Good hardware, poor performance?

S

somebody480

New Member
I'm new here, so hopefully this is the right place for this kind of post. Sorry if I have posted in the wrong section.

tl;dr: (1) My computer has good hardware for gaming but runs very poorly at strange times..
(2) Boot times are unreasonably long, and the computer is unusable for ~30 minutes.
(3) On intensive games or games with uncapped frame-rates, white "flickers" occasionally occur on screen, and a constant background audio "buzz" can be heard.

I am hoping for some advice on how to fix my computer's performance, or at least point me in a good direction to troubleshoot.




My computer is primarily used for gaming, but experiences a lot of "lag" (taking an unreasonable amount of time to start programs, software becomes unresponsive, explorer.exe frequently crashes and must be restarted) even when doing the most basic things, such as using windows file explorer to find a program shortcut.

It also takes ~10 minutes to boot up, and after that once I log in it usually runs so slowly that it takes around 20 minutes before it is usable. Programs that I try to start will not start for up to 5 minutes, and once they do they often function so slowly that they appear unresponsive (but if I wait, they do eventually work). I have tried general fixes such as defragging, checking for malware and rootkits, cleaning up junk files, etc. I have disabled all unneeded startup programs as well, but startup times remain slow.

I am using a prebuilt ASUS computer, but I upgraded the power supply and GPU a couple of months ago.

My computer currently has this hardware:


Processor Intel(R) Core(TM) i7-2600 CPU @ 3.40GHz
Video Card AMD Radeon R9 270X
Memory 8.2 GB
Power Supply Rosewill Hive 850W

I have windows 7 64bit as the pre-installed OS.

When running games, they will often detect my hardware and run at maximum graphics settings. For example, Fallout 4 defaults to Ultra settings at max resolution. When I actually play the game, it sometimes runs smoothly at 60fps without any problems for a while, and then drops to extremely low framerate randomly (maybe 1-2 fps). Once its performance drops like this, when I close it my computer continues to run slow as if it had just finished bootup. Just like with that, when I wait for a while and try again it functions well. I should note that it does not seem to depend on where I'm at in the game (exterior/interior cell, lots of buildings, etc) but instead seems to occur without warning.

Another strange thing is when running the game League of Legends, if I uncap the fps under it's options, it will jump to ~300 fps. However, when it does this, a strange buzzing sound is played through any audio I have (it's done this on 3 different headsets/earphones) and random white flickers will occur on the screen at random intervals (not constant).

Using a program to monitor my CPU/GPU temperatures, the temperatures seemed to be fine. It worried me anyways, so I simply capped the fps at 120 and the problem stopped. Sometimes when playing other games at high fps, the white flickers also occur.

All of my drivers are up to date, as well.

The only source for these problems that I can think of is that perhaps when I put in my graphics card I somehow did something wrong, but I'm not sure how I can be certain or what to do to fix it.

Does anyone know what might be causing these problems or how I can fix them?
 
johnb35

johnb35

Administrator
Staff member
Start with this and post all logs please.

1.

Please download AdwCleaner by Xplode onto your Desktop.



•Please close all open programs and internet browsers.
•Double click on adwcleaner.exe to run the tool.
•Click on Scan.
•After the scan you will need to click on clean for it to delete the adware.
•Your computer will be rebooted automatically. A text file will open after the restart.
•Please post the content of that logfile in your reply.
•You can find the logfile at C:\AdwCleaner[Sn].txt as well - n is the order number.

2.

Please download Junkware Removal Tool to your desktop.

•Shutdown your antivirus to avoid any conflicts.
•Very important that you run the tool in this manner:
Right-mouse click JRT.exe and select Run as administrator
Do NOT just double-click it.
•The tool will open and start scanning your system.
•Please be patient as this can take a while to complete.
•On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
•Post the contents of JRT.txt in your next message.

3.

Please download Malwarebytes' Anti-Malware and save it to your desktop.
  • Double-click mbam-setup.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to
    • Update Malwarebytes' Anti-Malware
    • and Launch Malwarebytes' Anti-Malware
  • then click Finish.
  • If an update is found, it will download and install the latest version. Please keep updating until it says you have the latest version.
  • Once the program has loaded, select Perform quick scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • A log will be saved automatically which you can access by clicking on the Logs tab within Malwarebytes' Anti-Malware

If for some reason Malwarebytes will not install or run please download and run Rkill.scr, Rkill.exe, or Rkill.com. If you are still having issues running rkill then try downloading these renamed versions of the same program.

EXPLORER.EXE
IEXPLORE.EXE
USERINIT.EXE
WINLOGON.EXE

But DO NOT reboot the system and then try installing or running Malwarebytes. If Rkill (which is a black box) appears and then disappears right away or you get a message saying rkill is infected, keep trying to run rkill until it over powers the infection and temporarily kills it. Once a log appears on the screen, you can try running malwarebytes or downloading other programs.

Please post the log that Malwarebytes displays on your screen.

4.

Download OTL to your Desktop


•Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
•Click on Minimal Output at the top
•Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
◦When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL. Just post the OTL.txt file in your reply.

then post the logs from the following 4 programs.

1. Adwcleaner
2. Junkware removal tool
3. Malwarebytes
4. OTL
 
S

somebody480

New Member
I have done as told, and attached are the logs. If you meant for me to copy/paste the contents, I can edit to do that instead, but the contents have a very large amount of text.
 

Attachments

  • AdwCleaner[S3].txt
    4.9 KB · Views: 2
  • JRT.txt
    11.2 KB · Views: 1
  • malwarebytes log.txt
    7.6 KB · Views: 1
  • OTL.Txt
    111.6 KB · Views: 2
beers

beers

Moderator
Staff member
Seems like a storage issue to me but we'll see what John has on the software/malware side :D
 
S

somebody480

New Member
It looks like the fallout 4 frame drops were due to my graphics card maxing out it's memory usage in certain areas, so that explains the sudden massive frame drops for that specifically. I'm going to try lowering the anti-aliasing to keep it within the threshold of memory usage.

As far as the slow boot times and constant crashing of explorer.exe, I still don't know though. The white flickers and buzzing sound when I have league FPS uncapped also remains a mystery.

My thinking is that I should try re-installing my OS, or just upgrading to windows 10 and hoping it fixes some of the boot issues and explorer crashing.

Do y'all disagree, or have any suggestions about the flickers/buzzing?
 
johnb35

johnb35

Administrator
Staff member
Where is this buzzing coming from? If its from the power supply, I would get it replaced asap.

I would like for you to run the following and post the logs.

1.

Please download and run TDSSkiller

When the program opens, click on change parameters, click on detect tdlfs file system, click ok, click on the start scan button.

tdssstartscan_zps32a151cd.jpg


TDSSKiller will now scan your computer for the TDSS infection. When the scan has finished it will display a result screen stating whether or not the infection was found on your computer. If it was found it will display a screen similar to the one below.

2663-2-eng.png


To remove the infections simply click on the Continue button and TDSSKiller will attempt to clean them or remove them.

After trying to clean them it will pop up with the results of the scan and its actions.

2663_3_en.png


Please reboot the system if asked to do so.

After running there will be a log that will be located at the root of your c:\ drive labeled tdsskiller with a series of numbers after it example, C:\TDSSKiller.2.4.7_23.07.2010_15.31.43_log.txt

Please open the log and copy and paste it back here.

2.

Download and Run ComboFix
If you already have Combofix, please delete this copy and download it again as it's being updated regularly.
  • Download this file here :

    Combofix

  • When the page loads click on the blue combofix download link next to the BleepingComputer Mirror.
  • Save the file to your windows desktop. The combofix icon will look like this when it has downloaded to your desktop.

    cf-icon.jpg
  • We are almost ready to start ComboFix, but before we do so, we need to take some preventative measures so that there are no conflicts with other programs when running ComboFix. At this point you should do the following:

  • Close all open Windows including this one.
  • Close or disable all running Antivirus, Antispyware, and Firewall programs as they may interfere with the proper running of ComboFix. Instructions on disabling these type of programs can be found here.
    Once these two steps have been completed, double-click on the ComboFix icon found on your desktop. Please note, that once you start ComboFix you should not click anywhere on the ComboFix window as it can cause the program to stall. In fact, when ComboFix is running, do not touch your computer at all. The scan could take a while, so please be patient.
  • Please click on I agree on the disclaimer window.
  • ComboFix will now install itself on to your computer. When it is done, a blue screen will appear as shown below.

    cf-preparing.jpg

  • ComboFix is now preparing to run. When it has finished ComboFix will automatically attempt to create a System Restore point so that if any problems occur while using the program you can restore back to your previous configuration. When ComboFix has finished creating the restore point, it will then backup your Windows Registry as shown in the image below.

    erunt.jpg

  • Once the Windows Registry has finished being backed up, ComboFix will attempt to detect if you have the Windows Recovery Console installed. If you already have it installed, you can skip to this section and continue reading. Otherwise you will see the following message as shown below:

    recovery-console-prompt.jpg

  • At the above message box, please click on the Yes button in order for ComboFix to continue. Please follow the steps and instructions given by ComboFix in order to finish the installation of the Recovery Console.
  • Please click on yes in the next window to continue scanning for malware.
  • ComboFix will now disconnect your computer from the Internet, so do not be surprised or concerned if you receive any warnings stating that you are no longer on the Internet. When ComboFix has finished it will automatically restore your Internet connection.
  • ComboFix will now start scanning your computer for known infections. This procedure can take some time, so please be patient.
  • While the program is scanning your computer, it will change your clock format, so do not be concerned when you see this happen. When ComboFix is finished it will restore your clock settings to their previous settings. You will also see the text in the ComboFix window being updated as it goes through the various stages of its scan. An example of this can be seen below.

    still-scanning-clockchanges.jpg

  • When ComboFix has finished running, you will see a screen stating that it is preparing the log report.
  • This can take a while, so please be patient. If you see your Windows desktop disappear, do not worry. This is normal and ComboFix will restore your desktop before it is finished. Eventually you will see a new screen that states the program is almost finished and telling you the programs log file, or report, will be located at C:\ComboFix.txt.
  • When ComboFix has finished, it will automatically close the program and change your clock back to its original format. It will then display the log file automatically for you.
  • Now you just click on the edit menu and click on select all, then click on the edit menu again and click on copy. Then come to the forum in your reply and right click on your mouse and click on paste.

If for some reason, if you try to run a program or open a file and you get an error message saying "illegal operation attempted on a registry key that has been marked for deletion", please just reboot your pc and you'll be fine.


3.

I also would like to see a log that combofix produces but doesn't show you. Please navigate to C:\Qoobox and in that folder will be a file named add-remove programs.txt Please open that file and copy and paste the contents back here.

In your next reply please post:

The ComboFix log
The add-remove programs log
 
S

somebody480

New Member
The sound comes directly through the audio outputs, so just from my headphones. The only sound I hear from the PC itself is the sound of the GPU fan.

Also, I just figured out that spoilers exist! Yay!
But unfortunately, posts have a 100,000 character limit. I will split the contents into seperate posts.

