19:33:40.0535 0x2644 TDSS rootkit removing tool 2.9.2.0 Aug 15 2013 16:44:291

1. 19:33:40.0535 0x2644 TDSS rootkit removing tool 2.9.2.0 Aug 15 2013 16:44:29
2. 19:33:41.0055 0x2644 ============================================================
3. 19:33:41.0055 0x2644 Current date / time: 2013/09/14 19:33:41.0055
4. 19:33:41.0055 0x2644 SystemInfo:
5. 19:33:41.0055 0x2644
6. 19:33:41.0055 0x2644 OS Version: 6.1.7601 ServicePack: 1.0
7. 19:33:41.0055 0x2644 Product type: Workstation
8. 19:33:41.0055 0x2644 ComputerName: HPI5-PC
9. 19:33:41.0056 0x2644 UserName: Max
10. 19:33:41.0056 0x2644 Windows directory: C:\Windows
11. 19:33:41.0056 0x2644 System windows directory: C:\Windows
12. 19:33:41.0056 0x2644 Running under WOW64
13. 19:33:41.0056 0x2644 Processor architecture: Intel x64
14. 19:33:41.0056 0x2644 Number of processors: 4
15. 19:33:41.0056 0x2644 Page size: 0x1000
16. 19:33:41.0056 0x2644 Boot type: Normal boot
17. 19:33:41.0056 0x2644 ============================================================
18. 19:33:41.0663 0x2644 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19. 19:33:41.0669 0x2644 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB5E00 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
20. 19:33:41.0671 0x2644 ============================================================
21. 19:33:41.0671 0x2644 \Device\Harddisk0\DR0:
22. 19:33:41.0671 0x2644 MBR partitions:
23. 19:33:41.0671 0x2644 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
24. 19:33:41.0671 0x2644 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353000
25. 19:33:41.0671 0x2644 \Device\Harddisk1\DR1:
26. 19:33:41.0671 0x2644 GPT partitions:
27. 19:33:41.0673 0x2644 \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {A892B4DD-509A-458D-8ADD-E69C928B5157}, Name: EFI System Partition, StartLBA 0x28, BlocksNum 0x64000
28. 19:33:41.0673 0x2644 \Device\Harddisk1\DR1\Partition2: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {23ED9B72-CBB3-4F88-86A7-2F9098756F5B}, Name: Basic data partition, StartLBA 0x64800, BlocksNum 0x746A2000
29. 19:33:41.0673 0x2644 MBR partitions:
30. 19:33:41.0673 0x2644 ============================================================
31. 19:33:41.0727 0x2644 C: <-> \Device\Harddisk0\DR0\Partition2
32. 19:33:42.0135 0x2644 F: <-> \Device\Harddisk1\DR1\Partition2
33. 19:33:42.0136 0x2644 ============================================================
34. 19:33:42.0136 0x2644 Initialize success
35. 19:33:42.0136 0x2644 ============================================================
36. 19:33:43.0437 0x2248 ============================================================
37. 19:33:43.0437 0x2248 Scan started
38. 19:33:43.0437 0x2248 Mode: Manual;
39. 19:33:43.0437 0x2248 ============================================================
40. 19:33:43.0722 0x2248 ================ Scan system memory ========================
41. 19:33:43.0722 0x2248 System memory - ok
42. 19:33:43.0723 0x2248 ================ Scan services =============================
43. 19:33:44.0029 0x2248 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
44. 19:33:44.0032 0x2248 1394ohci - ok
45. 19:33:44.0089 0x2248 [ 5C368F4B04ED2A923E6AFCA2D37BAFF5 ] Accelerometer C:\Windows\system32\DRIVERS\Accelerometer.sys
46. 19:33:44.0091 0x2248 Accelerometer - ok
47. 19:33:44.0130 0x2248 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys
48. 19:33:44.0134 0x2248 ACPI - ok
49. 19:33:44.0169 0x2248 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
50. 19:33:44.0171 0x2248 AcpiPmi - ok
51. 19:33:44.0404 0x2248 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
52. 19:33:44.0406 0x2248 AdobeARMservice - ok
53. 19:33:45.0204 0x2248 [ 7BBAF543CABE8A8D275BC7F6C66C1959 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
54. 19:33:45.0208 0x2248 AdobeFlashPlayerUpdateSvc - ok
55. 19:33:45.0253 0x2248 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
56. 19:33:45.0259 0x2248 adp94xx - ok
57. 19:33:45.0328 0x2248 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\drivers\adpahci.sys
58. 19:33:45.0332 0x2248 adpahci - ok
59. 19:33:45.0351 0x2248 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
60. 19:33:45.0354 0x2248 adpu320 - ok
61. 19:33:45.0386 0x2248 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
62. 19:33:45.0387 0x2248 AeLookupSvc - ok
63. 19:33:45.0503 0x2248 [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe
64. 19:33:45.0505 0x2248 AESTFilters - ok
65. 19:33:45.0585 0x2248 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys
66. 19:33:45.0590 0x2248 AFD - ok
67. 19:33:45.0632 0x2248 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys
68. 19:33:45.0633 0x2248 agp440 - ok
69. 19:33:45.0669 0x2248 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe
70. 19:33:45.0671 0x2248 ALG - ok
71. 19:33:45.0729 0x2248 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys
72. 19:33:45.0730 0x2248 aliide - ok
73. 19:33:45.0781 0x2248 [ 48619A29F9C9C3CFEB66718DD03D8057 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
74. 19:33:45.0784 0x2248 AMD External Events Utility - ok
75. 19:33:45.0835 0x2248 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys
76. 19:33:45.0837 0x2248 amdide - ok
77. 19:33:45.0873 0x2248 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
78. 19:33:45.0875 0x2248 AmdK8 - ok
79. 19:33:46.0266 0x2248 [ 06BF0785DE714637EBA9BB1084B28626 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys
80. 19:33:46.0435 0x2248 amdkmdag - ok
81. 19:33:46.0556 0x2248 [ 2DEC3274589FF6889AB05ADCEEB0F642 ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys
82. 19:33:46.0560 0x2248 amdkmdap - ok
83. 19:33:46.0589 0x2248 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
84. 19:33:46.0591 0x2248 AmdPPM - ok
85. 19:33:46.0645 0x2248 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys
86. 19:33:46.0647 0x2248 amdsata - ok
87. 19:33:46.0677 0x2248 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
88. 19:33:46.0680 0x2248 amdsbs - ok
89. 19:33:46.0710 0x2248 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys
90. 19:33:46.0712 0x2248 amdxata - ok
91. 19:33:46.0753 0x2248 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys
92. 19:33:46.0755 0x2248 AppID - ok
93. 19:33:46.0784 0x2248 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll
94. 19:33:46.0785 0x2248 AppIDSvc - ok
95. 19:33:46.0824 0x2248 [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo C:\Windows\System32\appinfo.dll
96. 19:33:46.0825 0x2248 Appinfo - ok
97. 19:33:46.0895 0x2248 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
98. 19:33:46.0897 0x2248 Apple Mobile Device - ok
99. 19:33:47.0009 0x2248 [ 905C7BDE252C191CCB28615FD26BFD99 ] Application Sendori C:\Program Files (x86)\Sendori\SendoriSvc.exe
100. 19:33:47.0010 0x2248 Application Sendori - ok
101. 19:33:47.0089 0x2248 [ 72116413CF0092A6DFB4BF7775EF7E0F ] Application Updater C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
102. 19:33:47.0097 0x2248 Application Updater - ok
103. 19:33:47.0149 0x2248 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\drivers\arc.sys
104. 19:33:47.0150 0x2248 arc - ok
105. 19:33:47.0169 0x2248 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\drivers\arcsas.sys
106. 19:33:47.0171 0x2248 arcsas - ok
107. 19:33:47.0285 0x2248 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
108. 19:33:47.0312 0x2248 aspnet_state - ok
109. 19:33:47.0363 0x2248 [ A83C9C15680BB9E270ACF7172068E287 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
110. 19:33:47.0364 0x2248 aswFsBlk - ok
111. 19:33:47.0454 0x2248 [ 5C40B8D77EBEE1DE0E7A8CDD0CD75773 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
112. 19:33:47.0456 0x2248 aswMonFlt - ok
113. 19:33:47.0538 0x2248 [ 997F6977294B9ACB7F400431DF8E3A4A ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
114. 19:33:47.0539 0x2248 aswRdr - ok
115. 19:33:47.0613 0x2248 [ 286193DC28CFB4CEB8D378E20A0850A9 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
116. 19:33:47.0615 0x2248 aswRvrt - ok
117. 19:33:47.0662 0x2248 [ 58B93BA20D4693D0800D2B0A62B8059D ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
118. 19:33:47.0673 0x2248 aswSnx - ok
119. 19:33:47.0732 0x2248 [ EC7148DB4D126C81426A67602822E62C ] aswSP C:\Windows\system32\drivers\aswSP.sys
120. 19:33:47.0737 0x2248 aswSP - ok
121. 19:33:47.0770 0x2248 [ 0E422E9CB7CD9C0AA6D4DFEAFA086EAA ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
122. 19:33:47.0772 0x2248 aswTdi - ok
123. 19:33:47.0815 0x2248 [ 9FE455C916C656144B004E3EB48507CE ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
124. 19:33:47.0818 0x2248 aswVmm - ok
125. 19:33:47.0861 0x2248 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
126. 19:33:47.0862 0x2248 AsyncMac - ok
127. 19:33:47.0917 0x2248 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys
128. 19:33:47.0919 0x2248 atapi - ok
129. 19:33:48.0012 0x2248 [ 2D648572BA9A610952FCAFBA1E119C2D ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys
130. 19:33:48.0014 0x2248 AtiHdmiService - ok
131. 19:33:48.0064 0x2248 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
132. 19:33:48.0071 0x2248 AudioEndpointBuilder - ok
133. 19:33:48.0082 0x2248 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll
134. 19:33:48.0087 0x2248 AudioSrv - ok
135. 19:33:48.0160 0x2248 [ 9330941C8F6DF417F6DBBE998DB6687E ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
136. 19:33:48.0160 0x2248 avast! Antivirus - ok
137. 19:33:48.0191 0x2248 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll
138. 19:33:48.0194 0x2248 AxInstSV - ok
139. 19:33:48.0231 0x2248 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys
140. 19:33:48.0236 0x2248 b06bdrv - ok
141. 19:33:48.0272 0x2248 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
142. 19:33:48.0276 0x2248 b57nd60a - ok
143. 19:33:48.0316 0x2248 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll
144. 19:33:48.0318 0x2248 BDESVC - ok
145. 19:33:48.0357 0x2248 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys
146. 19:33:48.0358 0x2248 Beep - ok
147. 19:33:48.0411 0x2248 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll
148. 19:33:48.0418 0x2248 BFE - ok
149. 19:33:48.0466 0x2248 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\System32\qmgr.dll
150. 19:33:48.0477 0x2248 BITS - ok
151. 19:33:48.0514 0x2248 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
152. 19:33:48.0516 0x2248 blbdrive - ok
153. 19:33:48.0580 0x2248 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
154. 19:33:48.0585 0x2248 Bonjour Service - ok
155. 19:33:48.0624 0x2248 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
156. 19:33:48.0626 0x2248 bowser - ok
157. 19:33:48.0662 0x2248 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
158. 19:33:48.0663 0x2248 BrFiltLo - ok
159. 19:33:48.0707 0x2248 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
160. 19:33:48.0708 0x2248 BrFiltUp - ok
161. 19:33:48.0758 0x2248 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
162. 19:33:48.0760 0x2248 BridgeMP - ok
163. 19:33:48.0802 0x2248 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll
164. 19:33:48.0805 0x2248 Browser - ok
165. 19:33:48.0847 0x2248 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys
166. 19:33:48.0851 0x2248 Brserid - ok
167. 19:33:48.0876 0x2248 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
168. 19:33:48.0877 0x2248 BrSerWdm - ok
169. 19:33:48.0905 0x2248 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
170. 19:33:48.0906 0x2248 BrUsbMdm - ok
171. 19:33:48.0913 0x2248 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
172. 19:33:48.0914 0x2248 BrUsbSer - ok
173. 19:33:48.0942 0x2248 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
174. 19:33:48.0944 0x2248 BTHMODEM - ok
175. 19:33:49.0001 0x2248 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll
176. 19:33:49.0003 0x2248 bthserv - ok
177. 19:33:49.0042 0x2248 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
178. 19:33:49.0044 0x2248 cdfs - ok
179. 19:33:49.0099 0x2248 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
180. 19:33:49.0102 0x2248 cdrom - ok
181. 19:33:49.0140 0x2248 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll
182. 19:33:49.0143 0x2248 CertPropSvc - ok
183. 19:33:49.0179 0x2248 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys
184. 19:33:49.0180 0x2248 circlass - ok
185. 19:33:49.0213 0x2248 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys
186. 19:33:49.0217 0x2248 CLFS - ok
187. 19:33:49.0291 0x2248 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
188. 19:33:49.0293 0x2248 clr_optimization_v2.0.50727_32 - ok
189. 19:33:49.0358 0x2248 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
190. 19:33:49.0360 0x2248 clr_optimization_v2.0.50727_64 - ok
191. 19:33:49.0461 0x2248 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
192. 19:33:49.0546 0x2248 clr_optimization_v4.0.30319_32 - ok
193. 19:33:49.0573 0x2248 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
194. 19:33:49.0608 0x2248 clr_optimization_v4.0.30319_64 - ok
195. 19:33:49.0650 0x2248 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
196. 19:33:49.0651 0x2248 CmBatt - ok
197. 19:33:49.0683 0x2248 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys
198. 19:33:49.0684 0x2248 cmdide - ok
199. 19:33:49.0750 0x2248 [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG C:\Windows\system32\Drivers\cng.sys
200. 19:33:49.0756 0x2248 CNG - ok
201. 19:33:49.0807 0x2248 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
202. 19:33:49.0808 0x2248 Compbatt - ok
203. 19:33:49.0840 0x2248 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys
204. 19:33:49.0841 0x2248 CompositeBus - ok
205. 19:33:49.0862 0x2248 COMSysApp - ok
206. 19:33:49.0943 0x2248 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
207. 19:33:49.0944 0x2248 crcdisk - ok
208. 19:33:49.0989 0x2248 [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc C:\Windows\system32\cryptsvc.dll
209. 19:33:49.0992 0x2248 CryptSvc - ok
210. 19:33:50.0066 0x2248 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll
211. 19:33:50.0075 0x2248 DcomLaunch - ok
212. 19:33:50.0119 0x2248 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll
213. 19:33:50.0124 0x2248 defragsvc - ok
214. 19:33:50.0193 0x2248 [ 2B9A817DC1BDAD9CE5495099B6A7136A ] Desura Install Service C:\Program Files (x86)\Common Files\Desura\desura_service.exe
215. 19:33:50.0196 0x2248 Desura Install Service - ok
216. 19:33:50.0229 0x2248 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
217. 19:33:50.0231 0x2248 DfsC - ok
218. 19:33:50.0280 0x2248 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll
219. 19:33:50.0286 0x2248 Dhcp - ok
220. 19:33:50.0305 0x2248 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys
221. 19:33:50.0307 0x2248 discache - ok
222. 19:33:50.0340 0x2248 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\drivers\disk.sys
223. 19:33:50.0343 0x2248 Disk - ok
224. 19:33:50.0411 0x2248 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll
225. 19:33:50.0415 0x2248 Dnscache - ok
226. 19:33:50.0468 0x2248 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll
227. 19:33:50.0472 0x2248 dot3svc - ok
228. 19:33:50.0511 0x2248 [ B42ED0320C6E41102FDE0005154849BB ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
229. 19:33:50.0514 0x2248 Dot4 - ok
230. 19:33:50.0563 0x2248 [ E9F5969233C5D89F3C35E3A66A52A361 ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
231. 19:33:50.0567 0x2248 Dot4Print - ok
232. 19:33:50.0625 0x2248 [ FD05A02B0370BC3000F402E543CA5814 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
233. 19:33:50.0627 0x2248 dot4usb - ok
234. 19:33:50.0652 0x2248 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll
235. 19:33:50.0655 0x2248 DPS - ok
236. 19:33:50.0703 0x2248 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
237. 19:33:50.0704 0x2248 drmkaud - ok
238. 19:33:50.0749 0x2248 [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01 C:\Windows\system32\DRIVERS\dtsoftbus01.sys
239. 19:33:50.0752 0x2248 dtsoftbus01 - ok
240. 19:33:50.0824 0x2248 [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
241. 19:33:50.0835 0x2248 DXGKrnl - ok
242. 19:33:50.0876 0x2248 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll
243. 19:33:50.0878 0x2248 EapHost - ok
244. 19:33:51.0000 0x2248 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\drivers\evbda.sys
245. 19:33:51.0052 0x2248 ebdrv - ok
246. 19:33:51.0089 0x2248 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe
247. 19:33:51.0093 0x2248 EFS - ok
248. 19:33:51.0163 0x2248 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
249. 19:33:51.0172 0x2248 ehRecvr - ok
250. 19:33:51.0210 0x2248 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe
251. 19:33:51.0212 0x2248 ehSched - ok
252. 19:33:51.0257 0x2248 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\drivers\elxstor.sys
253. 19:33:51.0263 0x2248 elxstor - ok
254. 19:33:51.0280 0x2248 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys
255. 19:33:51.0282 0x2248 ErrDev - ok
256. 19:33:51.0335 0x2248 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll
257. 19:33:51.0341 0x2248 EventSystem - ok
258. 19:33:51.0358 0x2248 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys
259. 19:33:51.0361 0x2248 exfat - ok
