Jump to content

FlagrantWolf

Members
 View Profile  See their activity

  • Posts

    14

  • Joined

  • Last visited

Reputation

0 Neutral
  1. FlagrantWolf
    Thanks so much for all your help Maurice. My C: drive is an SSD so there is no problem there. Unfortunately the problem with with windows explorer is still there and I cant even use windows update. I guess some of the windows system files must have gotten corrupted or something so I will reformat and reinstall windows and hope that fixes it.
  2. FlagrantWolf
    All processes killed ========== PROCESSES ========== ========== REGISTRY ========== Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent\ not found. Registry key HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avast5\ not found. ========== FILES ========== C:\Program Files\Alwil Software\Avast5\Setup folder moved successfully. C:\Program Files\Alwil Software\Avast5 folder moved successfully. C:\Users\Rock\AppData\Roaming\uTorrent folder moved successfully. C:\Program Files (x86)\uTorrent folder moved successfully. ========== COMMANDS ========== [EMPTYFLASH] User: All Users User: Default ->Flash cache emptied: 0 bytes User: Default User ->Flash cache emptied: 0 bytes User: Other ->Flash cache emptied: 0 bytes User: Public User: Rock ->Flash cache emptied: 2265 bytes User: UpdatusUser.HAL9000-2 Total Flash Files Cleaned = 0.00 mb [EMPTYJAVA] User: All Users User: Default User: Default User User: Other User: Public User: Rock ->Java cache emptied: 0 bytes User: UpdatusUser.HAL9000-2 Total Java Files Cleaned = 0.00 mb [EMPTYTEMP] User: All Users User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Other ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->FireFox cache emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Public ->Temp folder emptied: 0 bytes User: Rock ->Temp folder emptied: 1340885 bytes ->Temporary Internet Files folder emptied: 10265781 bytes ->Java cache emptied: 0 bytes ->FireFox cache emptied: 392832083 bytes ->Google Chrome cache emptied: 32132493 bytes ->Flash cache emptied: 0 bytes User: UpdatusUser.HAL9000-2 ->Temp folder emptied: 0 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32 (64bit) .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 11578 bytes %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 33170 bytes RecycleBin emptied: 40670535 bytes Total Files Cleaned = 455.00 mb Restore point Set: OTL Restore Point OTL by OldTimer - Version 3.2.69.0 log created on 02142013_124227 Files\Folders moved on Reboot... C:\Users\Rock\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully. PendingFileRenameOperations files... Registry entries deleted on Reboot... ======================== Results of screen317's Security Check version 0.99.57 Windows 7 x64 (UAC is enabled) Out of date service pack!! Internet Explorer 9 ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Enabled! Microsoft Security Essentials (On Access scanning disabled!) `````````Anti-malware/Other Utilities Check:````````` Malwarebytes Anti-Malware version 1.70.0.1100 Java 7 Update 13 Java version out of Date! Adobe Flash Player 11.6.602.168 Adobe Reader 9 Adobe Reader XI Mozilla Firefox (Firefox,. Firefox out of Date! Google Chrome 22.0.1229.94 Google Chrome 24.0.1312.57 ````````Process Check: objlist.exe by Laurent```````` Microsoft Security Essentials msseces.exe Windows Defender MSMpEng.exe Malwarebytes Anti-Malware mbamservice.exe Malwarebytes Anti-Malware mbamgui.exe Microsoft Security Client Antimalware MsMpEng.exe Malwarebytes' Anti-Malware mbamscheduler.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: 70% Defragment your hard drive soon! (Do NOT defrag if SSD!) ````````````````````End of Log``````````````````````
  3. FlagrantWolf
    After I ran aswMBR.exe and it finished the scan the Fix button was not enabled. aswMBR version 0.9.9.1707 Copyright© 2011 AVAST Software Run date: 2013-02-14 10:35:29 ----------------------------- 10:35:29.682 OS Version: Windows x64 6.1.7600 10:35:29.682 Number of processors: 4 586 0x2A07 10:35:29.683 ComputerName: HAL9000-2 UserName: Rock 10:35:30.096 Initialize success 10:36:01.732 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 10:36:01.733 Disk 0 Vendor: OCZ-SOLID2 1.5 Size: 61057MB BusType: 3 10:36:01.734 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP0T1L0-1 10:36:01.735 Disk 1 Vendor: WDC_WD1001FALS-00J7B1 05.00K05 Size: 953869MB BusType: 3 10:36:01.737 Disk 2 \Device\Harddisk2\DR2 -> \Device\Ide\IdeDeviceP1T0L0-2 10:36:01.738 Disk 2 Vendor: SAMSUNG_HD204UI 1AQ10001 Size: 1907729MB BusType: 3 10:36:01.739 Disk 3 \Device\Harddisk3\DR3 -> \Device\Ide\IdeDeviceP1T1L0-6 10:36:01.741 Disk 3 Vendor: WDC_WD7500AAKS-00RBA0 30.04G30 Size: 715404MB BusType: 3 10:36:01.742 Disk 4 \Device\Harddisk4\DR4 -> \Device\Ide\IdeDeviceP2T0L0-3 10:36:01.745 Disk 4 Vendor: WDC_WD5000AAKS-22YGA0 12.01C02 Size: 476940MB BusType: 3 10:36:01.747 Disk 0 MBR read successfully 10:36:01.749 Disk 0 MBR scan 10:36:01.752 Disk 0 Windows 7 default MBR code 10:36:01.754 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 61055 MB offset 2048 10:36:01.757 Disk 0 scanning C:\Windows\system32\drivers 10:36:02.927 Service scanning 10:36:04.824 Service MpNWMon C:\Windows\system32\DRIVERS\MpNWMon.sys **LOCKED** 32 10:36:06.284 Modules scanning 10:36:06.287 Scan finished successfully 10:36:30.967 Disk 0 MBR has been saved successfully to "C:\Users\Rock\Desktop\MBR.dat" 10:36:30.971 The log file has been saved successfully to "C:\Users\Rock\Desktop\aswMBR.txt" info.txt Logfile of random's system information tool 1.09 (written by random/random) Run by Rock at 2013-02-14 10:37:58 Microsoft Windows 7 Ultimate System drive C: has 8 GB (14%) free of 61 GB Total RAM: 16355 MB (66% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 10:38:13 AM, on 2/14/2013 Platform: Windows 7 (WinNT 6.00.3504) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDock.exe C:\Program Files\Logitech\GamePanel Software\Applets\LCDMedia.exe C:\PROGRA~2\Raptr\raptr.exe C:\PROGRA~2\Raptr\raptr_im.exe C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe C:\Program Files (x86)\Windows Media Player\wmplayer.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Sytexis Software\PlayClaw\PlayClaw.exe X:\Programs\Steam\steam.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_168.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_168.exe C:\Program Files (x86)\foobar2000\foobar2000.exe C:\Program Files (x86)\Last.fm\Last.fm Scrobbler.exe Q:\Programs\Guitar Pro 6\GuitarPro.exe C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe C:\Games\Translation Aggregator 0.4.9.r171\Translation Aggregator.exe C:\Program Files (x86)\ATLAS V14\Atlas.exe C:\Program Files (x86)\Skype\Phone\Skype.exe C:\Program Files\trend micro\Rock.exe O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: ATLAS Toolbar - {3C6301ED-0F78-4AF2-8150-D9C052361A8E} - C:\Program Files (x86)\ATLAS V14\ATLIECP.DLL O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Adobe Acrobat Create PDF Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll O3 - Toolbar: ATLAS Toolbar - {3C6301ED-0F78-4AF2-8150-D9C052361A8E} - C:\Program Files (x86)\ATLAS V14\ATLIECP.DLL O3 - Toolbar: Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKCU\..\Run: [Raptr] C:\PROGRA~2\Raptr\raptrstub.exe --startup O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [sandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe" O4 - HKCU\..\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKUS\S-1-5-18\..\Run: [DevconDefaultDB] C:\Windows\system32\READREG /SILENT /FAIL=1 (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [DevconDefaultDB] C:\Windows\system32\READREG /SILENT /FAIL=1 (User 'Default user') O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDock.exe O8 - Extra context menu item: &Save the YouTube video as MP3 - C:\Users\Rock\AppData\Roaming\Free YouTube to MP3 Converter Studio\Free YouTube to MP3 Converter Studio.htm O8 - Extra context menu item: &Translate with ATLAS - C:\Program Files (x86)\ATLAS V14\Atlscript.html O8 - Extra context menu item: Add to Evernote 4.0 - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 O8 - Extra context menu item: ATLAS Translation &Editor - C:\Program Files (x86)\ATLAS V14\AtlscriptEdit.html O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Open Client to monitor &1 - C:\Windows\web\AOpenClient.htm O8 - Extra context menu item: Open Client to monitor &2 - C:\Windows\web\AOpenClient.htm O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing) O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing) O9 - Extra button: ATLAS Translation - {B7707A72-4355-11D4-82BD-00000EBBEF8D} - C:\Program Files (x86)\ATLAS V14\Atlscript.html O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O15 - Trusted Zone: *.clonewarsadventures.com O15 - Trusted Zone: *.freerealms.com O15 - Trusted Zone: *.soe.com O15 - Trusted Zone: *.sony.com O15 - ESC Trusted Zone: http://*.update.microsoft.com O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files (x86)\Yahoo!\Common\Yinsthelper.dll O16 - DPF: {8E9089E1-0461-4F60-8150-1E334629ABB7} (CNeopleInstallAXCtlJap6 Object) - http://webdown2.nexon.co.jp/arad/real/installer/arad_dis.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - Q:\Games\PC GAMES INSTALLED\Hi-Rez Studios\HiPatchService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing) O23 - Service: OpenVPN Service (OpenVPNService) - Unknown owner - C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Sandboxie Service (SbieSvc) - SANDBOXIE L.T.D - C:\Program Files\Sandboxie\SbieSvc.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O23 - Service: TabletServicePen - Wacom Technology, Corp. - C:\Program Files\Tablet\Pen\Pen_Tablet.exe O23 - Service: Wacom Consumer Touch Service (TouchServicePen) - Wacom Technology, Corp. - C:\Program Files\Tablet\Pen\Pen_TouchService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 12474 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS winlogon.exe "C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe" C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService atieclxx "C:\Program Files\Sandboxie\SbieSvc.exe" "C:\Program Files\Tablet\Pen\Pen_TouchService.exe" /QuitInfo:0000000000000408;000000000000040C; /AddRef; "C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-207c0a5c-6d84-4670-94c5-523db55a1b15 -SystemEventPortName:HostProcess-28e80df7-b4fa-4a0f-a43c-86c428c44fcd -IoCancelEventPortName:HostProcess-a4fe7114-1ce7-4b5f-b5e4-e924e80cd549 -NonStateChangingEventPortName:HostProcess-98f4142c-2529-440b-ac43-188ad82fb5d0 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:327c5d13-e5cf-4b35-bd8a-6f3490c79c2e "C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-511211c4-b06a-44cb-b06d-1e7788da31cc -SystemEventPortName:HostProcess-e6ab3346-0fac-40a0-823c-c80a864c2d86 -IoCancelEventPortName:HostProcess-6e4d00a9-104b-4b22-9559-453839be76d9 -NonStateChangingEventPortName:HostProcess-3421bc81-e1ed-41df-8416-d234fcd4ba29 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:8b73b5dc-17b7-44d1-9be4-950d311afae9 C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation "Q:\Games\PC GAMES INSTALLED\Hi-Rez Studios\HiPatchService.exe" "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe" "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe" C:\Windows\SysWOW64\PnkBstrA.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\svchost.exe -k imgsvc "C:\Program Files\Tablet\Pen\Pen_Tablet.exe" "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray "C:\Windows\system32\Dwm.exe" "taskhost.exe" C:\Windows\Explorer.EXE "C:\Program Files\Logitech\GamePanel Software\LGDevAgt.exe" "C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" /SHOWHIDE "C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe" "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey "C:\Windows\System32\M-AudioTaskBarIcon.exe" "C:\Program Files\Logitech\SetPointP\SetPoint.exe" /launchGaming "C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun "C:\Program Files\Sandboxie\SbieCtrl.exe" "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" KHALMNPR.EXE /API "C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDock.exe" "C:\Program Files\Logitech\GamePanel Software\Applets\LCDMedia.exe" "C:\Program Files\Logitech\GamePanel Software\Applets\LCDClock.exe" "C:\Program Files\Logitech\GamePanel Software\Applets\LCDPop3.exe" "C:\Program Files\Logitech\GamePanel Software\Applets\LCDCountdown.exe" "C:\Program Files\Logitech\GamePanel Software\Applets\LCDRSS.exe" "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow HydraDM64.exe -h:66352 "Maximize to full desktop" "Maximize to window corners" "Restore desktop" "C:\PROGRA~2\Raptr\raptr.exe" --log_to_file --from_stub --startup "C:\Program Files (x86)\Stardock\ObjectDock Plus\Dock64.exe" "C:\Program Files\Tablet\Pen\Pen_TouchUser.exe" "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0 raptr_im.exe /QuitInfo:00000000000007E8;00000000000007E0; /AddRef; /QuitInfo:00000000000007D0;0000000000000814; "C:\Program Files\Tablet\Pen\Pen_TabletUser.exe" /loadhooks /Parent:0000000000001004 "C:\Program Files\Windows Media Player\wmpnetwk.exe" "C:\Program Files\Tablet\Pen\Pen_Tablet.exe" au "C:\Program Files\TortoiseSVN\bin\TSVNCache.exe" C:\Windows\System32\svchost.exe -k LocalServicePeerNet "C:\Program Files (x86)\Raptr\raptr_ep64.exe" "C:\Program Files\Windows Media Player\WMPSideShowGadget.exe" "C:\Program Files (x86)\Windows Media Player\wmplayer.exe" /SkipFUE /RemoteOCXLaunch "taskhost.exe" "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" "C:\Program Files (x86)\Sytexis Software\PlayClaw\PlayClaw.exe" "C:\Windows\system32\wuauclt.exe" "C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe" "X:\Programs\Steam\steam.exe" "steam://rungameid/218230" "C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=5808.19dd7a00.1477115313 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_168.dll" E7CF176E110C211B -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" 5808 "\\.\pipe\gecko-crash-server-pipe.5808" plugin "C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_168.exe" --proxy-stub-channel=Flash5032.663AFFC0.29621 --host-broker-channel=Flash5032.663AFFC0.7079 --host-pid=5032 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_168.dll" "C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_6_602_168.exe" --channel=2568.005EF2D0.90568964 --proxy-stub-channel=Flash5032.663AFFC0.29621 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_168.dll" --host-npapi-version=27 --type=renderer "C:\Program Files (x86)\foobar2000\foobar2000.exe" "C:\Program Files (x86)\Last.fm\Last.fm Scrobbler.exe" --tray C:\Windows\system32\wbem\wmiprvse.exe "Q:\Programs\Guitar Pro 6\GuitarPro.exe" "X:\Sheet Music\GUITAR TABS\Anime\Spice and Wolf\natsumi_kiyoura_tabi_no_tochuu.gp5" "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe" "C:\Users\Rock\Desktop\Explorer++.exe" "C:\Program Files\TortoiseSVN\bin\TSVNCache.exe" C:\Windows\explorer.exe /factory,{75dff2b7-6936-4c06-a8bb-676a7b00b24b} -Embedding "C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe" "H:\Games\PC Games\Japanese Games Installed\‘å}‘ŠÙ‚Ì—rŽ”‚¢\BGI.exe" "C:\AGTH\ITH\ITH.exe" "C:\Games\Translation Aggregator 0.4.9.r171\Translation Aggregator.exe" "C:\Program Files\Windows NT\Accessories\WORDPAD.EXE" "C:\Users\Rock\Desktop\japanese notes.rtf" "C:\Program Files (x86)\ATLAS V14\Atlas.exe" "C:\Program Files (x86)\Skype\Phone\Skype.exe" taskeng.exe {32DAD534-E47D-4CA7-BA55-9BA69BF5AB17} "C:\Users\Rock\Desktop\RSITx64.exe" C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\System32\svchost.exe -k WerSvcGroup ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\Google Software Updater.job C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2828431806-3534619636-760690903-1001Core.job C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2828431806-3534619636-760690903-1001UA.job =========Mozilla firefox========= ProfilePath - C:\Users\Rock\AppData\Roaming\Mozilla\Firefox\Profiles\oo0vpxaf.default [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe? Flash? Player 11.6.602.168 Plugin "Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_168.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=] "Description"=iTunes Detector Plug-in "Path"= [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0] "Description"= "Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@esn.me/esnsonar,version=0.70.0] "Description"=ESN Sonar browser plugin "Path"=C:\Program Files (x86)\Battlelog Web Plugins\Sonar\0.70.0\npesnsonar.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=10.13.2] "Description"=Java? Deployment Toolkit "Path"=C:\Windows\SysWOW64\npDeployJava1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2] "Description"=Oracle? Next Generation Java? Plug-In "Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.10516.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nexon.co.jp/NxGame] "Description"=Nexon Game Controller 1.0.0.1 "Path"=C:\ProgramData\NexonJP\NGM\npNxGameJP.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nexon.net/NxGame] "Description"=Nexon Game Controller "Path"=C:\ProgramData\NexonUS\NGM\npNxGameUS.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision] "Description"=NVIDIA stereo images plugin for Mozilla browsers "Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming] "Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers "Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pack.google.com/Google Updater;version=14] "Description"=Google Updater "Path"=C:\Program Files (x86)\Google\Google Updater\2.4.1908.5032\npCIDetect14.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin] "Description"=This plugin detects and launches Pando Media Booster "Path"=C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@wacom.com/wacom-plugin,version=1.1.0.10] "Description"=WebTablet Plugin API "Path"=C:\Program Files (x86)\TabletPlugins\npwacom.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@wacom.com/wacom-plugin,version=1.1.0.5] "Description"=WebTablet Plugin API "Path"=C:\Program Files (x86)\TabletPlugins\npwacom.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@wacom.com/wtPlugin,version=2.0.0.1] "Description"=WebTablet Plugin API "Path"=C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Acrobat] "Description"=Handles PDFs in-place in Firefox "Path"=Q:\Programs\Acrobat XI\Acrobat\Air\nppdf32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader] "Description"=Handles PDFs in-place in Firefox "Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect] "Description"= "Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1] "Description"=Yahoo! activeX Plug-in Bridge "Path"=C:\Program Files (x86)\Mozilla Firefox\plugins\npyaxmpb.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe? Flash? Player 11.6.602.168 Plugin "Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_6_602_168.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin] "Description"=Oracle® Next Generation JavaEPlug-In "Path"=C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect] "Description"= "Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll C:\Program Files (x86)\Mozilla Firefox\extensions\ {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} {972ce4c6-7e08-4474-a285-3208198ce6fd} C:\Program Files (x86)\Mozilla Firefox\components\ binary.manifest browsercomps.dll nsIQTScriptablePlugin.xpt C:\Program Files (x86)\Mozilla Firefox\plugins\ NPOFF12.DLL nppdf32.dll npqtplugin.dll npqtplugin2.dll npqtplugin3.dll npqtplugin4.dll npqtplugin5.dll npqtplugin6.dll npqtplugin7.dll NPSibelius.dll npyaxmpb.dll PDFNetC.dll QuickTimePlugin.class ScorchPDFWrapper.dll C:\Program Files (x86)\Mozilla Firefox\searchplugins\ amazondotcom.xml bing.xml eBay.xml google.xml twitter.xml wikipedia.xml yahoo.xml C:\Users\Rock\AppData\Roaming\Mozilla\Firefox\Profiles\oo0vpxaf.default\extensions\ ich@maltegoetz.de {b9db16a4-6edc-47ec-a1f4-b86292ed211d} ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}] Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2010-04-30 318960] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2011-09-22 78216] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3C6301ED-0F78-4AF2-8150-D9C052361A8E}] ATLAS Toolbar - C:\Program Files (x86)\ATLAS V14\ATLIECP.DLL [2007-10-04 296288] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-02-04 461216] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}] Adobe Acrobat Create PDF Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10 3834016] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}] Google Toolbar Notifier BHO - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2010-04-30 761840] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-02-04 170912] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}] Adobe Acrobat Create PDF from Selection - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {3C6301ED-0F78-4AF2-8150-D9C052361A8E} - ATLAS Toolbar - C:\Program Files (x86)\ATLAS V14\ATLIECP.DLL [2007-10-04 296288] {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe Acrobat Create PDF Toolbar - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2012-09-23 330392] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2011-10-18 7509096] "Launch LgDeviceAgent"=C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe [2010-08-03 415816] "Launch LGDCore"=C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe [2010-08-03 4725320] "Launch LCDMon"=C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe [2010-08-03 2412616] "MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2011-06-15 1436736] "M-Audio Taskbar Icon"=C:\Windows\system32\M-AudioTaskBarIcon.exe [2009-09-02 798216] "EvtMgr6"=C:\Program Files\Logitech\SetPointP\SetPoint.exe [2011-10-07 1744152] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Raptr"=C:\PROGRA~2\Raptr\raptrstub.exe [2013-01-29 55360] "Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-13 1475072] "SandboxieControl"=C:\Program Files\Sandboxie\SbieCtrl.exe [2012-12-16 765200] "HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2011-04-27 393216] "Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-01-08 18705664] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0] Q:\Programs\Acrobat XI\Acrobat\Acrotray.exe [2012-09-23 3477640] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-02 946352] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20 444904] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5.5ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [2011-01-12 1523360] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-10-11 59280] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AsioReg] REGSVR32.EXE /S CTASIO.DLL [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AsioThk32Reg] REGSVR32.EXE /S CTASIO.DLL [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe /nogui [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BambooCore] C:\Program Files (x86)\Bamboo Dock\BambooCore.exe [2011-09-26 646232] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ControlCenterCount] C:\Program Files (x86)\MSI\ControlCenter\ControlCenterCount.exe [2012-03-26 872448] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTHelper] CTHELPER.EXE [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTxfiHlp] CTXFIHLP.EXE [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] C:\Users\Rock\AppData\Local\Google\Update\GoogleUpdate.exe [2012-02-20 136176] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] C:\Program Files (x86)\iTunes\iTunesHelper.exe [2012-01-16 421736] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Line] C:\Program Files (x86)\Naver\LINE\Line.exe --booting [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSSE] C:\Program Files\Microsoft Security Essentials\msseces.exe -hide -runkey [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MusicManager] C:\Users\Rock\AppData\Local\Programs\Google\MusicManager\MusicManager.exe [2013-01-14 7437824] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PeerBlock] C:\Program Files\PeerBlock\peerblock.