TDSSKiller log part 1
15:03:53.0741 0x17bc TDSS rootkit removing tool 3.1.0.5 Jul 24 2015 12:29:57
15:03:59.0493 0x17bc ============================================================
15:03:59.0493 0x17bc Current date / time: 2015/11/14 15:03:59.0493
15:03:59.0493 0x17bc SystemInfo:
15:03:59.0493 0x17bc
15:03:59.0493 0x17bc OS Version: 6.1.7601 ServicePack: 1.0
15:03:59.0493 0x17bc Product type: Workstation
15:03:59.0508 0x17bc ComputerName: RYAN-PC
15:03:59.0508 0x17bc UserName: Ryan
15:03:59.0508 0x17bc Windows directory: C:\Windows
15:03:59.0508 0x17bc System windows directory: C:\Windows
15:03:59.0508 0x17bc Running under WOW64
15:03:59.0508 0x17bc Processor architecture: Intel x64
15:03:59.0508 0x17bc Number of processors: 8
15:03:59.0508 0x17bc Page size: 0x1000
15:03:59.0508 0x17bc Boot type: Normal boot
15:03:59.0508 0x17bc ============================================================
15:04:02.0311 0x17bc KLMD registered as C:\Windows\system32\drivers\87214855.sys
15:04:02.0623 0x17bc System UUID: {A13BA957-F2D9-8E99-8CE2-816A80B9CF97}
15:04:03.0138 0x17bc Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 ( 698.64 Gb ), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:04:03.0154 0x17bc ============================================================
15:04:03.0154 0x17bc \Device\Harddisk0\DR0:
15:04:03.0154 0x17bc MBR partitions:
15:04:03.0154 0x17bc \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1C5E800, BlocksNum 0x558E7000
15:04:03.0154 0x17bc ============================================================
15:04:03.0201 0x17bc C: <-> \Device\Harddisk0\DR0\Partition1
15:04:03.0201 0x17bc ============================================================
15:04:03.0201 0x17bc Initialize success
15:04:03.0201 0x17bc ============================================================
15:05:39.0446 0x16e4 ============================================================
15:05:39.0446 0x16e4 Scan started
15:05:39.0446 0x16e4 Mode: Manual; TDLFS;
15:05:39.0446 0x16e4 ============================================================
15:05:39.0446 0x16e4 KSN ping started
15:05:42.0228 0x16e4 KSN ping finished: true
15:05:43.0008 0x16e4 ================ Scan system memory ========================
15:05:43.0008 0x16e4 System memory - ok
15:05:43.0008 0x16e4 ================ Scan services =============================
15:05:43.0117 0x16e4 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
15:05:43.0117 0x16e4 1394ohci - ok
15:05:43.0148 0x16e4 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
15:05:43.0164 0x16e4 ACPI - ok
15:05:43.0179 0x16e4 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
15:05:43.0179 0x16e4 AcpiPmi - ok
15:05:43.0276 0x16e4 [ FC5B75CA6A1DA31EDD4F8D53F5540B98, CDC445F2790ADFC4C5568C40D4DA8BB95CD71991665B38AEC3D84571C99C3520 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:05:43.0276 0x16e4 AdobeARMservice - ok
15:05:43.0401 0x16e4 [ 280A526E8111AC6A5BCC1A059E1E0340, FB92DDAE29A097D148AB23D8A0BD2B9E662EC1DBF0DA8B716374D6919B4C646F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
15:05:43.0416 0x16e4 AdobeFlashPlayerUpdateSvc - ok
15:05:43.0432 0x16e4 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
15:05:43.0448 0x16e4 adp94xx - ok
15:05:43.0463 0x16e4 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys
15:05:43.0479 0x16e4 adpahci - ok
15:05:43.0494 0x16e4 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
15:05:43.0494 0x16e4 adpu320 - ok
15:05:43.0635 0x16e4 [ CAC04FF26BD3D6521BE79B5B4EB2E53A, 35E48845D5C2D638130B8BD4E953C709C81B0B3AE1C89372A01484D0CC8094A3 ] AdvancedSystemCareService7 C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCService.exe
15:05:43.0650 0x16e4 AdvancedSystemCareService7 - ok
15:05:43.0697 0x16e4 [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
15:05:43.0697 0x16e4 AeLookupSvc - ok
15:05:43.0746 0x16e4 [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD C:\Windows\system32\drivers\afd.sys
15:05:43.0762 0x16e4 AFD - ok
15:05:43.0777 0x16e4 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
15:05:43.0793 0x16e4 agp440 - ok
15:05:43.0808 0x16e4 [ 8B6625D53C18774F0102F690E285B5E8, C088C5A6584E95B52CB28D5D31A70A684C01C85248DF1AC39F14EDFE0DB54432 ] AiChargerPlus C:\Windows\system32\DRIVERS\AiChargerPlus.sys
15:05:43.0808 0x16e4 AiChargerPlus - ok
15:05:43.0855 0x16e4 [ 44F360B65C37A42EB5B71C2E5179FDD5, A7E65515FEE1698C96F647111F5C7D009C5FAC9A1F62D027802861A699AF1F93 ] aksdf C:\Windows\system32\drivers\aksdf.sys
15:05:43.0855 0x16e4 aksdf - ok
15:05:43.0871 0x16e4 [ BC61697103C9EFC3DBA83777CEA8E76B, 15F55C9E4ACB695A5A9BEF52D69AFE9D8D50F8307B81349FB4300368B52493D3 ] aksfridge C:\Windows\system32\drivers\aksfridge.sys
15:05:43.0871 0x16e4 aksfridge - ok
15:05:43.0902 0x16e4 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
15:05:43.0902 0x16e4 ALG - ok
15:05:43.0933 0x16e4 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
15:05:43.0933 0x16e4 aliide - ok
15:05:43.0964 0x16e4 [ E019017558B28A707119F8545AD1A1C0, 7A080DB2BDD1AE7E849EE79BF42B737D78A4F6EA6D07F61D6E994D7A383E9551 ] ambakdrv C:\Windows\system32\ambakdrv.sys
15:05:43.0964 0x16e4 ambakdrv - ok
15:05:44.0027 0x16e4 [ 606C8F129FE18D6E3EA2FD542D43D72D, 1BDB9B1C3C8345429FFF25189DCA16F4174F29B5C5DFD5AEB5C277CD4E6EBCA8 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
15:05:44.0042 0x16e4 AMD External Events Utility - ok
15:05:44.0058 0x16e4 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
15:05:44.0058 0x16e4 amdide - ok
15:05:44.0105 0x16e4 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
15:05:44.0105 0x16e4 AmdK8 - ok
15:05:44.0152 0x16e4 [ 99DA2A5AF036F792CE0FFE3C1B2223BD, 8DDD8A32386D8C52BC83221043FFBEF547C22E8EAC7540C734F89E2660F60AD4 ] amdkmafd C:\Windows\system32\DRIVERS\amdkmafd.sys
15:05:44.0152 0x16e4 amdkmafd - ok
15:05:44.0167 0x16e4 amdkmdag - ok
15:05:44.0198 0x16e4 [ C0C27A1094F6EA978FB2CAACFDE0E594, 9B481D55ED3D55A975CB1EB32DD0DB9AD032D592585A5799F81918EFB7843AAE ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
15:05:44.0214 0x16e4 amdkmdap - ok
15:05:44.0270 0x16e4 [ 3F11DB5FF2B4E52CA4B5979A37B97A6F, 59350E37AB2FE8D7290B0B9A4C84ADBC69A4EBCEA5AD208E2E5D047C8EE5B65A ] amdkmpfd C:\Windows\system32\DRIVERS\amdkmpfd.sys
15:05:44.0272 0x16e4 amdkmpfd - ok
15:05:44.0288 0x16e4 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
15:05:44.0289 0x16e4 AmdPPM - ok
15:05:44.0320 0x16e4 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
15:05:44.0322 0x16e4 amdsata - ok
15:05:44.0334 0x16e4 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
15:05:44.0338 0x16e4 amdsbs - ok
15:05:44.0352 0x16e4 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
15:05:44.0352 0x16e4 amdxata - ok
15:05:44.0365 0x16e4 [ 46014EDFDC8AF8733E14947448D122C5, 8CE2BD29CF7230A624745334A76F5F8C2E5C01EEDB2B803F9468771BC9DCBC4D ] ammntdrv C:\Windows\system32\ammntdrv.sys
15:05:44.0368 0x16e4 ammntdrv - ok
15:05:44.0431 0x16e4 [ 1D0606CCD25103E215D8A2167BA3A38B, 672F6AF4C05C682332CE7A0383EC115B72A5FAE1CC12A6F0ADFDD36D59A26515 ] AmUStor C:\Windows\system32\drivers\AmUStor.SYS
15:05:44.0431 0x16e4 AmUStor - ok
15:05:44.0493 0x16e4 [ 7CD08E63219E00BB206077F5BA708677, E8F4031E5E524C60D5853B5DE3AC37E45F28B490665F0CD2016754EDCFA4B2F2 ] amwrtdrv C:\Windows\system32\amwrtdrv.sys
15:05:44.0493 0x16e4 amwrtdrv - ok
15:05:44.0540 0x16e4 [ 27DABFB4A6B0140C34DBEC713469592B, A355170D353AFBF0DE4EF53282F8404788FBBD0E2A1B7282B1B2925923E83141 ] AppID C:\Windows\system32\drivers\appid.sys
15:05:44.0540 0x16e4 AppID - ok
15:05:44.0556 0x16e4 [ ABC373B9C6275D45F17DB559408FFD1B, 12B355393BEBE2D1D24D7A9DA5E69E03E334899407503BC1CADCF7BE39828223 ] AppIDSvc C:\Windows\System32\appidsvc.dll
15:05:44.0556 0x16e4 AppIDSvc - ok
15:05:44.0587 0x16e4 [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo C:\Windows\System32\appinfo.dll
15:05:44.0587 0x16e4 Appinfo - ok
15:05:44.0634 0x16e4 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys
15:05:44.0634 0x16e4 arc - ok
15:05:44.0655 0x16e4 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys
15:05:44.0655 0x16e4 arcsas - ok
15:05:44.0733 0x16e4 [ 6E3F4538B33BC19259E99BE1826286A3, 90B85FB8CD90451F4B09082EDEC835652A46030CC33C587F502C27342FEE7454 ] asComSvc C:\Program Files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe
15:05:44.0749 0x16e4 asComSvc - ok
15:05:44.0796 0x16e4 [ E536856E96A7605EBF580D62A868E5FE, 70D0F6ECB05E923C1B274605CB3320091D35D7622003FF7E4806645519C70F01 ] ASGT C:\Windows\SysWOW64\ASGT.exe
15:05:44.0796 0x16e4 ASGT - ok
15:05:44.0842 0x16e4 [ A63173897EA1A73A75D0E65036DE5B15, 07A83172B525DFC895056612F542420F4DF3C6192624C5B3141C726501163912 ] asHmComSvc C:\Program Files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe
15:05:44.0858 0x16e4 asHmComSvc - ok
15:05:44.0889 0x16e4 [ EDAA17CE771C696655B6585F7CAD2100, 31F4C6A367AE384E97516CB24F9FCCAA4AA12AEF410CB0D06665EB8C3BBDC3EF ] ASInsHelp C:\Windows\SysWow64\drivers\AsInsHelp64.sys
15:05:44.0889 0x16e4 ASInsHelp - ok
15:05:44.0907 0x16e4 [ FEF9DD9EA587F8886ADE43C1BEFBDAFE, DDE6F28B3F7F2ABBEE59D4864435108791631E9CB4CDFB1F178E5AA9859956D8 ] AsIO C:\Windows\syswow64\drivers\AsIO.sys
15:05:44.0908 0x16e4 AsIO - ok
15:05:44.0958 0x16e4 [ 9DC72F5E31E135D1A1DD5969D448883F, E32B7F86C9217BA57AB553D3FF77BC75ABF20848A75C7266D4E321BECD930758 ] asmthub3 C:\Windows\system32\DRIVERS\asmthub3.sys
15:05:44.0960 0x16e4 asmthub3 - ok
15:05:44.0976 0x16e4 [ F5848776EDCD95FBCC4FD430F5998688, 5B6F1EC37D6D4F82143C000A98A78CFACD2489B5426280B4C75E0E1D95ACECB9 ] asmtxhci C:\Windows\system32\DRIVERS\asmtxhci.sys
15:05:44.0981 0x16e4 asmtxhci - ok
15:05:45.0082 0x16e4 [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:05:45.0117 0x16e4 aspnet_state - ok
15:05:45.0175 0x16e4 [ 5C31DFB196CB3A488A041881634D86D2, 419ABEED7FB7CEBBA264802D2F727D18F999CEDA566A0830C38A69AC1680F3EA ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe
15:05:45.0209 0x16e4 AsSysCtrlService - ok
15:05:45.0231 0x16e4 [ 1392B92179B07B672720763D9B1028A5, B4D47EA790920A4531E3DF5A4B4B0721B7FEA6B49A35679F0652F1E590422602 ] AsUpIO C:\Windows\syswow64\drivers\AsUpIO.sys
15:05:45.0231 0x16e4 AsUpIO - ok
15:05:45.0247 0x16e4 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
15:05:45.0247 0x16e4 AsyncMac - ok
15:05:45.0262 0x16e4 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
15:05:45.0262 0x16e4 atapi - ok
15:05:45.0361 0x16e4 [ C24A645AEDBDF5FA0A23F7581C6F9C63, 45849AC265968678556FEA0183FDAA1B22D08605041DF3D239821C3689E0AB30 ] athur C:\Windows\system32\DRIVERS\athurx.sys
15:05:45.0392 0x16e4 athur - ok
15:05:45.0470 0x16e4 [ F270AFC3848C54C67E3BFB892CE9B9C6, BF5F087D2677E8D75DB34335B54496A3C3AFBCE5A019C52B9EB2B1D19A0803B1 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
15:05:45.0470 0x16e4 AtiHDAudioService - ok
15:05:45.0532 0x16e4 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:05:45.0548 0x16e4 AudioEndpointBuilder - ok
15:05:45.0564 0x16e4 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
15:05:45.0564 0x16e4 AudioSrv - ok
15:05:45.0595 0x16e4 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
15:05:45.0595 0x16e4 AxInstSV - ok
15:05:45.0626 0x16e4 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
15:05:45.0642 0x16e4 b06bdrv - ok
15:05:45.0657 0x16e4 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
15:05:45.0657 0x16e4 b57nd60a - ok
15:05:45.0720 0x16e4 [ FB6F64FA0C5A2EF8179AEC0C13FA1E3F, 8423EF8542CB12A9BB895EBDA7F023C22C980466D075A9309A652CEFC89AC608 ] Backupper Service C:\Program Files (x86)\AOMEI Backupper Standard Edition 2.0.2\ABService.exe
15:05:45.0720 0x16e4 Backupper Service - ok
15:05:45.0737 0x16e4 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
15:05:45.0737 0x16e4 BDESVC - ok
15:05:45.0768 0x16e4 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
15:05:45.0768 0x16e4 Beep - ok
15:05:45.0815 0x16e4 [ C895B9AA6EE9DBDE5D98684425A14647, FB9C906D3EAEEC6F46B1862D2348B1FB501C49D78F4CC4A7DE060BAF413EB782 ] BEService C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
15:05:45.0815 0x16e4 BEService - ok
15:05:45.0846 0x16e4 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
15:05:45.0862 0x16e4 BFE - ok
15:05:45.0893 0x16e4 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\system32\qmgr.dll
15:05:45.0909 0x16e4 BITS - ok
15:05:45.0940 0x16e4 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
15:05:45.0940 0x16e4 blbdrive - ok
15:05:45.0956 0x16e4 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
15:05:45.0956 0x16e4 bowser - ok
15:05:45.0971 0x16e4 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
15:05:45.0971 0x16e4 BrFiltLo - ok
15:05:45.0987 0x16e4 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
15:05:45.0987 0x16e4 BrFiltUp - ok
15:05:46.0002 0x16e4 [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
15:05:46.0002 0x16e4 BridgeMP - ok
15:05:46.0049 0x16e4 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
15:05:46.0049 0x16e4 Browser - ok
15:05:46.0065 0x16e4 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
15:05:46.0080 0x16e4 Brserid - ok
15:05:46.0096 0x16e4 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
15:05:46.0096 0x16e4 BrSerWdm - ok
15:05:46.0112 0x16e4 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
15:05:46.0127 0x16e4 BrUsbMdm - ok
15:05:46.0127 0x16e4 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
15:05:46.0127 0x16e4 BrUsbSer - ok
15:05:46.0158 0x16e4 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
15:05:46.0158 0x16e4 BthEnum - ok
15:05:46.0174 0x16e4 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
15:05:46.0174 0x16e4 BTHMODEM - ok
15:05:46.0205 0x16e4 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
15:05:46.0205 0x16e4 BthPan - ok
15:05:46.0268 0x16e4 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
15:05:46.0283 0x16e4 BTHPORT - ok
15:05:46.0299 0x16e4 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
15:05:46.0299 0x16e4 bthserv - ok
15:05:46.0330 0x16e4 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
15:05:46.0330 0x16e4 BTHUSB - ok
15:05:46.0361 0x16e4 [ BA1498A4C7E7372654433648A61434A7, FBE7809961BDC60A35EAA43B2FC0C241E6A30717B8D5A5D891ED9DEB18B79615 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys
15:05:46.0361 0x16e4 btwaudio - ok
15:05:46.0377 0x16e4 [ BA66CEB74D49E00820C2C8D34C9CAA83, 52B24CA0A64C42255555AD8307DD4244C94731AD01B0491CA65513AA679F2EA7 ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys
15:05:46.0377 0x16e4 btwavdt - ok
15:05:46.0455 0x16e4 [ 541590DC8948E19F7F9F7C8E2E067D99, DF82FBCE64839F9F3D011080C70A5D8A98F147FA05516D322F1CD605CE17578D ] btwdins C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
15:05:46.0470 0x16e4 btwdins - ok
15:05:46.0486 0x16e4 [ 6149301DC3F81D6F9667A3FBAC410975, 120E201AFB07054C7F6321461D194843C695012431DBD791E36BBF73FDD41E8A ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys
15:05:46.0486 0x16e4 btwl2cap - ok
15:05:46.0502 0x16e4 [ 138771EA158E3D7A14B0E0E357C8CA93, 7185A231958BFD80EF8F374C4E76463CDBC7A1B8ABEDF75A9D5BE847CD13A1BE ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys
15:05:46.0502 0x16e4 btwrchid - ok
15:05:46.0517 0x16e4 catchme - ok
15:05:46.0564 0x16e4 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
15:05:46.0580 0x16e4 cdfs - ok
15:05:46.0595 0x16e4 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
15:05:46.0595 0x16e4 cdrom - ok
