Go Back   Tech Support Forum > Security Center > Virus/Trojan/Spyware Help

User Tag List

I might be infected

This is a discussion on I might be infected within the Virus/Trojan/Spyware Help forums, part of the Tech Support Forum category. I noticed a dent in system performance lately and have a very minimal boot setup so I am having trouble


Closed Thread
 
Thread Tools Search this Thread
Old 10-17-2017, 06:52 AM   #1
Registered Member
 
Join Date: May 2009
Posts: 264
OS:



I noticed a dent in system performance lately and have a very minimal boot setup so I am having trouble narrowing it down any further on my own.

Specifically, there is a lot of stuttering when launching new applications or browsing the web while streaming 1080p video. The worst of it is the audio which cuts out and sometimes slows down.

I reinstalled Firefox thinking that might be it, but didn't have any effect.

Here is my DDS.txt:

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer:
Run by a at 8:39:51 on 2017-10-17
#Option Extended Search is enabled.
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.16323.12421 [GMT -5:00]
.
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ZoneAlarm Free Firewall Firewall *Enabled* {1B8D532F-88B1-B2AD-ED22-AED92687A1D2}
.
============== Running Processes ===============
.
E:\Windows\system32\lsm.exe
E:\Windows\system32\svchost.exe -k DcomLaunch
E:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
E:\Windows\system32\svchost.exe -k RPCSS
E:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
E:\Windows\system32\svchost.exe -k LocalService
E:\Windows\system32\svchost.exe -k netsvcs
E:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
E:\Windows\system32\svchost.exe -k NetworkService
E:\Program Files (x86)\CheckPoint\ZoneAlarm\vsmon.exe
E:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
E:\Windows\System32\svchost.exe -k utcsvc
E:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
E:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
E:\Windows\system32\sppsvc.exe
E:\Windows\system32\SearchIndexer.exe
E:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
E:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
E:\Windows\system32\Dwm.exe
E:\Windows\Explorer.EXE
E:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe
E:\Windows\System32\svchost.exe -k secsvcs
E:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe
E:\Program Files\IDT\wdm\sttray64.exe
E:\Windows\system32\wbem\wmiprvse.exe
E:\ProgramData\Battle.net\Agent\Agent.5845\Agent.exe
E:\Program Files (x86)\Battle.net\Battle.net.9397\Battle.net.exe
E:\Program Files (x86)\Battle.net\Battle.net.9397\Battle.net Helper.exe
E:\Program Files (x86)\Battle.net\Battle.net.9397\Battle.net Helper.exe
E:\Program Files (x86)\Mozilla Firefox\firefox.exe
E:\Program Files (x86)\Mozilla Firefox\firefox.exe
E:\Program Files (x86)\Mozilla Firefox\firefox.exe
E:\Program Files (x86)\Mozilla Firefox\firefox.exe
E:\Windows\system32\taskmgr.exe
E:\Windows\system32\SearchProtocolHost.exe
E:\Windows\system32\SearchFilterHost.exe
E:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
mWinlogon: Userinit = userinit.exe
uRun: [TSMApplication] "E:\Program Files (x86)\TradeSkillMaster Application\app\TSMApplication.exe"
mRun: [ZoneAlarm] "E:\Program Files (x86)\CheckPoint\ZoneAlarm\zatray.exe"
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
uPolicies-Explorer: HideSCAHealth = dword:1
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableLUA = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - E:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{63052A2B-D4A5-4C36-91A2-01AB322E9A36} : DHCPNameServer = 172.18.11.1
TCP: Interfaces\{A52C1C54-21B8-44F2-82D7-32EF9AE52F01} : NameServer = 8.8.8.8,8.8.4.4
TCP: Interfaces\{A52C1C54-21B8-44F2-82D7-32EF9AE52F01} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{C3AE998E-3078-447E-8C88-1B6C43CE4106} : NameServer = 8.8.8.8,8.8.4.4
TCP: Interfaces\{C3AE998E-3078-447E-8C88-1B6C43CE4106} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{C3AE998E-3078-447E-8C88-1B6C43CE4106}\35D4D2A4332303140273531343 : NameServer = 8.8.8.8,8.8.4.4
TCP: Interfaces\{C3AE998E-3078-447E-8C88-1B6C43CE4106}\35D4D2A4332303140273531343 : DHCPNameServer = 192.168.43.1
SSODL: WebCheck - <orphaned>
x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - E:\Program Files\Java\jre1.8.0_144\bin\ssv.dll
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre1.8.0_144\bin\jp2ssv.dll
x64-Run: [SysTrayApp] E:\Program Files\IDT\WDM\sttray64.exe
x64-IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - E:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "E:\Program Files (x86)\Google\Chrome\Application\61.0.3163.100\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
.
================= FIREFOX ===================
.
FF - ProfilePath - E:\Users\a\AppData\Roaming\Mozilla\Firefox\Profiles\39665wj1.default\
FF - prefs.js: browser.startup.homepage - google.com
FF - plugin: E:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll
FF - plugin: E:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_159.dll
.
---- FIREFOX POLICIES ----
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: network.http.max-connections - 48
FF - user.js: network.http.max-connections-per-server - 16
FF - user.js: network.http.max-persistent-connections-per-proxy - 16
FF - user.js: network.http.max-persistent-connections-per-server - 8
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: content.notify.ontimer - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 2250000
FF - user.js: content.switch.threshold - 750000
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
.
============= SERVICES / DRIVERS ===============
.
R0 SCMNdisP;General NDIS Protocol Driver;E:\Windows\System32\drivers\SCMNdisP.sys [2017-10-10 25312]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver;E:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2017-10-10 27552]
R2 DiagTrack;Diagnostics Tracking Service;E:\Windows\System32\svchost.exe -k utcsvc [2009-7-13 27136]
R2 LGCoreTemp;Logitech CPU Core Tempurature;E:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\LgCoreTemp.sys [2015-6-21 14184]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container;E:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-10-10 518080]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS;E:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-10-10 462968]
R3 ETDSMBus;ETDSMBus;E:\Windows\System32\drivers\ETDSMBus.sys [2017-10-10 32840]
R3 LGBusEnum;Logitech Gaming Virtual Bus Enumerator Driver;E:\Windows\System32\drivers\LGBusEnum.sys [2017-8-18 36496]
R3 LGJoyXlCore;Logitech Translation Layer Driver (LGS);E:\Windows\System32\drivers\LGJoyXlCore.sys [2017-8-18 67736]
R3 MonitorFunction;Driver for Monitor;E:\Windows\System32\drivers\TVMonitor.sys [2017-10-14 18336]
R3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);E:\Windows\System32\drivers\nvvad64v.sys [2017-10-15 50624]
R3 nvvhci;NVVHCI Enumerator Service;E:\Windows\System32\drivers\nvvhci.sys [2017-10-11 57792]
R3 WNDA3100v3;NETGEAR WNDA3100v3 USB Wireless LAN Card Driver;E:\Windows\System32\drivers\WNDA3100v3.sys [2014-12-8 2225808]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;E:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-5 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;E:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-5 125112]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);E:\Windows\System32\drivers\ssudbus.sys [2017-5-18 131984]
S3 dmvsc;dmvsc;E:\Windows\System32\drivers\dmvsc.sys [2010-11-21 71168]
S3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;E:\Windows\System32\drivers\LGVirHid.sys [2017-8-18 26008]
S3 NvStreamKms;NVIDIA KMS;E:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-10-15 30144]
S3 pmxdrv;pmxdrv;E:\Windows\System32\drivers\pmxdrv.sys [2017-10-13 31152]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;E:\Windows\System32\drivers\rdpvideominiport.sys [2017-10-11 20992]
S3 RTL8167;Realtek 8167 NT Driver;E:\Windows\System32\drivers\Rt64win7.sys [2017-10-10 1075688]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);E:\Windows\System32\drivers\ssudmdm.sys [2017-5-18 166288]
S3 Synth3dVsc;Synth3dVsc;E:\Windows\System32\drivers\Synth3dVsc.sys [2010-11-21 88960]
S3 tap-tb-0901;TunnelBear Adapter V9;E:\Windows\System32\drivers\tap-tb-0901.sys [2017-9-6 38656]
S3 terminpt;Microsoft Remote Desktop Input Driver;E:\Windows\System32\drivers\terminpt.sys [2010-11-21 34816]
S3 TsUsbFlt;TsUsbFlt;E:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;E:\Windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 tsusbhub;tsusbhub;E:\Windows\System32\drivers\tsusbhub.sys [2010-11-21 117248]
S3 TunnelBearMaintenance;TunnelBear Maintenance;E:\Program Files (x86)\TunnelBear\TunnelBear.Maintenance.exe [2017-9-6 37248]
S3 WatAdminSvc;Windows Activation Technologies Service;E:\Windows\System32\Wat\WatAdminSvc.exe [2017-10-11 1255736]
S3 ZAPrivacyService;ZoneAlarm Privacy Service;E:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe [2016-11-1 114936]
S4 IEEtwCollectorService;Internet Explorer ETW Collector Service;E:\Windows\System32\ieetwcollector.exe [2017-10-11 116224]
S4 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;E:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-2-13 731648]
S4 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;E:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-2-13 820184]
S4 LogiRegistryService;Logitech Gaming Registry Service;E:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe [2017-8-18 225400]
S4 NvContainerNetworkService;NVIDIA NetworkService Container;E:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-10-10 518080]
S4 NvTelemetryContainer;NVIDIA Telemetry Container;E:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-10-10 460736]
S4 Origin Client Service;Origin Client Service;E:\Program Files (x86)\Origin\OriginClientService.exe [2017-10-15 2120032]
S4 Origin Web Helper Service;Origin Web Helper Service;E:\Program Files (x86)\Origin\OriginWebHelperService.exe [2017-10-15 3000168]