260. 19:33:51.0380 0x2248 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys
261. 19:33:51.0383 0x2248 fastfat - ok
262. 19:33:51.0442 0x2248 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe
263. 19:33:51.0451 0x2248 Fax - ok
264. 19:33:51.0475 0x2248 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\drivers\fdc.sys
265. 19:33:51.0476 0x2248 fdc - ok
266. 19:33:51.0515 0x2248 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll
267. 19:33:51.0517 0x2248 fdPHost - ok
268. 19:33:51.0540 0x2248 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll
269. 19:33:51.0543 0x2248 FDResPub - ok
270. 19:33:51.0570 0x2248 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
271. 19:33:51.0572 0x2248 FileInfo - ok
272. 19:33:51.0600 0x2248 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
273. 19:33:51.0601 0x2248 Filetrace - ok
274. 19:33:51.0698 0x2248 [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
275. 19:33:51.0707 0x2248 FLEXnet Licensing Service - ok
276. 19:33:51.0742 0x2248 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
277. 19:33:51.0743 0x2248 flpydisk - ok
278. 19:33:51.0786 0x2248 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
279. 19:33:51.0789 0x2248 FltMgr - ok
280. 19:33:51.0859 0x2248 [ C4C183E6551084039EC862DA1C945E3D ] FontCache C:\Windows\system32\FntCache.dll
281. 19:33:51.0872 0x2248 FontCache - ok
282. 19:33:51.0928 0x2248 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
283. 19:33:51.0931 0x2248 FontCache3.0.0.0 - ok
284. 19:33:51.0947 0x2248 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
285. 19:33:51.0949 0x2248 FsDepends - ok
286. 19:33:52.0029 0x2248 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
287. 19:33:52.0031 0x2248 Fs_Rec - ok
288. 19:33:52.0079 0x2248 [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
289. 19:33:52.0083 0x2248 fvevol - ok
290. 19:33:52.0145 0x2248 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
291. 19:33:52.0147 0x2248 gagp30kx - ok
292. 19:33:52.0196 0x2248 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
293. 19:33:52.0198 0x2248 GEARAspiWDM - ok
294. 19:33:52.0251 0x2248 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll
295. 19:33:52.0261 0x2248 gpsvc - ok
296. 19:33:52.0314 0x2248 [ 1E6438D4EA6E1174A3B3B1EDC4DE660B ] hamachi C:\Windows\system32\DRIVERS\hamachi.sys
297. 19:33:52.0316 0x2248 hamachi - ok
298. 19:33:52.0422 0x2248 [ B1E3F445943F06E36DC079AF28D0F86B ] Hamachi2Svc C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
299. 19:33:52.0445 0x2248 Hamachi2Svc - ok
300. 19:33:52.0471 0x2248 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
301. 19:33:52.0472 0x2248 hcw85cir - ok
302. 19:33:52.0513 0x2248 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
303. 19:33:52.0517 0x2248 HdAudAddService - ok
304. 19:33:52.0557 0x2248 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
305. 19:33:52.0559 0x2248 HDAudBus - ok
306. 19:33:52.0614 0x2248 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys
307. 19:33:52.0616 0x2248 HECIx64 - ok
308. 19:33:52.0651 0x2248 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
309. 19:33:52.0652 0x2248 HidBatt - ok
310. 19:33:52.0664 0x2248 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\drivers\hidbth.sys
311. 19:33:52.0666 0x2248 HidBth - ok
312. 19:33:52.0681 0x2248 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\drivers\hidir.sys
313. 19:33:52.0683 0x2248 HidIr - ok
314. 19:33:52.0750 0x2248 [ 46BBE8EA221461A65F18A078528F4B2C ] hidkmdf C:\Windows\system32\DRIVERS\hidkmdf.sys
315. 19:33:52.0751 0x2248 hidkmdf - ok
316. 19:33:52.0778 0x2248 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll
317. 19:33:52.0781 0x2248 hidserv - ok
318. 19:33:52.0842 0x2248 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
319. 19:33:52.0843 0x2248 HidUsb - ok
320. 19:33:52.0856 0x2248 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll
321. 19:33:52.0859 0x2248 hkmsvc - ok
322. 19:33:52.0895 0x2248 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
323. 19:33:52.0900 0x2248 HomeGroupListener - ok
324. 19:33:52.0935 0x2248 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
325. 19:33:52.0940 0x2248 HomeGroupProvider - ok
326. 19:33:52.0985 0x2248 [ 4E0BEC0F78096FFD6D3314B497FC49D3 ] hpdskflt C:\Windows\system32\DRIVERS\hpdskflt.sys
327. 19:33:52.0987 0x2248 hpdskflt - ok
328. 19:33:53.0134 0x2248 [ 1DAE5C46D42B02A6D5862E1482EFB390 ] hpqcxs08 C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll
329. 19:33:53.0137 0x2248 hpqcxs08 - ok
330. 19:33:53.0180 0x2248 [ 99E8EEF42FE2F4AF29B08C3355DD7685 ] hpqddsvc C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll
331. 19:33:53.0182 0x2248 hpqddsvc - ok
332. 19:33:53.0218 0x2248 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
333. 19:33:53.0220 0x2248 HpSAMD - ok
334. 19:33:53.0238 0x2248 [ FC7C13B5A9E9BE23B7AE72BBC7FDB278 ] hpsrv C:\Windows\system32\Hpservice.exe
335. 19:33:53.0240 0x2248 hpsrv - ok
336. 19:33:53.0305 0x2248 [ F630DD7564EBB7248A13B1CC774D9EA6 ] HPWMISVC C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
337. 19:33:53.0307 0x2248 HPWMISVC - ok
338. 19:33:53.0372 0x2248 [ F47CEC45FB85791D4AB237563AD0FA8F ] HTCAND64 C:\Windows\system32\Drivers\ANDROIDUSB.sys
339. 19:33:53.0374 0x2248 HTCAND64 - ok
340. 19:33:53.0441 0x2248 [ B8B1B284362E1D8135112573395D5DA5 ] htcnprot C:\Windows\system32\DRIVERS\htcnprot.sys
341. 19:33:53.0442 0x2248 htcnprot - ok
342. 19:33:53.0477 0x2248 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys
343. 19:33:53.0486 0x2248 HTTP - ok
344. 19:33:53.0507 0x2248 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
345. 19:33:53.0509 0x2248 hwpolicy - ok
346. 19:33:53.0547 0x2248 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
347. 19:33:53.0549 0x2248 i8042prt - ok
348. 19:33:53.0610 0x2248 [ 1384872112E8E7FD5786ECEB8BDDF4C9 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys
349. 19:33:53.0614 0x2248 iaStor - ok
350. 19:33:53.0690 0x2248 [ 6B24D1C3096DE796D15571079EA5E98C ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
351. 19:33:53.0691 0x2248 IAStorDataMgrSvc - ok
352. 19:33:53.0751 0x2248 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
353. 19:33:53.0756 0x2248 iaStorV - ok
354. 19:33:53.0830 0x2248 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
355. 19:33:53.0840 0x2248 idsvc - ok
356. 19:33:54.0689 0x2248 [ 1BE8D9CA4F2363B8E8015621878E0043 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys
357. 19:33:54.0923 0x2248 igfx - ok
358. 19:33:54.0976 0x2248 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\drivers\iirsp.sys
359. 19:33:54.0978 0x2248 iirsp - ok
360. 19:33:55.0067 0x2248 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll
361. 19:33:55.0079 0x2248 IKEEXT - ok
362. 19:33:55.0146 0x2248 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys
363. 19:33:55.0149 0x2248 Impcd - ok
364. 19:33:55.0186 0x2248 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys
365. 19:33:55.0188 0x2248 intelide - ok
366. 19:33:55.0657 0x2248 [ 1BE8D9CA4F2363B8E8015621878E0043 ] intelkmd C:\Windows\system32\DRIVERS\igdpmd64.sys
367. 19:33:55.0883 0x2248 intelkmd - ok
368. 19:33:55.0917 0x2248 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
369. 19:33:55.0919 0x2248 intelppm - ok
370. 19:33:55.0944 0x2248 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll
371. 19:33:55.0947 0x2248 IPBusEnum - ok
372. 19:33:55.0966 0x2248 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
373. 19:33:55.0968 0x2248 IpFilterDriver - ok
374. 19:33:56.0014 0x2248 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
375. 19:33:56.0022 0x2248 iphlpsvc - ok
376. 19:33:56.0054 0x2248 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
377. 19:33:56.0056 0x2248 IPMIDRV - ok
378. 19:33:56.0071 0x2248 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys
379. 19:33:56.0073 0x2248 IPNAT - ok
380. 19:33:56.0142 0x2248 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
381. 19:33:56.0152 0x2248 iPod Service - ok
382. 19:33:56.0190 0x2248 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys
383. 19:33:56.0191 0x2248 IRENUM - ok
384. 19:33:56.0209 0x2248 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys
385. 19:33:56.0211 0x2248 isapnp - ok
386. 19:33:56.0229 0x2248 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
387. 19:33:56.0233 0x2248 iScsiPrt - ok
388. 19:33:56.0251 0x2248 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
389. 19:33:56.0252 0x2248 kbdclass - ok
390. 19:33:56.0282 0x2248 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
391. 19:33:56.0284 0x2248 kbdhid - ok
392. 19:33:56.0301 0x2248 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe
393. 19:33:56.0304 0x2248 KeyIso - ok
394. 19:33:56.0344 0x2248 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
395. 19:33:56.0346 0x2248 KSecDD - ok
396. 19:33:56.0367 0x2248 [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
397. 19:33:56.0370 0x2248 KSecPkg - ok
398. 19:33:56.0393 0x2248 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
399. 19:33:56.0394 0x2248 ksthunk - ok
400. 19:33:56.0437 0x2248 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll
401. 19:33:56.0443 0x2248 KtmRm - ok
402. 19:33:56.0484 0x2248 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll
403. 19:33:56.0491 0x2248 LanmanServer - ok
404. 19:33:56.0520 0x2248 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
405. 19:33:56.0526 0x2248 LanmanWorkstation - ok
406. 19:33:56.0552 0x2248 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
407. 19:33:56.0555 0x2248 lltdio - ok
408. 19:33:56.0589 0x2248 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll
409. 19:33:56.0595 0x2248 lltdsvc - ok
410. 19:33:56.0614 0x2248 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll
411. 19:33:56.0618 0x2248 lmhosts - ok
412. 19:33:56.0715 0x2248 [ 6D515466AB8BFE61184092B635AE6EB4 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
413. 19:33:56.0719 0x2248 LMS - ok
414. 19:33:56.0759 0x2248 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
415. 19:33:56.0761 0x2248 LSI_FC - ok
416. 19:33:56.0776 0x2248 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
417. 19:33:56.0778 0x2248 LSI_SAS - ok
418. 19:33:56.0806 0x2248 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
419. 19:33:56.0808 0x2248 LSI_SAS2 - ok
420. 19:33:56.0820 0x2248 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
421. 19:33:56.0823 0x2248 LSI_SCSI - ok
422. 19:33:56.0844 0x2248 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys
423. 19:33:56.0846 0x2248 luafv - ok
424. 19:33:56.0879 0x2248 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
425. 19:33:56.0882 0x2248 Mcx2Svc - ok
426. 19:33:56.0903 0x2248 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\drivers\megasas.sys
427. 19:33:56.0905 0x2248 megasas - ok
428. 19:33:56.0952 0x2248 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
429. 19:33:56.0957 0x2248 MegaSR - ok
430. 19:33:57.0035 0x2248 Microsoft SharePoint Workspace Audit Service - ok
431. 19:33:57.0082 0x2248 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll
432. 19:33:57.0085 0x2248 MMCSS - ok
433. 19:33:57.0104 0x2248 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys
434. 19:33:57.0171 0x2248 Modem - ok
435. 19:33:57.0204 0x2248 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys
436. 19:33:57.0205 0x2248 monitor - ok
437. 19:33:57.0241 0x2248 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
438. 19:33:57.0243 0x2248 mouclass - ok
439. 19:33:57.0269 0x2248 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
440. 19:33:57.0270 0x2248 mouhid - ok
441. 19:33:57.0289 0x2248 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
442. 19:33:57.0291 0x2248 mountmgr - ok
443. 19:33:57.0389 0x2248 [ 9C3758018DED02F4AE53CCA1C5F084A2 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
444. 19:33:57.0392 0x2248 MozillaMaintenance - ok
445. 19:33:57.0470 0x2248 [ F8A10560B35C66F9DE212F03DAD5BFA7 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
446. 19:33:57.0473 0x2248 MpFilter - ok
447. 19:33:57.0509 0x2248 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys
448. 19:33:57.0511 0x2248 mpio - ok
449. 19:33:57.0535 0x2248 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
450. 19:33:57.0536 0x2248 mpsdrv - ok
451. 19:33:57.0593 0x2248 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll
452. 19:33:57.0604 0x2248 MpsSvc - ok
453. 19:33:57.0665 0x2248 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
454. 19:33:57.0668 0x2248 MRxDAV - ok
455. 19:33:57.0706 0x2248 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
456. 19:33:57.0709 0x2248 mrxsmb - ok
457. 19:33:57.0750 0x2248 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
458. 19:33:57.0754 0x2248 mrxsmb10 - ok
459. 19:33:57.0771 0x2248 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
460. 19:33:57.0774 0x2248 mrxsmb20 - ok
461. 19:33:57.0806 0x2248 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys
462. 19:33:57.0807 0x2248 msahci - ok
463. 19:33:57.0833 0x2248 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys
464. 19:33:57.0836 0x2248 msdsm - ok
465. 19:33:57.0857 0x2248 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe
466. 19:33:57.0862 0x2248 MSDTC - ok
467. 19:33:57.0884 0x2248 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys
468. 19:33:57.0885 0x2248 Msfs - ok
469. 19:33:57.0897 0x2248 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
470. 19:33:57.0898 0x2248 mshidkmdf - ok
471. 19:33:57.0915 0x2248 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
472. 19:33:57.0917 0x2248 msisadrv - ok
473. 19:33:57.0959 0x2248 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
474. 19:33:57.0964 0x2248 MSiSCSI - ok
475. 19:33:57.0969 0x2248 msiserver - ok
476. 19:33:58.0001 0x2248 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
477. 19:33:58.0003 0x2248 MSKSSRV - ok
478. 19:33:58.0080 0x2248 [ E07DEC52FF801841BA9B6878A60304FB ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe
479. 19:33:58.0081 0x2248 MsMpSvc - ok
480. 19:33:58.0127 0x2248 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
481. 19:33:58.0129 0x2248 MSPCLOCK - ok
482. 19:33:58.0156 0x2248 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
483. 19:33:58.0158 0x2248 MSPQM - ok
484. 19:33:58.0181 0x2248 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
485. 19:33:58.0185 0x2248 MsRPC - ok
486. 19:33:58.0206 0x2248 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
487. 19:33:58.0207 0x2248 mssmbios - ok
488. 19:33:58.0221 0x2248 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
489. 19:33:58.0222 0x2248 MSTEE - ok
490. 19:33:58.0242 0x2248 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
491. 19:33:58.0243 0x2248 MTConfig - ok
492. 19:33:58.0265 0x2248 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys
493. 19:33:58.0266 0x2248 Mup - ok
494. 19:33:58.0305 0x2248 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll
495. 19:33:58.0313 0x2248 napagent - ok
496. 19:33:58.0357 0x2248 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
497. 19:33:58.0361 0x2248 NativeWifiP - ok
498. 19:33:58.0411 0x2248 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys
499. 19:33:58.0421 0x2248 NDIS - ok
500. 19:33:58.0439 0x2248 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
501. 19:33:58.0440 0x2248 NdisCap - ok
502. 19:33:58.0473 0x2248 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
503. 19:33:58.0474 0x2248 NdisTapi - ok
504. 19:33:58.0502 0x2248 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
505. 19:33:58.0504 0x2248 Ndisuio - ok
506. 19:33:58.0526 0x2248 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
507. 19:33:58.0529 0x2248 NdisWan - ok
508. 19:33:58.0543 0x2248 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
509. 19:33:58.0544 0x2248 NDProxy - ok
510. 19:33:58.0621 0x2248 [ 2334DC48997BA203B794DF3EE70521DB ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
511. 19:33:58.0624 0x2248 Net Driver HPZ12 - ok
512. 19:33:58.0663 0x2248 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
513. 19:33:58.0664 0x2248 NetBIOS - ok
514. 19:33:58.0696 0x2248 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
515. 19:33:58.0699 0x2248 NetBT - ok
516. 19:33:58.0723 0x2248 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe
517. 19:33:58.0727 0x2248 Netlogon - ok
518. 19:33:58.0790 0x2248 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll
519. 19:33:58.0797 0x2248 Netman - ok
520. 19:33:58.0859 0x2248 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
521. 19:33:58.0905 0x2248 NetMsmqActivator - ok
522. 19:33:58.0912 0x2248 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
523. 19:33:58.0913 0x2248 NetPipeActivator - ok
524. 19:33:58.0958 0x2248 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll
525. 19:33:58.0966 0x2248 netprofm - ok
526. 19:33:58.0982 0x2248 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
527. 19:33:58.0984 0x2248 NetTcpActivator - ok
528. 19:33:58.0990 0x2248 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
529. 19:33:58.0991 0x2248 NetTcpPortSharing - ok
530. 19:33:59.0424 0x2248 [ 39EDE676D17F37AF4573C2B33EC28ACA ] NETw5s64 C:\Windows\system32\DRIVERS\NETw5s64.sys
531. 19:33:59.0594 0x2248 NETw5s64 - ok
