLWFS C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
16:08:21.0276 0xf170 WFPLWFS - ok
16:08:21.0316 0xf170 [ 8C840E1FD7584E74BD0CC1EA581EC187, 148E534A94B4882E7396B13FABE17407802292E7890713540080D03D5629C81D ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
16:08:21.0320 0xf170 WiaRpc - ok
16:08:21.0340 0xf170 [ 5F66B7BB330AA80067FC66149A692620, 92C5D7115A168A23108B65EEEB5FBA8FA43D781855355792596D2419160263C2 ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
16:08:21.0360 0xf170 WIMMount - ok
16:08:21.0364 0xf170 WinDefend - ok
16:08:21.0412 0xf170 [ 10DAD6A7FC617A221313BD584E3C3A00, F139B878668ECF38FE59831E8595A207D5CEEE76C6FFDA8C9F735435E601A763 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
16:08:21.0425 0xf170 WinHttpAutoProxySvc - ok
16:08:21.0483 0xf170 [ FC8BD690321216C32BB58B035B6D5674, D61698DB19D9DB2593B60B6BA13F7B7735667206F41D751D507135469D6D3CDD ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
16:08:21.0489 0xf170 Winmgmt - ok
16:08:21.0559 0xf170 [ 75436315AA383CF527695C6D49D0CA59, E3D55F2ACBD45D4D031FA6CA799394459C89BE50FF6ADE4FE36F2CAB2D2E63D0 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
16:08:21.0612 0xf170 WinRM - ok
16:08:21.0644 0xf170 [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUsb C:\WINDOWS\System32\drivers\WinUsb.sys
16:08:21.0652 0xf170 WinUsb - ok
16:08:21.0715 0xf170 [ DC079BA8390089E4EBCA63D27EEA3ECB, 4D549217A68292E2B16C09FD9F84317011EE54A2DAF4E2AB85554267DF0D3249 ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
16:08:21.0745 0xf170 WlanSvc - ok
16:08:21.0822 0xf170 [ 06BF5897949A8F24893F792E876B71F5, 9D3719492A86BF52A56E2EA798FD6FDB5862A03F6D360FCC4B0CEA9BE9792AE4 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
16:08:21.0849 0xf170 wlidsvc - ok
16:08:21.0869 0xf170 [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
16:08:21.0876 0xf170 WmiAcpi - ok
16:08:21.0929 0xf170 [ B96F7A1236C3F21212DE2C40A3DDB005, 5A29EBB6DA036E303611EB1304192655021405BB05452FD37886DDE604FF0D9D ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
16:08:21.0940 0xf170 wmiApSrv - ok
16:08:21.0961 0xf170 WMPNetworkSvc - ok
16:08:22.0000 0xf170 [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof C:\WINDOWS\system32\drivers\Wof.sys
16:08:22.0004 0xf170 Wof - ok
16:08:22.0081 0xf170 [ 588040D595BBF0856CA1ADD941A8ED17, CBC92BB5453FE1BEA6F33239B7CE884F312559591383408EA5F95A006156C5D3 ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
16:08:22.0115 0xf170 workfolderssvc - ok
16:08:22.0146 0xf170 [ A2468CC3509394A33C4C32F99563D845, 62690C7D41F382DF74B8F4B942647842858E37DE35FF2DE028192E4D09ABB2C5 ] wpcfltr C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
16:08:22.0149 0xf170 wpcfltr - ok
16:08:22.0189 0xf170 [ 19F4DF69876DA7E9C4965351560FE6B7, 127247A7964F55EE3AF842D25120F5ACD387632BEE2BF3D28FAC05840CEA19BA ] WPCSvc C:\WINDOWS\System32\wpcsvc.dll
16:08:22.0197 0xf170 WPCSvc - ok
16:08:22.0237 0xf170 [ 2ADE11F3D84709C5F6781E4C59F11683, F003C43396CF8FCF44EAB87583650DB4D2A233322D28D6A78D1694945D9073BB ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
16:08:22.0247 0xf170 WPDBusEnum - ok
16:08:22.0270 0xf170 [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
16:08:22.0277 0xf170 WpdUpFltr - ok
16:08:22.0292 0xf170 [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
16:08:22.0299 0xf170 ws2ifsl - ok
16:08:22.0337 0xf170 [ 5596C0960ED6ED7494BF2A55DE428684, C95CF09A657F37F421CC80E16F2F95B8EC59A8D5D48F104551155EAC8E53DCB2 ] wscsvc C:\WINDOWS\System32\wscsvc.dll
16:08:22.0343 0xf170 wscsvc - ok
16:08:22.0350 0xf170 WSearch - ok
16:08:22.0460 0xf170 [ 6B2D71124C1EA86B74412F414C42431D, 078CC6C9667EF6BDA3E6900BC26A5A5B030CAA66928A6BBB7B7DC43C5C199EDC ] WSService C:\WINDOWS\System32\WSService.dll
16:08:22.0515 0xf170 WSService - ok
16:08:22.0640 0xf170 [ 5F3D70B19BCAC985DA90F22CA2FF45E4, BBD82BAEF0DCA2C6361F8D1ADF5BED36D0F1AB1A2AEADB0E4526B917F40C2E52 ] wuauserv C:\WINDOWS\system32\wuaueng.dll
16:08:22.0699 0xf170 wuauserv - ok
16:08:22.0754 0xf170 [ 481286719402E4BAEFEA0604AB1B5113, F3CF65DF2AB39F79AE4C1335831408418E40726706E0242677E8B96B0FAD988F ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
16:08:22.0773 0xf170 WudfPf - ok
16:08:22.0817 0xf170 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys
16:08:22.0840 0xf170 WUDFRd - ok
16:08:22.0848 0xf170 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFSensorLP C:\WINDOWS\System32\drivers\WUDFRd.sys
16:08:22.0852 0xf170 WUDFSensorLP - ok
16:08:22.0901 0xf170 [ 51D28F7F1F888DDCF2C67DCF3B79A5D3, 74FF2936AFCEB9A36175D5B00EB91A5AD614B52BE3FB3FA9B994A025A484D2B7 ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll
16:08:22.0906 0xf170 wudfsvc - ok
16:08:22.0916 0xf170 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdFs C:\WINDOWS\System32\drivers\WUDFRd.sys
16:08:22.0919 0xf170 WUDFWpdFs - ok
16:08:22.0927 0xf170 [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdMtp C:\WINDOWS\System32\drivers\WUDFRd.sys
16:08:22.0931 0xf170 WUDFWpdMtp - ok
16:08:22.0955 0xf170 [ A0900F8F628B5AF6841414EB3CF11E50, 8A531F2472FF4B4D895D469D28C215C834ECADBEF539894B8F3F606079A86184 ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
16:08:22.0974 0xf170 WwanSvc - ok
16:08:22.0991 0xf170 ================ Scan global ===============================
16:08:23.0040 0xf170 [ 243F54DBA6EB48A369CA465E263ABA4A, 9D9F9DE783D000F3EA130EB68FD71319F21E4F1CD4232FB8B2F8A9A67E08F5F4 ] C:\WINDOWS\system32\basesrv.dll
16:08:23.0057 0xf170 [ EAB311B0A7A8EA0346F14F08D4BC8F46, 11168E4074679F8A69DA714C0ABD0C68BA49D171B379343F14783C9C563202CA ] C:\WINDOWS\system32\winsrv.dll
16:08:23.0106 0xf170 [ 3600ED7EA8AED849E20700551C0BD63B, 4A8C346C1646E80B58EF93F87F915A41E05CA2E993BB1C96955AE62A0669AF66 ] C:\WINDOWS\system32\sxssrv.dll
16:08:23.0141 0xf170 [ E0C7813A97CA7947FF5C18A8F3B61A45, 083BB4F3B20419C87DB656F1465E5F782ACDE76838CDE6207F26AAD035C69DE0 ] C:\WINDOWS\system32\services.exe
16:08:23.0148 0xf170 [ Global ] - ok
16:08:23.0149 0xf170 ================ Scan MBR ==================================
16:08:23.0162 0xf170 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
16:08:23.0167 0xf170 \Device\Harddisk0\DR0 - ok
16:08:23.0168 0xf170 ================ Scan VBR ==================================
16:08:23.0170 0xf170 [ E415717843F92CA3897388CB2503074B ] \Device\Harddisk0\DR0\Partition1
16:08:23.0251 0xf170 \Device\Harddisk0\DR0\Partition1 - ok
16:08:23.0266 0xf170 [ 8E731C7F4725DA5B3B314A5DFE79C7AA ] \Device\Harddisk0\DR0\Partition2
16:08:23.0340 0xf170 \Device\Harddisk0\DR0\Partition2 - ok
16:08:23.0354 0xf170 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
16:08:23.0354 0xf170 \Device\Harddisk0\DR0\Partition3 - ok
16:08:23.0363 0xf170 [ 66D4E0ACA42CBDA080D87ED8A1003156 ] \Device\Harddisk0\DR0\Partition4
16:08:23.0450 0xf170 \Device\Harddisk0\DR0\Partition4 - ok
16:08:23.0491 0xf170 [ F9B84297FDEB4C687E1B02474E2C82B8 ] \Device\Harddisk0\DR0\Partition5
16:08:23.0502 0xf170 \Device\Harddisk0\DR0\Partition5 - ok
16:08:23.0502 0xf170 ================ Scan generic autorun ======================
16:08:23.0718 0xf170 [ E16C98951AF108CB5178A7BD2DD13660, 9A85D0CD2339A89C06EE476CD1394A15198F167318280D80BF32AD3615D8660B ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
16:08:23.0822 0xf170 RTHDVCPL - ok
16:08:23.0880 0xf170 [ D8AB6AC4A2D30641C9544021373B47EB, A0553AFB3B186D8EA28CF056139FA5AA150D6BD31E36E5EB9D5DD5940A90CA55 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
16:08:23.0899 0xf170 RtHDVBg - ok
16:08:23.0941 0xf170 [ 59271BA5F4560EEF1C2A202C2D4BBBB2, 23AE8C9D26836E585F5537BF47ABB4DAED65C6FCCE7CF9AD1DCA495EC3D8CF1D ] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe
16:08:23.0945 0xf170 BtServer - ok
16:08:24.0026 0xf170 [ D9133D4157664B1E2ACFC2CD56CCB599, 0B2B8EE7D45962026A30833D3D7F59FB1FB07085904C2E77A10714F38910E462 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
16:08:24.0066 0xf170 NvBackend - ok
16:08:24.0105 0xf170 [ 6C308D32AFA41D26CE2A0EA8F7B79565, 5CC2C563D89257964C4B446F54AFE1E57BBEE49315A9FC001FF5A6BCB6650393 ] C:\WINDOWS\system32\rundll32.exe
16:08:24.0107 0xf170 ShadowPlay - ok
16:08:24.0174 0xf170 [ 076B3EE149E01ADBAC2DC529554A3FD9, 4F65D9D2EE44829AA2264210112851E899165C2346489BEBE679C41420CF7D07 ] C:\Program Files\iTunes\iTunesHelper.exe
16:08:24.0177 0xf170 iTunesHelper - ok
16:08:24.0275 0xf170 [ 07CF5B01CD55D63E986B63D63539C32A, 88DC0B9D534E570F96D6D6938C99660B7EA19B4C2AF3E6DF261C60915DEDAC5C ] C:\Program Files (x86)\ASUS\APRP\APRP.EXE
16:08:24.0321 0xf170 ASUSPRP - ok
16:08:24.0363 0xf170 [ A48CD0A5205934C4396D170D38568F10, DDA582C14317A605F92B13053303ACEEDBB4903B70E2C73B6072CAAFBF23505D ] C:\Program Files (x86)\ASUS\WebStorage\2.0.3.226\ASUSWSLoader.exe
16:08:24.0364 0xf170 WebStorage - ok
16:08:24.0410 0xf170 [ 3F45A43BF4B0E06B42E474B9BDA63985, 0C3F80761C4149B1D417D2F6093639963A2537E020A7BA2F97B7148E3A9FAC64 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
16:08:24.0422 0xf170 StartCCC - ok
16:08:24.0452 0xf170 [ C049C40CAEE8900130BD5F80B594CC7B, F54FC31662A9B8032B380793D534F34A0C63FED9C84DE313D17A61612EB31DC4 ] C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
16:08:24.0454 0xf170 RemoteControl10 - ok
16:08:24.0571 0xf170 [ CF3BF800D0232C06D72396BB3E1F6634, BF306A5393D99755329D297443FF39395A8BCE07D824C6F7A27A59F334C78027 ] C:\Program Files (x86)\Steam\steam.exe
16:08:24.0612 0xf170 Steam - ok
16:08:24.0650 0xf170 Skype - ok
16:08:24.0704 0xf170 [ 77C01F1850E55373280A1B865D824F58, EE1535A11A49BF578FC4D00096508FFD0C4E20EC164B3ABB92ED6E2800F831C8 ] C:\Users\James\AppData\Local\Microsoft\BingSvc\BingSvc.exe
16:08:24.0706 0xf170 BingSvc - ok
16:08:24.0801 0xf170 [ 9D199992DFADBA8720B9037C045657F2, 7FB89E0EED185341A85C4EE6F96BE26A840904CF6E25C032F489EB23D6242B4B ] C:\Users\James\AppData\Roaming\Spotify\SpotifyWebHelper.exe
16:08:24.0831 0xf170 Spotify Web Helper - ok
16:08:25.0007 0xf170 [ 89E0B29C7C2636C7F80679F616712B4A, 396B636A7D6E10876B53E768C6008089953F98387117856EA60B342B8AF3F38D ] C:\Users\James\AppData\Roaming\Spotify\Spotify.exe
16:08:25.0116 0xf170 Spotify - ok
16:08:25.0126 0xf170 Waiting for KSN requests completion. In queue: 163
16:08:26.0127 0xf170 Waiting for KSN requests completion. In queue: 163
16:08:27.0128 0xf170 Waiting for KSN requests completion. In queue: 163
16:08:28.0128 0xf170 Waiting for KSN requests completion. In queue: 163
16:08:29.0196 0xf170 AV detected via SS2: Kaspersky Anti-Virus, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\wmiav.exe ( 15.0.2.361 ), 0x41000 ( enabled : updated )
16:08:29.0216 0xf170 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.7.205.0 ), 0x60100 ( disabled : updated )
16:08:29.0222 0xf170 Win FW state via NFP2: enabled
16:08:41.0767 0xf170 ============================================================
16:08:41.0767 0xf170 Scan finished
16:08:41.0767 0xf170 ============================================================
16:08:41.0777 0x73f4 Detected object count: 0
16:08:41.0777 0x73f4 Actual detected object count: 0
16:12:02.0550 0xcd0c Deinitialize success
Mister Spoo
Regular Member
 