S4 ss_conn_service;SAMSUNG Mobile Connectivity Service;E:\Program Files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [2017-10-13 743688]
S4 TeamViewer;TeamViewer 12;E:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2017-10-14 10803440]
S4 ZoneAlarm ICM Service;ZoneAlarm ICM Service;E:\Program Files (x86)\CheckPoint\ZoneAlarm\ICM-Service.exe [2017-4-14 1058616]
.
=============== Created Last 60 ================
.
2017-10-17 09:35:08 75888 ----a-w- E:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2D7AE1E1-F96B-44C2-B90E-86935A035835}\offreg.2976.dll
2017-10-17 07:14:17 -------- d-----w- E:\Users\a\AppData\Local\Macromedia
2017-10-17 07:10:44 -------- d-----w- E:\Users\a\AppData\Local\Package Cache
2017-10-16 11:51:25 -------- d-----w- E:\Users\a\AppData\Roaming\TunnelBear
2017-10-16 11:51:25 -------- d-----w- E:\Users\a\AppData\Local\IsolatedStorage
2017-10-16 11:50:58 -------- d-----w- E:\Program Files (x86)\TunnelBear
2017-10-16 11:41:32 -------- d-----w- E:\Users\a\AppData\Local\Google
2017-10-16 07:48:46 -------- d-----w- E:\Users\a\AppData\Roaming\mIRC
2017-10-16 07:48:46 -------- d-----w- E:\Program Files (x86)\mIRC
2017-10-16 06:29:57 -------- d-----w- E:\Users\a\AppData\Local\pip
2017-10-16 05:26:46 -------- d-----w- E:\Users\a\.idlerc
2017-10-16 05:24:08 -------- d-----w- E:\Users\a\AppData\Roaming\livestreamer
2017-10-16 02:15:29 -------- d-----w- E:\Users\a\AppData\Local\Trend Micro
2017-10-16 02:15:06 -------- d-----w- E:\ProgramData\Trend Micro
2017-10-16 02:15:05 -------- d-----w- E:\Windows\Trend Micro
2017-10-16 02:13:12 332512 ----a-w- E:\Windows\System32\drivers\tmcomm.sys
2017-10-15 11:31:51 50624 ----a-w- E:\Windows\System32\drivers\nvvad64v.sys
2017-10-15 09:09:14 -------- d-----w- E:\Program Files (x86)\CheckPoint
2017-10-15 09:08:35 -------- d-----w- E:\ProgramData\CheckPoint
2017-10-15 05:39:59 -------- d-----w- E:\Program Files (x86)\Origin Games
2017-10-15 05:35:30 -------- d-----w- E:\Users\a\AppData\Roaming\Origin
2017-10-15 05:34:35 -------- d-----w- E:\Program Files (x86)\Origin
2017-10-15 05:32:38 -------- d-----w- E:\Users\a\.QtWebEngineProcess
2017-10-15 05:32:38 -------- d-----w- E:\Users\a\.Origin
2017-10-15 05:32:35 -------- d-----w- E:\Users\a\AppData\Local\Origin
2017-10-15 05:14:33 -------- d-----w- E:\ProgramData\Origin
2017-10-15 04:47:48 -------- d-----w- E:\Program Files (x86)\Titanfall 2
2017-10-14 22:19:34 18336 ----a-w- E:\Windows\System32\drivers\TVMonitor.sys
2017-10-14 08:55:56 -------- d-----w- E:\Users\a\AppData\Local\TeamViewer
2017-10-14 08:45:43 -------- d-----w- E:\Users\a\AppData\Roaming\TeamViewer
2017-10-14 08:45:39 -------- d-----w- E:\Program Files (x86)\TeamViewer
2017-10-14 07:10:52 75888 ----a-w- E:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2D7AE1E1-F96B-44C2-B90E-86935A035835}\offreg.5256.dll
2017-10-13 11:45:20 -------- d-----w- E:\Program Files (x86)\Amazon.com
2017-10-13 07:53:50 31152 ----a-w- E:\Windows\System32\drivers\pmxdrv.sys
2017-10-13 07:52:31 -------- d-----w- E:\Intel
2017-10-13 07:01:19 -------- d-----w- E:\Program Files\SAMSUNG
2017-10-13 07:01:08 -------- d-----w- E:\ProgramData\Samsung
2017-10-13 06:54:30 -------- d-----w- E:\Program Files (x86)\Battle.net
2017-10-13 06:45:52 -------- d-----w- E:\Windows\System32\appmgmt
2017-10-12 13:34:04 -------- d-----w- E:\Users\a\AppData\Roaming\IDT
2017-10-12 02:19:52 -------- d-----w- E:\Windows\CheckSur
2017-10-12 01:28:43 3928064 ----a-w- E:\Windows\System32\d2d1.dll
2017-10-12 01:28:43 3419136 ----a-w- E:\Windows\SysWow64\d2d1.dll
2017-10-11 13:19:28 -------- d-----w- E:\Users\a\AppData\Local\Deployment
2017-10-11 13:19:28 -------- d-----w- E:\Users\a\AppData\Local\Apps
2017-10-11 12:59:27 6101504 ----a-w- E:\Windows\System32\stlang64.dll
2017-10-11 12:59:27 464384 ----a-w- E:\Windows\System32\slapoi64.dll
2017-10-11 12:59:27 1897984 ----a-w- E:\Windows\System32\IDTNC64.cpl
2017-10-11 12:59:27 1703424 ----a-w- E:\Windows\sttray64.exe
2017-10-11 12:31:46 -------- d-----w- E:\Users\a\AppData\Roaming\TradeSkillMaster
2017-10-11 11:41:42 -------- d-----w- E:\Program Files\CCleaner
2017-10-11 11:27:12 -------- d-----w- E:\Users\a\AppData\Local\HP_Inc
2017-10-11 11:14:45 -------- d-----w- E:\Users\a\AppData\Local\Hewlett-Packard
2017-10-11 11:12:57 -------- d-----w- E:\Users\a\AppData\Roaming\hpqLog
2017-10-11 11:12:11 -------- d-----w- E:\Program Files\IDT
2017-10-11 11:07:51 150016 ----a-w- E:\Windows\SysWow64\staco.dll
2017-10-11 11:07:44 733184 ----a-w- E:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iKernel.dll
2017-10-11 11:07:44 69715 ----a-w- E:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\ctor.dll
2017-10-11 11:07:44 5632 ----a-w- E:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\DotNetInstaller.exe
2017-10-11 11:07:44 32768 ----a-w- E:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\Objectps.dll
2017-10-11 11:07:44 303236 ----a-w- E:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\setup.dll
2017-10-11 11:07:44 266240 ----a-w- E:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iscript.dll
2017-10-11 11:07:44 180356 ----a-w- E:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iGdi.dll
2017-10-11 11:07:44 172032 ----a-w- E:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iuser.dll
2017-10-11 11:07:29 181248 ----a-w- E:\Windows\System32\staco64.dll
2017-10-11 10:53:15 -------- d-----w- E:\Program Files (x86)\Common Files\IObit
2017-10-11 09:32:33 87040 ----a-w- E:\Windows\System32\drivers\WUDFPf.sys
2017-10-11 09:32:33 84992 ----a-w- E:\Windows\System32\WUDFSvc.dll
2017-10-11 09:32:33 744448 ----a-w- E:\Windows\System32\WUDFx.dll
2017-10-11 09:32:33 45056 ----a-w- E:\Windows\System32\WUDFCoinstaller.dll
2017-10-11 09:32:33 229888 ----a-w- E:\Windows\System32\WUDFHost.exe
2017-10-11 09:32:33 198656 ----a-w- E:\Windows\System32\drivers\WUDFRd.sys
2017-10-11 09:32:33 194048 ----a-w- E:\Windows\System32\WUDFPlatform.dll
2017-10-11 09:28:11 31232 ----a-w- E:\Windows\SysWow64\prevhost.exe
2017-10-11 09:28:11 31232 ----a-w- E:\Windows\System32\prevhost.exe
2017-10-11 09:20:30 -------- d-----w- E:\Windows\System32\MRT
2017-10-11 09:20:28 126925120 -c--a-w- E:\Windows\System32\MRT-KB890830.exe
2017-10-11 09:20:15 -------- d-----w- E:\Windows\System32\SRSLabs
2017-10-11 09:14:54 -------- d-----w- E:\Program Files (x86)\VideoLAN
2017-10-11 08:57:05 927544 ----a-w- E:\Windows\System32\vulkan-1.dll
2017-10-11 08:57:05 798008 ----a-w- E:\Windows\SysWow64\vulkan-1.dll
2017-10-11 08:57:05 591160 ----a-w- E:\Windows\System32\vulkaninfo.exe
2017-10-11 08:57:05 490296 ----a-w- E:\Windows\SysWow64\vulkaninfo.exe
2017-10-11 08:57:05 -------- d-----w- E:\Program Files (x86)\VulkanRT
2017-10-11 08:38:46 -------- d-----w- E:\Program Files (x86)\Overwatch
2017-10-11 08:35:39 -------- d-----w- E:\Program Files (x86)\StarCraft
2017-10-11 08:34:54 -------- d-----w- E:\Users\a\AppData\Roaming\.mono
2017-10-11 08:34:54 -------- d-----w- E:\ProgramData\.mono
2017-10-11 08:34:53 -------- d-----w- E:\Users\a\AppData\Local\Blizzard
2017-10-11 08:34:22 -------- d-----w- E:\Program Files (x86)\Hearthstone
2017-10-11 08:21:20 221184 ----a-w- E:\Windows\System32\UIAnimation.dll
2017-10-11 08:21:20 187392 ----a-w- E:\Windows\SysWow64\UIAnimation.dll
2017-10-11 08:21:20 1648128 ----a-w- E:\Windows\System32\DWrite.dll
2017-10-11 08:21:20 1251328 ----a-w- E:\Windows\SysWow64\DWrite.dll
2017-10-11 08:21:20 1180160 ----a-w- E:\Windows\System32\FntCache.dll
2017-10-11 08:21:15 2565120 ----a-w- E:\Windows\System32\d3d10warp.dll
2017-10-11 08:21:15 1987584 ----a-w- E:\Windows\SysWow64\d3d10warp.dll
2017-10-11 08:21:14 647680 ----a-w- E:\Windows\System32\d3d10level9.dll
2017-10-11 08:21:14 603648 ----a-w- E:\Windows\SysWow64\d3d10level9.dll
2017-10-11 08:21:14 2777088 ----a-w- E:\Windows\System32\msmpeg2vdec.dll
2017-10-11 08:21:14 2285056 ----a-w- E:\Windows\SysWow64\msmpeg2vdec.dll
2017-10-11 08:21:12 1424896 ----a-w- E:\Windows\System32\WindowsCodecs.dll
2017-10-11 08:21:12 1230848 ----a-w- E:\Windows\SysWow64\WindowsCodecs.dll
2017-10-11 08:09:23 3229696 ----a-w- E:\Windows\explorer.exe
2017-10-11 08:09:23 2972672 ----a-w- E:\Windows\SysWow64\explorer.exe
2017-10-11 08:08:14 46080 ----a-w- E:\Windows\System32\drivers\tcpipreg.sys
2017-10-11 08:04:35 396800 ----a-w- E:\Windows\System32\webio.dll
2017-10-11 08:04:35 316416 ----a-w- E:\Windows\SysWow64\webio.dll
2017-10-11 08:02:49 353280 ----a-w- E:\Program Files\Common Files\Microsoft Shared\ink\InkDiv.dll
2017-10-11 08:02:49 275456 ----a-w- E:\Windows\System32\InkEd.dll
2017-10-11 08:02:49 274944 ----a-w- E:\Program Files (x86)\Common Files\Microsoft Shared\ink\InkDiv.dll
2017-10-11 08:02:49 216064 ----a-w- E:\Windows\SysWow64\InkEd.dll
2017-10-11 08:02:49 2104320 ----a-w- E:\Program Files\Common Files\Microsoft Shared\ink\InkObj.dll
2017-10-11 08:02:49 18432 ----a-w- E:\Program Files\Common Files\Microsoft Shared\ink\journal.dll
2017-10-11 08:02:49 169984 ----a-w- E:\Program Files\Common Files\Microsoft Shared\ink\rtscom.dll
2017-10-11 08:02:49 16384 ----a-w- E:\Program Files (x86)\Common Files\Microsoft Shared\ink\journal.dll
2017-10-11 08:02:49 1416192 ----a-w- E:\Program Files (x86)\Common Files\Microsoft Shared\ink\InkObj.dll
2017-10-11 08:02:49 126464 ----a-w- E:\Program Files (x86)\Common Files\Microsoft Shared\ink\rtscom.dll
2017-10-11 08:00:58 73664 ----a-w- E:\Windows\System32\drivers\disk.sys
2017-10-11 07:59:37 286720 ----a-w- E:\Program Files (x86)\Common Files\System\Ole DB\msdaora.dll
2017-10-11 07:59:37 176128 ----a-w- E:\Windows\SysWow64\msorcl32.dll
2017-10-11 07:59:37 156672 ----a-w- E:\Windows\System32\mtxoci.dll
2017-10-11 07:59:37 111616 ----a-w- E:\Windows\SysWow64\mtxoci.dll
2017-10-11 07:57:16 7168 ----a-w- E:\Windows\System32\kbdgeoqw.dll
2017-10-11 07:57:16 7168 ----a-w- E:\Windows\System32\KBDAZEL.DLL
2017-10-11 07:57:16 6656 ----a-w- E:\Windows\SysWow64\kbdgeoqw.dll
2017-10-11 07:57:16 6656 ----a-w- E:\Windows\SysWow64\KBDAZEL.DLL
2017-10-11 07:56:00 72192 ----a-w- E:\Windows\System32\aelupsvc.dll
2017-10-11 07:56:00 6656 ----a-w- E:\Windows\System32\shimeng.dll
2017-10-11 07:56:00 5120 ----a-w- E:\Windows\SysWow64\shimeng.dll
2017-10-11 07:56:00 342016 ----a-w- E:\Windows\System32\apphelp.dll
2017-10-11 07:56:00 295936 ----a-w- E:\Windows\SysWow64\apphelp.dll
2017-10-11 07:56:00 23552 ----a-w- E:\Windows\System32\sdbinst.exe
2017-10-11 07:56:00 20992 ----a-w- E:\Windows\SysWow64\sdbinst.exe
2017-10-11 07:54:40 44032 ----a-w- E:\Windows\System32\tsgqec.dll
2017-10-11 07:54:40 3722752 ----a-w- E:\Windows\System32\mstscax.dll
2017-10-11 07:54:40 36864 ----a-w- E:\Windows\SysWow64\tsgqec.dll
2017-10-11 07:54:40 3221504 ----a-w- E:\Windows\SysWow64\mstscax.dll
2017-10-11 07:54:40 158720 ----a-w- E:\Windows\System32\aaclient.dll
2017-10-11 07:54:40 131584 ----a-w- E:\Windows\SysWow64\aaclient.dll
2017-10-11 07:54:02 465920 ----a-w- E:\Windows\System32\WMPhoto.dll
2017-10-11 07:54:02 417792 ----a-w- E:\Windows\SysWow64\WMPhoto.dll
2017-10-11 07:53:29 -------- d-----w- E:\Users\a\AppData\Local\Logitech
2017-10-11 07:52:52 -------- d-----w- E:\Program Files\Logitech Gaming Software
2017-10-11 07:51:35 -------- d-----w- E:\Users\a\AppData\Roaming\Logishrd
2017-10-11 07:51:23 879104 ----a-w- E:\Windows\System32\tdh.dll
2017-10-11 07:51:23 635392 ----a-w- E:\Windows\SysWow64\tdh.dll
2017-10-11 07:47:35 69888 ----a-w- E:\Windows\System32\drivers\stream.sys
2017-10-11 07:44:09 223752 ----a-w- E:\Windows\System32\drivers\fvevol.sys
2017-10-11 07:36:09 68608 ----a-w- E:\Windows\System32\taskhost.exe
2017-10-11 07:28:28 -------- d-----w- E:\Program Files (x86)\TradeSkillMaster Application
2017-10-11 07:17:58 -------- d-----w- E:\Program Files (x86)\IDT
2017-10-11 07:16:35 -------- d-----w- E:\Program Files (x86)\StarCraft II
2017-10-11 07:13:20 -------- d-----w- E:\Users\a\AppData\Roaming\discord
2017-10-11 07:13:12 -------- d-----w- E:\Users\a\AppData\Local\SquirrelTemp
2017-10-11 07:13:12 -------- d-----w- E:\Users\a\AppData\Local\Discord
2017-10-11 07:10:41 1887232 ----a-w- E:\Windows\System32\d3d11.dll
2017-10-11 07:10:41 1505280 ----a-w- E:\Windows\SysWow64\d3d11.dll
2017-10-11 07:10:12 -------- d-----w- E:\Windows\Migration
2017-10-11 07:08:21 -------- d-----w- E:\Program Files (x86)\World of Warcraft
2017-10-11 07:07:44 -------- d-----w- E:\ProgramData\Blizzard Entertainment
2017-10-11 07:07:40 -------- d-----w- E:\Users\a\AppData\Local\CrashDumps
2017-10-11 0748 -------- d-----w- E:\Users\a\AppData\Local\Blizzard Entertainment
2017-10-11 0747 -------- d-----w- E:\Users\a\AppData\Roaming\Battle.net
2017-10-11 0706 -------- d-----w- E:\Program Files (x86)\Blizzard App
2017-10-11 07:05:46 -------- d-----w- E:\Users\a\AppData\Local\Battle.net
2017-10-11 07:05:36 -------- d-----w- E:\ProgramData\Battle.net
2017-10-11 06:58:49 8199504 ----a-w- E:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2017-10-11 06:58:47 13890840 ----a-w- E:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2D7AE1E1-F96B-44C2-B90E-86935A035835}\mpengine.dll
2017-10-11 06:50:22 81408 ----a-w- E:\Windows\System32\imagehlp.dll
2017-10-11 06:50:22 5120 ----a-w- E:\Windows\SysWow64\wmi.dll
2017-10-11 06:50:22 5120 ----a-w- E:\Windows\System32\wmi.dll
2017-10-11 06:50:22 23408 ----a-w- E:\Windows\System32\drivers\fs_rec.sys
2017-10-11 06:50:22 159232 ----a-w- E:\Windows\SysWow64\imagehlp.dll
2017-10-11 06:49:27 4296704 ----a-w- E:\Windows\System32\D3DCompiler_47.dll
2017-10-11 06:49:27 3550208 ----a-w- E:\Windows\SysWow64\D3DCompiler_47.dll
2017-10-11 06:46:59 95744 ----a-w- E:\Windows\System32\synceng.dll
2017-10-11 06:42:43 142336 ----a-w- E:\Windows\System32\poqexec.exe
2017-10-11 06:42:43 123904 ----a-w- E:\Windows\SysWow64\poqexec.exe
2017-10-11 06:40:14 -------- d-----w- E:\Windows\pss
2017-10-11 06:39:21 -------- d-----w- E:\Windows\SysWow64\Wat
2017-10-11 06:39:21 -------- d-----w- E:\Windows\System32\Wat
2017-10-11 06:15:21 -------- d-----w- E:\Windows\Panther
2017-10-11 06:12:08 803328 ----a-w- E:\Windows\SysWow64\FlashPlayerApp.exe
2017-10-11 06:12:08 144896 ----a-w- E:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2017-10-11 06:11:52 -------- d-----w- E:\Users\a\AppData\Local\Adobe
2017-10-11 06:07:23 110144 ----a-w- E:\Windows\System32\WindowsAccessBridge-64.dll
2017-10-11 06:07:12 -------- d-----w- E:\ProgramData\Oracle
2017-10-11 05:59:46 -------- d-----w- E:\Windows\AutoKMS
2017-10-11 05:57:08 -------- d-----w- E:\ProgramData\Microsoft Toolkit
2017-10-11 05:46:57 -------- d-----w- E:\Users\a\AppData\Roaming\qBittorrent
2017-10-11 05:46:44 -------- d-----w- E:\Users\a\AppData\Local\qBittorrent
2017-10-11 05:46:34 -------- d-----w- E:\Program Files\qBittorrent
2017-10-11 05:38:34 -------- d-----w- E:\ProgramData\AomeiBR
2017-10-11 04:52:48 -------- d-----w- E:\Windows\Downloaded Installations
2017-10-11 04:51:04 859648 ----a-w- E:\Windows\System32\IKEEXT.DLL
2017-10-11 04:51:04 830464 ----a-w- E:\Windows\System32\nshwfp.dll
2017-10-11 04:51:04 656896 ----a-w- E:\Windows\SysWow64\nshwfp.dll
2017-10-11 04:51:04 324096 ----a-w- E:\Windows\System32\FWPUCLNT.DLL
2017-10-11 04:51:04 216576 ----a-w- E:\Windows\SysWow64\FWPUCLNT.DLL
2017-10-11 04:48:20 -------- d-----w- E:\Users\a\AppData\Local\Mozilla
2017-10-11 04:46:55 23552 ----a-w- E:\Windows\System32\drivers\tdtcp.sys
2017-10-11 04:44:58 -------- d-----w- E:\Users\a\AppData\Local\NVIDIA
2017-10-11 04:44:57 -------- d-----w- E:\Users\a\AppData\Local\CEF
2017-10-11 04:43:01 -------- d-----w- E:\Users\a\AppData\Local\NVIDIA Corporation
2017-10-11 04:42:38 -------- d-----w- E:\ProgramData\{74E9F814-C737-42CC-B721-DBBC4059367A}
2017-10-11 04:39:57 1951 ----a-w- E:\Windows\NvContainerRecovery.bat
2017-10-11 04:38:28 -------- d-----w- E:\Program Files\NVIDIA Corporation
2017-10-11 04:37:20 122856 ----a-w- E:\Windows\System32\RtNicProp64.dll
2017-10-11 04:37:20 118824 ----a-w- E:\Windows\System32\RTNUninst64.dll
2017-10-11 04:37:20 1075688 ----a-w- E:\Windows\System32\drivers\Rt64win7.sys
2017-10-11 04:37:07 1615472 ----a-w- E:\Windows\System32\nvhdagenco6420103.dll
2017-10-11 03:47:08 200272 ----a-w- E:\Windows\System32\drivers\TeeDriverx64.sys
2017-10-11 03:44:23 4172536 ----a-w- E:\Windows\System32\drivers\athrx.sys
2017-10-11 03:44:13 9728 ----a-w- E:\Windows\System32\Wdfres.dll
2017-10-11 03:44:13 785512 ----a-w- E:\Windows\System32\drivers\Wdf01000.sys
2017-10-11 03:44:13 54376 ----a-w- E:\Windows\System32\drivers\WdfLdr.sys
2017-10-11 03:44:13 2560 ----a-w- E:\Windows\System32\drivers\en-US\wdf01000.sys.mui
2017-10-11 03:44:09 32840 ----a-w- E:\Windows\System32\drivers\ETDSMBus.sys
2017-10-11 03:44:09 1804696 ----a-w- E:\Windows\System32\WdfCoInstaller01011.dll
2017-10-11 03:34:45 -------- d-----w- E:\Users\a\AppData\Local\ElevatedDiagnostics
2017-10-11 03:24:35 -------- d-----w- E:\Program Files (x86)\Common Files\postureAgent
2017-10-11 03:24:19 -------- d-----w- E:\Users\a\AppData\Roaming\WinBatch
2017-10-11 03:23:50 -------- d-----w- E:\Windows\IObit
2017-10-11 03:23:50 -------- d-----w- E:\ProgramData\ProductData
2017-10-11 03:22:46 27552 ----a-w- E:\Windows\SysWow64\drivers\HWiNFO64A.SYS
2017-10-11 03:22:46 -------- d-----w- E:\ProgramData\IObit
2017-10-11 03:22:36 -------- d-----w- E:\Users\a\AppData\Roaming\IObit
2017-10-11 03:22:32 -------- d-----w- E:\Users\a\AppData\Local\Programs
2017-10-11 03:21:06 25312 ----a-r- E:\Windows\System32\drivers\SCMNdisP.sys
2017-10-11 03:20:42 -------- d-sh--w- E:\Windows\Installer
2017-09-13 23:20:30 798008 ----a-w- E:\Windows\SysWow64\vulkan-1-1-0-61-0.dll
2017-09-13 23:20:14 490296 ----a-w- E:\Windows\SysWow64\vulkaninfo-1-1-0-61-0.exe
2017-09-13 23:19:50 927544 ----a-w- E:\Windows\System32\vulkan-1-1-0-61-0.dll
2017-09-13 23:19:38 591160 ----a-w- E:\Windows\System32\vulkaninfo-1-1-0-61-0.exe
2017-09-06 21:45:26 38656 ----a-w- E:\Windows\System32\drivers\tap-tb-0901.sys
.
==================== Find6M ====================
.
2017-10-11 07:56:00 562176 ----a-w- E:\Windows\apppatch\AcLayers.dll
2017-10-11 07:56:00 470528 ----a-w- E:\Windows\apppatch\AcSpecfc.dll
2017-10-11 07:56:00 350208 ----a-w- E:\Windows\apppatch\AppPatch64\AcLayers.dll
2017-10-11 07:56:00 211968 ----a-w- E:\Windows\apppatch\AcXtrnal.dll
2017-10-11 07:56:00 135168 ----a-w- E:\Windows\apppatch\AppPatch64\AcXtrnal.dll
2017-10-11 07:56:00 103424 ----a-w- E:\Windows\apppatch\AppPatch64\acspecfc.dll
2017-10-11 06:39:24 419840 ----a-w- E:\Windows\System32\systemcpl.dll
2017-10-11 06:39:24 14848 ----a-w- E:\Windows\System32\slwga.dll
2017-10-11 06:39:24 13824 ----a-w- E:\Windows\SysWow64\slwga.dll
2017-10-11 01:05:52 1796032 ----a-w- E:\Windows\System32\nvspcap64.dll
2017-10-11 01:05:52 1577920 ----a-w- E:\Windows\SysWow64\nvspcap.dll
2017-10-11 01:05:51 918976 ----a-w- E:\Windows\System32\NvRtmpStreamer64.dll
2017-10-11 01:05:47 186304 ----a-w- E:\Windows\System32\nvaudcap64v.dll
2017-10-11 01:05:47 152512 ----a-w- E:\Windows\SysWow64\nvaudcap32v.dll
2017-10-10 23:26:14 1951 ----a-w- E:\Windows\NvTelemetryContainerRecovery.bat
2017-10-06 11:44:54 5960312 ----a-w- E:\Windows\System32\nvcpl.dll
2017-10-06 11:44:54 2587584 ----a-w- E:\Windows\System32\nvsvc64.dll
2017-10-06 11:44:52 81856 ----a-w- E:\Windows\System32\nv3dappshextr.dll
2017-10-06 11:44:52 607168 ----a-w- E:\Windows\System32\nv3dappshext.dll
2017-10-06 11:44:52 449656 ----a-w- E:\Windows\System32\nvmctray.dll
2017-10-06 11:44:52 1766520 ----a-w- E:\Windows\System32\nvsvcr.dll
2017-10-06 11:44:52 122816 ----a-w- E:\Windows\System32\nvshext.dll
2017-09-29 15:02:33 8257351 ----a-w- E:\Windows\System32\nvcoproc.bin
2017-09-19 07:23:48 1755072 ----a-w- E:\Windows\System32\nvspbridge64.dll
2017-09-19 07:23:47 1317312 ----a-w- E:\Windows\SysWow64\nvspbridge.dll
2017-09-16 19:23:33 512960 ----a-w- E:\Windows\System32\OpenCL.dll
2017-09-16 19:23:33 418752 ----a-w- E:\Windows\SysWow64\OpenCL.dll
2017-09-16 19:23:33 1988216 ----a-w- E:\Windows\System32\nvdispco6438569.dll
2017-09-16 19:23:33 1606592 ----a-w- E:\Windows\System32\nvdispgenco6438569.dll
2017-09-13 15:33:50 631176 ----a-w- E:\Windows\System32\winresume.efi
2017-09-13 15:32:36 706792 ----a-w- E:\Windows\System32\winload.efi
2017-09-13 15:32:35 5547752 ----a-w- E:\Windows\System32\ntoskrnl.exe
2017-09-13 15:32:33 95464 ----a-w- E:\Windows\System32\drivers\ksecdd.sys
2017-09-13 15:32:33 154856 ----a-w- E:\Windows\System32\drivers\ksecpkg.sys
2017-09-13 15:31:56 1732864 ----a-w- E:\Windows\System32\ntdll.dll
2017-09-13 15:27:59 731648 ----a-w- E:\Windows\System32\kerberos.dll
2017-09-13 15:13:35 4001512 ----a-w- E:\Windows\SysWow64\ntkrnlpa.exe
2017-09-13 15:13:35 3945704 ----a-w- E:\Windows\SysWow64\ntoskrnl.exe
2017-09-13 15:10:46 1314112 ----a-w- E:\Windows\SysWow64\ntdll.dll
2017-09-13 15:08:59 554496 ----a-w- E:\Windows\SysWow64\kerberos.dll
2017-09-13 15:05:20 324608 ----a-w- E:\Windows\System32\drivers\nwifi.sys
2017-09-13 15:00:54 148480 ----a-w- E:\Windows\System32\appidpolicyconverter.exe
2017-09-13 15:00:50 62464 ----a-w- E:\Windows\System32\drivers\appid.sys
2017-09-13 15:00:50 17920 ----a-w- E:\Windows\System32\appidcertstorecheck.exe
2017-09-13 15:00:10 64000 ----a-w- E:\Windows\System32\auditpol.exe
2017-09-13 14:57:12 338432 ----a-w- E:\Windows\System32\conhost.exe
2017-09-13 14:56:20 296960 ----a-w- E:\Windows\System32\rstrui.exe
2017-09-13 14:53:40 159744 ----a-w- E:\Windows\System32\drivers\mrxsmb.sys
2017-09-13 14:53:06 291328 ----a-w- E:\Windows\System32\drivers\mrxsmb10.sys
2017-09-13 14:53:04 129536 ----a-w- E:\Windows\System32\drivers\mrxsmb20.sys
2017-09-13 14:52:23 30720 ----a-w- E:\Windows\System32\lsass.exe
2017-09-13 14:52:20 112640 ----a-w- E:\Windows\System32\smss.exe
2017-09-13 14:50:26 50176 ----a-w- E:\Windows\SysWow64\auditpol.exe
2017-09-13 14:47:00 25600 ----a-w- E:\Windows\SysWow64\setup16.exe
2017-09-13 14:46:59 7680 ----a-w- E:\Windows\SysWow64\instnm.exe
2017-09-13 14:46:59 14336 ----a-w- E:\Windows\SysWow64\ntvdm64.dll
2017-09-13 14:46:58 2048 ----a-w- E:\Windows\SysWow64\user.exe
2017-09-13 14:46:13 36352 ----a-w- E:\Windows\SysWow64\cryptbase.dll
2017-09-13 14:46:06 6144 ---ha-w- E:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2017-09-13 14:46:06 4608 ---ha-w- E:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2017-09-13 14:46:06 3584 ---ha-w- E:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2017-09-13 14:46:06 3072 ---ha-w- E:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2017-09-08 15:34:37 1680616 ----a-w- E:\Windows\System32\drivers\ntfs.sys
2017-09-08 15:30:58 2319872 ----a-w- E:\Windows\System32\tquery.dll
2017-09-08 15:30:58 149504 ----a-w- E:\Windows\System32\t2embed.dll
2017-09-08 15:30:53 2058240 ----a-w- E:\Windows\System32\Query.dll
2017-09-08 15:30:48 99840 ----a-w- E:\Windows\System32\mssprxy.dll
2017-09-08 15:30:48 778240 ----a-w- E:\Windows\System32\mssvp.dll
2017-09-08 15:30:48 75264 ----a-w- E:\Windows\System32\msscntrs.dll
2017-09-08 15:30:48 491520 ----a-w- E:\Windows\System32\mssph.dll
2017-09-08 15:30:48 288256 ----a-w- E:\Windows\System32\mssphtb.dll
2017-09-08 15:30:48 2222080 ----a-w- E:\Windows\System32\mssrch.dll
2017-09-08 15:30:48 14336 ----a-w- E:\Windows\System32\msshooks.dll
2017-09-08 15:30:48 115200 ----a-w- E:\Windows\System32\mssitlb.dll
2017-09-08 15:30:44 405504 ----a-w- E:\Windows\System32\gdi32.dll
2017-09-08 15:14:08 591872 ----a-w- E:\Windows\System32\SearchIndexer.exe
2017-09-08 15:13:47 249856 ----a-w- E:\Windows\System32\SearchProtocolHost.exe
2017-09-08 15:13:17 113664 ----a-w- E:\Windows\System32\SearchFilterHost.exe
2017-09-08 15:10:06 312832 ----a-w- E:\Windows\SysWow64\gdi32.dll
2017-09-08 15:10:05 1549824 ----a-w- E:\Windows\SysWow64\tquery.dll
2017-09-08 15:10:04 109568 ----a-w- E:\Windows\SysWow64\t2embed.dll
2017-09-08 15:10:01 1363968 ----a-w- E:\Windows\SysWow64\Query.dll
2017-09-08 15:09:57 666624 ----a-w- E:\Windows\SysWow64\mssvp.dll
2017-09-08 15:09:57 59392 ----a-w- E:\Windows\SysWow64\msscntrs.dll
2017-09-08 15:09:57 34816 ----a-w- E:\Windows\SysWow64\mssprxy.dll
2017-09-08 15:09:57 337408 ----a-w- E:\Windows\SysWow64\mssph.dll
2017-09-08 15:09:57 197120 ----a-w- E:\Windows\SysWow64\mssphtb.dll
2017-09-08 15:09:57 1400320 ----a-w- E:\Windows\SysWow64\mssrch.dll
2017-09-08 15:09:57 104448 ----a-w- E:\Windows\SysWow64\mssitlb.dll
2017-09-08 15:00:25 3222016 ----a-w- E:\Windows\System32\win32k.sys
2017-09-08 15:00:05 427520 ----a-w- E:\Windows\SysWow64\SearchIndexer.exe
2017-09-08 15:00:01 164352 ----a-w- E:\Windows\SysWow64\SearchProtocolHost.exe
2017-09-08 14:59:28 86528 ----a-w- E:\Windows\SysWow64\SearchFilterHost.exe
2017-09-08 14:59:17 9728 ----a-w- E:\Windows\SysWow64\msshooks.dll
2017-09-08 14:20:51 8704 ----a-w- E:\Windows\SysWow64\msjint40.dll
2017-09-08 14:20:51 640512 ----a-w- E:\Windows\SysWow64\mswstr10.dll
2017-09-08 14:20:50 345088 ----a-w- E:\Windows\SysWow64\msexcl40.dll
2017-09-07 21:38:01 2724864 ----a-w- E:\Windows\System32\mshtml.tlb
2017-09-07 21:37:46 4096 ----a-w- E:\Windows\System32\ieetwcollectorres.dll
2017-09-07 21:19:26 66560 ----a-w- E:\Windows\System32\iesetup.dll
.
============= FINISH: 8:39:59.09 ===============
Attached Files
File Type: rar Attach.rar (2.3 KB, 12 views)
joe7dust is offline  
Sponsored Links
Advertisement
 
Old 10-17-2017, 07:27 AM   #2
Registered Member
 
Join Date: May 2009
Posts: 264
OS:



I went ahead and ran combo fix, did not think it would make any modifications without asking me and thought it would just give some additional scan info. I guess I should have followed the instructions about that... because it removed one of my programs and made some small adjustments. (I now have a power option on my monitor or screensaver which wasn't like that before.)

The log is attached. Btw, what is that stuff under "locked registry" keys? I've never heard that term before and the entries there have a couple of strange names also.
Attached Files
File Type: txt cflog.txt (23.8 KB, 15 views)
joe7dust is offline  
Closed Thread

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Similar Threads
Thread Thread Starter Forum Replies Last Post
XP Security 2011/Java-CVE-2010/Cycbot Removal
Hey, everybody. Here's the lowdown: A couple of months ago my sister accidentally sent me the XP Security 2011 virus in a .JPG attached to her e-mail. (I know it was her, alas, as that's how she caught the exact same virus.) I took my PC to a local computer company and paid good money to...
KeithEKimball Resolved HJT Threads 20 08-15-2011 03:34 PM
Laptop barely works, can't access task manager
No access to a Windows install disc or a boot CD Computer takes way too long to start. Takes way too long to restart and shut down. The internet shuts off after a couple of hours and I have to restart the computer. Pop-up keeps appearing even when a web page isn't open....
BalloonBottle Resolved HJT Threads 21 07-25-2011 02:36 PM
"The memory could not be written"
Hi. I appreciate any help you could provide. Recently, I started getting an error that popped up when I run Real Player. Now, anytime I try to install a program I get an application error referencing memory at "0x71ab4a07" and am unable to complete installation. Here is the specific message when...
calbum2 Inactive Malware Help Topics 6 05-09-2011 07:32 AM
Windows 7 Recovery Problem
Hello, I first got this about a month ago as "Win 7 2011 Security Alert" which wouldn't let me open internet explorer, disabled malwarebytes and caused general chaos. I managed to get malware bytes open by running an antivirus scan (Panda) and then malware bytes could update and detect/remove...
RichieFth Virus/Trojan/Spyware Help 21 04-28-2011 01:08 PM
XP security center
Hi, using XP SP3, with up to date AVG free. Using other PC to post this. I got the XP security center malware while browsing. I can not open exe files (but get no prompts like for missing associations for example, anything I have tried like Firefox, etc. I can navigate in windows explorer...
rgmm Resolved HJT Threads 16 04-09-2011 08:00 AM

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is on
Smilies are on
[IMG] code is on
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Post a Question


» Site Navigation
 > FAQ
  > 10.0.0.2
Powered by vBadvanced CMPS v3.2.3


All times are GMT -7. The time now is 07:06 AM.


Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2020, vBulletin Solutions, Inc.
vBulletin Security provided by vBSecurity v2.2.2 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
User Alert System provided by Advanced User Tagging v3.1.0 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
Copyright 2001 - 2018, Tech Support Forum

Windows 10 - Windows 7 - Windows XP - Windows Vista - Trojan Removal - Spyware Removal - Virus Removal - Networking - Security - Top Web Hosts