15:05:46.0626 0x16e4 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
15:05:46.0626 0x16e4 CertPropSvc - ok
15:05:46.0642 0x16e4 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys
15:05:46.0642 0x16e4 circlass - ok
15:05:46.0689 0x16e4 [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
15:05:46.0704 0x16e4 CLFS - ok
15:05:46.0785 0x16e4 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:05:46.0785 0x16e4 clr_optimization_v2.0.50727_32 - ok
15:05:46.0848 0x16e4 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:05:46.0863 0x16e4 clr_optimization_v2.0.50727_64 - ok
15:05:46.0941 0x16e4 [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:05:47.0222 0x16e4 clr_optimization_v4.0.30319_32 - ok
15:05:47.0302 0x16e4 [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:05:47.0427 0x16e4 clr_optimization_v4.0.30319_64 - ok
15:05:47.0443 0x16e4 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys
15:05:47.0443 0x16e4 CmBatt - ok
15:05:47.0474 0x16e4 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
15:05:47.0474 0x16e4 cmdide - ok
15:05:47.0536 0x16e4 [ EC0511BB85BAA42A9734011685A6732C, 10B52F0860CCB3AA0FC34DDA5C5538BFCF7B6D40738B7756297237FD2D9E01C1 ] CNG C:\Windows\system32\Drivers\cng.sys
15:05:47.0536 0x16e4 CNG - ok
15:05:47.0552 0x16e4 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys
15:05:47.0567 0x16e4 Compbatt - ok
15:05:47.0567 0x16e4 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
15:05:47.0583 0x16e4 CompositeBus - ok
15:05:47.0583 0x16e4 COMSysApp - ok
15:05:47.0708 0x16e4 [ 08F934092E0429BADF88E9F91DB0F61E, 6E9091C006FFFF261DC61C8E9A45219E47C351296E5355FC4B7242F30E1DDFE3 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe
15:05:47.0723 0x16e4 cphs - ok
15:05:47.0739 0x16e4 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
15:05:47.0739 0x16e4 crcdisk - ok
15:05:47.0786 0x16e4 [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
15:05:47.0786 0x16e4 CryptSvc - ok
15:05:47.0833 0x16e4 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
15:05:47.0848 0x16e4 DcomLaunch - ok
15:05:47.0879 0x16e4 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
15:05:47.0895 0x16e4 defragsvc - ok
15:05:47.0989 0x16e4 [ 2B9A817DC1BDAD9CE5495099B6A7136A, 6D040069C6CD249A4113E4BDD16658D02685F6018F804654934A03F5E2D161A8 ] Desura Install Service C:\Program Files (x86)\Common Files\Desura\desura_service.exe
15:05:47.0989 0x16e4 Desura Install Service - ok
15:05:48.0004 0x16e4 [ 0A403702CB00432AC818523CD416BF67, 715DF68750AA949DB199A6B037E9B20BF039DC72E5A9F5F946AB4D786CD844C3 ] Device Handle Service C:\Windows\SysWOW64\AsHookDevice.exe
15:05:48.0004 0x16e4 Device Handle Service - ok
15:05:48.0035 0x16e4 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
15:05:48.0035 0x16e4 DfsC - ok
15:05:48.0051 0x16e4 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
15:05:48.0067 0x16e4 Dhcp - ok
15:05:48.0160 0x16e4 [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack C:\Windows\system32\diagtrack.dll
15:05:48.0191 0x16e4 DiagTrack - ok
15:05:48.0207 0x16e4 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
15:05:48.0207 0x16e4 discache - ok
15:05:48.0223 0x16e4 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys
15:05:48.0223 0x16e4 Disk - ok
15:05:48.0254 0x16e4 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
15:05:48.0254 0x16e4 Dnscache - ok
15:05:48.0269 0x16e4 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
15:05:48.0269 0x16e4 dot3svc - ok
15:05:48.0269 0x16e4 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
15:05:48.0285 0x16e4 DPS - ok
15:05:48.0301 0x16e4 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
15:05:48.0316 0x16e4 drmkaud - ok
15:05:48.0363 0x16e4 [ 6A0E850DDCB136AA3D2FB7234382DF12, C01863E95F45E1B74AC65C9CD12C8DC769299218255B3C94E3EBF58C4D79FEF3 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
15:05:48.0363 0x16e4 dtsoftbus01 - ok
15:05:48.0441 0x16e4 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
15:05:48.0457 0x16e4 DXGKrnl - ok
15:05:48.0472 0x16e4 EagleX64 - ok
15:05:48.0503 0x16e4 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
15:05:48.0519 0x16e4 EapHost - ok
15:05:48.0519 0x16e4 EasyAntiCheat - ok
15:05:48.0613 0x16e4 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys
15:05:48.0691 0x16e4 ebdrv - ok
15:05:48.0737 0x16e4 [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] EFS C:\Windows\System32\lsass.exe
15:05:48.0753 0x16e4 EFS - ok
15:05:48.0815 0x16e4 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
15:05:48.0831 0x16e4 ehRecvr - ok
15:05:48.0847 0x16e4 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe
15:05:48.0847 0x16e4 ehSched - ok
15:05:48.0878 0x16e4 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys
15:05:48.0909 0x16e4 elxstor - ok
15:05:48.0925 0x16e4 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
15:05:48.0925 0x16e4 ErrDev - ok
15:05:48.0971 0x16e4 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
15:05:49.0003 0x16e4 EventSystem - ok
15:05:49.0034 0x16e4 [ A0539478593A00AA64E600CF7E19F195, BD835D70F3EE9BFEFFABE747AD65BC97C73AD8042F653BF93535277FB0CBD4CE ] EvolveVirtualAdapter C:\Windows\system32\DRIVERS\evolve.sys
15:05:49.0034 0x16e4 EvolveVirtualAdapter - ok
15:05:49.0049 0x16e4 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
15:05:49.0065 0x16e4 exfat - ok
15:05:49.0081 0x16e4 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
15:05:49.0096 0x16e4 fastfat - ok
15:05:49.0127 0x16e4 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
15:05:49.0143 0x16e4 Fax - ok
15:05:49.0174 0x16e4 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys
15:05:49.0174 0x16e4 fdc - ok
15:05:49.0190 0x16e4 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
15:05:49.0190 0x16e4 fdPHost - ok
15:05:49.0205 0x16e4 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
15:05:49.0205 0x16e4 FDResPub - ok
15:05:49.0237 0x16e4 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
15:05:49.0237 0x16e4 FileInfo - ok
15:05:49.0268 0x16e4 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
15:05:49.0268 0x16e4 Filetrace - ok
15:05:49.0268 0x16e4 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
15:05:49.0268 0x16e4 flpydisk - ok
15:05:49.0349 0x16e4 [ 717F0CF079AF4AF09BCB86B14AC740FF, CEE4F6CA8BC35E3910BADB0A271CA5D27D51E18E0C11E70B943EABB2499A818B ] FLService C:\Windows\SysWow64\WinFLService.exe
15:05:49.0364 0x16e4 FLService - ok
15:05:49.0380 0x16e4 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
15:05:49.0380 0x16e4 FltMgr - ok
15:05:49.0474 0x16e4 [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache C:\Windows\system32\FntCache.dll
15:05:49.0489 0x16e4 FontCache - ok
15:05:49.0536 0x16e4 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:05:49.0536 0x16e4 FontCache3.0.0.0 - ok
15:05:49.0552 0x16e4 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
15:05:49.0552 0x16e4 FsDepends - ok
15:05:49.0598 0x16e4 [ B16B626996C74B564005BA855C5DEE90, B432C669EB610C262B18F3F8308EEE1B910DE7F7BC2A8EB5483419DC52A07AE1 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys
15:05:49.0598 0x16e4 fssfltr - ok
15:05:49.0692 0x16e4 [ 812E1BA5C52A78F13EA6AA10DF708B1D, CF1C4D8E072CF0D66C977DFA4C852E5CE757843BEAF5D29454D26A9AC5766E61 ] fsssvc C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
15:05:49.0723 0x16e4 fsssvc - ok
15:05:49.0739 0x16e4 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
15:05:49.0739 0x16e4 Fs_Rec - ok
15:05:49.0786 0x16e4 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
15:05:49.0801 0x16e4 fvevol - ok
15:05:49.0817 0x16e4 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
15:05:49.0832 0x16e4 gagp30kx - ok
15:05:49.0879 0x16e4 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
15:05:49.0895 0x16e4 gpsvc - ok
15:05:50.0004 0x16e4 [ BE99918C2211431C6424EFFD087FD9C7, 2994D8B89E41A3C1D6BA01B032C3B16EF11401D57BBD45C124F7B00004705D19 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:05:50.0004 0x16e4 gupdate - ok
15:05:50.0004 0x16e4 [ BE99918C2211431C6424EFFD087FD9C7, 2994D8B89E41A3C1D6BA01B032C3B16EF11401D57BBD45C124F7B00004705D19 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:05:50.0004 0x16e4 gupdatem - ok
15:05:50.0020 0x16e4 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B, F9995CFEC7BBFE10B06EEE04CA6B49658275C43096E57747BFF9C2C31A0F9011 ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
15:05:50.0035 0x16e4 hamachi - ok
15:05:50.0051 0x16e4 [ D619BA1712B83D14149850E758B835AD, AD18807EC4DA6FA8C6846C1A0D914071FD59BD3273AFC103E5F2A7141F18C5F4 ] hardlock C:\Windows\system32\drivers\hardlock.sys
15:05:50.0051 0x16e4 hardlock - ok
15:05:50.0066 0x16e4 hasplms - ok
15:05:50.0098 0x16e4 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
15:05:50.0098 0x16e4 hcw85cir - ok
15:05:50.0113 0x16e4 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:05:50.0129 0x16e4 HdAudAddService - ok
15:05:50.0144 0x16e4 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
15:05:50.0144 0x16e4 HDAudBus - ok
15:05:50.0160 0x16e4 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
15:05:50.0160 0x16e4 HidBatt - ok
15:05:50.0160 0x16e4 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys
15:05:50.0176 0x16e4 HidBth - ok
15:05:50.0176 0x16e4 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys
15:05:50.0191 0x16e4 HidIr - ok
15:05:50.0207 0x16e4 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\System32\hidserv.dll
15:05:50.0207 0x16e4 hidserv - ok
15:05:50.0254 0x16e4 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
15:05:50.0254 0x16e4 HidUsb - ok
15:05:50.0347 0x16e4 [ F5BC92234596197A408D8E2B1ACFB024, 9FF520D7A0F2124A9F4172B79974869A53F0FD591D6494FDF5D604E64E513935 ] HiPatchService C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
15:05:50.0363 0x16e4 HiPatchService - ok
15:05:50.0394 0x16e4 [ 545EE654B04D52AF2E7F5F393D1F7D75, 3035171E5E54F6E6FB8BFCA237FCE5564BE3F58EEDA54441334FF3B71EEE1D24 ] hitmanpro37 C:\Windows\system32\drivers\hitmanpro37.sys
15:05:50.0394 0x16e4 hitmanpro37 - ok
15:05:50.0425 0x16e4 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
15:05:50.0425 0x16e4 hkmsvc - ok
15:05:50.0425 0x16e4 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:05:50.0441 0x16e4 HomeGroupListener - ok
15:05:50.0472 0x16e4 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:05:50.0472 0x16e4 HomeGroupProvider - ok
15:05:50.0503 0x16e4 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
15:05:50.0503 0x16e4 HpSAMD - ok
15:05:50.0566 0x16e4 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
15:05:50.0581 0x16e4 HTTP - ok
15:05:50.0675 0x16e4 [ E5805896A55D4166C20F216249F40FA3, F426BF60D5B916E7A778EF24C49FE1FFE1B2977C2ABD2977FD5C38C6E6CB139F ] HWiNFO32 C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS
15:05:50.0675 0x16e4 HWiNFO32 - ok
15:05:50.0675 0x16e4 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
15:05:50.0675 0x16e4 hwpolicy - ok
15:05:50.0706 0x16e4 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
15:05:50.0722 0x16e4 i8042prt - ok
15:05:50.0739 0x16e4 [ D7921D5A870B11CC1ADAB198A519D50A, 5DF99EB5D5504E9D9EB21658E8B4A58DEE2AD143A1875DB7F9B7BF4877FCB57F ] iaStor C:\Windows\system32\drivers\iaStor.sys
15:05:50.0739 0x16e4 iaStor - ok
15:05:50.0755 0x16e4 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
15:05:50.0755 0x16e4 iaStorV - ok
15:05:50.0833 0x16e4 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:05:50.0848 0x16e4 idsvc - ok
15:05:50.0895 0x16e4 IEEtwCollectorService - ok
15:05:51.0053 0x16e4 [ 8C44E6B688790E2AD3846C97661C54F1, CB487D167EDA3C1E30BD5FB8F98C15EB9E75A6FB793009C2F1BBCAAB4285F772 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
15:05:51.0209 0x16e4 igfx - ok
15:05:51.0240 0x16e4 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys
15:05:51.0240 0x16e4 iirsp - ok
15:05:51.0304 0x16e4 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
15:05:51.0308 0x16e4 IKEEXT - ok
15:05:51.0339 0x16e4 [ DD587A55390ED2295BCE6D36AD567DA9, AEB7DCB8EF89BEE8D9649A05FC482B1E4E3F44243D57A2577C862EB69166C48E ] Impcd C:\Windows\system32\drivers\Impcd.sys
15:05:51.0339 0x16e4 Impcd - ok
15:05:51.0479 0x16e4 [ D2B1DA73B6E8769A1BE1A55693B7F1B3, FE26FEAD6A45E4596A7CA9689B66511C4BCB4686A1914505257648DCE048CA26 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:05:51.0557 0x16e4 IntcAzAudAddService - ok
15:05:51.0622 0x16e4 [ FC727061C0F47C8059E88E05D5C8E381, C7A3782F5D86C7FDE57AA1F2EE81638C5FC3072ACC6E572BA2EC7B3CFF389800 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys
15:05:51.0622 0x16e4 IntcDAud - ok
15:05:51.0653 0x16e4 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\DRIVERS\intelide.sys
15:05:51.0653 0x16e4 intelide - ok
15:05:51.0684 0x16e4 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
15:05:51.0684 0x16e4 intelppm - ok
15:05:51.0715 0x16e4 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
15:05:51.0715 0x16e4 IPBusEnum - ok
15:05:51.0731 0x16e4 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:05:51.0731 0x16e4 IpFilterDriver - ok
15:05:51.0793 0x16e4 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
15:05:51.0809 0x16e4 iphlpsvc - ok
15:05:51.0825 0x16e4 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
15:05:51.0825 0x16e4 IPMIDRV - ok
15:05:51.0840 0x16e4 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
15:05:51.0840 0x16e4 IPNAT - ok
15:05:51.0871 0x16e4 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
15:05:51.0871 0x16e4 IRENUM - ok
15:05:51.0887 0x16e4 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
15:05:51.0887 0x16e4 isapnp - ok
15:05:51.0918 0x16e4 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
15:05:51.0918 0x16e4 iScsiPrt - ok
15:05:51.0965 0x16e4 [ 75779002A6084C1A011E195E421A9C75, 03D84CE7E50EEA1DFB298F4CE3669F478920ECEB33513FE2DC16C8BF90DF3830 ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys
15:05:51.0965 0x16e4 iusb3hcs - ok
15:05:52.0043 0x16e4 [ CF9BA304B8047B9582D72D9BFEF42EAE, 13CAA4854DB4AE31E3F770BCE66DE97438EC304A981632DD6C1249DECA96D665 ] jswpsapi C:\Program Files (x86)\NETGEAR\WNA1100\jswpsapi.exe
15:05:52.0059 0x16e4 jswpsapi - ok
15:05:52.0074 0x16e4 [ 5BE640E88814B77A9E84B4549B5DCC2C, 2ECF73254D701EFCC135B81EC951A76BCE5E74435521A061B05E9445C8D3C843 ] JSWPSLWF C:\Windows\system32\DRIVERS\jswpslwfx.sys
15:05:52.0074 0x16e4 JSWPSLWF - ok
15:05:52.0090 0x16e4 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
15:05:52.0090 0x16e4 kbdclass - ok
15:05:52.0105 0x16e4 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
15:05:52.0105 0x16e4 kbdhid - ok
15:05:52.0121 0x16e4 [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] KeyIso C:\Windows\system32\lsass.exe
15:05:52.0121 0x16e4 KeyIso - ok
15:05:52.0168 0x16e4 [ BCC83F22805F560C8A487F2F296A78FE, B6729B9D85CC3B9377E3143FEF920EFAA82D152845A43074417E9266C9F5C1A8 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
15:05:52.0168 0x16e4 KSecDD - ok
15:05:52.0183 0x16e4 [ 33D52A96BEEE8AFCE9E07EEC9FE0C9DB, 5367B46A43296792A0E6294906D40511079D5CAA23F08D5A7EDE02C06AD34484 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
15:05:52.0183 0x16e4 KSecPkg - ok
15:05:52.0215 0x16e4 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
15:05:52.0215 0x16e4 ksthunk - ok
15:05:52.0246 0x16e4 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
15:05:52.0246 0x16e4 KtmRm - ok