Posts: 23
Joined: June 23rd, 2015, 12:01 am

Re: I may have something hidng that my antivirus doesn't see

Unread postby wannabeageek » June 28th, 2015, 11:33 pm

Mister Spoo,

Run the following and post the results.

Step 1.
RSIT (Random's System Information Tool)
Please download RSITx64 by random/random... save it to your desktop.
  1. Right click on RSIT.exe and select "Run As Administrator" to run it. If Windows UAC prompts you, please allow it.
  2. Please read the disclaimer... click on Continue.
  3. RSIT will start running. When done... 2 logs files...will be produced.
    The first one, "log.txt", <<will be maximized... the second one, "info.txt", <<will be minimized.
  4. Please post both... "log.txt" and "info.txt", file contents in your next reply.
(These logs can be lengthy, so a separate post may be needed.)


Step 2.
Create a batch file
  1. Open Notepad.
  2. Copy/paste the following text into the empty Notepad window.
    Code: Select all
    @echo off
    systeminfo > %userprofile%\Desktop\look.txt
    notepad %userprofile%\desktop\look.txt
    del %userprofile%\desktop\look.txt
    del %userprofile%\desktop\look.bat
    
  3. Save the file as look.bat on your desktop. Save it with the file type... all types *.*.
  4. Right click on the file look.bat select "Run As Administrator" to run it. If prompted by UAC, please allow it.

Copy the results from the open notepad file and post it in your next reply.


What I need back from you:
Post each separately.
  1. Contents of log.txt
  2. Contents of info.txt
  3. Contents of look.txt
  4. Any problem executing the instructions?
Thanks,
wbg
wannabeageek
MRU Master
MRU Master
 