532. 19:33:59.0648 0x2248 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
533. 19:33:59.0651 0x2248 nfrd960 - ok
534. 19:33:59.0717 0x2248 [ 162100E0BC8377710F9D170631921C03 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
535. 19:33:59.0720 0x2248 NisDrv - ok
536. 19:33:59.0757 0x2248 [ C6E15F2F95F9C0A6098D43510B604E52 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe
537. 19:33:59.0762 0x2248 NisSrv - ok
538. 19:33:59.0821 0x2248 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll
539. 19:33:59.0829 0x2248 NlaSvc - ok
540. 19:33:59.0848 0x2248 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys
541. 19:33:59.0850 0x2248 Npfs - ok
542. 19:33:59.0870 0x2248 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll
543. 19:33:59.0875 0x2248 nsi - ok
544. 19:33:59.0890 0x2248 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
545. 19:33:59.0892 0x2248 nsiproxy - ok
546. 19:33:59.0969 0x2248 [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
547. 19:33:59.0986 0x2248 Ntfs - ok
548. 19:34:00.0005 0x2248 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys
549. 19:34:00.0006 0x2248 Null - ok
550. 19:34:00.0039 0x2248 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys
551. 19:34:00.0041 0x2248 nvraid - ok
552. 19:34:00.0061 0x2248 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys
553. 19:34:00.0064 0x2248 nvstor - ok
554. 19:34:00.0079 0x2248 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
555. 19:34:00.0082 0x2248 nv_agp - ok
556. 19:34:00.0097 0x2248 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
557. 19:34:00.0099 0x2248 ohci1394 - ok
558. 19:34:00.0149 0x2248 [ 4965B005492CBA7719E82B71E3245495 ] ose64 C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
559. 19:34:00.0152 0x2248 ose64 - ok
560. 19:34:00.0507 0x2248 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
561. 19:34:00.0674 0x2248 osppsvc - ok
562. 19:34:00.0724 0x2248 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
563. 19:34:00.0731 0x2248 p2pimsvc - ok
564. 19:34:00.0755 0x2248 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll
565. 19:34:00.0762 0x2248 p2psvc - ok
566. 19:34:00.0803 0x2248 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\drivers\parport.sys
567. 19:34:00.0805 0x2248 Parport - ok
568. 19:34:00.0851 0x2248 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys
569. 19:34:00.0853 0x2248 partmgr - ok
570. 19:34:00.0901 0x2248 [ AFADA8B97BE3C9398DC6C770409C3544 ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
571. 19:34:00.0903 0x2248 PassThru Service - ok
572. 19:34:00.0936 0x2248 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll
573. 19:34:00.0941 0x2248 PcaSvc - ok
574. 19:34:00.0981 0x2248 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys
575. 19:34:00.0984 0x2248 pci - ok
576. 19:34:01.0026 0x2248 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys
577. 19:34:01.0028 0x2248 pciide - ok
578. 19:34:01.0047 0x2248 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
579. 19:34:01.0051 0x2248 pcmcia - ok
580. 19:34:01.0071 0x2248 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys
581. 19:34:01.0073 0x2248 pcw - ok
582. 19:34:01.0101 0x2248 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys
583. 19:34:01.0109 0x2248 PEAUTH - ok
584. 19:34:01.0225 0x2248 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe
585. 19:34:01.0228 0x2248 PerfHost - ok
586. 19:34:01.0290 0x2248 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll
587. 19:34:01.0307 0x2248 pla - ok
588. 19:34:01.0357 0x2248 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
589. 19:34:01.0365 0x2248 PlugPlay - ok
590. 19:34:01.0421 0x2248 [ AC78DF349F0E4CFB8B667C0CFFF83CCE ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
591. 19:34:01.0424 0x2248 Pml Driver HPZ12 - ok
592. 19:34:01.0451 0x2248 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
593. 19:34:01.0456 0x2248 PNRPAutoReg - ok
594. 19:34:01.0479 0x2248 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
595. 19:34:01.0485 0x2248 PNRPsvc - ok
596. 19:34:01.0574 0x2248 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
597. 19:34:01.0581 0x2248 PolicyAgent - ok
598. 19:34:01.0608 0x2248 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll
599. 19:34:01.0614 0x2248 Power - ok
600. 19:34:01.0645 0x2248 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
601. 19:34:01.0648 0x2248 PptpMiniport - ok
602. 19:34:01.0732 0x2248 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\drivers\processr.sys
603. 19:34:01.0734 0x2248 Processor - ok
604. 19:34:01.0779 0x2248 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll
605. 19:34:01.0784 0x2248 ProfSvc - ok
606. 19:34:01.0801 0x2248 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
607. 19:34:01.0804 0x2248 ProtectedStorage - ok
608. 19:34:01.0829 0x2248 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys
609. 19:34:01.0832 0x2248 Psched - ok
610. 19:34:01.0920 0x2248 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
611. 19:34:01.0936 0x2248 ql2300 - ok
612. 19:34:01.0958 0x2248 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
613. 19:34:01.0960 0x2248 ql40xx - ok
614. 19:34:01.0988 0x2248 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll
615. 19:34:01.0993 0x2248 QWAVE - ok
616. 19:34:02.0006 0x2248 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
617. 19:34:02.0009 0x2248 QWAVEdrv - ok
618. 19:34:02.0029 0x2248 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
619. 19:34:02.0030 0x2248 RasAcd - ok
620. 19:34:02.0063 0x2248 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
621. 19:34:02.0065 0x2248 RasAgileVpn - ok
622. 19:34:02.0093 0x2248 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll
623. 19:34:02.0097 0x2248 RasAuto - ok
624. 19:34:02.0115 0x2248 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
625. 19:34:02.0117 0x2248 Rasl2tp - ok
626. 19:34:02.0132 0x2248 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll
627. 19:34:02.0139 0x2248 RasMan - ok
628. 19:34:02.0162 0x2248 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
629. 19:34:02.0164 0x2248 RasPppoe - ok
630. 19:34:02.0183 0x2248 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
631. 19:34:02.0185 0x2248 RasSstp - ok
632. 19:34:02.0199 0x2248 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
633. 19:34:02.0204 0x2248 rdbss - ok
634. 19:34:02.0227 0x2248 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
635. 19:34:02.0230 0x2248 rdpbus - ok
636. 19:34:02.0247 0x2248 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
637. 19:34:02.0248 0x2248 RDPCDD - ok
638. 19:34:02.0282 0x2248 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
639. 19:34:02.0283 0x2248 RDPENCDD - ok
640. 19:34:02.0301 0x2248 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
641. 19:34:02.0303 0x2248 RDPREFMP - ok
642. 19:34:02.0341 0x2248 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
643. 19:34:02.0344 0x2248 RDPWD - ok
644. 19:34:02.0394 0x2248 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
645. 19:34:02.0397 0x2248 rdyboost - ok
646. 19:34:02.0423 0x2248 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll
647. 19:34:02.0428 0x2248 RemoteAccess - ok
648. 19:34:02.0457 0x2248 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll
649. 19:34:02.0462 0x2248 RemoteRegistry - ok
650. 19:34:02.0526 0x2248 [ 085D18C71AB2611A3D61528132B6501E ] RoxioNow Service C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
651. 19:34:02.0532 0x2248 RoxioNow Service - ok
652. 19:34:02.0554 0x2248 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
653. 19:34:02.0559 0x2248 RpcEptMapper - ok
654. 19:34:02.0630 0x2248 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe
655. 19:34:02.0633 0x2248 RpcLocator - ok
656. 19:34:02.0678 0x2248 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll
657. 19:34:02.0685 0x2248 RpcSs - ok
658. 19:34:02.0721 0x2248 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
659. 19:34:02.0723 0x2248 rspndr - ok
660. 19:34:02.0770 0x2248 [ 907C4464381B5EBDFDC60F6C7D0DEDFC ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys
661. 19:34:02.0774 0x2248 RSUSBSTOR - ok
662. 19:34:02.0821 0x2248 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
663. 19:34:02.0827 0x2248 RTL8167 - ok
664. 19:34:02.0846 0x2248 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe
665. 19:34:02.0849 0x2248 SamSs - ok
666. 19:34:02.0886 0x2248 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
667. 19:34:02.0889 0x2248 sbp2port - ok
668. 19:34:02.0915 0x2248 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll
669. 19:34:02.0922 0x2248 SCardSvr - ok
670. 19:34:02.0941 0x2248 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
671. 19:34:02.0943 0x2248 scfilter - ok
672. 19:34:03.0002 0x2248 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll
673. 19:34:03.0018 0x2248 Schedule - ok
674. 19:34:03.0052 0x2248 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll
675. 19:34:03.0054 0x2248 SCPolicySvc - ok
676. 19:34:03.0113 0x2248 [ 8B56BDCE6A303DDE63D63440D1CF9AD1 ] ScreamBAudioSvc C:\Windows\system32\drivers\ScreamingBAudio64.sys
677. 19:34:03.0115 0x2248 ScreamBAudioSvc - ok
678. 19:34:03.0139 0x2248 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll
679. 19:34:03.0144 0x2248 SDRSVC - ok
680. 19:34:03.0188 0x2248 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys
681. 19:34:03.0189 0x2248 secdrv - ok
682. 19:34:03.0200 0x2248 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll
683. 19:34:03.0204 0x2248 seclogon - ok
684. 19:34:03.0226 0x2248 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\System32\sens.dll
685. 19:34:03.0231 0x2248 SENS - ok
686. 19:34:03.0251 0x2248 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll
687. 19:34:03.0257 0x2248 SensrSvc - ok
688. 19:34:03.0278 0x2248 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\drivers\serenum.sys
689. 19:34:03.0280 0x2248 Serenum - ok
690. 19:34:03.0310 0x2248 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\drivers\serial.sys
691. 19:34:03.0312 0x2248 Serial - ok
692. 19:34:03.0340 0x2248 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\drivers\sermouse.sys
693. 19:34:03.0341 0x2248 sermouse - ok
694. 19:34:03.0464 0x2248 [ A63DCCA0BD6FDE24064D96607A936B28 ] Service Sendori C:\Program Files (x86)\Sendori\Sendori.Service.exe
695. 19:34:03.0465 0x2248 Service Sendori - ok
696. 19:34:03.0523 0x2248 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll
697. 19:34:03.0528 0x2248 SessionEnv - ok
698. 19:34:03.0568 0x2248 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
699. 19:34:03.0571 0x2248 sffdisk - ok
700. 19:34:03.0600 0x2248 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
701. 19:34:03.0601 0x2248 sffp_mmc - ok
702. 19:34:03.0617 0x2248 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
703. 19:34:03.0619 0x2248 sffp_sd - ok
704. 19:34:03.0637 0x2248 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
705. 19:34:03.0639 0x2248 sfloppy - ok
706. 19:34:03.0719 0x2248 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
707. 19:34:03.0726 0x2248 SharedAccess - ok
708. 19:34:03.0780 0x2248 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
709. 19:34:03.0787 0x2248 ShellHWDetection - ok
710. 19:34:03.0805 0x2248 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
711. 19:34:03.0806 0x2248 SiSRaid2 - ok
712. 19:34:03.0836 0x2248 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
713. 19:34:03.0838 0x2248 SiSRaid4 - ok
714. 19:34:03.0928 0x2248 [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
715. 19:34:03.0930 0x2248 SkypeUpdate - ok
716. 19:34:03.0948 0x2248 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys
717. 19:34:03.0951 0x2248 Smb - ok
718. 19:34:04.0105 0x2248 [ EFFEA9EEADB79243F9D876F67BFFE253 ] sndappv2 C:\Program Files (x86)\Sendori\sndappv2.exe
719. 19:34:04.0149 0x2248 sndappv2 - ok
720. 19:34:04.0187 0x2248 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe
721. 19:34:04.0191 0x2248 SNMPTRAP - ok
722. 19:34:04.0210 0x2248 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys
723. 19:34:04.0212 0x2248 spldr - ok
724. 19:34:04.0283 0x2248 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe
725. 19:34:04.0292 0x2248 Spooler - ok
726. 19:34:04.0373 0x2248 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe
727. 19:34:04.0408 0x2248 sppsvc - ok
728. 19:34:04.0434 0x2248 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll
729. 19:34:04.0439 0x2248 sppuinotify - ok
730. 19:34:04.0480 0x2248 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys
731. 19:34:04.0485 0x2248 srv - ok
732. 19:34:04.0506 0x2248 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
733. 19:34:04.0511 0x2248 srv2 - ok
734. 19:34:04.0535 0x2248 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
735. 19:34:04.0538 0x2248 srvnet - ok
736. 19:34:04.0578 0x2248 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
737. 19:34:04.0584 0x2248 SSDPSRV - ok
738. 19:34:04.0597 0x2248 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll
739. 19:34:04.0604 0x2248 SstpSvc - ok
740. 19:34:04.0716 0x2248 [ B00068BA94F5F306911B14B425AAEB56 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe
741. 19:34:04.0720 0x2248 STacSV - ok
742. 19:34:04.0803 0x2248 [ EAA63F7E11945B50DE4CAA2949E17B2F ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
743. 19:34:04.0811 0x2248 Steam Client Service - ok
744. 19:34:04.0828 0x2248 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\drivers\stexstor.sys
745. 19:34:04.0830 0x2248 stexstor - ok
746. 19:34:04.0891 0x2248 [ DA40D9C9CCB9836D6ABD1706935A2277 ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys
747. 19:34:04.0898 0x2248 STHDA - ok
748. 19:34:04.0938 0x2248 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll
749. 19:34:04.0947 0x2248 stisvc - ok
750. 19:34:04.0977 0x2248 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\DRIVERS\swenum.sys
751. 19:34:04.0979 0x2248 swenum - ok
752. 19:34:05.0129 0x2248 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
753. 19:34:05.0133 0x2248 SwitchBoard - ok
754. 19:34:05.0191 0x2248 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll
755. 19:34:05.0200 0x2248 swprv - ok
756. 19:34:05.0253 0x2248 [ AC3CC98B1BDB6540021D3FFB105AC2B9 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
757. 19:34:05.0258 0x2248 SynTP - ok
758. 19:34:05.0381 0x2248 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll
759. 19:34:05.0443 0x2248 SysMain - ok
760. 19:34:05.0470 0x2248 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
761. 19:34:05.0477 0x2248 TabletInputService - ok
762. 19:34:05.0512 0x2248 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll
763. 19:34:05.0519 0x2248 TapiSrv - ok
764. 19:34:05.0539 0x2248 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll
765. 19:34:05.0545 0x2248 TBS - ok
766. 19:34:05.0650 0x2248 [ DB74544B75566C974815E79A62433F29 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
767. 19:34:05.0671 0x2248 Tcpip - ok
768. 19:34:05.0713 0x2248 [ DB74544B75566C974815E79A62433F29 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
769. 19:34:05.0724 0x2248 TCPIP6 - ok
770. 19:34:05.0790 0x2248 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
771. 19:34:05.0791 0x2248 tcpipreg - ok
772. 19:34:05.0829 0x2248 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
773. 19:34:05.0830 0x2248 TDPIPE - ok
774. 19:34:05.0851 0x2248 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
775. 19:34:05.0853 0x2248 TDTCP - ok
776. 19:34:05.0881 0x2248 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
777. 19:34:05.0883 0x2248 tdx - ok
778. 19:34:05.0914 0x2248 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
779. 19:34:05.0916 0x2248 TermDD - ok
780. 19:34:05.0984 0x2248 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll
781. 19:34:05.0994 0x2248 TermService - ok
782. 19:34:06.0024 0x2248 [ F0344071948D1A1FA732231785A0664C ] Themes C:\Windows\system32\themeservice.dll
783. 19:34:06.0028 0x2248 Themes - ok
784. 19:34:06.0071 0x2248 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll
785. 19:34:06.0074 0x2248 THREADORDER - ok
786. 19:34:06.0111 0x2248 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll
787. 19:34:06.0116 0x2248 TrkWks - ok
788. 19:34:06.0216 0x2248 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
789. 19:34:06.0220 0x2248 TrustedInstaller - ok
790. 19:34:06.0258 0x2248 [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
791. 19:34:06.0259 0x2248 tssecsrv - ok
792. 19:34:06.0303 0x2248 [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
793. 19:34:06.0305 0x2248 TsUsbFlt - ok
794. 19:34:06.0320 0x2248 [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
795. 19:34:06.0322 0x2248 TsUsbGD - ok
796. 19:34:06.0352 0x2248 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
797. 19:34:06.0355 0x2248 tunnel - ok
798. 19:34:06.0373 0x2248 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
799. 19:34:06.0375 0x2248 uagp35 - ok
800. 19:34:06.0395 0x2248 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
801. 19:34:06.0400 0x2248 udfs - ok
802. 19:34:06.0433 0x2248 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
803. 19:34:06.0438 0x2248 UI0Detect - ok
804. 19:34:06.0459 0x2248 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