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Plex Media Server] C:\Program Files (x86)\Plex\Plex Media Server\Plex Media Server.exe [2012-12-03 3795688] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ProxyCap] C:\PROGRA~1\PROXYL~1\ProxyCap\pcapui.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] C:\Program Files (x86)\QuickTime\QTTask.exe [2012-10-25 421888] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe [2009-07-13 427520] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkyDrive] C:\Users\Rock\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [2012-11-15 255992] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper] C:\Users\Rock\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2012-09-28 1193176] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent] C:\Program Files (x86)\uTorrent\uTorrent.exe [2010-04-30 289584] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Audible Download Manager.lnk] C:\PROGRA~2\Audible\Bin\AUDIBL~1.EXE [2009-12-17 1795488] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Rock^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^bijin-tokei.lnk] C:\Program Files (x86)\bijin-tokei\bijin-tokei.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Rock^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^CurseClientStartup.ccip] C:\Users\Rock\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Rock^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk] C:\Users\Rock\AppData\Roaming\Dropbox\bin\Dropbox.exe [2013-01-20 28539272] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Rock^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EvernoteClipper.lnk] C:\PROGRA~2\Evernote\Evernote\EVERNO~2.EXE [2012-03-21 1014112] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Rock^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^PMS.exe - Shortcut.lnk] R:\Program Files (x86)\PS3 Media Server\PMS.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Rock^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^ViiKiiDesktopPlugin.lnk] Q:\Programs\VIKI\VIIKII~1\VIIKII~1.EXE [2011-08-08 142848] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Rock^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Yahoo! Widgets.lnk] C:\PROGRA~2\Yahoo!\Widgets\YAHOOW~1.EXE [2008-03-18 4742184] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] ""= [] "StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-12-19 642808] C:\Users\Rock\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup Stardock ObjectDock.lnk - C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDock.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn] c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll [2011-09-27 68376] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler] FencesShellExt - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files\Stardock\Fences Pro\FencesMenu64.dll [2010-07-22 464744] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDrives"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDrives"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "vidc.uyvy"=msyuv.dll "vidc.yuy2"=msyuv.dll "vidc.yvyu"=msyuv.dll "vidc.iyuv"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "vidc.yvu9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "wave2"=wdmaud.drv "midi2"=wdmaud.drv "mixer2"=wdmaud.drv "aux1"=wdmaud.drv "wave3"=wdmaud.drv "midi3"=wdmaud.drv "mixer3"=wdmaud.drv "aux2"=wdmaud.drv "VIDC.FPS1"=frapsv64.dll "midi4"=wdmaud.drv "wave4"=wdmaud.drv "midi5"=wdmaud.drv "mixer4"=wdmaud.drv "aux3"=wdmaud.drv "wave5"=wdmaud.drv "midi6"=wdmaud.drv "mixer5"=wdmaud.drv "aux4"=wdmaud.drv "wave6"=wdmaud.drv "mixer6"=wdmaud.drv "wave7"=wdmaud.drv "mixer7"=wdmaud.drv "wave8"=wdmaud.drv "mixer8"=wdmaud.drv "wave9"=wdmaud.drv "midi7"=wdmaud.drv "mixer9"=wdmaud.drv "aux5"=wdmaud.drv "midi8"=wdmaud.drv "aux6"=wdmaud.drv "midi9"=wdmaud.drv "aux7"=wdmaud.drv "vidc.mjpg"=bdmjpeg64.dll "vidc.mpeg"=bdmpegv64.dll "msacm.bdmpeg"=bdmpega64.acm "VIDC.TMB0"=tmbvcm64.dll "VIDC.RTV1"=rtvcvfw64.dll "aux8"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 ======List of files/folders created in the last 1 month====== 2013-02-14 10:37:58 ----D---- C:\rsit 2013-02-14 10:37:58 ----D---- C:\Program Files\trend micro 2013-02-14 05:02:33 ----D---- C:\Program Files (x86)\SplitMediaLabs 2013-02-13 11:13:32 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe 2013-02-13 11:01:37 ----D---- C:\_OTL 2013-02-13 09:12:44 ----D---- C:\Windows\temp 2013-02-13 09:12:43 ----A---- C:\ComboFix.txt 2013-02-13 09:10:55 ----D---- C:\$RECYCLE.BIN 2013-02-13 08:50:17 ----A---- C:\Windows\zip.exe 2013-02-13 08:50:17 ----A---- C:\Windows\SWSC.exe 2013-02-13 08:50:17 ----A---- C:\Windows\SWREG.exe 2013-02-13 08:50:17 ----A---- C:\Windows\sed.exe 2013-02-13 08:50:17 ----A---- C:\Windows\PEV.exe 2013-02-13 08:50:17 ----A---- C:\Windows\NIRCMD.exe 2013-02-13 08:50:17 ----A---- C:\Windows\MBR.exe 2013-02-13 08:50:17 ----A---- C:\Windows\grep.exe 2013-02-13 08:48:30 ----AD---- C:\Qoobox 2013-02-12 04:50:34 ----DC---- C:\Users\Rock\AppData\Roaming\TS3Client 2013-02-12 04:50:23 ----D---- C:\Program Files (x86)\TeamSpeak 3 Client 2013-02-12 01:47:48 ----DC---- C:\Users\Rock\AppData\Roaming\Sony Online Entertainment 2013-02-09 19:11:07 ----D---- C:\Windows\ERUNT 2013-02-09 19:10:35 ----D---- C:\JRT 2013-02-07 15:46:20 ----A---- C:\AdwCleaner[s1].txt 2013-02-06 18:23:53 ----A---- C:\TDSSKiller.2.8.15.0_06.02.2013_18.23.53_log.txt 2013-02-06 18:23:27 ----A---- C:\TDSSKiller.2.8.15.0_06.02.2013_18.23.27_log.txt 2013-02-06 18:21:36 ----A---- C:\AdwCleaner[R1].txt 2013-02-06 18:19:00 ----D---- C:\Windows\ERDNT 2013-02-05 01:16:29 ----A---- C:\Windows\ntbtlog.txt 2013-02-04 22:46:17 ----D---- C:\found.002 2013-02-04 18:02:25 ----A---- C:\Windows\SYSWOW64\javaws.exe 2013-02-04 18:02:22 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll 2013-02-04 18:02:22 ----A---- C:\Windows\SYSWOW64\javaw.exe 2013-02-04 18:02:22 ----A---- C:\Windows\SYSWOW64\java.exe 2013-02-01 21:28:41 ----DC---- C:\ProgramData\Battle.net 2013-01-31 16:40:19 ----DC---- C:\Users\Rock\AppData\Roaming\ATI 2013-01-31 16:40:19 ----DC---- C:\ProgramData\ATI 2013-01-31 16:33:45 ----DC---- C:\ProgramData\AMD 2013-01-31 16:33:44 ----D---- C:\Program Files (x86)\AMD AVT 2013-01-31 16:33:42 ----D---- C:\Program Files (x86)\AMD APP 2013-01-31 16:33:41 ----D---- C:\Program Files\Common Files\ATI Technologies 2013-01-31 16:33:10 ----D---- C:\Program Files (x86)\Driver Fusion 2013-01-31 16:17:51 ----D---- C:\Program Files (x86)\ATI Technologies 2013-01-31 16:17:45 ----D---- C:\Program Files\ATI Technologies 2013-01-31 16:17:43 ----D---- C:\Program Files\ATI 2013-01-31 16:15:17 ----D---- C:\AMD 2013-01-31 10:11:55 ----D---- C:\Program Files\Unigine 2013-01-29 18:08:26 ----DC---- C:\Users\Rock\AppData\Roaming\PCGPGOMC 2013-01-28 13:40:16 ----D---- C:\Program Files (x86)\GPU-Z 2013-01-27 15:07:26 ----D---- C:\found.001 2013-01-27 15:01:37 ----D---- C:\ControlCenterCount 2013-01-24 05:38:29 ----A---- C:\Windows\system32\nvshext.dll 2013-01-24 05:36:51 ----DC---- C:\ProgramData\NVIDIA Corporation 2013-01-24 05:34:46 ----A---- C:\Windows\SYSWOW64\nvapi.dll 2013-01-24 05:34:46 ----A---- C:\Windows\system32\nvapi64.dll 2013-01-21 12:21:08 ----RD---- C:\Kernels 2013-01-21 07:55:10 ----DC---- C:\Users\Rock\AppData\Roaming\uMod 2013-01-21 01:00:11 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe 2013-01-21 01:00:10 ----A---- C:\Windows\SYSWOW64\PnkBstrA.exe 2013-01-20 10:52:34 ----DC---- C:\ProgramData\Orbit 2013-01-20 07:25:34 ----DC---- C:\Users\Rock\AppData\Roaming\com.ynab.YNAB4.LiveCaptive 2013-01-20 07:25:28 ----D---- C:\Program Files (x86)\YNAB 4 2013-01-20 02:07:21 ----DC---- C:\ProgramData\Package Cache 2013-01-20 01:56:27 ----DC---- C:\ProgramData\SonicStage 2013-01-20 01:50:11 ----D---- C:\Program Files (x86)\AGEIA Technologies 2013-01-20 01:18:52 ----A---- C:\Windows\SYSWOW64\CDDBUISony.dll 2013-01-20 01:18:52 ----A---- C:\Windows\SYSWOW64\CddbPlaylist2Sony.dll 2013-01-20 01:18:52 ----A---- C:\Windows\SYSWOW64\CddbMusicIDSony.dll 2013-01-20 01:18:51 ----N---- C:\Windows\SYSWOW64\vxblock.dll 2013-01-20 01:18:51 ----N---- C:\Windows\SYSWOW64\pxwave.dll 2013-01-20 01:18:51 ----N---- C:\Windows\SYSWOW64\pxsfs.dll 2013-01-20 01:18:51 ----N---- C:\Windows\SYSWOW64\pxmas.dll 2013-01-20 01:18:51 ----N---- C:\Windows\SYSWOW64\pxinsi64.exe 2013-01-20 01:18:51 ----N---- C:\Windows\SYSWOW64\pxinsa64.exe 2013-01-20 01:18:51 ----N---- C:\Windows\SYSWOW64\pxhpinst.exe 2013-01-20 01:18:51 ----N---- C:\Windows\SYSWOW64\pxdrv.dll 2013-01-20 01:18:51 ----N---- C:\Windows\SYSWOW64\pxcpyi64.exe 2013-01-20 01:18:51 ----N---- C:\Windows\SYSWOW64\pxcpya64.exe 2013-01-20 01:18:51 ----N---- C:\Windows\SYSWOW64\pxafs.dll 2013-01-20 01:18:51 ----N---- C:\Windows\SYSWOW64\px.dll 2013-01-20 01:18:51 ----N---- C:\Windows\system32\drivers\PxHlpa64.sys 2013-01-20 01:18:51 ----N---- C:\Windows\system32\drivers\cdralw2k.sys 2013-01-20 01:18:51 ----N---- C:\Windows\system32\drivers\cdr4_xp.sys 2013-01-20 01:18:51 ----A---- C:\Windows\SYSWOW64\CddbLinkSony.dll 2013-01-20 01:18:51 ----A---- C:\Windows\SYSWOW64\CDDBControlSony.dll 2013-01-20 01:17:46 ----DC---- C:\ProgramData\Sony Corporation 2013-01-20 01:16:55 ----D---- C:\Windows\SYSWOW64\Iosubsys 2013-01-20 01:15:37 ----DC---- C:\Users\Rock\AppData\Roaming\Sony Corporation 2013-01-19 20:53:49 ----D---- C:\found.000 2013-01-17 16:28:31 ----D---- C:\Program Files (x86)\FileZilla FTP Client ======List of files/folders modified in the last 1 month====== 2013-02-14 10:37:58 ----RD---- C:\Program Files 2013-02-14 10:36:10 ----D---- C:\Windows\Tasks 2013-02-14 10:27:53 ----DC---- C:\Users\Rock\AppData\Roaming\Skype 2013-02-14 09:46:52 ----DC---- C:\Users\Rock\AppData\Roaming\Raptr 2013-02-14 07:21:28 ----D---- C:\Windows 2013-02-14 07:21:28 ----A---- C:\Windows\Sandboxie.ini 2013-02-14 05:39:20 ----DC---- C:\Users\Rock\AppData\Roaming\uTorrent 2013-02-14 05:03:10 ----SHD---- C:\Windows\Installer 2013-02-14 05:02:46 ----SHD---- C:\System Volume Information 2013-02-14 05:02:33 ----D---- C:\Program Files (x86) 2013-02-14 02:11:21 ----D---- C:\Windows\system32\config 2013-02-13 16:55:40 ----DC---- C:\Users\Rock\AppData\Roaming\foobar2000 2013-02-13 14:15:16 ----D---- C:\Windows\SysWOW64 2013-02-13 14:08:16 ----D---- C:\Windows\system32\Tasks 2013-02-13 13:52:42 ----D---- C:\Windows\System32 2013-02-13 13:52:42 ----D---- C:\Windows\inf 2013-02-13 13:52:42 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-02-13 13:45:55 ----D---- C:\Windows\winsxs 2013-02-13 13:44:58 ----RSD---- C:\Windows\Fonts 2013-02-13 13:44:58 ----D---- C:\Windows\system32\it-IT 2013-02-13 12:48:27 ----DC---- C:\Users\Rock\AppData\Roaming\vlc 2013-02-13 11:13:15 ----DC---- C:\ProgramData\Adobe 2013-02-13 09:12:44 ----D---- C:\Windows\system32\drivers 2013-02-13 09:11:00 ----N---- C:\Windows\system.ini 2013-02-13 09:10:53 ----D---- C:\Windows\system32\drivers\etc 2013-02-13 08:56:37 ----D---- C:\Windows\AppPatch 2013-02-13 08:56:21 ----DC---- C:\ProgramData 2013-02-13 08:54:34 ----ADC---- C:\ProgramData\TEMP 2013-02-13 08:54:26 ----DC---- C:\Program Files (x86)\Common Files 2013-02-13 08:54:26 ----D---- C:\Windows\SYSWOW64\drivers 2013-02-10 03:44:14 ----DC---- C:\Program Files (x86)\JDownloader 2013-02-09 06:35:46 ----DC---- C:\ProgramData\Skype 2013-02-09 06:35:44 ----RDC---- C:\Program Files (x86)\Skype 2013-02-08 04:30:39 ----DC---- C:\Program Files (x86)\Mozilla Firefox 2013-02-06 18:18:33 ----DC---- C:\Program Files (x86)\ERUNT 2013-02-05 01:20:07 ----D---- C:\Windows\pss 2013-02-05 01:13:38 ----D---- C:\Windows\Microsoft.NET 2013-02-05 01:13:36 ----DC---- C:\Users\Rock\AppData\Roaming\Dropbox 2013-02-05 01:13:09 ----DC---- C:\ProgramData\NVIDIA 2013-02-04 22:15:48 ----RSD---- C:\Windows\assembly 2013-02-04 18:22:44 ----D---- C:\Windows\SYSWOW64\directx 2013-02-04 18:02:19 ----A---- C:\Windows\SYSWOW64\npdeployJava1.dll 2013-02-04 18:02:19 ----A---- C:\Windows\SYSWOW64\deployJava1.dll 2013-02-04 18:02:18 ----DC---- C:\Program Files (x86)\Java 2013-02-04 17:36:46 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service 2013-02-01 20:22:56 ----DC---- C:\Users\Rock\AppData\Roaming\DAEMON Tools Lite 2013-02-01 14:31:10 ----D---- C:\Windows\system32\catroot2 2013-02-01 13:53:15 ----D---- C:\Program Files (x86)\MSI Afterburner 2013-02-01 12:21:09 ----D---- C:\Windows\Logs 2013-01-31 16:51:15 ----RDC---- C:\Users 2013-01-31 16:51:15 ----D---- C:\Windows\Help 2013-01-31 16:34:15 ----D---- C:\Windows\system32\catroot 2013-01-31 16:33:41 ----D---- C:\Program Files\Common Files 2013-01-31 16:33:16 ----D---- C:\Windows\system32\DriverStore 2013-01-31 13:26:05 ----DC---- C:\Users\Rock\AppData\Roaming\Media Player Classic 2013-01-31 13:23:21 ----DC---- C:\Users\Rock\AppData\Roaming\FileZilla 2013-01-31 13:19:47 ----DC---- C:\Program Files (x86)\CCleaner 2013-01-31 12:46:40 ----D---- C:\Program Files\NVIDIA Corporation 2013-01-31 12:23:19 ----D---- C:\Program Files\TeraCopy 2013-01-31 12:15:53 ----D---- C:\Games 2013-01-31 12:14:30 ----DC---- C:\Users\Rock\AppData\Roaming\TeraCopy 2013-01-31 07:09:11 ----D---- C:\Program Files (x86)\Raptr 2013-01-30 16:24:30 ----D---- C:\Program Files (x86)\CrystalDiskInfo 2013-01-30 02:53:22 ----N---- C:\Windows\system32\MpSigStub.exe 2013-01-28 13:44:43 ----D---- C:\Program Files\CPUID 2013-01-28 13:22:09 ----DC---- C:\Program Files (x86)\Google 2013-01-26 17:15:57 ----D---- C:\Program Files (x86)\Last.fm 2013-01-26 06:35:11 ----DC---- C:\Program Files (x86)\foobar2000 2013-01-24 05:39:19 ----DC---- C:\Program Files (x86)\NVIDIA Corporation 2013-01-23 08:55:15 ----DC---- C:\Users\Rock\AppData\Roaming\Audacity 2013-01-23 08:31:53 ----DC---- C:\Users\Rock\AppData\Roaming\Synthesia 2013-01-21 12:35:54 ----DC---- C:\Program Files (x86)\Malwarebytes' Anti-Malware 2013-01-20 01:17:45 ----HDC---- C:\Program Files (x86)\InstallShield Installation Information 2013-01-20 01:17:45 ----DC---- C:\Program Files (x86)\Sony ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-13 12352] R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2006-10-18 52760] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-13 214096] R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-13 514048] R1 ElbyCDIO;ElbyCDIO Driver; C:\Windows\System32\Drivers\ElbyCDIO.sys [2010-12-16 40816] R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2011-04-18 189440] R2 cpuz134;cpuz134; \??\C:\Windows\system32\drivers\cpuz134_x64.sys [2010-07-09 21480] R2 cpuz135;cpuz135; \??\C:\Windows\system32\drivers\cpuz135_x64.sys [2011-09-21 21992] R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-12-19 11278336] R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-12-19 552960] R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2012-11-06 96256] R3 EuMusDesignVirtualAudioCableWdm;Virtual Audio Cable (WDM); C:\Windows\system32\DRIVERS\vrtaucbl.sys [2012-07-04 66728] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-10-18 2957544] R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver; C:\Windows\system32\drivers\LGBusEnum.sys [2009-11-23 22408] R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver; C:\Windows\system32\drivers\LGVirHid.sys [2009-11-23 16008] R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2012-12-14 24176] R3 MBfilt;MBfilt; C:\Windows\system32\drivers\MBfilt64.sys [2009-11-18 32344] R3 MEIx64;Intel® Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2011-09-22 56600] R3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys [2011-04-18 40832] R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2011-04-27 84864] R3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-13 165376] R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-02-16 428136] R3 SbieDrv;SbieDrv; \??\C:\Program Files\Sandboxie\SbieDrv.sys [2012-12-16 202632] R3 tap0901;TAP-Win32 Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2012-09-19 31232] R3 wacommousefilter;Wacom Mouse Filter Driver; C:\Windows\system32\DRIVERS\wacommousefilter.sys [2011-09-08 12848] R3 wacomvhid;Wacom Virtual Hid Driver; C:\Windows\system32\DRIVERS\wacomvhid.sys [2011-09-08 16168] S3 AnyDVD;AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [2011-06-09 138872] S3 BEHRINGER_2902;usb-audio.de driver for BEHRINGER USB AUDIO; C:\Windows\System32\Drivers\BUSB2902.sys [2009-10-30 460864] S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-13 95232] S3 BUSB_AUDIO_WDM;BEHRINGER USB WDM AUDIO; C:\Windows\system32\drivers\busbwdm.sys [2009-10-30 49728] S3 catchme;catchme; \??\C:\ComboFix\catchme.sys [] S3 COMMONFX.DLL;COMMONFX.DLL; C:\Windows\system32\COMMONFX.DLL [2007-04-12 151296] S3 CT20XUT.DLL;CT20XUT.DLL; C:\Windows\system32\CT20XUT.DLL [2007-04-10 252712] S3 ctac32k;Creative AC3 Software Decoder; C:\Windows\system32\drivers\ctac32k.sys [2007-04-10 580904] S3 ctaud2k;Creative Audio Driver (WDM); C:\Windows\system32\drivers\ctaud2k.sys [2007-04-10 863016] S3 CTAUDFX.DLL;CTAUDFX.DLL; C:\Windows\system32\CTAUDFX.DLL [2007-04-10 700200] S3 CTEAPSFX.DLL;CTEAPSFX.DLL; C:\Windows\system32\CTEAPSFX.DLL [2007-04-10 219432] S3 CTEDSPFX.DLL;CTEDSPFX.DLL; C:\Windows\system32\CTEDSPFX.DLL [2007-04-10 321832] S3 CTEDSPIO.DLL;CTEDSPIO.DLL; C:\Windows\system32\CTEDSPIO.DLL [2007-04-10 190248] S3 CTEDSPSY.DLL;CTEDSPSY.DLL; C:\Windows\system32\CTEDSPSY.DLL [2007-04-10 363304] S3 CTERFXFX.DLL;CTERFXFX.DLL; C:\Windows\system32\CTERFXFX.DLL [2007-04-10 142120] S3 CTEXFIFX.DLL;CTEXFIFX.DLL; C:\Windows\system32\CTEXFIFX.DLL [2007-04-10 1571112] S3 CTHWIUT.DLL;CTHWIUT.DLL; C:\Windows\system32\CTHWIUT.DLL [2007-04-10 123688] S3 ctprxy2k;Creative Proxy Driver; C:\Windows\system32\drivers\ctprxy2k.sys [2007-04-10 17192] S3 CTSBLFX.DLL;CTSBLFX.DLL; C:\Windows\system32\CTSBLFX.DLL [2007-04-10 681256] S3 ctsfm2k;Creative SoundFont Management Device Driver; C:\Windows\system32\drivers\ctsfm2k.sys [2007-04-10 290600] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2012-02-24 99384] S3 EagleX64;EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [] S3 emupia;E-mu Plug-in Architecture Driver; C:\Windows\system32\drivers\emupia2k.sys [2007-04-10 147752] S3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 34152] S3 ha10kx2k;Creative Hardware Abstract Layer Driver; C:\Windows\system32\drivers\ha10kx2k.sys [2007-04-10 1359144] S3 hap16v2k;Creative P16V HAL Driver; C:\Windows\system32\drivers\hap16v2k.sys [2007-04-10 259880] S3 hap17v2k;Creative P17V HAL Driver; C:\Windows\system32\drivers\hap17v2k.sys [2007-04-10 295208] S3 IDMWFP;IDMWFP; C:\Windows\system32\DRIVERS\idmwfp.sys [2010-09-02 88864] S3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\Windows\system32\DRIVERS\LHidFilt.Sys [2011-09-01 66840] S3 libusb0;LibUsb-Win32 - Kernel Driver 08/27/2006, 0.1.12.0; C:\Windows\system32\DRIVERS\libusb0.sys [2006-08-27 31744] S3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\Windows\system32\DRIVERS\LMouFilt.Sys [2011-09-01 60696] S3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\Windows\System32\Drivers\LUsbFilt.Sys [2011-09-01 42776] S3 MAUSBMOBILEPRE;Service for M-Audio MobilePre; C:\Windows\system32\DRIVERS\MAudioMobilePre.sys [2009-09-02 187912] S3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver; C:\Windows\system32\DRIVERS\MijXfilt.sys [2012-09-04 121416] S3 ossrv;Creative OS Services Driver; C:\Windows\system32\drivers\ctoss2k.sys [2007-04-10 218408] S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-13 6656] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2012-02-24 203320] S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-13 34896] S3 taphss;Anchorfree HSS Adapter; C:\Windows\system32\DRIVERS\taphss.sys [2010-05-13 37888] S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2011-08-02 51712] S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-13 200272] S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-13 21760] S3 wacmoumonitor;Wacom Mode Helper; C:\Windows\system32\DRIVERS\wacmoumonitor.sys [2011-09-08 13312] S4 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-04-30 834544] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-09-23 65192] R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-12-19 240640] R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-13 27136] R2 HiPatchService;Hi-Rez Studios Authenticate and Update Service; Q:\Games\PC GAMES INSTALLED\Hi-Rez Studios\HiPatchService.exe [2012-02-20 8704] R2 MBAMScheduler;MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-14 398184] R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344] R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2011-04-27 12784] R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2013-01-21 76888] R2 SbieSvc;Sandboxie Service; C:\Program Files\Sandboxie\SbieSvc.exe [2012-12-16 123664] R2 TabletServicePen;TabletServicePen; C:\Program Files\Tablet\Pen\Pen_Tablet.exe [2011-09-08 6583160] R2 TouchServicePen;Wacom Consumer Touch Service; C:\Program Files\Tablet\Pen\Pen_TouchService.exe [2011-09-08 528760] R3 NisSrv;@C:\Program Files\Microsoft Security Client\Antimalware\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-04-27 288272] R3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-13 27136] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-09 104912] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-07-08 123856] S2 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-04-30 194104] S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-01-08 161536] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-13 251248] S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-13 27136] S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2012-07-08 51648] S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632] S3 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe [2011-09-27 359192] S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-01-16 115608] S3 MSCSPTISRV;MSCSPTISRV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [2006-12-14 45056] S3 npggsvc;nProtect GameGuard Service; C:\Windows\syswow64\GameMon.des [2012-04-09 3957088] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712] S3 OpenVPNService;OpenVPN Service; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [2011-12-15 14848] S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 PACSPTISVR;PACSPTISVR; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [2006-12-14 57344] S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-13 27136] S3 SonicStage Back-End Service;SonicStage Back-End Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe [2007-02-05 112184] S3 SPTISRV;Sony SPTI Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe [2006-12-14 69632] S3 SSScsiSV;SonicStage SCSI Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe [2007-02-05 75320] S3 SwitchBoard;Adobe SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096] S4 Apache2.2;Apache2.2; C:\xampplite\apache\bin\httpd.exe [2009-12-19 29416] S4 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2011-10-24 55144] S4 Bonjour Service;Bonjour ƒT[ƒrƒX; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184] S4 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-01-06 655624] S4 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2012-01-16 934760] S4 MySQL;MySQL; C:\xampplite\mysql\bin\mysqld.exe [2009-12-19 6095504] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2012-07-09 139696] S4 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2012-04-25 489256] S4 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-12-29 383416] -----------------EOF-----------------
  4. FlagrantWolf
    Here is the log. It was almost 20mb so I put it in a zip. CBS.zip
  5. FlagrantWolf
    It says "windows resource protection found corrupt files but was unable to fix some of them." There is a log file. do you want me to post it?
  6. FlagrantWolf
    All processes killed ========== PROCESSES ========== ========== OTL ========== Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1d3f140d-5f76-11df-9b3b-001fc6430dd3}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1d3f140d-5f76-11df-9b3b-001fc6430dd3}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1d3f140d-5f76-11df-9b3b-001fc6430dd3}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1d3f140d-5f76-11df-9b3b-001fc6430dd3}\ not found. File F:\LaunchU3.exe -a not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6185a73e-cd92-11e1-a1eb-8c89a516c63b}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6185a73e-cd92-11e1-a1eb-8c89a516c63b}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{6185a73e-cd92-11e1-a1eb-8c89a516c63b}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6185a73e-cd92-11e1-a1eb-8c89a516c63b}\ not found. File E:\TL-Bootstrap.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{708f611b-2281-11e0-85b1-001fc6430dd3}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{708f611b-2281-11e0-85b1-001fc6430dd3}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{708f611b-2281-11e0-85b1-001fc6430dd3}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{708f611b-2281-11e0-85b1-001fc6430dd3}\ not found. File F:\TL-Bootstrap.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{78cf22a5-54d5-11df-b2f1-001fc6430dd3}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{78cf22a5-54d5-11df-b2f1-001fc6430dd3}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{78cf22a5-54d5-11df-b2f1-001fc6430dd3}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{78cf22a5-54d5-11df-b2f1-001fc6430dd3}\ not found. File G:\Setup.exe not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c80b8cf7-ef0a-11e1-9aa6-8c89a516c63b}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c80b8cf7-ef0a-11e1-9aa6-8c89a516c63b}\ not found. Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{c80b8cf7-ef0a-11e1-9aa6-8c89a516c63b}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{c80b8cf7-ef0a-11e1-9aa6-8c89a516c63b}\ not found. File E:\TL-Bootstrap.exe not found. ========== FILES ========== File\Folder C:\Users\Rock\AppData\Roaming\3575620.jpg not found. File\Folder C:\Users\Rock\AppData\Roaming\msregsvv.dll not found. File\Folder C:\Users\Rock\AppData\Roaming\35A1E80.jpg not found. File\Folder C:\Users\Rock\AppData\Roaming\FC14511.jpg not found. File\Folder C:\Users\Rock\AppData\Roaming\7658AF5.jpg not found. File\Folder C:\Users\Rock\AppData\Roaming\6C46F55.jpg not found. File\Folder C:\Users\Rock\AppData\Roaming\8EB3531.jpg not found. File\Folder C:\Users\Rock\AppData\Roaming\5EDC9B0.jpg not found. File\Folder C:\Users\Rock\AppData\Roaming\67AF1A5.jpg not found. C:\Users\Rock\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\いじらレンタル folder moved successfully. File\Folder タル not found. ========== COMMANDS ========== Restore point Set: OTL Restore Point [EMPTYFLASH] User: All Users User: Default ->Flash cache emptied: 0 bytes User: Default User ->Flash cache emptied: 0 bytes User: Other ->Flash cache emptied: 0 bytes User: Public User: Rock ->Flash cache emptied: 6246 bytes User: UpdatusUser.HAL9000-2 Total Flash Files Cleaned = 0.00 mb [EMPTYJAVA] User: All Users User: Default User: Default User User: Other User: Public User: Rock ->Java cache emptied: 0 bytes User: UpdatusUser.HAL9000-2 Total Java Files Cleaned = 0.00 mb [EMPTYTEMP] User: All Users User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Other ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->FireFox cache emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Public ->Temp folder emptied: 0 bytes User: Rock ->Temp folder emptied: 254982 bytes ->Temporary Internet Files folder emptied: 53613 bytes ->Java cache emptied: 0 bytes ->FireFox cache emptied: 114794499 bytes ->Google Chrome cache emptied: 0 bytes ->Flash cache emptied: 0 bytes User: UpdatusUser.HAL9000-2 ->Temp folder emptied: 0 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32 (64bit) .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 10774 bytes %systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 0 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 110.00 mb OTL by OldTimer - Version 3.2.69.0 log created on 02132013_110137 Files\Folders moved on Reboot... C:\Users\Rock\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully. PendingFileRenameOperations files... Registry entries deleted on Reboot...
  7. FlagrantWolf
    It told me that Avast was running, however I could not even find avast on my computer. There is no tray icon and nothing in program files either. I attached the log file as it was too big to post. ComboFix.txt The problem with windows explorer is still there. Do you think some of the windows files could have gotten corrupted somehow and be causing this?
  8. FlagrantWolf
    Sorry I've had a lot of work and have not had a chance yet to to follow the steps in your last post yet. I'm going to try it tonight.
  9. FlagrantWolf
    Here is the OTL log. It was too long so I had to attach it.OTL.Txt
  10. FlagrantWolf
    I can't uninstall anything. When I try to open control panel it just brings up a blank window that will then not close. Also, I do often use a proxy, but it should not have been on during the scans. So I'm not sure what that proxy is. === Roguekiller Proxy === RogueKiller V8.5.0 _x64_ [Feb 9 2013] by Tigzy mail : tigzyRK<at>gmail<dot>com Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/ Website : http://tigzy.geekstogo.com/roguekiller.php Blog : http://tigzyrk.blogspot.com/ Operating System : Windows 7 (6.1.7600 ) 64 bits version Started in : Normal mode User : Rock [Admin rights] Mode : ProxyFix -- Date : 02/09/2013 19:04:14 | ARK || FAK || MBR | ??? Bad processes : 0 ??? ??? Registry Entries : 1 ??? [PROXY IE] HKCU\[...]\Internet Settings : ProxyServer (121.254.133.150:3128) -> DELETED ??? Driver : [NOT LOADED] ??? Finished : << RKreport[4]_PR_02092013_02d1904.txt >> RKreport[3]_D_02072013_02d1554.txt ; RKreport[4]_PR_02092013_02d1904.txt === Roguekiller DNS === RogueKiller V8.5.0 _x64_ [Feb 9 2013] by Tigzy mail : tigzyRK<at>gmail<dot>com Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/ Website : http://tigzy.geekstogo.com/roguekiller.php Blog : http://tigzyrk.blogspot.com/ Operating System : Windows 7 (6.1.7600 ) 64 bits version Started in : Normal mode User : Rock [Admin rights] Mode : DNSFix -- Date : 02/09/2013 19:05:10 | ARK || FAK || MBR | ??? Bad processes : 0 ??? ??? Registry Entries : 2 ??? [DNS] HKLM\[...]\ControlSet001\Services\Tcpip\Interfaces\{C5E18294-B36B-46EA-B899-7C2C9D10141C} : NameServer (129.250.35.250,205.171.3.65) -> REPLACED () [DNS] HKLM\[...]\ControlSet002\Services\Tcpip\Interfaces\{C5E18294-B36B-46EA-B899-7C2C9D10141C} : NameServer (129.250.35.250,205.171.3.65) -> REPLACED () ??? Driver : [NOT LOADED] ??? Finished : << RKreport[5]_DN_02092013_02d1905.txt >> RKreport[3]_D_02072013_02d1554.txt ; RKreport[4]_PR_02092013_02d1904.txt ; RKreport[5]_DN_02092013_02d1905.txt === JRT === ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 4.6.2 (02.02.2013:2) OS: Windows 7 Ultimate x64 Ran by Rock on 02/09/2013 Sat at 19:11:18.82 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys Successfully deleted: [Registry Key] hkey_local_machine\software\classes\installer\upgradecodes\f928123a039649549966d4c29d35b1c9 Successfully deleted: [Registry Key] hkey_classes_root\clsid\{0055c089-8582-441b-a0bf-17b458c2a3a8} ~~~ Files ~~~ Folders Successfully deleted: [Folder] "C:\ProgramData\ytd video downloader" Successfully deleted: [Folder] "C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ytd video downloader" ~~~ FireFox Successfully deleted: [File] "C:\Users\Rock\AppData\Roaming\mozilla\firefox\profiles\oo0vpxaf.default\extensions\LDSI_plashcor@gmail.com.xpi" Emptied folder: C:\Users\Rock\AppData\Roaming\mozilla\firefox\profiles\oo0vpxaf.default\minidumps [83 files] ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on 02/09/2013 Sat at 19:15:18.35 End of JRT log ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ =================================================================== After doing these scans the problem still persists. There seems to be no change. I actually just updated Java to the newest version a few days before this problem began.
  11. FlagrantWolf
    # AdwCleaner v2.111 - Logfile created 02/07/2013 at 15:46:20 # Updated 05/02/2013 by Xplode # Operating system : Windows 7 Ultimate (64 bits) # User : Rock - HAL9000-2 # Boot Mode : Normal # Running from : C:\Users\Rock\Desktop\adwcleaner.exe # Option [Delete] ***** [services] ***** ***** [Files / Folders] ***** Folder Deleted : C:\ProgramData\boost_interprocess Folder Deleted : C:\ProgramData\Download and Sa Folder Deleted : C:\ProgramData\InstallMate Folder Deleted : C:\ProgramData\Premium Folder Deleted : C:\ProgramData\RightClick Folder Deleted : C:\Users\Rock\AppData\LocalLow\AskToolbar Folder Deleted : C:\Users\Rock\AppData\LocalLow\Download and Sa Folder Deleted : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE} ***** [Registry] ***** Key Deleted : HKCU\Software\APN Key Deleted : HKCU\Software\AppDataLow\AskToolbarInfo Key Deleted : HKCU\Software\AppDataLow\Software\AskToolbar Key Deleted : HKCU\Software\Ask.com Key Deleted : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170} Key Deleted : HKLM\Software\APN Key Deleted : HKLM\Software\AskToolbar Key Deleted : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874} Key Deleted : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd Key Deleted : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1 Key Deleted : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF Key Deleted : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56} Key Deleted : HKLM\SOFTWARE\Wow6432Node\14919ea49a8f3b4aa3cf1058d9a64cec Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E} Key Deleted : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ApnUpdater Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}] Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}] ***** [internet Browsers] ***** -\\ Internet Explorer v9.0.8112.16421 [OK] Registry is clean. -\\ Mozilla Firefox v18.0.1 (en-US) File : C:\Users\Rock\AppData\Roaming\Mozilla\Firefox\Profiles\oo0vpxaf.default\prefs.js Deleted : user_pref("extensions.507c9fcfd1672.scode", "(function(){try{if('aol.com,mail.google.com,premiumrepo[...] File : C:\Users\Other\AppData\Roaming\Mozilla\Firefox\Profiles\zgti40fg.default\prefs.js [OK] File is clean. -\\ Google Chrome v24.0.1312.57 File : C:\Users\Rock\AppData\Local\Google\Chrome\User Data\Default\Preferences [OK] File is clean. ************************* AdwCleaner[R1].txt - [4541 octets] - [06/02/2013 18:21:36] AdwCleaner[s1].txt - [4570 octets] - [07/02/2013 15:46:20] ########## EOF - C:\AdwCleaner[s1].txt - [4630 octets] ########## ==== RogueKiller ==== RogueKiller V8.4.4 [Feb 5 2013] by Tigzy mail : tigzyRK<at>gmail<dot>com Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/ Website : http://tigzy.geekstogo.com/roguekiller.php Blog : http://tigzyrk.blogspot.com/ Operating System : Windows 7 (6.1.7600 ) 64 bits version Started in : Normal mode User : Rock [Admin rights] Mode : Remove -- Date : 02/07/2013 15:54:55 | ARK || MBR | ¤¤¤ Bad processes : 0 ¤¤¤ ¤¤¤ Registry Entries : 6 ¤¤¤ [PROXY IE] HKCU\[...]\Internet Settings : ProxyServer (121.254.133.150:3128) -> NOT REMOVED, USE PROXYFIX [DNS] HKLM\[...]\ControlSet001\Services\Tcpip\Interfaces\{C5E18294-B36B-46EA-B899-7C2C9D10141C} : NameServer (129.250.35.250,205.171.3.65) -> NOT REMOVED, USE DNSFIX [DNS] HKLM\[...]\ControlSet002\Services\Tcpip\Interfaces\{C5E18294-B36B-46EA-B899-7C2C9D10141C} : NameServer (129.250.35.250,205.171.3.65) -> NOT REMOVED, USE DNSFIX [HJ SMENU] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> REPLACED (1) [HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> REPLACED (0) [HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0) ¤¤¤ Particular Files / Folders: ¤¤¤ ¤¤¤ Driver : [NOT LOADED] ¤¤¤ ¤¤¤ HOSTS File: ¤¤¤ --> C:\Windows\system32\drivers\etc\hosts ¤¤¤ MBR Check: ¤¤¤ +++++ PhysicalDrive0: OCZ-SOLID2 ATA Device +++++ --- User --- [MBR] ed2e82e2d988acef4ec7ab84613a3cf7 [bSP] 42004b4fa668a7ee0fc4bdc8ebe276e3 : Windows 7/8 MBR Code Partition table: 0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 61055 Mo User = LL1 ... OK! User = LL2 ... OK! +++++ PhysicalDrive1: WDC WD1001FALS-00J7B1 ATA Device +++++ --- User --- [MBR] af9085e9547b8430347a61c2d9fe6827 [bSP] 2b873fb3656eb401132d9f3c94fc508d : Standard MBR Code Partition table: 0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 953867 Mo User = LL1 ... OK! User = LL2 ... OK! +++++ PhysicalDrive2: SAMSUNG HD204UI ATA Device +++++ --- User --- [MBR] 8e4baf45be6b6e4e95f49cb57e7a8679 [bSP] f57e24671a59c2635702bdc6cc38cb3c : Windows 7/8 MBR Code Partition table: 0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 1907727 Mo User = LL1 ... OK! User = LL2 ... OK! +++++ PhysicalDrive3: WDC WD7500AAKS-00RBA0 ATA Device +++++ --- User --- [MBR] a3ed4292855b76b296ca1c2016b5cb70 [bSP] 4ef7f801b740c9f729ce47b088bafb51 : Windows Vista MBR Code Partition table: 0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 684401 Mo 1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 1401657344 | Size: 30999 Mo User = LL1 ... OK! User = LL2 ... OK! +++++ PhysicalDrive4: WDC WD5000AAKS-22YGA0 ATA Device +++++ --- User --- [MBR] 6f809320a0d61176bd59d5f087bda5d6 [bSP] 5d30684c364c12a9f6ef0f76627638d6 : Standard MBR Code Partition table: 0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 476937 Mo User = LL1 ... OK! User = LL2 ... OK! Finished : << RKreport[3]_D_02072013_02d1554.txt >> RKreport[1]_S_02062013_02d1833.txt ; RKreport[2]_S_02072013_02d1551.txt ; RKreport[3]_D_02072013_02d1554.txt ==== DDS ==== DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.13.2 Run by Rock at 16:26:30 on 2013-02-07 Microsoft Windows 7 Ultimate 6.1.7600.0.932.81.1033.18.16355.13950 [GMT -8:00] . AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} AV: Microsoft Security Essentials *Disabled/Updated* {BF5CEBDC-F2D3-7540-343C-F0CE11FD6E66} SP: Microsoft Security Essentials *Disabled/Updated* {043D0A38-D4E9-7ACE-0E8C-CBBC6A7A24DB} SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Program Files\Sandboxie\SbieSvc.exe C:\Program Files\Tablet\Pen\Pen_TouchService.exe C:\Windows\system32\atieclxx.exe C:\Windows\SYSTEM32\WISPTIS.EXE C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\taskeng.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation Q:\Games\PC GAMES INSTALLED\Hi-Rez Studios\HiPatchService.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe C:\Windows\SysWOW64\PnkBstrA.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Tablet\Pen\Pen_Tablet.exe C:\Windows\servicing\TrustedInstaller.exe C:\Windows\system32\taskhost.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\Windows\Explorer.EXE C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe C:\Program Files\Logitech\GamePanel Software\LGDevAgt.exe C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe C:\Program Files\Logitech\GamePanel Software\LCD Manager\lcdmon.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Windows\System32\M-AudioTaskBarIcon.exe C:\Program Files\Logitech\SetPointP\SetPoint.exe C:\Windows\System32\StikyNot.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Sandboxie\SbieCtrl.exe C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDock.exe C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE C:\Program Files\Logitech\GamePanel Software\Applets\LCDMedia.exe C:\Program Files\Logitech\GamePanel Software\Applets\LCDClock.exe C:\Program Files\Logitech\GamePanel Software\Applets\LCDPop3.exe C:\Program Files\Logitech\GamePanel Software\Applets\LCDCountdown.exe C:\Program Files\Logitech\GamePanel Software\Applets\LCDRSS.exe C:\Windows\System32\svchost.exe -k WerSvcGroup C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files (x86)\Stardock\ObjectDock Plus\Dock64.exe C:\PROGRA~2\Raptr\raptr.exe C:\Program Files\Tablet\Pen\Pen_TouchUser.exe C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDockTray.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Windows\SYSTEM32\WISPTIS.EXE C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe C:\Program Files\Tablet\Pen\Pen_TabletUser.exe C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe C:\PROGRA~2\Raptr\raptr_im.exe C:\Program Files\TortoiseSVN\bin\TSVNCache.exe C:\Program Files\Tablet\Pen\Pen_Tablet.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files (x86)\Raptr\raptr_ep64.exe C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe C:\Windows\system32\taskhost.exe C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Users\Rock\Desktop\Explorer++.exe C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\System32\cscript.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.google.com/ uProxyServer = 121.254.133.150:3128 mWinlogon: Userinit = userinit.exe, BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll BHO: ATLAS Toolbar: {3C6301ED-0F78-4AF2-8150-D9C052361A8E} - C:\Program Files (x86)\ATLAS V14\ATLIECP.DLL BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll BHO: Adobe Acrobat Create PDF Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll BHO: Adobe Acrobat Create PDF from Selection: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll TB: ATLAS Toolbar: {3C6301ED-0F78-4AF2-8150-D9C052361A8E} - C:\Program Files (x86)\ATLAS V14\ATLIECP.DLL TB: Adobe Acrobat Create PDF Toolbar: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll uRun: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe uRun: [Raptr] C:\PROGRA~2\Raptr\raptrstub.exe --startup uRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun uRun: [sandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe" uRun: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun dRun: [DevconDefaultDB] C:\Windows\System32\READREG /SILENT /FAIL=1 StartupFolder: C:\Users\Rock\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\STARDO~1.LNK - C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDock.exe mPolicies-Explorer: NoActiveDesktop = dword:1 mPolicies-System: ConsentPromptBehaviorAdmin = dword:5 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableUIADesktopToggle = dword:0 IE: &Save the YouTube video as MP3 - C:\Users\Rock\AppData\Roaming\Free YouTube to MP3 Converter Studio\Free YouTube to MP3 Converter Studio.htm IE: &Translate with ATLAS - C:\Program Files (x86)\ATLAS V14\Atlscript.html IE: Add to Evernote 4.0 - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 IE: ATLAS Translation &Editor - C:\Program Files (x86)\ATLAS V14\AtlscriptEdit.html IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000 IE: Open Client to monitor &1 - C:\Windows\web\AOpenClient.htm IE: Open Client to monitor &2 - C:\Windows\web\AOpenClient.htm IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 IE: {B7707A72-4355-11D4-82BD-00000EBBEF8D} - C:\Program Files (x86)\ATLAS V14\Atlscript.html Trusted Zone: clonewarsadventures.com Trusted Zone: freerealms.com Trusted Zone: soe.com Trusted Zone: sony.com DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - C:\Program Files (x86)\Yahoo!\Common\Yinsthelper.dll DPF: {8E9089E1-0461-4F60-8150-1E334629ABB7} - hxxp://webdown2.nexon.co.jp/arad/real/installer/arad_dis.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab TCP: NameServer = 192.168.1.1 TCP: Interfaces\{4FCE06B5-A42A-417E-8E60-8FDD9700DA92} : DHCPNameServer = 64.120.16.10 8.8.8.8 TCP: Interfaces\{C5E18294-B36B-46EA-B899-7C2C9D10141C} : NameServer = 129.250.35.250,205.171.3.65 TCP: Interfaces\{C5E18294-B36B-46EA-B899-7C2C9D10141C} : DHCPNameServer = 192.168.1.1 TCP: Interfaces\{E9AE5508-A35D-4371-8B22-BD546D4E01D6} : DHCPNameServer = 192.168.1.1 Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll SSODL: WebCheck - <orphaned> SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll x64-BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll x64-BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s x64-Run: [Launch LgDeviceAgent] "C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe" x64-Run: [Launch LGDCore] "C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" /SHOWHIDE x64-Run: [Launch LCDMon] "C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe" x64-Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey x64-Run: [M-Audio Taskbar Icon] C:\Windows\System32\M-AudioTaskBarIcon.exe x64-Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming x64-DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab x64-DPF: {CAFEEFAC-0017-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab x64-Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - <orphaned> x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - <orphaned> x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned> x64-Notify: LBTWlgn - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll x64-SSODL: WebCheck - <orphaned> x64-STS: FencesShlExt Class - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files\Stardock\Fences Pro\FencesMenu64.dll . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\Rock\AppData\Roaming\Mozilla\Firefox\Profiles\oo0vpxaf.default\ FF - prefs.js: network.proxy.ftp - 202.77.119.114 FF - prefs.js: network.proxy.ftp_port - 80 FF - prefs.js: network.proxy.http - 202.77.119.114 FF - prefs.js: network.proxy.http_port - 80 FF - prefs.js: network.proxy.socks - 202.77.119.114 FF - prefs.js: network.proxy.socks_port - 80 FF - prefs.js: network.proxy.ssl - 202.77.119.114 FF - prefs.js: network.proxy.ssl_port - 80 FF - prefs.js: network.proxy.type - 0 FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll FF - plugin: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll FF - plugin: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll FF - plugin: C:\Program Files (x86)\Google\Google Updater\2.4.1908.5032\npCIDetect14.dll FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.10516.0\npctrlui.dll FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npyaxmpb.dll FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll FF - plugin: C:\Program Files (x86)\OnLive\Plugin\npolgdet.dll FF - plugin: C:\Program Files (x86)\TabletPlugins\npwacom.dll FF - plugin: C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll FF - plugin: C:\ProgramData\NexonJP\NGM\npNxGameJP.dll FF - plugin: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll FF - plugin: C:\Users\Rock\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll FF - plugin: C:\Users\Rock\AppData\Roaming\Move Networks\plugins\npqmp071706000001.dll FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_265.dll FF - plugin: C:\Windows\SysWOW64\npdeployJava1.dll FF - plugin: C:\Windows\SysWOW64\npmproxy.dll FF - plugin: Q:\Programs\Acrobat XI\Acrobat\Air\nppdf32.dll . ============= SERVICES / DRIVERS =============== . P2 HiPatchService;Hi-Rez Studios Authenticate and Update Service;Q:\Games\PC GAMES INSTALLED\Hi-Rez Studios\HiPatchService.exe [2012-3-25 8704] R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2013-1-20 52760] R1 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2011-4-18 189440] R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2012-12-19 240640] R2 cpuz134;cpuz134;C:\Windows\System32\drivers\cpuz134_x64.sys [2010-8-9 21480] R2 cpuz135;cpuz135;C:\Windows\System32\drivers\cpuz135_x64.sys [2012-4-5 21992] R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-9-21 398184] R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-9-21 682344] R2 TabletServicePen;TabletServicePen;C:\Program Files\Tablet\Pen\Pen_Tablet.exe [2012-1-8 6583160] R2 TouchServicePen;Wacom Consumer Touch Service;C:\Program Files\Tablet\Pen\Pen_TouchService.exe [2012-1-8 528760] R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2012-11-6 96256] R3 EuMusDesignVirtualAudioCableWdm;Virtual Audio Cable (WDM);C:\Windows\System32\drivers\vrtaucbl.sys [2012-7-4 66728] R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;C:\Windows\System32\drivers\LGBusEnum.sys [2009-11-23 22408] R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;C:\Windows\System32\drivers\LGVirHid.sys [2009-11-23 16008] R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2011-12-16 24176] R3 MBfilt;MBfilt;C:\Windows\System32\drivers\MBfilt64.sys [2011-11-18 32344] R3 MpNWMon;Microsoft Malware Protection Network Driver;C:\Windows\System32\drivers\MpNWMon.sys [2011-4-18 40832] R3 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2011-4-27 84864] R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-4-27 288272] R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2011-11-18 428136] R3 SbieDrv;SbieDrv;C:\Program Files\Sandboxie\SbieDrv.sys [2012-12-16 202632] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-7-9 104912] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-7-8 123856] S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-11-9 160944] S3 BEHRINGER_2902;usb-audio.de driver for BEHRINGER USB AUDIO;C:\Windows\System32\drivers\BUSB2902.sys [2011-3-30 460864] S3 BUSB_AUDIO_WDM;BEHRINGER USB WDM AUDIO;C:\Windows\System32\drivers\busbwdm.sys [2011-3-30 49728] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\drivers\ssudbus.sys [2012-12-3 99384] S3 IDMWFP;IDMWFP;C:\Windows\System32\drivers\idmwfp.sys [2010-9-2 88864] S3 libusb0;LibUsb-Win32 - Kernel Driver 08/27/2006, 0.1.12.0;C:\Windows\System32\drivers\libusb0.sys [2012-8-22 31744] S3 MAUSBMOBILEPRE;Service for M-Audio MobilePre;C:\Windows\System32\drivers\MAudioMobilePre.sys [2009-9-2 187912] S3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;C:\Windows\System32\drivers\MijXfilt.sys [2010-8-20 121416] S3 npggsvc;nProtect GameGuard Service;C:\Windows\System32\GameMon.des -service --> C:\Windows\System32\GameMon.des -service [?] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\drivers\ssudmdm.sys [2012-12-3 203320] S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096] S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2011-8-2 51712] S3 wacmoumonitor;Wacom Mode Helper;C:\Windows\System32\drivers\wacmoumonitor.sys [2012-1-8 13312] S3 WSDScan;WSD Scan Support via UMB;C:\Windows\System32\drivers\WSDScan.sys [2009-7-13 25088] S3 YMIDUSBW;Yamaha USB-MIDI Driver (WDM);C:\Windows\System32\drivers\ymidusbx64.sys [2009-8-4 48200] S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk62x64.sys [2009-6-10 389120] S4 Apache2.2;Apache2.2;C:\xampplite\apache\bin\httpd.exe [2010-8-18 29416] S4 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-12-29 383416] . =============== File Associations =============== . FileExt: .reg: Applications\wordpad.exe="C:\Program Files (x86)\Windows NT\Accessories\WORDPAD.EXE" "%1" [userChoice] FileExt: .txt: textfile="C:\Program Files (x86)\Windows NT\Accessories\WORDPAD.EXE" "%1" [userChoice] FileExt: .ini: Applications\WORDPAD.EXE="C:\Program Files (x86)\Windows NT\Accessories\WORDPAD.EXE" "%1" [userChoice] FileExt: .js: jsfile="R:\Programs\Dreamweaver CS5\Adobe Dreamweaver CS5\Dreamweaver.exe","%1" ShellExec: dreamweaver.exe: Open="C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS5\dreamweaver.exe", "%1" . =============== Created Last 30 ================ . 2013-02-08 00:25:00 9161176 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E77ACF8C-6270-4686-83B1-57914DAFD17B}\mpengine.dll 2013-02-08 00:03:59 -------- dc----w- C:\Users\Rock\Doctor Web 2013-02-05 06:46:17 -------- d-sh--w- C:\found.002 2013-02-05 06:16:10 -------- dc----w- C:\Users\Rock\AppData\Local\SCE 2013-02-05 02:24:40 -------- dc----w- C:\Users\Rock\AppData\Local\EA Games 2013-02-05 02:02:22 95648 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll 2013-02-05 01:36:40 96664 -c--a-w- C:\Program Files (x86)\Mozilla Firefox\webapprt-stub.exe 2013-02-05 01:36:40 157712 -c--a-w- C:\Program Files (x86)\Mozilla Firefox\webapp-uninstaller.exe 2013-02-05 01:36:39 74136 -c--a-w- C:\Program Files (x86)\Mozilla Firefox\breakpadinjector.dll 2013-02-02 05:28:41 -------- dc----w- C:\ProgramData\Battle.net 2013-02-01 00:40:19 -------- dc----w- C:\Users\Rock\AppData\Local\ATI 2013-02-01 00:39:54 0 ----a-w- C:\Windows\ativpsrm.bin 2013-02-01 00:33:45 -------- dc----w- C:\ProgramData\AMD 2013-02-01 00:33:44 -------- d-----w- C:\Program Files (x86)\AMD AVT 2013-02-01 00:33:42 -------- d-----w- C:\Program Files (x86)\AMD APP 2013-02-01 00:33:41 -------- dc----w- C:\Program Files (x86)\Common Files\ATI Technologies 2013-02-01 00:33:41 -------- d-----w- C:\Program Files\Common Files\ATI Technologies 2013-02-01 00:33:10 -------- d-----w- C:\Program Files (x86)\Driver Fusion 2013-02-01 00:17:51 -------- d-----w- C:\Program Files (x86)\ATI Technologies 2013-02-01 00:17:45 -------- d-----w- C:\Program Files\ATI Technologies 2013-02-01 00:17:43 -------- d-----w- C:\Program Files\ATI 2013-02-01 00:15:17 -------- d-----w- C:\AMD 2013-01-31 19:54:47 -------- dc----w- C:\Users\Rock\Heaven 2013-01-31 18:11:55 -------- d-----w- C:\Program Files\Unigine 2013-01-30 02:08:26 -------- dc----w- C:\Users\Rock\AppData\Roaming\PCGPGOMC 2013-01-28 21:40:16 -------- d-----w- C:\Program Files (x86)\GPU-Z 2013-01-27 23:07:26 -------- d-sh--w- C:\found.001 2013-01-27 23:01:37 -------- d--h--w- C:\ControlCenterCount 2013-01-24 13:38:29 63928 ----a-w- C:\Windows\System32\nvshext.dll 2013-01-24 13:36:51 -------- dc----w- C:\ProgramData\NVIDIA Corporation 2013-01-24 13:34:46 2824656 ----a-w- C:\Windows\System32\nvapi64.dll 2013-01-24 13:34:46 2504248 ----a-w- C:\Windows\SysWow64\nvapi.dll 2013-01-21 20:21:08 -------- d-sh--r- C:\Kernels 2013-01-21 15:55:10 -------- dc----w- C:\Users\Rock\AppData\Roaming\uMod 2013-01-21 09:00:11 281688 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe 2013-01-21 09:00:10 76888 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe 2013-01-20 18:52:34 -------- dc----w- C:\ProgramData\Orbit 2013-01-20 17:56:36 -------- dc----w- C:\Users\Rock\AppData\Local\TERA 2013-01-20 15:25:34 -------- dc----w- C:\Users\Rock\Library 2013-01-20 15:25:34 -------- dc----w- C:\Users\Rock\AppData\Roaming\com.ynab.YNAB4.LiveCaptive 2013-01-20 15:25:28 -------- d-----w- C:\Program Files (x86)\YNAB 4 2013-01-20 10:07:21 -------- dc----w- C:\ProgramData\Package Cache 2013-01-20 09:56:27 -------- dc----w- C:\ProgramData\SonicStage 2013-01-20 09:50:46 2368 ----a-w- C:\Windows\SysWow64\STEC3.sys 2013-01-20 09:17:46 -------- dc----w- C:\ProgramData\Sony Corporation 2013-01-20 09:17:22 69715 -c--a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\ctor.dll 2013-01-20 09:17:22 5632 -c--a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\DotNetInstaller.exe 2013-01-20 09:17:22 266240 -c--a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iscript.dll 2013-01-20 09:17:22 172032 -c--a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iuser.dll 2013-01-20 09:17:21 733184 -c--a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iKernel.dll 2013-01-20 09:17:20 180356 -c--a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iGdi.dll 2013-01-20 09:17:19 303236 -c--a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\setup.dll 2013-01-20 09:16:55 -------- d-----w- C:\Windows\SysWow64\Iosubsys 2013-01-20 09:15:36 -------- dc----w- C:\Program Files (x86)\Common Files\Sony Shared 2013-01-20 04:53:49 -------- d-sh--w- C:\found.000 2013-01-12 22:13:35 -------- d-----w- C:\Program Files (x86)\Market Samurai 2013-01-10 04:02:11 -------- d-----w- C:\Program Files (x86)\Combined Community Codec Pack . ==================== Find3M ==================== . 2013-02-05 02:02:19 861088 ----a-w- C:\Windows\SysWow64\npdeployJava1.dll 2013-02-05 02:02:19 782240 ----a-w- C:\Windows\SysWow64\deployJava1.dll 2013-02-02 15:44:04 281688 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr 2013-02-01 01:43:56 281288 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0 2013-01-30 10:53:22 273840 ------w- C:\Windows\System32\MpSigStub.exe 2013-01-10 21:16:13 16 -c--a-w- C:\Users\Rock\AppData\Roaming\msregsvv.dll 2012-12-29 10:54:24 550328 ----a-w- C:\Windows\SysWow64\nvStreaming.exe 2012-12-19 23:45:12 222720 ----a-w- C:\Windows\System32\clinfo.exe 2012-12-19 23:44:48 76288 ----a-w- C:\Windows\System32\OpenVideo64.dll 2012-12-19 23:44:42 65536 ----a-w- C:\Windows\SysWow64\OpenVideo.dll 2012-12-19 23:44:36 64000 ----a-w- C:\Windows\System32\OVDecode64.dll 2012-12-19 23:44:32 56320 ----a-w- C:\Windows\SysWow64\OVDecode.dll 2012-12-19 23:44:20 34518016 ----a-w- C:\Windows\System32\amdocl64.dll 2012-12-19 23:38:48 28732928 ----a-w- C:\Windows\SysWow64\amdocl.dll 2012-12-19 23:34:40 54784 ----a-w- C:\Windows\System32\OpenCL.dll 2012-12-19 23:34:38 50176 ----a-w- C:\Windows\SysWow64\OpenCL.dll 2012-12-19 20:50:14 5630200 ----a-w- C:\Windows\SysWow64\atiumdag.dll 2012-12-19 20:48:48 11278336 ----a-w- C:\Windows\System32\drivers\atikmdag.sys 2012-12-19 20:29:36 23461376 ----a-w- C:\Windows\System32\atio6axx.dll 2012-12-19 20:22:50 70144 ----a-w- C:\Windows\System32\coinst_9.012.dll 2012-12-19 20:19:46 163840 ----a-w- C:\Windows\System32\atiapfxx.exe 2012-12-19 20:18:04 51200 ----a-w- C:\Windows\System32\aticalrt64.dll 2012-12-19 20:18:02 46080 ----a-w- C:\Windows\SysWow64\aticalrt.dll 2012-12-19 20:17:54 44544 ----a-w- C:\Windows\System32\aticalcl64.dll 2012-12-19 20:17:52 44032 ----a-w- C:\Windows\SysWow64\aticalcl.dll 2012-12-19 20:17:40 16082944 ----a-w- C:\Windows\System32\aticaldd64.dll 2012-12-19 20:13:24 13703168 ----a-w- C:\Windows\SysWow64\aticaldd.dll 2012-12-19 20:12:44 18982400 ----a-w- C:\Windows\SysWow64\atioglxx.dll 2012-12-19 20:09:52 960512 ----a-w- C:\Windows\SysWow64\aticfx32.dll 2012-12-19 20:08:04 1151488 ----a-w- C:\Windows\System32\aticfx64.dll 2012-12-19 20:06:00 6681088 ----a-w- C:\Windows\SysWow64\atidxx32.dll 2012-12-19 19:59:44 5087744 ----a-w- C:\Windows\System32\atiumd6a.dll 2012-12-19 19:57:00 442368 ----a-w- C:\Windows\System32\atidemgy.dll 2012-12-19 19:56:46 550912 ----a-w- C:\Windows\System32\atieclxx.exe 2012-12-19 19:56:00 240640 ----a-w- C:\Windows\System32\atiesrxx.exe 2012-12-19 19:54:38 120320 ----a-w- C:\Windows\System32\atitmm64.dll 2012-12-19 19:54:22 21504 ----a-w- C:\Windows\System32\atimuixx.dll 2012-12-19 19:54:18 59392 ----a-w- C:\Windows\System32\atiedu64.dll 2012-12-19 19:54:12 43520 ----a-w- C:\Windows\SysWow64\ati2edxx.dll 2012-12-19 19:49:00 7370752 ----a-w- C:\Windows\System32\atidxx64.dll 2012-12-19 19:44:28 4162048 ----a-w- C:\Windows\SysWow64\atiumdva.dll 2012-12-19 19:44:12 6786560 ----a-w- C:\Windows\System32\atiumd64.dll 2012-12-19 19:34:28 79360 ----a-w- C:\Windows\System32\amdave64.dll 2012-12-19 19:34:22 78336 ----a-w- C:\Windows\SysWow64\amdave32.dll 2012-12-19 19:34:10 74240 ----a-w- C:\Windows\System32\atisamu64.dll 2012-12-19 19:34:04 71168 ----a-w- C:\Windows\SysWow64\atisamu32.dll 2012-12-19 19:33:50 56320 ----a-w- C:\Windows\System32\atimpc64.dll 2012-12-19 19:33:50 56320 ----a-w- C:\Windows\System32\amdpcom64.dll 2012-12-19 19:33:42 619008 ----a-w- C:\Windows\System32\atiadlxx.dll 2012-12-19 19:33:40 56832 ----a-w- C:\Windows\SysWow64\atimpc32.dll 2012-12-19 19:33:40 56832 ----a-w- C:\Windows\SysWow64\amdpcom32.dll 2012-12-19 19:33:32 421888 ----a-w- C:\Windows\SysWow64\atiadlxy.dll 2012-12-19 19:33:18 17920 ----a-w- C:\Windows\System32\atig6pxx.dll 2012-12-19 19:33:14 14848 ----a-w- C:\Windows\SysWow64\atiglpxx.dll 2012-12-19 19:33:14 14848 ----a-w- C:\Windows\System32\atiglpxx.dll 2012-12-19 19:33:10 41984 ----a-w- C:\Windows\System32\atig6txx.dll 2012-12-19 19:33:04 33280 ----a-w- C:\Windows\SysWow64\atigktxx.dll 2012-12-19 19:32:54 552960 ----a-w- C:\Windows\System32\drivers\atikmpag.sys 2012-12-19 19:31:14 130048 ----a-w- C:\Windows\System32\atiuxp64.dll 2012-12-19 19:31:08 109568 ----a-w- C:\Windows\SysWow64\atiuxpag.dll 2012-12-19 19:31:00 104448 ----a-w- C:\Windows\System32\atiu9p64.dll 2012-12-19 19:30:52 83968 ----a-w- C:\Windows\SysWow64\atiu9pag.dll 2012-12-19 19:30:16 53248 ----a-w- C:\Windows\System32\drivers\ati2erec.dll 2012-12-15 00:49:28 24176 ----a-w- C:\Windows\System32\drivers\mbam.sys 2012-12-06 05:22:57 18960 ----a-w- C:\Windows\System32\drivers\LNonPnP.sys . ============= FINISH: 16:26:43.03 =============== dr web cureit log.txt
  12. FlagrantWolf
    # AdwCleaner v2.111 - Logfile created 02/06/2013 at 18:21:36 # Updated 05/02/2013 by Xplode # Operating system : Windows 7 Ultimate (64 bits) # User : Rock - HAL9000-2 # Boot Mode : Normal # Running from : C:\Users\Rock\Desktop\adwcleaner.exe # Option [search] ***** [services] ***** ***** [Files / Folders] ***** Folder Found : C:\ProgramData\boost_interprocess Folder Found : C:\ProgramData\Download and Sa Folder Found : C:\ProgramData\InstallMate Folder Found : C:\ProgramData\Premium Folder Found : C:\ProgramData\RightClick Folder Found : C:\Users\Rock\AppData\LocalLow\AskToolbar Folder Found : C:\Users\Rock\AppData\LocalLow\Download and Sa Folder Found : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE} ***** [Registry] ***** Key Found : HKCU\Software\APN Key Found : HKCU\Software\AppDataLow\AskToolbarInfo Key Found : HKCU\Software\AppDataLow\Software\AskToolbar Key Found : HKCU\Software\Ask.com Key Found : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440} Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170} Key Found : HKLM\Software\APN Key Found : HKLM\Software\AskToolbar Key Found : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874} Key Found : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL Key Found : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd Key Found : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1 Key Found : HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF Key Found : HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF Key Found : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56} Key Found : HKLM\SOFTWARE\Wow6432Node\14919ea49a8f3b4aa3cf1058d9a64cec Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC} Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440} Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456} Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92} Key Found : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E} Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440} Key Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE} Key Found : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456} Key Found : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92} Key Found : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E} Key Found : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ApnUpdater Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170} Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF Value Found : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}] Value Found : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}] ***** [internet Browsers] ***** -\\ Internet Explorer v9.0.8112.16421 [OK] Registry is clean. -\\ Mozilla Firefox v18.0.1 (en-US) File : C:\Users\Rock\AppData\Roaming\Mozilla\Firefox\Profiles\oo0vpxaf.default\prefs.js Found : user_pref("extensions.507c9fcfd1672.scode", "(function(){try{if('aol.com,mail.google.com,premiumrepo[...] File : C:\Users\Other\AppData\Roaming\Mozilla\Firefox\Profiles\zgti40fg.default\prefs.js [OK] File is clean. -\\ Google Chrome v24.0.1312.57 File : C:\Users\Rock\AppData\Local\Google\Chrome\User Data\Default\Preferences [OK] File is clean. ************************* AdwCleaner[R1].txt - [4424 octets] - [06/02/2013 18:21:36] ########## EOF - C:\AdwCleaner[R1].txt - [4484 octets] ########## ==== TDSSKILLER ==== 18:23:53.0395 1836 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35 18:23:53.0850 1836 ============================================================ 18:23:53.0850 1836 Current date / time: 2013/02/06 18:23:53.0850 18:23:53.0850 1836 SystemInfo: 18:23:53.0850 1836 18:23:53.0850 1836 OS Version: 6.1.7600 ServicePack: 0.0 18:23:53.0850 1836 Product type: Workstation 18:23:53.0850 1836 ComputerName: HAL9000-2 18:23:53.0850 1836 UserName: Rock 18:23:53.0850 1836 Windows directory: C:\Windows 18:23:53.0850 1836 System windows directory: C:\Windows 18:23:53.0850 1836 Running under WOW64 18:23:53.0850 1836 Processor architecture: Intel x64 18:23:53.0850 1836 Number of processors: 4 18:23:53.0850 1836 Page size: 0x1000 18:23:53.0850 1836 Boot type: Normal boot 18:23:53.0850 1836 ============================================================ 18:23:54.0085 1836 Drive \Device\Harddisk0\DR0 - Size: 0xEE8156000 (59.63 Gb), SectorSize: 0x200, Cylinders: 0x1E67, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 18:23:54.0095 1836 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 18:23:54.0095 1836 Drive \Device\Harddisk2\DR2 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 18:23:54.0095 1836 Drive \Device\Harddisk3\DR3 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 18:23:54.0095 1836 Drive \Device\Harddisk4\DR4 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 18:23:54.0100 1836 ============================================================ 18:23:54.0100 1836 \Device\Harddisk0\DR0: 18:23:54.0105 1836 MBR partitions: 18:23:54.0105 1836 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x773F800 18:23:54.0105 1836 \Device\Harddisk1\DR1: 18:23:54.0105 1836 MBR partitions: 18:23:54.0105 1836 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74705982 18:23:54.0105 1836 \Device\Harddisk2\DR2: 18:23:54.0105 1836 MBR partitions: 18:23:54.0105 1836 \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07800 18:23:54.0105 1836 \Device\Harddisk3\DR3: 18:23:54.0105 1836 MBR partitions: 18:23:54.0105 1836 \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x538B8FF8 18:23:54.0105 1836 \Device\Harddisk3\DR3\Partition2: MBR, Type 0x7, StartLBA 0x538B9800, BlocksNum 0x3C8B800 18:23:54.0105 1836 \Device\Harddisk4\DR4: 18:23:54.0105 1836 MBR partitions: 18:23:54.0105 1836 \Device\Harddisk4\DR4\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02 18:23:54.0105 1836 ============================================================ 18:23:54.0135 1836 C: <-> \Device\Harddisk0\DR0\Partition1 18:23:54.0160 1836 X: <-> \Device\Harddisk3\DR3\Partition1 18:23:54.0180 1836 D: <-> \Device\Harddisk4\DR4\Partition1 18:23:54.0205 1836 H: <-> \Device\Harddisk1\DR1\Partition1 18:23:54.0205 1836 Z: <-> \Device\Harddisk3\DR3\Partition2 18:23:54.0210 1836 Q: <-> \Device\Harddisk2\DR2\Partition1 18:23:54.0210 1836 ============================================================ 18:23:54.0210 1836 Initialize success 18:23:54.0210 1836 ============================================================ 18:23:59.0145 3624 ============================================================ 18:23:59.0145 3624 Scan started 18:23:59.0145 3624 Mode: Manual; 18:23:59.0145 3624 ============================================================ 18:23:59.0385 3624 ================ Scan system memory ======================== 18:23:59.0385 3624 System memory - ok 18:23:59.0385 3624 ================ Scan services ============================= 18:23:59.0415 3624 [ 1B00662092F9F9568B995902F0CC40D5 ] 1394ohci C:\Windows\system32\DRIVERS\1394ohci.sys 18:23:59.0415 3624 1394ohci - ok 18:23:59.0420 3624 [ 6F11E88748CDEFD2F76AA215F97DDFE5 ] ACPI C:\Windows\system32\DRIVERS\ACPI.sys 18:23:59.0425 3624 ACPI - ok 18:23:59.0425 3624 [ 63B05A0420CE4BF0E4AF6DCC7CADA254 ] AcpiPmi C:\Windows\system32\DRIVERS\acpipmi.sys 18:23:59.0425 3624 AcpiPmi - ok 18:23:59.0435 3624 [ B1EA9681502EE57F87DB71D726288A5B ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 18:23:59.0435 3624 AdobeARMservice - ok 18:23:59.0440 3624 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys 18:23:59.0445 3624 adp94xx - ok 18:23:59.0450 3624 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys 18:23:59.0450 3624 adpahci - ok 18:23:59.0455 3624 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys 18:23:59.0455 3624 adpu320 - ok 18:23:59.0460 3624 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 18:23:59.0460 3624 AeLookupSvc - ok 18:23:59.0465 3624 [ 6EF20DDF3172E97D69F596FB90602F29 ] AFD C:\Windows\system32\drivers\afd.sys 18:23:59.0470 3624 AFD - ok 18:23:59.0475 3624 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\DRIVERS\agp440.sys 18:23:59.0475 3624 agp440 - ok 18:23:59.0475 3624 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe 18:23:59.0475 3624 ALG - ok 18:23:59.0485 3624 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\DRIVERS\aliide.sys 18:23:59.0500 3624 aliide - ok 18:23:59.0510 3624 [ 4EAAAAB8759644D572522FBCDD196A13 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe 18:23:59.0515 3624 AMD External Events Utility - ok 18:23:59.0520 3624 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\DRIVERS\amdide.sys 18:23:59.0520 3624 amdide - ok 18:23:59.0520 3624 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys 18:23:59.0520 3624 AmdK8 - ok 18:23:59.0625 3624 [ 22A14DF59FB8D0BE918C597988AF4296 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys 18:23:59.0730 3624 amdkmdag - ok 18:23:59.0740 3624 [ EE22D3ED6D55A855E709F811CCCA97ED ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys 18:23:59.0740 3624 amdkmdap - ok 18:23:59.0745 3624 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys 18:23:59.0745 3624 AmdPPM - ok 18:23:59.0745 3624 [ 7A4B413614C055935567CF88A9734D38 ] amdsata C:\Windows\system32\DRIVERS\amdsata.sys 18:23:59.0745 3624 amdsata - ok 18:23:59.0750 3624 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys 18:23:59.0750 3624 amdsbs - ok 18:23:59.0755 3624 [ B4AD0CACBAB298671DD6F6EF7E20679D ] amdxata C:\Windows\system32\DRIVERS\amdxata.sys 18:23:59.0755 3624 amdxata - ok 18:23:59.0760 3624 [ 1F8E9426219263CB3CE9AC1735A68D9E ] AnyDVD C:\Windows\system32\Drivers\AnyDVD.sys 18:23:59.0760 3624 AnyDVD - ok 18:23:59.0765 3624 [ FB32F046A2578755FA0DA5052C6A9CD3 ] Apache2.2 C:\xampplite\apache\bin\httpd.exe 18:23:59.0765 3624 Apache2.2 - ok 18:23:59.0765 3624 [ 42FD751B27FA0E9C69BB39F39E409594 ] AppID C:\Windows\system32\drivers\appid.sys 18:23:59.0765 3624 AppID - ok 18:23:59.0770 3624 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll 18:23:59.0770 3624 AppIDSvc - ok 18:23:59.0770 3624 [ D065BE66822847B7F127D1F90158376E ] Appinfo C:\Windows\System32\appinfo.dll 18:23:59.0775 3624 Appinfo - ok 18:23:59.0775 3624 [ 3DEBBECF665DCDDE3A95D9B902010817 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 18:23:59.0775 3624 Apple Mobile Device - ok 18:23:59.0780 3624 [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt C:\Windows\System32\appmgmts.dll 18:23:59.0785 3624 AppMgmt - ok 18:23:59.0785 3624 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys 18:23:59.0785 3624 arc - ok 18:23:59.0790 3624 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys 18:23:59.0790 3624 arcsas - ok 18:23:59.0805 3624 [ 108FB6DDB69E537A2EA53F425363FAE5 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe 18:23:59.0805 3624 aspnet_state - ok 18:23:59.0805 3624 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 18:23:59.0805 3624 AsyncMac - ok 18:23:59.0810 3624 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\DRIVERS\atapi.sys 18:23:59.0810 3624 atapi - ok 18:23:59.0815 3624 [ 437F55435623D4D54D36197F5AD8B435 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys 18:23:59.0815 3624 AtiHDAudioService - ok 18:23:59.0825 3624 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 18:23:59.0830 3624 AudioEndpointBuilder - ok 18:23:59.0835 3624 [ 07721A77180EDD4D39CCB865BF63C7FD ] AudioSrv C:\Windows\System32\Audiosrv.dll 18:23:59.0835 3624 AudioSrv - ok 18:23:59.0840 3624 [ B20B5FA5CA050E9926E4D1DB81501B32 ] AxInstSV C:\Windows\System32\AxInstSV.dll 18:23:59.0840 3624 AxInstSV - ok 18:23:59.0845 3624 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys 18:23:59.0850 3624 b06bdrv - ok 18:23:59.0855 3624 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 18:23:59.0855 3624 b57nd60a - ok 18:23:59.0860 3624 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll 18:23:59.0860 3624 BDESVC - ok 18:23:59.0865 3624 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys 18:23:59.0865 3624 Beep - ok 18:23:59.0870 3624 [ B62ABDC39B36184B6B8B9E71A8685F52 ] BEHRINGER_2902 C:\Windows\system32\Drivers\BUSB2902.sys 18:23:59.0870 3624 BEHRINGER_2902 - ok 18:23:59.0880 3624 [ 4992C609A6315671463E30F6512BC022 ] BFE C:\Windows\System32\bfe.dll 18:23:59.0885 3624 BFE - ok 18:23:59.0895 3624 [ 7F0C323FE3DA28AA4AA1BDA3F575707F ] BITS C:\Windows\System32\qmgr.dll 18:23:59.0905 3624 BITS - ok 18:23:59.0905 3624 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 18:23:59.0905 3624 blbdrive - ok 18:23:59.0915 3624 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 18:23:59.0915 3624 Bonjour Service - ok 18:23:59.0920 3624 [ 19D20159708E152267E53B66677A4995 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 18:23:59.0920 3624 bowser - ok 18:23:59.0920 3624 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys 18:23:59.0925 3624 BrFiltLo - ok 18:23:59.0925 3624 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys 18:23:59.0925 3624 BrFiltUp - ok 18:23:59.0930 3624 [ 94FBC06F294D58D02361918418F996E3 ] Browser C:\Windows\System32\browser.dll 18:23:59.0930 3624 Browser - ok 18:23:59.0935 3624 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys 18:23:59.0935 3624 Brserid - ok 18:23:59.0940 3624 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 18:23:59.0940 3624 BrSerWdm - ok 18:23:59.0940 3624 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 18:23:59.0940 3624 BrUsbMdm - ok 18:23:59.0945 3624 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 18:23:59.0945 3624 BrUsbSer - ok 18:23:59.0945 3624 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys 18:23:59.0945 3624 BTHMODEM - ok 18:23:59.0950 3624 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll 18:23:59.0950 3624 bthserv - ok 18:23:59.0955 3624 [ AEC85FF9A00DD9EE7605AFC66949F228 ] BUSB_AUDIO_WDM C:\Windows\system32\drivers\busbwdm.sys 18:23:59.0955 3624 BUSB_AUDIO_WDM - ok 18:23:59.0955 3624 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 18:23:59.0955 3624 cdfs - ok 18:23:59.0960 3624 [ 83D2D75E1EFB81B3450C18131443F7DB ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 18:23:59.0960 3624 cdrom - ok 18:23:59.0965 3624 [ 312E2F82AF11E79906898AC3E3D58A1F ] CertPropSvc C:\Windows\System32\certprop.dll 18:23:59.0965 3624 CertPropSvc - ok 18:23:59.0970 3624 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys 18:23:59.0970 3624 circlass - ok 18:23:59.0975 3624 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys 18:23:59.0975 3624 CLFS - ok 18:23:59.0980 3624 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 18:23:59.0985 3624 clr_optimization_v2.0.50727_32 - ok 18:23:59.0985 3624 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 18:23:59.0990 3624 clr_optimization_v2.0.50727_64 - ok 18:23:59.0995 3624 [ 6D7C8A951AF6AD6835C029B3CB88D333 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 18:24:00.0000 3624 clr_optimization_v4.0.30319_32 - ok 18:24:00.0000 3624 [ 86329C35FF23CFEF0FB6C0023BA06BCE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 18:24:00.0000 3624 clr_optimization_v4.0.30319_64 - ok 18:24:00.0005 3624 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 18:24:00.0005 3624 CmBatt - ok 18:24:00.0005 3624 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\DRIVERS\cmdide.sys 18:24:00.0005 3624 cmdide - ok 18:24:00.0015 3624 [ 937BEB186A735ACA91D717044A49D17E ] CNG C:\Windows\system32\Drivers\cng.sys 18:24:00.0015 3624 CNG - ok 18:24:00.0020 3624 [ 66AC4FDAD5A2D4FF4E3DB41810B39DE2 ] COMMONFX.DLL C:\Windows\system32\COMMONFX.DLL 18:24:00.0020 3624 COMMONFX.DLL - ok 18:24:00.0025 3624 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 18:24:00.0025 3624 Compbatt - ok 18:24:00.0025 3624 [ F26B3A86F6FA87CA360B879581AB4123 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys 18:24:00.0025 3624 CompositeBus - ok 18:24:00.0030 3624 COMSysApp - ok 18:24:00.0030 3624 [ 17719A7F571D4CD08223F0B30F71B8B8 ] cpuz134 C:\Windows\system32\drivers\cpuz134_x64.sys 18:24:00.0030 3624 cpuz134 - ok 18:24:00.0035 3624 [ C08063F052308B6F5882482615387F30 ] cpuz135 C:\Windows\system32\drivers\cpuz135_x64.sys 18:24:00.0035 3624 cpuz135 - ok 18:24:00.0035 3624 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys 18:24:00.0035 3624 crcdisk - ok 18:24:00.0040 3624 [ 8C57411B66282C01533CB776F98AD384 ] CryptSvc C:\Windows\system32\cryptsvc.dll 18:24:00.0040 3624 CryptSvc - ok 18:24:00.0050 3624 [ 4A6173C2279B498CD8F57CAE504564CB ] CSC C:\Windows\system32\drivers\csc.sys 18:24:00.0050 3624 CSC - ok 18:24:00.0060 3624 [ 873FBF927C06E5CEE04DEC617502F8FD ] CscService C:\Windows\System32\cscsvc.dll 18:24:00.0065 3624 CscService - ok 18:24:00.0070 3624 [ 01BBD5CB85423B12E445209D243A49A9 ] CT20XUT.DLL C:\Windows\system32\CT20XUT.DLL 18:24:00.0075 3624 CT20XUT.DLL - ok 18:24:00.0085 3624 [ B81C989C6D3B770F44316A3DC5F607B3 ] ctac32k C:\Windows\system32\drivers\ctac32k.sys 18:24:00.0085 3624 ctac32k - ok 18:24:00.0100 3624 [ 7321BD704CC3B34B78F8574E64258F39 ] ctaud2k C:\Windows\system32\drivers\ctaud2k.sys 18:24:00.0105 3624 ctaud2k - ok 18:24:00.0115 3624 [ E873319F281115EBEA75E519C5B4D0C4 ] CTAUDFX.DLL C:\Windows\system32\CTAUDFX.DLL 18:24:00.0120 3624 CTAUDFX.DLL - ok 18:24:00.0125 3624 [ 06300545BEDF49B6A51FDFE1861F9CAF ] CTEAPSFX.DLL C:\Windows\system32\CTEAPSFX.DLL 18:24:00.0125 3624 CTEAPSFX.DLL - ok 18:24:00.0130 3624 [ 2D902F8EC247F0ED0D458CDCAF786544 ] CTEDSPFX.DLL C:\Windows\system32\CTEDSPFX.DLL 18:24:00.0130 3624 CTEDSPFX.DLL - ok 18:24:00.0135 3624 [ 0D3F99CDA2BEA14E4911A698441F1A29 ] CTEDSPIO.DLL C:\Windows\system32\CTEDSPIO.DLL 18:24:00.0140 3624 CTEDSPIO.DLL - ok 18:24:00.0145 3624 [ 9D26AA450AC1CAADDE25F1621BA89842 ] CTEDSPSY.DLL C:\Windows\system32\CTEDSPSY.DLL 18:24:00.0145 3624 CTEDSPSY.DLL - ok 18:24:00.0150 3624 [ E5F88DAD5EC69665DFA3E5E87791F800 ] CTERFXFX.DLL C:\Windows\system32\CTERFXFX.DLL 18:24:00.0150 3624 CTERFXFX.DLL - ok 18:24:00.0170 3624 [ FA6DCA331835997D2F7C83B9AAABC4BB ] CTEXFIFX.DLL C:\Windows\system32\CTEXFIFX.DLL 18:24:00.0180 3624 CTEXFIFX.DLL - ok 18:24:00.0185 3624 [ 9E6A0A3CA3825BB568D42F5F3CB09453 ] CTHWIUT.DLL C:\Windows\system32\CTHWIUT.DLL 18:24:00.0185 3624 CTHWIUT.DLL - ok 18:24:00.0190 3624 [ 6A05134810301FA6FDD6E95583A91F35 ] ctprxy2k C:\Windows\system32\drivers\ctprxy2k.sys 18:24:00.0190 3624 ctprxy2k - ok 18:24:00.0200 3624 [ 99047FCEBAB495410CD58AB17284720A ] CTSBLFX.DLL C:\Windows\system32\CTSBLFX.DLL 18:24:00.0205 3624 CTSBLFX.DLL - ok 18:24:00.0210 3624 [ F792246CF9D8EE17F2B32E9069415CDD ] ctsfm2k C:\Windows\system32\drivers\ctsfm2k.sys 18:24:00.0210 3624 ctsfm2k - ok 18:24:00.0220 3624 [ 7266972E86890E2B30C0C322E906B027 ] DcomLaunch C:\Windows\system32\rpcss.dll 18:24:00.0225 3624 DcomLaunch - ok 18:24:00.0230 3624 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll 18:24:00.0230 3624 defragsvc - ok 18:24:00.0235 3624 [ 9C253CE7311CA60FC11C774692A13208 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 18:24:00.0235 3624 DfsC - ok 18:24:00.0235 3624 [ 113212D25D0C9BB8901A9833774DA97F ] dg_ssudbus C:\Windows\system32\DRIVERS\ssudbus.sys 18:24:00.0240 3624 dg_ssudbus - ok 18:24:00.0245 3624 [ CE3B9562D997F69B330D181A8875960F ] Dhcp C:\Windows\system32\dhcpcore.dll 18:24:00.0245 3624 Dhcp - ok 18:24:00.0250 3624 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys 18:24:00.0250 3624 discache - ok 18:24:00.0250 3624 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys 18:24:00.0250 3624 Disk - ok 18:24:00.0255 3624 [ 85CF424C74A1D5EC33533E1DBFF9920A ] Dnscache C:\Windows\System32\dnsrslvr.dll 18:24:00.0260 3624 Dnscache - ok 18:24:00.0265 3624 [ 14452ACDB09B70964C8C21BF80A13ACB ] dot3svc C:\Windows\System32\dot3svc.dll 18:24:00.0265 3624 dot3svc - ok 18:24:00.0270 3624 [ 8C2BA6BEA949EE6E68385F5692BAFB94 ] DPS C:\Windows\system32\dps.dll 18:24:00.0270 3624 DPS - ok 18:24:00.0270 3624 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 18:24:00.0270 3624 drmkaud - ok 18:24:00.0285 3624 [ 1633B9ABF52784A1331476397A48CBEF ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 18:24:00.0290 3624 DXGKrnl - ok 18:24:00.0290 3624 EagleX64 - ok 18:24:00.0295 3624 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll 18:24:00.0295 3624 EapHost - ok 18:24:00.0330 3624 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys 18:24:00.0355 3624 ebdrv - ok 18:24:00.0355 3624 [ 156F6159457D0AA7E59B62681B56EB90 ] EFS C:\Windows\System32\lsass.exe 18:24:00.0360 3624 EFS - ok 18:24:00.0365 3624 [ B91D81B3B54A54CCAFC03733DBC2E29E ] ehRecvr C:\Windows\ehome\ehRecvr.exe 18:24:00.0370 3624 ehRecvr - ok 18:24:00.0375 3624 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe 18:24:00.0375 3624 ehSched - ok 18:24:00.0380 3624 [ A05FC7ECA0966EBB70E4D17B855A853B ] ElbyCDIO C:\Windows\system32\Drivers\ElbyCDIO.sys 18:24:00.0380 3624 ElbyCDIO - ok 18:24:00.0385 3624 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys 18:24:00.0390 3624 elxstor - ok 18:24:00.0390 3624 [ 1E2F860D9521FB73566C85CD17D58291 ] emupia C:\Windows\system32\drivers\emupia2k.sys 18:24:00.0395 3624 emupia - ok 18:24:00.0395 3624 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\DRIVERS\errdev.sys 18:24:00.0395 3624 ErrDev - ok 18:24:00.0400 3624 [ 932C05033053ADA2404FD836C9AB2C70 ] EuMusDesignVirtualAudioCableWdm C:\Windows\system32\DRIVERS\vrtaucbl.sys 18:24:00.0400 3624 EuMusDesignVirtualAudioCableWdm - ok 18:24:00.0405 3624 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll 18:24:00.0410 3624 EventSystem - ok 18:24:00.0415 3624 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys 18:24:00.0415 3624 exfat - ok 18:24:00.0420 3624 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys 18:24:00.0420 3624 fastfat - ok 18:24:00.0430 3624 [ D607B2F1BEE3992AA6C2C92C0A2F0855 ] Fax C:\Windows\system32\fxssvc.exe 18:24:00.0435 3624 Fax - ok 18:24:00.0440 3624 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys 18:24:00.0440 3624 fdc - ok 18:24:00.0440 3624 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll 18:24:00.0440 3624 fdPHost - ok 18:24:00.0445 3624 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll 18:24:00.0445 3624 FDResPub - ok 18:24:00.0445 3624 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 18:24:00.0445 3624 FileInfo - ok 18:24:00.0450 3624 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 18:24:00.0450 3624 Filetrace - ok 18:24:00.0460 3624 [ BB0667B0171B632B97EA759515476F07 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe 18:24:00.0465 3624 FLEXnet Licensing Service - ok 18:24:00.0465 3624 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys 18:24:00.0470 3624 flpydisk - ok 18:24:00.0475 3624 [ F7866AF72ABBAF84B1FA5AA195378C59 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 18:24:00.0475 3624 FltMgr - ok 18:24:00.0490 3624 [ BC00505CFDA789ED3BE95D2FF38C4875 ] FontCache C:\Windows\system32\FntCache.dll 18:24:00.0500 3624 FontCache - ok 18:24:00.0500 3624 [ 8D89E3131C27FDD6932189CB785E1B7A ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 18:24:00.0500 3624 FontCache3.0.0.0 - ok 18:24:00.0505 3624 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 18:24:00.0505 3624 FsDepends - ok 18:24:00.0505 3624 [ E95EF8547DE20CF0603557C0CF7A9462 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 18:24:00.0510 3624 Fs_Rec - ok 18:24:00.0510 3624 [ B8B2A6E1558F8F5DE5CE431C5B2C7B09 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 18:24:00.0515 3624 fvevol - ok 18:24:00.0515 3624 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys 18:24:00.0515 3624 gagp30kx - ok 18:24:00.0520 3624 [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 18:24:00.0520 3624 GEARAspiWDM - ok 18:24:00.0530 3624 [ FE5AB4525BC2EC68B9119A6E5D40128B ] gpsvc C:\Windows\System32\gpsvc.dll 18:24:00.0535 3624 gpsvc - ok 18:24:00.0540 3624 [ 0ED8A3D4B2A8FD1692CEE65ADA445AF7 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe 18:24:00.0540 3624 gusvc - ok 18:24:00.0555 3624 [ B3F220AD6EEDDC2546780B84A8919B7A ] ha10kx2k C:\Windows\system32\drivers\ha10kx2k.sys 18:24:00.0565 3624 ha10kx2k - ok 18:24:00.0570 3624 [ 5D6AEC608B871CC2C724114F34CAD3C8 ] hap16v2k C:\Windows\system32\drivers\hap16v2k.sys 18:24:00.0570 3624 hap16v2k - ok 18:24:00.0575 3624 [ B95BA8D7EA73A47FAC3A59CF4A3B3043 ] hap17v2k C:\Windows\system32\drivers\hap17v2k.sys 18:24:00.0575 3624 hap17v2k - ok 18:24:00.0580 3624 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 18:24:00.0580 3624 hcw85cir - ok 18:24:00.0585 3624 [ 6410F6F415B2A5A9037224C41DA8BF12 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 18:24:00.0585 3624 HdAudAddService - ok 18:24:00.0590 3624 [ 0A49913402747A0B67DE940FB42CBDBB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 18:24:00.0590 3624 HDAudBus - ok 18:24:00.0595 3624 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys 18:24:00.0595 3624 HidBatt - ok 18:24:00.0595 3624 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys 18:24:00.0600 3624 HidBth - ok 18:24:00.0600 3624 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys 18:24:00.0600 3624 HidIr - ok 18:24:00.0605 3624 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\system32\hidserv.dll 18:24:00.0605 3624 hidserv - ok 18:24:00.0605 3624 [ B3BF6B5B50006DEF50B66306D99FCF6F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 18:24:00.0605 3624 HidUsb - ok 18:24:00.0915 3624 [ D61F8E72032BDC43157F2B8AEA32B529 ] HiPatchService Q:\Games\PC GAMES INSTALLED\Hi-Rez Studios\HiPatchService.exe 18:24:00.0915 3624 HiPatchService - ok 18:24:00.0920 3624 [ EFA58EDE58DD74388FFD04CB32681518 ] hkmsvc C:\Windows\system32\kmsvc.dll 18:24:00.0920 3624 hkmsvc - ok 18:24:00.0925 3624 [ 046B2673767CA626E2CFB7FDF735E9E8 ] HomeGroupListener C:\Windows\system32\ListSvc.dll 18:24:00.0925 3624 HomeGroupListener - ok 18:24:00.0930 3624 [ 06A7422224D9865A5613710A089987DF ] HomeGroupProvider C:\Windows\system32\provsvc.dll 18:24:00.0930 3624 HomeGroupProvider - ok 18:24:00.0935 3624 [ 0886D440058F203EBA0E1825E4355914 ] HpSAMD C:\Windows\system32\DRIVERS\HpSAMD.sys 18:24:00.0935 3624 HpSAMD - ok 18:24:00.0945 3624 [ CEE049CAC4EFA7F4E1E4AD014414A5D4 ] HTTP C:\Windows\system32\drivers\HTTP.sys 18:24:00.0950 3624 HTTP - ok 18:24:00.0955 3624 [ F17766A19145F111856378DF337A5D79 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 18:24:00.0955 3624 hwpolicy - ok 18:24:00.0955 3624 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 18:24:00.0960 3624 i8042prt - ok 18:24:00.0965 3624 [ D83EFB6FD45DF9D55E9A1AFC63640D50 ] iaStorV C:\Windows\system32\DRIVERS\iaStorV.sys 18:24:00.0965 3624 iaStorV - ok 18:24:00.0970 3624 [ E75264F61449663294621CCEF7019DF0 ] IDMWFP C:\Windows\system32\DRIVERS\idmwfp.sys 18:24:00.0970 3624 IDMWFP - ok 18:24:00.0975 3624 [ DAF66902F08796F9C694901660E5A64A ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe 18:24:00.0975 3624 IDriverT - ok 18:24:00.0985 3624 [ 2F2BE70D3E02B6FA877921AB9516D43C ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 18:24:00.0990 3624 idsvc - ok 18:24:00.0995 3624 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys 18:24:00.0995 3624 iirsp - ok 18:24:01.0005 3624 [ C5B4683680DF085B57BC53E5EF34861F ] IKEEXT C:\Windows\System32\ikeext.dll 18:24:01.0010 3624 IKEEXT - ok 18:24:01.0040 3624 [ F2744FD54BE1580BE05916D1C755C92A ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys 18:24:01.0050 3624 IntcAzAudAddService - ok 18:24:01.0055 3624 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\DRIVERS\intelide.sys 18:24:01.0055 3624 intelide - ok 18:24:01.0055 3624 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 18:24:01.0055 3624 intelppm - ok 18:24:01.0060 3624 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll 18:24:01.0060 3624 IPBusEnum - ok 18:24:01.0060 3624 [ 722DD294DF62483CECAAE6E094B4D695 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 18:24:01.0065 3624 IpFilterDriver - ok 18:24:01.0065 3624 [ E2B4A4494DB7CB9B89B55CA268C337C5 ] IPMIDRV C:\Windows\system32\DRIVERS\IPMIDrv.sys 18:24:01.0065 3624 IPMIDRV - ok 18:24:01.0070 3624 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys 18:24:01.0070 3624 IPNAT - ok 18:24:01.0080 3624 [ EE4C2A137C7088911A8919EFFC9812E7 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe 18:24:01.0085 3624 iPod Service - ok 18:24:01.0090 3624 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys 18:24:01.0090 3624 IRENUM - ok 18:24:01.0090 3624 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\DRIVERS\isapnp.sys 18:24:01.0090 3624 isapnp - ok 18:24:01.0095 3624 [ FA4D2557DE56D45B0A346F93564BE6E1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys 18:24:01.0100 3624 iScsiPrt - ok 18:24:01.0100 3624 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 18:24:01.0100 3624 kbdclass - ok 18:24:01.0105 3624 [ 6DEF98F8541E1B5DCEB2C822A11F7323 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 18:24:01.0105 3624 kbdhid - ok 18:24:01.0105 3624 [ 156F6159457D0AA7E59B62681B56EB90 ] KeyIso C:\Windows\system32\lsass.exe 18:24:01.0105 3624 KeyIso - ok 18:24:01.0110 3624 [ 16C1B906FC5EAD84769F90B736B6BF0E ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 18:24:01.0110 3624 KSecDD - ok 18:24:01.0110 3624 [ 0B711550C56444879D71C7DAABDA6C83 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 18:24:01.0115 3624 KSecPkg - ok 18:24:01.0115 3624 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 18:24:01.0115 3624 ksthunk - ok 18:24:01.0120 3624 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll 18:24:01.0125 3624 KtmRm - ok 18:24:01.0130 3624 [ 81F1D04D4D0E433099365127375FD501 ] LanmanServer C:\Windows\system32\srvsvc.dll 18:24:01.0130 3624 LanmanServer - ok 18:24:01.0135 3624 [ 27026EAC8818E8A6C00A1CAD2F11D29A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 18:24:01.0135 3624 LanmanWorkstation - ok 18:24:01.0140 3624 [ 7772DFAB22611050B79504E671B06E6E ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe 18:24:01.0145 3624 LBTServ - ok 18:24:01.0145 3624 [ FA529FB35694C24BF98A9EF67C1CD9D0 ] LGBusEnum C:\Windows\system32\drivers\LGBusEnum.sys 18:24:01.0145 3624 LGBusEnum - ok 18:24:01.0150 3624 [ 94B29CE153765E768F004FB3440BE2B0 ] LGVirHid C:\Windows\system32\drivers\LGVirHid.sys 18:24:01.0150 3624 LGVirHid - ok 18:24:01.0150 3624 [ 241F2648ADF090E2A10095BD6D6F5DCB ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys 18:24:01.0155 3624 LHidFilt - ok 18:24:01.0155 3624 [ 2FDA02CAA0D4E4BD3B66181F9DEF89E9 ] libusb0 C:\Windows\system32\DRIVERS\libusb0.sys 18:24:01.0155 3624 libusb0 - ok 18:24:01.0160 3624 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 18:24:01.0160 3624 lltdio - ok 18:24:01.0165 3624 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll 18:24:01.0165 3624 lltdsvc - ok 18:24:01.0165 3624 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll 18:24:01.0170 3624 lmhosts - ok 18:24:01.0170 3624 [ 342ED5A4B3326014438F36D22D803737 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys 18:24:01.0170 3624 LMouFilt - ok 18:24:01.0175 3624 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys 18:24:01.0175 3624 LSI_FC - ok 18:24:01.0180 3624 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys 18:24:01.0180 3624 LSI_SAS - ok 18:24:01.0180 3624 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys 18:24:01.0185 3624 LSI_SAS2 - ok 18:24:01.0185 3624 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys 18:24:01.0185 3624 LSI_SCSI - ok 18:24:01.0190 3624 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys 18:24:01.0190 3624 luafv - ok 18:24:01.0195 3624 [ 29C733E1DE824670DC9315CFC9BDBCD3 ] LUsbFilt C:\Windows\system32\Drivers\LUsbFilt.Sys 18:24:01.0195 3624 LUsbFilt - ok 18:24:01.0200 3624 [ 87BF49F946C465C95A9ECCB9E97240E0 ] MAUSBMOBILEPRE C:\Windows\system32\DRIVERS\MAudioMobilePre.sys 18:24:01.0200 3624 MAUSBMOBILEPRE - ok 18:24:01.0200 3624 [ 92EB844D90615CB266F84C3202B8786E ] MBAMProtector C:\Windows\system32\drivers\mbam.sys 18:24:01.0200 3624 MBAMProtector - ok 18:24:01.0210 3624 [ 1ACAA67676E9E7BDA5E0C41B6E0DECAF ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe 18:24:01.0215 3624 MBAMScheduler - ok 18:24:01.0225 3624 [ 916B8954AC3E06DC9E898AFFB41F3FB6 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe 18:24:01.0230 3624 MBAMService - ok 18:24:01.0230 3624 [ 8FF2D95CBA49B405C5DE27039FF0BF35 ] MBfilt C:\Windows\system32\drivers\MBfilt64.sys 18:24:01.0230 3624 MBfilt - ok 18:24:01.0235 3624 [ F84C8F1000BC11E3B7B23CBD3BAFF111 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 18:24:01.0235 3624 Mcx2Svc - ok 18:24:01.0235 3624 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys 18:24:01.0240 3624 megasas - ok 18:24:01.0245 3624 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys 18:24:01.0245 3624 MegaSR - ok 18:24:01.0250 3624 [ 86614752D2FAE34CCD9E7B2AABA5FBEC ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys 18:24:01.0250 3624 MEIx64 - ok 18:24:01.0255 3624 [ 7C4C76B39D5525C4A465E0BE32528E19 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe 18:24:01.0255 3624 Microsoft Office Groove Audit Service - ok 18:24:01.0255 3624 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll 18:24:01.0260 3624 MMCSS - ok 18:24:01.0260 3624 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys 18:24:01.0260 3624 Modem - ok 18:24:01.0265 3624 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys 18:24:01.0265 3624 monitor - ok 18:24:01.0265 3624 [ C030F9E822A057C1A7A9BB4EA3E8877E ] MotioninJoyXFilter C:\Windows\system32\DRIVERS\MijXfilt.sys 18:24:01.0265 3624 MotioninJoyXFilter - ok 18:24:01.0270 3624 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 18:24:01.0270 3624 mouclass - ok 18:24:01.0275 3624 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 18:24:01.0275 3624 mouhid - ok 18:24:01.0275 3624 [ 791AF66C4D0E7C90A3646066386FB571 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 18:24:01.0275 3624 mountmgr - ok 18:24:01.0280 3624 [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 18:24:01.0280 3624 MozillaMaintenance - ok 18:24:01.0285 3624 [ C177A7EBF5E8A0B596F618870516CAB8 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys 18:24:01.0285 3624 MpFilter - ok 18:24:01.0290 3624 [ 609D1D87649ECC19796F4D76D4C15CEA ] mpio C:\Windows\system32\DRIVERS\mpio.sys 18:24:01.0290 3624 mpio - ok 18:24:01.0290 3624 [ 8FBF6B31FE8AF1833D93C5913D5B4D55 ] MpNWMon C:\Windows\system32\DRIVERS\MpNWMon.sys 18:24:01.0295 3624 MpNWMon - ok 18:24:01.0295 3624 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 18:24:01.0295 3624 mpsdrv - ok 18:24:01.0305 3624 [ AECAB449567D1846DAD63ECE49E893E3 ] MpsSvc C:\Windows\system32\mpssvc.dll 18:24:01.0315 3624 MpsSvc - ok 18:24:01.0315 3624 [ 30524261BB51D96D6FCBAC20C810183C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 18:24:01.0315 3624 MRxDAV - ok 18:24:01.0320 3624 [ 040D62A9D8AD28922632137ACDD984F2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 18:24:01.0320 3624 mrxsmb - ok 18:24:01.0325 3624 [ F0067552F8F9B33D7C59403AB808A3CB ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 18:24:01.0330 3624 mrxsmb10 - ok 18:24:01.0330 3624 [ 3C142D31DE9F2F193218A53FE2632051 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 18:24:01.0330 3624 mrxsmb20 - ok 18:24:01.0335 3624 [ 5C37497276E3B3A5488B23A326A754B7 ] msahci C:\Windows\system32\DRIVERS\msahci.sys 18:24:01.0335 3624 msahci - ok 18:24:01.0340 3624 [ 8E46A7BAC823DD82D4FB2A34C3DF4C1D ] MSCSPTISRV C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe 18:24:01.0340 3624 MSCSPTISRV - ok 18:24:01.0340 3624 [ 8D27B597229AED79430FB9DB3BCBFBD0 ] msdsm C:\Windows\system32\DRIVERS\msdsm.sys 18:24:01.0345 3624 msdsm - ok 18:24:01.0345 3624 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe 18:24:01.0350 3624 MSDTC - ok 18:24:01.0350 3624 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys 18:24:01.0350 3624 Msfs - ok 18:24:01.0355 3624 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 18:24:01.0355 3624 mshidkmdf - ok 18:24:01.0355 3624 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\DRIVERS\msisadrv.sys 18:24:01.0355 3624 msisadrv - ok 18:24:01.0360 3624 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 18:24:01.0360 3624 MSiSCSI - ok 18:24:01.0365 3624 msiserver - ok 18:24:01.0365 3624 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 18:24:01.0365 3624 MSKSSRV - ok 18:24:01.0370 3624 [ 157E9E498206A3366BAA7E4697BDD947 ] MsMpSvc C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe 18:24:01.0370 3624 MsMpSvc - ok 18:24:01.0370 3624 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 18:24:01.0370 3624 MSPCLOCK - ok 18:24:01.0375 3624 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 18:24:01.0375 3624 MSPQM - ok 18:24:01.0380 3624 [ 89CB141AA8616D8C6A4610FA26C60964 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 18:24:01.0380 3624 MsRPC - ok 18:24:01.0385 3624 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 18:24:01.0385 3624 mssmbios - ok 18:24:01.0385 3624 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 18:24:01.0385 3624 MSTEE - ok 18:24:01.0390 3624 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys 18:24:01.0390 3624 MTConfig - ok 18:24:01.0395 3624 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys 18:24:01.0395 3624 Mup - ok 18:24:01.0475 3624 [ 21EEF976D53A0BCB603ABFF4AB6E4C88 ] MySQL C:\xampplite\mysql\bin\mysqld.exe 18:24:01.0520 3624 MySQL - ok 18:24:01.0530 3624 [ 4987E079A4530FA737A128BE54B63B12 ] napagent C:\Windows\system32\qagentRT.dll 18:24:01.0530 3624 napagent - ok 18:24:01.0535 3624 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 18:24:01.0540 3624 NativeWifiP - ok 18:24:01.0550 3624 [ CAD515DBD07D082BB317D9928CE8962C ] NDIS C:\Windows\system32\drivers\ndis.sys 18:24:01.0560 3624 NDIS - ok 18:24:01.0560 3624 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 18:24:01.0560 3624 NdisCap - ok 18:24:01.0565 3624 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 18:24:01.0565 3624 NdisTapi - ok 18:24:01.0565 3624 [ F105BA1E22BF1F2EE8F005D4305E4BEC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 18:24:01.0565 3624 Ndisuio - ok 18:24:01.0570 3624 [ 557DFAB9CA1FCB036AC77564C010DAD3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 18:24:01.0570 3624 NdisWan - ok 18:24:01.0575 3624 [ 659B74FB74B86228D6338D643CD3E3CF ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 18:24:01.0575 3624 NDProxy - ok 18:24:01.0575 3624 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 18:24:01.0575 3624 NetBIOS - ok 18:24:01.0580 3624 [ 9162B273A44AB9DCE5B44362731D062A ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 18:24:01.0580 3624 NetBT - ok 18:24:01.0585 3624 [ 156F6159457D0AA7E59B62681B56EB90 ] Netlogon C:\Windows\system32\lsass.exe 18:24:01.0585 3624 Netlogon - ok 18:24:01.0590 3624 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll 18:24:01.0595 3624 Netman - ok 18:24:01.0595 3624 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 18:24:01.0600 3624 NetMsmqActivator - ok 18:24:01.0600 3624 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 18:24:01.0600 3624 NetPipeActivator - ok 18:24:01.0610 3624 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll 18:24:01.0610 3624 netprofm - ok 18:24:01.0615 3624 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 18:24:01.0615 3624 NetTcpActivator - ok 18:24:01.0615 3624 [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 18:24:01.0615 3624 NetTcpPortSharing - ok 18:24:01.0620 3624 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys 18:24:01.0620 3624 nfrd960 - ok 18:24:01.0625 3624 [ 5F7D72CBCDD025AF1F38FDEEE5646968 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys 18:24:01.0625 3624 NisDrv - ok 18:24:01.0630 3624 [ 566DDD5D82520DA01D75F81428AC4C38 ] NisSrv C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe 18:24:01.0635 3624 NisSrv - ok 18:24:01.0640 3624 [ D9A0CE66046D6EFA0C61BAA885CBA0A8 ] NlaSvc C:\Windows\System32\nlasvc.dll 18:24:01.0645 3624 NlaSvc - ok 18:24:01.0645 3624 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys 18:24:01.0645 3624 Npfs - ok 18:24:01.0650 3624 npggsvc - ok 18:24:01.0650 3624 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll 18:24:01.0650 3624 nsi - ok 18:24:01.0655 3624 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 18:24:01.0655 3624 nsiproxy - ok 18:24:01.0670 3624 [ 356698A13C4630D5B31C37378D469196 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 18:24:01.0680 3624 Ntfs - ok 18:24:01.0685 3624 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys 18:24:01.0685 3624 Null - ok 18:24:01.0690 3624 [ 3E38712941E9BB4DDBEE00AFFE3FED3D ] nvraid C:\Windows\system32\DRIVERS\nvraid.sys 18:24:01.0690 3624 nvraid - ok 18:24:01.0695 3624 [ 477DC4D6DEB99BE37084C9AC6D013DA1 ] nvstor C:\Windows\system32\DRIVERS\nvstor.sys 18:24:01.0695 3624 nvstor - ok 18:24:01.0700 3624 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\DRIVERS\nv_agp.sys 18:24:01.0700 3624 nv_agp - ok 18:24:01.0705 3624 [ 1F0E05DFF4F5A833168E49BE1256F002 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 18:24:01.0710 3624 odserv - ok 18:24:01.0715 3624 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys 18:24:01.0715 3624 ohci1394 - ok 18:24:01.0715 3624 [ EC322186D8FCE3D632F3F597D67747DD ] OpenVPNService C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe 18:24:01.0715 3624 OpenVPNService - ok 18:24:01.0720 3624 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 18:24:01.0720 3624 ose - ok 18:24:01.0725 3624 [ 678CC7DCF607BBD69A9F9333D39C2F1D ] ossrv C:\Windows\system32\drivers\ctoss2k.sys 18:24:01.0730 3624 ossrv - ok 18:24:01.0735 3624 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 18:24:01.0735 3624 p2pimsvc - ok 18:24:01.0740 3624 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll 18:24:01.0745 3624 p2psvc - ok 18:24:01.0750 3624 [ 753A8F339F231D2B857E2CCD51A6E6CA ] PACSPTISVR C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe 18:24:01.0750 3624 PACSPTISVR - ok 18:24:01.0750 3624 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys 18:24:01.0755 3624 Parport - ok 18:24:01.0755 3624 [ 7DAA117143316C4A1537E074A5A9EAF0 ] partmgr C:\Windows\system32\drivers\partmgr.sys 18:24:01.0755 3624 partmgr - ok 18:24:01.0760 3624 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll 18:24:01.0760 3624 PcaSvc - ok 18:24:01.0765 3624 [ F36F6504009F2FB0DFD1B17A116AD74B ] pci C:\Windows\system32\DRIVERS\pci.sys 18:24:01.0770 3624 pci - ok 18:24:01.0770 3624 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\DRIVERS\pciide.sys 18:24:01.0770 3624 pciide - ok 18:24:01.0775 3624 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys 18:24:01.0775 3624 pcmcia - ok 18:24:01.0780 3624 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys 18:24:01.0780 3624 pcw - ok 18:24:01.0785 3624 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys 18:24:01.0790 3624 PEAUTH - ok 18:24:01.0805 3624 [ B9B0A4299DD2D76A4243F75FD54DC680 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll 18:24:01.0815 3624 PeerDistSvc - ok 18:24:01.0835 3624 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe 18:24:01.0835 3624 PerfHost - ok 18:24:01.0855 3624 [ 557E9A86F65F0DE18C9B6751DFE9D3F1 ] pla C:\Windows\system32\pla.dll 18:24:01.0865 3624 pla - ok 18:24:01.0870 3624 [ 98B1721B8718164293B9701B98C52D77 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 18:24:01.0875 3624 PlugPlay - ok 18:24:01.0875 3624 PnkBstrA - ok 18:24:01.0880 3624 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 18:24:01.0880 3624 PNRPAutoReg - ok 18:24:01.0885 3624 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 18:24:01.0885 3624 PNRPsvc - ok 18:24:01.0890 3624 [ 166EB40D1F5B47E615DE3D0FFFE5F243 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 18:24:01.0895 3624 PolicyAgent - ok 18:24:01.0900 3624 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll 18:24:01.0900 3624 Power - ok 18:24:01.0905 3624 [ 27CC19E81BA5E3403C48302127BDA717 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 18:24:01.0905 3624 PptpMiniport - ok 18:24:01.0910 3624 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys 18:24:01.0910 3624 Processor - ok 18:24:01.0915 3624 [ F381975E1F4346DE875CB07339CE8D3A ] ProfSvc C:\Windows\system32\profsvc.dll 18:24:01.0915 3624 ProfSvc - ok 18:24:01.0915 3624 [ 156F6159457D0AA7E59B62681B56EB90 ] ProtectedStorage C:\Windows\system32\lsass.exe 18:24:01.0920 3624 ProtectedStorage - ok 18:24:01.0920 3624 [ EE992183BD8EAEFD9973F352E587A299 ] Psched C:\Windows\system32\DRIVERS\pacer.sys 18:24:01.0920 3624 Psched - ok 18:24:01.0925 3624 [ 5D6C8E778F0218FCD2CCA0EFBC9766CA ] PxHlpa64 C:\Windows\system32\Drivers\PxHlpa64.sys 18:24:01.0925 3624 PxHlpa64 - ok 18:24:01.0940 3624 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys 18:24:01.0950 3624 ql2300 - ok 18:24:01.0955 3624 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys 18:24:01.0955 3624 ql40xx - ok 18:24:01.0960 3624 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll 18:24:01.0960 3624 QWAVE - ok 18:24:01.0965 3624 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 18:24:01.0965 3624 QWAVEdrv - ok 18:24:01.0965 3624 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 18:24:01.0965 3624 RasAcd - ok 18:24:01.0970 3624 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 18:24:01.0970 3624 RasAgileVpn - ok 18:24:01.0970 3624 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll 18:24:01.0975 3624 RasAuto - ok 18:24:01.0975 3624 [ 87A6E852A22991580D6D39ADC4790463 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 18:24:01.0975 3624 Rasl2tp - ok 18:24:01.0980 3624 [ 47394ED3D16D053F5906EFE5AB51CC83 ] RasMan C:\Windows\System32\rasmans.dll 18:24:01.0985 3624 RasMan - ok 18:24:01.0990 3624 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 18:24:01.0990 3624 RasPppoe - ok 18:24:01.0990 3624 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 18:24:01.0990 3624 RasSstp - ok 18:24:01.0995 3624 [ 3BAC8142102C15D59A87757C1D41DCE5 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 18:24:02.0000 3624 rdbss - ok 18:24:02.0000 3624 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys 18:24:02.0000 3624 rdpbus - ok 18:24:02.0005 3624 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 18:24:02.0005 3624 RDPCDD - ok 18:24:02.0010 3624 [ 9706B84DBABFC4B4CA46C5A82B14DFA3 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys 18:24:02.0010 3624 RDPDR - ok 18:24:02.0010 3624 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 18:24:02.0010 3624 RDPENCDD - ok 18:24:02.0015 3624 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 18:24:02.0015 3624 RDPREFMP - ok 18:24:02.0020 3624 [ 8A3E6BEA1C53EA6177FE2B6EBA2C80D7 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 18:24:02.0020 3624 RDPWD - ok 18:24:02.0025 3624 [ 634B9A2181D98F15941236886164EC8B ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 18:24:02.0025 3624 rdyboost - ok 18:24:02.0030 3624 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll 18:24:02.0030 3624 RemoteAccess - ok 18:24:02.0035 3624 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll 18:24:02.0035 3624 RemoteRegistry - ok 18:24:02.0035 3624 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 18:24:02.0040 3624 RpcEptMapper - ok 18:24:02.0040 3624 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe 18:24:02.0040 3624 RpcLocator - ok 18:24:02.0045 3624 [ 7266972E86890E2B30C0C322E906B027 ] RpcSs C:\Windows\system32\rpcss.dll 18:24:02.0050 3624 RpcSs - ok 18:24:02.0050 3624 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 18:24:02.0050 3624 rspndr - ok 18:24:02.0060 3624 [ ED5873F7DFB2F96D37F13322211B6BDC ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys 18:24:02.0060 3624 RTL8167 - ok 18:24:02.0060 3624 [ 88AF6E02AB19DF7FD07ECDF9C91E9AF6 ] s3cap C:\Windows\system32\DRIVERS\vms3cap.sys 18:24:02.0060 3624 s3cap - ok 18:24:02.0065 3624 [ 156F6159457D0AA7E59B62681B56EB90 ] SamSs C:\Windows\system32\lsass.exe 18:24:02.0065 3624 SamSs - ok 18:24:02.0070 3624 [ CCBF62280DAF6D94A4C73E391CDAC68C ] SbieDrv C:\Program Files\Sandboxie\SbieDrv.sys 18:24:02.0070 3624 SbieDrv - ok 18:24:02.0075 3624 [ 8A1F63C6EC01C56C9EC4C681E593FE34 ] SbieSvc C:\Program Files\Sandboxie\SbieSvc.exe 18:24:02.0075 3624 SbieSvc - ok 18:24:02.0075 3624 [ E3BBB89983DAF5622C1D50CF49F28227 ] sbp2port C:\Windows\system32\DRIVERS\sbp2port.sys 18:24:02.0075 3624 sbp2port - ok 18:24:02.0080 3624 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll 18:24:02.0085 3624 SCardSvr - ok 18:24:02.0085 3624 [ C94DA20C7E3BA1DCA269BC8460D98387 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 18:24:02.0085 3624 scfilter - ok 18:24:02.0095 3624 [ 624D0F5FF99428BB90A5B8A4123E918E ] Schedule C:\Windows\system32\schedsvc.dll 18:24:02.0105 3624 Schedule - ok 18:24:02.0110 3624 [ 312E2F82AF11E79906898AC3E3D58A1F ] SCPolicySvc C:\Windows\System32\certprop.dll 18:24:02.0110 3624 SCPolicySvc - ok 18:24:02.0110 3624 [ 765A27C3279CE11D14CB9E4F5869FCA5 ] SDRSVC C:\Windows\System32\SDRSVC.dll 18:24:02.0115 3624 SDRSVC - ok 18:24:02.0115 3624 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys 18:24:02.0115 3624 secdrv - ok 18:24:02.0120 3624 [ 463B386EBC70F98DA5DFF85F7E654346 ] seclogon C:\Windows\system32\seclogon.dll 18:24:02.0120 3624 seclogon - ok 18:24:02.0120 3624 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll 18:24:02.0125 3624 SENS - ok 18:24:02.0125 3624 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll 18:24:02.0125 3624 SensrSvc - ok 18:24:02.0130 3624 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys 18:24:02.0130 3624 Serenum - ok 18:24:02.0130 3624 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys 18:24:02.0130 3624 Serial - ok 18:24:02.0135 3624 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys 18:24:02.0135 3624 sermouse - ok 18:24:02.0140 3624 [ C3BC61CE47FF6F4E88AB8A3B429A36AF ] SessionEnv C:\Windows\system32\sessenv.dll 18:24:02.0140 3624 SessionEnv - ok 18:24:02.0145 3624 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\DRIVERS\sffdisk.sys 18:24:02.0145 3624 sffdisk - ok 18:24:02.0145 3624 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\DRIVERS\sffp_mmc.sys 18:24:02.0145 3624 sffp_mmc - ok 18:24:02.0150 3624 [ 5588B8C6193EB1522490C122EB94DFFA ] sffp_sd C:\Windows\system32\DRIVERS\sffp_sd.sys 18:24:02.0150 3624 sffp_sd - ok 18:24:02.0150 3624 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys 18:24:02.0150 3624 sfloppy - ok 18:24:02.0155 3624 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll 18:24:02.0160 3624 SharedAccess - ok 18:24:02.0165 3624 [ 0298AC45D0EFFFB2DB4BAA7DD186E7BF ] ShellHWDetection C:\Windows\System32\shsvcs.dll 18:24:02.0165 3624 ShellHWDetection - ok 18:24:02.0170 3624 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys 18:24:02.0170 3624 SiSRaid2 - ok 18:24:02.0175 3624 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys 18:24:02.0175 3624 SiSRaid4 - ok 18:24:02.0180 3624 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 18:24:02.0180 3624 SkypeUpdate - ok 18:24:02.0180 3624 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys 18:24:02.0185 3624 Smb - ok 18:24:02.0185 3624 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe 18:24:02.0190 3624 SNMPTRAP - ok 18:24:02.0190 3624 [ 977AAA4398D7D6FA65D973F5B3F54E40 ] SonicStage Back-End Service C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe 18:24:02.0195 3624 SonicStage Back-End Service - ok 18:24:02.0195 3624 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys 18:24:02.0195 3624 spldr - ok 18:24:02.0205 3624 [ F8E1FA03CB70D54A9892AC88B91D1E7B ] Spooler C:\Windows\System32\spoolsv.exe 18:24:02.0210 3624 Spooler - ok 18:24:02.0250 3624 [ 913D843498553A1BC8F8DBAD6358E49F ] sppsvc C:\Windows\system32\sppsvc.exe 18:24:02.0270 3624 sppsvc - ok 18:24:02.0275 3624 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll 18:24:02.0275 3624 sppuinotify - ok 18:24:02.0285 3624 [ 602884696850C86434530790B110E8EB ] sptd C:\Windows\system32\Drivers\sptd.sys 18:24:02.0285 3624 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850C86434530790B110E8EB 18:24:02.0285 3624 sptd ( LockedFile.Multi.Generic ) - warning 18:24:02.0285 3624 sptd - detected LockedFile.Multi.Generic (1) 18:24:02.0290 3624 [ E3E6C96B0EF4492C3C8FD0DEEF4E35A1 ] SPTISRV C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe 18:24:02.0290 3624 SPTISRV - ok 18:24:02.0295 3624 [ 2408C0366D96BCDF63E8F1C78E4A29C5 ] srv C:\Windows\system32\DRIVERS\srv.sys 18:24:02.0300 3624 srv - ok 18:24:02.0305 3624 [ 76548F7B818881B47D8D1AE1BE9C11F8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 18:24:02.0310 3624 srv2 - ok 18:24:02.0315 3624 [ 0AF6E19D39C70844C5CAA8FB0183C36E ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 18:24:02.0315 3624 srvnet - ok 18:24:02.0320 3624 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 18:24:02.0320 3624 SSDPSRV - ok 18:24:02.0325 3624 [ 756E371B3B86A3D3039926D32EAC0E8D ] SSScsiSV C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe 18:24:02.0325 3624 SSScsiSV - ok 18:24:02.0325 3624 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll 18:24:02.0330 3624 SstpSvc - ok 18:24:02.0330 3624 [ 78CD64791F8634CF7B582FD085E57C4B ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys 18:24:02.0335 3624 ssudmdm - ok 18:24:02.0335 3624 Steam Client Service - ok 18:24:02.0340 3624 STEC3 - ok 18:24:02.0345 3624 [ 00FCEC4DA4198F5F2B9BBD9225842568 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 18:24:02.0350 3624 Stereo Service - ok 18:24:02.0350 3624 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys 18:24:02.0350 3624 stexstor - ok 18:24:02.0360 3624 [ 52D0E33B681BD0F33FDC08812FEE4F7D ] stisvc C:\Windows\System32\wiaservc.dll 18:24:02.0365 3624 stisvc - ok 18:24:02.0365 3624 [ FFD7A6F15B14234B5B0E5D49E7961895 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys 18:24:02.0365 3624 storflt - ok 18:24:02.0370 3624 [ 8FCCBEFC5C440B3C23454656E551B09A ] storvsc C:\Windows\system32\DRIVERS\storvsc.sys 18:24:02.0370 3624 storvsc - ok 18:24:02.0370 3624 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys 18:24:02.0370 3624 swenum - ok 18:24:02.0380 3624 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe 18:24:02.0385 3624 SwitchBoard - ok 18:24:02.0395 3624 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll 18:24:02.0400 3624 swprv - ok 18:24:02.0415 3624 [ 8F92744E7954AEABA2EE9E3EB9D0E1AE ] SysMain C:\Windows\system32\sysmain.dll 18:24:02.0430 3624 SysMain - ok 18:24:02.0430 3624 [ 238935C3CF2854886DC7CBB2A0E2CC66 ] TabletInputService C:\Windows\System32\TabSvc.dll 18:24:02.0435 3624 TabletInputService - ok 18:24:02.0485 3624 [ C4C20CFA4F42E9B7454E895C5C47BCD3 ] TabletServicePen C:\Program Files\Tablet\Pen\Pen_Tablet.exe 18:24:02.0505 3624 TabletServicePen - ok 18:24:02.0505 3624 [ F9BE29D5E097F03F81D3CD12B794CB66 ] tap0901 C:\Windows\system32\DRIVERS\tap0901.sys 18:24:02.0505 3624 tap0901 - ok 18:24:02.0510 3624 [ F33FDC72298DF4BF9813A55D21F4EB31 ] taphss C:\Windows\system32\DRIVERS\taphss.sys 18:24:02.0510 3624 taphss - ok 18:24:02.0515 3624 [ 884264AC597B690C5707C89723BB8E7B ] TapiSrv C:\Windows\System32\tapisrv.dll 18:24:02.0515 3624 TapiSrv - ok 18:24:02.0520 3624 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll 18:24:02.0520 3624 TBS - ok 18:24:02.0540 3624 [ F18F56EFC0BFB9C87BA01C37B27F4DA5 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 18:24:02.0550 3624 Tcpip - ok 18:24:02.0565 3624 [ F18F56EFC0BFB9C87BA01C37B27F4DA5 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 18:24:02.0570 3624 TCPIP6 - ok 18:24:02.0575 3624 [ 76D078AF6F587B162D50210F761EB9ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 18:24:02.0575 3624 tcpipreg - ok 18:24:02.0580 3624 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 18:24:02.0580 3624 TDPIPE - ok 18:24:02.0580 3624 [ E4245BDA3190A582D55ED09E137401A9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 18:24:02.0580 3624 TDTCP - ok 18:24:02.0585 3624 [ 079125C4B17B01FCAEEBCE0BCB290C0F ] tdx C:\Windows\system32\DRIVERS\tdx.sys 18:24:02.0585 3624 tdx - ok 18:24:02.0585 3624 [ C448651339196C0E869A355171875522 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 18:24:02.0585 3624 TermDD - ok 18:24:02.0595 3624 [ 0F05EC2887BFE197AD82A13287D2F404 ] TermService C:\Windows\System32\termsrv.dll 18:24:02.0600 3624 TermService - ok 18:24:02.0605 3624 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll 18:24:02.0605 3624 Themes - ok 18:24:02.0605 3624 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll 18:24:02.0605 3624 THREADORDER - ok 18:24:02.0615 3624 [ 7625DCF246E488E523DC1F64C38ABDA2 ] TouchServicePen C:\Program Files\Tablet\Pen\Pen_TouchService.exe 18:24:02.0620 3624 TouchServicePen - ok 18:24:02.0620 3624 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll 18:24:02.0625 3624 TrkWks - ok 18:24:02.0625 3624 [ 840F7FB849F5887A49BA18C13B2DA920 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 18:24:02.0625 3624 TrustedInstaller - ok 18:24:02.0630 3624 [ 61B96C26131E37B24E93327A0BD1FB95 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 18:24:02.0630 3624 tssecsrv - ok 18:24:02.0635 3624 [ 3836171A2CDF3AF8EF10856DB9835A70 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 18:24:02.0635 3624 tunnel - ok 18:24:02.0635 3624 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys 18:24:02.0635 3624 uagp35 - ok 18:24:02.0640 3624 [ D47BAEAD86C65D4F4069D7CE0A4EDCEB ] udfs C:\Windows\system32\DRIVERS\udfs.sys 18:24:02.0645 3624 udfs - ok 18:24:02.0650 3624 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 18:24:02.0650 3624 UI0Detect - ok 18:24:02.0650 3624 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\DRIVERS\uliagpkx.sys 18:24:02.0655 3624 uliagpkx - ok 18:24:02.0655 3624 [ EAB6C35E62B1B0DB0D1B48B671D3A117 ] umbus C:\Windows\system32\DRIVERS\umbus.sys 18:24:02.0655 3624 umbus - ok 18:24:02.0655 3624 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys 18:24:02.0660 3624 UmPass - ok 18:24:02.0660 3624 [ AF0AC98EE5077EB844413EB54287FDE3 ] UmRdpService C:\Windows\System32\umrdp.dll 18:24:02.0665 3624 UmRdpService - ok 18:24:02.0670 3624 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll 18:24:02.0670 3624 upnphost - ok 18:24:02.0675 3624 [ AA33FC47ED58C34E6E9261E4F850B7EB ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys 18:24:02.0675 3624 USBAAPL64 - ok 18:24:02.0680 3624 [ 77B01BC848298223A95D4EC23E1785A1 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys 18:24:02.0680 3624 usbaudio - ok 18:24:02.0680 3624 [ B26AFB54A534D634523C4FB66765B026 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 18:24:02.0680 3624 usbccgp - ok 18:24:02.0685 3624 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\DRIVERS\usbcir.sys 18:24:02.0685 3624 usbcir - ok 18:24:02.0690 3624 [ 2EA4AFF7BE7EB4632E3AA8595B0803B5 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 18:24:02.0690 3624 usbehci - ok 18:24:02.0695 3624 [ 4C9042B8DF86C1E8E6240C218B99B39B ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 18:24:02.0695 3624 usbhub - ok 18:24:02.0700 3624 [ 58E546BBAF87664FC57E0F6081E4F609 ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys 18:24:02.0700 3624 usbohci - ok 18:24:02.0700 3624 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 18:24:02.0705 3624 usbprint - ok 18:24:02.0705 3624 [ 080D3820DA6C046BE82FC8B45A893E83 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 18:24:02.0705 3624 USBSTOR - ok 18:24:02.0710 3624 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys 18:24:02.0710 3624 usbuhci - ok 18:24:02.0710 3624 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll 18:24:02.0710 3624 UxSms - ok 18:24:02.0715 3624 [ 156F6159457D0AA7E59B62681B56EB90 ] VaultSvc C:\Windows\system32\lsass.exe 18:24:02.0715 3624 VaultSvc - ok 18:24:02.0715 3624 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\DRIVERS\vdrvroot.sys 18:24:02.0715 3624 vdrvroot - ok 18:24:02.0725 3624 [ 44D73E0BBC1D3C8981304BA15135C2F2 ] vds C:\Windows\System32\vds.exe 18:24:02.0730 3624 vds - ok 18:24:02.0730 3624 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 18:24:02.0730 3624 vga - ok 18:24:02.0735 3624 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys 18:24:02.0735 3624 VgaSave - ok 18:24:02.0735 3624 [ C82E748660F62A242B2DFAC1442F22A4 ] vhdmp C:\Windows\system32\DRIVERS\vhdmp.sys 18:24:02.0740 3624 vhdmp - ok 18:24:02.0740 3624 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\DRIVERS\viaide.sys 18:24:02.0740 3624 viaide - ok 18:24:02.0745 3624 [ 1501699D7EDA984ABC4155A7DA5738D1 ] vmbus C:\Windows\system32\DRIVERS\vmbus.sys 18:24:02.0745 3624 vmbus - ok 18:24:02.0750 3624 [ AE10C35761889E65A6F7176937C5592C ] VMBusHID C:\Windows\system32\DRIVERS\VMBusHID.sys 18:24:02.0750 3624 VMBusHID - ok 18:24:02.0750 3624 [ 2B1A3DAE2B4E70DBBA822B7A03FBD4A3 ] volmgr C:\Windows\system32\DRIVERS\volmgr.sys 18:24:02.0755 3624 volmgr - ok 18:24:02.0760 3624 [ 99B0CBB569CA79ACAED8C91461D765FB ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 18:24:02.0760 3624 volmgrx - ok 18:24:02.0765 3624 [ 58F82EED8CA24B461441F9C3E4F0BF5C ] volsnap C:\Windows\system32\DRIVERS\volsnap.sys 18:24:02.0770 3624 volsnap - ok 18:24:02.0770 3624 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys 18:24:02.0775 3624 vsmraid - ok 18:24:02.0790 3624 [ 787898BF9FB6D7BD87A36E2D95C899BA ] VSS C:\Windows\system32\vssvc.exe 18:24:02.0800 3624 VSS - ok 18:24:02.0800 3624 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys 18:24:02.0805 3624 vwifibus - ok 18:24:02.0810 3624 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll 18:24:02.0810 3624 W32Time - ok 18:24:02.0815 3624 [ FE75777289278A4941FE6139E82B3BD9 ] wacmoumonitor C:\Windows\system32\DRIVERS\wacmoumonitor.sys 18:24:02.0815 3624 wacmoumonitor - ok 18:24:02.0815 3624 [ E04D43C7D1641E95D35CAE6086C7E350 ] wacommousefilter C:\Windows\system32\DRIVERS\wacommousefilter.sys 18:24:02.0820 3624 wacommousefilter - ok 18:24:02.0820 3624 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys 18:24:02.0820 3624 WacomPen - ok 18:24:02.0825 3624 [ EC1CEB237E365330C1FCFC4876AA0AC0 ] wacomvhid C:\Windows\system32\DRIVERS\wacomvhid.sys 18:24:02.0825 3624 wacomvhid - ok 18:24:02.0825 3624 [ 47CA49400643EFFD3F1C9A27E1D69324 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 18:24:02.0825 3624 WANARP - ok 18:24:02.0830 3624 [ 47CA49400643EFFD3F1C9A27E1D69324 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 18:24:02.0830 3624 Wanarpv6 - ok 18:24:02.0845 3624 [ 5AB1BB85BD8B5089CC5D64200DEDAE68 ] wbengine C:\Windows\system32\wbengine.exe 18:24:02.0855 3624 wbengine - ok 18:24:02.0860 3624 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 18:24:02.0860 3624 WbioSrvc - ok 18:24:02.0865 3624 [ 8321C2CA3B62B61B293CDA3451984468 ] wcncsvc C:\Windows\System32\wcncsvc.dll 18:24:02.0870 3624 wcncsvc - ok 18:24:02.0870 3624 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 18:24:02.0875 3624 WcsPlugInService - ok 18:24:02.0875 3624 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys 18:24:02.0875 3624 Wd - ok 18:24:02.0885 3624 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 18:24:02.0890 3624 Wdf01000 - ok 18:24:02.0890 3624 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll 18:24:02.0895 3624 WdiServiceHost - ok 18:24:02.0895 3624 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll 18:24:02.0895 3624 WdiSystemHost - ok 18:24:02.0900 3624 [ 8A438CBB8C032A0C798B0C642FFBE572 ] WebClient C:\Windows\System32\webclnt.dll 18:24:02.0905 3624 WebClient - ok 18:24:02.0910 3624 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll 18:24:02.0910 3624 Wecsvc - ok 18:24:02.0915 3624 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll 18:24:02.0915 3624 wercplsupport - ok 18:24:02.0915 3624 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll 18:24:02.0920 3624 WerSvc - ok 18:24:02.0920 3624 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 18:24:02.0920 3624 WfpLwf - ok 18:24:02.0920 3624 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys 18:24:02.0925 3624 WIMMount - ok 18:24:02.0925 3624 WinHttpAutoProxySvc - ok 18:24:02.0935 3624 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 18:24:02.0935 3624 Winmgmt - ok 18:24:02.0955 3624 [ 41FBB751936B387F9179E7F03A74FE29 ] WinRM C:\Windows\system32\WsmSvc.dll 18:24:02.0970 3624 WinRM - ok 18:24:02.0975 3624 [ 817EAFF5D38674EDD7713B9DFB8E9791 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 18:24:02.0975 3624 WinUsb - ok 18:24:02.0985 3624 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll 18:24:02.0990 3624 Wlansvc - ok 18:24:02.0995 3624 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 18:24:02.0995 3624 WmiAcpi - ok 18:24:03.0000 3624 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 18:24:03.0000 3624 wmiApSrv - ok 18:24:03.0005 3624 WMPNetworkSvc - ok 18:24:03.0005 3624 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll 18:24:03.0005 3624 WPCSvc - ok 18:24:03.0010 3624 [ 2E57DDF2880A7E52E76F41C7E96D327B ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 18:24:03.0010 3624 WPDBusEnum - ok 18:24:03.0015 3624 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 18:24:03.0015 3624 ws2ifsl - ok 18:24:03.0015 3624 [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice C:\Windows\system32\DRIVERS\WSDPrint.sys 18:24:03.0015 3624 WSDPrintDevice - ok 18:24:03.0020 3624 [ 4A2A5C50DD1A63577D3ACA94269FBC7F ] WSDScan C:\Windows\system32\DRIVERS\WSDScan.sys 18:24:03.0020 3624 WSDScan - ok 18:24:03.0020 3624 WSearch - ok 18:24:03.0060 3624 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll 18:24:03.0085 3624 wuauserv - ok 18:24:03.0085 3624 [ 7CADC74271DD6461C452C271B30BD378 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 18:24:03.0090 3624 WudfPf - ok 18:24:03.0090 3624 [ 3B197AF0FFF08AA66B6B2241CA538D64 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 18:24:03.0095 3624 WUDFRd - ok 18:24:03.0095 3624 [ B551D6637AA0E132C18AC6E504F7B79B ] wudfsvc C:\Windows\System32\WUDFSvc.dll 18:24:03.0095 3624 wudfsvc - ok 18:24:03.0100 3624 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll 18:24:03.0105 3624 WwanSvc - ok 18:24:03.0135 3624 X6va005 - ok 18:24:03.0140 3624 [ 9176C0822FAA649E45121875BE32F5D2 ] xusb21 C:\Windows\system32\DRIVERS\xusb21.sys 18:24:03.0140 3624 xusb21 - ok 18:24:03.0140 3624 [ 8A812A2A2D1FFF9654919BC5433104DA ] YMIDUSBW C:\Windows\system32\drivers\ymidusbx64.sys 18:24:03.0145 3624 YMIDUSBW - ok 18:24:03.0150 3624 [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys 18:24:03.0150 3624 yukonw7 - ok 18:24:03.0155 3624 ================ Scan global =============================== 18:24:03.0160 3624 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll 18:24:03.0160 3624 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\system32\winsrv.dll 18:24:03.0165 3624 [ 0CB6EBF4B461A6043353C570BD72A1E1 ] C:\Windows\system32\winsrv.dll 18:24:03.0170 3624 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll 18:24:03.0175 3624 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe 18:24:03.0175 3624 [Global] - ok 18:24:03.0175 3624 ================ Scan MBR ================================== 18:24:03.0180 3624 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 18:24:03.0320 3624 \Device\Harddisk0\DR0 - ok 18:24:03.0340 3624 [ 35C6B2FCDE68FACBEFE0A4A7200BAE58 ] \Device\Harddisk1\DR1 18:24:04.0310 3624 \Device\Harddisk1\DR1 - ok 18:24:04.0310 3624 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk2\DR2 18:24:04.0310 3624 \Device\Harddisk2\DR2 - ok 18:24:04.0315 3624 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk3\DR3 18:24:04.0315 3624 \Device\Harddisk3\DR3 - ok 18:24:04.0315 3624 [ 35C6B2FCDE68FACBEFE0A4A7200BAE58 ] \Device\Harddisk4\DR4 18:24:05.0260 3624 \Device\Harddisk4\DR4 - ok 18:24:05.0260 3624 ================ Scan VBR ================================== 18:24:05.0260 3624 [ 882701DF75748CDB80D229CFD8D77EA4 ] \Device\Harddisk0\DR0\Partition1 18:24:05.0260 3624 \Device\Harddisk0\DR0\Partition1 - ok 18:24:05.0260 3624 [ 8571CB4C88F8C49742833954BCD8FAA3 ] \Device\Harddisk1\DR1\Partition1 18:24:05.0260 3624 \Device\Harddisk1\DR1\Partition1 - ok 18:24:05.0265 3624 [ 267DECB8E12D3ECB72FA103ACA0E9B59 ] \Device\Harddisk2\DR2\Partition1 18:24:05.0265 3624 \Device\Harddisk2\DR2\Partition1 - ok 18:24:05.0265 3624 [ 8DE5C782FFE99ACBE04070524B2963DB ] \Device\Harddisk3\DR3\Partition1 18:24:05.0265 3624 \Device\Harddisk3\DR3\Partition1 - ok 18:24:05.0270 3624 [ CB51300435181DA55CABDF7E059F5839 ] \Device\Harddisk3\DR3\Partition2 18:24:05.0270 3624 \Device\Harddisk3\DR3\Partition2 - ok 18:24:05.0270 3624 [ 368E757BFB28AEC54451275842EC3DEA ] \Device\Harddisk4\DR4\Partition1 18:24:05.0270 3624 \Device\Harddisk4\DR4\Partition1 - ok 18:24:05.0270 3624 ============================================================ 18:24:05.0270 3624 Scan finished 18:24:05.0270 3624 ============================================================ 18:24:05.0275 3284 Detected object count: 1 18:24:05.0275 3284 Actual detected object count: 1 18:26:18.0881 3284 sptd ( LockedFile.Multi.Generic ) - skipped by user 18:26:18.0881 3284 sptd ( LockedFile.Multi.Generic ) - User select action: Skip 18:27:17.0371 2724 Deinitialize success ==== RKReport ==== RogueKiller V8.4.4 [Feb 5 2013] by Tigzy mail : tigzyRK<at>gmail<dot>com Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/ Website : http://tigzy.geekstogo.com/roguekiller.php Blog : http://tigzyrk.blogspot.com/ Operating System : Windows 7 (6.1.7600 ) 64 bits version Started in : Normal mode User : Rock [Admin rights] Mode : Scan -- Date : 02/06/2013 18:33:58 | ARK || MBR | ??? Bad processes : 0 ??? ??? Registry Entries : 6 ??? [PROXY IE] HKCU\[...]\Internet Settings : ProxyServer (121.254.133.150:3128) -> FOUND [DNS] HKLM\[...]\ControlSet001\Services\Tcpip\Interfaces\{C5E18294-B36B-46EA-B899-7C2C9D10141C} : NameServer (129.250.35.250,205.171.3.65) -> FOUND [DNS] HKLM\[...]\ControlSet002\Services\Tcpip\Interfaces\{C5E18294-B36B-46EA-B899-7C2C9D10141C} : NameServer (129.250.35.250,205.171.3.65) -> FOUND [HJ SMENU] HKCU\[...]\Advanced : Start_ShowMyGames (0) -> FOUND [HJ DESK] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND [HJ DESK] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND ??? Particular Files / Folders: ??? ??? Driver : [NOT LOADED] ??? ??? HOSTS File: ??? --> C:\Windows\system32\drivers\etc\hosts ??? MBR Check: ??? +++++ PhysicalDrive0: OCZ-SOLID2 ATA Device +++++ --- User --- [MBR] ed2e82e2d988acef4ec7ab84613a3cf7 [bSP] 42004b4fa668a7ee0fc4bdc8ebe276e3 : Windows 7/8 MBR Code Partition table: 0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 61055 Mo User = LL1 ... OK! User = LL2 ... OK! +++++ PhysicalDrive1: WDC WD1001FALS-00J7B1 ATA Device +++++ --- User --- [MBR] af9085e9547b8430347a61c2d9fe6827 [bSP] 2b873fb3656eb401132d9f3c94fc508d : Standard MBR Code Partition table: 0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 953867 Mo User = LL1 ... OK! User = LL2 ... OK! +++++ PhysicalDrive2: SAMSUNG HD204UI ATA Device +++++ --- User --- [MBR] 8e4baf45be6b6e4e95f49cb57e7a8679 [bSP] f57e24671a59c2635702bdc6cc38cb3c : Windows 7/8 MBR Code Partition table: 0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 1907727 Mo User = LL1 ... OK! User = LL2 ... OK! +++++ PhysicalDrive3: WDC WD7500AAKS-00RBA0 ATA Device +++++ --- User --- [MBR] a3ed4292855b76b296ca1c2016b5cb70 [bSP] 4ef7f801b740c9f729ce47b088bafb51 : Windows Vista MBR Code Partition table: 0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 684401 Mo 1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 1401657344 | Size: 30999 Mo User = LL1 ... OK! User = LL2 ... OK! +++++ PhysicalDrive4: WDC WD5000AAKS-22YGA0 ATA Device +++++ --- User --- [MBR] 6f809320a0d61176bd59d5f087bda5d6 [bSP] 5d30684c364c12a9f6ef0f76627638d6 : Standard MBR Code Partition table: 0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 476937 Mo User = LL1 ... OK! User = LL2 ... OK! Finished : << RKreport[1]_S_02062013_02d1833.txt >> RKreport[1]_S_02062013_02d1833.txt
  13. FlagrantWolf
    After running CHKDSK it told me that "Windows has checked the file system and found no problems." When I did "sfc /scannow" it said: "There is a system repair pending which requires reboot to complete. Restart Windows and run sfc again." So I restarted and then ran it again, however it gave the same response.
  14. FlagrantWolf
    Starting about 2 days ago, whenever I try to open "My Computer" to browse for a file or check free space on my HDD, the windows explorer screen goes white and freezes. It won't close unless I use ctrl+alt+del and end explorer.exe. I ran mbam and MSE and they did find some suspicious files which they removed, however the problem still continues. Explorer seems to work fine when I start in safe mode. I was also able to get a 3rd party file manager which works fine and lets me browse my HDDs, so I don't think it's a hard drive problem. DDS Logs - DDS (Ver_2012-11-20.01) - NTFS_AMD64 Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.13.2 Run by Rock at 14:53:53 on 2013-02-05 Microsoft Windows 7 Ultimate 6.1.7600.0.932.81.1033.18.16355.12724 [GMT -8:00] . AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} AV: Microsoft Security Essentials *Disabled/Updated* {BF5CEBDC-F2D3-7540-343C-F0CE11FD6E66} SP: Microsoft Security Essentials *Disabled/Updated* {043D0A38-D4E9-7ACE-0E8C-CBBC6A7A24DB} SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe C:\Windows\system32\atiesrxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Program Files\Sandboxie\SbieSvc.exe C:\Program Files\Tablet\Pen\Pen_TouchService.exe C:\Windows\system32\WUDFHost.exe C:\Windows\system32\atieclxx.exe C:\Windows\SYSTEM32\WISPTIS.EXE C:\Windows\system32\WUDFHost.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation Q:\Games\PC GAMES INSTALLED\Hi-Rez Studios\HiPatchService.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe C:\Windows\SysWOW64\PnkBstrA.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Program Files\Tablet\Pen\Pen_Tablet.exe C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe C:\Windows\servicing\TrustedInstaller.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\taskhost.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe C:\Program Files\Logitech\GamePanel Software\LGDevAgt.exe C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Windows\System32\M-AudioTaskBarIcon.exe C:\Program Files\Logitech\SetPointP\SetPoint.exe C:\Windows\System32\StikyNot.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Sandboxie\SbieCtrl.exe C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDock.exe C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.EXE C:\Program Files\Logitech\GamePanel Software\Applets\LCDMedia.exe C:\Program Files\Logitech\GamePanel Software\Applets\LCDClock.exe C:\Program Files\Logitech\GamePanel Software\Applets\LCDPop3.exe C:\Program Files\Logitech\GamePanel Software\Applets\LCDCountdown.exe C:\Program Files\Logitech\GamePanel Software\Applets\LCDRSS.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM64.exe C:\PROGRA~2\Raptr\raptr.exe C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Program Files (x86)\Stardock\ObjectDock Plus\Dock64.exe C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDockTray.exe C:\Program Files\Tablet\Pen\Pen_TouchUser.exe C:\PROGRA~2\Raptr\raptr_im.exe C:\Windows\SYSTEM32\WISPTIS.EXE C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe C:\Program Files\Tablet\Pen\Pen_TabletUser.exe C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Program Files\Tablet\Pen\Pen_Tablet.exe C:\Program Files\TortoiseSVN\bin\TSVNCache.exe C:\Program Files\Windows Media Player\WMPSideShowGadget.exe C:\Program Files (x86)\Windows Media Player\wmplayer.exe C:\Program Files (x86)\Raptr\raptr_ep64.exe C:\Windows\system32\wuauclt.exe C:\Windows\system32\taskhost.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_4_402_265.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_4_402_265.exe C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe C:\Users\Rock\Desktop\Utilities\RealTemp_370\RealTemp.exe C:\Program Files\Microsoft Security Client\Antimalware\MpCmdRun.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\System32\svchost.exe -k WerSvcGroup C:\Windows\System32\cscript.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.google.com/ uProxyServer = 121.254.133.150:3128 mWinlogon: Userinit = userinit.exe, BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll BHO: ATLAS Toolbar: {3C6301ED-0F78-4AF2-8150-D9C052361A8E} - C:\Program Files (x86)\ATLAS V14\ATLIECP.DLL BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll BHO: Adobe Acrobat Create PDF Toolbar Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll BHO: GOM Player + Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll BHO: Adobe Acrobat Create PDF from Selection: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll TB: GOM Player + Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - TB: ATLAS Toolbar: {3C6301ED-0F78-4AF2-8150-D9C052361A8E} - C:\Program Files (x86)\ATLAS V14\ATLIECP.DLL TB: GOM Player + Ask Toolbar: {D4027C7F-154A-4066-A1AD-4243D8127440} - TB: Adobe Acrobat Create PDF Toolbar: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll uRun: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe uRun: [Raptr] C:\PROGRA~2\Raptr\raptrstub.exe --startup uRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun uRun: [sandboxieControl] "C:\Program Files\Sandboxie\SbieCtrl.exe" uRun: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun dRun: [DevconDefaultDB] C:\Windows\System32\READREG /SILENT /FAIL=1 StartupFolder: C:\Users\Rock\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\STARDO~1.LNK - C:\Program Files (x86)\Stardock\ObjectDock Plus\ObjectDock.exe mPolicies-Explorer: NoActiveDesktop = dword:1 mPolicies-System: ConsentPromptBehaviorAdmin = dword:5 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableUIADesktopToggle = dword:0 IE: &Save the YouTube video as MP3 - C:\Users\Rock\AppData\Roaming\Free YouTube to MP3 Converter Studio\Free YouTube to MP3 Converter Studio.htm IE: &Translate with ATLAS - C:\Program Files (x86)\ATLAS V14\Atlscript.html IE: Add to Evernote 4.0 - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 IE: ATLAS Translation &Editor - C:\Program Files (x86)\ATLAS V14\AtlscriptEdit.html IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000 IE: Open Client to monitor &1 - C:\Windows\web\AOpenClient.htm IE: Open Client to monitor &2 - C:\Windows\web\AOpenClient.htm IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 IE: {B7707A72-4355-11D4-82BD-00000EBBEF8D} - C:\Program Files (x86)\ATLAS V14\Atlscript.html Trusted Zone: clonewarsadventures.com Trusted Zone: freerealms.com Trusted Zone: soe.com Trusted Zone: sony.com DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - C:\Program Files (x86)\Yahoo!\Common\Yinsthelper.dll DPF: {8E9089E1-0461-4F60-8150-1E334629ABB7} - hxxp://webdown2.nexon.co.jp/arad/real/installer/arad_dis.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab TCP: NameServer = 192.168.1.1 TCP: Interfaces\{4FCE06B5-A42A-417E-8E60-8FDD9700DA92} : DHCPNameServer = 64.120.16.10 8.8.8.8 TCP: Interfaces\{C5E18294-B36B-46EA-B899-7C2C9D10141C} : NameServer = 129.250.35.250,205.171.3.65 TCP: Interfaces\{C5E18294-B36B-46EA-B899-7C2C9D10141C} : DHCPNameServer = 192.168.1.1 TCP: Interfaces\{E9AE5508-A35D-4371-8B22-BD546D4E01D6} : DHCPNameServer = 192.168.1.1 Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll SSODL: WebCheck - <orphaned> SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll x64-BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll x64-BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll x64-BHO: {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - <orphaned> x64-Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s x64-Run: [Launch LgDeviceAgent] "C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe" x64-Run: [Launch LGDCore] "C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe" /SHOWHIDE x64-Run: [Launch LCDMon] "C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe" x64-Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey x64-Run: [M-Audio Taskbar Icon] C:\Windows\System32\M-AudioTaskBarIcon.exe x64-Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming x64-DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab x64-DPF: {CAFEEFAC-0017-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_02-windows-i586.cab x64-Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - <orphaned> x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - <orphaned> x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned> x64-Notify: LBTWlgn - c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll x64-SSODL: WebCheck - <orphaned> x64-STS: FencesShlExt Class - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files\Stardock\Fences Pro\FencesMenu64.dll Hosts: 127.0.0.1 validation.sls.microsoft.com . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\Rock\AppData\Roaming\Mozilla\Firefox\Profiles\oo0vpxaf.default\ FF - prefs.js: network.proxy.ftp - 202.77.119.114 FF - prefs.js: network.proxy.ftp_port - 80 FF - prefs.js: network.proxy.http - 202.77.119.114 FF - prefs.js: network.proxy.http_port - 80 FF - prefs.js: network.proxy.socks - 202.77.119.114 FF - prefs.js: network.proxy.socks_port - 80 FF - prefs.js: network.proxy.ssl - 202.77.119.114 FF - prefs.js: network.proxy.ssl_port - 80 FF - prefs.js: network.proxy.type - 0 FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll FF - plugin: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll FF - plugin: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll FF - plugin: C:\Program Files (x86)\Google\Google Updater\2.4.1908.5032\npCIDetect14.dll FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.10516.0\npctrlui.dll FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npyaxmpb.dll FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll FF - plugin: C:\Program Files (x86)\OnLive\Plugin\npolgdet.dll FF - plugin: C:\Program Files (x86)\TabletPlugins\npwacom.dll FF - plugin: C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll FF - plugin: C:\ProgramData\NexonJP\NGM\npNxGameJP.dll FF - plugin: C:\ProgramData\NexonUS\NGM\npNxGameUS.dll FF - plugin: C:\Users\Rock\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll FF - plugin: C:\Users\Rock\AppData\Roaming\Move Networks\plugins\npqmp071706000001.dll FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_4_402_265.dll FF - plugin: C:\Windows\SysWOW64\npdeployJava1.dll FF - plugin: C:\Windows\SysWOW64\npmproxy.dll FF - plugin: Q:\Programs\Acrobat XI\Acrobat\Air\nppdf32.dll . ============= SERVICES / DRIVERS =============== . P2 HiPatchService;Hi-Rez Studios Authenticate and Update Service;Q:\Games\PC GAMES INSTALLED\Hi-Rez Studios\HiPatchService.exe [2012-3-25 8704] R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2013-1-20 52760] R1 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2011-4-18 189440] R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2012-12-19 240640] R2 cpuz134;cpuz134;C:\Windows\System32\drivers\cpuz134_x64.sys [2010-8-9 21480] R2 cpuz135;cpuz135;C:\Windows\System32\drivers\cpuz135_x64.sys [2012-4-5 21992] R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-9-21 398184] R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-9-21 682344] R2 TabletServicePen;TabletServicePen;C:\Program Files\Tablet\Pen\Pen_Tablet.exe [2012-1-8 6583160] R2 TouchServicePen;Wacom Consumer Touch Service;C:\Program Files\Tablet\Pen\Pen_TouchService.exe [2012-1-8 528760] R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2012-11-6 96256] R3 EuMusDesignVirtualAudioCableWdm;Virtual Audio Cable (WDM);C:\Windows\System32\drivers\vrtaucbl.sys [2012-7-4 66728] R3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;C:\Windows\System32\drivers\LGBusEnum.sys [2009-11-23 22408] R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;C:\Windows\System32\drivers\LGVirHid.sys [2009-11-23 16008] R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2011-12-16 24176] R3 MBfilt;MBfilt;C:\Windows\System32\drivers\MBfilt64.sys [2011-11-18 32344] R3 MpNWMon;Microsoft Malware Protection Network Driver;C:\Windows\System32\drivers\MpNWMon.sys [2011-4-18 40832] R3 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2011-4-27 84864] R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-4-27 288272] R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2011-11-18 428136] R3 SbieDrv;SbieDrv;C:\Program Files\Sandboxie\SbieDrv.sys [2012-12-16 202632] R3 WinRing0_1_2_0;WinRing0_1_2_0;C:\Users\Rock\Desktop\Utilities\RealTemp_370\WinRing0x64.sys [2012-4-5 14544] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-7-9 104912] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2012-7-8 123856] S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-11-9 160944] S3 BEHRINGER_2902;usb-audio.de driver for BEHRINGER USB AUDIO;C:\Windows\System32\drivers\BUSB2902.sys [2011-3-30 460864] S3 BUSB_AUDIO_WDM;BEHRINGER USB WDM AUDIO;C:\Windows\System32\drivers\busbwdm.sys [2011-3-30 49728] S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\drivers\ssudbus.sys [2012-12-3 99384] S3 IDMWFP;IDMWFP;C:\Windows\System32\drivers\idmwfp.sys [2010-9-2 88864] S3 libusb0;LibUsb-Win32 - Kernel Driver 08/27/2006, 0.1.12.0;C:\Windows\System32\drivers\libusb0.sys [2012-8-22 31744] S3 MAUSBMOBILEPRE;Service for M-Audio MobilePre;C:\Windows\System32\drivers\MAudioMobilePre.sys [2009-9-2 187912] S3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;C:\Windows\System32\drivers\MijXfilt.sys [2010-8-20 121416] S3 npggsvc;nProtect GameGuard Service;C:\Windows\System32\GameMon.des -service --> C:\Windows\System32\GameMon.des -service [?] S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);C:\Windows\System32\drivers\ssudmdm.sys [2012-12-3 203320] S3 SwitchBoard;Adobe SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096] S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2011-8-2 51712] S3 wacmoumonitor;Wacom Mode Helper;C:\Windows\System32\drivers\wacmoumonitor.sys [2012-1-8 13312] S3 WSDScan;WSD Scan Support via UMB;C:\Windows\System32\drivers\WSDScan.sys [2009-7-13 25088] S3 YMIDUSBW;Yamaha USB-MIDI Driver (WDM);C:\Windows\System32\drivers\ymidusbx64.sys [2009-8-4 48200] S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk62x64.sys [2009-6-10 389120] S4 Apache2.2;Apache2.2;C:\xampplite\apache\bin\httpd.exe [2010-8-18 29416] S4 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-12-29 383416] . =============== File Associations =============== . FileExt: .reg: Applications\wordpad.exe="C:\Program Files (x86)\Windows NT\Accessories\WORDPAD.EXE" "%1" [userChoice] FileExt: .txt: textfile="C:\Program Files (x86)\Windows NT\Accessories\WORDPAD.EXE" "%1" [userChoice] FileExt: .ini: Applications\WORDPAD.EXE="C:\Program Files (x86)\Windows NT\Accessories\WORDPAD.EXE" "%1" [userChoice] FileExt: .js: jsfile="R:\Programs\Dreamweaver CS5\Adobe Dreamweaver CS5\Dreamweaver.exe","%1" ShellExec: dreamweaver.exe: Open="C:\Program Files (x86)\Adobe\Adobe Dreamweaver CS5\dreamweaver.exe", "%1" . =============== Created Last 30 ================ . 2013-02-05 22:49:37 9161176 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{144F6B7A-F814-40AC-AFE1-B2682BE764CC}\mpengine.dll 2013-02-05 06:46:17 -------- d-sh--w- C:\found.002 2013-02-05 06:16:10 -------- dc----w- C:\Users\Rock\AppData\Local\SCE 2013-02-05 02:24:40 -------- dc----w- C:\Users\Rock\AppData\Local\EA Games 2013-02-05 02:02:22 95648 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll 2013-02-05 01:36:40 96664 -c--a-w- C:\Program Files (x86)\Mozilla Firefox\webapprt-stub.exe 2013-02-05 01:36:40 157712 -c--a-w- C:\Program Files (x86)\Mozilla Firefox\webapp-uninstaller.exe 2013-02-05 01:36:39 74136 -c--a-w- C:\Program Files (x86)\Mozilla Firefox\breakpadinjector.dll 2013-02-02 05:28:41 -------- dc----w- C:\ProgramData\Battle.net 2013-02-01 00:40:19 -------- dc----w- C:\Users\Rock\AppData\Local\ATI 2013-02-01 00:39:54 0 ----a-w- C:\Windows\ativpsrm.bin 2013-02-01 00:33:45 -------- dc----w- C:\ProgramData\AMD 2013-02-01 00:33:44 -------- d-----w- C:\Program Files (x86)\AMD AVT 2013-02-01 00:33:42 -------- d-----w- C:\Program Files (x86)\AMD APP 2013-02-01 00:33:41 -------- dc----w- C:\Program Files (x86)\Common Files\ATI Technologies 2013-02-01 00:33:41 -------- d-----w- C:\Program Files\Common Files\ATI Technologies 2013-02-01 00:33:10 -------- d-----w- C:\Program Files (x86)\Driver Fusion 2013-02-01 00:23:30 -------- dc----w- C:\ProgramData\RightClick 2013-02-01 00:17:51 -------- d-----w- C:\Program Files (x86)\ATI Technologies 2013-02-01 00:17:45 -------- d-----w- C:\Program Files\ATI Technologies 2013-02-01 00:17:43 -------- d-----w- C:\Program Files\ATI 2013-02-01 00:15:17 -------- d-----w- C:\AMD 2013-01-31 19:54:47 -------- dc----w- C:\Users\Rock\Heaven 2013-01-31 18:11:55 -------- d-----w- C:\Program Files\Unigine 2013-01-30 02:08:26 -------- dc----w- C:\Users\Rock\AppData\Roaming\PCGPGOMC 2013-01-28 21:40:16 -------- d-----w- C:\Program Files (x86)\GPU-Z 2013-01-27 23:07:26 -------- d-sh--w- C:\found.001 2013-01-27 23:01:37 -------- d--h--w- C:\ControlCenterCount 2013-01-24 13:38:29 63928 ----a-w- C:\Windows\System32\nvshext.dll 2013-01-24 13:36:51 -------- dc----w- C:\ProgramData\NVIDIA Corporation 2013-01-24 13:34:46 2824656 ----a-w- C:\Windows\System32\nvapi64.dll 2013-01-24 13:34:46 2504248 ----a-w- C:\Windows\SysWow64\nvapi.dll 2013-01-21 20:21:08 -------- d-sh--r- C:\Kernels 2013-01-21 15:55:10 -------- dc----w- C:\Users\Rock\AppData\Roaming\uMod 2013-01-21 09:00:11 281688 ----a-w- C:\Windows\SysWow64\PnkBstrB.exe 2013-01-21 09:00:10 76888 ----a-w- C:\Windows\SysWow64\PnkBstrA.exe 2013-01-20 18:52:34 -------- dc----w- C:\ProgramData\Orbit 2013-01-20 17:56:36 -------- dc----w- C:\Users\Rock\AppData\Local\TERA 2013-01-20 15:25:34 -------- dc----w- C:\Users\Rock\Library 2013-01-20 15:25:34 -------- dc----w- C:\Users\Rock\AppData\Roaming\com.ynab.YNAB4.LiveCaptive 2013-01-20 15:25:28 -------- d-----w- C:\Program Files (x86)\YNAB 4 2013-01-20 10:07:21 -------- dc----w- C:\ProgramData\Package Cache 2013-01-20 09:56:27 -------- dc----w- C:\ProgramData\SonicStage 2013-01-20 09:50:46 2368 ----a-w- C:\Windows\SysWow64\STEC3.sys 2013-01-20 09:17:46 -------- dc----w- C:\ProgramData\Sony Corporation 2013-01-20 09:17:22 69715 -c--a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\ctor.dll 2013-01-20 09:17:22 5632 -c--a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\DotNetInstaller.exe 2013-01-20 09:17:22 266240 -c--a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iscript.dll 2013-01-20 09:17:22 172032 -c--a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iuser.dll 2013-01-20 09:17:21 733184 -c--a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iKernel.dll 2013-01-20 09:17:20 180356 -c--a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iGdi.dll 2013-01-20 09:17:19 303236 -c--a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\setup.dll 2013-01-20 09:16:55 -------- d-----w- C:\Windows\SysWow64\Iosubsys 2013-01-20 09:15:36 -------- dc----w- C:\Program Files (x86)\Common Files\Sony Shared 2013-01-20 04:53:49 -------- d-sh--w- C:\found.000 2013-01-12 22:13:35 -------- d-----w- C:\Program Files (x86)\Market Samurai 2013-01-10 04:02:11 -------- d-----w- C:\Program Files (x86)\Combined Community Codec Pack 2013-01-08 01:00:46 -------- dc----w- C:\Users\Rock\AppData\Local\SmoothDraw 2013-01-08 00:10:05 -------- d-----w- C:\Program Files (x86)\SmoothDraw 2013-01-07 23:23:44 -------- dc----w- C:\ProgramData\YTD Video Downloader 2013-01-07 23:23:39 -------- d-----w- C:\Program Files (x86)\GreenTree Applications . ==================== Find3M ==================== . 2013-02-05 02:02:19 861088 ----a-w- C:\Windows\SysWow64\npdeployJava1.dll 2013-02-05 02:02:19 782240 ----a-w- C:\Windows\SysWow64\deployJava1.dll 2013-02-02 15:44:04 281688 ----a-w- C:\Windows\SysWow64\PnkBstrB.xtr 2013-02-01 01:43:56 281288 ----a-w- C:\Windows\SysWow64\PnkBstrB.ex0 2013-01-30 10:53:22 273840 ------w- C:\Windows\System32\MpSigStub.exe 2013-01-10 21:16:13 16 -c--a-w- C:\Users\Rock\AppData\Roaming\msregsvv.dll 2012-12-29 10:54:24 550328 ----a-w- C:\Windows\SysWow64\nvStreaming.exe 2012-12-19 23:45:12 222720 ----a-w- C:\Windows\System32\clinfo.exe 2012-12-19 23:44:48 76288 ----a-w- C:\Windows\System32\OpenVideo64.dll 2012-12-19 23:44:42 65536 ----a-w- C:\Windows\SysWow64\OpenVideo.dll 2012-12-19 23:44:36 64000 ----a-w- C:\Windows\System32\OVDecode64.dll 2012-12-19 23:44:32 56320 ----a-w- C:\Windows\SysWow64\OVDecode.dll 2012-12-19 23:44:20 34518016 ----a-w- C:\Windows\System32\amdocl64.dll 2012-12-19 23:38:48 28732928 ----a-w- C:\Windows\SysWow64\amdocl.dll 2012-12-19 23:34:40 54784 ----a-w- C:\Windows\System32\OpenCL.dll 2012-12-19 23:34:38 50176 ----a-w- C:\Windows\SysWow64\OpenCL.dll 2012-12-19 20:50:14 5630200 ----a-w- C:\Windows\SysWow64\atiumdag.dll 2012-12-19 20:48:48 11278336 ----a-w- C:\Windows\System32\drivers\atikmdag.sys 2012-12-19 20:29:36 23461376 ----a-w- C:\Windows\System32\atio6axx.dll 2012-12-19 20:22:50 70144 ----a-w- C:\Windows\System32\coinst_9.012.dll 2012-12-19 20:19:46 163840 ----a-w- C:\Windows\System32\atiapfxx.exe 2012-12-19 20:18:04 51200 ----a-w- C:\Windows\System32\aticalrt64.dll 2012-12-19 20:18:02 46080 ----a-w- C:\Windows\SysWow64\aticalrt.dll 2012-12-19 20:17:54 44544 ----a-w- C:\Windows\System32\aticalcl64.dll 2012-12-19 20:17:52 44032 ----a-w- C:\Windows\SysWow64\aticalcl.dll 2012-12-19 20:17:40 16082944 ----a-w- C:\Windows\System32\aticaldd64.dll 2012-12-19 20:13:24 13703168 ----a-w- C:\Windows\SysWow64\aticaldd.dll 2012-12-19 20:12:44 18982400 ----a-w- C:\Windows\SysWow64\atioglxx.dll 2012-12-19 20:09:52 960512 ----a-w- C:\Windows\SysWow64\aticfx32.dll 2012-12-19 20:08:04 1151488 ----a-w- C:\Windows\System32\aticfx64.dll 2012-12-19 20:06:00 6681088 ----a-w- C:\Windows\SysWow64\atidxx32.dll 2012-12-19 19:59:44 5087744 ----a-w- C:\Windows\System32\atiumd6a.dll 2012-12-19 19:57:00 442368 ----a-w- C:\Windows\System32\atidemgy.dll 2012-12-19 19:56:46 550912 ----a-w- C:\Windows\System32\atieclxx.exe 2012-12-19 19:56:00 240640 ----a-w- C:\Windows\System32\atiesrxx.exe 2012-12-19 19:54:38 120320 ----a-w- C:\Windows\System32\atitmm64.dll 2012-12-19 19:54:22 21504 ----a-w- C:\Windows\System32\atimuixx.dll 2012-12-19 19:54:18 59392 ----a-w- C:\Windows\System32\atiedu64.dll 2012-12-19 19:54:12 43520 ----a-w- C:\Windows\SysWow64\ati2edxx.dll 2012-12-19 19:49:00 7370752 ----a-w- C:\Windows\System32\atidxx64.dll 2012-12-19 19:44:28 4162048 ----a-w- C:\Windows\SysWow64\atiumdva.dll 2012-12-19 19:44:12 6786560 ----a-w- C:\Windows\System32\atiumd64.dll 2012-12-19 19:34:28 79360 ----a-w- C:\Windows\System32\amdave64.dll 2012-12-19 19:34:22 78336 ----a-w- C:\Windows\SysWow64\amdave32.dll 2012-12-19 19:34:10 74240 ----a-w- C:\Windows\System32\atisamu64.dll 2012-12-19 19:34:04 71168 ----a-w- C:\Windows\SysWow64\atisamu32.dll 2012-12-19 19:33:50 56320 ----a-w- C:\Windows\System32\atimpc64.dll 2012-12-19 19:33:50 56320 ----a-w- C:\Windows\System32\amdpcom64.dll 2012-12-19 19:33:42 619008 ----a-w- C:\Windows\System32\atiadlxx.dll 2012-12-19 19:33:40 56832 ----a-w- C:\Windows\SysWow64\atimpc32.dll 2012-12-19 19:33:40 56832 ----a-w- C:\Windows\SysWow64\amdpcom32.dll 2012-12-19 19:33:32 421888 ----a-w- C:\Windows\SysWow64\atiadlxy.dll 2012-12-19 19:33:18 17920 ----a-w- C:\Windows\System32\atig6pxx.dll 2012-12-19 19:33:14 14848 ----a-w- C:\Windows\SysWow64\atiglpxx.dll 2012-12-19 19:33:14 14848 ----a-w- C:\Windows\System32\atiglpxx.dll 2012-12-19 19:33:10 41984 ----a-w- C:\Windows\System32\atig6txx.dll 2012-12-19 19:33:04 33280 ----a-w- C:\Windows\SysWow64\atigktxx.dll 2012-12-19 19:32:54 552960 ----a-w- C:\Windows\System32\drivers\atikmpag.sys 2012-12-19 19:31:14 130048 ----a-w- C:\Windows\System32\atiuxp64.dll 2012-12-19 19:31:08 109568 ----a-w- C:\Windows\SysWow64\atiuxpag.dll 2012-12-19 19:31:00 104448 ----a-w- C:\Windows\System32\atiu9p64.dll 2012-12-19 19:30:52 83968 ----a-w- C:\Windows\SysWow64\atiu9pag.dll 2012-12-19 19:30:16 53248 ----a-w- C:\Windows\System32\drivers\ati2erec.dll 2012-12-15 00:49:28 24176 ----a-w- C:\Windows\System32\drivers\mbam.sys 2012-12-06 05:22:57 18960 ----a-w- C:\Windows\System32\drivers\LNonPnP.sys . ============= FINISH: 14:54:05.49 =============== Here is the attach file. It was too big to fit. attach.txt
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.