Posts: 1871
Joined: November 23rd, 2009, 10:21 pm
Location: California

Re: I may have something hidng that my antivirus doesn't see

Unread postby Mister Spoo » June 28th, 2015, 11:48 pm

log.txt
Logfile of random's system information tool 1.10 (written by random/random)
Run by James at 2015-06-28 22:46:34
WIN_81
System drive C: has 476 GB (51%) free of 939 GB
Total RAM: 8128 MB (54% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:46:47 PM, on 6/28/2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
C:\Program Files (x86)\ASUS\ASUS Manager\AsHKService.exe
C:\Program Files (x86)\ASUS\ASUS Manager\Application Update\ASUSUpdateChecker.exe
C:\Program Files (x86)\ASUS\ASUS Manager\Power Manager\Power Manager_background.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\avpui.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\James\AppData\Local\Microsoft\BingSvc\BingSvc.exe
C:\Users\James\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files\trend micro\James.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus13.msn.com/?pc=ASJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: VirtualKeyboardBrowserHelperObject - {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\IEExt\ie_plugin.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll
O2 - BHO: ContentBlockerBrowserHelperObject - {93BC2EA7-2F17-4729-948A-D2E03FFB2412} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\IEExt\ie_plugin.dll
O2 - BHO: Safe Money Plugin - {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\IEExt\ie_plugin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll
O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
O4 - HKLM\..\Run: [WebStorage] C:\Program Files (x86)\ASUS\WebStorage\2.0.3.226\ASUSWSLoader.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [Kraken71ChromaHelper] C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe /start
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [BingSvc] C:\Users\James\AppData\Local\Microsoft\BingSvc\BingSvc.exe
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\James\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Spotify] "C:\Users\James\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
O4 - HKUS\S-1-5-21-179559099-3881319558-2611235183-1002\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent (User '?')
O4 - HKUS\S-1-5-21-179559099-3881319558-2611235183-1002\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun (User '?')
O4 - HKUS\S-1-5-21-179559099-3881319558-2611235183-1002\..\Run: [BingSvc] C:\Users\James\AppData\Local\Microsoft\BingSvc\BingSvc.exe (User '?')
O4 - HKUS\S-1-5-21-179559099-3881319558-2611235183-1002\..\Run: [Spotify Web Helper] "C:\Users\James\AppData\Roaming\Spotify\SpotifyWebHelper.exe" (User '?')
O4 - HKUS\S-1-5-21-179559099-3881319558-2611235183-1002\..\Run: [Spotify] "C:\Users\James\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized (User '?')
O4 - HKUS\S-1-5-21-179559099-3881319558-2611235183-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent (User '?')
O9 - Extra button: Virtual Keyboard - {5547CE1F-74E9-41E5-9CBF-5211ECC37341} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\IEExt\ie_plugin.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASUS Com Service (asComSvc) - Unknown owner - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
O23 - Service: Kaspersky Anti-Virus Service 15.0.2 (AVP15.0.2) - Kaspersky Lab ZAO - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\avp.exe
O23 - Service: AvrcpService - Realtek Semiconductor Corporation - C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BTDevManager - Unknown owner - C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
O23 - Service: Device Handle Service - Unknown owner - C:\Windows\SysWOW64\AsHookDevice.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
O23 - Service: NVIDIA GeForce Experience Service (GfExperienceService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: Origin Client Service - Electronic Arts - C:\Program Files (x86)\Origin\OriginClientService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13028 bytes

======Listing Processes======


======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\James\AppData\Roaming\Mozilla\Firefox\Profiles\jcwa8lan.default-1430101760336

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.194 Plugin
"Path"=C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_194.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1218158.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn/npbattlelog,version=2.7.1]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelog.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@kaspersky.com/content_blocker_663BE84DBCC949E88C7600F63CA7F098]
"Description"=
"Path"=C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\FFExt\content_blocker@kaspersky.com

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@kaspersky.com/virtual_keyboard_07402848C2F6470194F131B0F3DE025E]
"Description"=
"Path"=C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\FFExt\virtual_keyboard@kaspersky.com