15:05:52.0277 0x16e4 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\System32\srvsvc.dll
15:05:52.0293 0x16e4 LanmanServer - ok
15:05:52.0308 0x16e4 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:05:52.0324 0x16e4 LanmanWorkstation - ok
15:05:52.0386 0x16e4 [ 94AF1384A67B9FCF5651E70BC9D4C526, 9C025F7BBB5BBE9DAF3DEF2F6385CE77C8F413912C4D16930814F6D19B62B367 ] LGSHidFilt C:\Windows\system32\DRIVERS\LGSHidFilt.Sys
15:05:52.0386 0x16e4 LGSHidFilt - ok
15:05:52.0433 0x16e4 [ 8F4DA100274CF85D94FBA8CA76125255, 1ADA7C36C915CB9BD41CF291F8E6990746A83F4D2ABCC5CAF765A3CE388BE5E5 ] LGSUsbFilt C:\Windows\system32\DRIVERS\LGSUsbFilt.Sys
15:05:52.0433 0x16e4 LGSUsbFilt - ok
15:05:52.0605 0x16e4 [ 337FA50FFDED5E2BC94B36BF625AB681, BC77CCED8F2B52D26C7A2D7960FB5C1690F5D7E41013644C9226A85C9FF4FA2C ] LiveUpdateSvc C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
15:05:52.0636 0x16e4 LiveUpdateSvc - ok
15:05:52.0667 0x16e4 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
15:05:52.0667 0x16e4 lltdio - ok
15:05:52.0698 0x16e4 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
15:05:52.0714 0x16e4 lltdsvc - ok
15:05:52.0729 0x16e4 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
15:05:52.0729 0x16e4 lmhosts - ok
15:05:52.0841 0x16e4 [ E7B1D52CD77BF1C4608991F70C872F9F, 36D64AF4E5B06C45E56C131ACA64F2409F1C7D99516D2319919827E25A406FCC ] LMIGuardianSvc C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe
15:05:52.0841 0x16e4 LMIGuardianSvc - ok
15:05:52.0856 0x16e4 [ 0F28935ECF1FBDEC22BAF720A5A94564, A4E8E13FD7FE1882243AD7139D5E0925F09069616920382F952D79586A4936E7 ] LMIInfo C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys
15:05:52.0856 0x16e4 LMIInfo - ok
15:05:52.0887 0x16e4 [ 1A7F86CB54E5FC6668366A497D6227F3, 96E1C95BDCE1E7498C6CDFCB8F6F0FD7326BD14219AF29BB4EB9C2CECB90A110 ] LMIMaint C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe
15:05:52.0887 0x16e4 LMIMaint - ok
15:05:52.0934 0x16e4 [ 413ECDCFAD9A82804D3674C8D7EEC24E, C8A65ED0B079D16D1A4449E840B4A9475388FBE61B5A84DFEFC35F4FB3B9A9B1 ] lmimirr C:\Windows\system32\DRIVERS\lmimirr.sys
15:05:52.0934 0x16e4 lmimirr - ok
15:05:52.0950 0x16e4 LMIRfsClientNP - ok
15:05:52.0965 0x16e4 [ C57D3FAA50E6F395759FFB7C709BD944, 7B0B86F0E710934D57801E1F7BB048AD878F871147B2A16BBF81219A4022B499 ] LMIRfsDriver C:\Windows\system32\drivers\LMIRfsDriver.sys
15:05:52.0965 0x16e4 LMIRfsDriver - ok
15:05:53.0012 0x16e4 [ 98B16E756243BEA9410E32025B19C06F, C4F8663FF4C2F1123CC92D88004090AD06ED12FCD07706AE168333A33B269A53 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
15:05:53.0012 0x16e4 LMS - ok
15:05:53.0059 0x16e4 [ D3760BC17E1755091B7120CF32DBF56B, 2B31CA0CD838BEE0103054520E2FBEA2436A07D99E711B14543B85F3A511478F ] LogMeIn C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe
15:05:53.0059 0x16e4 LogMeIn - ok
15:05:53.0090 0x16e4 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
15:05:53.0090 0x16e4 LSI_FC - ok
15:05:53.0121 0x16e4 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
15:05:53.0121 0x16e4 LSI_SAS - ok
15:05:53.0137 0x16e4 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
15:05:53.0137 0x16e4 LSI_SAS2 - ok
15:05:53.0153 0x16e4 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
15:05:53.0153 0x16e4 LSI_SCSI - ok
15:05:53.0153 0x16e4 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
15:05:53.0168 0x16e4 luafv - ok
15:05:53.0293 0x16e4 [ DCCB796007C0AACDE1FDFFBE577E590F, DE08367DD2DF7F3390AB3323A2B226BEEF883C3C1D8D5797965C86463A4412D2 ] LULU Software CrashHandler C:\Program Files (x86)\Soda PDF 3D Reader\crash-handler-ws.exe
15:05:53.0311 0x16e4 LULU Software CrashHandler - ok
15:05:53.0342 0x16e4 [ B3944D06EB4B64D57BD7E5FE89415F58, D6A4D17A887F54EEB6138909D10CD708582B10A51F1094275F53C9FFC2447F5F ] LVPr2M64 C:\Windows\system32\DRIVERS\LVPr2M64.sys
15:05:53.0357 0x16e4 LVPr2M64 - ok
15:05:53.0357 0x16e4 [ B3944D06EB4B64D57BD7E5FE89415F58, D6A4D17A887F54EEB6138909D10CD708582B10A51F1094275F53C9FFC2447F5F ] LVPr2Mon C:\Windows\system32\DRIVERS\LVPr2M64.sys
15:05:53.0357 0x16e4 LVPr2Mon - ok
15:05:53.0404 0x16e4 [ A401CFF74982D8DF851F20307C806073, 1D7BA90C9E77FAAE59F60AB5310EC41D9C5B98F1F9A89A3CDB9169E6DEF565DA ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys
15:05:53.0404 0x16e4 LVRS64 - ok
15:05:53.0529 0x16e4 [ 13384CB5F5813E65F31078D6ABFAAF38, A6E7374C15CAECC273197BF62F8F926BA30E9509270A8470756F4710E1DEA126 ] LVUVC64 C:\Windows\system32\DRIVERS\lvuvc64.sys
15:05:53.0669 0x16e4 LVUVC64 - ok
15:05:53.0732 0x16e4 [ CFBC6C6D8A492697CABD1D353EE64933, DDAA844908324740C891EB8F08E2A8BB00457063B31C4A762745C1C2415FC12D ] MBAMProtector C:\Windows\system32\drivers\mbam.sys
15:05:53.0732 0x16e4 MBAMProtector - ok
15:05:53.0825 0x16e4 [ 40C126CB15FAB7D6C66490DCA9C1AED2, B32CEE2D2409232C245427D5E9647FDF59AF1D8AB5E8A98EE2D1F1314599FD14 ] MBAMService C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
15:05:53.0857 0x16e4 MBAMService - ok
15:05:53.0888 0x16e4 [ D61070CFAD43038DC56AEAD9BFE9CE2A, BD77AEF60E7FD2015CB14A464799304359547146C14A47F8D25274ACFA2E42D5 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
15:05:53.0903 0x16e4 MBAMWebAccessControl - ok
15:05:53.0968 0x16e4 [ 1704A8189EE5580AB147CFD25C5C8770, DFA076FD36B5CC844D4BE3B865E9A1F809E14CCB1D78D82A2D8D8EE38210E6EB ] McComponentHostService C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
15:05:53.0968 0x16e4 McComponentHostService - ok
15:05:53.0999 0x16e4 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
15:05:53.0999 0x16e4 Mcx2Svc - ok
15:05:54.0030 0x16e4 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys
15:05:54.0030 0x16e4 megasas - ok
15:05:54.0061 0x16e4 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
15:05:54.0061 0x16e4 MegaSR - ok
15:05:54.0108 0x16e4 [ 926C135CFB0C75B32FB714B5C0C58FAA, AF627CD125794B69D450D298D5608D357F2C91FB89EBFAA0DA2A0F07C6A304A8 ] MEIx64 C:\Windows\system32\DRIVERS\TeeDriverx64.sys
15:05:54.0108 0x16e4 MEIx64 - ok
15:05:54.0186 0x16e4 Microsoft SharePoint Workspace Audit Service - ok
15:05:54.0202 0x16e4 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
15:05:54.0217 0x16e4 MMCSS - ok
15:05:54.0233 0x16e4 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
15:05:54.0233 0x16e4 Modem - ok
15:05:54.0280 0x16e4 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
15:05:54.0280 0x16e4 monitor - ok
15:05:54.0311 0x16e4 [ C030F9E822A057C1A7A9BB4EA3E8877E, 2CCEC87DEB972B6B0196A08D3781002929E9107137FE3A61F1626D3BEE26630A ] MotioninJoyXFilter C:\Windows\system32\DRIVERS\MijXfilt.sys
15:05:54.0327 0x16e4 MotioninJoyXFilter - ok
15:05:54.0342 0x16e4 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
15:05:54.0342 0x16e4 mouclass - ok
15:05:54.0358 0x16e4 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
15:05:54.0358 0x16e4 mouhid - ok
15:05:54.0405 0x16e4 [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
15:05:54.0405 0x16e4 mountmgr - ok
15:05:54.0498 0x16e4 [ 22A7042C70F90F8261840740DDBB5176, AD0075C97D2D7C568D5CFB1C3A02DCE3BC01941844A759B29CD4DE4AF2F5FC45 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:05:54.0498 0x16e4 MozillaMaintenance - ok
15:05:54.0529 0x16e4 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
15:05:54.0529 0x16e4 mpio - ok
15:05:54.0545 0x16e4 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
15:05:54.0545 0x16e4 mpsdrv - ok
15:05:54.0592 0x16e4 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
15:05:54.0607 0x16e4 MpsSvc - ok
15:05:54.0654 0x16e4 [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
15:05:54.0654 0x16e4 MRxDAV - ok
15:05:54.0701 0x16e4 [ 73ADDCC406B86E7DA4416691E8E74BDA, 4EC970B9095E6DAA79BF7EFB92DF3F2C0AB0C46739AA36C171A262E05B63CBB5 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
15:05:54.0701 0x16e4 mrxsmb - ok
15:05:54.0717 0x16e4 [ 7C81098FBAF2EAF5B54B939F832B0F61, 999435DF4638ECB136D5BF1B84305A84B215BAB542E4D5301E57D28D507E11B3 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:05:54.0732 0x16e4 mrxsmb10 - ok
15:05:54.0779 0x16e4 [ ACB763673BCCE6C7B3B8F858C9FE4F1F, CCD49558F8A01A225AEAE60BF299BCA6E9399E39F4F553FABC36CADB164BBBC0 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:05:54.0779 0x16e4 mrxsmb20 - ok
15:05:54.0810 0x16e4 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
15:05:54.0810 0x16e4 msahci - ok
15:05:54.0841 0x16e4 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
15:05:54.0857 0x16e4 msdsm - ok
15:05:54.0873 0x16e4 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
15:05:54.0873 0x16e4 MSDTC - ok
15:05:54.0888 0x16e4 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
15:05:54.0888 0x16e4 Msfs - ok
15:05:54.0904 0x16e4 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
15:05:54.0904 0x16e4 mshidkmdf - ok
15:05:54.0919 0x16e4 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
15:05:54.0919 0x16e4 msisadrv - ok
15:05:54.0966 0x16e4 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
15:05:54.0966 0x16e4 MSiSCSI - ok
15:05:54.0966 0x16e4 msiserver - ok
15:05:54.0997 0x16e4 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
15:05:54.0997 0x16e4 MSKSSRV - ok
15:05:55.0013 0x16e4 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
15:05:55.0029 0x16e4 MSPCLOCK - ok
15:05:55.0029 0x16e4 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
15:05:55.0029 0x16e4 MSPQM - ok
15:05:55.0060 0x16e4 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
15:05:55.0060 0x16e4 MsRPC - ok
15:05:55.0075 0x16e4 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
15:05:55.0075 0x16e4 mssmbios - ok
15:05:55.0107 0x16e4 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
15:05:55.0107 0x16e4 MSTEE - ok
15:05:55.0107 0x16e4 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
15:05:55.0107 0x16e4 MTConfig - ok
15:05:55.0122 0x16e4 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
15:05:55.0122 0x16e4 Mup - ok
15:05:55.0153 0x16e4 [ B54B122DCEA87B66C6DC4A364FB1453F, 98E9D9CBF6A58DBED833379F5DF76187BBC9BE16D66A84D73A7B5AA767355B04 ] mv91cons C:\Windows\system32\drivers\mv91cons.sys
15:05:55.0153 0x16e4 mv91cons - ok
15:05:55.0169 0x16e4 [ 34D08C9C64F657D194961E96C47E9C69, FB56083CDF23E1601EC7EC5A74ADFFF1BE304BF4F4B485DE2E9609C5C14FACC4 ] mv91xx C:\Windows\system32\drivers\mv91xx.sys
15:05:55.0185 0x16e4 mv91xx - ok
15:05:55.0216 0x16e4 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
15:05:55.0216 0x16e4 napagent - ok
15:05:55.0247 0x16e4 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
15:05:55.0247 0x16e4 NativeWifiP - ok
15:05:55.0294 0x16e4 [ 81C9DD4E271F8B26669AB1480431AC03, F38DBBFC759867BB4253505C370F70007C6564D60A49772E6BD55E6430B5F269 ] nbdrv C:\Windows\system32\DRIVERS\nbdrv.sys
15:05:55.0294 0x16e4 nbdrv - ok
15:05:55.0359 0x16e4 [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS C:\Windows\system32\drivers\ndis.sys
15:05:55.0375 0x16e4 NDIS - ok
15:05:55.0406 0x16e4 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
15:05:55.0406 0x16e4 NdisCap - ok
15:05:55.0422 0x16e4 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
15:05:55.0422 0x16e4 NdisTapi - ok
15:05:55.0437 0x16e4 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
15:05:55.0437 0x16e4 Ndisuio - ok
15:05:55.0453 0x16e4 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
15:05:55.0453 0x16e4 NdisWan - ok
15:05:55.0468 0x16e4 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
15:05:55.0468 0x16e4 NDProxy - ok
15:05:55.0500 0x16e4 [ DC6530A291D4BDF6DF399F1F128E7F8F, 85123D802063383646EEBC60F4ABBCDBA2AE3180E99A8A99C024B1EBB0C6690E ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
15:05:55.0500 0x16e4 Net Driver HPZ12 - ok
15:05:55.0515 0x16e4 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
15:05:55.0515 0x16e4 NetBIOS - ok
15:05:55.0531 0x16e4 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
15:05:55.0531 0x16e4 NetBT - ok
15:05:55.0562 0x16e4 [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] Netlogon C:\Windows\system32\lsass.exe
15:05:55.0562 0x16e4 Netlogon - ok
15:05:55.0593 0x16e4 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
15:05:55.0609 0x16e4 Netman - ok
15:05:55.0671 0x16e4 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:05:55.0687 0x16e4 NetMsmqActivator - ok
15:05:55.0687 0x16e4 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:05:55.0687 0x16e4 NetPipeActivator - ok
15:05:55.0702 0x16e4 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
15:05:55.0718 0x16e4 netprofm - ok
15:05:55.0734 0x16e4 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:05:55.0734 0x16e4 NetTcpActivator - ok
15:05:55.0734 0x16e4 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:05:55.0734 0x16e4 NetTcpPortSharing - ok
15:05:55.0765 0x16e4 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
15:05:55.0765 0x16e4 nfrd960 - ok
15:05:55.0843 0x16e4 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
15:05:55.0843 0x16e4 NlaSvc - ok
15:05:55.0843 0x16e4 NLNdisMP - ok
15:05:55.0858 0x16e4 NLNdisPT - ok
15:05:55.0890 0x16e4 [ 351533ACC2A069B94E80BBFC177E8FDF, 54B2749E0496ECC94CE65657627762B485CBC825767BAEDDAD0D2598820FFB9E ] NPF C:\Windows\system32\drivers\npf.sys
15:05:55.0890 0x16e4 NPF - ok
15:05:55.0905 0x16e4 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
15:05:55.0921 0x16e4 Npfs - ok
15:05:55.0936 0x16e4 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
15:05:55.0936 0x16e4 nsi - ok
15:05:55.0952 0x16e4 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
15:05:55.0952 0x16e4 nsiproxy - ok
15:05:56.0014 0x16e4 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
15:05:56.0046 0x16e4 Ntfs - ok
15:05:56.0077 0x16e4 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
15:05:56.0077 0x16e4 Null - ok
15:05:56.0092 0x16e4 [ 158AD24745BD85BA9BE3C51C38F48C32, B053A3B5A5CAE2CBC47E2C19E636AD70F376334EFFBB391A76562E67CBF3AC86 ] nusb3hub C:\Windows\system32\drivers\nusb3hub.sys
15:05:56.0092 0x16e4 nusb3hub - ok
15:05:56.0124 0x16e4 [ D40A13B2C0891E218F9523B376955DB6, 9A2AAAF960868B860A65579EAD507B35C64CFD6C3581F8D731ADF975F778D10E ] nusb3xhc C:\Windows\system32\drivers\nusb3xhc.sys
15:05:56.0124 0x16e4 nusb3xhc - ok
15:05:56.0170 0x16e4 [ 7E4355930B28C2798D9F09AB9F81151F, 941C730F3B75BDF99639E76350031EDD15F18D8D860F3B1282C28B62096E7717 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
15:05:56.0170 0x16e4 NVHDA - ok
15:05:56.0469 0x16e4 [ F554291C0A11F5B713B54C5886D4AA31, 65B7DF4BB3DFF616DC2C863988E30F901E14221C00E2A99A2079E19D91D93BAE ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:05:56.0814 0x16e4 nvlddmkm - ok
15:05:56.0908 0x16e4 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
15:05:56.0923 0x16e4 nvraid - ok
15:05:56.0939 0x16e4 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
15:05:56.0939 0x16e4 nvstor - ok
15:05:56.0954 0x16e4 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
15:05:56.0954 0x16e4 nv_agp - ok
15:05:56.0970 0x16e4 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
15:05:56.0970 0x16e4 ohci1394 - ok
15:05:57.0126 0x16e4 [ 7C77BE6B074F774355B582B4C8E8C850, 046208210A9BD4AE9D20A2EE1C886F740C5BC1ECACEA2F55D6627F7FDD013D21 ] Origin Client Service C:\Program Files (x86)\Origin\OriginClientService.exe
15:05:57.0188 0x16e4 Origin Client Service - ok
15:05:57.0298 0x16e4 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:05:57.0298 0x16e4 ose - ok
15:05:57.0503 0x16e4 [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
 