805. 19:34:06.0462 0x2248 uliagpkx - ok
806. 19:34:06.0495 0x2248 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\DRIVERS\umbus.sys
807. 19:34:06.0497 0x2248 umbus - ok
808. 19:34:06.0513 0x2248 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\drivers\umpass.sys
809. 19:34:06.0515 0x2248 UmPass - ok
810. 19:34:06.0666 0x2248 [ 0FADD949576A164B4E51E716F46B6C33 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
811. 19:34:06.0690 0x2248 UNS - ok
812. 19:34:06.0720 0x2248 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll
813. 19:34:06.0728 0x2248 upnphost - ok
814. 19:34:06.0770 0x2248 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys
815. 19:34:06.0772 0x2248 USBAAPL64 - ok
816. 19:34:06.0820 0x2248 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
817. 19:34:06.0822 0x2248 usbccgp - ok
818. 19:34:06.0881 0x2248 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys
819. 19:34:06.0883 0x2248 usbcir - ok
820. 19:34:06.0917 0x2248 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys
821. 19:34:06.0919 0x2248 usbehci - ok
822. 19:34:06.0975 0x2248 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
823. 19:34:06.0981 0x2248 usbhub - ok
824. 19:34:07.0025 0x2248 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys
825. 19:34:07.0027 0x2248 usbohci - ok
826. 19:34:07.0062 0x2248 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
827. 19:34:07.0064 0x2248 usbprint - ok
828. 19:34:07.0144 0x2248 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
829. 19:34:07.0145 0x2248 usbscan - ok
830. 19:34:07.0176 0x2248 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
831. 19:34:07.0178 0x2248 USBSTOR - ok
832. 19:34:07.0194 0x2248 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
833. 19:34:07.0195 0x2248 usbuhci - ok
834. 19:34:07.0234 0x2248 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
835. 19:34:07.0237 0x2248 usbvideo - ok
836. 19:34:07.0268 0x2248 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll
837. 19:34:07.0273 0x2248 UxSms - ok
838. 19:34:07.0290 0x2248 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe
839. 19:34:07.0293 0x2248 VaultSvc - ok
840. 19:34:07.0389 0x2248 [ 2662F24C7AEE2A32CEBDEC907A5366F1 ] vcsFPService C:\Windows\system32\vcsFPService.exe
841. 19:34:07.0414 0x2248 vcsFPService - ok
842. 19:34:07.0451 0x2248 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
843. 19:34:07.0453 0x2248 vdrvroot - ok
844. 19:34:07.0501 0x2248 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe
845. 19:34:07.0518 0x2248 vds - ok
846. 19:34:07.0538 0x2248 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
847. 19:34:07.0539 0x2248 vga - ok
848. 19:34:07.0555 0x2248 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys
849. 19:34:07.0557 0x2248 VgaSave - ok
850. 19:34:07.0573 0x2248 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
851. 19:34:07.0576 0x2248 vhdmp - ok
852. 19:34:07.0651 0x2248 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys
853. 19:34:07.0652 0x2248 viaide - ok
854. 19:34:07.0683 0x2248 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys
855. 19:34:07.0685 0x2248 volmgr - ok
856. 19:34:07.0704 0x2248 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
857. 19:34:07.0709 0x2248 volmgrx - ok
858. 19:34:07.0724 0x2248 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys
859. 19:34:07.0728 0x2248 volsnap - ok
860. 19:34:07.0751 0x2248 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
861. 19:34:07.0754 0x2248 vsmraid - ok
862. 19:34:07.0819 0x2248 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe
863. 19:34:07.0840 0x2248 VSS - ok
864. 19:34:07.0853 0x2248 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
865. 19:34:07.0855 0x2248 vwifibus - ok
866. 19:34:07.0885 0x2248 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
867. 19:34:07.0887 0x2248 vwififlt - ok
868. 19:34:07.0922 0x2248 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll
869. 19:34:07.0930 0x2248 W32Time - ok
870. 19:34:07.0995 0x2248 [ FDA15A0510F84FA46452B74529147A15 ] WacHidRouter C:\Windows\system32\DRIVERS\wachidrouter.sys
871. 19:34:07.0997 0x2248 WacHidRouter - ok
872. 19:34:08.0054 0x2248 [ FE75777289278A4941FE6139E82B3BD9 ] wacmoumonitor C:\Windows\system32\DRIVERS\wacmoumonitor.sys
873. 19:34:08.0055 0x2248 wacmoumonitor - ok
874. 19:34:08.0061 0x2248 wacommousefilter - ok
875. 19:34:08.0078 0x2248 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\drivers\wacompen.sys
876. 19:34:08.0080 0x2248 WacomPen - ok
877. 19:34:08.0095 0x2248 [ EABFDBDC9BEDD325F260A3A9FEE5B3F9 ] wacomrouterfilter C:\Windows\system32\DRIVERS\wacomrouterfilter.sys
878. 19:34:08.0096 0x2248 wacomrouterfilter - ok
879. 19:34:08.0118 0x2248 wacomvhid - ok
880. 19:34:08.0152 0x2248 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
881. 19:34:08.0154 0x2248 WANARP - ok
882. 19:34:08.0159 0x2248 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
883. 19:34:08.0161 0x2248 Wanarpv6 - ok
884. 19:34:08.0230 0x2248 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
885. 19:34:08.0244 0x2248 WatAdminSvc - ok
886. 19:34:08.0290 0x2248 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe
887. 19:34:08.0311 0x2248 wbengine - ok
888. 19:34:08.0331 0x2248 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
889. 19:34:08.0338 0x2248 WbioSrvc - ok
890. 19:34:08.0367 0x2248 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll
891. 19:34:08.0375 0x2248 wcncsvc - ok
892. 19:34:08.0393 0x2248 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
893. 19:34:08.0398 0x2248 WcsPlugInService - ok
894. 19:34:08.0427 0x2248 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\drivers\wd.sys
895. 19:34:08.0429 0x2248 Wd - ok
896. 19:34:08.0479 0x2248 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
897. 19:34:08.0487 0x2248 Wdf01000 - ok
898. 19:34:08.0500 0x2248 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll
899. 19:34:08.0505 0x2248 WdiServiceHost - ok
900. 19:34:08.0510 0x2248 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll
901. 19:34:08.0514 0x2248 WdiSystemHost - ok
902. 19:34:08.0540 0x2248 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll
903. 19:34:08.0546 0x2248 WebClient - ok
904. 19:34:08.0561 0x2248 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll
905. 19:34:08.0573 0x2248 Wecsvc - ok
906. 19:34:08.0622 0x2248 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll
907. 19:34:08.0627 0x2248 wercplsupport - ok
908. 19:34:08.0662 0x2248 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll
909. 19:34:08.0667 0x2248 WerSvc - ok
910. 19:34:08.0706 0x2248 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
911. 19:34:08.0707 0x2248 WfpLwf - ok
912. 19:34:08.0729 0x2248 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
913. 19:34:08.0730 0x2248 WIMMount - ok
914. 19:34:08.0753 0x2248 WinDefend - ok
915. 19:34:08.0778 0x2248 WinHttpAutoProxySvc - ok
916. 19:34:08.0849 0x2248 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
917. 19:34:08.0852 0x2248 Winmgmt - ok
918. 19:34:08.0927 0x2248 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll
919. 19:34:08.0954 0x2248 WinRM - ok
920. 19:34:09.0024 0x2248 [ FE88B288356E7B47B74B13372ADD906D ] WinUSB C:\Windows\system32\DRIVERS\WinUSB.sys
921. 19:34:09.0026 0x2248 WinUSB - ok
922. 19:34:09.0067 0x2248 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll
923. 19:34:09.0081 0x2248 Wlansvc - ok
924. 19:34:09.0274 0x2248 [ 98F138897EF4246381D197CB81846D62 ] wlidsvc c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
925. 19:34:09.0309 0x2248 wlidsvc - ok
926. 19:34:09.0337 0x2248 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
927. 19:34:09.0338 0x2248 WmiAcpi - ok
928. 19:34:09.0376 0x2248 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
929. 19:34:09.0380 0x2248 wmiApSrv - ok
930. 19:34:09.0420 0x2248 WMPNetworkSvc - ok
931. 19:34:09.0443 0x2248 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
932. 19:34:09.0447 0x2248 WPCSvc - ok
933. 19:34:09.0459 0x2248 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
934. 19:34:09.0464 0x2248 WPDBusEnum - ok
935. 19:34:09.0486 0x2248 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
936. 19:34:09.0488 0x2248 ws2ifsl - ok
937. 19:34:09.0500 0x2248 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll
938. 19:34:09.0505 0x2248 wscsvc - ok
939. 19:34:09.0509 0x2248 WSearch - ok
940. 19:34:09.0645 0x2248 [ FF3F745A22B0C9C2EF1600762E8858A1 ] WTabletServiceCon C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
941. 19:34:09.0652 0x2248 WTabletServiceCon - ok
942. 19:34:09.0860 0x2248 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll
943. 19:34:09.0898 0x2248 wuauserv - ok
944. 19:34:09.0937 0x2248 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
945. 19:34:09.0939 0x2248 WudfPf - ok
946. 19:34:09.0973 0x2248 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
947. 19:34:09.0976 0x2248 WUDFRd - ok
948. 19:34:09.0998 0x2248 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
949. 19:34:10.0004 0x2248 wudfsvc - ok
950. 19:34:10.0035 0x2248 [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc C:\Windows\System32\wwansvc.dll
951. 19:34:10.0043 0x2248 WwanSvc - ok
952. 19:34:10.0056 0x2248 ================ Scan global ===============================
953. 19:34:10.0088 0x2248 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
954. 19:34:10.0138 0x2248 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
955. 19:34:10.0149 0x2248 [ 88EDD0B34EED542745931E581AD21A32 ] C:\Windows\system32\winsrv.dll
956. 19:34:10.0171 0x2248 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
957. 19:34:10.0206 0x2248 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
958. 19:34:10.0213 0x2248 [Global] - ok
959. 19:34:10.0214 0x2248 ================ Scan MBR ==================================
960. 19:34:10.0231 0x2248 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
961. 19:34:10.0469 0x2248 \Device\Harddisk0\DR0 - ok
962. 19:34:10.0476 0x2248 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
963. 19:34:10.0484 0x2248 \Device\Harddisk1\DR1 - ok
964. 19:34:10.0485 0x2248 ================ Scan VBR ==================================
965. 19:34:10.0499 0x2248 [ 0B2B88C68A4366C5D747B1A8A1B5B9DC ] \Device\Harddisk0\DR0\Partition1
966. 19:34:10.0500 0x2248 \Device\Harddisk0\DR0\Partition1 - ok
967. 19:34:10.0541 0x2248 [ CFA31ED5EE3B87BBE5398D074DB18AD5 ] \Device\Harddisk0\DR0\Partition2
968. 19:34:10.0542 0x2248 \Device\Harddisk0\DR0\Partition2 - ok
969. 19:34:10.0547 0x2248 [ 2A90819FD9F51ACF6AAD10E734A5C4B7 ] \Device\Harddisk1\DR1\Partition1
970. 19:34:10.0548 0x2248 \Device\Harddisk1\DR1\Partition1 - ok
971. 19:34:10.0553 0x2248 [ C4EBB0B38EBE1C1115AF250BB0785554 ] \Device\Harddisk1\DR1\Partition2
972. 19:34:10.0557 0x2248 \Device\Harddisk1\DR1\Partition2 - ok
973. 19:34:10.0557 0x2248 ============================================================
974. 19:34:10.0557 0x2248 Scan finished
975. 19:34:10.0557 0x2248 ============================================================
976. 19:34:10.0577 0x18ac Detected object count: 0
977. 19:34:10.0577 0x18ac Actual detected object count: 0
978.  
979. DDS (Ver_2012-11-20.01) - NTFS_AMD64
980. Internet Explorer: 10.0.9200.16686 BrowserJavaVersion: 10.9.2
981. Run by Max at 19:34:42 on 2013-09-14
982. Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3894.1648 [GMT -4:00]
983. .
984. AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
985. AV: Microsoft Security Essentials *Disabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}
986. SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
987. SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
988. SP: Microsoft Security Essentials *Disabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}
989. .
990. ============== Running Processes ===============
991. .
992. C:\Windows\system32\lsm.exe
993. C:\Windows\system32\svchost.exe -k DcomLaunch
994. C:\Windows\system32\svchost.exe -k RPCSS
995. c:\Program Files\Microsoft Security Client\MsMpEng.exe
996. C:\Windows\system32\atiesrxx.exe
997. C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
998. C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
999. C:\Windows\system32\svchost.exe -k LocalService
1000. C:\Windows\system32\svchost.exe -k netsvcs
1001. C:\Program Files\IDT\WDM\STacSV64.exe
1002. C:\Windows\system32\Hpservice.exe
1003. C:\Program Files\Tablet\Pen\WTabletServiceCon.exe
1004. C:\Windows\system32\vcsFPService.exe
1005. C:\Windows\system32\svchost.exe -k NetworkService
1006. C:\Windows\system32\atieclxx.exe
1007. C:\Program Files\AVAST Software\Avast\AvastSvc.exe
1008. C:\Windows\System32\spoolsv.exe
1009. C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
1010. C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
1011. C:\Program Files\IDT\WDM\AESTSr64.exe
1012. C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
1013. C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
1014. C:\Program Files\Bonjour\mDNSResponder.exe
1015. C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
1016. C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt
1017. C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
1018. C:\Windows\System32\svchost.exe -k HPZ12
1019. C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
1020. C:\Windows\System32\svchost.exe -k HPZ12
1021. C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe
1022. C:\Program Files (x86)\Sendori\sndappv2.exe
1023. C:\Windows\system32\svchost.exe -k imgsvc
1024. c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
1025. C:\Program Files (x86)\Sendori\SendoriSvc.exe
1026. C:\Program Files (x86)\Sendori\Sendori.Service.exe
1027. C:\Windows\system32\wbem\wmiprvse.exe
1028. C:\Windows\system32\wbem\unsecapp.exe
1029. c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
1030. C:\Program Files (x86)\Sendori\SendoriUp.exe
1031. C:\Windows\system32\SearchIndexer.exe
1032. C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
1033. C:\Windows\system32\taskhost.exe
1034. C:\Windows\system32\Dwm.exe
1035. C:\Windows\Explorer.EXE
1036. C:\Program Files\Tablet\Pen\Pen_TabletUser.exe
1037. C:\Program Files\Tablet\Pen\WacomHost.exe
1038. C:\Program Files\Tablet\Pen\Pen_Tablet.exe
1039. C:\Program Files\Tablet\Pen\Pen_TouchUser.exe
1040. C:\Program Files\IDT\WDM\sttray64.exe
1041. C:\Windows\System32\igfxpers.exe
1042. C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
1043. C:\Program Files\Microsoft Security Client\msseces.exe
1044. C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
1045. C:\Users\Max\Local Settings\Apps\F.lux\flux.exe
1046. C:\Program Files\Windows Media Player\wmpnetwk.exe
1047. C:\Windows\System32\svchost.exe -k LocalServicePeerNet
1048. C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
1049. C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
1050. C:\Users\Max\AppData\Roaming\Dropbox\bin\Dropbox.exe
1051. C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
1052. C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRmon.exe
1053. C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
1054. C:\Windows\system32\wbem\wmiprvse.exe
1055. C:\Program Files\HTC\ModeSelection\VMMModeSelection.exe
1056. C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
1057. C:\Program Files (x86)\iTunes\iTunesHelper.exe
1058. C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
1059. C:\Program Files (x86)\Sendori\SendoriTray.exe
1060. C:\Program Files\iPod\bin\iPodService.exe
1061. C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
1062. C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
1063. C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe
1064. C:\Program Files\AVAST Software\Avast\AvastUI.exe
1065. C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings64.exe
1066. C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
1067. C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
1068. c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
1069. C:\Users\Max\AppData\Local\Google\Chrome\Application\chrome.exe
1070. C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
1071. C:\Users\Max\AppData\Local\Google\Chrome\Application\chrome.exe
1072. C:\Users\Max\AppData\Local\Google\Chrome\Application\chrome.exe
1073. C:\Users\Max\AppData\Local\Google\Chrome\Application\chrome.exe
1074. C:\Users\Max\AppData\Local\Google\Chrome\Application\chrome.exe
1075. C:\Users\Max\AppData\Local\Google\Chrome\Application\chrome.exe
1076. C:\Users\Max\AppData\Local\Google\Chrome\Application\chrome.exe
1077. C:\Users\Max\AppData\Local\Google\Chrome\Application\chrome.exe
1078. C:\Users\Max\AppData\Local\Google\Chrome\Application\chrome.exe
1079. C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
1080. C:\Windows\system32\wuauclt.exe
1081. C:\Users\Max\AppData\Local\Google\Chrome\Application\chrome.exe
1082. C:\Users\Max\AppData\Local\Google\Chrome\Application\chrome.exe
1083. C:\Users\Max\AppData\Local\Google\Chrome\Application\chrome.exe
1084. c:\Program Files\Microsoft Security Client\MpCmdRun.exe
1085. C:\Windows\system32\svchost.exe -k SDRSVC
1086. C:\Windows\system32\notepad.exe
1087. C:\Users\Max\AppData\Local\Google\Chrome\Application\chrome.exe
1088. C:\Windows\System32\cscript.exe
1089. .