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.194 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_194.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@esn/npbattlelog,version=2.7.1]
"Description"=
"Path"=C:\Program Files (x86)\Battlelog Web Plugins\2.7.1\npbattlelogx64.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.45.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.45.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23 1865000]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-04-22 551848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{93BC2EA7-2F17-4729-948A-D2E03FFB2412}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23 1865000]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AB379017-4C03-4E00-8EDF-E6D6AF7CCF82}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\x64\IEExt\ie_plugin.dll [2014-12-23 1865000]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01 2133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-22 212904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD}]
Virtual Keyboard Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\IEExt\ie_plugin.dll [2014-12-23 1699112]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-06-07 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{93BC2EA7-2F17-4729-948A-D2E03FFB2412}]
Content Blocker Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\IEExt\ie_plugin.dll [2014-12-23 1699112]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AB379017-4C03-4E00-8EDF-E6D6AF7CCF82}]
Safe Money Plugin - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\IEExt\ie_plugin.dll [2014-12-23 1699112]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Click to Call for Internet Explorer - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01 1724032]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-07 172640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2013-09-05 7199448]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2013-08-30 1321688]
"BtServer"=C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [2013-09-25 280576]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2015-06-03 2754704]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2015-06-03 1571696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2015-04-07 169768]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2015-06-19 2892992]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2015-06-02 28785792]
"BingSvc"=C:\Users\James\AppData\Local\Microsoft\BingSvc\BingSvc.exe [2015-04-07 144008]
"Spotify Web Helper"=C:\Users\James\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2015-06-17 2023480]
"Spotify"=C:\Users\James\AppData\Roaming\Spotify\Spotify.exe [2015-06-17 7415864]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2013-12-13 3216032]
"WebStorage"=C:\Program Files (x86)\ASUS\WebStorage\2.0.3.226\ASUSWSLoader.exe [2013-08-16 63296]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-08-19 766208]
"RemoteControl10"=C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe [2013-03-08 95192]
""= []
"Razer Synapse"=C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [2015-05-15 590656]
"Kraken71ChromaHelper"=C:\Program Files (x86)\Razer\Razer_Kraken71Chroma_Driver\Drivers\SysAudio\Kraken71ChromaHelper.exe [2015-02-02 1600320]
"amd_dc_opt"=C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-04-30 334896]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcpltsvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=lvcod64.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"MSVideo"=vfwwdm32.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"wave4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave5"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer5"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll
"wave8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"mixer9"=wdmaud.drv
"midi7"=wdmaud.drv
"aux4"=wdmaud.drv
"midi8"=wdmaud.drv
"aux5"=wdmaud.drv
"wave7"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer7"=wdmaud.drv
"vidc.tscc"=C:\WINDOWS\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\WINDOWS\SysWOW64\tsc2_codec64.dll
"VIDC.FICV"=ficvdec_x64.dll
"wave6"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer6"=wdmaud.drv
"midi9"=wdmaud.drv
"aux6"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-06-28 22:46:35 ----D---- C:\Program Files\trend micro
2015-06-28 22:46:34 ----D---- C:\rsit
2015-06-28 18:07:59 ----HD---- C:\WINDOWS\msdownld.tmp
2015-06-28 18:07:57 ----D---- C:\WINDOWS\SYSWOW64\directx
2015-06-28 18:07:49 ----D---- C:\Program Files (x86)\PCSX2 1.2.1
2015-06-28 16:07:07 ----A---- C:\TDSSKiller.3.0.0.44_28.06.2015_16.07.07_log.txt
2015-06-23 23:32:04 ----A---- C:\WINDOWS\SYSWOW64\nvStreaming.exe
2015-06-23 23:29:40 ----A---- C:\WINDOWS\SYSWOW64\nvumdshim.dll
2015-06-23 23:29:40 ----A---- C:\WINDOWS\SYSWOW64\nvopencl.dll
2015-06-23 23:29:40 ----A---- C:\WINDOWS\SYSWOW64\nvoglv32.dll
2015-06-23 23:29:40 ----A---- C:\WINDOWS\SYSWOW64\nvoglshim32.dll
2015-06-23 23:29:40 ----A---- C:\WINDOWS\SYSWOW64\nvinit.dll
2015-06-23 23:29:40 ----A---- C:\WINDOWS\SYSWOW64\NvIFROpenGL.dll
2015-06-23 23:29:40 ----A---- C:\WINDOWS\SYSWOW64\NvIFR.dll
2015-06-23 23:29:40 ----A---- C:\WINDOWS\system32\nvumdshimx.dll
2015-06-23 23:29:40 ----A---- C:\WINDOWS\system32\nvopencl.dll
2015-06-23 23:29:40 ----A---- C:\WINDOWS\system32\nvoglv64.dll
2015-06-23 23:29:40 ----A---- C:\WINDOWS\system32\nvoglshim64.dll
2015-06-23 23:29:40 ----A---- C:\WINDOWS\system32\nvmcumd.dll
2015-06-23 23:29:40 ----A---- C:\WINDOWS\system32\nvinitx.dll
2015-06-23 23:29:40 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2015-06-23 23:29:40 ----A---- C:\WINDOWS\system32\NvIFR64.dll
2015-06-23 23:29:40 ----A---- C:\WINDOWS\system32\NvFBC64.dll
2015-06-23 23:29:40 ----A---- C:\WINDOWS\system32\drivers\nvlddmkm.sys
2015-06-23 23:29:39 ----A---- C:\WINDOWS\SYSWOW64\NvFBC.dll
2015-06-23 23:29:39 ----A---- C:\WINDOWS\SYSWOW64\nvEncodeAPI.dll
2015-06-23 23:29:39 ----A---- C:\WINDOWS\SYSWOW64\nvcuvid.dll
2015-06-23 23:29:39 ----A---- C:\WINDOWS\SYSWOW64\nvcuda.dll
2015-06-23 23:29:39 ----A---- C:\WINDOWS\SYSWOW64\nvcompiler.dll
2015-06-23 23:29:39 ----A---- C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-06-23 23:29:39 ----A---- C:\WINDOWS\system32\nvdispgenco6435330.dll
2015-06-23 23:29:39 ----A---- C:\WINDOWS\system32\nvdispco6435330.dll
2015-06-23 23:29:39 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2015-06-23 23:29:39 ----A---- C:\WINDOWS\system32\nvcuda.dll
2015-06-23 23:29:39 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2015-06-22 23:50:57 ----D---- C:\Program Files (x86)\Lavalys
2015-06-22 23:10:41 ----D---- C:\FRST
2015-06-22 22:53:59 ----D---- C:\ProgramData\Office Genuine Advantage
2015-06-22 16:01:08 ----A---- C:\WINDOWS\system32\drivers\7A37260C.sys
2015-06-21 12:25:35 ----A---- C:\WINDOWS\system32\klfphc.dll
2015-06-21 12:24:57 ----D---- C:\Program Files (x86)\Kaspersky Lab
2015-06-20 21:24:46 ----D---- C:\Program Files\Virtual Audio Cable
2015-06-20 21:24:46 ----A---- C:\WINDOWS\system32\drivers\vrtaucbl.sys
2015-06-20 20:49:34 ----D---- C:\WINDOWS\en
2015-06-20 20:48:57 ----D---- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2015-06-20 20:48:19 ----D---- C:\WINDOWS\PCHEALTH
2015-06-20 20:48:05 ----D---- C:\Program Files (x86)\Windows Live
2015-06-18 23:43:42 ----D---- C:\Program Files (x86)\Extreme Picture Finder 3
2015-06-18 22:27:47 ----D---- C:\ProgramData\Extreme Picture Finder
2015-06-18 00:57:28 ----A---- C:\WINDOWS\system32\PnkBstrA.exe
2015-06-17 16:04:17 ----D---- C:\Program Files (x86)\Battlelog Web Plugins
2015-06-17 16:03:59 ----A---- C:\WINDOWS\SYSWOW64\PnkBstrB.exe
2015-06-17 16:03:58 ----A---- C:\WINDOWS\SYSWOW64\PnkBstrA.exe
2015-06-17 00:41:16 ----D---- C:\Program Files (x86)\Origin Games
2015-06-17 00:37:55 ----D---- C:\Users\James\AppData\Roaming\Origin
2015-06-17 00:35:45 ----D---- C:\ProgramData\Origin
2015-06-17 00:35:45 ----D---- C:\ProgramData\Electronic Arts
2015-06-17 00:35:41 ----D---- C:\Program Files (x86)\Origin
2015-06-13 14:01:02 ----D---- C:\Users\James\AppData\Roaming\Morphopolis
2015-06-12 15:33:58 ----D---- C:\Users\James\AppData\Roaming\New Version Available
2015-06-12 15:33:41 ----D---- C:\Program Files (x86)\Free Screencast
2015-06-11 21:48:43 ----D---- C:\Users\James\AppData\Roaming\Mirillis
2015-06-11 21:48:43 ----D---- C:\ProgramData\Mirillis
2015-06-11 21:48:06 ----D---- C:\Program Files (x86)\Mirillis
2015-06-11 21:42:42 ----D---- C:\Users\James\AppData\Roaming\TechSmith
2015-06-11 21:41:56 ----D---- C:\ProgramData\regid.1995-08.com.techsmith
2015-06-11 21:41:55 ----D---- C:\Program Files (x86)\QuickTime
2015-06-11 21:41:31 ----D---- C:\ProgramData\TechSmith
2015-06-11 21:41:31 ----D---- C:\Program Files (x86)\TechSmith
2015-06-11 20:54:40 ----D---- C:\Users\James\AppData\Roaming\OBS
2015-06-11 20:53:44 ----D---- C:\Program Files\OBS
2015-06-11 20:53:41 ----D---- C:\Program Files (x86)\OBS
2015-06-11 14:22:14 ----D---- C:\Users\James\AppData\Roaming\TeamViewer
2015-06-10 14:38:49 ----D---- C:\ProgramData\LogMeIn
2015-06-09 15:20:42 ----A---- C:\WINDOWS\system32\invagent.dll
2015-06-09 15:20:42 ----A---- C:\WINDOWS\system32\generaltel.dll
2015-06-09 15:20:42 ----A---- C:\WINDOWS\system32\devinv.dll
2015-06-09 15:20:42 ----A---- C:\WINDOWS\system32\appraiser.dll
2015-06-09 15:20:42 ----A---- C:\WINDOWS\system32\aepic.dll
2015-06-09 15:20:42 ----A---- C:\WINDOWS\system32\aepdu.dll
2015-06-09 15:20:42 ----A---- C:\WINDOWS\system32\aeinv.dll
2015-06-09 15:20:42 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-06-09 15:20:32 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2015-06-09 15:20:32 ----A---- C:\WINDOWS\system32\puiobj.dll
2015-06-09 15:20:32 ----A---- C:\WINDOWS\system32\localspl.dll
2015-06-09 15:20:32 ----A---- C:\WINDOWS\system32\compstui.dll
2015-06-09 15:20:28 ----A---- C:\WINDOWS\SYSWOW64\rastapi.dll
2015-06-09 15:20:28 ----A---- C:\WINDOWS\system32\rastapi.dll
2015-06-09 15:20:19 ----A---- C:\WINDOWS\system32\UtcResources.dll
2015-06-09 15:20:19 ----A---- C:\WINDOWS\system32\diagtrack.dll
2015-06-09 15:20:15 ----A---- C:\WINDOWS\SYSWOW64\rgb9rast.dll
2015-06-09 15:20:13 ----A---- C:\WINDOWS\SYSWOW64\msftedit.dll
2015-06-09 15:20:13 ----A---- C:\WINDOWS\system32\msftedit.dll
2015-06-09 15:18:29 ----A---- C:\WINDOWS\SYSWOW64\authz.dll
2015-06-09 15:18:29 ----A---- C:\WINDOWS\system32\authz.dll
2015-06-09 15:18:26 ----A---- C:\WINDOWS\SYSWOW64\UIAutomationCore.dll
2015-06-09 15:18:26 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2015-06-09 15:18:19 ----A---- C:\WINDOWS\SYSWOW64\comctl32.dll
2015-06-09 15:18:19 ----A---- C:\WINDOWS\system32\comctl32.dll
2015-06-09 15:18:17 ----A---- C:\WINDOWS\SYSWOW64\tquery.dll
2015-06-09 15:18:17 ----A---- C:\WINDOWS\SYSWOW64\mssrch.dll
2015-06-09 15:18:17 ----A---- C:\WINDOWS\system32\tquery.dll
2015-06-09 15:18:17 ----A---- C:\WINDOWS\system32\SearchIndexer.exe
2015-06-09 15:18:17 ----A---- C:\WINDOWS\system32\mssrch.dll
2015-06-09 15:18:17 ----A---- C:\WINDOWS\system32\mssph.dll
2015-06-09 15:18:16 ----AC---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2015-06-09 15:18:16 ----A---- C:\WINDOWS\SYSWOW64\SearchProtocolHost.exe
2015-06-09 15:18:16 ----A---- C:\WINDOWS\SYSWOW64\SearchIndexer.exe
2015-06-09 15:18:16 ----A---- C:\WINDOWS\SYSWOW64\mssvp.dll
2015-06-09 15:18:16 ----A---- C:\WINDOWS\SYSWOW64\mssph.dll
2015-06-09 15:18:16 ----A---- C:\WINDOWS\system32\SearchProtocolHost.exe
2015-06-09 15:18:16 ----A---- C:\WINDOWS\system32\mssvp.dll
2015-06-09 15:18:16 ----A---- C:\WINDOWS\system32\mssphtb.dll
2015-06-09 15:18:15 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-06-09 15:18:14 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-06-09 15:18:12 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-06-09 15:18:12 ----A---- C:\WINDOWS\system32\wininet.dll
2015-06-09 15:18:12 ----A---- C:\WINDOWS\system32\jscript9.dll
2015-06-09 15:18:09 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2015-06-09 15:18:09 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-06-09 15:18:08 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2015-06-09 15:18:08 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2015-06-09 15:18:08 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2015-06-09 15:18:08 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-06-09 15:18:08 ----A---- C:\WINDOWS\system32\urlmon.dll
2015-06-09 15:18:08 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-06-09 15:18:08 ----A---- C:\WINDOWS\system32\actxprxy.dll
2015-06-09 15:18:07 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-06-09 15:18:07 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2015-06-09 15:18:07 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-06-09 15:18:06 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-06-09 15:18:06 ----A---- C:\WINDOWS\system32\msfeeds.dll
2015-06-09 15:18:06 ----A---- C:\WINDOWS\system32\jscript.dll
2015-06-09 15:18:06 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2015-06-09 15:18:05 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2015-06-09 15:18:05 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2015-06-09 15:18:05 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2015-06-09 15:18:05 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2015-06-09 15:18:05 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2015-06-09 15:18:05 ----A---- C:\WINDOWS\system32\webcheck.dll
2015-06-09 15:18:05 ----A---- C:\WINDOWS\system32\mshtmled.dll
2015-06-09 15:18:05 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2015-06-09 15:18:05 ----A---- C:\WINDOWS\system32\ieui.dll
2015-06-09 15:18:05 ----A---- C:\WINDOWS\system32\iepeers.dll
2015-06-09 15:18:05 ----A---- C:\WINDOWS\system32\dxtrans.dll
2015-06-09 15:18:04 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2015-06-09 15:18:04 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2015-06-09 15:18:04 ----A---- C:\WINDOWS\system32\inetcomm.dll
2015-06-09 15:18:04 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2015-06-09 15:17:27 ----A---- C:\WINDOWS\system32\win32k.sys
2015-06-07 18:59:44 ----D---- C:\Users\James\AppData\Roaming\RIFT
2015-06-07 13:09:29 ----D---- C:\WINDOWS\SYSWOW64\Adobe
2015-06-07 12:54:59 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2015-06-07 12:54:32 ----D---- C:\Program Files (x86)\Java
2015-06-02 17:15:46 ----D---- C:\Users\James\AppData\Roaming\com.playsaurus.heroclicker
2015-06-02 13:40:54 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-06-01 19:57:01 ----D---- C:\Program Files (x86)\AMD
2015-06-01 19:56:52 ----D---- C:\WINDOWS\SYSWOW64\AGEIA
2015-06-01 19:56:51 ----D---- C:\Program Files (x86)\AGEIA Technologies
2015-06-01 19:56:36 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2015-06-01 19:56:36 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2015-06-01 19:56:34 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2015-06-01 13:51:07 ----D---- C:\Program Files (x86)\Microsoft ASP.NET
2015-05-31 22:42:33 ----A---- C:\WINDOWS\system32\nvdispgenco6435306.dll
2015-05-31 22:42:33 ----A---- C:\WINDOWS\system32\nvdispco6435306.dll
2015-05-31 22:39:17 ----D---- C:\Program Files\Microsoft Silverlight
2015-05-31 22:39:16 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-05-31 20:34:35 ----D---- C:\ProgramData\boost_interprocess
2015-05-31 20:34:29 ----A---- C:\WINDOWS\system32\drivers\nvvad64v.sys
2015-05-31 20:34:28 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2015-05-30 19:36:55 ----D---- C:\Program Files\AutoHotkey