Last edited by a moderator:
S

somebody480

New Member
TDSSKiller log part 2
15:05:57.0613 0x16e4 osppsvc - ok
15:05:57.0644 0x16e4 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
15:05:57.0659 0x16e4 p2pimsvc - ok
15:05:57.0691 0x16e4 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
15:05:57.0691 0x16e4 p2psvc - ok
15:05:57.0737 0x16e4 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys
15:05:57.0737 0x16e4 Parport - ok
15:05:57.0769 0x16e4 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
15:05:57.0769 0x16e4 partmgr - ok
15:05:57.0815 0x16e4 [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
15:05:57.0815 0x16e4 PcaSvc - ok
15:05:57.0831 0x16e4 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
15:05:57.0831 0x16e4 pci - ok
15:05:57.0847 0x16e4 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
15:05:57.0862 0x16e4 pciide - ok
15:05:57.0893 0x16e4 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
15:05:57.0893 0x16e4 pcmcia - ok
15:05:57.0909 0x16e4 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
15:05:57.0909 0x16e4 pcw - ok
15:05:57.0971 0x16e4 [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
15:05:57.0971 0x16e4 PEAUTH - ok
15:05:58.0049 0x16e4 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
15:05:58.0049 0x16e4 PerfHost - ok
15:05:58.0112 0x16e4 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
15:05:58.0143 0x16e4 pla - ok
15:05:58.0205 0x16e4 [ 542D7B8CD0487DB1C5EEA7E46BB9F1C1, E7B778D1B5083B716B2AF37858728FB9D91F816094F5F33B8BC2E922A0D3D6C3 ] PlantronicsGC C:\Windows\system32\drivers\PLTGC.sys
15:05:58.0221 0x16e4 PlantronicsGC - ok
15:05:58.0268 0x16e4 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
15:05:58.0268 0x16e4 PlugPlay - ok
15:05:58.0283 0x16e4 [ 71F62C51DFDFBC04C83C5C64B2B8058E, CAB12E6D27BE421BD5A3CB04066EA50303A3210332ECC4B5C03B5F19735FC857 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
15:05:58.0283 0x16e4 Pml Driver HPZ12 - ok
15:05:58.0283 0x16e4 PnkBstrB - ok
15:05:58.0315 0x16e4 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
15:05:58.0315 0x16e4 PNRPAutoReg - ok
15:05:58.0346 0x16e4 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
15:05:58.0346 0x16e4 PNRPsvc - ok
15:05:58.0377 0x16e4 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
15:05:58.0393 0x16e4 PolicyAgent - ok
15:05:58.0408 0x16e4 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
15:05:58.0408 0x16e4 Power - ok
15:05:58.0424 0x16e4 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
15:05:58.0439 0x16e4 PptpMiniport - ok
15:05:58.0439 0x16e4 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys
15:05:58.0455 0x16e4 Processor - ok
15:05:58.0486 0x16e4 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
15:05:58.0502 0x16e4 ProfSvc - ok
15:05:58.0517 0x16e4 [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] ProtectedStorage C:\Windows\system32\lsass.exe
15:05:58.0517 0x16e4 ProtectedStorage - ok
15:05:58.0533 0x16e4 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
15:05:58.0533 0x16e4 Psched - ok
15:05:58.0580 0x16e4 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
15:05:58.0611 0x16e4 ql2300 - ok
15:05:58.0627 0x16e4 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
15:05:58.0627 0x16e4 ql40xx - ok
15:05:58.0658 0x16e4 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
15:05:58.0658 0x16e4 QWAVE - ok
15:05:58.0673 0x16e4 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
15:05:58.0673 0x16e4 QWAVEdrv - ok
15:05:58.0705 0x16e4 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
15:05:58.0705 0x16e4 RasAcd - ok
15:05:58.0736 0x16e4 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
15:05:58.0736 0x16e4 RasAgileVpn - ok
15:05:58.0736 0x16e4 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
15:05:58.0736 0x16e4 RasAuto - ok
15:05:58.0751 0x16e4 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
15:05:58.0751 0x16e4 Rasl2tp - ok
15:05:58.0767 0x16e4 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
15:05:58.0783 0x16e4 RasMan - ok
15:05:58.0798 0x16e4 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
15:05:58.0814 0x16e4 RasPppoe - ok
15:05:58.0876 0x16e4 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
15:05:58.0939 0x16e4 RasSstp - ok
15:05:59.0017 0x16e4 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
15:05:59.0079 0x16e4 rdbss - ok
15:05:59.0126 0x16e4 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
15:05:59.0126 0x16e4 rdpbus - ok
15:05:59.0141 0x16e4 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
15:05:59.0141 0x16e4 RDPCDD - ok
15:05:59.0157 0x16e4 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
15:05:59.0157 0x16e4 RDPENCDD - ok
15:05:59.0157 0x16e4 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
15:05:59.0157 0x16e4 RDPREFMP - ok
15:05:59.0266 0x16e4 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
15:05:59.0282 0x16e4 RdpVideoMiniport - ok
15:05:59.0394 0x16e4 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
15:05:59.0394 0x16e4 RDPWD - ok
15:05:59.0425 0x16e4 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
15:05:59.0425 0x16e4 rdyboost - ok
15:05:59.0456 0x16e4 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
15:05:59.0456 0x16e4 RemoteAccess - ok
15:05:59.0488 0x16e4 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
15:05:59.0503 0x16e4 RemoteRegistry - ok
15:05:59.0519 0x16e4 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
15:05:59.0534 0x16e4 RFCOMM - ok
15:05:59.0581 0x16e4 [ B60F58F175DE20A6739194E85B035178, 6E66D6041AF0B69896E4556F9FF3A3AA70CF4B09FFBE68E14E60313C5E3FFDDB ] rpcapd C:\Program Files (x86)\WinPcap\rpcapd.exe
15:05:59.0581 0x16e4 rpcapd - ok
15:05:59.0597 0x16e4 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
15:05:59.0612 0x16e4 RpcEptMapper - ok
15:05:59.0644 0x16e4 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
15:05:59.0644 0x16e4 RpcLocator - ok
15:05:59.0675 0x16e4 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll
15:05:59.0690 0x16e4 RpcSs - ok
15:05:59.0706 0x16e4 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
15:05:59.0706 0x16e4 rspndr - ok
15:05:59.0770 0x16e4 [ 6F593C7B14264FE2C6F3B96165BD95E5, 4D38B4EAFE5B5EAD409250DEA1FD45860751A9E8477D3775E97FF386895182A2 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
15:05:59.0786 0x16e4 RTL8167 - ok
15:05:59.0802 0x16e4 [ E16B7C030A05EF649B18FAB0A93D871F, 0F532D534A93D71650E2F7AF677419A6B38CE3142C98983565F1D759E544A4ED ] RtNdPt60 C:\Windows\system32\DRIVERS\RtNdPt60.sys
15:05:59.0802 0x16e4 RtNdPt60 - ok
15:05:59.0817 0x16e4 [ 1DE78F5008120CD79B34C12394DCD493, 58C59BEEE2F1C1C6CE810BA433C0D5789B4E6F218A074868137960663CB54802 ] RTTEAMPT C:\Windows\system32\DRIVERS\RtTeam60.sys
15:05:59.0817 0x16e4 RTTEAMPT - ok
15:05:59.0833 0x16e4 [ B1018AA1B5735F5FA89FD4DADF4BEA7A, A8D8B5086B8AA3C8D157DD601469E0AE51CDD2626C6618E8F72236CBA543BB61 ] RTVLANPT C:\Windows\system32\DRIVERS\RtVlan60.sys
15:05:59.0833 0x16e4 RTVLANPT - ok
15:05:59.0942 0x16e4 [ E4E034F79D88B34C5B4BA28BAE2259F7, A48E0ACFE75F92793E1961D108242A0B6B890ED8541757B7BF7EAAC1D6E963C1 ] RzKLService C:\Program Files (x86)\Razer\Razer Game Booster\RzKLService.exe
15:05:59.0942 0x16e4 RzKLService - ok
15:05:59.0973 0x16e4 [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] SamSs C:\Windows\system32\lsass.exe
15:05:59.0973 0x16e4 SamSs - ok
15:06:00.0004 0x16e4 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
15:06:00.0004 0x16e4 sbp2port - ok
15:06:00.0036 0x16e4 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
15:06:00.0036 0x16e4 SCardSvr - ok
15:06:00.0051 0x16e4 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
15:06:00.0051 0x16e4 scfilter - ok
15:06:00.0129 0x16e4 [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
15:06:00.0145 0x16e4 Schedule - ok
15:06:00.0176 0x16e4 [ 2A50BE713FAF033420466C25979C028E, 46EAF744B8EB23F5D134D63C4600EE46662FAB28282CD762945DFB448D2463B3 ] SCMNdisP C:\Windows\system32\DRIVERS\scmndisp.sys
15:06:00.0176 0x16e4 SCMNdisP - ok
15:06:00.0207 0x16e4 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
15:06:00.0207 0x16e4 SCPolicySvc - ok
15:06:00.0270 0x16e4 [ 0447065A6E10774EFCECFDD0EB970A79, 384A9AC72E756F96D43EE4B144A466564476AFD8778092C979116BB29A514433 ] ScpVBus C:\Windows\system32\DRIVERS\ScpVBus.sys
15:06:00.0270 0x16e4 ScpVBus - ok
15:06:00.0316 0x16e4 [ 8B56BDCE6A303DDE63D63440D1CF9AD1, 66A4356C29D00A1B8A95975C073AE4E6D2A90CBF3B143FE9B83B96BEC0805D46 ] ScreamBAudioSvc C:\Windows\system32\drivers\ScreamingBAudio64.sys
15:06:00.0316 0x16e4 ScreamBAudioSvc - ok
15:06:00.0332 0x16e4 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
15:06:00.0348 0x16e4 SDRSVC - ok
15:06:00.0363 0x16e4 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
15:06:00.0363 0x16e4 secdrv - ok
15:06:00.0379 0x16e4 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll
15:06:00.0379 0x16e4 seclogon - ok
15:06:00.0394 0x16e4 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\system32\sens.dll
15:06:00.0410 0x16e4 SENS - ok
15:06:00.0426 0x16e4 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
15:06:00.0426 0x16e4 SensrSvc - ok
15:06:00.0441 0x16e4 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\drivers\serenum.sys
15:06:00.0441 0x16e4 Serenum - ok
15:06:00.0457 0x16e4 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\drivers\serial.sys
15:06:00.0457 0x16e4 Serial - ok
15:06:00.0472 0x16e4 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys
15:06:00.0472 0x16e4 sermouse - ok
15:06:00.0504 0x16e4 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
15:06:00.0519 0x16e4 SessionEnv - ok
15:06:00.0535 0x16e4 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
15:06:00.0535 0x16e4 sffdisk - ok
15:06:00.0550 0x16e4 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
15:06:00.0550 0x16e4 sffp_mmc - ok
15:06:00.0566 0x16e4 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
15:06:00.0566 0x16e4 sffp_sd - ok
15:06:00.0566 0x16e4 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
15:06:00.0566 0x16e4 sfloppy - ok
15:06:00.0613 0x16e4 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
15:06:00.0628 0x16e4 SharedAccess - ok
15:06:00.0660 0x16e4 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:06:00.0675 0x16e4 ShellHWDetection - ok
15:06:00.0691 0x16e4 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
15:06:00.0706 0x16e4 SiSRaid2 - ok
15:06:00.0722 0x16e4 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
15:06:00.0722 0x16e4 SiSRaid4 - ok
15:06:00.0800 0x16e4 [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
15:06:00.0800 0x16e4 SkypeUpdate - ok
15:06:00.0847 0x16e4 [ E77CB3736A702D46A6FB15FB4A9894E3, A341AD51825D4DB8A68ADDABE0FD17693DE387B0DA11800D427B8EA31577626C ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
15:06:00.0847 0x16e4 SmartDefragDriver - ok
15:06:00.0862 0x16e4 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
15:06:00.0862 0x16e4 Smb - ok
15:06:00.0909 0x16e4 [ 13E228B142E9597FF83BEC450FE0C307, 9BFCF29827B6ED9BEFF942EBB72320C10C990FEAFBA7509E8ACDC4B9AEC2EC39 ] SmbDrvI C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys
15:06:00.0909 0x16e4 SmbDrvI - ok
15:06:00.0940 0x16e4 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
15:06:00.0956 0x16e4 SNMPTRAP - ok
15:06:01.0083 0x16e4 [ 7A7A6C387AD14A7A72294B8AD79E41A5, CC44C694DA557FBFC5C6E0C635553B6791A46595EE99220101EE3B1A2D33F1B6 ] Soda PDF 3D Reader C:\Program Files (x86)\Soda PDF 3D Reader\ws.exe
15:06:01.0114 0x16e4 Soda PDF 3D Reader - ok
15:06:01.0145 0x16e4 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
15:06:01.0145 0x16e4 spldr - ok
15:06:01.0208 0x16e4 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
15:06:01.0223 0x16e4 Spooler - ok
15:06:01.0317 0x16e4 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
15:06:01.0396 0x16e4 sppsvc - ok
15:06:01.0443 0x16e4 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
15:06:01.0443 0x16e4 sppuinotify - ok
15:06:01.0474 0x16e4 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
15:06:01.0474 0x16e4 srv - ok
15:06:01.0489 0x16e4 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
15:06:01.0505 0x16e4 srv2 - ok
15:06:01.0521 0x16e4 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
15:06:01.0521 0x16e4 srvnet - ok
15:06:01.0536 0x16e4 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
15:06:01.0552 0x16e4 SSDPSRV - ok
15:06:01.0552 0x16e4 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
15:06:01.0567 0x16e4 SstpSvc - ok
15:06:01.0661 0x16e4 [ 5852D5FADD589643B6C1B5BE9D257A50, 38DC6CEB0AA6AF4FD046A9CF7571E345E52D30471E248E2B99FC6D5622257145 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
15:06:01.0677 0x16e4 Steam Client Service - ok
15:06:01.0692 0x16e4 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys
15:06:01.0692 0x16e4 stexstor - ok
15:06:01.0739 0x16e4 [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam C:\Windows\system32\drivers\serscan.sys
15:06:01.0739 0x16e4 StillCam - ok
15:06:01.0786 0x16e4 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
15:06:01.0801 0x16e4 stisvc - ok
15:06:01.0833 0x16e4 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
15:06:01.0833 0x16e4 swenum - ok
15:06:01.0864 0x16e4 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
15:06:01.0879 0x16e4 swprv - ok
15:06:01.0973 0x16e4 [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
15:06:02.0020 0x16e4 SysMain - ok
15:06:02.0051 0x16e4 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:06:02.0051 0x16e4 TabletInputService - ok
15:06:02.0082 0x16e4 [ F9BE29D5E097F03F81D3CD12B794CB66, 5EC208DEAF7C721F4C36512E7DAD4AC66578AB935B9502A5E1E213BC91BE508C ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys
15:06:02.0082 0x16e4 tap0901 - ok
15:06:02.0113 0x16e4 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
15:06:02.0129 0x16e4 TapiSrv - ok
15:06:02.0145 0x16e4 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
15:06:02.0145 0x16e4 TBS - ok
15:06:02.0238 0x16e4 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
15:06:02.0269 0x16e4 Tcpip - ok
15:06:02.0301 0x16e4 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
15:06:02.0332 0x16e4 TCPIP6 - ok
15:06:02.0379 0x16e4 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
15:06:02.0379 0x16e4 tcpipreg - ok
15:06:02.0394 0x16e4 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
15:06:02.0394 0x16e4 TDPIPE - ok
15:06:02.0425 0x16e4 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
15:06:02.0425 0x16e4 TDTCP - ok
15:06:02.0457 0x16e4 [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
15:06:02.0457 0x16e4 tdx - ok
15:06:02.0472 0x16e4 [ 1DE78F5008120CD79B34C12394DCD493, 58C59BEEE2F1C1C6CE810BA433C0D5789B4E6F218A074868137960663CB54802 ] TEAM C:\Windows\system32\DRIVERS\RtTeam60.sys
15:06:02.0472 0x16e4 TEAM - ok
15:06:02.0503 0x16e4 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
15:06:02.0503 0x16e4 TermDD - ok
15:06:02.0550 0x16e4 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
15:06:02.0566 0x16e4 TermService - ok
15:06:02.0597 0x16e4 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
15:06:02.0613 0x16e4 Themes - ok