1090. ============== Pseudo HJT Report ===============
1091. .
1092. uStart Page = hxxp://search.yahoo.com?type=937811&fr=spigot-yhp-ie
1093. uURLSearchHooks: YTD Toolbar: {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YTD Toolbar\IE\7.6\ytdToolbarIE.dll
1094. BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - <orphaned>
1095. BHO: HP Print Enhancer: {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
1096. BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
1097. BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
1098. BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
1099. BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
1100. BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
1101. BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
1102. BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
1103. BHO: YTD Toolbar: {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YTD Toolbar\IE\7.6\ytdToolbarIE.dll
1104. BHO: HP Smart BHO Class: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
1105. TB: YTD Toolbar: {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YTD Toolbar\IE\7.6\ytdToolbarIE.dll
1106. TB: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
1107. EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
1108. EB: HP Smart Web Printing: {555D4D79-4BD2-4094-A395-CFC534424A05} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_bho.dll
1109. uRun: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
1110. uRun: [Google Update] "C:\Users\Max\AppData\Local\Google\Update\GoogleUpdate.exe" /c
1111. uRun: [GoogleChromeAutoLaunch_FB0DCF795F3086C624F9CCAD45E29F3E] "C:\Users\Max\AppData\Local\Google\Chrome\Application\chrome.exe" --no-startup-window
1112. uRun: [Facebook Update] "C:\Users\Max\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
1113. uRun: [F.lux] "C:\Users\Max\Local Settings\Apps\F.lux\flux.exe" /noshow
1114. uRun: [AdobeBridge] <no file>
1115. mRun: [StartCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
1116. mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
1117. mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
1118. mRun: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
1119. mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
1120. mRun: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe
1121. mRun: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe
1122. mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
1123. mRun: [VMM Mode Selection] C:\Program Files\HTC\ModeSelection\VMMModeSelection.exe
1124. mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
1125. mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
1126. mRun: [BambooCore] C:\Program Files (x86)\Bamboo Dock\BambooCore.exe
1127. mRun: [Sendori Tray] "C:\Program Files (x86)\Sendori\SendoriTray.exe"
1128. mRun: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
1129. mRun: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
1130. mRun: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
1131. mRun: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
1132. mRun: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
1133. mRun: [SearchSettings] "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe"
1134. mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
1135. StartupFolder: C:\Users\Max\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Max\AppData\Roaming\Dropbox\bin\Dropbox.exe
1136. mPolicies-Explorer: NoActiveDesktop = dword:1
1137. mPolicies-Explorer: NoActiveDesktopChanges = dword:1
1138. mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
1139. mPolicies-System: ConsentPromptBehaviorUser = dword:3
1140. mPolicies-System: EnableUIADesktopToggle = dword:0
1141. IE: E&xport to Microsoft Excel - C:\PROGRA~1\MICROS~3\Office14\EXCEL.EXE/3000
1142. IE: Free YouTube to MP3 Converter - C:\Users\Max\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
1143. IE: Se&nd to OneNote - C:\PROGRA~1\MICROS~3\Office14\ONBttnIE.dll/105
1144. IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
1145. IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
1146. IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
1147. LSP: C:\Windows\System32\Sendori.dll
1148. Trusted Zone: cinemanow.com
1149. Trusted Zone: cinemanow.com
1150. DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
1151. DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
1152. DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
1153. TCP: NameServer = 192.168.1.1
1154. TCP: Interfaces\{DFB3FD25-330D-4B50-805C-E57A9015A807} : DHCPNameServer = 192.168.1.1
1155. TCP: Interfaces\{DFB3FD25-330D-4B50-805C-E57A9015A807}\05E636023547574696F637 : DHCPNameServer = 192.168.2.1
1156. TCP: Interfaces\{DFB3FD25-330D-4B50-805C-E57A9015A807}\3416D607573735175716275643 : NameServer = 192.168.1.1
1157. TCP: Interfaces\{DFB3FD25-330D-4B50-805C-E57A9015A807}\3416D607573735175716275643 : DHCPNameServer = 192.168.1.1
1158. TCP: Interfaces\{DFB3FD25-330D-4B50-805C-E57A9015A807}\3416D607573735175716275663 : NameServer = 192.168.1.1
1159. TCP: Interfaces\{DFB3FD25-330D-4B50-805C-E57A9015A807}\3416D607573735175716275663 : DHCPNameServer = 192.168.1.1
1160. Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
1161. Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
1162. SSODL: WebCheck - <orphaned>
1163. SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
1164. x64-BHO: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
1165. x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
1166. x64-BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
1167. x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
1168. x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
1169. x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
1170. x64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
1171. x64-Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe
1172. x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
1173. x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
1174. x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
1175. x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
1176. x64-Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
1177. x64-Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
1178. x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
1179. x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
1180. x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
1181. x64-DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
1182. x64-DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
1183. x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
1184. x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
1185. x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
1186. x64-Notify: igfxcui - igfxdev.dll
1187. x64-SSODL: WebCheck - <orphaned>
1188. x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
1189. .
1190. ================= FIREFOX ===================
1191. .
1192. FF - ProfilePath - C:\Users\Max\AppData\Roaming\Mozilla\Firefox\Profiles\apmzeti2.default\
1193. FF - prefs.js: browser.search.selectedEngine - Yahoo
1194. FF - prefs.js: browser.startup.homepage - hxxp://search.yahoo.com?type=937811&fr=spigot-yhp-ff
1195. FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=937811&p=
1196. FF - plugin: C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL
1197. FF - plugin: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL
1198. FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
1199. FF - plugin: C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101752.dll
1200. FF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
1201. FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
1202. FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrlui.dll
1203. FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
1204. FF - plugin: C:\Program Files (x86)\TabletPlugins\npwacom.dll
1205. FF - plugin: C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll
1206. FF - plugin: C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll
1207. FF - plugin: C:\Users\Max\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
1208. FF - plugin: C:\Users\Max\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll
1209. FF - plugin: C:\Users\Max\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
1210. FF - plugin: C:\Users\Max\AppData\Roaming\raidcall\plugins\nprcplugin.dll
1211. FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll
1212. FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll
1213. FF - plugin: C:\Windows\SysWOW64\npDeployJava1.dll
1214. FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
1215. FF - ExtSQL: 2013-08-29 14:45; savingsslider@mybrowserbar.com; C:\Users\Max\AppData\Roaming\Mozilla\Firefox\Profiles\apmzeti2.default\extensions\savingsslider@mybrowserbar.com
1216. FF - ExtSQL: 2013-09-04 12:18; ytd@mybrowserbar.com; C:\Program Files (x86)\YTD Toolbar\FF
1217. FF - ExtSQL: !HIDDEN! 2012-06-18 21:15; smartwebprinting@hp.com; C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
1218. .
1219. ============= SERVICES / DRIVERS ===============
1220. .
1221. R0 aswRvrt;aswRvrt;C:\Windows\System32\drivers\aswRvrt.sys [2013-9-6 65336]
1222. R0 aswVmm;aswVmm;C:\Windows\System32\drivers\aswVmm.sys [2013-9-6 204880]
1223. R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2013-1-20 230320]
1224. R1 aswSnx;aswSnx;C:\Windows\System32\drivers\aswSnx.sys [2013-9-6 1030952]
1225. R1 aswSP;aswSP;C:\Windows\System32\drivers\aswSP.sys [2013-9-6 378944]
1226. R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2013-5-19 283200]
1227. R2 aswFsBlk;aswFsBlk;C:\Windows\System32\drivers\aswFsBlk.sys [2013-9-6 33400]
1228. R2 aswMonFlt;aswMonFlt;C:\Windows\System32\drivers\aswMonFlt.sys [2013-9-6 80816]
1229. R3 HECIx64;Intel(R) Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2010-5-1 56344]
1230. R3 Impcd;Impcd;C:\Windows\System32\drivers\Impcd.sys [2010-2-26 158976]
1231. R3 intelkmd;intelkmd;C:\Windows\System32\drivers\igdpmd64.sys [2010-7-27 10610400]
1232. R3 NETw5s64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;C:\Windows\System32\drivers\NETw5s64.sys [2010-1-13 7675392]
1233. R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2011-6-10 539240]
1234. R3 ScreamBAudioSvc;ScreamBee Audio;C:\Windows\System32\drivers\ScreamingBAudio64.sys [2010-7-1 38992]
1235. S3 hidkmdf;KMDF Driver;C:\Windows\System32\drivers\hidkmdf.sys [2013-6-15 13728]
1236. S3 HTCAND64;HTC Device Driver;C:\Windows\System32\drivers\ANDROIDUSB.sys [2009-11-2 33736]
1237. S3 htcnprot;HTC NDIS Protocol Driver;C:\Windows\System32\drivers\htcnprot.sys [2010-6-25 36928]
1238. S3 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2010-10-24 130008]
1239. S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\RtsUStor.sys [2012-4-30 232992]
1240. S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-20 59392]
1241. S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-20 31232]
1242. S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-7-9 52736]
1243. S3 WacHidRouter;Wacom Hid Router;C:\Windows\System32\drivers\wachidrouter.sys [2013-6-15 81824]
1244. S3 wacmoumonitor;Wacom Mode Helper;C:\Windows\System32\drivers\wacmoumonitor.sys [2012-11-12 13312]
1245. S3 wacomrouterfilter;Wacom Router Filter Driver;C:\Windows\System32\drivers\wacomrouterfilter.sys [2013-6-15 15776]
1246. .
1247. =============== Created Last 30 ================
1248. .
1249. 2013-09-14 03:07:35 9515512 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9C24B184-7E0A-4894-8293-037EB3C0BB0B}\mpengine.dll
1250. 2013-09-12 16:54:59 9515512 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
1251. 2013-09-11 06:12:18 4751752 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe
1252. 2013-09-07 00:55:14 965008 ------w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FDBCB029-60FD-4DDE-9DBD-920301D62E6A}\gapaengine.dll
1253. 2013-09-07 00:26:38 72016 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
1254. 2013-09-07 00:26:36 204880 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
1255. 2013-09-07 00:26:36 1030952 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
1256. 2013-09-07 00:26:33 65336 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
1257. 2013-09-07 00:26:28 80816 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
1258. 2013-09-07 00:25:43 41664 ----a-w- C:\Windows\avastSS.scr
1259. 2013-09-07 00:25:11 -------- d-----w- C:\Program Files\AVAST Software
1260. 2013-09-07 00:24:13 -------- d-----w- C:\ProgramData\AVAST Software
1261. 2013-09-04 16:18:17 -------- d-----w- C:\Program Files (x86)\Application Updater
1262. 2013-09-04 16:18:15 -------- d-----w- C:\Program Files (x86)\YTD Toolbar
1263. 2013-08-29 18:45:56 -------- d-----w- C:\Users\Max\AppData\Local\Slick Savings
1264. 2013-08-29 18:45:54 -------- d-----w- C:\Users\Max\AppData\Roaming\Slick Savings
1265. 2013-08-29 18:45:42 -------- d-----w- C:\Program Files (x86)\Common Files\Spigot
1266. 2013-08-29 18:45:25 -------- d-----w- C:\ProgramData\YTD Video Downloader
1267. 2013-08-29 18:45:18 -------- d-----w- C:\Program Files (x86)\GreenTree Applications
1268. 2013-08-28 22:55:37 -------- d-----w- C:\ProgramData\cop
1269. 2013-08-28 22:55:36 -------- d-----w- C:\ProgramData\nhmaj
1270. 2013-08-21 04:48:24 -------- d-----w- C:\Windows\SysWow64\AGEIA
1271. 2013-08-21 04:47:17 -------- d-----w- C:\Program Files (x86)\Common Files\Wise Installation Wizard
1272. 2013-08-17 04:51:26 -------- d-----w- C:\Program Files (x86)\AMD
1273. 2013-08-17 04:51:24 -------- d-----w- C:\Users\Max\AppData\Local\Downloaded Installations
1274. 2013-08-17 04:47:32 -------- d-----w- C:\Windows\SysWow64\xlive
1275. 2013-08-17 04:47:20 -------- d-----w- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
1276. .
1277. ==================== Find3M ====================
1278. .
1279. 2013-09-13 19:12:50 692616 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
1280. 2013-09-13 19:12:49 71048 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
1281. 2013-08-10 05:22:18 2241024 ----a-w- C:\Windows\System32\wininet.dll
1282. 2013-08-10 05:20:59 3959296 ----a-w- C:\Windows\System32\jscript9.dll
1283. 2013-08-10 05:20:55 67072 ----a-w- C:\Windows\System32\iesetup.dll
1284. 2013-08-10 05:20:55 136704 ----a-w- C:\Windows\System32\iesysprep.dll
1285. 2013-08-10 03:59:10 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll
1286. 2013-08-10 03:58:09 2876928 ----a-w- C:\Windows\SysWow64\jscript9.dll
1287. 2013-08-10 03:58:06 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll
1288. 2013-08-10 03:58:06 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll
1289. 2013-08-10 03:17:38 2706432 ----a-w- C:\Windows\System32\mshtml.tlb
1290. 2013-08-10 03:07:50 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb
1291. 2013-08-10 02:27:59 89600 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe
1292. 2013-08-10 02:17:19 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe
1293. 2013-08-08 01:20:43 3155456 ----a-w- C:\Windows\System32\win32k.sys
1294. 2013-08-05 02:25:45 155584 ----a-w- C:\Windows\System32\drivers\ataport.sys
1295. 2013-08-02 02:23:53 5550528 ----a-w- C:\Windows\System32\ntoskrnl.exe
1296. 2013-08-02 02:15:44 1732032 ----a-w- C:\Windows\System32\ntdll.dll
1297. 2013-08-02 02:15:03 362496 ----a-w- C:\Windows\System32\wow64win.dll
1298. 2013-08-02 02:15:03 243712 ----a-w- C:\Windows\System32\wow64.dll
1299. 2013-08-02 02:15:03 13312 ----a-w- C:\Windows\System32\wow64cpu.dll
1300. 2013-08-02 02:14:57 215040 ----a-w- C:\Windows\System32\winsrv.dll
1301. 2013-08-02 02:14:11 16384 ----a-w- C:\Windows\System32\ntvdm64.dll
1302. 2013-08-02 02:13:34 424448 ----a-w- C:\Windows\System32\KernelBase.dll
1303. 2013-08-02 01:59:30 3968960 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
1304. 2013-08-02 01:59:30 3913664 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
1305. 2013-08-02 01:51:23 1292192 ----a-w- C:\Windows\SysWow64\ntdll.dll
1306. 2013-08-02 01:50:42 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
1307. 2013-08-02 01:50:42 274944 ----a-w- C:\Windows\SysWow64\KernelBase.dll
1308. 2013-08-02 01:09:17 338432 ----a-w- C:\Windows\System32\conhost.exe
1309. 2013-08-02 00:59:09 112640 ----a-w- C:\Windows\System32\smss.exe
1310. 2013-08-02 00:45:37 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
1311. 2013-08-02 00:45:36 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
1312. 2013-08-02 00:45:35 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
1313. 2013-08-02 00:45:34 2048 ----a-w- C:\Windows\SysWow64\user.exe
1314. 2013-08-02 00:43:05 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
1315. 2013-08-02 00:43:05 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
1316. 2013-08-02 00:43:05 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
1317. 2013-08-02 00:43:05 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
1318. 2013-07-25 09:25:54 1888768 ----a-w- C:\Windows\System32\WMVDECOD.DLL
1319. 2013-07-25 08:57:27 1620992 ----a-w- C:\Windows\SysWow64\WMVDECOD.DLL
1320. 2013-07-19 01:58:42 2048 ----a-w- C:\Windows\System32\tzres.dll
1321. 2013-07-19 01:41:01 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
1322. 2013-07-09 05:52:52 224256 ----a-w- C:\Windows\System32\wintrust.dll
1323. 2013-07-09 05:51:16 1217024 ----a-w- C:\Windows\System32\rpcrt4.dll
1324. 2013-07-09 05:46:20 184320 ----a-w- C:\Windows\System32\cryptsvc.dll
1325. 2013-07-09 05:46:20 1472512 ----a-w- C:\Windows\System32\crypt32.dll
1326. 2013-07-09 05:46:20 139776 ----a-w- C:\Windows\System32\cryptnet.dll
1327. 2013-07-09 04:52:33 663552 ----a-w- C:\Windows\SysWow64\rpcrt4.dll
1328. 2013-07-09 04:52:10 175104 ----a-w- C:\Windows\SysWow64\wintrust.dll
1329. 2013-07-09 04:46:31 140288 ----a-w- C:\Windows\SysWow64\cryptsvc.dll
1330. 2013-07-09 04:46:31 1166848 ----a-w- C:\Windows\SysWow64\crypt32.dll
1331. 2013-07-09 04:46:31 103936 ----a-w- C:\Windows\SysWow64\cryptnet.dll
1332. 2013-07-06 06:03:53 1910208 ----a-w- C:\Windows\System32\drivers\tcpip.sys
1333. 2013-07-02 03:58:41 9728 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
1334. 2013-07-01 19:28:10 325920 ----a-w- C:\Windows\SysWow64\Sendori.dll
1335. .
1336. ============= FINISH: 19:36:16.99 ===============
1337.  
1338. .
1339. UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
1340. IF REQUESTED, ZIP IT UP & ATTACH IT
1341. .
1342. DDS (Ver_2012-11-20.01)
1343. .