======List of files/folders modified in the last 1 month======

2015-06-28 22:46:35 ----RD---- C:\Program Files
2015-06-28 22:46:29 ----D---- C:\WINDOWS\Prefetch
2015-06-28 22:42:24 ----D---- C:\Users\James\AppData\Roaming\Skype
2015-06-28 22:33:30 ----D---- C:\WINDOWS\Temp
2015-06-28 22:00:00 ----D---- C:\WINDOWS\system32\sru
2015-06-28 21:09:11 ----D---- C:\ProgramData\Kaspersky Lab
2015-06-28 18:07:59 ----D---- C:\Windows
2015-06-28 18:07:57 ----AD---- C:\WINDOWS\SysWOW64
2015-06-28 18:07:49 ----RD---- C:\Program Files (x86)
2015-06-28 16:07:11 ----D---- C:\WINDOWS\system32\drivers
2015-06-28 16:03:23 ----D---- C:\Users\James\AppData\Roaming\BitTorrent
2015-06-28 13:17:49 ----D---- C:\Program Files (x86)\Steam
2015-06-28 12:44:39 ----D---- C:\WINDOWS\Microsoft.NET
2015-06-27 12:15:01 ----HD---- C:\Program Files\WindowsApps
2015-06-24 15:13:11 ----HD---- C:\ProgramData
2015-06-24 15:13:10 ----D---- C:\Program Files\Common Files
2015-06-24 15:13:10 ----D---- C:\Program Files (x86)\Common Files
2015-06-24 12:44:13 ----D---- C:\WINDOWS\system32\config
2015-06-24 12:39:06 ----D---- C:\WINDOWS\CbsTemp
2015-06-24 12:39:05 ----D---- C:\WINDOWS\WinSxS
2015-06-24 12:34:20 ----D---- C:\WINDOWS\system32\catroot2
2015-06-24 12:34:04 ----D---- C:\ProgramData\NVIDIA Corporation
2015-06-24 12:13:58 ----D---- C:\WINDOWS\Inf
2015-06-23 23:47:11 ----SHD---- C:\WINDOWS\Installer
2015-06-23 23:47:10 ----D---- C:\WINDOWS\system32\Tasks
2015-06-23 23:39:22 ----D---- C:\Users\James\AppData\Roaming\.minecraft
2015-06-23 23:33:16 ----RAD---- C:\WINDOWS\System32
2015-06-23 23:33:15 ----D---- C:\WINDOWS\system32\DriverStore
2015-06-23 23:32:20 ----D---- C:\ProgramData\NVIDIA
2015-06-23 13:24:37 ----D---- C:\WINDOWS\system32\catroot
2015-06-22 11:26:04 ----SHD---- C:\System Volume Information
2015-06-22 11:18:41 ----D---- C:\WINDOWS\AppReadiness
2015-06-21 12:25:03 ----HD---- C:\WINDOWS\ELAMBKUP
2015-06-21 12:15:43 ----ASH---- C:\WINDOWS\SYSWOW64\ReadTag.ini
2015-06-21 01:24:57 ----D---- C:\Users\James\AppData\Roaming\Adobe
2015-06-20 20:58:57 ----RSD---- C:\WINDOWS\Fonts
2015-06-20 20:48:58 ----RSD---- C:\WINDOWS\assembly
2015-06-20 20:48:21 ----D---- C:\Program Files\Common Files\microsoft shared
2015-06-20 20:24:36 ----D---- C:\Program Files (x86)\Adobe
2015-06-20 20:13:52 ----D---- C:\Users\James\AppData\Roaming\Audacity
2015-06-19 22:02:45 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2015-06-18 18:06:41 ----D---- C:\Users\James\AppData\Roaming\vlc
2015-06-17 23:12:19 ----D---- C:\Users\James\AppData\Roaming\Spotify
2015-06-17 16:03:57 ----D---- C:\WINDOWS\system32\LogFiles
2015-06-17 04:10:27 ----A---- C:\WINDOWS\SYSWOW64\nvwgf2um.dll
2015-06-17 04:10:27 ----A---- C:\WINDOWS\SYSWOW64\nvd3dum.dll
2015-06-17 04:10:27 ----A---- C:\WINDOWS\SYSWOW64\nvapi.dll
2015-06-17 04:10:27 ----A---- C:\WINDOWS\system32\nvwgf2umx.dll
2015-06-17 04:10:27 ----A---- C:\WINDOWS\system32\nvd3dumx.dll
2015-06-17 04:10:27 ----A---- C:\WINDOWS\system32\nvapi64.dll
2015-06-17 01:48:17 ----A---- C:\WINDOWS\system32\nvvsvc.exe
2015-06-17 01:48:16 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2015-06-17 01:48:16 ----A---- C:\WINDOWS\system32\nvshext.dll
2015-06-17 01:48:16 ----A---- C:\WINDOWS\system32\nvmctray.dll
2015-06-17 01:48:15 ----A---- C:\WINDOWS\system32\nvsvc64.dll
2015-06-17 01:48:15 ----A---- C:\WINDOWS\system32\nvcpl.dll
2015-06-16 13:03:28 ----D---- C:\WINDOWS\LiveKernelReports
2015-06-16 11:53:12 ----D---- C:\ProgramData\Skype
2015-06-11 23:49:49 ----RD---- C:\Users
2015-06-10 15:27:02 ----D---- C:\WINDOWS\rescache
2015-06-10 13:29:21 ----D---- C:\WINDOWS\Logs
2015-06-10 11:51:44 ----D---- C:\WINDOWS\SYSWOW64\en-US
2015-06-10 11:51:44 ----D---- C:\Program Files\Internet Explorer
2015-06-10 11:51:44 ----D---- C:\Program Files (x86)\Internet Explorer
2015-06-10 11:51:43 ----D---- C:\WINDOWS\system32\en-US
2015-06-10 11:51:43 ----D---- C:\WINDOWS\PolicyDefinitions
2015-06-10 11:47:43 ----SD---- C:\WINDOWS\system32\CompatTel
2015-06-10 11:47:42 ----D---- C:\WINDOWS\system32\appraiser
2015-06-10 11:47:41 ----RD---- C:\WINDOWS\ToastData
2015-06-10 11:47:41 ----D---- C:\WINDOWS\apppatch
2015-06-09 15:45:55 ----D---- C:\WINDOWS\system32\MRT
2015-06-09 15:42:51 ----A---- C:\WINDOWS\system32\MRT.exe
2015-06-09 00:41:04 ----D---- C:\Program Files\Rockstar Games
2015-06-09 00:41:04 ----D---- C:\Program Files (x86)\Rockstar Games
2015-06-08 18:30:58 ----SD---- C:\Users\James\AppData\Roaming\Microsoft
2015-06-07 13:08:41 ----D---- C:\WINDOWS\Tasks
2015-06-07 12:55:12 ----D---- C:\ProgramData\Oracle
2015-06-06 13:07:43 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-06-06 10:38:33 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-06-03 16:04:55 ----A---- C:\WINDOWS\SYSWOW64\nvspcap.dll
2015-06-03 16:04:55 ----A---- C:\WINDOWS\SYSWOW64\nvspbridge.dll
2015-06-03 16:04:45 ----A---- C:\WINDOWS\system32\nvspcap64.dll
2015-06-03 16:04:45 ----A---- C:\WINDOWS\system32\nvspbridge64.dll
2015-05-31 22:39:32 ----SD---- C:\ProgramData\Microsoft
2015-05-30 21:56:36 ----D---- C:\Users\James\AppData\Roaming\NVIDIA
2015-05-30 19:36:55 ----D---- C:\WINDOWS\ShellNew
2015-05-30 04:44:30 ----D---- C:\WINDOWS\Minidump
2015-05-29 13:03:03 ----D---- C:\Users\James\AppData\Roaming\FileZilla