15:06:02.0644 0x16e4 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
15:06:02.0644 0x16e4 THREADORDER - ok
15:06:02.0659 0x16e4 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
15:06:02.0675 0x16e4 TrkWks - ok
15:06:02.0722 0x16e4 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:06:02.0739 0x16e4 TrustedInstaller - ok
15:06:02.0802 0x16e4 [ 19BEDA57F3E0A06B8D5EB6D619BD5624, 952D5FAFD662C93628C12A6F7EB8E240A44216C0A15CBD2F5016BC357CBFE821 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
15:06:02.0802 0x16e4 tssecsrv - ok
15:06:02.0880 0x16e4 [ 17C6B51CBCCDED95B3CC14E22791F85E, EE417C19E9B2C258D62A74F1F2421AFFBAC67ACD62481CAA08F5B6A3439C1D7C ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
15:06:02.0880 0x16e4 TsUsbFlt - ok
15:06:02.0911 0x16e4 [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
15:06:02.0911 0x16e4 TsUsbGD - ok
15:06:02.0942 0x16e4 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
15:06:02.0942 0x16e4 tunnel - ok
15:06:03.0020 0x16e4 [ A070ABB9D85582B2BECADBE6FCD12350, 3EBFA349F87933E20C4EADA2FA2E64206CCAC70DFB8B52C2E41670FFB16D7336 ] t_mouse.sys C:\Windows\system32\DRIVERS\t_mouse.sys
15:06:03.0020 0x16e4 t_mouse.sys - ok
15:06:03.0036 0x16e4 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
15:06:03.0036 0x16e4 uagp35 - ok
15:06:03.0051 0x16e4 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
15:06:03.0067 0x16e4 udfs - ok
15:06:03.0098 0x16e4 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
15:06:03.0114 0x16e4 UI0Detect - ok
15:06:03.0129 0x16e4 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
15:06:03.0129 0x16e4 uliagpkx - ok
15:06:03.0161 0x16e4 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys
15:06:03.0161 0x16e4 umbus - ok
15:06:03.0176 0x16e4 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys
15:06:03.0176 0x16e4 UmPass - ok
15:06:03.0285 0x16e4 [ 67A95B9D129ED5399E7965CD09CF30E7, F1F2F684146F1CCB293BB9871117B8CFC1D04588A830F67CE5D3F0D034D93B2A ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
15:06:03.0301 0x16e4 UMVPFSrv - ok
15:06:03.0397 0x16e4 [ 7A78ED1088890114DFDE2C4AB038D6B6, B52357594A90A8BCF5F96FA630F52BB1274A2FE814AF0270D21C892871D076FC ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
15:06:03.0443 0x16e4 UNS - ok
15:06:03.0490 0x16e4 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
15:06:03.0490 0x16e4 upnphost - ok
15:06:03.0537 0x16e4 [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
15:06:03.0537 0x16e4 usbaudio - ok
15:06:03.0599 0x16e4 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
15:06:03.0599 0x16e4 usbccgp - ok
15:06:03.0646 0x16e4 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
15:06:03.0662 0x16e4 usbcir - ok
15:06:03.0677 0x16e4 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
15:06:03.0677 0x16e4 usbehci - ok
15:06:03.0693 0x16e4 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
15:06:03.0709 0x16e4 usbhub - ok
15:06:03.0755 0x16e4 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
15:06:03.0755 0x16e4 usbohci - ok
15:06:03.0771 0x16e4 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\drivers\usbprint.sys
15:06:03.0771 0x16e4 usbprint - ok
15:06:03.0787 0x16e4 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:06:03.0787 0x16e4 USBSTOR - ok
15:06:03.0833 0x16e4 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
15:06:03.0833 0x16e4 usbuhci - ok
15:06:03.0849 0x16e4 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
15:06:03.0865 0x16e4 UxSms - ok
15:06:03.0880 0x16e4 [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] VaultSvc C:\Windows\system32\lsass.exe
15:06:03.0880 0x16e4 VaultSvc - ok
15:06:03.0896 0x16e4 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
15:06:03.0896 0x16e4 vdrvroot - ok
15:06:03.0927 0x16e4 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
15:06:03.0943 0x16e4 vds - ok
15:06:03.0958 0x16e4 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
15:06:03.0974 0x16e4 vga - ok
15:06:03.0989 0x16e4 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
15:06:03.0989 0x16e4 VgaSave - ok
15:06:04.0005 0x16e4 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
15:06:04.0005 0x16e4 vhdmp - ok
15:06:04.0036 0x16e4 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
15:06:04.0036 0x16e4 viaide - ok
15:06:04.0052 0x16e4 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
15:06:04.0067 0x16e4 volmgr - ok
15:06:04.0099 0x16e4 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
15:06:04.0114 0x16e4 volmgrx - ok
15:06:04.0130 0x16e4 [ DF8126BD41180351A093A3AD2FC8903B, AEFF4AA89CDDAAAD43CDE17C6B6EB2A397A0AC1651CBD51B889161EC2BC6527A ] volsnap C:\Windows\system32\drivers\volsnap.sys
15:06:04.0130 0x16e4 volsnap - ok
15:06:04.0161 0x16e4 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
15:06:04.0177 0x16e4 vsmraid - ok
15:06:04.0239 0x16e4 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
15:06:04.0286 0x16e4 VSS - ok
15:06:04.0286 0x16e4 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
15:06:04.0301 0x16e4 vwifibus - ok
15:06:04.0317 0x16e4 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
15:06:04.0317 0x16e4 vwififlt - ok
15:06:04.0317 0x16e4 [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
15:06:04.0317 0x16e4 vwifimp - ok
15:06:04.0348 0x16e4 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
15:06:04.0364 0x16e4 W32Time - ok
15:06:04.0395 0x16e4 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
15:06:04.0395 0x16e4 WacomPen - ok
15:06:04.0426 0x16e4 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
15:06:04.0426 0x16e4 WANARP - ok
15:06:04.0442 0x16e4 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
15:06:04.0442 0x16e4 Wanarpv6 - ok
15:06:04.0504 0x16e4 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
15:06:04.0535 0x16e4 WatAdminSvc - ok
15:06:04.0598 0x16e4 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
15:06:04.0645 0x16e4 wbengine - ok
15:06:04.0676 0x16e4 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
15:06:04.0691 0x16e4 WbioSrvc - ok
15:06:04.0707 0x16e4 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
15:06:04.0723 0x16e4 wcncsvc - ok
15:06:04.0738 0x16e4 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:06:04.0754 0x16e4 WcsPlugInService - ok
15:06:04.0779 0x16e4 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys
15:06:04.0781 0x16e4 Wd - ok
15:06:04.0834 0x16e4 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
15:06:04.0849 0x16e4 Wdf01000 - ok
15:06:04.0896 0x16e4 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
15:06:04.0896 0x16e4 WdiServiceHost - ok
15:06:04.0912 0x16e4 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
15:06:04.0912 0x16e4 WdiSystemHost - ok
15:06:04.0974 0x16e4 [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll
15:06:04.0974 0x16e4 WebClient - ok
15:06:05.0005 0x16e4 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
15:06:05.0021 0x16e4 Wecsvc - ok
15:06:05.0021 0x16e4 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
15:06:05.0036 0x16e4 wercplsupport - ok
15:06:05.0036 0x16e4 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
15:06:05.0036 0x16e4 WerSvc - ok
15:06:05.0068 0x16e4 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
15:06:05.0068 0x16e4 WfpLwf - ok
15:06:05.0083 0x16e4 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
15:06:05.0083 0x16e4 WIMMount - ok
15:06:05.0099 0x16e4 WinDefend - ok
15:06:05.0193 0x16e4 [ 6360191CF921358A54339D10D30AC208, BF25D3ECD814F753F550222390FB56E607CE58B4F5381A8F9337578096AB475D ] WinFLAdrv C:\Windows\syswow64\WinFLAdrv.sys
15:06:05.0193 0x16e4 WinFLAdrv - ok
15:06:05.0193 0x16e4 WinHttpAutoProxySvc - ok
15:06:05.0240 0x16e4 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
15:06:05.0240 0x16e4 Winmgmt - ok
15:06:05.0287 0x16e4 WinRing0_1_2_0 - ok
15:06:05.0384 0x16e4 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
15:06:05.0415 0x16e4 WinRM - ok
15:06:05.0477 0x16e4 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
15:06:05.0477 0x16e4 WinUSB - ok
15:06:05.0540 0x16e4 [ 3CC985A4E7D90F5B6D9FF1FD5CD486D7, DA141F52C181407B43D95C63DCCB5E358E7DB26EFC476393D11A1BB2D2708E89 ] WinVDEDrv C:\Windows\SysWow64\WinVDEdrv.sys
15:06:05.0555 0x16e4 WinVDEDrv - ok
15:06:05.0602 0x16e4 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
15:06:05.0618 0x16e4 Wlansvc - ok
15:06:05.0789 0x16e4 [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:06:05.0820 0x16e4 wlidsvc - ok
15:06:05.0852 0x16e4 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
15:06:05.0852 0x16e4 WmiAcpi - ok
15:06:05.0883 0x16e4 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
15:06:05.0883 0x16e4 wmiApSrv - ok
15:06:05.0898 0x16e4 WMPNetworkSvc - ok
15:06:05.0930 0x16e4 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
15:06:05.0930 0x16e4 WPCSvc - ok
15:06:05.0945 0x16e4 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
15:06:05.0961 0x16e4 WPDBusEnum - ok
15:06:05.0976 0x16e4 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
15:06:05.0976 0x16e4 ws2ifsl - ok
15:06:05.0992 0x16e4 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\system32\wscsvc.dll
15:06:05.0992 0x16e4 wscsvc - ok
15:06:06.0008 0x16e4 WSearch - ok
15:06:06.0070 0x16e4 [ 0001DC46B513A37B1E8151335CA6F28E, 94DCD24371F2429FFE5EC823F9B8EE25E54AF6F5D244197AFC0BB626F4ADD453 ] WSWNA1100 C:\Program Files (x86)\NETGEAR\WNA1100\WifiSvc.exe
15:06:06.0070 0x16e4 WSWNA1100 - ok
15:06:06.0195 0x16e4 [ 361845875ED8ED13086E7F37265C45DA, A0931DC1E35712036E93BBC3600530C0DA12E94E0D898787C818C526DFF240C2 ] wuauserv C:\Windows\system32\wuaueng.dll
15:06:06.0242 0x16e4 wuauserv - ok
15:06:06.0288 0x16e4 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
15:06:06.0288 0x16e4 WudfPf - ok
15:06:06.0351 0x16e4 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
15:06:06.0351 0x16e4 WUDFRd - ok
15:06:06.0398 0x16e4 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
15:06:06.0398 0x16e4 wudfsvc - ok
15:06:06.0429 0x16e4 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
15:06:06.0444 0x16e4 WwanSvc - ok
15:06:06.0491 0x16e4 [ 2EE48CFCE7CA8E0DB4C44C7476C0943B, 2C324592F3F2D50BABA7123B6F9FC922667CC132777E019FF615F2D6F273A45E ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys
15:06:06.0491 0x16e4 xusb21 - ok
15:06:06.0507 0x16e4 ================ Scan global ===============================
15:06:06.0585 0x16e4 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
15:06:06.0616 0x16e4 [ FF41063E45C6238CAF48CBE6D0D6FC4B, 9B755EA23E7D2554E3AC3ADFFC4AFF7EB4F4A0F5CD3E6F2300BC98B21474CBC6 ] C:\Windows\system32\winsrv.dll
15:06:06.0632 0x16e4 [ FF41063E45C6238CAF48CBE6D0D6FC4B, 9B755EA23E7D2554E3AC3ADFFC4AFF7EB4F4A0F5CD3E6F2300BC98B21474CBC6 ] C:\Windows\system32\winsrv.dll
15:06:06.0663 0x16e4 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
15:06:06.0710 0x16e4 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
15:06:06.0725 0x16e4 [ Global ] - ok
15:06:06.0725 0x16e4 ================ Scan MBR ==================================
15:06:06.0741 0x16e4 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
15:06:06.0990 0x16e4 \Device\Harddisk0\DR0 - ok
15:06:06.0990 0x16e4 ================ Scan VBR ==================================
15:06:06.0990 0x16e4 [ ACD8C01A5C480BC9C7675DA65722E78D ] \Device\Harddisk0\DR0\Partition1
15:06:06.0990 0x16e4 \Device\Harddisk0\DR0\Partition1 - ok
15:06:06.0990 0x16e4 ================ Scan generic autorun ======================
15:06:07.0240 0x16e4 [ 26E56C4065A4AFB61F38CE9F9DB2BBB9, F969A8EB22CB9F8A5F9E47E7DD53F14F5AF813665DE8A465895A5C216DFA927A ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
15:06:07.0430 0x16e4 RTHDVCPL - ok
15:06:07.0493 0x16e4 [ 6AE40A74DF18A092FAE6253F9F250B0C, 2956C3E752003DA977E3E90D771A6447544772F172235439D70E68F2C10D7D8B ] C:\Program Files\Plantronics\GameCom780\GameCom780.exe
15:06:07.0524 0x16e4 GamecomSound - ok
15:06:07.0571 0x16e4 [ 28062B17191C9450BF6C6C3EF8C7EB27, 4859C5708DFD119021F7B7FFB38F0B316675E1E4D5D51A10D4265F712CF8CDB6 ] C:\Windows\system32\igfxtray.exe
15:06:07.0586 0x16e4 IgfxTray - ok
15:06:07.0633 0x16e4 [ 28FC280487F0BAAE5E8119257C4EEF8C, F574BC70B79B77912FC683B3EB0BE6929E7758284ED5B47008E18B0E4A4A09FD ] C:\Windows\system32\hkcmd.exe
15:06:07.0649 0x16e4 HotKeysCmds - ok
15:06:07.0664 0x16e4 [ F29BEA821C753E4F00177690F70CDC13, 0EDB40F4A4C23553C0288E6E3AD65E7B523F6764C87C6C36C3ECB0C1940C5176 ] C:\Windows\system32\igfxpers.exe
15:06:07.0695 0x16e4 Persistence - ok
15:06:07.0744 0x16e4 [ DB367E8C8F46C26A05BA982715CC0DB5, 63AE8DD8E41260123E8C98905BD3D444BED86AEA6353F690483E5CB116433AC2 ] C:\Windows\system32\TiltWheelMouse.exe
15:06:07.0744 0x16e4 MouseDriver - ok
15:06:07.0807 0x16e4 [ BD712BF585CBE46FEC924398E852A29E, 135BF15D279C2C3D1E0CA97E77673709CB4133892AE3C397291977D5D683B878 ] C:\Program Files (x86)\ASUS\AI Manager\AsShellApplication.exe
15:06:07.0807 0x16e4 RunAIShell - ok
15:06:07.0853 0x16e4 [ 6BA433E1E4C815CFB819DD99447F847A, FB0C53ACE0A28AC59D2E2DA47ED780BABABFA0BB61585C12E82F8F973D3A9EC5 ] C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
15:06:07.0885 0x16e4 ASUS AiChargerPlus Execute - ok
15:06:07.0916 0x16e4 [ 6374E6FE25445A1B2F31F783867D846C, 20A9D2927C65207AEC4A2FFFFA9EEE920427BA47D36A82E61676598CBBE0DBBA ] C:\Program Files (x86)\ASUS\ASUS Easy Update\ALU.exe
15:06:07.0916 0x16e4 ASUS Easy Update - ok
15:06:07.0994 0x16e4 [ 3E04F1E482357B1FC8B088197C3D9FF8, 85524ADDC27ADC831EBBD24E079B412CFDC69E5F594BD153319087665A28D546 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
15:06:08.0009 0x16e4 Adobe ARM - ok
15:06:08.0103 0x16e4 [ 8AC0AFA9360B307C56DE43C17A515650, F053D08341274F4769C1FF243202580D6594CEA9AF27A05665AE4A8EE2A9B7E4 ] C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe
15:06:08.0119 0x16e4 DivXMediaServer - ok
15:06:08.0212 0x16e4 [ D5DDC3EC0BF960389E9A964D7CC8CC30, 02C06CF596B33B1883C371EA9B61B1EC41319EFF853A54864329129699534769 ] C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe
15:06:08.0243 0x16e4 StartCCC - ok
15:06:08.0384 0x16e4 [ F98A242F61736233824F2E306069EE96, C7213F68C0566B15EF7AF9B2BBD964ACDA6E5FB0DD84B4276A6BB7E4FFE5D80E ] C:\Program Files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe
15:06:08.0446 0x16e4 HP Officejet Pro 8600 (NET) - ok
15:06:08.0540 0x16e4 [ 5DCD3E9A52CBF59DEE0A7B4D50DC17AE, 3A74F38BEFF6DAFAB0D71874C4174638636DEE935F19DF67BE3FC276E758F926 ] C:\Windows\SysWow64\WinFLTray.exe
15:06:08.0555 0x16e4 WinFLTray - ok
15:06:08.0555 0x16e4 Waiting for KSN requests completion. In queue: 115
15:06:09.0570 0x16e4 Waiting for KSN requests completion. In queue: 115
15:06:10.0584 0x16e4 Waiting for KSN requests completion. In queue: 115
15:06:11.0589 0x16e4 Waiting for KSN requests completion. In queue: 115
15:06:12.0652 0x16e4 Win FW state via NFP2: enabled ( trusted )
15:06:15.0497 0x16e4 ============================================================
15:06:15.0497 0x16e4 Scan finished
15:06:15.0497 0x16e4 ============================================================
15:06:15.0497 0x14f0 Detected object count: 0
15:06:15.0497 0x14f0 Actual detected object count: 0
15:09:54.0422 0x14a0 Deinitialize success
 