1344. Microsoft Windows 7 Home Premium
1345. Boot Device: \Device\HarddiskVolume1
1346. Install Date: 4/27/2012 5:33:03 PM
1347. System Uptime: 9/14/2013 7:24:21 PM (0 hours ago)
1348. .
1349. Motherboard: Hewlett-Packard | | 144A
1350. Processor: Intel(R) Core(TM) i5 CPU M 450 @ 2.40GHz | CPU | 2256/1066mhz
1351. .
1352. ==== Disk Partitions =========================
1353. .
1354. C: is FIXED (NTFS) - 466 GiB total, 201.626 GiB free.
1355. D: is CDROM (CDFS)
1356. E: is CDROM ()
1357. F: is FIXED (NTFS) - 931 GiB total, 557.611 GiB free.
1358. .
1359. ==== Disabled Device Manager Items =============
1360. .
1361. Class GUID: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
1362. Description: Lexmark X422
1363. Device ID: ROOT\IMAGE\0000
1364. Manufacturer: Lexmark
1365. Name: Lexmark X422
1366. PNP Device ID: ROOT\IMAGE\0000
1367. Service: usbscan
1368. .
1369. ==== System Restore Points ===================
1370. .
1371. RP237: 9/12/2013 2:26:57 PM - Scheduled Checkpoint
1372. .
1373. ==== Installed Programs ======================
1374. .
1375. Leawo Video Converter version 5.2.0.1
1376. µTorrent
1377. 64 Bit HP CIO Components Installer
1378. 7-Zip 9.20 (x64 edition)
1379. Adobe AIR
1380. Adobe Anchor Service CS3
1381. Adobe Asset Services CS3
1382. Adobe Bridge CS3
1383. Adobe Bridge Start Meeting
1384. Adobe Camera Raw 4.0
1385. Adobe CMaps
1386. Adobe Color - Photoshop Specific
1387. Adobe Color Common Settings
1388. Adobe Color EU Extra Settings
1389. Adobe Color JA Extra Settings
1390. Adobe Color NA Recommended Settings
1391. Adobe Default Language CS3
1392. Adobe Device Central CS3
1393. Adobe ExtendScript Toolkit 2
1394. Adobe Flash Player 11 ActiveX
1395. Adobe Flash Player 11 Plugin
1396. Adobe Fonts All
1397. Adobe Help Viewer CS3
1398. Adobe Linguistics CS3
1399. Adobe PDF Library Files
1400. Adobe Photoshop CS3
1401. Adobe Photoshop CS6
1402. Adobe Reader X (10.1.3)
1403. Adobe Setup
1404. Adobe Shockwave Player 11.6
1405. Adobe Stock Photos CS3
1406. Adobe Type Support
1407. Adobe Update Manager CS3
1408. Adobe Version Cue CS3 Client
1409. Adobe WinSoft Linguistics Plugin
1410. Adobe XMP Panels CS3
1411. AIM 7
1412. AIO_Scan
1413. Amazon MP3 Downloader 1.0.17
1414. Amnesia - The Dark Descent
1415. Apple Application Support
1416. Apple Mobile Device Support
1417. Apple Software Update
1418. ASPCA Reminder by We-Care.com v4.1.22.1
1419. ATI Catalyst Install Manager
1420. Audacity 2.0
1421. avast! Free Antivirus
1422. AVIcodec (remove only)
1423. Avidemux 2.6 (32-bit)
1424. Awesomenauts
1425. Bamboo Dock
1426. Bastion
1427. Batman: Arkham City GOTY
1428. Bonjour
1429. BufferChm
1430. calibre
1431. Catalyst Control Center - Branding
1432. Catalyst Control Center Graphics Previews Common
1433. Catalyst Control Center Graphics Previews Vista
1434. Catalyst Control Center InstallProxy
1435. Catalyst Control Center Localization All
1436. ccc-core-static
1437. ccc-utility64
1438. CCC Help Chinese Standard
1439. CCC Help Chinese Traditional
1440. CCC Help Czech
1441. CCC Help Danish
1442. CCC Help Dutch
1443. CCC Help English
1444. CCC Help Finnish
1445. CCC Help French
1446. CCC Help German
1447. CCC Help Greek
1448. CCC Help Hungarian
1449. CCC Help Italian
1450. CCC Help Japanese
1451. CCC Help Korean
1452. CCC Help Norwegian
1453. CCC Help Polish
1454. CCC Help Portuguese
1455. CCC Help Russian
1456. CCC Help Spanish
1457. CCC Help Swedish
1458. CCC Help Thai
1459. CCC Help Turkish
1460. CCleaner
1461. Celtx (2.9.7)
1462. Cheat Engine 6.2
1463. Combined Community Codec Pack 2013-05-30
1464. Comic Sound Pack
1465. Copy
1466. Costume Quest
1467. DAEMON Tools Lite
1468. Dead Island
1469. Dear Esther
1470. Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition
1471. Destinations
1472. Desura
1473. DeviceDiscovery
1474. DivX H.264 decoder 8.2.0.26
1475. DivX Setup
1476. DJ_AIO_ProductContext
1477. DJ_AIO_Software
1478. DJ_AIO_Software_min
1479. Dota 2
1480. Dropbox
1481. Dual-Core Optimizer
1482. F.lux
1483. F4100
1484. F4100_Help
1485. Facebook Video Calling 1.2.0.287
1486. Fantasy Voice Pack
1487. Female Voice Pack
1488. Free YouTube to MP3 Converter version 3.12.3.610
1489. Google Chrome
1490. GPBaseService2
1491. HandBrake 0.9.9.1
1492. HP Customer Participation Program 13.0
1493. HP Deskjet All-In-One Driver Software 13.0 Rel. 1
1494. HP DVB-T TV Tuner 8.0.64.43
1495. HP Imaging Device Functions 13.0
1496. HP MediaSmart SmartMenu
1497. HP Photosmart Essential 3.5
1498. HP Quick Launch
1499. HP Smart Web Printing 4.51
1500. HP Solution Center 13.0
1501. HP Update
1502. HPPhotoGadget
1503. HPPhotoSmartDiscLabelContent1
1504. HPPhotosmartEssential
1505. HPProductAssistant
1506. HPSSupply
1507. HTC Driver Installer
1508. IDT Audio
1509. Intel(R) Graphics Media Accelerator Driver
1510. Intel(R) Management Engine Components
1511. Intel(R) Rapid Storage Technology
1512. iTunes
1513. Java 7 Update 9
1514. Java Auto Updater
1515. Java(TM) 6 Update 31
1516. Java(TM) 6 Update 31 (64-bit)
1517. Left 4 Dead 2
1518. LogMeIn Hamachi
1519. Male Voice Pack
1520. Malwarebytes Anti-Malware version 1.75.0.1300
1521. MarketResearch
1522. Microsoft .NET Framework 4 Client Profile
1523. Microsoft .NET Framework 4 Extended
1524. Microsoft Games for Windows - LIVE Redistributable
1525. Microsoft Games for Windows Marketplace
1526. Microsoft Office 2010 Service Pack 1 (SP1)
1527. Microsoft Office Access MUI (English) 2010
1528. Microsoft Office Access Setup Metadata MUI (English) 2010
1529. Microsoft Office Excel MUI (English) 2010
1530. Microsoft Office Groove MUI (English) 2010
1531. Microsoft Office InfoPath MUI (English) 2010
1532. Microsoft Office Office 32-bit Components 2010
1533. Microsoft Office OneNote MUI (English) 2010
1534. Microsoft Office Outlook MUI (English) 2010
1535. Microsoft Office PowerPoint MUI (English) 2010
1536. Microsoft Office Professional Plus 2010
1537. Microsoft Office Proof (English) 2010
1538. Microsoft Office Proof (French) 2010
1539. Microsoft Office Proof (Spanish) 2010
1540. Microsoft Office Proofing (English) 2010
1541. Microsoft Office Publisher MUI (English) 2010
1542. Microsoft Office Shared 32-bit MUI (English) 2010
1543. Microsoft Office Shared MUI (English) 2010
1544. Microsoft Office Shared Setup Metadata MUI (English) 2010
1545. Microsoft Office Word MUI (English) 2010
1546. Microsoft Security Client
1547. Microsoft Security Essentials
1548. Microsoft Silverlight
1549. Microsoft Visual C++ 2005 Redistributable
1550. Microsoft Visual C++ 2005 Redistributable (x64)
1551. Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
1552. Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148
1553. Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
1554. Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
1555. Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
1556. Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
1557. Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
1558. Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
1559. Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
1560. Microsoft WSE 3.0 Runtime
1561. Microsoft XNA Framework Redistributable 3.1
1562. Microsoft_VC80_CRT_x86
1563. Microsoft_VC90_CRT_x86
1564. Mirror's Edge
1565. MorphVOX Pro
1566. Mozilla Firefox 15.0.1 (x86 en-US)
1567. Mozilla Firefox 18.0.1 (x86 en-US)
1568. Mozilla Maintenance Service
1569. MSVCRT Redists
1570. MSXML 4.0 SP2 (KB954430)
1571. MSXML 4.0 SP2 (KB973688)
1572. NVIDIA PhysX v8.10.17
1573. Open Broadcaster Software
1574. Pando Media Booster
1575. PcCloneEX
1576. PDF Settings
1577. PDF Settings CS6
1578. Personality Voices
1579. Perspective 1.0
1580. PX Profile Update
1581. QuickTime
1582. Rainmeter
1583. Realtek USB 2.0 Card Reader
1584. Red Orchestra 2: Heroes of Stalingrad
1585. Rinse (uninstall)
1586. RocketDock 1.3.5
1587. RoxioNow Player
1588. Scan
1589. Scrivener
1590. SecondLifeViewer (remove only)
1591. Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
1592. Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
1593. Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
1594. Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
1595. Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
1596. Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
1597. Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
1598. Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
1599. Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
1600. Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
1601. Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)
1602. Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
1603. Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
1604. Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
1605. Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
1606. Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
1607. Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)
1608. Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
1609. Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
1610. Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
1611. Security Update for Microsoft .NET Framework 4 Extended (KB2736428)
1612. Security Update for Microsoft .NET Framework 4 Extended (KB2742595)
1613. Security Update for Microsoft Excel 2010 (KB2760597) 64-Bit Edition
1614. Security Update for Microsoft InfoPath 2010 (KB2687422) 64-Bit Edition
1615. Security Update for Microsoft InfoPath 2010 (KB2760406) 64-Bit Edition
1616. Security Update for Microsoft Office 2010 (KB2553371) 64-Bit Edition
1617. Security Update for Microsoft Office 2010 (KB2589320) 64-Bit Edition
1618. Security Update for Microsoft Office 2010 (KB2598243) 64-Bit Edition
1619. Security Update for Microsoft Office 2010 (KB2687276) 64-Bit Edition
1620. Security Update for Microsoft Office 2010 (KB2687423) 64-Bit Edition
1621. Security Update for Microsoft Office 2010 (KB2687510) 64-Bit Edition
1622. Security Update for Microsoft Outlook 2010 (KB2794707) 64-Bit Edition
1623. Security Update for Microsoft Publisher 2010 (KB2553147) 64-Bit Edition
1624. Security Update for Microsoft Visio 2010 (KB2810068) 64-Bit Edition
1625. Security Update for Microsoft Word 2010 (KB2760769) 64-Bit Edition
1626. Sendori
1627. Shop for HP Supplies
1628. Skype™ 5.10
1629. Slick Savings
1630. SmartWebPrinting
1631. SolutionCenter
1632. Sonic & All-Stars Racing Transformed
1633. Speccy
1634. Stacking
1635. Status
1636. Steam
1637. swMSM
1638. Synaptics Pointing Device Driver
1639. Team Fortress 2
1640. TeamSpeak 3 Client
1641. The Ship
1642. Thomas Was Alone
1643. Toolbox
1644. TrayApp
1645. Unity Web Player
1646. UnloadSupport
1647. Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
1648. Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
1649. Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
1650. Update for Microsoft .NET Framework 4 Client Profile (KB2836939)
1651. Update for Microsoft .NET Framework 4 Extended (KB2468871)
1652. Update for Microsoft .NET Framework 4 Extended (KB2533523)
1653. Update for Microsoft .NET Framework 4 Extended (KB2600217)
1654. Update for Microsoft .NET Framework 4 Extended (KB2836939)
1655. Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition
1656. Update for Microsoft Filter Pack 2.0 (KB2810071) 64-Bit Edition
1657. Update for Microsoft Office 2010 (KB2553065)
1658. Update for Microsoft Office 2010 (KB2553157) 64-Bit Edition
1659. Update for Microsoft Office 2010 (KB2553181) 64-Bit Edition
1660. Update for Microsoft Office 2010 (KB2553267) 64-Bit Edition
1661. Update for Microsoft Office 2010 (KB2553310) 64-Bit Edition
1662. Update for Microsoft Office 2010 (KB2566458)
1663. Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition
1664. Update for Microsoft Office 2010 (KB2589370) 64-Bit Edition
1665. Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition
1666. Update for Microsoft Office 2010 (KB2598242) 64-Bit Edition
1667. Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition
1668. Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition
1669. Update for Microsoft Office 2010 (KB2760758) 64-Bit Edition
1670. Update for Microsoft Office 2010 (KB2767886) 64-Bit Edition
1671. Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition
1672. Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition
1673. Update for Microsoft OneNote 2010 (KB2553290) 64-Bit Edition
1674. Update for Microsoft OneNote 2010 (KB2810072) 64-Bit Edition
1675. Update for Microsoft Outlook 2010 (KB2687623) 64-Bit Edition
1676. Update for Microsoft Outlook Social Connector 2010 (KB2553406) 64-Bit Edition
1677. Update for Microsoft PowerPoint 2010 (KB2553145) 64-Bit Edition
1678. Update for Microsoft SharePoint Workspace 2010 (KB2589371) 64-Bit Edition
1679. Update for Microsoft Visio Viewer 2010 (KB2810066) 64-Bit Edition
1680. Validity Sensors DDK
1681. VC80CRTRedist - 8.0.50727.6195
1682. Vegas Pro 12.0 (64-bit)
1683. VLC media player 2.0.1
1684. Wacom
1685. WebReg
1686. WebTablet FB Plugin 32 bit
1687. WebTablet FB Plugin 64 bit
1688. WebTablet IE Plugin
1689. WebTablet Netscape Plugin
1690. Windows Live ID Sign-in Assistant
1691. WinX Free AVI to FLV Converter 4.1.11
1692. WinZip 16.5
1693. WModem Driver Installer
1694. x264vfw - H.264/MPEG-4 AVC codec (remove only)
1695. Xvid Video Codec
1696. YTD Toolbar v7.6
1697. YTD Video Downloader 4.5
1698. .
1699. ==== Event Viewer Messages From Past Week ========
1700. .
1701. 9/8/2013 10:35:32 AM, Error: Service Control Manager [7031] - The avast! Antivirus service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service.
1702. 9/7/2013 7:14:30 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Live ID Sign-in Assistant service to connect.
1703. 9/7/2013 7:14:30 PM, Error: Service Control Manager [7000] - The Windows Live ID Sign-in Assistant service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
1704. 9/7/2013 7:10:02 PM, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start.
1705. 9/7/2013 7:08:01 PM, Error: Service Control Manager [7001] - The HomeGroup Provider service depends on the Function Discovery Provider Host service which failed to start because of the following error: The dependency service or group failed to start.
1706. 9/7/2013 7:08:00 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
1707. 9/7/2013 7:08:00 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
1708. 9/7/2013 7:07:55 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
1709. 9/7/2013 7:07:48 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
1710. 9/7/2013 7:07:44 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: aswRvrt aswSnx aswSP aswTdi aswVmm discache MpFilter spldr Wanarpv6
1711. 9/7/2013 11:26:44 PM, Error: Service Control Manager [7034] - The sndappv2 service terminated unexpectedly. It has done this 3 time(s).
1712. 9/14/2013 7:35:46 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Application Sendori service.
1713. 9/14/2013 6:50:50 PM, Error: Service Control Manager [7034] - The hpqcxs08 service terminated unexpectedly. It has done this 1 time(s).
1714. 9/14/2013 6:50:50 PM, Error: Service Control Manager [7034] - The HP CUE DeviceDiscovery Service service terminated unexpectedly. It has done this 1 time(s).
1715. 9/14/2013 6:20:30 PM, Error: Service Control Manager [7031] - The Service Sendori service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
1716. 9/14/2013 10:18:58 AM, Error: Service Control Manager [7022] - The Service Sendori service hung on starting.
1717. 9/13/2013 9:07:30 PM, Error: Service Control Manager [7034] - The sndappv2 service terminated unexpectedly. It has done this 1 time(s).
1718. 9/13/2013 11:10:48 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.
1719. 9/13/2013 11:10:48 PM, Error: Service Control Manager [7000] - The Steam Client Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
1720. 9/12/2013 4:30:07 PM, Error: Service Control Manager [7034] - The LogMeIn Hamachi Tunneling Engine service terminated unexpectedly. It has done this 1 time(s).
1721. 9/12/2013 12:43:14 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Service Sendori service to connect.
1722. 9/12/2013 12:43:14 PM, Error: Service Control Manager [7000] - The Service Sendori service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
1723. 9/11/2013 2:37:59 PM, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
1724. 9/11/2013 12:13:41 AM, Error: Service Control Manager [7034] - The sndappv2 service terminated unexpectedly. It has done this 2 time(s).
1725. 9/10/2013 6:20:54 PM, Error: bowser [8003] - The master browser has received a server announcement from the computer OHHSOOOOSEXI that believes that it is the master browser for the domain on transport NetBT_Tcpip_{44399836-259D-446E-BE5B-755F08652AA7}. The master browser is stopping or an election is being forced.
1726. .
1727. ==== End Of File ===========================
1728. ComboFix 13-09-14.01 - Max 09/14/2013 19:39:46.1.4 - x64
1729. Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.3894.2353 [GMT -4:00]
1730. Running from: c:\users\Max\Downloads\ComboFix.exe
1731. AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
1732. AV: Microsoft Security Essentials *Disabled/Updated* {3F839487-C7A2-C958-E30C-E2825BA31FB5}
1733. SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
1734. SP: Microsoft Security Essentials *Disabled/Updated* {84E27563-E198-C6D6-D9BC-D9F020245508}
1735. SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
1736. * Created a new restore point
1737. .
1738. .
1739. ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
1740. .
1741. .
1742. C:\END
1743. C:\install.exe
1744. c:\programdata\uninstaller.exe
1745. c:\users\Max\AppData\Local\Google\Chrome\User Data\Default\Preferences
1746. c:\users\Max\Documents\~WRL0003.tmp
1747. c:\users\Max\Documents\~WRL2043.tmp
1748. .
1749. Infected copy of c:\windows\system32\Services.exe was found and disinfected
1750. Restored copy from - c:\windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe
1751. .
1752. .
1753. ((((((((((((((((((((((((( Files Created from 2013-08-14 to 2013-09-14 )))))))))))))))))))))))))))))))
1754. .
1755. .
1756. 2013-09-14 23:51 . 2013-09-14 23:51 -------- d-----w- c:\users\Default\AppData\Local\temp
1757. 2013-09-14 03:07 . 2013-08-06 08:58 9515512 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{9C24B184-7E0A-4894-8293-037EB3C0BB0B}\mpengine.dll
1758. 2013-09-12 16:54 . 2013-08-06 08:58 9515512 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
1759. 2013-09-11 06:12 . 2013-09-13 19:12 4751752 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe
1760. 2013-09-07 00:55 . 2013-09-07 00:25 965008 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{FDBCB029-60FD-4DDE-9DBD-920301D62E6A}\gapaengine.dll
1761. 2013-09-07 00:26 . 2013-08-30 07:48 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
1762. 2013-09-07 00:26 . 2013-08-30 07:48 378944 ----a-w- c:\windows\system32\drivers\aswSP.sys
1763. 2013-09-07 00:26 . 2013-08-30 07:48 72016 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
1764. 2013-09-07 00:26 . 2013-08-30 07:48 64288 ----a-w- c:\windows\system32\drivers\aswTdi.sys
1765. 2013-09-07 00:26 . 2013-08-30 07:48 204880 ----a-w- c:\windows\system32\drivers\aswVmm.sys
1766. 2013-09-07 00:26 . 2013-08-30 07:48 1030952 ----a-w- c:\windows\system32\drivers\aswSnx.sys
1767. 2013-09-07 00:26 . 2013-08-30 07:48 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
1768. 2013-09-07 00:26 . 2013-08-30 07:48 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
1769. 2013-09-07 00:26 . 2013-08-30 07:47 287840 ----a-w- c:\windows\system32\aswBoot.exe
1770. 2013-09-07 00:25 . 2013-08-30 07:47 41664 ----a-w- c:\windows\avastSS.scr
1771. 2013-09-07 00:25 . 2013-09-07 00:25 -------- d-----w- c:\program files\AVAST Software
1772. 2013-09-07 00:24 . 2013-09-07 00:25 -------- d-----w- c:\programdata\AVAST Software
1773. 2013-09-04 16:18 . 2013-09-04 16:18 -------- d-----w- c:\program files (x86)\Application Updater
1774. 2013-09-04 16:18 . 2013-09-04 16:18 -------- d-----w- c:\program files (x86)\YTD Toolbar
1775. 2013-08-29 18:45 . 2013-08-29 18:45 -------- d-----w- c:\users\Max\AppData\Local\Slick Savings
1776. 2013-08-29 18:45 . 2013-09-08 03:27 -------- d-----w- c:\users\Max\AppData\Roaming\Slick Savings
1777. 2013-08-29 18:45 . 2013-09-04 16:18 -------- d-----w- c:\program files (x86)\Common Files\Spigot
1778. 2013-08-29 18:45 . 2013-09-02 19:38 -------- d-----w- c:\programdata\YTD Video Downloader
1779. 2013-08-29 18:45 . 2013-08-29 18:45 -------- d-----w- c:\program files (x86)\GreenTree Applications
1780. 2013-08-28 22:55 . 2013-08-28 22:55 -------- d-----w- c:\programdata\cop
1781. 2013-08-28 22:55 . 2013-08-28 22:56 -------- d-----w- c:\programdata\nhmaj
1782. 2013-08-21 04:48 . 2013-08-21 04:48 -------- d-----w- c:\windows\SysWow64\AGEIA
1783. 2013-08-21 04:48 . 2013-08-21 04:48 -------- d-----w- c:\program files (x86)\AGEIA Technologies
1784. 2013-08-21 04:47 . 2013-08-21 04:47 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
1785. 2013-08-17 04:51 . 2013-08-17 04:51 -------- d-----w- c:\program files (x86)\AMD
1786. 2013-08-17 04:51 . 2013-08-17 04:51 -------- d-----w- c:\users\Max\AppData\Local\Downloaded Installations
1787. 2013-08-17 04:47 . 2013-08-17 04:47 -------- d-----w- c:\windows\SysWow64\xlive
1788. 2013-08-17 04:47 . 2013-08-17 04:47 -------- d-----w- c:\program files (x86)\Microsoft Games for Windows - LIVE
1789. .
1790. .
1791. .
1792. (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
1793. .
1794. 2013-09-13 19:12 . 2012-04-30 19:33 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
1795. 2013-09-13 19:12 . 2012-04-30 19:33 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
1796. 2013-09-11 07:09 . 2012-04-30 18:32 79143768 ----a-w- c:\windows\system32\MRT.exe
1797. 2013-08-23 20:00 . 2012-06-12 14:12 941720 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
1798. 2013-08-17 05:18 . 2009-08-18 16:49 564632 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
1799. 2013-08-17 05:18 . 2009-08-18 15:24 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
1800. 2013-08-02 01:48 . 2013-09-11 06:11 44032 ----a-w- c:\windows\apppatch\acwow64.dll
1801. 2013-07-25 09:25 . 2013-08-13 22:52 1888768 ----a-w- c:\windows\system32\WMVDECOD.DLL
1802. 2013-07-25 08:57 . 2013-08-13 22:52 1620992 ----a-w- c:\windows\SysWow64\WMVDECOD.DLL
1803. 2013-07-19 01:58 . 2013-08-13 22:53 2048 ----a-w- c:\windows\system32\tzres.dll
1804. 2013-07-19 01:41 . 2013-08-13 22:53 2048 ----a-w- c:\windows\SysWow64\tzres.dll
1805. 2013-07-09 05:52 . 2013-08-13 22:53 224256 ----a-w- c:\windows\system32\wintrust.dll
1806. 2013-07-09 05:51 . 2013-08-13 22:52 1217024 ----a-w- c:\windows\system32\rpcrt4.dll
1807. 2013-07-09 05:46 . 2013-08-13 22:53 1472512 ----a-w- c:\windows\system32\crypt32.dll
1808. 2013-07-09 05:46 . 2013-08-13 22:53 184320 ----a-w- c:\windows\system32\cryptsvc.dll
1809. 2013-07-09 05:46 . 2013-08-13 22:53 139776 ----a-w- c:\windows\system32\cryptnet.dll
1810. 2013-07-09 04:52 . 2013-08-13 22:52 663552 ----a-w- c:\windows\SysWow64\rpcrt4.dll
1811. 2013-07-09 04:52 . 2013-08-13 22:53 175104 ----a-w- c:\windows\SysWow64\wintrust.dll
1812. 2013-07-09 04:46 . 2013-08-13 22:53 1166848 ----a-w- c:\windows\SysWow64\crypt32.dll
1813. 2013-07-09 04:46 . 2013-08-13 22:53 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll
1814. 2013-07-09 04:46 . 2013-08-13 22:53 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
1815. 2013-07-06 06:03 . 2013-08-13 22:52 1910208 ----a-w- c:\windows\system32\drivers\tcpip.sys
1816. 2013-07-02 04:00 . 2013-07-02 04:00 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
1817. 2013-07-02 04:00 . 2013-07-02 04:00 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
1818. 2013-07-02 04:00 . 2013-07-02 04:00 523264 ----a-w- c:\windows\SysWow64\vbscript.dll
1819. 2013-07-02 04:00 . 2013-07-02 04:00 226304 ----a-w- c:\windows\system32\elshyph.dll
1820. 2013-07-02 04:00 . 2013-07-02 04:00 185344 ----a-w- c:\windows\SysWow64\elshyph.dll
1821. 2013-07-02 04:00 . 2013-07-02 04:00 158720 ----a-w- c:\windows\SysWow64\msls31.dll
1822. 2013-07-02 04:00 . 2013-07-02 04:00 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
1823. 2013-07-02 04:00 . 2013-07-02 04:00 138752 ----a-w- c:\windows\SysWow64\wextract.exe
1824. 2013-07-02 04:00 . 2013-07-02 04:00 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
1825. 2013-07-02 04:00 . 2013-07-02 04:00 61952 ----a-w- c:\windows\SysWow64\tdc.ocx
1826. 2013-07-02 04:00 . 2013-07-02 04:00 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
1827. 2013-07-02 04:00 . 2013-07-02 04:00 38400 ----a-w- c:\windows\SysWow64\imgutil.dll
1828. 2013-07-02 04:00 . 2013-07-02 04:00 361984 ----a-w- c:\windows\SysWow64\html.iec
1829. 2013-07-02 04:00 . 2013-07-02 04:00 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe
1830. 2013-07-02 04:00 . 2013-07-02 04:00 12800 ----a-w- c:\windows\SysWow64\mshta.exe
1831. 2013-07-02 04:00 . 2013-07-02 04:00 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
1832. 2013-07-02 04:00 . 2013-07-02 04:00 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll
1833. 2013-07-02 04:00 . 2013-07-02 04:00 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl
1834. 2013-07-02 04:00 . 2013-07-02 04:00 97280 ----a-w- c:\windows\system32\mshtmled.dll
1835. 2013-07-02 04:00 . 2013-07-02 04:00 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll
1836. 2013-07-02 04:00 . 2013-07-02 04:00 81408 ----a-w- c:\windows\system32\icardie.dll
1837. 2013-07-02 04:00 . 2013-07-02 04:00 762368 ----a-w- c:\windows\system32\ieapfltr.dll
1838. 2013-07-02 04:00 . 2013-07-02 04:00 599552 ----a-w- c:\windows\system32\vbscript.dll
1839. 2013-07-02 04:00 . 2013-07-02 04:00 452096 ----a-w- c:\windows\system32\dxtmsft.dll
1840. 2013-07-02 04:00 . 2013-07-02 04:00 441856 ----a-w- c:\windows\system32\html.iec
1841. 2013-07-02 04:00 . 2013-07-02 04:00 281600 ----a-w- c:\windows\system32\dxtrans.dll
1842. 2013-07-02 04:00 . 2013-07-02 04:00 27648 ----a-w- c:\windows\system32\licmgr10.dll
1843. 2013-07-02 04:00 . 2013-07-02 04:00 270848 ----a-w- c:\windows\system32\iedkcs32.dll
1844. 2013-07-02 04:00 . 2013-07-02 04:00 247296 ----a-w- c:\windows\system32\webcheck.dll
1845. 2013-07-02 04:00 . 2013-07-02 04:00 235008 ----a-w- c:\windows\system32\url.dll
1846. 2013-07-02 04:00 . 2013-07-02 04:00 216064 ----a-w- c:\windows\system32\msls31.dll
1847. 2013-07-02 04:00 . 2013-07-02 04:00 197120 ----a-w- c:\windows\system32\msrating.dll
1848. 2013-07-02 04:00 . 2013-07-02 04:00 167424 ----a-w- c:\windows\system32\iexpress.exe
1849. 2013-07-02 04:00 . 2013-07-02 04:00 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
1850. 2013-07-02 04:00 . 2013-07-02 04:00 144896 ----a-w- c:\windows\system32\wextract.exe
1851. 2013-07-02 04:00 . 2013-07-02 04:00 1400416 ----a-w- c:\windows\system32\ieapfltr.dat
1852. 2013-07-02 04:00 . 2013-07-02 04:00 102912 ----a-w- c:\windows\system32\inseng.dll
1853. 2013-07-02 04:00 . 2013-07-02 04:00 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
1854. 2013-07-02 04:00 . 2013-07-02 04:00 77312 ----a-w- c:\windows\system32\tdc.ocx
1855. 2013-07-02 04:00 . 2013-07-02 04:00 62976 ----a-w- c:\windows\system32\pngfilt.dll
1856. 2013-07-02 04:00 . 2013-07-02 04:00 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
1857. 2013-07-02 04:00 . 2013-07-02 04:00 51200 ----a-w- c:\windows\system32\imgutil.dll
1858. 2013-07-02 04:00 . 2013-07-02 04:00 48640 ----a-w- c:\windows\system32\mshtmler.dll
1859. 2013-07-02 04:00 . 2013-07-02 04:00 173568 ----a-w- c:\windows\system32\ieUnatt.exe
1860. 2013-07-02 04:00 . 2013-07-02 04:00 149504 ----a-w- c:\windows\system32\occache.dll
1861. 2013-07-02 04:00 . 2013-07-02 04:00 13824 ----a-w- c:\windows\system32\mshta.exe
1862. 2013-07-02 04:00 . 2013-07-02 04:00 136192 ----a-w- c:\windows\system32\iepeers.dll
1863. 2013-07-02 04:00 . 2013-07-02 04:00 135680 ----a-w- c:\windows\system32\IEAdvpack.dll
1864. 2013-07-02 04:00 . 2013-07-02 04:00 12800 ----a-w- c:\windows\system32\msfeedssync.exe
1865. 2013-07-02 03:58 . 2013-07-02 03:58 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
1866. 2013-07-02 03:58 . 2013-07-02 03:58 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
1867. 2013-07-02 03:58 . 2013-07-02 03:58 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
1868. 2013-07-02 03:58 . 2013-07-02 03:58 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
1869. 2013-07-02 03:58 . 2013-07-02 03:58 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
1870. 2013-07-02 03:58 . 2013-07-02 03:58 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
1871. 2013-07-02 03:58 . 2013-07-02 03:58 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
1872. 2013-07-02 03:58 . 2013-07-02 03:58 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
1873. 2013-07-02 03:58 . 2013-07-02 03:58 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
1874. 2013-07-02 03:58 . 2013-07-02 03:58 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
1875. 2013-07-02 03:58 . 2013-07-02 03:58 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
1876. 2013-07-02 03:58 . 2013-07-02 03:58 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
1877. 2013-07-02 03:58 . 2013-07-02 03:58 2560 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
1878. 2013-07-02 03:58 . 2013-07-02 03:58 522752 ----a-w- c:\windows\system32\XpsGdiConverter.dll
1879. 2013-07-02 03:58 . 2013-07-02 03:58 465920 ----a-w- c:\windows\system32\WMPhoto.dll
1880. 2013-07-02 03:58 . 2013-07-02 03:58 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
1881. 2013-07-02 03:58 . 2013-07-02 03:58 3928064 ----a-w- c:\windows\system32\d2d1.dll
1882. 2013-07-02 03:58 . 2013-07-02 03:58 364544 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
1883. 2013-07-02 03:58 . 2013-07-02 03:58 363008 ----a-w- c:\windows\system32\dxgi.dll
1884. 2013-07-02 03:58 . 2013-07-02 03:58 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
1885. 2013-07-02 03:58 . 2013-07-02 03:58 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
1886. 2013-07-02 03:58 . 2013-07-02 03:58 2776576 ----a-w- c:\windows\system32\msmpeg2vdec.dll
1887. 2013-07-02 03:58 . 2013-07-02 03:58 2565120 ----a-w- c:\windows\system32\d3d10warp.dll
1888. 2013-07-02 03:58 . 2013-07-02 03:58 2560 ---ha-w- c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
1889. 2013-07-02 03:58 . 2013-07-02 03:58 249856 ----a-w- c:\windows\SysWow64\d3d10_1core.dll
1890. 2013-07-02 03:58 . 2013-07-02 03:58 2284544 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
1891. 2013-07-02 03:58 . 2013-07-02 03:58 220160 ----a-w- c:\windows\SysWow64\d3d10core.dll
1892. 2013-07-02 03:58 . 2013-07-02 03:58 207872 ----a-w- c:\windows\SysWow64\WindowsCodecsExt.dll
1893. 2013-07-02 03:58 . 2013-07-02 03:58 1682432 ----a-w- c:\windows\system32\XpsPrint.dll
1894. .
1895. .
1896. ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
1897. .
1898. .
1899. *Note* empty entries & legit default entries are not shown
1900. REGEDIT4
1901. .
1902. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{F3FEE66E-E034-436a-86E4-9690573BEE8A}]
1903. 2013-09-02 17:03 1357120 ----a-w- c:\program files (x86)\YTD Toolbar\IE\7.6\ytdToolbarIE.dll
1904. .
1905. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
1906. "{F3FEE66E-E034-436a-86E4-9690573BEE8A}"= "c:\program files (x86)\YTD Toolbar\IE\7.6\ytdToolbarIE.dll" [2013-09-02 1357120]
1907. .
1908. [HKEY_CLASSES_ROOT\clsid\{f3fee66e-e034-436a-86e4-9690573bee8a}]
1909. .
1910. [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
1911. @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
1912. [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
1913. 2013-05-25 00:36 130736 ----a-w- c:\users\Max\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
1914. .
1915. [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
1916. @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
1917. [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
1918. 2013-05-25 00:36 130736 ----a-w- c:\users\Max\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
1919. .
1920. [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
1921. @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
1922. [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
1923. 2013-05-25 00:36 130736 ----a-w- c:\users\Max\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
1924. .
1925. [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
1926. @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
1927. [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
1928. 2013-05-25 00:36 130736 ----a-w- c:\users\Max\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
1929. .
1930. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
1931. "GoogleChromeAutoLaunch_FB0DCF795F3086C624F9CCAD45E29F3E"="c:\users\Max\AppData\Local\Google\Chrome\Application\chrome.exe" [2013-09-02 829392]
1932. "Facebook Update"="c:\users\Max\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2012-10-23 138096]
1933. "F.lux"="c:\users\Max\Local Settings\Apps\F.lux\flux.exe" [2009-08-29 966656]
1934. "DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-03-14 3672640]
1935. "Xvid"="c:\program files (x86)\Xvid\CheckUpdate.exe" [2011-01-17 8192]
1936. .
1937. [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
1938. "StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-09-09 98304]
1939. "IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-04-13 284696]
1940. "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-04-04 843712]
1941. "HP Quick Launch"="c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2010-11-09 586296]
1942. "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-08-28 59280]
1943. "hpqSRMon"="c:\program files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-07-22 150528]
1944. "HP Software Update"="c:\program files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2011-05-10 49208]
1945. "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2012-04-19 421888]
1946. "VMM Mode Selection"="c:\program files\HTC\ModeSelection\VMMModeSelection.exe" [2011-02-14 43520]
1947. "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
1948. "iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-09-10 421776]
1949. "BambooCore"="c:\program files (x86)\Bamboo Dock\BambooCore.exe" [2012-12-27 646744]
1950. "Sendori Tray"="c:\program files (x86)\Sendori\SendoriTray.exe" [2013-07-01 83232]
1951. "SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
1952. "AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-03-09 1073312]
1953. "DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2013-02-13 1263952]
1954. "LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2013-06-28 2255184]
1955. "amd_dc_opt"="c:\program files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824]
1956. "SearchSettings"="c:\program files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe" [2013-09-02 1360192]
1957. "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-08-30 4858968]
1958. .
1959. c:\users\Max\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
1960. Dropbox.lnk - c:\users\Max\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2013-5-24 27776968]
1961. .
1962. [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
1963. "ConsentPromptBehaviorAdmin"= 5 (0x5)
1964. "ConsentPromptBehaviorUser"= 3 (0x3)
1965. "EnableUIADesktopToggle"= 0 (0x0)
1966. .
1967. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
1968. @="Service"
1969. .
1970. R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
1971. R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
1972. R3 Desura Install Service;Desura Install Service;c:\program files (x86)\Common Files\Desura\desura_service.exe;c:\program files (x86)\Common Files\Desura\desura_service.exe [x]
1973. R3 hidkmdf;KMDF Driver;c:\windows\system32\DRIVERS\hidkmdf.sys;c:\windows\SYSNATIVE\DRIVERS\hidkmdf.sys [x]
1974. R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys;c:\windows\SYSNATIVE\Drivers\ANDROIDUSB.sys [x]
1975. R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys;c:\windows\SYSNATIVE\DRIVERS\htcnprot.sys [x]
1976. R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
1977. R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
1978. R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
1979. R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
1980. R3 SwitchBoard;Adobe SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
1981. R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
1982. R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
1983. R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
1984. R3 WacHidRouter;Wacom Hid Router;c:\windows\system32\DRIVERS\wachidrouter.sys;c:\windows\SYSNATIVE\DRIVERS\wachidrouter.sys [x]
1985. R3 wacmoumonitor;Wacom Mode Helper;c:\windows\system32\DRIVERS\wacmoumonitor.sys;c:\windows\SYSNATIVE\DRIVERS\wacmoumonitor.sys [x]
1986. R3 wacomrouterfilter;Wacom Router Filter Driver;c:\windows\system32\DRIVERS\wacomrouterfilter.sys;c:\windows\SYSNATIVE\DRIVERS\wacomrouterfilter.sys [x]
1987. R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
1988. S0 aswRvrt;aswRvrt; [x]
1989. S0 aswVmm;aswVmm; [x]
1990. S1 aswSnx;aswSnx; [x]
1991. S1 aswSP;aswSP; [x]
1992. S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
1993. S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe;c:\program files\IDT\WDM\AESTSr64.exe [x]
1994. S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
1995. S2 Application Sendori;Application Sendori;c:\program files (x86)\Sendori\SendoriSvc.exe;c:\program files (x86)\Sendori\SendoriSvc.exe [x]
1996. S2 Application Updater;Application Updater;c:\program files (x86)\Application Updater\ApplicationUpdater.exe;c:\program files (x86)\Application Updater\ApplicationUpdater.exe [x]
1997. S2 aswFsBlk;aswFsBlk; [x]
1998. S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
1999. S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
2000. S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
2001. S2 HPWMISVC;HPWMISVC;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [x]
2002. S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
2003. S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [x]
2004. S2 RoxioNow Service;RoxioNow Service;c:\program files (x86)\Roxio\RoxioNow Player\RNowSvc.exe;c:\program files (x86)\Roxio\RoxioNow Player\RNowSvc.exe [x]
2005. S2 Service Sendori;Service Sendori;c:\program files (x86)\Sendori\Sendori.Service.exe;c:\program files (x86)\Sendori\Sendori.Service.exe [x]
2006. S2 sndappv2;sndappv2;c:\program files (x86)\Sendori\sndappv2.exe;c:\program files (x86)\Sendori\sndappv2.exe [x]
2007. S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
2008. S2 vcsFPService;Validity VCS Fingerprint Service;c:\windows\system32\vcsFPService.exe;c:\windows\SYSNATIVE\vcsFPService.exe [x]
2009. S2 WTabletServiceCon;Wacom Consumer Service;c:\program files\Tablet\Pen\WTabletServiceCon.exe;c:\program files\Tablet\Pen\WTabletServiceCon.exe [x]
2010. S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
2011. S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys;c:\windows\SYSNATIVE\DRIVERS\Impcd.sys [x]
2012. S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys;c:\windows\SYSNATIVE\DRIVERS\igdpmd64.sys [x]
2013. S3 NETw5s64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;c:\windows\system32\DRIVERS\NETw5s64.sys;c:\windows\SYSNATIVE\DRIVERS\NETw5s64.sys [x]
2014. S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
2015. S3 ScreamBAudioSvc;ScreamBee Audio;c:\windows\system32\drivers\ScreamingBAudio64.sys;c:\windows\SYSNATIVE\drivers\ScreamingBAudio64.sys [x]
2016. .
2017. .
2018. [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
2019. hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
2020. .
2021. Contents of the 'Scheduled Tasks' folder
2022. .
2023. 2013-09-14 c:\windows\Tasks\Adobe Flash Player Updater.job
2024. - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-30 19:12]
2025. .
2026. 2013-09-13 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3788014583-70045170-2691678204-1000Core.job
2027. - c:\users\Max\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-10-23 23:10]
2028. .
2029. 2013-09-14 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3788014583-70045170-2691678204-1000UA.job
2030. - c:\users\Max\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-10-23 23:10]
2031. .
2032. 2013-09-14 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3788014583-70045170-2691678204-1000Core.job
2033. - c:\users\Max\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-01 16:53]
2034. .
2035. 2013-09-14 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3788014583-70045170-2691678204-1000UA.job
2036. - c:\users\Max\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-01 16:53]
2037. .
2038. .
2039. --------- X64 Entries -----------
2040. .
2041. .
2042. [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
2043. @="{472083B0-C522-11CF-8763-00608CC02F24}"
2044. [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2045. 2013-08-30 07:47 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
2046. .
2047. [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
2048. @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
2049. [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2050. 2013-05-25 00:36 164016 ----a-w- c:\users\Max\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
2051. .
2052. [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
2053. @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
2054. [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2055. 2013-05-25 00:36 164016 ----a-w- c:\users\Max\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
2056. .
2057. [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
2058. @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
2059. [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2060. 2013-05-25 00:36 164016 ----a-w- c:\users\Max\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
2061. .
2062. [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
2063. @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
2064. [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2065. 2013-05-25 00:36 164016 ----a-w- c:\users\Max\AppData\Roaming\Dropbox\bin\DropboxExt64.19.dll
2066. .
2067. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
2068. "SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2010-07-22 487424]
2069. "IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-07-28 161304]
2070. "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-07-28 386584]
2071. "Persistence"="c:\windows\system32\igfxpers.exe" [2010-07-28 415256]
2072. "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-01-27 1281512]
2073. "BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]
2074. "AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-04 446392]
2075. .
2076. ------- Supplementary Scan -------
2077. .
2078. uLocal Page = c:\windows\system32\blank.htm
2079. uStart Page = hxxp://search.yahoo.com?type=937811&fr=spigot-yhp-ie
2080. mLocal Page = c:\windows\SysWOW64\blank.htm
2081. uInternet Settings,ProxyOverride = *.local
2082. IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office14\EXCEL.EXE/3000
2083. IE: Free YouTube to MP3 Converter - c:\users\Max\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm
2084. IE: Se&nd to OneNote - c:\progra~1\MICROS~3\Office14\ONBttnIE.dll/105
2085. Trusted Zone: cinemanow.com
2086. TCP: Interfaces\{DFB3FD25-330D-4B50-805C-E57A9015A807}\3416D607573735175716275643: NameServer = 192.168.1.1
2087. TCP: Interfaces\{DFB3FD25-330D-4B50-805C-E57A9015A807}\3416D607573735175716275663: NameServer = 192.168.1.1
2088. FF - ProfilePath - c:\users\Max\AppData\Roaming\Mozilla\Firefox\Profiles\apmzeti2.default\
2089. FF - prefs.js: browser.search.selectedEngine - Yahoo
2090. FF - prefs.js: browser.startup.homepage - hxxp://search.yahoo.com?type=937811&fr=spigot-yhp-ff
2091. FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=937811&p=
2092. FF - ExtSQL: 2013-08-29 14:45; savingsslider@mybrowserbar.com; c:\users\Max\AppData\Roaming\Mozilla\Firefox\Profiles\apmzeti2.default\extensions\savingsslider@mybrowserbar.com
2093. FF - ExtSQL: 2013-09-04 12:18; ytd@mybrowserbar.com; c:\program files (x86)\YTD Toolbar\FF
2094. FF - ExtSQL: !HIDDEN! 2012-06-18 21:15; smartwebprinting@hp.com; c:\program files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
2095. .
2096. - - - - ORPHANS REMOVED - - - -
2097. .
2098. Wow6432Node-HKCU-Run-LightScribe Control Panel - c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
2099. Wow6432Node-HKCU-Run-AdobeBridge - (no file)
2100. Wow6432Node-HKLM-Run-<NO NAME> - (no file)
2101. HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
2102. HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
2103. .
2104. .
2105. .
2106. --------------------- LOCKED REGISTRY KEYS ---------------------
2107. .
2108. [HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]
2109. @Denied: (2) (LocalSystem)
2110. "{0347C33E-8762-4905-BF09-768834316C61}"=hex:51,66,7a,6c,4c,1d,38,12,50,c0,54,
2111. 07,50,c9,6b,0c,c0,1f,35,c8,31,6f,28,75
2112. "{18DF081C-E8AD-4283-A596-FA578C2EBDC3}"=hex:51,66,7a,6c,4c,1d,38,12,72,0b,cc,
2113. 1c,9f,a6,ed,07,da,80,b9,17,89,70,f9,d7
2114. "{72853161-30C5-4D22-B7F9-0BBC1D38A37E}"=hex:51,66,7a,6c,4c,1d,38,12,0f,32,96,
2115. 76,f7,7e,4c,08,c8,ef,48,fc,18,66,e7,6a
2116. "{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}"=hex:51,66,7a,6c,4c,1d,38,12,d5,94,07,
2117. 72,c2,98,42,03,c9,fd,97,9a,f4,87,69,57
2118. "{B4F3A835-0E21-4959-BA22-42B3008E02FF}"=hex:51,66,7a,6c,4c,1d,38,12,5b,ab,e0,
2119. b0,13,40,37,0c,c5,34,01,f3,05,d0,46,eb
2120. "{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}"=hex:51,66,7a,6c,4c,1d,38,12,b0,f3,37,
2121. dc,52,73,39,0a,e1,a7,25,43,3b,93,ce,af
2122. "{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,38,12,2a,03,db,
2123. df,77,ea,35,06,c3,62,df,65,c4,9b,cc,bd
2124. "{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}"=hex:51,66,7a,6c,4c,1d,38,12,91,fc,ec,
2125. fb,7c,81,45,0a,c2,d4,4d,32,e4,48,ec,42
2126. "{2A541AE1-5BF6-4665-A8A3-CFA9672E4291}"=hex:51,66,7a,6c,4c,1d,38,12,8f,19,47,
2127. 2e,c4,15,0b,03,d7,b5,8c,e9,62,70,06,85
2128. "{555D4D79-4BD2-4094-A395-CFC534424A05}"=hex:51,66,7a,6c,4c,1d,38,12,17,4e,4e,
2129. 51,e0,05,fa,05,dc,83,8c,85,31,1c,0e,11
2130. .
2131. [HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\ApprovedExtensionsMigration]
2132. @Denied: (2) (LocalSystem)
2133. "Timestamp"=hex:47,0f,f6,1b,3b,92,ce,01
2134. .
2135. [HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
2136. @Denied: (2) (LocalSystem)
2137. "88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
2138. d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,c6,e1,0c,a4,b3,90,50,40,89,fa,d8,\
2139. "2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
2140. d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,c6,e1,0c,a4,b3,90,50,40,89,fa,d8,\
2141. .
2142. [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
2143. @Denied: (A 2) (Everyone)
2144. @="FlashBroker"
2145. "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_174_ActiveX.exe,-101"
2146. .
2147. [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
2148. "Enabled"=dword:00000001
2149. .
2150. [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
2151. @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_174_ActiveX.exe"
2152. .
2153. [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
2154. @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
2155. .
2156. [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
2157. @Denied: (A 2) (Everyone)
2158. @="IFlashBroker5"
2159. .
2160. [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
2161. @="{00020424-0000-0000-C000-000000000046}"
2162. .
2163. [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
2164. @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
2165. "Version"="1.0"
2166. .
2167. [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
2168. @Denied: (A 2) (Everyone)
2169. @="FlashBroker"
2170. "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_174_ActiveX.exe,-101"
2171. .
2172. [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
2173. "Enabled"=dword:00000001
2174. .
2175. [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
2176. @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_174_ActiveX.exe"
2177. .
2178. [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
2179. @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
2180. .
2181. [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
2182. @Denied: (A 2) (Everyone)
2183. @="Shockwave Flash Object"
2184. .
2185. [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
2186. @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_174.ocx"
2187. "ThreadingModel"="Apartment"
2188. .
2189. [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
2190. @="0"
2191. .
2192. [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
2193. @="ShockwaveFlash.ShockwaveFlash.11"
2194. .
2195. [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
2196. @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_174.ocx, 1"
2197. .
2198. [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
2199. @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
2200. .
2201. [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
2202. @="1.0"
2203. .
2204. [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
2205. @="ShockwaveFlash.ShockwaveFlash"
2206. .
2207. [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
2208. @Denied: (A 2) (Everyone)
2209. @="Macromedia Flash Factory Object"
2210. .
2211. [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
2212. @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_174.ocx"
2213. "ThreadingModel"="Apartment"
2214. .
2215. [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
2216. @="FlashFactory.FlashFactory.1"
2217. .
2218. [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
2219. @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_174.ocx, 1"
2220. .
2221. [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
2222. @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
2223. .
2224. [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
2225. @="1.0"
2226. .
2227. [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
2228. @="FlashFactory.FlashFactory"
2229. .
2230. [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
2231. @Denied: (A 2) (Everyone)
2232. @="IFlashBroker5"
2233. .
2234. [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
2235. @="{00020424-0000-0000-C000-000000000046}"
2236. .
2237. [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
2238. @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
2239. "Version"="1.0"
2240. .
2241. [HKEY_LOCAL_MACHINE\software\Wow6432Node\Nico Mak Computing\WinZip]
2242. "SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
2243. 00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,6f,00,66,00,\
2244. .
2245. [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
2246. @Denied: (Full) (Everyone)
2247. .
2248. ------------------------ Other Running Processes ------------------------
2249. .
2250. c:\program files\AVAST Software\Avast\AvastSvc.exe
2251. c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
2252. c:\program files (x86)\Sendori\SendoriUp.exe
2253. c:\program files\Tablet\Pen\WacomHost.exe
2254. c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
2255. .
2256. **************************************************************************
2257. .
2258. Completion time: 2013-09-14 20:03:44 - machine was rebooted
2259. ComboFix-quarantined-files.txt 2013-09-15 00:03
2260. .
2261. Pre-Run: 216,419,618,816 bytes free
2262. Post-Run: 216,826,159,104 bytes free
2263. .
2264. - - End Of File - - 6E2E9DABC4B2F0DC8BDD3072AE450FA1