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\WINDOWS\System32\drivers\amd_sata.sys [2013-07-23 80640]
R0 amd_xata;amd_xata; C:\WINDOWS\System32\drivers\amd_xata.sys [2013-07-23 25344]
R0 cm_km_w;Kaspersky Lab Crypto Module (FDE PDK); C:\WINDOWS\system32\DRIVERS\cm_km_w.sys [2015-06-23 247016]
R0 kl1;kl1; C:\WINDOWS\system32\DRIVERS\kl1.sys [2015-06-23 478392]
R0 mfehidk;McAfee Inc. mfehidk; C:\WINDOWS\system32\drivers\mfehidk.sys [2013-08-07 776168]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\WINDOWS\system32\drivers\mfewfpk.sys [2013-08-07 343568]
R1 AsIO;AsIO; C:\WINDOWS\SysWow64\drivers\AsIO.sys [2012-08-22 15232]
R1 AsUpIO;AsUpIO; C:\WINDOWS\SysWow64\drivers\AsUpIO.sys [2010-08-03 14464]
R1 klhk;klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [2015-06-23 227000]
R1 KLIF;Kaspersky Lab Driver; C:\WINDOWS\system32\DRIVERS\klif.sys [2015-06-23 831664]
R1 KLIM6;@oem62.inf,%KLIM6_Desc%;Kaspersky Anti-Virus NDIS 6 Filter; C:\WINDOWS\system32\DRIVERS\klim6.sys [2015-06-23 39792]
R1 klpd;klpd; C:\WINDOWS\system32\DRIVERS\klpd.sys [2015-06-23 24944]
R1 klwfp;klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [2015-06-23 77680]
R1 Klwtp;Klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [2015-06-23 85360]
R1 kneps;kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [2015-06-23 190648]
R2 AODDriver4.2;AODDriver4.2; \??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-11-20 57512]
R2 kldisk;kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [2015-06-23 64368]
R2 rzpmgrk;rzpmgrk; \??\C:\WINDOWS\system32\drivers\rzpmgrk.sys [2015-02-04 37184]
R2 rzpnk;rzpnk; \??\C:\WINDOWS\system32\drivers\rzpnk.sys [2015-03-03 129600]
R3 AmUStor;@oem6.inf,%AmUStor.SvcDesc%;AM USB Stroage Driver; C:\WINDOWS\system32\drivers\AmUStor.SYS [2013-06-24 109336]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Bluetooth Enumerator Service; C:\WINDOWS\System32\drivers\BthEnum.sys [2014-10-28 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Bluetooth Low Energy Driver; C:\WINDOWS\System32\drivers\BthLEEnum.sys [2013-12-04 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2014-07-24 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Bluetooth Radio USB Driver; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2014-10-28 81920]
R3 CompFilter64;UVCCompositeFilter; C:\WINDOWS\System32\drivers\lvbflt64.sys [2012-10-26 26784]
R3 EuMusDesignVirtualAudioCableWdm;@oem60.inf,%DeviceName% (WDM);Virtual Audio Cable (WDM); C:\WINDOWS\system32\DRIVERS\vrtaucbl.sys [2015-06-20 110368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2013-09-06 3637720]
R3 klflt;Kaspersky Lab Kernel DLL; C:\WINDOWS\system32\DRIVERS\klflt.sys [2015-06-23 159960]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [2015-06-23 39792]
R3 LVRS64;@oem22.inf,%lvrs.SrvDesc%;Logitech RightSound Filter Driver; C:\WINDOWS\system32\DRIVERS\lvrs64.sys [2012-10-26 351520]
R3 LVUVC64;@oem21.inf,%PID_082C_DD%(UVC);Logitech HD Webcam C615(UVC); C:\WINDOWS\system32\DRIVERS\lvuvc64.sys [2012-10-26 4758176]
R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [2015-04-14 25816]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [2015-06-28 136408]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\WINDOWS\system32\drivers\mwac.sys [2015-04-14 64216]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\WINDOWS\system32\drivers\mfeavfk.sys [2013-08-07 310224]
R3 mfefirek;McAfee Inc. mfefirek; C:\WINDOWS\system32\drivers\mfefirek.sys [2013-08-07 519064]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-06-17 11011216]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2015-06-03 19600]
R3 nvvad_WaveExtensible;@oem58.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2015-04-03 38032]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Bluetooth Device (RFCOMM Protocol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-01-29 167424]
R3 RtkBtFilter;@oem8.inf,%BtFilt.SvcDesc%;Realtek Bluetooth Filter Driver; C:\WINDOWS\system32\DRIVERS\RtkBtfilter.sys [2013-09-05 548056]
R3 RTL8168;@oem2.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\system32\DRIVERS\Rt630x64.sys [2013-06-21 816344]
R3 RTWlanE;@oem7.inf,%RTWlanE.DeviceDesc.DispName%;Realtek Wireless LAN 802.11n PCI-E Network Adapter; C:\WINDOWS\system32\DRIVERS\rtwlane.sys [2013-08-20 2944216]
R3 rzendpt;@oem34.inf,%rzendpt.SvcDesc%;rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [2014-12-30 39592]
R3 rzudd;@oem48.inf,%Razer.SvcDesc%;Razer Mouse Driver; C:\WINDOWS\System32\drivers\rzudd.sys [2014-12-30 177832]
R3 usbaudio;@wdma_usb.inf,%USBAudio.SvcDesc%;USB Audio Driver (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2013-12-13 121088]
R3 usbfilter;AMD USB Filter Driver; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [2013-03-08 58536]
R4 klkbdflt2;Kaspersky Lab KlKbdFlt2; C:\WINDOWS\system32\DRIVERS\klkbdflt2.sys []
S0 klelam;klelam; C:\WINDOWS\system32\DRIVERS\klelam.sys [2012-07-27 29616]
S0 mfeelamk;McAfee Inc. mfeelamk; C:\WINDOWS\system32\drivers\mfeelamk.sys [2013-08-07 69264]
S3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2013-08-19 12521472]
S3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2013-08-19 617472]
S3 AtiHDAudioService;@oem4.inf,%ATIHdAudioDriver.SvcDesc%;AMD Function Driver for HD Audio Service; C:\WINDOWS\system32\drivers\AtihdWB6.sys [2013-06-22 138240]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Bluetooth Port Driver; C:\WINDOWS\System32\Drivers\BTHport.sys [2014-10-28 1198080]
S3 cfwids;McAfee Inc. cfwids; C:\WINDOWS\system32\drivers\cfwids.sys [2013-08-07 70112]
S3 dg_ssudbus;@oem18.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 33240]
S3 Hamachi;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [2015-03-30 44296]
S3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [2015-06-23 40304]
S3 mfeapfk;McAfee Inc. mfeapfk; C:\WINDOWS\system32\drivers\mfeapfk.sys [2013-08-07 179664]
S3 ssudmdm;@oem53.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 USBAAPL64;@oem65.inf,%USBAAPL64.SvcDesc%;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl64.sys [2014-08-15 54784]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2014-06-21 212736]
S4 NVHDA;@oem134.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda64v.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-06-12 82112]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2013-08-19 239616]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2013-08-19 344064]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-01-19 77128]
R2 asComSvc;ASUS Com Service; C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe [2013-08-28 920736]
R2 AVP15.0.2;Kaspersky Anti-Virus Service 15.0.2; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\avp.exe [2015-06-23 194000]
R2 AvrcpService;AvrcpService; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe [2013-05-07 35328]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 BTDevManager;BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [2013-09-26 59392]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2015-05-01 1394816]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2015-05-01 1772672]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\WINDOWS\System32\svchost.exe [2014-10-28 38792]
R2 Fabs;FABS - Helping agent for MAGIX media database; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [2012-01-23 1858048]
R2 GfExperienceService;NVIDIA GeForce Experience Service; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [2015-06-03 1152656]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [2015-04-14 1871160]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [2015-04-14 1080120]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2013-08-07 219272]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Windows\system32\mfevtps.exe [2013-08-07 182752]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2015-06-03 1893008]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2015-06-03 23007376]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-06-17 937616]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2015-06-18 76152]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2012-04-24 390632]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2015-06-17 410768]
R3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2015-06-19 837312]
S2 Device Handle Service;Device Handle Service; C:\Windows\SysWOW64\AsHookDevice.exe [2013-08-08 207160]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-02-18 315488]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-23 268976]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2014-10-28 38792]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2011-04-26 2702848]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-22 43696]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-04-07 643880]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-06-02 148080]
S3 Origin Client Service;Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2015-06-17 1997168]
S4 Asus WebStorage Windows Service;Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.0.3.226\AsusWSWinService.exe [2013-08-16 71680]
S4 Razer Game Scanner Service;Razer Game Scanner; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [2015-02-04 187072]

-----------------EOF-----------------
Mister Spoo
Regular Member
 
Posts: 23
Joined: June 23rd, 2015, 12:01 am

Re: I may have something hidng that my antivirus doesn't see

Unread postby Mister Spoo » June 28th, 2015, 11:49 pm

info.txt
info.txt logfile of random's system information tool 1.10 2015-06-28 22:46:51