Last edited by a moderator:
S

somebody480

New Member
Combofix First log
ComboFix 15-11-15.01 - Ryan 11/14/2015 15:17:28.2.8 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.8173.6269 [GMT -5:00]
Running from: c:\users\Ryan\Downloads\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2015-10-14 to 2015-11-14 )))))))))))))))))))))))))))))))
.
.
2015-11-14 20:31 . 2015-11-14 20:31 -------- d-----w- c:\windows\system32\config\systemprofile\AppData\Local\temp
2015-11-14 20:31 . 2015-11-14 20:31 -------- d-----w- c:\users\Guest\AppData\Local\temp
2015-11-14 20:31 . 2015-11-14 20:31 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-11-14 20:31 . 2015-11-14 20:31 -------- d-----w- c:\users\ASPNET\AppData\Local\temp
2015-11-14 20:31 . 2015-11-14 20:31 -------- d-----w- c:\users\Administrator\AppData\Local\temp
2015-11-14 20:23 . 2015-11-14 20:23 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{6579C12A-3EDF-41A6-9C31-BE4F565437F1}\offreg.2716.dll
2015-11-14 00:50 . 2015-11-14 00:50 -------- d-----w- c:\users\Ryan\AppData\Roaming\ProductData
2015-11-13 21:38 . 2015-11-13 21:38 -------- d-----w- C:\$WINDOWS.~BT
2015-11-13 21:13 . 2015-11-13 21:13 119808 ----a-r- c:\users\Ryan\AppData\Roaming\Microsoft\Installer\{CCF298AF-9CE1-4B26-B251-486E98A34789}\icons.exe
2015-11-13 21:11 . 2015-11-13 21:11 -------- d-----w- c:\users\Ryan\AppData\Local\SanDiskSecureAccessV2_win
2015-11-13 21:10 . 2015-11-13 21:10 -------- d-----w- c:\users\Ryan\AppData\Roaming\EncryptStick
2015-11-13 06:44 . 2015-10-13 09:47 11140960 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{6579C12A-3EDF-41A6-9C31-BE4F565437F1}\mpengine.dll
2015-11-12 18:36 . 2015-11-12 18:36 -------- d-----w- c:\users\Ryan\AppData\Local\Bilago
2015-11-12 10:18 . 2015-11-03 17:55 3211264 ----a-w- c:\windows\system32\win32k.sys
2015-11-11 07:47 . 2015-11-11 07:47 -------- d-----w- c:\users\Ryan\AppData\Local\Fallout4
2015-11-11 05:44 . 2015-10-20 01:12 5570496 ----a-w- c:\windows\system32\ntoskrnl.exe
2015-11-11 05:43 . 2015-10-13 16:41 497664 ----a-w- c:\windows\system32\drivers\afd.sys
2015-11-10 20:42 . 2015-11-10 20:42 -------- d-----w- c:\users\Ryan\AppData\Local\LOOT
2015-11-10 20:42 . 2015-11-10 20:42 -------- d-----w- c:\program files (x86)\LOOT
2015-10-30 05:13 . 2015-10-30 05:13 -------- d-----w- c:\program files\CCleaner
2015-10-24 17:11 . 2015-10-25 18:15 -------- d-----w- c:\program files (x86)\Guild Wars 2
2015-10-24 08:08 . 2015-10-24 08:09 -------- d-----w- c:\users\Ryan\AppData\Roaming\Guild Wars 2
2015-10-19 23:05 . 2015-10-19 23:05 -------- d-----w- c:\users\Ryan\AppData\Roaming\Process Hacker 2
2015-10-19 23:04 . 2015-10-19 23:04 -------- d-----w- c:\program files\Process Hacker 2
2015-10-19 00:46 . 2015-10-19 00:46 -------- d-----w- c:\programdata\PlaysTV
2015-10-17 19:00 . 2015-10-30 02:17 -------- d-----w- c:\program files (x86)\Hi-Rez Studios
2015-10-15 21:17 . 2015-10-15 21:17 -------- d-----w- c:\program files (x86)\Audacity
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-11-14 01:56 . 2014-12-25 03:08 192216 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-11-13 08:16 . 2012-05-05 11:00 145617392 ----a-w- c:\windows\system32\MRT.exe
2015-11-11 03:12 . 2012-04-22 05:39 780488 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2015-11-11 03:12 . 2011-12-01 19:09 142536 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-10-29 17:50 . 2015-11-11 05:43 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2015-10-29 17:50 . 2015-11-11 05:43 309248 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2015-10-29 17:50 . 2015-11-11 05:43 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2015-10-29 17:50 . 2015-11-11 05:43 103424 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2015-10-29 17:49 . 2015-11-11 05:43 562176 ----a-w- c:\windows\apppatch\AcLayers.dll
2015-10-29 17:49 . 2015-11-11 05:43 470528 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2015-10-29 17:49 . 2015-11-11 05:43 2178560 ----a-w- c:\windows\apppatch\AcGenral.dll
2015-10-29 17:49 . 2015-11-11 05:43 211968 ----a-w- c:\windows\apppatch\AcXtrnal.dll
2015-10-29 17:39 . 2015-11-11 05:43 2560 ----a-w- c:\windows\apppatch\AcRes.dll
2015-10-20 00:45 . 2015-11-11 05:44 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2015-10-13 06:29 . 2015-10-13 06:29 875720 ----a-w- c:\windows\SysWow64\msvcr120_clr0400.dll
2015-10-13 06:22 . 2015-10-13 06:22 869568 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
2015-10-12 07:25 . 2015-10-12 07:25 39936 ----a-w- c:\windows\system32\drivers\tssecsrv.sys
2015-10-12 07:25 . 2015-10-12 07:25 22528 ----a-w- c:\windows\system32\icaapi.dll
2015-10-12 07:22 . 2015-10-12 07:22 984448 ----a-w- c:\windows\system32\ucrtbase.dll
2015-10-12 07:22 . 2015-10-12 07:22 901264 ----a-w- c:\windows\SysWow64\ucrtbase.dll
2015-10-12 07:22 . 2015-10-12 07:22 66400 ----a-w- c:\windows\SysWow64\api-ms-win-crt-private-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 63840 ----a-w- c:\windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 22368 ----a-w- c:\windows\SysWow64\api-ms-win-crt-math-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 20832 ----a-w- c:\windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 19808 ----a-w- c:\windows\SysWow64\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 19808 ----a-w- c:\windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 17760 ----a-w- c:\windows\SysWow64\api-ms-win-crt-string-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 17760 ----a-w- c:\windows\SysWow64\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 16224 ----a-w- c:\windows\SysWow64\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 15712 ----a-w- c:\windows\SysWow64\api-ms-win-crt-convert-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 15712 ----a-w- c:\windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 14176 ----a-w- c:\windows\SysWow64\api-ms-win-crt-time-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 14176 ----a-w- c:\windows\SysWow64\api-ms-win-core-localization-l1-2-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 14176 ----a-w- c:\windows\system32\api-ms-win-core-localization-l1-2-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 13664 ----a-w- c:\windows\SysWow64\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 12640 ----a-w- c:\windows\SysWow64\api-ms-win-crt-process-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 12640 ----a-w- c:\windows\SysWow64\api-ms-win-crt-heap-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 12640 ----a-w- c:\windows\SysWow64\api-ms-win-crt-conio-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 12640 ----a-w- c:\windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 12640 ----a-w- c:\windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 12128 ----a-w- c:\windows\SysWow64\api-ms-win-crt-utility-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 12128 ----a-w- c:\windows\SysWow64\api-ms-win-crt-locale-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 12128 ----a-w- c:\windows\SysWow64\api-ms-win-crt-environment-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 12128 ----a-w- c:\windows\SysWow64\api-ms-win-core-synch-l1-2-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 12128 ----a-w- c:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-1.dll
2015-10-12 07:22 . 2015-10-12 07:22 12128 ----a-w- c:\windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 12128 ----a-w- c:\windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 12128 ----a-w- c:\windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 11616 ----a-w- c:\windows\SysWow64\api-ms-win-eventing-provider-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 11616 ----a-w- c:\windows\SysWow64\api-ms-win-core-xstate-l2-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 11616 ----a-w- c:\windows\SysWow64\api-ms-win-core-timezone-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 11616 ----a-w- c:\windows\SysWow64\api-ms-win-core-file-l2-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 11616 ----a-w- c:\windows\SysWow64\api-ms-win-core-file-l1-2-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 11616 ----a-w- c:\windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 11616 ----a-w- c:\windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 11616 ----a-w- c:\windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 11616 ----a-w- c:\windows\system32\api-ms-win-core-file-l2-1-0.dll
2015-10-12 07:22 . 2015-10-12 07:22 11616 ----a-w- c:\windows\system32\api-ms-win-core-file-l1-2-0.dll
2015-10-12 07:22 . 2015-10-12 07:21 17760 ----a-w- c:\windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-12 07:21 . 2015-10-12 07:21 17760 ----a-w- c:\windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-12 07:21 . 2015-10-12 07:21 16224 ----a-w- c:\windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-12 07:21 . 2015-10-12 07:21 14176 ----a-w- c:\windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-12 07:21 . 2015-10-12 07:21 13664 ----a-w- c:\windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-12 07:21 . 2015-10-12 07:21 12640 ----a-w- c:\windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-12 07:21 . 2015-10-12 07:21 12128 ----a-w- c:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
2015-10-12 07:21 . 2015-10-12 07:21 12128 ----a-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2015-10-05 14:50 . 2014-12-25 03:07 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2015-10-05 14:50 . 2014-12-25 03:07 109272 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2015-10-05 14:50 . 2013-07-18 04:02 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2015-10-01 18:06 . 2015-10-13 21:19 692672 ----a-w- c:\windows\system32\winload.efi
2015-10-01 18:04 . 2015-10-13 21:19 616360 ----a-w- c:\windows\system32\winresume.efi
2015-10-01 18:00 . 2015-10-13 21:19 63488 ----a-w- c:\windows\system32\setbcdlocale.dll
2015-10-01 18:00 . 2015-10-13 21:19 59392 ----a-w- c:\windows\system32\appidapi.dll
2015-10-01 18:00 . 2015-10-13 21:19 32768 ----a-w- c:\windows\system32\appidsvc.dll
2015-10-01 18:00 . 2015-10-13 21:19 17920 ----a-w- c:\windows\system32\appidcertstorecheck.exe
2015-10-01 18:00 . 2015-10-13 21:19 147456 ----a-w- c:\windows\system32\appidpolicyconverter.exe
2015-10-01 17:50 . 2015-10-13 21:19 50688 ----a-w- c:\windows\SysWow64\appidapi.dll
2015-10-01 17:00 . 2015-10-13 21:19 61440 ----a-w- c:\windows\system32\drivers\appid.sys
2015-09-18 19:22 . 2015-10-14 18:33 25432 ----a-w- c:\windows\system32\CompatTelRunner.exe
2015-09-18 19:19 . 2015-10-14 18:33 700416 ----a-w- c:\windows\system32\invagent.dll
2015-09-18 19:19 . 2015-10-14 18:33 766464 ----a-w- c:\windows\system32\generaltel.dll
2015-09-18 19:19 . 2015-10-14 18:33 503808 ----a-w- c:\windows\system32\devinv.dll
2015-09-18 19:19 . 2015-10-14 18:33 73216 ----a-w- c:\windows\system32\acmigration.dll
2015-09-18 19:19 . 2015-10-14 18:33 1291264 ----a-w- c:\windows\system32\appraiser.dll
2015-09-18 19:09 . 2015-10-14 18:33 1163776 ----a-w- c:\windows\system32\aeinv.dll
2015-09-02 12:47 . 2015-09-02 12:47 2048 ----a-w- c:\windows\SysWow64\msxml6r.dll
2015-09-02 12:47 . 2015-09-02 12:47 2048 ----a-w- c:\windows\SysWow64\msxml3r.dll
2015-09-02 12:47 . 2015-09-02 12:47 2048 ----a-w- c:\windows\system32\msxml6r.dll
2015-09-02 12:47 . 2015-09-02 12:47 2048 ----a-w- c:\windows\system32\msxml3r.dll
2015-09-02 12:47 . 2015-09-02 12:47 2004480 ----a-w- c:\windows\system32\msxml6.dll
2015-09-02 12:47 . 2015-09-02 12:47 1887232 ----a-w- c:\windows\system32\msxml3.dll
2015-09-02 12:47 . 2015-09-02 12:47 1391104 ----a-w- c:\windows\SysWow64\msxml6.dll
2015-09-02 12:47 . 2015-09-02 12:47 1241088 ----a-w- c:\windows\SysWow64\msxml3.dll
2015-09-02 12:46 . 2015-09-02 12:46 82944 ----a-w- c:\windows\system32\dwmapi.dll
2015-09-02 12:46 . 2015-09-02 12:46 67584 ----a-w- c:\windows\SysWow64\dwmapi.dll
2015-09-02 12:46 . 2015-09-02 12:46 1632256 ----a-w- c:\windows\system32\dwmcore.dll
2015-09-02 12:46 . 2015-09-02 12:46 1372160 ----a-w- c:\windows\SysWow64\dwmcore.dll
2015-09-02 12:46 . 2015-09-02 12:46 70656 ----a-w- c:\windows\system32\appinfo.dll
2015-09-02 12:46 . 2015-09-02 12:46 1941504 ----a-w- c:\windows\system32\authui.dll
2015-09-02 12:46 . 2015-09-02 12:46 1805824 ----a-w- c:\windows\SysWow64\authui.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-02-17 00:23 220632 ----a-w- c:\users\Ryan\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-02-17 00:23 220632 ----a-w- c:\users\Ryan\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-02-17 00:23 220632 ----a-w- c:\users\Ryan\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HP Officejet Pro 8600 (NET)"="c:\program files\HP\HP Officejet Pro 8600\Bin\ScanToPCActivationApp.exe" [2011-09-09 2676584]
"WinFLTray"="c:\windows\SysWow64\WinFLTray.exe" [2014-05-28 322360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"RunAIShell"="c:\program files (x86)\ASUS\AI Manager\AsShellApplication.exe" [2009-12-23 232064]
"ASUS AiChargerPlus Execute"="c:\program files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe" [2010-11-08 465536]
"ASUS Easy Update"="c:\program files (x86)\ASUS\ASUS Easy Update\ALU.exe" [2011-08-09 195200]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2015-04-29 1022152]
"DivXMediaServer"="c:\program files (x86)\DivX\DivX Media Server\DivXMediaServer.exe" [2013-09-11 450560]
"StartCCC"="c:\program files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2015-08-04 767176]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37Crusader]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro37CrusaderBoot]
@=""
.
R0 amdkmafd;AMD Audio Bus Lower Filter;c:\windows\system32\DRIVERS\amdkmafd.sys;c:\windows\SYSNATIVE\DRIVERS\amdkmafd.sys [x]
R2 ASGT;ASGT;c:\windows\SysWOW64\ASGT.exe;c:\windows\SysWOW64\ASGT.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 LiveUpdateSvc;LiveUpdate;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 athur;Atheros AR9271 Wireless Network Adapter Service;c:\windows\system32\DRIVERS\athurx.sys;c:\windows\SYSNATIVE\DRIVERS\athurx.sys [x]
R3 BEService;BattlEye Service;c:\program files (x86)\Common Files\BattlEye\BEService.exe;c:\program files (x86)\Common Files\BattlEye\BEService.exe [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
R3 Desura Install Service;Desura Install Service;c:\program files (x86)\Common Files\Desura\desura_service.exe;c:\program files (x86)\Common Files\Desura\desura_service.exe [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 EasyAntiCheat;EasyAntiCheat;c:\windows\system32\EasyAntiCheat.exe;c:\windows\SYSNATIVE\EasyAntiCheat.exe [x]
R3 EvolveVirtualAdapter;Evolve Virtual Miniport Driver;c:\windows\system32\DRIVERS\evolve.sys;c:\windows\SYSNATIVE\DRIVERS\evolve.sys [x]
R3 hitmanpro37;HitmanPro 3.7 Support Driver;c:\windows\system32\drivers\hitmanpro37.sys;c:\windows\SYSNATIVE\drivers\hitmanpro37.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys;c:\windows\SYSNATIVE\drivers\Impcd.sys [x]
R3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
R3 jswpsapi;JumpStart Wi-Fi Protected Setup;c:\program files (x86)\NETGEAR\WNA1100\jswpsapi.exe;c:\program files (x86)\NETGEAR\WNA1100\jswpsapi.exe [x]
R3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver;c:\windows\system32\DRIVERS\LGSHidFilt.Sys;c:\windows\SYSNATIVE\DRIVERS\LGSHidFilt.Sys [x]
R3 LGSUsbFilt;Logitech Gaming KMDF USB Filter Driver;c:\windows\system32\DRIVERS\LGSUsbFilt.Sys;c:\windows\SYSNATIVE\DRIVERS\LGSUsbFilt.Sys [x]
R3 LULU Software CrashHandler;LULU Software CrashHandler;c:\program files (x86)\Soda PDF 3D Reader\crash-handler-ws.exe;c:\program files (x86)\Soda PDF 3D Reader\crash-handler-ws.exe [x]
R3 LVPr2M64;Logitech LVPr2M64 Driver;c:\windows\system32\DRIVERS\LVPr2M64.sys;c:\windows\SYSNATIVE\DRIVERS\LVPr2M64.sys [x]
R3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys;c:\windows\SYSNATIVE\DRIVERS\lvrs64.sys [x]
R3 LVUVC64;Logitech HD Webcam C310(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys;c:\windows\SYSNATIVE\DRIVERS\lvuvc64.sys [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\3.8.150\McCHSvc.exe;c:\program files\McAfee Security Scan\3.8.150\McCHSvc.exe [x]
R3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;c:\windows\system32\DRIVERS\MijXfilt.sys;c:\windows\SYSNATIVE\DRIVERS\MijXfilt.sys [x]
R3 mv91cons;mv91cons;c:\windows\system32\drivers\mv91cons.sys;c:\windows\SYSNATIVE\drivers\mv91cons.sys [x]
R3 mv91xx;mv91xx;c:\windows\system32\drivers\mv91xx.sys;c:\windows\SYSNATIVE\drivers\mv91xx.sys [x]
R3 NLNdisMP;NLNdisMP;c:\windows\system32\DRIVERS\nlndis.sys;c:\windows\SYSNATIVE\DRIVERS\nlndis.sys [x]
R3 NLNdisPT;NetLimiter Ndis Protocol Service;c:\windows\system32\DRIVERS\nlndis.sys;c:\windows\SYSNATIVE\DRIVERS\nlndis.sys [x]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys;c:\windows\SYSNATIVE\drivers\nusb3hub.sys [x]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys;c:\windows\SYSNATIVE\drivers\nusb3xhc.sys [x]
R3 Origin Client Service;Origin Client Service;c:\program files (x86)\Origin\OriginClientService.exe;c:\program files (x86)\Origin\OriginClientService.exe [x]
R3 PlantronicsGC;PLTGC Interface;c:\windows\system32\drivers\PLTGC.sys;c:\windows\SYSNATIVE\drivers\PLTGC.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtVlan60.sys;c:\windows\SYSNATIVE\DRIVERS\RtVlan60.sys [x]
R3 ScpVBus;Scp Virtual Bus Driver;c:\windows\system32\DRIVERS\ScpVBus.sys;c:\windows\SYSNATIVE\DRIVERS\ScpVBus.sys [x]
R3 ScreamBAudioSvc;ScreamBee Audio;c:\windows\system32\drivers\ScreamingBAudio64.sys;c:\windows\SYSNATIVE\drivers\ScreamingBAudio64.sys [x]
R3 Soda PDF 3D Reader;Soda PDF 3D Reader;c:\program files (x86)\Soda PDF 3D Reader\ws.exe;c:\program files (x86)\Soda PDF 3D Reader\ws.exe [x]
R3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys;c:\program files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [x]
S0 AiChargerPlus;ASUS Charger Plus Driver;c:\windows\system32\DRIVERS\AiChargerPlus.sys;c:\windows\SYSNATIVE\DRIVERS\AiChargerPlus.sys [x]
S0 ambakdrv;ambakdrv;c:\windows\system32\ambakdrv.sys;c:\windows\SYSNATIVE\ambakdrv.sys [x]
S0 amdkmpfd;AMD PCI Root Bus Lower Filter;c:\windows\system32\DRIVERS\amdkmpfd.sys;c:\windows\SYSNATIVE\DRIVERS\amdkmpfd.sys [x]
S0 iusb3hcs;Intel(R) USB 3.0 Host Controller Switch Driver;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S0 SCMNdisP;General NDIS Protocol Driver;c:\windows\system32\DRIVERS\scmndisp.sys;c:\windows\SYSNATIVE\DRIVERS\scmndisp.sys [x]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys;c:\windows\SYSNATIVE\Drivers\SmartDefragDriver.sys [x]
S1 AsUpIO;AsUpIO;SysWow64\drivers\AsUpIO.sys;SysWow64\drivers\AsUpIO.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS [x]
S1 JSWPSLWF;JumpStart Wireless Filter Driver;c:\windows\system32\DRIVERS\jswpslwfx.sys;c:\windows\SYSNATIVE\DRIVERS\jswpslwfx.sys [x]
S1 nbdrv;NetBalancer Filter;c:\windows\system32\DRIVERS\nbdrv.sys;c:\windows\SYSNATIVE\DRIVERS\nbdrv.sys [x]
S1 WinFLAdrv;WinFLAdrv;SysWOW64\WinFLAdrv.sys;SysWOW64\WinFLAdrv.sys [x]
S2 AdvancedSystemCareService7;Advanced SystemCare Service 7;c:\program files (x86)\IObit\Advanced SystemCare 7\ASCService.exe;c:\program files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [x]
S2 aksdf;aksdf;c:\windows\system32\drivers\aksdf.sys;c:\windows\SYSNATIVE\drivers\aksdf.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 ammntdrv;ammntdrv;c:\windows\system32\ammntdrv.sys;c:\windows\SYSNATIVE\ammntdrv.sys [x]
S2 amwrtdrv;amwrtdrv;c:\windows\system32\amwrtdrv.sys;c:\windows\SYSNATIVE\amwrtdrv.sys [x]
S2 asComSvc;ASUS Com Service;c:\program files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe;c:\program files (x86)\ASUS\AXSP\1.00.14\atkexComSvc.exe [x]
S2 asHmComSvc;ASUS HM Com Service;c:\program files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe;c:\program files (x86)\ASUS\AAHM\1.00.14\aaHMSvc.exe [x]
S2 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [x]
S2 Backupper Service;AOMEI Backupper Scheduler Service;c:\program files (x86)\AOMEI Backupper Standard Edition 2.0.2\ABService.exe;c:\program files (x86)\AOMEI Backupper Standard Edition 2.0.2\ABService.exe [x]
S2 Device Handle Service;Device Handle Service;c:\windows\SysWOW64\AsHookDevice.exe;c:\windows\SysWOW64\AsHookDevice.exe [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 FLService;FLService;c:\windows\SysWow64\WinFLService.exe;c:\windows\SysWow64\WinFLService.exe [x]
S2 hasplms;Sentinel Local License Manager;c:\windows\system32\hasplms.exe -run;c:\windows\SYSNATIVE\hasplms.exe -run [x]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn\x64\LMIGuardianSvc.exe;c:\program files (x86)\LogMeIn\x64\LMIGuardianSvc.exe [x]
S2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files (x86)\LogMeIn\x64\RaInfo.sys;c:\program files (x86)\LogMeIn\x64\RaInfo.sys [x]
S2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys;c:\windows\SYSNATIVE\drivers\npf.sys [x]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys;c:\windows\SYSNATIVE\DRIVERS\RtNdPt60.sys [x]
S2 RzKLService;RzKLService;c:\program files (x86)\Razer\Razer Game Booster\RzKLService.exe;c:\program files (x86)\Razer\Razer Game Booster\RzKLService.exe [x]
S2 UMVPFSrv;UMVPFSrv;c:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe;c:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 WinVDEDrv;WinVDEDrv;c:\windows\SysWow64\WinVDEdrv.sys;c:\windows\SysWow64\WinVDEdrv.sys [x]
S2 WSWNA1100;WSWNA1100;c:\program files (x86)\NETGEAR\WNA1100\WifiSvc.exe;c:\program files (x86)\NETGEAR\WNA1100\WifiSvc.exe [x]
S3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS;c:\windows\SYSNATIVE\drivers\AmUStor.SYS [x]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys;c:\windows\SYSNATIVE\DRIVERS\asmthub3.sys [x]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys;c:\windows\SYSNATIVE\DRIVERS\asmtxhci.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 SmbDrvI;SmbDrvI;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver_Intel.sys [x]
S3 t_mouse.sys;HID-compliand device;c:\windows\system32\DRIVERS\t_mouse.sys;c:\windows\SYSNATIVE\DRIVERS\t_mouse.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - 85850702
*Deregistered* - 85850702
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
Hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-11-11 18:19 997704 ----a-w- c:\program files (x86)\Google\Chrome\Application\46.0.2490.86\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2015-11-14 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-11-10 03:12]
.
2015-11-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-07-14 18:53]
.
2015-11-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-07-14 18:53]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-02-17 00:23 244696 ----a-w- c:\users\Ryan\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-02-17 00:23 244696 ----a-w- c:\users\Ryan\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-02-17 00:23 244696 ----a-w- c:\users\Ryan\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
2011-05-25 07:09 227840 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.104.216\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{64174815-8D98-4CE6-8646-4C039977D808}"
[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
2011-05-25 07:09 227840 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.104.216\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2015-01-15 7660760]
"GamecomSound"="c:\program files\Plantronics\GameCom780\GameCom780.exe" [2013-03-22 776480]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2014-01-30 171992]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2014-01-30 399832]
"Persistence"="c:\windows\system32\igfxpers.exe" [2014-01-30 442328]
"MouseDriver"="TiltWheelMouse.exe" [2012-12-19 241152]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = www.google.com
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = localhost; 127.0.0.1; <local>
uSearchAssistant = hxxp://www.google.com
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
TCP: DhcpNameServer = 192.168.2.1
DPF: {1E4FF862-57ED-4E5C-9C57-3ECB8DC17827} - hxxp://24.1.8.177/ePlusDVR.cab
DPF: {9AA03FEC-6582-48B1-BC62-821D4A7B9461} - hxxp://24.1.14.77:85/N9DvrOcx.cab?V1111
DPF: {9EF2BA47-C6A7-470D-9DD9-4323B0CB8353} - hxxp://69.250.57.22/WebClient.exe
FF - ProfilePath - c:\users\Ryan\AppData\Roaming\Mozilla\Firefox\Profiles\agvhgc2c.default-1419558863131\
FF - prefs.js: browser.search.selectedEngine - Google
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-Locked - (no file)
c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Best Buy pc app.lnk - c:\programdata\Best Buy pc app\ClickOnceSetup.exe "c:\programdata\Best Buy pc app\Best Buy pc app.application"
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
ShellIconOverlayIdentifiers-{FB314ED9-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDA-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDB-A251-47B7-93E1-CDD82E34AF8B} - (no file)
ShellIconOverlayIdentifiers-{FB314EDC-A251-47B7-93E1-CDD82E34AF8B} - (no file)
AddRemove-Cain & Abel v4.9.43 - c:\progra~2\Cain\UNINSTAL.EXE
AddRemove-Doom 2 Hell On Earth (Final Doom) 1.00 - c:\program files (x86)\Company\Doom 2 Hell On Earth (Final Doom)\Uninstall.exe
AddRemove-Doom 2 Plutonia Experiment 1.00 - c:\program files (x86)\Company\Doom 2 Plutonia Experiment\Uninstall.exe
AddRemove-Doom 2 TNT 1.00 - c:\program files (x86)\Company\Doom 2 TNT\Uninstall.exe
AddRemove-Driver Booster_is1 - c:\program files (x86)\IObit\Driver Booster\unins000.exe
AddRemove-WebClient - c:\windows\system32\WebClient\uninstall.cmd
AddRemove-e55b814e55744b76 - c:\programdata\Best Buy pc app\ClickOnceUninstaller.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (LocalSystem)
"{18DF081C-E8AD-4283-A596-FA578C2EBDC3}"=hex:51,66,7a,6c,4c,1d,38,12,72,0b,cc,
1c,9f,a6,ed,07,da,80,b9,17,89,70,f9,d7
"{72853161-30C5-4D22-B7F9-0BBC1D38A37E}"=hex:51,66,7a,6c,4c,1d,38,12,0f,32,96,
76,f7,7e,4c,08,c8,ef,48,fc,18,66,e7,6a
"{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}"=hex:51,66,7a,6c,4c,1d,38,12,d5,94,07,
72,c2,98,42,03,c9,fd,97,9a,f4,87,69,57
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,38,12,0a,d7,23,
94,30,02,d1,0f,f1,da,12,24,73,56,27,d2
"{B4F3A835-0E21-4959-BA22-42B3008E02FF}"=hex:51,66,7a,6c,4c,1d,38,12,5b,ab,e0,
b0,13,40,37,0c,c5,34,01,f3,05,d0,46,eb
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,38,12,2a,03,db,
df,77,ea,35,06,c3,62,df,65,c4,9b,cc,bd
"{2A541AE1-5BF6-4665-A8A3-CFA9672E4291}"=hex:51,66,7a,6c,4c,1d,38,12,8f,19,47,
2e,c4,15,0b,03,d7,b5,8c,e9,62,70,06,85
"{5081D2D4-1637-404c-B74F-50526718257D}"=hex:51,66,7a,6c,4c,1d,3b,1b,e9,fc,a3,
79,30,75,13,3d,93,74,22,3f,57,6b,50,51
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration]
@Denied: (2) (LocalSystem)
"Timestamp"=hex:3d,d3,2f,15,f2,ad,cf,01
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,98,0c,b6,72,35,59,0e,43,bc,f1,67,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,98,0c,b6,72,35,59,0e,43,bc,f1,67,\
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_19_0_0_245_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_19_0_0_245_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_19_0_0_245_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_19_0_0_245_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_19_0_0_245.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.19"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_19_0_0_245.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_19_0_0_245.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_19_0_0_245.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2015-11-14 15:38:21
ComboFix-quarantined-files.txt 2015-11-14 20:38
ComboFix2.txt 2015-10-30 02:39
.
Pre-Run: 65,367,437,312 bytes free
Post-Run: 65,188,667,392 bytes free
.
- - End Of File - - ECFC1A856AE0B2033D7606000769FB7E
A36C5E4F47E84449FF07ED3517B43A31
 
Last edited by a moderator:
S

somebody480

New Member
If I may ask, what do you look for in these logs?

Combofix programs log
"Spore"
?????! ????????? ~???????!?~
µTorrent
A Game of Thrones version 0.6
A Game of Thrones version 0.9.5
Adobe AIR
Adobe Flash Player 19 ActiveX
Adobe Flash Player 19 NPAPI
Adobe Reader X (10.1.16) MUI
Adobe Shockwave Player + Authorware Web Player
Adobe Shockwave Player 12.1
Advanced Grapher 2.2
Advanced SystemCare 7
Age of Mythology: Extended Edition
AI Manager
AI Suite II
AIMP3
Amazon Kindle
AMD Catalyst Control Center
AOMEI Backupper Standard Edition 2.0.2
Apple Application Support
Apple Software Update
Applian Director
ARMA 2
ARMA 2: Operation Arrowhead
ARMA 2: Operation Arrowhead Beta
Asmedia ASM104x USB 3.0 Host Controller Driver
ASUS Backup Wizard
ASUS Easy Update
ASUS GPU Tweak
ASUS Product Register Program
ASUS WebStorage
atWar
Audacity 2.1.0
Battle.net
BattlEye for OA Uninstall
BattlEye Uninstall
Best Buy pc app
BOSS
BYOND
Cain & Abel v4.9.43
calibre
CameraHelperMsi
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center Localization All
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
Cheat Engine 6.2
Cheat Engine 6.4
Chivalry: Medieval Warfare
Company of Heroes: Opposing Fronts
Course Vector .minerva
Crusader Kings II
Cube World version 0.0.1
Curse
Curse Client
D3DX10
DAEMON Tools Lite
Dark Souls: Prepare to Die Edition
DARK SOULS™ II
Definition Update for Microsoft Office 2010 (KB3101540) 32-Bit Edition
Desura
Dirty Bomb
Discord
DivX Setup
Doom 1 Ultimate (Windows) 1.00
Doom 2 (Windows) 1.00
Doom 2 Hell On Earth (Final Doom) 1.00
Doom 2 Plutonia Experiment 1.00
Doom 2 TNT 1.00
Driver Booster 2.1
Elder Kings CK2 Total Conversion
‚P‚Ol”Æ‚éI
erLT
Europa Universalis IV
Fallout 4
Fallout Mod Manager 0.13.21
Fallout New Vegas
Fallout: New Vegas
ffdshow v1.2.4422 [2012-04-09]
FINAL FANTASY XIV: A Realm Reborn
FlashGet 1.9.6.1073
Folder Lock
Fotogalerie
Free Mouse Auto Clicker 3.1
Frozen Synapse
FTL: Faster Than Light
FullRecall
Galerie de photos
Galería de fotos
Game Dev Tycoon version 1.4.5
Google Chrome
Google Update Helper
Grand Theft Auto IV
Grand Theft Auto V
Guild Wars 2
H1Z1
Half-Life 2
Hearthstone
Heroes of the Storm
InstallShieldHiRezCurrent
Insurgency
Intel(R) Management Engine Components
Intel(R) Processor Graphics
IntelliJ IDEA Community Edition 13.1.5
IrfanView (remove only)
Java 8 Update 45
Java Auto Updater
JC2-MP version 0.0.10
jGRASP
Junk Mail filter update
Kerbal Space Program
Killing Floor
Lagarith Lossless Codec (1.3.27)
League of Legends
LiveMaker
Logitech Vid HD
Logitech Webcam Software
LogMeIn
LOOT version 0.8.1
LWS Facebook
LWS Gallery
LWS Help_main
LWS Launcher
LWS Motion Detection
LWS Pictures And Video
LWS Twitter
LWS Video Mask Maker
LWS Webcam Software
LWS WLM Plugin
LWS YouTube Plugin
Macro Recorder
Macro Recorder 5.7.6
Magicka
Malwarebytes Anti-Malware version 2.2.0.1024
Microsoft .NET Framework 1.1
Microsoft Application Error Reporting
Microsoft Chart Controls for Microsoft .NET Framework 3.5
Microsoft Games for Windows - LIVE Redistributable
Microsoft Games for Windows Marketplace
Microsoft Office 2010
Microsoft Office Access MUI (English) 2010
Microsoft Office Access Setup Metadata MUI (English) 2010
Microsoft Office Excel MUI (English) 2010
Microsoft Office Groove MUI (English) 2010
Microsoft Office InfoPath MUI (English) 2010
Microsoft Office OneNote MUI (English) 2010
Microsoft Office Outlook Connector
Microsoft Office Outlook MUI (English) 2010
Microsoft Office PowerPoint MUI (English) 2010
Microsoft Office Professional Plus 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proof (Spanish) 2010
Microsoft Office Proofing (English) 2010
Microsoft Office Publisher MUI (English) 2010
Microsoft Office Shared MUI (English) 2010
Microsoft Office Shared Setup Metadata MUI (English) 2010
Microsoft Office Word MUI (English) 2010
Microsoft Outlook Social Connector Provider for Windows Live Messenger 32-bit
Microsoft SkyDrive
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
Microsoft Visual J# .NET Redistributable Package 1.1
Microsoft WSE 3.0 Runtime
Microsoft XNA Framework Redistributable 3.1
Mount & Blade: Warband
Mount&Blade Warband
Movie Maker
Mozilla Firefox 39.0 (x86 en-US)
Mozilla Maintenance Service
MPC-HC 1.6.5.6366
MSVCRT
MSVCRT_amd64
MSVCRT110
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP3 Parser (KB2721691)
MSXML 4.0 SP3 Parser (KB2758694)
MSXML 4.0 SP3 Parser (KB973685)
Mumble 1.2.4
NETGEAR WNA1100 N150 Wireless USB Adapter
NifSkope (remove only)
Notepad++
NVIDIA PhysX
Offworld Trading Company
OldSchool RuneScape Launcher 1.2.6
OpenOffice.org 3.4.1
Origin
OSU-gt RC9
Patch v4.17b Update
PFPortChecker 1.0.39
Photo Common
Photo Gallery
PlanetSide 2
Plantronics® GameCom 780 Software for Dolby® Headphone
PolyView 4.461
PunkBuster Services
puush
RaidCall
Raptr
Razer Game Booster
Realtek Ethernet Controller Driver
Realtek Ethernet Diagnostic Utility
Realtek High Definition Audio Driver
Red Orchestra 2: Heroes of Stalingrad Beta
Reign Of Kings
Replay Video Capture 6
RGSS-RTP Standard
Robocraft
rock
Rockstar Games Social Club
RPG MAKER VX Ace RTP
RPG Maker VX RTP
RPG????VX RTP
RuneScape Launcher 1.2.3
Security Task Manager 1.8g
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 4.5.2 (KB3023224)
Security Update for Microsoft .NET Framework 4.5.2 (KB3035490)
Security Update for Microsoft .NET Framework 4.5.2 (KB3037581)
Security Update for Microsoft .NET Framework 4.5.2 (KB3074230)
Security Update for Microsoft .NET Framework 4.5.2 (KB3074550)
Security Update for Microsoft .NET Framework 4.5.2 (KB3097996)
Security Update for Microsoft .NET Framework 4.5.2 (KB3098781)
Security Update for Microsoft Access 2010 (KB3101544) 32-Bit Edition
Security Update for Microsoft Excel 2010 (KB3101543) 32-Bit Edition
Security Update for Microsoft InfoPath 2010 (KB2878230) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2553313) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2598244) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2810073) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2850016) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2880971) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2881071) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2920748) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB2965310) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB3054848) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB3085560) 32-Bit Edition
Security Update for Microsoft Office 2010 (KB3101521) 32-Bit Edition
Security Update for Microsoft OneNote 2010 (KB3054978) 32-Bit Edition
Security Update for Microsoft PowerPoint 2010 (KB3085594) 32-Bit Edition
Security Update for Microsoft Publisher 2010 (KB2817478) 32-Bit Edition
Security Update for Microsoft Visio 2010 (KB3101526) 32-Bit Edition
Security Update for Microsoft Word 2010 (KB2965313) 32-Bit Edition
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
Sid Meier's Civilization 4
Sid Meier's Civilization V
Sid Meier's Civilization V - Game of the Year Edition
Sid Meier's Civilization V SDK
Sins of a Solar Empire: Rebellion
Skype™ 7.13
Skyrim Creation Kit
Smart Defrag 4
SMITE
Soda PDF 3D Reader
Soda PDF 3D Reader View Module
Source SDK Base 2006
STAR WARS™ Battlefront™ Beta
Starbound
StarCraft
StarCraft II
Steam
Stronghold Crusader Extreme HD
Super Mouse Auto Clicker 4.0.1
swMSM
System Requirements Lab CYRI
System Requirements Lab Detection
Tabletop Simulator
TCPEye 1.0
TeamSpeak 3 Client
The Binding of Isaac
The Elder Scrolls V: Skyrim
The Sims(TM) 3
The Sims™ 3
The Sims™ 3 Pets
Toribash
Ubisoft Game Launcher
Update for Microsoft Excel 2010 (KB2589348) 32-Bit Edition
Update for Microsoft Filter Pack 2.0 (KB2881026) 32-Bit Edition
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553140) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553347) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553388) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589318) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589386) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597089) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687275) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2791057) 32-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition
Update for Microsoft Office 2010 (KB2837592) 32-Bit Edition
Update for Microsoft Office 2010 (KB2883019) 32-Bit Edition
Update for Microsoft Office 2010 (KB2889828) 32-Bit Edition
Update for Microsoft Office 2010 (KB2910896) 32-Bit Edition
Update for Microsoft Office 2010 (KB3054873) 32-Bit Edition
Update for Microsoft Office 2010 (KB3054886) 32-Bit Edition
Update for Microsoft Office 2010 (KB3055042) 32-Bit Edition
Update for Microsoft Office 2010 (KB3055047) 32-Bit Edition
Update for Microsoft Office 2010 (KB3085512) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2956075) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB3085604) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB3101535) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553308) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2880517) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition
Update for Microsoft Visio Viewer 2010 (KB2881021) 32-Bit Edition
VC80CRTRedist - 8.0.50727.6195
VLC media player 2.0.8
WebClient
Windows 7 USB/DVD Download Tool
Windows Glulxe
Windows Live
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live Installer
Windows Live Mail
Windows Live Messenger
Windows Live Photo Common
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Windows Media Encoder 9 Series
WinPcap 4.1.2
WinRAR 4.20 (32-bit)
World of Warcraft
Wrye Bash
x264vfw - H.264/MPEG-4 AVC codec (remove only)
x264vfw - H.264/MPEG-4 AVC codec for x64 (remove only)
Xvid MPEG-4 Video Codec
Yahoo! Software Update
Zandronum
 
Last edited by a moderator:
johnb35

johnb35

Administrator
Staff member
Any difference in performance since running these programs? Sorry, but I haven't had time to look through the logs in depth. Should be able to tomorrow afternoon and then will reply with any fixes needed.
 
S

somebody480

New Member
I have a new problem: http://imgur.com/8f4q7To

I was simply browsing on Chrome when this happened. Oddly, the display on my 2nd monitor was completely normal, showing my desktop background.

I shut down my computer, unplugged it, and opened the case. I used some compressed air to blow some small amount of dust out, but there wasn't much (I try to clean it regularly). Then I wiggled some cords around, unplugged the HDMI to the monitor and plugged it back in, plugged the power in, and turned it back on. Right now everything is back to normal.

The monitor plugs into my GPU through the HDMI port.
 
johnb35

johnb35

Administrator
Staff member
So are you saying all issues have resolved themselves or you still have the poor performance? Have you installed the latest AMD driver for your video card? You did have a decent amount of malware which has been removed. What I would do if you are still having the performance issue is to remove video card and reinsert it. So this all started when you added the video card or did it just start happening?

A few things to do though.

update java
update adobe reader
uninstall best buy pc app
 
S

somebody480

New Member
Should I also download Google Ultron? :)

Bootup times are down to normal now (2-3 minutes, and the computer is actually usable after logging in). I haven't noticed any windows explorer crashes or any programs freezing since rebooting after the display messup, either. The white flickers and background noise from having uncapped frame-rates remains, but I've been told elsewhere that this is a normal thing.

You are probably right, most likely I did not put in the graphics card correctly. If I have any problems in the future I'll be sure to re-check that first. But all of the issues do seem to be resolved.

Thank you very much for your help
 
johnb35

johnb35

Administrator
Staff member
If it still takes 2 to 3 minutes to fully boot your computer, then you have some issues. Use the msconfig utility to disable any programs not needed to run at bootup. I saw that you have a lot of programs installed.
 
S

somebody480

New Member
johnb35 said:
If it still takes 2 to 3 minutes to fully boot your computer, then you have some issues. Use the msconfig utility to disable any programs not needed to run at bootup. I saw that you have a lot of programs installed.
Click to expand...
All nonessential programs are disabled at startup.

Using a stopwatch app on my phone, starting up took 2:20 minutes, then logging in took another 2:03 minutes. Logging in had me at just a black screen for these 2 minutes, before any display was shown.

Programs were laggy and unresponsive for around 3 minutes after this.

Guess I just had wishful thinking. Turns out problems don't actually fix themselves.
 
Agent Smith

Agent Smith

Well-Known Member
That's a lot of crap. You might want to try Autoruns and disable stuff you don't need starting up. But be very careful. Don't delete anything. https://technet.microsoft.com/en-us/sysinternals/bb963902.aspx

What is the Yahoo update and instead of Adobe to read PDFs try Foxit.

Are you running an anti-virus? Just for future reference. You might want to install Superantispyware, malwarebytes, Adwcleaner and Junkware removal tool. If you really want to scan the crap out of your computer check out Herdprotect. This will take a long, long time and has to scan twice. Uses 68 anti-virus engines. If anyone uses Herdprotect and uses OpenDNS it won't work. For me I have to either change DNS or use a VPN.

Keep in mind anything downloaded with uTorrent can have malware. You might also want to use Peerblock with uTorrent and load up the China, Taiwan and Russian IPs from iblocklist. rename the lists .p2p and add to the Peerblock list's directory.

Anyway... Just be careful what you download. If the file is smaller than 128 MB, scan it at Virustotal.

One more thing. With messengers you can use Trillian or Digsby.
 
Last edited:
S

somebody480

New Member
Agent Smith said:
That's a lot of crap. You might want to try Autoruns and disable stuff you don't need starting up. But be very careful. Don't delete anything. https://technet.microsoft.com/en-us/sysinternals/bb963902.aspx

What is the Yahoo update and instead of Adobe to read PDFs try Foxit.

Are you running an anti-virus? Just for future reference. You might want to install Superantispyware, malwarebytes, Adwcleaner and Junkware removal tool. If you really want to scan the crap out of your computer check out Herdprotect. This will take a long, long time and has to scan twice. Uses 68 anti-virus engines. If anyone uses Herdprotect and uses OpenDNS it won't work. For me I have to either change DNS or use a VPN.

Keep in mind anything downloaded with uTorrent can have malware. You might also want to use Peerblock with uTorrent and load up the China, Taiwan and Russian IPs from iblocklist. rename the lists .p2p and add to the Peerblock list's directory.

Anyway... Just be careful what you download. If the file is smaller than 128 MB, scan it at Virustotal.

One more thing. With messengers you can use Trillian or Digsby.
Click to expand...

I do not think it is a malware issue, to be honest. Most of what was picked up was just general adware type crap, which is almost unavoidable over time nowadays. I use Avast free version, but it's been disabled throughout this to help everything work as intended.

I will try Autoruns, thank you. I haven't really used utorrent for a while, but I read up before that peerblock is more of a feel-good program than it offers any kind of protection. However if I do ever use torrents in the future I will do as you suggested.

I am also uninstalling a lot of programs I don't use, mostly games. Going through the add/remove list and removing all the unused stuff that I have any knowledge about. If nothing else, at least I'll have more open storage space.





As for the display issues, my display went out again today. It's definitely the GPU. Sound came through fine (I was watching a youtube vid at the time). The monitors both work correctly. I triple checked the connections from my GPU to the motherboard and power supply, everything seems to be firmly connected. Just to be sure, I removed the GPU and re-inserted it and plugged all the connectors back in. My computer rebooted and is working again for now.

I don't think the GPU would be going bad so soon --- It's almost new. Similar issues occurred causing me to replace the built in GPU prior to the R9 270 that I have now. Maybe the motherboard is causing an issue?

I'm a newbie when it comes to hardware knowledge, so I don't really know. Anyone browsing this, please let me know if you think the GPU is just going bad, or if there is potentially another cause.

It'd be unfortunate to have to replace such an expensive GPU after such a short time.
 
johnb35

johnb35

Administrator
Staff member
somebody480 said:
I don't think the GPU would be going bad so soon --- It's almost new. Similar issues occurred causing me to replace the built in GPU prior to the R9 270 that I have now. Maybe the motherboard is causing an issue?
Click to expand...

If the onboard video was also doing the same thing then it appears its something else. Video cards can be bad from the beginning. This could be anywhere from software or other hardware causing this. You could check your power supply to make sure its outputting good power and the right voltages.
 
You must log in or register to reply here.
Top