======MBR======

0x0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000B9C908CF000000000200EEFFFFFF01000000FFFFFFFF00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055AA

======Uninstall list======

-->"C:\Program Files (x86)\InstallShield Installation Information\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}\setup.exe" /z-uninstall
-->MsiExec /X{D56B0E27-4A3E-46C9-B5C1-D93D580C099C}
-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{8104540C-E338-47C0-8FEC-7C2BEC3B5EBE}\Setup.exe" -l0x9
-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{8B15B78B-E4AE-44BC-9590-D93190DA44AA}\Setup.exe" -l0x9
-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{AE950851-3F21-4000-8965-0FCD8A1F93F4}\Setup.exe" -l0x9
-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{BEBAE8E0-8C69-4178-8A8E-1E591747A89F}\Setup.exe" -l0x9
-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{EE8AC67D-3E05-437C-9354-C36EEAC3CFC0}\Setup.exe" -l0x9
404Sight-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/361630
Adobe Acrobat Reader DC-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-AC0F074E4100}
Adobe Flash Player 18 NPAPI-->C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_18_0_0_194_Plugin.exe -maintain plugin
Adobe Refresh Manager-->MsiExec.exe /I{AC76BA86-0804-1033-1959-001824144531}
Adobe Shockwave Player 12.1-->"C:\WINDOWS\SysWOW64\Adobe\Shockwave 12\uninstaller.exe"
Alcor Micro USB Card Reader Driver -->C:\Program Files (x86)\InstallShield Installation Information\{07CCA4AC-FCC6-4A0A-B87A-26F6F50A7E31}\Setup.exe
AMD Accelerated Video Transcoding-->MsiExec.exe /X{BCCF3047-AF46-2F65-212A-D7573A7A10B7}
AMD Catalyst Install Manager-->msiexec /q/x{BCF4DA9E-A219-2BFF-8A17-81BB135E9BCA} REBOOT=ReallySuppress
Apple Application Support (32-bit)-->MsiExec.exe /I{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}
Apple Application Support (64-bit)-->MsiExec.exe /I{D7B824DE-DA32-4772-9E5E-39C5158136A7}
Apple Mobile Device Support-->MsiExec.exe /I{C4123106-B685-48E6-B9BD-E4F911841EB4}
Apple Software Update-->MsiExec.exe /I{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}
ASUS Launcher-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{40376CD0-67E0-4190-86CA-8BD8CBAC331C}\setup.exe" -l0x9
ASUS Manager - PC Cleanup-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{E22A19AE-7DDB-4959-B1DB-A0996294352A}\setup.exe" -l0x9
ASUS Manager - Power Manager-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{DD248BEE-E925-4720-A775-9A42276BB6EA}\setup.exe" -l0x9
ASUS Manager - Recovery-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{CF4A14CB-C4CB-4241-B659-7C58517515CF}\setup.exe" -l0x9
ASUS Manager - Update-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{675BBE8A-0ED3-4048-8723-BA51EAB8E1A8}\setup.exe" -l0x9
ASUS Manager - USB Lock-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{1931C916-6CB8-4E4D-8561-EA20C426AE19}\setup.exe" -l0x9
ASUS Manager-->C:\ProgramData\ASUS\ASUS Manager\Setup.exe
ASUS Music Maker-->"C:\Program Files (x86)\Common Files\MAGIX Services\Uninstall\{AB515018-7F9D-4047-B0C0-F26BAC30F3E1}\ASUS_Music_Maker_MX_setup.exe"
ASUS Music Maker-->MsiExec.exe /I{AB515018-7F9D-4047-B0C0-F26BAC30F3E1}
ASUSDVD-->"C:\Program Files (x86)\InstallShield Installation Information\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\setup.exe" /z-uninstall
ASUSDVD-->"C:\Program Files (x86)\InstallShield Installation Information\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\setup.exe" /z-uninstall
AsusVibe2.0-->C:\Program Files (x86)\Asus\AsusVibe\unins000.exe
Audacity 2.1.0-->"C:\Program Files (x86)\Audacity\unins000.exe"
AutoHotkey 1.1.22.02-->"C:\Program Files\AutoHotkey\AutoHotkey.exe" "C:\Program Files\AutoHotkey\Installer.ahk"
Battlefield 4™-->"C:\Program Files (x86)\Common Files\EAInstaller\Battlefield 4\Cleanup.exe" uninstall_game -autologging
Battlelog Web Plugins-->C:\Program Files (x86)\Battlelog Web Plugins\uninstall.exe
BEEP-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/104200
BioShock 2-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/8850
BioShock Infinite-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/8870
Bonjour-->MsiExec.exe /X{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}
Borderlands 2-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/49520
Burnout Paradise: The Ultimate Box-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/24740
Camtasia Studio 8-->MsiExec.exe /I{904AC0F0-F69E-467E-A719-B083940F608A}
Cisco EAP-FAST Module-->MsiExec.exe /I{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}
Cisco LEAP Module-->MsiExec.exe /I{AF312B06-5C5C-468E-89B3-BE6DE2645722}
Cisco PEAP Module-->MsiExec.exe /I{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}
Clicker Heroes-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/363970
Counter-Strike: Global Offensive-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/730
Counter-Strike: Source-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/240
Counter-Strike-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/10
CyberLink PhotoDirector 3-->"C:\Program Files (x86)\InstallShield Installation Information\{39337565-330E-4ab6-A9AE-AC81E0720B10}\Setup.exe" /z-uninstall
CyberLink PhotoDirector 3-->"C:\Program Files (x86)\InstallShield Installation Information\{39337565-330E-4ab6-A9AE-AC81E0720B10}\Setup.exe" /z-uninstall
CyberLink PowerDirector 10-->"C:\Program Files (x86)\InstallShield Installation Information\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}\setup.exe" /z-uninstall
CyberLink PowerDirector 10-->"C:\Program Files (x86)\InstallShield Installation Information\{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}\setup.exe" /z-uninstall
D3DX10-->MsiExec.exe /X{E09C4DB7-630C-4F06-A631-8EA7239923AF}
Don't Starve Together Beta-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/322330
Dual-Core Optimizer-->MsiExec.exe /X{9FD6F1A8-5550-46AF-8509-271DF0E768B5}
Dying Light-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/239140
eManual-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{0C84E634-EB68-4A54-B21E-A05EC87A4CC5}\Setup.exe" -l0x9
Euro Truck Simulator-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/232010
EVEREST Home Edition v2.20-->"C:\Program Files (x86)\Lavalys\EVEREST Home Edition\unins000.exe"
Extreme Picture Finder 3.26.1.1-->"C:\Program Files (x86)\Extreme Picture Finder 3\unins000.exe"
Fallout 3-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/22300
FileZilla Client 3.10.2-->C:\Program Files (x86)\FileZilla FTP Client\uninstall.exe
Firebird SQL Server - MAGIX Edition-->MsiExec.exe /X{39AB2E37-1A55-4292-A5D3-971E9F70D0F8}
Floating Point-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/302380
Fraps-->"C:\Fraps\uninstall.exe"
Free Screencast 4.6.2-->"C:\Program Files (x86)\Free Screencast\unins000.exe"
Garry's Mod-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/4000
Half-Life 2: Deathmatch-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/320
Half-Life 2: Episode One-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/380
Half-Life 2: Episode Two-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/420
Half-Life 2: Update-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/290930
Half-Life 2-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/220
Half-Life-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/70
how do you Do It?-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/353360
iTunes-->MsiExec.exe /I{93F2A022-6C37-48B8-B241-FFABD9F60C30}
Java 8 Update 45 (64-bit)-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F86418045F0}
Java 8 Update 45-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83218045F0}
Kaspersky Anti-Virus-->MsiExec.exe /I{02FECEE0-16B2-43DB-BC3B-C844477FC142}
Kaspersky Anti-Virus-->MsiExec.exe /I{02FECEE0-16B2-43DB-BC3B-C844477FC142} REMOVE=ALL
League of Legends-->msiexec.exe /x {79BF4901-1EC4-4726-B3C2-A7859706C6E7}
League of Legends-->MsiExec.exe /X{79BF4901-1EC4-4726-B3C2-A7859706C6E7}
Left 4 Dead 2-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/550
Lovely Planet-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/298600
LYNE-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/266010
Malwarebytes Anti-Malware version 2.1.6.1022-->"C:\Program Files (x86)\Malwarebytes Anti-Malware\unins000.exe"
Microsoft ASP.NET MVC 4 Runtime-->MsiExec.exe /X{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}
Microsoft Office-->MsiExec.exe /X{90150000-0138-0409-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU]-->MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Visual C++ 2005 Redistributable (x64)-->MsiExec.exe /X{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}
Microsoft Visual C++ 2005 Redistributable (x64)-->MsiExec.exe /X{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17-->MsiExec.exe /X{8220EEFE-38CD-377E-8595-13398D740ACE}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148-->MsiExec.exe /X{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161-->MsiExec.exe /X{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219-->MsiExec.exe /X{1D8E6291-B0D5-35EC-8441-6616F567A0F7}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219-->MsiExec.exe /X{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030-->"C:\ProgramData\Package Cache\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}\vcredist_x64.exe" /uninstall
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030-->"C:\ProgramData\Package Cache\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}\vcredist_x86.exe" /uninstall
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030-->MsiExec.exe /X{37B8F9C7-03FB-3253-8781-2517C99D7C00}
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030-->MsiExec.exe /X{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030-->MsiExec.exe /X{B175520C-86A2-35A7-8619-86DC379688B9}
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030-->MsiExec.exe /X{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501-->"C:\ProgramData\Package Cache\{050d4fc8-5d48-4b8f-8972-47c82c46020f}\vcredist_x64.exe" /uninstall
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501-->"C:\ProgramData\Package Cache\{f65db027-aff3-4070-886a-0d87064aabb1}\vcredist_x86.exe" /uninstall
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005-->MsiExec.exe /X{929FBD26-9020-399B-9A7A-751D61F0B942}
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005-->MsiExec.exe /X{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005-->MsiExec.exe /X{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005-->MsiExec.exe /X{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}
Minecraft-->MsiExec.exe /X{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}
Mirror's Edge-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/17410
Modular Combat-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/349480
Moonbase Alpha-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/39000
Morphopolis-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/314020
Movie Maker-->MsiExec.exe /X{38F03569-A636-4CF3-BDDE-032C8C251304}
Movie Maker-->MsiExec.exe /X{DD67BE4B-7E62-4215-AFA3-F123A800A389}
Mozilla Firefox 38.0.5 (x86 en-US)-->"C:\Program Files (x86)\Mozilla Firefox\uninstall\helper.exe"
Mozilla Maintenance Service-->"C:\Program Files (x86)\Mozilla Maintenance Service\uninstall.exe"
MSVCRT-->MsiExec.exe /I{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}
MSVCRT110_amd64-->MsiExec.exe /I{E9FA781F-3E80-4399-825A-AD3E11C28C77}
MSVCRT110-->MsiExec.exe /I{8E14DDC8-EA60-4E18-B3E3-1937104D5BDA}
MSXML 4.0 SP3 Parser-->MsiExec.exe /I{196467F1-C11F-4F76-858B-5812ADC83B94}
Notepad++-->C:\Program Files (x86)\Notepad++\uninstall.exe
NVIDIA 3D Vision Controller Driver 352.65-->"C:\WINDOWS\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.NVIRUSB
NVIDIA 3D Vision Driver 353.30-->"C:\WINDOWS\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.3DVision
NVIDIA GeForce Experience 2.4.5.44-->"C:\WINDOWS\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.GFExperience
NVIDIA Graphics Driver 353.30-->"C:\WINDOWS\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.Driver
NVIDIA Miracast Virtual Audio 353.30-->"C:\WINDOWS\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Miracast.VirtualAudio
NVIDIA PhysX System Software 9.15.0428-->"C:\WINDOWS\SysWOW64\RunDll32.EXE" "C:\Program Files\NVIDIA Corporation\Installer2\InstallerCore\NVI2.DLL",UninstallPackage Display.PhysX
NVIDIA PhysX v8.10.29-->MsiExec.exe /X{D56B0E27-4A3E-46C9-B5C1-D93D580C099C}
NVIDIA Stereoscopic 3D Driver-->"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvStInst.exe" /uninstall /ask
Open Broadcaster Software-->C:\Program Files (x86)\OBS\uninstall.exe
Origin-->C:\Program Files (x86)\Origin\OriginUninstall.exe
Out There Somewhere-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/263980
paint.net-->MsiExec.exe /X{19BD2C33-16A8-4ED1-B9EA-D9E35B21EC42}
PAYDAY 2-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/218620
PCSX2 - Playstation 2 Emulator-->C:\Program Files (x86)\PCSX2 1.2.1\Uninst-pcsx2-r5875.exe
Photo Common-->MsiExec.exe /X{CAA0F57A-BA8C-4AD8-AA03-F32B0E4F5623}
Photo Gallery-->MsiExec.exe /X{07AAB66E-4718-422D-9218-4AFB3C922A71}
Photo Gallery-->MsiExec.exe /X{C992FFE0-AC32-4FA9-BC9A-F1637B9E655D}
Polarity-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/315430
Portal 2-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/620
Portal-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/400
PunkBuster Services-->C:\Program Files (x86)\Origin Games\Battlefield 4\pbsvc.exe -u
Quake Live-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/282440
Razer Synapse-->MsiExec.exe /I{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}
REALTEK Bluetooth Driver-->C:\Program Files (x86)\InstallShield Installation Information\{9D3D8C60-A5EF-4123-B2B9-172095903AB}\Install.exe -uninst -l0x9
Realtek Ethernet Controller Driver-->C:\Program Files (x86)\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\Setup.exe -runfromtemp -removeonly
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~2\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -removeonly
REALTEK Wireless LAN Driver-->C:\Program Files (x86)\InstallShield Installation Information\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}\Install.exe -uninst -l0x9
RIFT™-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/39120
Risk of Rain-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/248820
RUSH-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/38720
Skype Click to Call-->MsiExec.exe /X{6D1221A9-17BF-4EC0-81F2-27D30EC30701}
Skype™ 7.5-->MsiExec.exe /X{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}
Spooky's House of Jump Scares-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/356670
Star Wars - Battlefront II-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/6060
StartIsBack+-->C:\Program Files (x86)\StartIsBack\StartIsBackCfg.exe /uninstall
Steam-->C:\Program Files (x86)\Steam\uninstall.exe
Stranded Deep-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/313120
SUPER © v2015.build.64+Recorder (2015/02/13) version v2015.buil-->"C:\Program Files (x86)\eRightSoft\SUPER\unins000.exe"
swMSM-->MsiExec.exe /I{612C34C7-5E90-47D8-9B5C-0F717DD82726}
Team Fortress 2-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/440
TeamSpeak 3 Client-->"C:\Program Files\TeamSpeak 3 Client\uninstall.exe"
The Elder Scrolls V: Skyrim-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/72850
Ultimate Tic-Tac-Toe-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/360870
Virtual Audio Cable 4.14-->C:\Program Files\Virtual Audio Cable\setup64.exe -u
VLC media player-->C:\Program Files (x86)\VideoLAN\VLC\uninstall.exe
Watch_Dogs-->"C:\Program Files (x86)\Steam\steam.exe" steam://uninstall/243470
WebStorage-->C:\Program Files (x86)\ASUS\WebStorage\uninst.exe
Windows Live Communications Platform-->MsiExec.exe /I{41C61308-6CFD-4D54-AB6A-7136ED08A18E}
Windows Live Essentials-->C:\Program Files (x86)\Windows Live\Installer\wlarp.exe
Windows Live Essentials-->MsiExec.exe /I{66B5819D-DE70-42BE-B40F-978FBA12452E}
Windows Live Installer-->MsiExec.exe /I{659CB81C-B54E-4DF1-B618-F35777393A54}
Windows Live Photo Common-->MsiExec.exe /X{1D6432B4-E24D-405E-A4AB-D7E6D088CBC9}
Windows Live PIMT Platform-->MsiExec.exe /I{B2611F8A-EFE7-4E88-875D-19F0EFAE87E4}
Windows Live SOXE Definitions-->MsiExec.exe /I{D1893000-EA77-493C-8DDD-E262436E959B}
Windows Live SOXE-->MsiExec.exe /I{CDC1AB00-01FF-4FC7-816A-16C67F0923C0}
Windows Live UX Platform Language Pack-->MsiExec.exe /I{6522F5F9-411B-4513-A75B-CEA00395F032}
Windows Live UX Platform-->MsiExec.exe /I{00F9DB8C-65D7-4D47-AB5F-F698EE38580D}
WinRAR 5.21 (64-bit)-->C:\Program Files\WinRAR\uninstall.exe

======Environment variables======

"FP_NO_HOST_CHECK"=NO
"USERNAME"=SYSTEM
"Path"=C:\ProgramData\Oracle\Java\javapath;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Skype\Phone\;C:\Program Files (x86)\Windows Live\Shared
"ComSpec"=%SystemRoot%\system32\cmd.exe
"TMP"=%SystemRoot%\TEMP
"OS"=Windows_NT
"windir"=%SystemRoot%
"PROCESSOR_ARCHITECTURE"=AMD64
"TEMP"=%SystemRoot%\TEMP
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=21
"PROCESSOR_IDENTIFIER"=AMD64 Family 21 Model 19 Stepping 1, AuthenticAMD
"PROCESSOR_REVISION"=1301
"asl.log"=Destination=file

-----------------EOF-----------------
Mister Spoo
Regular Member
 
Posts: 23
Joined: June 23rd, 2015, 12:01 am

Re: I may have something hidng that my antivirus doesn't see

Unread postby Mister Spoo » June 28th, 2015, 11:54 pm

As for look.txt that couldn't be done because I got the error in the CMD that said ERROR: Invalid namespace
Mister Spoo
Regular Member
 
Posts: 23
Joined: June 23rd, 2015, 12:01 am
Advertisement
Register to Remove

Next

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 143 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware