Internet Browsing problem

[reysalomon]

19:59:26.0973 0x17c4 TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
19:59:32.0848 0x17c4 ============================================================
19:59:32.0848 0x17c4 Current date / time: 2016/04/02 19:59:32.0848
19:59:32.0848 0x17c4 SystemInfo:
19:59:32.0848 0x17c4
19:59:32.0848 0x17c4 OS Version: 6.1.7601 ServicePack: 1.0
19:59:32.0848 0x17c4 Product type: Workstation
19:59:32.0848 0x17c4 ComputerName: HOME
19:59:32.0848 0x17c4 UserName: joe
19:59:32.0848 0x17c4 Windows directory: C:\Windows
19:59:32.0848 0x17c4 System windows directory: C:\Windows
19:59:32.0848 0x17c4 Running under WOW64
19:59:32.0848 0x17c4 Processor architecture: Intel x64
19:59:32.0848 0x17c4 Number of processors: 4
19:59:32.0848 0x17c4 Page size: 0x1000
19:59:32.0848 0x17c4 Boot type: Normal boot
19:59:32.0848 0x17c4 ============================================================
19:59:34.0317 0x17c4 KLMD registered as C:\Windows\system32\drivers\56346380.sys
19:59:34.0583 0x17c4 System UUID: {AA3E16AF-9569-9E69-DEE9-762D65BF9AAA}
19:59:35.0020 0x17c4 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:59:35.0020 0x17c4 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:59:35.0036 0x17c4 Drive \Device\Harddisk2\DR2 - Size: 0x1DE300000 ( 7.47 Gb ), SectorSize: 0x200, Cylinders: 0x3CF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
19:59:35.0036 0x17c4 ============================================================
19:59:35.0036 0x17c4 \Device\Harddisk0\DR0:
19:59:35.0036 0x17c4 MBR partitions:
19:59:35.0036 0x17c4 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
19:59:35.0036 0x17c4 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
19:59:35.0036 0x17c4 \Device\Harddisk1\DR1:
19:59:35.0036 0x17c4 MBR partitions:
19:59:35.0036 0x17c4 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F00, BlocksNum 0x3A3655FA
19:59:35.0036 0x17c4 \Device\Harddisk2\DR2:
19:59:35.0036 0x17c4 MBR partitions:
19:59:35.0036 0x17c4 \Device\Harddisk2\DR2\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0xEF17C1
19:59:35.0036 0x17c4 ============================================================
19:59:35.0051 0x17c4 C: <-> \Device\Harddisk0\DR0\Partition2
19:59:35.0051 0x17c4 F: <-> \Device\Harddisk1\DR1\Partition1
19:59:35.0051 0x17c4 ============================================================
19:59:35.0051 0x17c4 Initialize success
19:59:35.0051 0x17c4 ============================================================
19:59:46.0333 0x1acc ============================================================
19:59:46.0333 0x1acc Scan started
19:59:46.0333 0x1acc Mode: Manual;
19:59:46.0333 0x1acc ============================================================
19:59:46.0333 0x1acc KSN ping started
19:59:46.0442 0x1acc KSN ping finished: true
19:59:47.0270 0x1acc ================ Scan system memory ========================
19:59:47.0270 0x1acc System memory - ok
19:59:47.0270 0x1acc ================ Scan services =============================
19:59:47.0348 0x1acc [ 970C70F6B2953ED43822D3797855D84C, CB22723678B514277BC6E6DDDD206F3B2377CD889C9D473A47A7056BE597BC6B ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
19:59:47.0348 0x1acc !SASCORE - ok
19:59:47.0458 0x1acc [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
19:59:47.0473 0x1acc 1394ohci - ok
19:59:47.0536 0x1acc [ ADC420616C501B45D26C0FD3EF1E54E4, 29FC41D40A35AC5476E2A673CE5B12684E0CFA12A1AEBEEBE5883FBA5CA68B67 ] ACDaemon C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
19:59:47.0536 0x1acc ACDaemon - ok
19:59:47.0567 0x1acc [ 397824E2425EB62F842CCCC5711E46F1, 2D00B4E1DF4BBBF9AB826BD3C57DE3665FA4F61EA9602DC87B710D92B7A2977C ] acfva C:\Windows\system32\DRIVERS\ACFVA64.sys
19:59:47.0567 0x1acc acfva - ok
19:59:47.0645 0x1acc [ D67C517B4EEC71B975CC913BA2625C54, E973897CC428A77334FDF9DEE012210015EDB704C133300E6C4A6EE9520AE182 ] AcfXAudioService C:\Windows\SysWOW64\ACFXAU64.dll
19:59:47.0645 0x1acc AcfXAudioService - ok
19:59:47.0676 0x1acc [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys
19:59:47.0692 0x1acc ACPI - ok
19:59:47.0708 0x1acc [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
19:59:47.0708 0x1acc AcpiPmi - ok
19:59:47.0786 0x1acc [ A475CCD9AC2FD156BBB993F5B5299609, 16E6322228DDFBE8CBBB91887FEEB4C52D205F7CF03D55DE0D0A5C860AF33F06 ] AcrSch2Svc C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
19:59:47.0817 0x1acc AcrSch2Svc - ok
19:59:47.0879 0x1acc [ F2CEEE9ABBCEF207ACB103215AC28BC2, F8F8B8AF6317926D7AC0CA2CA23628B2C69327A2792D58D3328443C5ED9514E9 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:59:47.0879 0x1acc AdobeARMservice - ok
19:59:47.0926 0x1acc [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
19:59:47.0926 0x1acc adp94xx - ok
19:59:47.0958 0x1acc [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
19:59:47.0958 0x1acc adpahci - ok
19:59:47.0973 0x1acc [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
19:59:47.0973 0x1acc adpu320 - ok
19:59:48.0004 0x1acc [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
19:59:48.0004 0x1acc AeLookupSvc - ok
19:59:48.0036 0x1acc [ ABCF9C80EAACE03021BB7F450EB8993F, 8E38726C423E82954CA85266D6F38B605D010A659420A4EF99D29035A9474BFB ] afcdp C:\Windows\system32\DRIVERS\afcdp.sys
19:59:48.0036 0x1acc afcdp - ok
19:59:48.0161 0x1acc [ 30346435058C56903C9F07BC7CABC9EA, 989A36D5DD62FCB4BAF8A0BA93D21C4BE81540D0A41FE4622002D9E5E54A8980 ] afcdpsrv C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
19:59:48.0239 0x1acc afcdpsrv - ok
19:59:48.0270 0x1acc [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD C:\Windows\system32\drivers\afd.sys
19:59:48.0286 0x1acc AFD - ok
19:59:48.0317 0x1acc [ B65F8DBA54F251906BBE8611B5A0E7AB, 9ADE347CB4E7C33D668DAC79A316C97C78D94D296B158F481F3E32F9DA4D647E ] AgereModemAudio C:\Program Files\LSI SoftModem\agr64svc.exe
19:59:48.0317 0x1acc AgereModemAudio - ok
19:59:48.0364 0x1acc [ A6AB6F0ACE87DA76B4C401813D18BE95, 6AE72E0F07DF2164A3198E14A6AE7E15F0B8EB467D2D68960A006E360DBBA891 ] AgereSoftModem C:\Windows\system32\DRIVERS\agrsm64.sys
19:59:48.0395 0x1acc AgereSoftModem - ok
19:59:48.0411 0x1acc [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys
19:59:48.0426 0x1acc agp440 - ok
19:59:48.0442 0x1acc [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe
19:59:48.0442 0x1acc ALG - ok
19:59:48.0458 0x1acc [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys
19:59:48.0458 0x1acc aliide - ok
19:59:48.0473 0x1acc [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys
19:59:48.0489 0x1acc amdide - ok
19:59:48.0489 0x1acc [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
19:59:48.0489 0x1acc AmdK8 - ok
19:59:48.0504 0x1acc [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
19:59:48.0504 0x1acc AmdPPM - ok
19:59:48.0536 0x1acc [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys
19:59:48.0536 0x1acc amdsata - ok
19:59:48.0551 0x1acc [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
19:59:48.0551 0x1acc amdsbs - ok
19:59:48.0567 0x1acc [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys
19:59:48.0567 0x1acc amdxata - ok
19:59:48.0598 0x1acc [ 27DABFB4A6B0140C34DBEC713469592B, A355170D353AFBF0DE4EF53282F8404788FBBD0E2A1B7282B1B2925923E83141 ] AppID C:\Windows\system32\drivers\appid.sys
19:59:48.0598 0x1acc AppID - ok
19:59:48.0614 0x1acc [ ABC373B9C6275D45F17DB559408FFD1B, 12B355393BEBE2D1D24D7A9DA5E69E03E334899407503BC1CADCF7BE39828223 ] AppIDSvc C:\Windows\System32\appidsvc.dll
19:59:48.0614 0x1acc AppIDSvc - ok
19:59:48.0645 0x1acc [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo C:\Windows\System32\appinfo.dll
19:59:48.0645 0x1acc Appinfo - ok
19:59:48.0676 0x1acc [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll
19:59:48.0676 0x1acc AppMgmt - ok
19:59:48.0692 0x1acc [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys
19:59:48.0692 0x1acc arc - ok
19:59:48.0692 0x1acc [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
19:59:48.0708 0x1acc arcsas - ok
19:59:48.0786 0x1acc [ 660D597B7A78256734D7F3230B21B355, CAA19E8EFAD63B8975A4CD8EFD5CE5F21E056856D36BC5A9E48517F1E574ABBA ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
19:59:48.0786 0x1acc aspnet_state - ok
19:59:48.0801 0x1acc [ D95E64416A4A3ED6986E0F474DA934BD, DBB4A0DED0DABE1F8FF0DB8C0E9EC4EC906A85A45DC0AEC013A8744F9BF5D40E ] aswHwid C:\Windows\system32\drivers\aswHwid.sys
19:59:48.0817 0x1acc aswHwid - ok
19:59:48.0833 0x1acc [ FF1E537A3632CBB9A0BF72B9FD0878D5, B26E6A1F6E6FA5280A12861EFAD44D8F49353F47B21843EBA73E149CF613DCBC ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
19:59:48.0833 0x1acc aswMonFlt - ok
19:59:48.0833 0x1acc [ A5757DE5F9C83AB40667A53D5126EA40, 58B72B1B126CF641188703CE82E26BEB0C41AD7587CFFCCCE9E3C64CC7AACC90 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys
19:59:48.0848 0x1acc aswRdr - ok
19:59:48.0895 0x1acc [ 645D97385F3F284FB5604F9B970F4D24, 15A9D7F0F4C1062210E4E744A9069B8645177D19F35B8740D74022639DC05F2E ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
19:59:48.0895 0x1acc aswRvrt - ok
19:59:48.0942 0x1acc [ CB3FC6732A50513EFC93B6E2495CF94A, 2CDB5268A73BFD788E5B5D708384C1C1D4E72834F99EB16B62C692A451061BBF ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
19:59:48.0958 0x1acc aswSnx - ok
19:59:49.0004 0x1acc [ 0DEDC041DF594AEC2C3BD00417CFAF60, 0D3A8924503986546EE256D185225C0B080FDB6B0C8B0BED7516B07A7334371B ] aswSP C:\Windows\system32\drivers\aswSP.sys
19:59:49.0020 0x1acc aswSP - ok
19:59:49.0036 0x1acc [ 48DED912CDE54FC0923B9858512366E1, 9B216B934408A7CB3CE2B41240B7EF01EAA3BC066211B784064FF8AC97A29B4E ] aswStm C:\Windows\system32\drivers\aswStm.sys
19:59:49.0036 0x1acc aswStm - ok
19:59:49.0051 0x1acc [ 471A311745848B80339436688A8286E6, E51C57236CEC19AC38E85D115DB97875517D837811188AD2E53FA49055B53890 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
19:59:49.0067 0x1acc aswVmm - ok
19:59:49.0067 0x1acc [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
19:59:49.0067 0x1acc AsyncMac - ok
19:59:49.0083 0x1acc [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys
19:59:49.0083 0x1acc atapi - ok
19:59:49.0161 0x1acc ATICDSDr - ok
19:59:49.0254 0x1acc [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:59:49.0270 0x1acc AudioEndpointBuilder - ok
19:59:49.0301 0x1acc [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll
19:59:49.0301 0x1acc AudioSrv - ok
19:59:49.0364 0x1acc [ 73F5C13B431915BAE35254B4E95DFB71, 393A045859382C44133C004598B1512048046BCC129FED2247A77FDBFCDB6DFF ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
19:59:49.0364 0x1acc avast! Antivirus - ok
19:59:49.0395 0x1acc [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll
19:59:49.0395 0x1acc AxInstSV - ok
19:59:49.0442 0x1acc [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys
19:59:49.0458 0x1acc b06bdrv - ok
19:59:49.0473 0x1acc [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys
19:59:49.0473 0x1acc b57nd60a - ok
19:59:49.0504 0x1acc [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll
19:59:49.0504 0x1acc BDESVC - ok
19:59:49.0504 0x1acc [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys
19:59:49.0504 0x1acc Beep - ok
19:59:49.0551 0x1acc [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll
19:59:49.0551 0x1acc BFE - ok
19:59:49.0598 0x1acc [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\system32\qmgr.dll
19:59:49.0629 0x1acc BITS - ok
19:59:49.0645 0x1acc [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
19:59:49.0645 0x1acc blbdrive - ok
19:59:49.0676 0x1acc [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:59:49.0676 0x1acc Bonjour Service - ok
19:59:49.0708 0x1acc [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
19:59:49.0708 0x1acc bowser - ok
19:59:49.0723 0x1acc [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
19:59:49.0723 0x1acc BrFiltLo - ok
19:59:49.0723 0x1acc [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
19:59:49.0723 0x1acc BrFiltUp - ok
19:59:49.0739 0x1acc [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys
19:59:49.0754 0x1acc BridgeMP - ok
19:59:49.0770 0x1acc [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll
19:59:49.0786 0x1acc Browser - ok
19:59:49.0801 0x1acc [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys
19:59:49.0817 0x1acc Brserid - ok
19:59:49.0817 0x1acc [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
19:59:49.0817 0x1acc BrSerWdm - ok
19:59:49.0833 0x1acc [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
19:59:49.0833 0x1acc BrUsbMdm - ok
19:59:49.0833 0x1acc [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
19:59:49.0833 0x1acc BrUsbSer - ok
19:59:49.0864 0x1acc [ 83601BBE5563D92C1FDB4E960D84DC77, 55FEE54C0D0D873724864DC0B2A10B38B7F40300EE9CAE4D9BAAF8A202C4049A ] BS_I2cIo C:\Windows\system32\drivers\BS_I2cIo.sys
19:59:49.0864 0x1acc BS_I2cIo - ok
19:59:49.0879 0x1acc [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
19:59:49.0879 0x1acc BTHMODEM - ok
19:59:49.0895 0x1acc [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll
19:59:49.0895 0x1acc bthserv - ok
19:59:50.0004 0x1acc [ 52AE2CDD37AB735FBDA52263EFD524AA, 844103913E6079CC1C49B05FFB1CDC9A68692A8EE5A05C9C28FD272DFE534913 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
19:59:50.0036 0x1acc c2cautoupdatesvc - ok
19:59:50.0114 0x1acc [ C35B91B6777E7C6DB67B8583D2AA66A7, CE3A004B560EB750442150FEEFEE074A11A17E66B3F2A489E8EF1DBCF8FE8390 ] c2cpnrsvc C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
19:59:50.0145 0x1acc c2cpnrsvc - ok
19:59:50.0161 0x1acc catchme - ok
19:59:50.0176 0x1acc [ 4C9FF2C1FD9EF60027ECDA7EA3DD1440, F3EC7D7F1E3066200F1536794C81E62A9BE3AF7AC41A1C1C5A4DC8A0D5ECF4F4 ] CAXHWBS2 C:\Windows\system32\DRIVERS\CAXHWBS2.sys
19:59:50.0192 0x1acc CAXHWBS2 - ok
19:59:50.0208 0x1acc [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
19:59:50.0208 0x1acc cdfs - ok
19:59:50.0239 0x1acc [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
19:59:50.0239 0x1acc cdrom - ok
19:59:50.0254 0x1acc [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll
19:59:50.0254 0x1acc CertPropSvc - ok
19:59:50.0270 0x1acc [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
19:59:50.0270 0x1acc circlass - ok
19:59:50.0301 0x1acc [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys
19:59:50.0317 0x1acc CLFS - ok
19:59:50.0364 0x1acc [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:59:50.0364 0x1acc clr_optimization_v2.0.50727_32 - ok
19:59:50.0411 0x1acc [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:59:50.0411 0x1acc clr_optimization_v2.0.50727_64 - ok
19:59:50.0458 0x1acc [ AB4CD527BEFCC43EE441E6C50CCE54C8, 13B776AE63049FFBA7E35EA0A4C26EBB57B10D973E05C4CF1214249754DC46E4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:59:50.0458 0x1acc clr_optimization_v4.0.30319_32 - ok
19:59:50.0520 0x1acc [ 1400C75FF021D6CFACE46AC41B60770E, 3FCB8D7714A79522F2738037D559F1FFFB2F05C5406D2A038EF5DDB4629CA1CE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:59:50.0520 0x1acc clr_optimization_v4.0.30319_64 - ok
19:59:50.0520 0x1acc [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
19:59:50.0520 0x1acc CmBatt - ok
19:59:50.0551 0x1acc [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys
19:59:50.0551 0x1acc cmdide - ok
19:59:50.0583 0x1acc [ EC0511BB85BAA42A9734011685A6732C, 10B52F0860CCB3AA0FC34DDA5C5538BFCF7B6D40738B7756297237FD2D9E01C1 ] CNG C:\Windows\system32\Drivers\cng.sys
19:59:50.0598 0x1acc CNG - ok
19:59:50.0629 0x1acc [ F38ACFF40E9EDC2B3476EDD724CEA4A0, 2F6CB415F405F70BE1D40D0B912A1D4405E6F68E61A49AABD5C4C7F82681FF16 ] COMMONFX C:\Windows\system32\drivers\COMMONFX.SYS
19:59:50.0629 0x1acc COMMONFX - ok
19:59:50.0629 0x1acc COMMONFX.DLL - ok
19:59:50.0645 0x1acc [ F38ACFF40E9EDC2B3476EDD724CEA4A0, 2F6CB415F405F70BE1D40D0B912A1D4405E6F68E61A49AABD5C4C7F82681FF16 ] COMMONFX.SYS C:\Windows\System32\drivers\COMMONFX.SYS
19:59:50.0645 0x1acc COMMONFX.SYS - ok
19:59:50.0661 0x1acc [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
19:59:50.0661 0x1acc Compbatt - ok
19:59:50.0676 0x1acc [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
19:59:50.0676 0x1acc CompositeBus - ok
19:59:50.0676 0x1acc COMSysApp - ok
19:59:50.0692 0x1acc [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
19:59:50.0692 0x1acc crcdisk - ok
19:59:50.0723 0x1acc [ C8BD651E13895B93ED9EC5B4F1DF42BC, D86D6BF0BA3C09B49B3A52C86A7F3B3856A27F79EDD86A8FFA469D9A5F196E8D ] Creative ALchemy AL6 Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
19:59:50.0723 0x1acc Creative ALchemy AL6 Licensing Service - ok
19:59:50.0754 0x1acc [ C0EAD9F8AB83D41FF07303C75589C2B8, C89CAC39BCD2FA2DCC56D7EE84FF66127BCECCAE400E119FE41BF4C4D769504B ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
19:59:50.0754 0x1acc Creative Audio Engine Licensing Service - ok
19:59:50.0786 0x1acc [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll
19:59:50.0786 0x1acc CryptSvc - ok
19:59:50.0833 0x1acc [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys
19:59:50.0848 0x1acc CSC - ok
19:59:50.0864 0x1acc [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll
19:59:50.0879 0x1acc CscService - ok
19:59:50.0895 0x1acc [ 01BBD5CB85423B12E445209D243A49A9, 3E223E76ED97EB6A13E4A9957C564D2E5B1979ED1C3CCFBE687C18452C3EA3CD ] CT20XUT.DLL C:\Windows\system32\CT20XUT.DLL
19:59:50.0911 0x1acc CT20XUT.DLL - ok
19:59:50.0942 0x1acc [ 095C566746217CD1482EDE40A70D87D2, FE8F9505C15E85222EC2DC21F239D9613EDB1E07FF4EE33A931AC0271A35B5B7 ] ctac32k C:\Windows\system32\drivers\ctac32k.sys
19:59:50.0958 0x1acc ctac32k - ok
19:59:50.0989 0x1acc [ 157E2196FCCD002A2EDF3B06DF7B0C9A, 54FCAE9C37D64B66D0339B397F2C270095FCC47A33F0D59A3077E5DC37475796 ] ctaud2k C:\Windows\system32\drivers\ctaud2k.sys
19:59:51.0004 0x1acc ctaud2k - ok
19:59:51.0036 0x1acc [ 17979EE857E930CBFDF24A12E89D77A1, AEAACA78B36F26A735F20295A74645C2EFDE5498C70156B902DF853B42B5D8AD ] CTAUDFX C:\Windows\system32\drivers\CTAUDFX.SYS
19:59:51.0051 0x1acc CTAUDFX - ok
19:59:51.0051 0x1acc CTAUDFX.DLL - ok
19:59:51.0067 0x1acc [ 17979EE857E930CBFDF24A12E89D77A1, AEAACA78B36F26A735F20295A74645C2EFDE5498C70156B902DF853B42B5D8AD ] CTAUDFX.SYS C:\Windows\System32\drivers\CTAUDFX.SYS
19:59:51.0083 0x1acc CTAUDFX.SYS - ok
19:59:51.0161 0x1acc [ 5CE3D0E1D1B3832EE052CFC442EEE0FA, 6B9DB2C350140ED547C7A96DB0EAD812E8987176B312C79AF52FC9B23EEEB8C4 ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
19:59:51.0161 0x1acc CTAudSvcService - ok
19:59:51.0192 0x1acc [ 06300545BEDF49B6A51FDFE1861F9CAF, EA1FF3A67DE3AAFD8A2F542B681FCD0720C4995C0FDB1E0ADF02203B45083F75 ] CTEAPSFX.DLL C:\Windows\system32\CTEAPSFX.DLL
19:59:51.0192 0x1acc CTEAPSFX.DLL - ok
19:59:51.0223 0x1acc [ 2D902F8EC247F0ED0D458CDCAF786544, F027D63849C88A4714F391F0DFCFB56B36599BE410F53636457A3D6323AF6C6E ] CTEDSPFX.DLL C:\Windows\system32\CTEDSPFX.DLL
19:59:51.0223 0x1acc CTEDSPFX.DLL - ok
19:59:51.0239 0x1acc [ 0D3F99CDA2BEA14E4911A698441F1A29, BEB89B59B241482B8771016F952DBE2553414F3BB1BAA5CBB3E464BE38401F7F ] CTEDSPIO.DLL C:\Windows\system32\CTEDSPIO.DLL
19:59:51.0239 0x1acc CTEDSPIO.DLL - ok
19:59:51.0254 0x1acc [ 9D26AA450AC1CAADDE25F1621BA89842, 8C3316CE5BC1377FFB2D4378A4AA5D1979D96BBFBF6534A1EFDB966C34A47D25 ] CTEDSPSY.DLL C:\Windows\system32\CTEDSPSY.DLL
19:59:51.0270 0x1acc CTEDSPSY.DLL - ok
19:59:51.0301 0x1acc [ FE3EAE37536C02D087E5C5D339663779, 4FE08D6EC273241C789F3FE51235CCF5DD70C1196329347C12793B518EE3D33A ] CTERFXFX C:\Windows\system32\drivers\CTERFXFX.SYS
19:59:51.0301 0x1acc CTERFXFX - ok
19:59:51.0301 0x1acc CTERFXFX.DLL - ok
19:59:51.0301 0x1acc [ FE3EAE37536C02D087E5C5D339663779, 4FE08D6EC273241C789F3FE51235CCF5DD70C1196329347C12793B518EE3D33A ] CTERFXFX.SYS C:\Windows\System32\drivers\CTERFXFX.SYS
19:59:51.0317 0x1acc CTERFXFX.SYS - ok
19:59:51.0364 0x1acc [ FA6DCA331835997D2F7C83B9AAABC4BB, 47014DC40220461E4CA268C30AD4126226E9E4E1CF7818E7D11C7C5D154BB430 ] CTEXFIFX.DLL C:\Windows\system32\CTEXFIFX.DLL
19:59:51.0395 0x1acc CTEXFIFX.DLL - ok
19:59:51.0426 0x1acc [ 9E6A0A3CA3825BB568D42F5F3CB09453, 0C2A69AAFF1841C81942E2A252F220F18EBE27E5E9D9619C3EB876C29854B1C0 ] CTHWIUT.DLL C:\Windows\system32\CTHWIUT.DLL
19:59:51.0426 0x1acc CTHWIUT.DLL - ok
19:59:51.0442 0x1acc [ 4E4FDAB4A7CF5AF56E3FA1FE35E8AD3C, 59DA2CAF7E4DF97072E71BCE29DEEA764E7552E7539B25BB38FBF9A9CDB0CFEC ] ctprxy2k C:\Windows\system32\drivers\ctprxy2k.sys
19:59:51.0442 0x1acc ctprxy2k - ok
19:59:51.0473 0x1acc [ 4A7DE2E30B2B9253933A157401EC76D5, 2AFEF3C4340791D2F0368911A35EF2554C59267D0BB8CFECF93EFC08D610A9D1 ] CTSBLFX C:\Windows\system32\drivers\CTSBLFX.SYS
19:59:51.0473 0x1acc CTSBLFX - ok
19:59:51.0489 0x1acc CTSBLFX.DLL - ok
19:59:51.0504 0x1acc [ 4A7DE2E30B2B9253933A157401EC76D5, 2AFEF3C4340791D2F0368911A35EF2554C59267D0BB8CFECF93EFC08D610A9D1 ] CTSBLFX.SYS C:\Windows\System32\drivers\CTSBLFX.SYS
19:59:51.0504 0x1acc CTSBLFX.SYS - ok
19:59:51.0551 0x1acc [ 065ADE032A044D518AB1407D3586B7D5, 09BA9FB3B5685775811C95A4C09EE9DF770AB6DC497211C99EC9A6216119CC9E ] ctsfm2k C:\Windows\system32\drivers\ctsfm2k.sys
19:59:51.0551 0x1acc ctsfm2k - ok
19:59:51.0598 0x1acc [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll
19:59:51.0614 0x1acc DcomLaunch - ok
19:59:51.0645 0x1acc [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll
19:59:51.0645 0x1acc defragsvc - ok
19:59:51.0676 0x1acc [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys
19:59:51.0676 0x1acc DfsC - ok
19:59:51.0692 0x1acc [ BB3003D9DB0D3B18B3284CCFD57F3C3F, 31FB56C0892457755C4A6C00C8A06812F22D410968984E1197FB26C4215DB56B ] dgcfltr C:\Windows\system32\DRIVERS\ACFDCP64.sys
19:59:51.0708 0x1acc dgcfltr - ok
19:59:51.0723 0x1acc [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll
19:59:51.0723 0x1acc Dhcp - ok
19:59:51.0801 0x1acc [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack C:\Windows\system32\diagtrack.dll
19:59:51.0833 0x1acc DiagTrack - ok
19:59:51.0848 0x1acc [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys
19:59:51.0848 0x1acc discache - ok
19:59:51.0848 0x1acc [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys
19:59:51.0848 0x1acc Disk - ok
19:59:51.0879 0x1acc [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll
19:59:51.0879 0x1acc Dnscache - ok
19:59:51.0911 0x1acc [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll
19:59:51.0911 0x1acc dot3svc - ok
19:59:51.0942 0x1acc [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
19:59:51.0942 0x1acc Dot4 - ok
19:59:51.0973 0x1acc [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print C:\Windows\system32\DRIVERS\Dot4Prt.sys
19:59:51.0973 0x1acc Dot4Print - ok
19:59:51.0989 0x1acc [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
19:59:51.0989 0x1acc dot4usb - ok
19:59:52.0020 0x1acc [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll
19:59:52.0020 0x1acc DPS - ok
19:59:52.0036 0x1acc [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
19:59:52.0051 0x1acc drmkaud - ok
19:59:52.0098 0x1acc [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
19:59:52.0114 0x1acc DXGKrnl - ok
19:59:52.0145 0x1acc [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll
19:59:52.0161 0x1acc EapHost - ok
19:59:52.0254 0x1acc [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys
19:59:52.0333 0x1acc ebdrv - ok
19:59:52.0364 0x1acc [ 7FB33A9A2E6B6D5CA9318668B95CA69C, 5B5CDF8BF4F2C2ADBAD2A92C554C369C6A428B7DE4FEF74FE9198058C3B864A3 ] EFS C:\Windows\System32\lsass.exe
19:59:52.0364 0x1acc EFS - ok
19:59:52.0379 0x1acc [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
19:59:52.0395 0x1acc elxstor - ok
19:59:52.0411 0x1acc [ F380FF5D6D80CECC6DBBC15569757613, D882947D41396DB6E57691A7971B27664E7CB14475B48A37FC63D0BA3C908112 ] emupia C:\Windows\system32\drivers\emupia2k.sys
19:59:52.0426 0x1acc emupia - ok
19:59:52.0442 0x1acc [ 20ECD0A490A121CB34F553FAD1DBBD39, 17C9DA33E78FBC7582B0AA53C611929B80FBBE1343B84A179D515B51C964D218 ] EpsonScanSvc C:\Windows\system32\EscSvc64.exe
19:59:52.0458 0x1acc EpsonScanSvc - ok
19:59:52.0489 0x1acc [ 194E8100D57FC13BEF88129BAAD07E46, 745D24ADD99ED182FCCA30C6B85167484B74D3EFD631AF92AA57AAD73F474631 ] EPSON_PM_RPCV4_04 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
19:59:52.0489 0x1acc EPSON_PM_RPCV4_04 - ok
19:59:52.0504 0x1acc [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys
19:59:52.0504 0x1acc ErrDev - ok
19:59:52.0551 0x1acc [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll
19:59:52.0551 0x1acc EventSystem - ok
19:59:52.0567 0x1acc [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys
19:59:52.0583 0x1acc exfat - ok
19:59:52.0583 0x1acc [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys
19:59:52.0583 0x1acc fastfat - ok
19:59:52.0629 0x1acc [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe
19:59:52.0645 0x1acc Fax - ok
19:59:52.0661 0x1acc [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys
19:59:52.0661 0x1acc fdc - ok
19:59:52.0661 0x1acc [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll
19:59:52.0676 0x1acc fdPHost - ok
19:59:52.0676 0x1acc [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll
19:59:52.0676 0x1acc FDResPub - ok
19:59:52.0692 0x1acc [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
19:59:52.0692 0x1acc FileInfo - ok
19:59:52.0692 0x1acc [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
19:59:52.0692 0x1acc Filetrace - ok
19:59:52.0708 0x1acc [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
19:59:52.0708 0x1acc flpydisk - ok
19:59:52.0739 0x1acc [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
19:59:52.0739 0x1acc FltMgr - ok
19:59:52.0770 0x1acc [ F0CC1A9106F9FB0F704F6ED95622B43E, DE09E37619B91AD4F43B473A41E6563F4FCFB891A7F9665E8631131A49FA96A1 ] fltsrv C:\Windows\system32\DRIVERS\fltsrv.sys
19:59:52.0770 0x1acc fltsrv - ok
19:59:52.0817 0x1acc [ BCB16AE33AA58E0042F3EF34CFB6396A, E8ADA10DE60A94E4BABE9FCA6D0AA83B11520C092D49057E17F6C6059D35A323 ] FontCache C:\Windows\system32\FntCache.dll
19:59:52.0848 0x1acc FontCache - ok
19:59:52.0879 0x1acc [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:59:52.0895 0x1acc FontCache3.0.0.0 - ok
19:59:52.0911 0x1acc [ B82EA97912868BA120C0E2220D47B43A, A146DD600A440646766D458FF738387FAC7B7488487B669519E6F148F86C3F15 ] FreeAgentGoFlex Service C:\Program Files (x86)\Seagate\DriveSettings\Sync\SeagateDriveSettingsService.exe
19:59:52.0911 0x1acc FreeAgentGoFlex Service - ok
19:59:52.0926 0x1acc [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
19:59:52.0926 0x1acc FsDepends - ok
19:59:52.0958 0x1acc [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
19:59:52.0958 0x1acc Fs_Rec - ok
19:59:52.0989 0x1acc [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
19:59:52.0989 0x1acc fvevol - ok
19:59:52.0989 0x1acc [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
19:59:53.0004 0x1acc gagp30kx - ok
19:59:53.0051 0x1acc [ 805DAC448BEBDA900BF5520AB27D9616, C0A2935C75EC4B3D860E68ABAE6756D6D4B31BA9AFD742FF9C0B6ED11BEFD163 ] Garmin Device Interaction Service C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
19:59:53.0067 0x1acc Garmin Device Interaction Service - ok
19:59:53.0083 0x1acc [ F51FB25E1328FA14F446A8B24AC52709, 36EB4D32D4677E70A4BEA318476C0B711B40FB83E68CE8035FDB6A4AD30FADCB ] gdrv C:\Windows\gdrv.sys
19:59:53.0083 0x1acc gdrv - ok
19:59:53.0161 0x1acc [ E8B0D36DC2C5B9F06A10D23F24238C72, B84F0789CB5ADEA5062B8F1E45B33A8ABF890EDE4423AB8A39FC3E1C25EFC5EB ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
19:59:53.0176 0x1acc GfExperienceService - ok
19:59:53.0223 0x1acc [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll
19:59:53.0239 0x1acc gpsvc - ok
19:59:53.0286 0x1acc [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:59:53.0286 0x1acc gupdate - ok
19:59:53.0301 0x1acc [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:59:53.0301 0x1acc gupdatem - ok
19:59:53.0458 0x1acc [ 82B68F585110AE8500A6D23623AE1F74, 1ADCFA2D77E3BB9BDCDD15DC21E7F6707823788A1CFB31ED959BC470595EE89B ] ha10kx2k C:\Windows\system32\drivers\ha10kx2k.sys
19:59:53.0473 0x1acc ha10kx2k - ok
19:59:53.0520 0x1acc [ 83F647F9ACE9192556F758E528024F68, 1007C2E3C8FDB3CB5FB3C336F9904AD076DC31BB263E633EF17E3813B9ED6EF6 ] hap16v2k C:\Windows\system32\drivers\hap16v2k.sys
19:59:53.0520 0x1acc hap16v2k - ok
19:59:53.0551 0x1acc [ E815D29361DE89D24C8DBE3E5A7006C9, 2B9075CC6A2425D06E6C3CB77E0755727F8B0920575C660CF261981464D190F0 ] hap17v2k C:\Windows\system32\drivers\hap17v2k.sys
19:59:53.0567 0x1acc hap17v2k - ok
19:59:53.0567 0x1acc [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
19:59:53.0567 0x1acc hcw85cir - ok
19:59:53.0598 0x1acc [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:59:53.0614 0x1acc HdAudAddService - ok
19:59:53.0614 0x1acc [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
19:59:53.0614 0x1acc HDAudBus - ok
19:59:53.0629 0x1acc [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
19:59:53.0629 0x1acc HidBatt - ok
19:59:53.0645 0x1acc [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
19:59:53.0645 0x1acc HidBth - ok
19:59:53.0661 0x1acc [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
19:59:53.0661 0x1acc HidIr - ok
19:59:53.0676 0x1acc [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\System32\hidserv.dll
19:59:53.0676 0x1acc hidserv - ok
19:59:53.0708 0x1acc [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
19:59:53.0708 0x1acc HidUsb - ok
19:59:53.0739 0x1acc [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll
19:59:53.0739 0x1acc hkmsvc - ok
19:59:53.0770 0x1acc [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:59:53.0786 0x1acc HomeGroupListener - ok
19:59:53.0801 0x1acc [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:59:53.0801 0x1acc HomeGroupProvider - ok
19:59:53.0817 0x1acc [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
19:59:53.0817 0x1acc HpSAMD - ok
19:59:53.0895 0x1acc [ 447256D1C026654C5CD3CC17E7B20631, F89589AC17BC50483E6687963370937E6CD19D6030F30D70577A7DA266116919 ] HsfXAudioService C:\Windows\SysWOW64\XAudio64.dll
19:59:53.0911 0x1acc HsfXAudioService - ok
19:59:53.0958 0x1acc [ 7BA3BE04EC75905C366A231A3001D3CB, F53718EF48008A13BA67A43C1D30657D1B160215E459ACB374F19F1A704B0D3A ] HSF_DPV C:\Windows\system32\DRIVERS\CAX_DPV.sys
19:59:54.0004 0x1acc HSF_DPV - ok
19:59:54.0051 0x1acc [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys
19:59:54.0067 0x1acc HTTP - ok
19:59:54.0083 0x1acc [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
19:59:54.0083 0x1acc hwpolicy - ok
19:59:54.0114 0x1acc [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
19:59:54.0114 0x1acc i8042prt - ok
19:59:54.0145 0x1acc [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
19:59:54.0161 0x1acc iaStorV - ok
19:59:54.0208 0x1acc [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
19:59:54.0208 0x1acc IDriverT - ok
19:59:54.0270 0x1acc [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:59:54.0301 0x1acc idsvc - ok
19:59:54.0301 0x1acc IEEtwCollectorService - ok
19:59:54.0317 0x1acc [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
19:59:54.0317 0x1acc iirsp - ok
19:59:54.0364 0x1acc [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll
19:59:54.0379 0x1acc IKEEXT - ok
19:59:54.0504 0x1acc [ C2F868881D48A568B525255F084EF063, EFB1704AE223CF886EDA5F1411C8178EDE4B5E1F7EE373E3DA89A6EA1A57D91D ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
19:59:54.0567 0x1acc IntcAzAudAddService - ok
19:59:54.0614 0x1acc [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys
19:59:54.0614 0x1acc intelide - ok
19:59:54.0629 0x1acc [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
19:59:54.0629 0x1acc intelppm - ok
19:59:54.0661 0x1acc [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll
19:59:54.0661 0x1acc IPBusEnum - ok
19:59:54.0692 0x1acc [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:59:54.0692 0x1acc IpFilterDriver - ok
19:59:54.0723 0x1acc [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
19:59:54.0739 0x1acc iphlpsvc - ok
19:59:54.0786 0x1acc [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
19:59:54.0786 0x1acc IPMIDRV - ok
19:59:54.0801 0x1acc [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys
19:59:54.0801 0x1acc IPNAT - ok
19:59:54.0801 0x1acc [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys
19:59:54.0817 0x1acc IRENUM - ok
19:59:54.0833 0x1acc [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys
19:59:54.0833 0x1acc isapnp - ok
19:59:54.0848 0x1acc [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
19:59:54.0864 0x1acc iScsiPrt - ok
19:59:54.0864 0x1acc [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
19:59:54.0864 0x1acc kbdclass - ok
19:59:54.0879 0x1acc [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
19:59:54.0879 0x1acc kbdhid - ok
19:59:54.0895 0x1acc [ 7FB33A9A2E6B6D5CA9318668B95CA69C, 5B5CDF8BF4F2C2ADBAD2A92C554C369C6A428B7DE4FEF74FE9198058C3B864A3 ] KeyIso C:\Windows\system32\lsass.exe
19:59:54.0895 0x1acc KeyIso - ok
19:59:54.0926 0x1acc [ 211A379BAAB812A7B437319BD85B2435, 4C8B82817B735BEFC0C8E2A42C7EF547D1C179561D3C97B3067B5EA3408F9E4D ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
19:59:54.0926 0x1acc KSecDD - ok
19:59:54.0942 0x1acc [ CC1B3B52F33CBC1CE60867DA4E23537C, A373DBCE6A53B77F59D9C83E243E5C1A2B4C38571CA28198229730D612561978 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
19:59:54.0958 0x1acc KSecPkg - ok
19:59:54.0958 0x1acc [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys
19:59:54.0958 0x1acc ksthunk - ok
19:59:54.0989 0x1acc [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll
19:59:55.0004 0x1acc KtmRm - ok
19:59:55.0020 0x1acc [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\System32\srvsvc.dll
19:59:55.0020 0x1acc LanmanServer - ok
19:59:55.0051 0x1acc [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:59:55.0067 0x1acc LanmanWorkstation - ok
19:59:55.0114 0x1acc [ C34411A244029F1C08687F7C752C4563, 4FC1D6156D760AE8138547262B33677118BD9369F4930F5C5F9BAA2FE6E78EA3 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
19:59:55.0114 0x1acc LightScribeService - ok
19:59:55.0114 0x1acc [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
19:59:55.0114 0x1acc lltdio - ok
19:59:55.0161 0x1acc [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll
19:59:55.0161 0x1acc lltdsvc - ok
19:59:55.0176 0x1acc [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll
19:59:55.0176 0x1acc lmhosts - ok
19:59:55.0192 0x1acc [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
19:59:55.0192 0x1acc LSI_FC - ok
19:59:55.0208 0x1acc [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
19:59:55.0208 0x1acc LSI_SAS - ok
19:59:55.0208 0x1acc [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
19:59:55.0223 0x1acc LSI_SAS2 - ok
19:59:55.0239 0x1acc [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
19:59:55.0239 0x1acc LSI_SCSI - ok
19:59:55.0239 0x1acc [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys
19:59:55.0239 0x1acc luafv - ok
19:59:55.0270 0x1acc [ E4F44EC214B3E381E1FC844A02926666, 6EE8C87EFCEFFBEA08B9B9DA036B37564542EE4D31942115CDBF895295DD5FE2 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys
19:59:55.0270 0x1acc mdmxsdk - ok
19:59:55.0270 0x1acc [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
19:59:55.0286 0x1acc megasas - ok
19:59:55.0301 0x1acc [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
19:59:55.0301 0x1acc MegaSR - ok
19:59:55.0317 0x1acc [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll
19:59:55.0317 0x1acc MMCSS - ok
19:59:55.0333 0x1acc [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys
19:59:55.0333 0x1acc Modem - ok
19:59:55.0348 0x1acc [ E38AEF079CD3BCFA19F2072A214F829D, 6704C851A6C86C1CCCF35154657D221654D6F12FD8D6CBE299689C728D4CEEF0 ] MODEMCSA C:\Windows\system32\drivers\MODEMCSA.sys
19:59:55.0348 0x1acc MODEMCSA - ok
19:59:55.0364 0x1acc [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
19:59:55.0364 0x1acc monitor - ok
19:59:55.0379 0x1acc [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
19:59:55.0379 0x1acc mouclass - ok
19:59:55.0379 0x1acc [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
19:59:55.0379 0x1acc mouhid - ok
19:59:55.0411 0x1acc [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
19:59:55.0411 0x1acc mountmgr - ok
19:59:55.0426 0x1acc [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys
19:59:55.0426 0x1acc mpio - ok
19:59:55.0442 0x1acc [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
19:59:55.0442 0x1acc mpsdrv - ok
19:59:55.0473 0x1acc [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll
19:59:55.0489 0x1acc MpsSvc - ok
19:59:55.0520 0x1acc [ D7ADC2B83CA0B0381F75A98351F72CEE, 05476B7CA0486DF770AE492B5A90C85E3D3E7485152EB2FA30A19EC9BE44ED81 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
19:59:55.0520 0x1acc MRxDAV - ok
19:59:55.0551 0x1acc [ 07F8F6B0CAEC7ADD30EBD94940A315D7, 288429A146B74E88D93C5BC19D878A42AC6F411EE31D9A6D36A2A2FFCF7B9436 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
19:59:55.0551 0x1acc mrxsmb - ok
19:59:55.0567 0x1acc [ 8856E45D23BFF4D977BF06D0543BCD96, 0066C061A3516A16C2477590859865E46E522A290CCE17C3EC1B69F81E466E9E ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:59:55.0583 0x1acc mrxsmb10 - ok
19:59:55.0583 0x1acc [ 8D383CED28332B5F3894658857472F47, CB3872543D08C6432CF884C11A5897637A6FC7E9AC40F424444BAAA49C9FC32A ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:59:55.0583 0x1acc mrxsmb20 - ok
19:59:55.0598 0x1acc [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys
19:59:55.0614 0x1acc msahci - ok
19:59:55.0629 0x1acc [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys
19:59:55.0629 0x1acc msdsm - ok
19:59:55.0629 0x1acc [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe
19:59:55.0645 0x1acc MSDTC - ok
19:59:55.0661 0x1acc [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys
19:59:55.0661 0x1acc Msfs - ok
19:59:55.0676 0x1acc [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
19:59:55.0676 0x1acc mshidkmdf - ok
19:59:55.0692 0x1acc [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
19:59:55.0692 0x1acc msisadrv - ok
19:59:55.0708 0x1acc [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
19:59:55.0723 0x1acc MSiSCSI - ok
19:59:55.0723 0x1acc msiserver - ok
19:59:55.0739 0x1acc [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
19:59:55.0739 0x1acc MSKSSRV - ok
19:59:55.0739 0x1acc [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
19:59:55.0739 0x1acc MSPCLOCK - ok
19:59:55.0739 0x1acc [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
19:59:55.0739 0x1acc MSPQM - ok
19:59:55.0754 0x1acc [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
19:59:55.0754 0x1acc MsRPC - ok
19:59:55.0770 0x1acc [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
19:59:55.0770 0x1acc mssmbios - ok
19:59:55.0770 0x1acc [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
19:59:55.0770 0x1acc MSTEE - ok
19:59:55.0770 0x1acc [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
19:59:55.0770 0x1acc MTConfig - ok
19:59:55.0786 0x1acc [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys
19:59:55.0786 0x1acc Mup - ok
19:59:55.0801 0x1acc [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll
19:59:55.0817 0x1acc napagent - ok
19:59:55.0833 0x1acc [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
19:59:55.0848 0x1acc NativeWifiP - ok
19:59:55.0879 0x1acc [ 7B2D90BBBBED11C8DFBA441D34AE901E, BBD8C7CA62262DB8471932DCB602EF260FB617B0CB8E4ECB1AA0AADBB85BD030 ] NBVol C:\Windows\system32\DRIVERS\NBVol.sys
19:59:55.0879 0x1acc NBVol - ok
19:59:55.0895 0x1acc [ 4FE7B5757279D82C4D171E9F7FD52A75, 0FEB2280A8D6A641FCC4202D2AF833625230DC481A910BE97F4F2C2605FFFFE3 ] NBVolUp C:\Windows\system32\DRIVERS\NBVolUp.sys
19:59:55.0895 0x1acc NBVolUp - ok
19:59:55.0942 0x1acc [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS C:\Windows\system32\drivers\ndis.sys
19:59:55.0973 0x1acc NDIS - ok
19:59:55.0973 0x1acc [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
19:59:55.0973 0x1acc NdisCap - ok
19:59:55.0989 0x1acc [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
19:59:55.0989 0x1acc NdisTapi - ok

 

[reysalomon]

19:59:56.0004 0x1acc [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
19:59:56.0004 0x1acc Ndisuio - ok
19:59:56.0036 0x1acc [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
19:59:56.0036 0x1acc NdisWan - ok
19:59:56.0067 0x1acc [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
19:59:56.0067 0x1acc NDProxy - ok
19:59:56.0067 0x1acc [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
19:59:56.0083 0x1acc Net Driver HPZ12 - ok
19:59:56.0083 0x1acc [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
19:59:56.0083 0x1acc NetBIOS - ok
19:59:56.0098 0x1acc [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
19:59:56.0098 0x1acc NetBT - ok
19:59:56.0114 0x1acc [ 7FB33A9A2E6B6D5CA9318668B95CA69C, 5B5CDF8BF4F2C2ADBAD2A92C554C369C6A428B7DE4FEF74FE9198058C3B864A3 ] Netlogon C:\Windows\system32\lsass.exe
19:59:56.0114 0x1acc Netlogon - ok
19:59:56.0145 0x1acc [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll
19:59:56.0145 0x1acc Netman - ok
19:59:56.0208 0x1acc [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:59:56.0208 0x1acc NetMsmqActivator - ok
19:59:56.0208 0x1acc [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:59:56.0223 0x1acc NetPipeActivator - ok
19:59:56.0239 0x1acc [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll
19:59:56.0239 0x1acc netprofm - ok
19:59:56.0254 0x1acc [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:59:56.0254 0x1acc NetTcpActivator - ok
19:59:56.0254 0x1acc [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:59:56.0254 0x1acc NetTcpPortSharing - ok
19:59:56.0270 0x1acc [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
19:59:56.0270 0x1acc nfrd960 - ok
19:59:56.0301 0x1acc [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll
19:59:56.0301 0x1acc NlaSvc - ok
19:59:56.0317 0x1acc [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys
19:59:56.0317 0x1acc Npfs - ok
19:59:56.0333 0x1acc [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll
19:59:56.0348 0x1acc nsi - ok
19:59:56.0348 0x1acc [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
19:59:56.0348 0x1acc nsiproxy - ok
19:59:56.0426 0x1acc [ 47B2D0B31BDC3EBE6090228E2BA3764D, 984A4B38300954164BCBF57EC1A09C18B53779E60A26E9618B50E26016735787 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
19:59:56.0473 0x1acc Ntfs - ok
19:59:56.0473 0x1acc [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys
19:59:56.0473 0x1acc Null - ok
19:59:56.0504 0x1acc [ 7E4355930B28C2798D9F09AB9F81151F, 941C730F3B75BDF99639E76350031EDD15F18D8D860F3B1282C28B62096E7717 ] NVHDA C:\Windows\system32\drivers\nvhda64v.sys
19:59:56.0504 0x1acc NVHDA - ok
19:59:56.0770 0x1acc [ ED4D88A04D22E6B00DB6BC8FACDBAFED, 38DDB9B353D3A24DD8390C6FB58FD513B46F9F715BC7E68D0958E78EACC3D3FA ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:59:56.0926 0x1acc nvlddmkm - ok
19:59:57.0036 0x1acc [ 064DDEC72C818AB8881B607A3836E265, 11A2821B874A7B990C81651F54600F9E1064C67AB94CEC7B36DCCC6EE971DEA0 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
19:59:57.0067 0x1acc NvNetworkService - ok
19:59:57.0098 0x1acc [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys
19:59:57.0098 0x1acc nvraid - ok
19:59:57.0129 0x1acc [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys
19:59:57.0129 0x1acc nvstor - ok
19:59:57.0223 0x1acc [ 9971592B39A038341E8AAE28EA14B95B, 08FCE3B00913DD0F36286A3DFB0C79933B20A5279FD351B99E31F895CBDBA636 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
19:59:57.0223 0x1acc NvStreamKms - ok
19:59:57.0708 0x1acc [ 4E4FBA5CE1395937206B85098DEB6321, E0C3D1D667CB2C4EBAEA779767466065F21A1D6EBFD69115FE7A2EEC1C133E64 ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
19:59:58.0004 0x1acc NvStreamSvc - ok
19:59:58.0083 0x1acc [ B7CD89EFA562A991F2864EFD3147473A, D38BAE7883BC073562C3C77DF59663B820CFE8305A3319C6E5CF8E48752E18C1 ] nvsvc C:\Windows\system32\nvvsvc.exe
19:59:58.0114 0x1acc nvsvc - ok
19:59:58.0145 0x1acc [ DBFE7B2DF103F74AE51840B3C5F25FE9, 436CAA417FD24BA870F117FA4BABA2AB694825795508BCFCC8C927CC2D5BBC5E ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
19:59:58.0145 0x1acc nvvad_WaveExtensible - ok
19:59:58.0161 0x1acc [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
19:59:58.0176 0x1acc nv_agp - ok
19:59:58.0192 0x1acc [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
19:59:58.0192 0x1acc ohci1394 - ok
19:59:58.0223 0x1acc [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:59:58.0239 0x1acc ose - ok
19:59:58.0411 0x1acc [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:59:58.0536 0x1acc osppsvc - ok
19:59:58.0583 0x1acc [ 85EA378116E2C4385993BA5124536FFC, C641A62375F846839ED2CDFDF09D2E3CE393AAEE99490B1E1338C81B6F4D7257 ] ossrv C:\Windows\system32\drivers\ctoss2k.sys
19:59:58.0583 0x1acc ossrv - ok
19:59:58.0708 0x1acc [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
19:59:58.0723 0x1acc p2pimsvc - ok
19:59:58.0754 0x1acc [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll
19:59:58.0770 0x1acc p2psvc - ok
19:59:58.0786 0x1acc [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys
19:59:58.0786 0x1acc Parport - ok
19:59:58.0817 0x1acc [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys
19:59:58.0817 0x1acc partmgr - ok
19:59:58.0848 0x1acc [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll
19:59:58.0848 0x1acc PcaSvc - ok
19:59:58.0864 0x1acc [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys
19:59:58.0879 0x1acc pci - ok
19:59:58.0879 0x1acc [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys
19:59:58.0879 0x1acc pciide - ok
19:59:58.0911 0x1acc [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
19:59:58.0911 0x1acc pcmcia - ok
19:59:58.0926 0x1acc [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys
19:59:58.0926 0x1acc pcw - ok
19:59:58.0958 0x1acc [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys
19:59:58.0973 0x1acc PEAUTH - ok
19:59:59.0036 0x1acc [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
19:59:59.0083 0x1acc PeerDistSvc - ok
19:59:59.0145 0x1acc [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe
19:59:59.0145 0x1acc PerfHost - ok
19:59:59.0208 0x1acc [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll
19:59:59.0239 0x1acc pla - ok
19:59:59.0270 0x1acc [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
19:59:59.0286 0x1acc PlugPlay - ok
19:59:59.0301 0x1acc [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
19:59:59.0317 0x1acc Pml Driver HPZ12 - ok
19:59:59.0317 0x1acc [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
19:59:59.0317 0x1acc PNRPAutoReg - ok
19:59:59.0333 0x1acc [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
19:59:59.0348 0x1acc PNRPsvc - ok
19:59:59.0364 0x1acc [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
19:59:59.0379 0x1acc PolicyAgent - ok
19:59:59.0395 0x1acc [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll
19:59:59.0411 0x1acc Power - ok
19:59:59.0442 0x1acc [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
19:59:59.0442 0x1acc PptpMiniport - ok
19:59:59.0458 0x1acc [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys
19:59:59.0458 0x1acc Processor - ok
19:59:59.0473 0x1acc [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll
19:59:59.0489 0x1acc ProfSvc - ok
19:59:59.0489 0x1acc [ 7FB33A9A2E6B6D5CA9318668B95CA69C, 5B5CDF8BF4F2C2ADBAD2A92C554C369C6A428B7DE4FEF74FE9198058C3B864A3 ] ProtectedStorage C:\Windows\system32\lsass.exe
19:59:59.0504 0x1acc ProtectedStorage - ok
19:59:59.0520 0x1acc [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys
19:59:59.0520 0x1acc Psched - ok
19:59:59.0567 0x1acc [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
19:59:59.0614 0x1acc ql2300 - ok
19:59:59.0629 0x1acc [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
19:59:59.0629 0x1acc ql40xx - ok
19:59:59.0645 0x1acc [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll
19:59:59.0645 0x1acc QWAVE - ok
19:59:59.0661 0x1acc [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
19:59:59.0661 0x1acc QWAVEdrv - ok
19:59:59.0676 0x1acc [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
19:59:59.0676 0x1acc RasAcd - ok
19:59:59.0692 0x1acc [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
19:59:59.0692 0x1acc RasAgileVpn - ok
19:59:59.0708 0x1acc [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll
19:59:59.0708 0x1acc RasAuto - ok
19:59:59.0723 0x1acc [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
19:59:59.0723 0x1acc Rasl2tp - ok
19:59:59.0754 0x1acc [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll
19:59:59.0770 0x1acc RasMan - ok
19:59:59.0770 0x1acc [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
19:59:59.0770 0x1acc RasPppoe - ok
19:59:59.0786 0x1acc [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
19:59:59.0801 0x1acc RasSstp - ok
19:59:59.0801 0x1acc [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
19:59:59.0817 0x1acc rdbss - ok
19:59:59.0817 0x1acc [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
19:59:59.0817 0x1acc rdpbus - ok
19:59:59.0833 0x1acc [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
19:59:59.0833 0x1acc RDPCDD - ok
19:59:59.0864 0x1acc [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
19:59:59.0864 0x1acc RDPDR - ok
19:59:59.0879 0x1acc [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
19:59:59.0879 0x1acc RDPENCDD - ok
19:59:59.0895 0x1acc [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
19:59:59.0895 0x1acc RDPREFMP - ok
19:59:59.0911 0x1acc [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
19:59:59.0926 0x1acc RDPWD - ok
19:59:59.0958 0x1acc [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
19:59:59.0958 0x1acc rdyboost - ok
19:59:59.0989 0x1acc [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll
19:59:59.0989 0x1acc RemoteAccess - ok
20:00:00.0004 0x1acc [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
20:00:00.0004 0x1acc RemoteRegistry - ok
20:00:00.0036 0x1acc [ 5BD6B1EC997FF3DD779D62E05D2079A8, BE4BDE29C134BAEDE4D35C777F2C6195F8C12FEF4583FAD2A442F8D1678B7FF7 ] RMCAST C:\Windows\system32\DRIVERS\RMCAST.sys
20:00:00.0036 0x1acc RMCAST - ok
20:00:00.0067 0x1acc [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
20:00:00.0067 0x1acc RpcEptMapper - ok
20:00:00.0083 0x1acc [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe
20:00:00.0098 0x1acc RpcLocator - ok
20:00:00.0129 0x1acc [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\System32\rpcss.dll
20:00:00.0145 0x1acc RpcSs - ok
20:00:00.0161 0x1acc [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
20:00:00.0161 0x1acc rspndr - ok
20:00:00.0208 0x1acc [ DCF7221D6588EDA8CD77CB27AE9B1844, 7741A4F513952CC3C4D5056958D0D50F8F2A9D3142C7478707F73A83D3CDE01C ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys
20:00:00.0223 0x1acc RTL8167 - ok
20:00:00.0239 0x1acc [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys
20:00:00.0239 0x1acc s3cap - ok
20:00:00.0254 0x1acc [ 7FB33A9A2E6B6D5CA9318668B95CA69C, 5B5CDF8BF4F2C2ADBAD2A92C554C369C6A428B7DE4FEF74FE9198058C3B864A3 ] SamSs C:\Windows\system32\lsass.exe
20:00:00.0254 0x1acc SamSs - ok
20:00:00.0317 0x1acc [ 5B403CF2EDC00271E889EE8BDD3D056D, 0914ABCDB6B1173F104DBE62F7247450CD5E17F0C302F6B85B85476CBCE80738 ] Samsung Network Fax Server C:\Windows\system32\spool\drivers\x64\3\NetFaxServer64.exe
20:00:00.0333 0x1acc Samsung Network Fax Server - ok
20:00:00.0348 0x1acc [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
20:00:00.0364 0x1acc SASDIFSV - ok
20:00:00.0364 0x1acc [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
20:00:00.0364 0x1acc SASKUTIL - ok
20:00:00.0395 0x1acc [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
20:00:00.0395 0x1acc sbp2port - ok
20:00:00.0411 0x1acc [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll
20:00:00.0411 0x1acc SCardSvr - ok
20:00:00.0442 0x1acc [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
20:00:00.0442 0x1acc scfilter - ok
20:00:00.0489 0x1acc [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll
20:00:00.0520 0x1398 Object required for P2P: [ C35B91B6777E7C6DB67B8583D2AA66A7 ] c2cpnrsvc
20:00:00.0536 0x1acc Schedule - ok
20:00:00.0551 0x1acc [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll
20:00:00.0551 0x1acc SCPolicySvc - ok
20:00:00.0583 0x1acc [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll
20:00:00.0598 0x1acc SDRSVC - ok
20:00:00.0614 0x1acc [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
20:00:00.0614 0x1acc secdrv - ok
20:00:00.0629 0x1acc [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon C:\Windows\system32\seclogon.dll
20:00:00.0645 0x1acc seclogon - ok
20:00:00.0661 0x1acc [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\system32\sens.dll
20:00:00.0661 0x1acc SENS - ok
20:00:00.0676 0x1acc [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll
20:00:00.0676 0x1acc SensrSvc - ok
20:00:00.0676 0x1acc [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
20:00:00.0676 0x1acc Serenum - ok
20:00:00.0692 0x1acc [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys
20:00:00.0692 0x1acc Serial - ok
20:00:00.0708 0x1acc [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
20:00:00.0708 0x1acc sermouse - ok
20:00:00.0739 0x1acc [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll
20:00:00.0739 0x1acc SessionEnv - ok
20:00:00.0754 0x1acc [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
20:00:00.0754 0x1acc sffdisk - ok
20:00:00.0770 0x1acc [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
20:00:00.0770 0x1acc sffp_mmc - ok
20:00:00.0770 0x1acc [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
20:00:00.0770 0x1acc sffp_sd - ok
20:00:00.0786 0x1acc [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
20:00:00.0786 0x1acc sfloppy - ok
20:00:00.0817 0x1acc [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll
20:00:00.0817 0x1acc SharedAccess - ok
20:00:00.0864 0x1acc [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
20:00:00.0879 0x1acc ShellHWDetection - ok
20:00:00.0895 0x1acc [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:00:00.0895 0x1acc SiSRaid2 - ok
20:00:00.0895 0x1acc [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
20:00:00.0911 0x1acc SiSRaid4 - ok
20:00:00.0911 0x1acc [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys
20:00:00.0911 0x1acc Smb - ok
20:00:00.0942 0x1398 Object send P2P result: true
20:00:00.0958 0x1acc [ FDB6E127DF739D4911319F0C8D339CAF, 8A61851C07F686838BD0816683620B5856D3F698E5F1AEC5ECD75F69817287B1 ] snapman C:\Windows\system32\DRIVERS\snapman.sys
20:00:00.0973 0x1acc snapman - ok
20:00:00.0973 0x1acc [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
20:00:00.0973 0x1acc SNMPTRAP - ok
20:00:00.0989 0x1acc [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys
20:00:00.0989 0x1acc spldr - ok
20:00:01.0036 0x1acc [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe
20:00:01.0036 0x1acc Spooler - ok
20:00:01.0176 0x1acc [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe
20:00:01.0254 0x1acc sppsvc - ok
20:00:01.0286 0x1acc [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll
20:00:01.0286 0x1acc sppuinotify - ok
20:00:01.0317 0x1acc [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys
20:00:01.0333 0x1acc srv - ok
20:00:01.0364 0x1acc [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
20:00:01.0364 0x1acc srv2 - ok
20:00:01.0395 0x1acc [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
20:00:01.0395 0x1acc srvnet - ok
20:00:01.0411 0x1acc [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
20:00:01.0411 0x1acc SSDPSRV - ok
20:00:01.0426 0x1acc [ 0211AB46B73A2623B86C1CFCB30579AB, 7CC9BA2DF7B9EA6BB17EE342898EDD7F54703B93B6DED6A819E83A7EE9F938B4 ] SSPORT C:\Windows\system32\Drivers\SSPORT.sys
20:00:01.0426 0x1acc SSPORT - ok
20:00:01.0442 0x1acc [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll
20:00:01.0442 0x1acc SstpSvc - ok
20:00:01.0536 0x1acc [ C98EF483DA6BFADB3BE719F6689A3D22, FFAB917A2008638FE6C8B74AA4487D5C16A25E0E1D53AFD35CBBE5A27A4A2009 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
20:00:01.0551 0x1acc Steam Client Service - ok
20:00:01.0598 0x1acc [ E7AF8F82C69A5E9B2CC46633BCBBAAEE, D7FC81DB72A1A96219335AFF861ADD82BEC115CBCB70C6765058E1D76702403C ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
20:00:01.0614 0x1acc Stereo Service - ok
20:00:01.0614 0x1acc [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
20:00:01.0629 0x1acc stexstor - ok
20:00:01.0661 0x1acc [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll
20:00:01.0676 0x1acc stisvc - ok
20:00:01.0692 0x1acc [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys
20:00:01.0692 0x1acc storflt - ok
20:00:01.0708 0x1acc [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc C:\Windows\system32\storsvc.dll
20:00:01.0723 0x1acc StorSvc - ok
20:00:01.0723 0x1acc [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys
20:00:01.0723 0x1acc storvsc - ok
20:00:01.0739 0x1acc [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys
20:00:01.0739 0x1acc swenum - ok
20:00:01.0770 0x1acc [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll
20:00:01.0786 0x1acc swprv - ok
20:00:02.0004 0x1acc [ 1D8C612D6589430AD8F981F615B7C528, 525CF53B7C45C8A28A355C6EFBD58DBC5DDD49A7AF30A67CF174A73AE474DF2A ] syncagentsrv C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
20:00:02.0114 0x1acc syncagentsrv - ok
20:00:02.0208 0x1acc [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll
20:00:02.0254 0x1acc SysMain - ok
20:00:02.0286 0x1acc [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
20:00:02.0286 0x1acc TabletInputService - ok
20:00:02.0317 0x1acc [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll
20:00:02.0317 0x1acc TapiSrv - ok
20:00:02.0333 0x1acc [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll
20:00:02.0333 0x1acc TBS - ok
20:00:02.0411 0x1acc [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
20:00:02.0458 0x1acc Tcpip - ok
20:00:02.0504 0x1acc [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
20:00:02.0536 0x1acc TCPIP6 - ok
20:00:02.0567 0x1acc [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
20:00:02.0567 0x1acc tcpipreg - ok
20:00:02.0583 0x1acc [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
20:00:02.0583 0x1acc TDPIPE - ok
20:00:02.0645 0x1acc [ 843DAFC2CD4ED5D57FA40FD2000C6296, 857749DCC061EDB423D1A5CB2DB394EE944FCBF3D729B52263F76D95F8AF3195 ] tdrpman C:\Windows\system32\DRIVERS\tdrpman.sys
20:00:02.0708 0x1acc tdrpman - ok
20:00:02.0723 0x1acc [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
20:00:02.0723 0x1acc TDTCP - ok
20:00:02.0754 0x1acc [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
20:00:02.0770 0x1acc tdx - ok
20:00:02.0770 0x1acc [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys
20:00:02.0786 0x1acc TermDD - ok
20:00:02.0817 0x1acc [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll
20:00:02.0833 0x1acc TermService - ok
20:00:02.0848 0x1acc [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll
20:00:02.0848 0x1acc Themes - ok
20:00:02.0864 0x1acc [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll
20:00:02.0864 0x1acc THREADORDER - ok
20:00:02.0926 0x1acc [ 31C9790525705B292F3B30F6676873CD, 6D7DF2DB38DD0A32D0DB1031AFE65AA1FCA21C53FBBE292670A0E9806CE096EA ] tib_mounter C:\Windows\system32\DRIVERS\tib_mounter.sys
20:00:02.0958 0x1acc tib_mounter - ok
20:00:02.0973 0x1acc [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll
20:00:02.0973 0x1acc TrkWks - ok
20:00:03.0004 0x1acc [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
20:00:03.0020 0x1acc TrustedInstaller - ok
20:00:03.0036 0x1acc [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
20:00:03.0036 0x1acc tssecsrv - ok
20:00:03.0051 0x1acc [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
20:00:03.0051 0x1acc TsUsbFlt - ok
20:00:03.0083 0x1acc [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
20:00:03.0083 0x1acc tunnel - ok
20:00:03.0161 0x1acc [ 1A006963644C7FDE5BE60036F3A43E68, BD596CD2D1AAE3A145DC9FD73FD53CD25242AF4CFCD2783D8FCB3B12EBCC7153 ] TVICHW64 C:\Windows\SysWOW64\Drivers\TVICHW64.SYS
20:00:03.0161 0x1acc TVICHW64 - ok
20:00:03.0176 0x1acc [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
20:00:03.0176 0x1acc uagp35 - ok
20:00:03.0208 0x1acc [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys
20:00:03.0223 0x1acc udfs - ok
20:00:03.0239 0x1acc [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe
20:00:03.0239 0x1acc UI0Detect - ok
20:00:03.0254 0x1acc [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
20:00:03.0254 0x1acc uliagpkx - ok
20:00:03.0270 0x1acc [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\drivers\umbus.sys
20:00:03.0270 0x1acc umbus - ok
20:00:03.0286 0x1acc [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
20:00:03.0286 0x1acc UmPass - ok
20:00:03.0317 0x1acc [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll
20:00:03.0333 0x1acc UmRdpService - ok
20:00:03.0348 0x1acc [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll
20:00:03.0364 0x1acc upnphost - ok
20:00:03.0379 0x1acc [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
20:00:03.0395 0x1acc usbaudio - ok
20:00:03.0411 0x1acc [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
20:00:03.0411 0x1acc usbccgp - ok
20:00:03.0442 0x1acc [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys
20:00:03.0442 0x1acc usbcir - ok
20:00:03.0458 0x1acc [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
20:00:03.0458 0x1acc usbehci - ok
20:00:03.0473 0x1acc [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
20:00:03.0489 0x1acc usbhub - ok
20:00:03.0504 0x1acc [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys
20:00:03.0520 0x1acc usbohci - ok
20:00:03.0520 0x1acc [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
20:00:03.0520 0x1acc usbprint - ok
20:00:03.0551 0x1acc [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
20:00:03.0551 0x1acc usbscan - ok
20:00:03.0583 0x1acc [ 4ACEE387FA8FD39F83564FCD2FC234F2, 3D62DE27027B8C032D15EB74F97A14B4EC24E67052C1163862740D6312B2569B ] usbser C:\Windows\system32\DRIVERS\usbser.sys
20:00:03.0583 0x1acc usbser - ok
20:00:03.0614 0x1acc [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:00:03.0614 0x1acc USBSTOR - ok
20:00:03.0614 0x1acc [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
20:00:03.0614 0x1acc usbuhci - ok
20:00:03.0629 0x1acc [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll
20:00:03.0645 0x1acc UxSms - ok
20:00:03.0661 0x1acc [ 7FB33A9A2E6B6D5CA9318668B95CA69C, 5B5CDF8BF4F2C2ADBAD2A92C554C369C6A428B7DE4FEF74FE9198058C3B864A3 ] VaultSvc C:\Windows\system32\lsass.exe
20:00:03.0661 0x1acc VaultSvc - ok
20:00:03.0708 0x1acc [ 301F11B8BC2208D4F4867D2103DA7CE2, FD844240D349AF3CD34AE2F30DCABB1327DBDCB6DB3336A379CFFF65F72EB642 ] VBoxDrv C:\Windows\system32\DRIVERS\VBoxDrv.sys
20:00:03.0723 0x1acc VBoxDrv - ok
20:00:03.0739 0x1acc [ 3FB968D261CE6A51454CE0C65E43B205, 2860554CC35495CC1A1D14DF002AAAE985E9C37650384B1D1524263D27DD68C5 ] VBoxUSBMon C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
20:00:03.0739 0x1acc VBoxUSBMon - ok
20:00:03.0770 0x1acc [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
20:00:03.0770 0x1acc vdrvroot - ok
20:00:03.0817 0x1acc [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe
20:00:03.0833 0x1acc vds - ok
20:00:03.0848 0x1acc [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
20:00:03.0848 0x1acc vga - ok
20:00:03.0864 0x1acc [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys
20:00:03.0864 0x1acc VgaSave - ok
20:00:03.0879 0x1acc [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
20:00:03.0895 0x1acc vhdmp - ok
20:00:03.0911 0x1acc [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys
20:00:03.0911 0x1acc viaide - ok
20:00:03.0926 0x1acc [ 927CBC96C4635F235301411E530FB56E, 2A942C64CB2970DDA23C72EB14A9541460369E97AC68BC11DC12E9D6B2ACAAAD ] vididr C:\Windows\system32\DRIVERS\vididr.sys
20:00:03.0926 0x1acc vididr - ok
20:00:03.0942 0x1acc [ 88B4E5C396003BCF479CA4D9BE851D57, 3F381C92AA53DAC38DAACB971D0013D64527F3C2002BEAEBF9C4A5ED18CC0294 ] vidsflt C:\Windows\system32\DRIVERS\vidsflt.sys
20:00:03.0958 0x1acc vidsflt - ok
20:00:03.0973 0x1acc [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys
20:00:03.0973 0x1acc vmbus - ok
20:00:03.0989 0x1acc [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
20:00:04.0004 0x1acc VMBusHID - ok
20:00:04.0020 0x1acc [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys
20:00:04.0020 0x1acc volmgr - ok
20:00:04.0051 0x1acc [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
20:00:04.0051 0x1acc volmgrx - ok
20:00:04.0067 0x1acc [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys
20:00:04.0083 0x1acc volsnap - ok
20:00:04.0098 0x1acc [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
20:00:04.0098 0x1acc vsmraid - ok
20:00:04.0161 0x1acc [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe
20:00:04.0208 0x1acc VSS - ok
20:00:04.0208 0x1acc [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
20:00:04.0208 0x1acc vwifibus - ok
20:00:04.0239 0x1acc [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll
20:00:04.0239 0x1acc W32Time - ok
20:00:04.0254 0x1acc [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
20:00:04.0270 0x1acc WacomPen - ok
20:00:04.0270 0x1acc [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
20:00:04.0270 0x1acc WANARP - ok
20:00:04.0286 0x1acc [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
20:00:04.0286 0x1acc Wanarpv6 - ok
20:00:04.0348 0x1acc [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
20:00:04.0395 0x1acc WatAdminSvc - ok
20:00:04.0458 0x1acc [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe
20:00:04.0504 0x1acc wbengine - ok
20:00:04.0520 0x1acc [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
20:00:04.0536 0x1acc WbioSrvc - ok
20:00:04.0551 0x1acc [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll
20:00:04.0567 0x1acc wcncsvc - ok
20:00:04.0583 0x1acc [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
20:00:04.0583 0x1acc WcsPlugInService - ok
20:00:04.0583 0x1acc [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys
20:00:04.0598 0x1acc Wd - ok
20:00:04.0629 0x1acc [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
20:00:04.0645 0x1acc Wdf01000 - ok
20:00:04.0676 0x1acc [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll
20:00:04.0676 0x1acc WdiServiceHost - ok
20:00:04.0676 0x1acc [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll
20:00:04.0692 0x1acc WdiSystemHost - ok
20:00:04.0708 0x1acc [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll
20:00:04.0723 0x1acc WebClient - ok
20:00:04.0739 0x1acc [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll
20:00:04.0739 0x1acc Wecsvc - ok
20:00:04.0754 0x1acc [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll
20:00:04.0770 0x1acc wercplsupport - ok
20:00:04.0770 0x1acc [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll
20:00:04.0770 0x1acc WerSvc - ok
20:00:04.0786 0x1acc [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
20:00:04.0786 0x1acc WfpLwf - ok
20:00:04.0786 0x1acc [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys
20:00:04.0801 0x1acc WIMMount - ok
20:00:04.0833 0x1acc [ 318FC752A3E529A23A0277580FDC6B93, 85489036C7DC25861B2EF212659298F7F30BE30CF964D09C517454E7253EEC7E ] winachsf C:\Windows\system32\DRIVERS\CAX_CNXT.sys
20:00:04.0848 0x1acc winachsf - ok
20:00:04.0864 0x1acc WinDefend - ok
20:00:04.0864 0x1acc WinHttpAutoProxySvc - ok
20:00:04.0911 0x1acc [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
20:00:04.0911 0x1acc Winmgmt - ok
20:00:05.0004 0x1acc [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll
20:00:05.0051 0x1acc WinRM - ok
20:00:05.0098 0x1acc [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\drivers\WinUsb.sys
20:00:05.0098 0x1acc WinUsb - ok
20:00:05.0129 0x1acc [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll
20:00:05.0161 0x1acc Wlansvc - ok
20:00:05.0286 0x1acc [ 2BACD71123F42CEA603F4E205E1AE337, 1FEF20554110371D738F462ECFFA999158EFEED02062414C58C1B61C422BF0B9 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
20:00:05.0348 0x1acc wlidsvc - ok
20:00:05.0364 0x1acc [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
20:00:05.0379 0x1acc WmiAcpi - ok
20:00:05.0395 0x1acc [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
20:00:05.0395 0x1acc wmiApSrv - ok
20:00:05.0426 0x1acc WMPNetworkSvc - ok
20:00:05.0473 0x1acc [ 83B6CA03C846FCD47F9883D77D1EB27B, 1616DBBC95085B6618B7F884383507E2A54D561A41288E79FA6DC99218C02802 ] WMZuneComm C:\Program Files\Zune\WMZuneComm.exe
20:00:05.0473 0x1acc WMZuneComm - ok
20:00:05.0489 0x1acc [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll
20:00:05.0489 0x1acc WPCSvc - ok
20:00:05.0504 0x1acc [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
20:00:05.0504 0x1acc WPDBusEnum - ok
20:00:05.0520 0x1acc [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
20:00:05.0520 0x1acc ws2ifsl - ok
20:00:05.0536 0x1acc [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\system32\wscsvc.dll
20:00:05.0536 0x1acc wscsvc - ok
20:00:05.0536 0x1acc WSearch - ok
20:00:05.0629 0x1acc [ 86F11B85102AFA6A1A6101DCE2F09386, 68A0F0E628C8F33FDAC114876DA8ED14776DD74E80AC5A6A52257E19DE011091 ] wuauserv C:\Windows\system32\wuaueng.dll
20:00:05.0708 0x1acc wuauserv - ok
20:00:05.0739 0x1acc [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
20:00:05.0739 0x1acc WudfPf - ok
20:00:05.0754 0x1acc [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
20:00:05.0754 0x1acc WUDFRd - ok
20:00:05.0770 0x1acc [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
20:00:05.0786 0x1acc wudfsvc - ok
20:00:05.0801 0x1acc [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll
20:00:05.0817 0x1acc WwanSvc - ok
20:00:05.0817 0x1acc X6va029 - ok
20:00:05.0848 0x1acc [ E8F3FA126A06F8E7088F63757112A186, FC742ECA6DD823C5B17A514EC4473F65EE290FA6501370675B3628FD881A1C4B ] XAudio C:\Windows\system32\DRIVERS\XAudio64.sys
20:00:05.0848 0x1acc XAudio - ok
20:00:06.0083 0x1acc [ 67B787C34FB2888D01B130AE007042D8, E44878E53F265C89F271B08B81C129105E42D1C78C14467B2D96E28A9A428B1A ] ZuneNetworkSvc C:\Program Files\Zune\ZuneNss.exe
20:00:06.0286 0x1acc ZuneNetworkSvc - ok
20:00:06.0317 0x1acc [ 4D89FC1C20CF655739EFAC5DA81A67BC, 788D0A5B9972ED6D80242C0C5E80AB0FAB44A708B896D5F724AC1559A291C8DD ] ZuneWlanCfgSvc C:\Program Files\Zune\ZuneWlanCfgSvc.exe
20:00:06.0333 0x1acc ZuneWlanCfgSvc - ok
20:00:06.0333 0x1acc ================ Scan global ===============================
20:00:06.0379 0x1acc [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
20:00:06.0395 0x1acc [ DE4812AB2E6926D0FF2423F3B774585A, 77604B47F2A91F77DDF778D8D362A0145636ED060596760ED55D76DD12E04B79 ] C:\Windows\system32\winsrv.dll
20:00:06.0426 0x1acc [ DE4812AB2E6926D0FF2423F3B774585A, 77604B47F2A91F77DDF778D8D362A0145636ED060596760ED55D76DD12E04B79 ] C:\Windows\system32\winsrv.dll
20:00:06.0442 0x1acc [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
20:00:06.0473 0x1acc [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
20:00:06.0473 0x1acc [ Global ] - ok
20:00:06.0473 0x1acc ================ Scan MBR ==================================
20:00:06.0489 0x1acc [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:00:06.0895 0x1acc \Device\Harddisk0\DR0 - ok
20:00:06.0895 0x1acc [ FEDE0CC45D67863C03BF69249E0ECAF0 ] \Device\Harddisk1\DR1
20:00:06.0911 0x1acc \Device\Harddisk1\DR1 - ok
20:00:06.0911 0x1acc [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
20:00:06.0926 0x1acc \Device\Harddisk2\DR2 - ok
20:00:06.0926 0x1acc ================ Scan VBR ==================================
20:00:06.0926 0x1acc [ A07DB971EAE817C26934A9560D2A4A52 ] \Device\Harddisk0\DR0\Partition1
20:00:06.0958 0x1acc \Device\Harddisk0\DR0\Partition1 - ok
20:00:06.0958 0x1acc [ 0B2FB709964881592C38E4EC6C901FA4 ] \Device\Harddisk0\DR0\Partition2
20:00:06.0989 0x1acc \Device\Harddisk0\DR0\Partition2 - ok
20:00:06.0989 0x1acc [ 106C9FAA01E1BAFD7D46E206463694AF ] \Device\Harddisk1\DR1\Partition1
20:00:07.0004 0x1acc \Device\Harddisk1\DR1\Partition1 - ok
20:00:07.0004 0x1acc [ 7E075EDF1FC8C99E93BEDCD4F73C37D3 ] \Device\Harddisk2\DR2\Partition1
20:00:07.0004 0x1acc \Device\Harddisk2\DR2\Partition1 - ok
20:00:07.0004 0x1acc ================ Scan generic autorun ======================
20:00:07.0067 0x1acc [ 8FDB628901899C1843D570304F796612, E7346F8C650C4BB8A40BE25D5F370CA6C2959260A84F584EC44C9CEA51978F00 ] C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
20:00:07.0083 0x1acc Acronis Scheduler2 Service - ok
20:00:07.0395 0x1acc [ 834A309C2FDF52FC09353F348CFE1235, FF8D5B0C4D8DEF3B313E11B01D6A2A29758E8721EF2EC0AAC2DB3C9AAF399276 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
20:00:07.0692 0x1acc RTHDVCPL - ok
20:00:07.0739 0x1acc [ 0FEBED0093D2FD38DA6C6E5DE1ADA24C, 6C6B186A2FC1DFD800041B160A7D71F5F1B3C70D62C7696B8DA89148A8D87D47 ] C:\Program Files\Zune\ZuneLauncher.exe
20:00:07.0739 0x1acc Zune Launcher - ok
20:00:07.0817 0x1acc [ DB282FA0CBA880D36BA5FBE748BD6F4F, C3A6AB6A2D084048F8C622B9B4CF138CE577B7B4CBC0BF00E5CB2A18918070DC ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
20:00:07.0833 0x1acc AdobeAAMUpdater-1.0 - ok
20:00:07.0864 0x1acc [ B1964E8776FD7633F149788F5B2A71CB, E30AC137B9DC2D3456499E0BB3B1955D2E0F7FFDB11E7A290A9DA25C76F4FAF8 ] C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
20:00:07.0879 0x1acc CDAServer - ok
20:00:08.0004 0x1acc [ E515A22A8DB5350A94248FBCF09F089D, 8C6859D81DAE4F01EDA958A26BDFE351D7ACEF7755B9AA831552DC64069F2E22 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
20:00:08.0036 0x1acc NvBackend - ok
20:00:08.0051 0x1acc [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
20:00:08.0051 0x1acc ShadowPlay - ok
20:00:08.0098 0x1acc [ 0AEE5668EB59912F32FF245BFA72465F, 653978E365B0E72D34E8B3ED1BFCF0237B70B41396BD70EBBBEDB31AFD77857B ] C:\Program Files (x86)\QuickTime\QTTask.exe
20:00:08.0098 0x1acc QuickTime Task - ok
20:00:08.0145 0x1acc [ 1AA5F0A2E3E65A9F6B35C19A7C9D7762, AB08124D101C4FE8B6D4A6056783D2EAD5C049BE39A3DE772E008CD43E36F443 ] C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe
20:00:08.0161 0x1acc Nikon Message Center 2 - ok
20:00:08.0192 0x1acc [ A7810B302294793DE88542AAE177D1B1, F0EE3684DBEB0AAAD912DC04D060976D1EAE92489E192BAE900FA0F417AD20A7 ] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
20:00:08.0192 0x1acc ArcSoft Connection Service - ok
20:00:08.0364 0x1acc [ B100EA6D06DA73CBB8E87853D6A7786E, E3505635870C4F8CACB9FB9132882C00822A49F58CD20CD1FAF851ED2879E757 ] C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
20:00:08.0504 0x1acc TrueImageMonitor.exe - ok
20:00:08.0551 0x1acc [ 988AB8304D7D07A34C799998D3AC8F84, 54A910DEE5F5C9B241EB405D217300ADD289021CBC15F156231FD2D13EE66AE0 ] C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
20:00:08.0567 0x1acc AcronisTibMounterMonitor - ok
20:00:08.0770 0x1acc [ 3ECF4B2CE5F45717283CBFF48C96FB6E, FE216C8905E32BF5D05D385DB706EEFCFB82D93707B8C16E7668113E456E0D74 ] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
20:00:08.0895 0x1acc SUPERAntiSpyware - ok
20:00:09.0020 0x1acc [ 4C8942B8721813E5C8874D47112DCF73, 85869B814417397D92A028CF841FC7B1B41E5D53EFF3470DED664484709C9FBA ] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe
20:00:09.0083 0x1acc LightScribe Control Panel - ok
20:00:09.0161 0x1acc [ A0DEB2EF7DDE22BCD6EA5252AEE9FF0B, FBE991A30A6A328BA60FD6BABC53D71B86D7736842B8BB4108502D1FBDF6C16F ] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
20:00:09.0192 0x1acc WSHelperSetup.exe - ok
20:00:09.0301 0x1acc [ 84B6DB9BA3CA06E1C5B3B7571F412ACF, 5F3B9EED340A12EB8C2A60DE753814300B316C167FEAD938EDB3C9177A32D660 ] C:\Users\joe\AppData\Roaming\SanDisk\Sansa Updater\SansaDispatch.exe
20:00:09.0333 0x1acc SansaDispatch - ok
20:00:09.0395 0x1acc [ 2287DAEA100837E40232FD9053F635D8, 8E905B8BC72F8DD6C7C71A7E04CD8D8EC1E9AD2B77EF5A48E089E439A75043D6 ] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIJAE.EXE
20:00:09.0395 0x1acc EPLTarget\P0000000000000000 - ok
20:00:09.0520 0x1acc [ EE6CC60BE4B301A5665208E881BA011C, BB3E3A4D8FCB046DB8EA80DD6CCD3C52E250DC73A9578AAD8B1F57EED3DC0182 ] C:\Users\joe\Desktop\Steam\steam.exe
20:00:09.0567 0x1acc Steam - ok
20:00:09.0614 0x1acc [ 925F39488F2ADD1A1A31AF32B6ECC160, B502778EBED00DD6C486854CB3F6B145023523ACDCDE5C033FBFAC0B840E5579 ] C:\Program Files (x86)\InstantEyedropper\InstantEyedropper.exe
20:00:09.0614 0x1acc instanteyedropper - ok
20:00:09.0786 0x1acc [ D4897EEDAC618D611B727F5C30FDC467, BF511F4D2B650531F90A101287A370E909A8896C9025D5A11940B46D30CFF913 ] C:\Users\joe\AppData\Local\MyComGames\MyComGames.exe
20:00:09.0848 0x1acc MyComGames - ok
20:00:09.0864 0x1acc Waiting for KSN requests completion. In queue: 166
20:00:10.0114 0x0f34 Object required for P2P: [ 3ECF4B2CE5F45717283CBFF48C96FB6E ] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
20:00:10.0692 0x0f34 Object send P2P result: true
20:00:10.0692 0x0f34 Object required for P2P: [ EE6CC60BE4B301A5665208E881BA011C ] C:\Users\joe\Desktop\Steam\steam.exe
20:00:10.0864 0x1acc Waiting for KSN requests completion. In queue: 3
20:00:11.0208 0x0f34 Object send P2P result: true
20:00:11.0208 0x0f34 Object required for P2P: [ D4897EEDAC618D611B727F5C30FDC467 ] C:\Users\joe\AppData\Local\MyComGames\MyComGames.exe
20:00:11.0676 0x0f34 Object send P2P result: true
20:00:11.0879 0x1acc AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2021.515 ), 0x41000 ( enabled : updated )
20:00:11.0895 0x1acc Win FW state via NFP2: disabled ( trusted )
20:00:12.0129 0x1acc ============================================================
20:00:12.0129 0x1acc Scan finished
20:00:12.0129 0x1acc ============================================================
20:00:12.0129 0x1ba4 Detected object count: 0
20:00:12.0129 0x1ba4 Actual detected object count: 0
20:00:41.0864 0x1260 Deinitialize success

 

[johnb35]

Ok a couple things for you to do.

1.


1. Go to Start > Run > type Notepad.exe and click OK to open Notepad.
It must be Notepad, not Wordpad.
2. Copy the text in the below code box

Driver::

X6va029

File::

c:\windows\SysWOW64\Drivers\X6va029

Folder::

c:\windows\SysWOW64\Drivers\X6va029

Reglock::

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

3. Go to the Notepad window and click Edit > Paste
4. Then click File > Save
5. Name the file CFScript.txt - Save the file to your Desktop
6. Then drag the CFScript (hold the left mouse button while dragging the file) and drop it (release the left mouse button) into ComboFix.exe as you see in the screenshot below. Important: Perform this instruction carefully!

ComboFix will begin to execute, just follow the prompts.
After reboot (in case it asks to reboot), it will produce a log for you.
Post that log (Combofix.txt) in your next reply.

2.

Download OTL to your Desktop

Click on the green download box on that page to download OTL.

•Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.

•Click on Minimal Output at the top

•Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.

◦When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL. Just post the OTL.txt file.

 

[reysalomon]

Hi, I am running the combofix now.

 

[reysalomon]

ComboFix 16-04-01.01 - joe 04/03/2016 18:44:31.5.4 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1252.1.1033.18.4095.2118 [GMT -4:00]
Running from: c:\users\joe\Desktop\ComboFix.exe
Command switches used :: G:\CFScript.txt.txt
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\SysWOW64\Drivers\X6va029"
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_X6VA029
-------\Service_X6va029
.
.
((((((((((((((((((((((((( Files Created from 2016-03-03 to 2016-04-03 )))))))))))))))))))))))))))))))
.
.
2016-04-03 22:52 . 2016-04-03 22:52 -------- d-----w- c:\users\Default\AppData\Local\temp
2016-04-02 12:35 . 2016-04-02 12:35 -------- d-----w- c:\users\joe\AppData\Local\GWX
2016-04-02 01:35 . 2015-01-15 18:42 977624 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2016-04-02 01:35 . 2015-01-15 18:42 73800 ----a-w- c:\windows\system32\RtNicProp64.dll
2016-04-02 01:35 . 2015-01-15 18:42 107552 ----a-w- c:\windows\system32\RTNUninst64.dll
2016-04-02 00:21 . 2015-01-09 03:14 91136 ----a-w- c:\windows\system32\wdi.dll
2016-04-02 00:21 . 2015-01-09 03:14 950272 ----a-w- c:\windows\system32\perftrack.dll
2016-04-02 00:21 . 2015-01-09 03:14 29696 ----a-w- c:\windows\system32\powertracker.dll
2016-04-02 00:21 . 2015-01-09 02:48 76800 ----a-w- c:\windows\SysWow64\wdi.dll
2016-04-01 23:51 . 2016-04-02 05:31 -------- d-s---w- c:\windows\system32\GWX
2016-04-01 23:51 . 2016-04-02 05:31 -------- d-s---w- c:\windows\SysWow64\GWX
2016-04-01 23:51 . 2016-04-02 05:31 -------- d-s---w- c:\windows\system32\CompatTel
2016-04-01 23:51 . 2016-04-02 05:31 -------- d-----w- c:\windows\system32\appraiser
2016-04-01 23:37 . 2015-07-30 13:13 103120 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2016-04-01 23:37 . 2015-07-30 13:13 124624 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2016-04-01 22:48 . 2016-04-01 22:48 -------- d-----w- c:\program files (x86)\Microsoft ASP.NET
2016-04-01 21:07 . 2015-07-10 17:51 3722752 ----a-w- c:\windows\system32\mstscax.dll
2016-04-01 21:06 . 2015-02-03 03:30 1202176 ----a-w- c:\windows\system32\drmv2clt.dll
2016-04-01 21:05 . 2015-07-15 03:19 52736 ----a-w- c:\windows\system32\basesrv.dll
2016-04-01 21:04 . 2016-02-03 18:58 862208 ----a-w- c:\windows\system32\oleaut32.dll
2016-04-01 21:03 . 2015-10-01 18:06 692672 ----a-w- c:\windows\system32\winload.efi
2016-04-01 21:02 . 2016-02-05 01:19 381440 ----a-w- c:\windows\system32\mfds.dll
2016-04-01 21:01 . 2015-07-09 17:57 193536 ----a-w- c:\windows\system32\notepad.exe
2016-04-01 21:00 . 2016-01-16 18:36 1413632 ----a-w- c:\windows\SysWow64\ole32.dll
2016-04-01 20:59 . 2015-02-04 03:16 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2016-04-01 20:58 . 2015-12-08 21:52 312320 ----a-w- c:\windows\SysWow64\gdi32.dll
2016-04-01 20:58 . 2015-12-08 19:07 405504 ----a-w- c:\windows\system32\gdi32.dll
2016-04-01 20:58 . 2014-12-08 03:09 406528 ----a-w- c:\windows\system32\scesrv.dll
2016-04-01 20:58 . 2014-12-08 02:46 308224 ----a-w- c:\windows\SysWow64\scesrv.dll
2016-04-01 20:58 . 2015-11-03 19:04 241664 ----a-w- c:\windows\system32\els.dll
2016-04-01 20:58 . 2015-11-03 18:55 179712 ----a-w- c:\windows\SysWow64\els.dll
2016-04-01 20:58 . 2015-03-04 04:55 367552 ----a-w- c:\windows\system32\clfs.sys
2016-04-01 20:58 . 2015-03-04 04:41 79360 ----a-w- c:\windows\system32\clfsw32.dll
2016-04-01 20:58 . 2015-03-04 04:10 58880 ----a-w- c:\windows\SysWow64\clfsw32.dll
2016-04-01 20:48 . 2016-02-19 18:54 1168896 ----a-w- c:\windows\system32\aeinv.dll
2016-04-01 20:48 . 2016-02-11 14:07 689152 ----a-w- c:\windows\system32\generaltel.dll
2016-04-01 20:48 . 2016-02-05 14:07 696832 ----a-w- c:\windows\system32\invagent.dll
2016-04-01 20:48 . 2016-02-05 14:07 499200 ----a-w- c:\windows\system32\devinv.dll
2016-04-01 20:48 . 2016-02-05 14:07 76800 ----a-w- c:\windows\system32\acmigration.dll
2016-04-01 20:48 . 2015-11-16 20:17 210432 ----a-w- c:\windows\system32\aepic.dll
2016-04-01 20:48 . 2015-06-03 20:16 1239720 ----a-w- c:\windows\system32\aitstatic.exe
2016-03-30 23:46 . 2016-04-02 05:32 -------- d-----w- C:\AdwCleaner
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2016-04-02 02:15 . 2014-06-15 18:27 192216 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2016-04-01 22:37 . 2012-09-06 18:55 143659408 ----a-w- c:\windows\system32\MRT.exe
2016-02-11 18:30 . 2016-04-01 21:03 44032 ----a-w- c:\windows\apppatch\acwow64.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2016-03-15 7943072]
"LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2011-03-04 2741616]
"WSHelperSetup.exe"="c:\program files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe" [2014-04-01 2007392]
"SansaDispatch"="c:\users\joe\AppData\Roaming\SanDisk\Sansa Updater\SansaDispatch.exe" [2014-06-13 1465616]
"EPLTarget\P0000000000000000"="c:\windows\system32\spool\DRIVERS\x64\3\E_IATIJAE.EXE" [2012-02-29 283232]
"Steam"="c:\users\joe\Desktop\Steam\steam.exe" [2016-03-28 3077712]
"instanteyedropper"="c:\program files (x86)\InstantEyedropper\InstantEyedropper.exe" [2007-10-17 352256]
"MyComGames"="c:\users\joe\AppData\Local\MyComGames\MyComGames.exe" [2016-03-29 4856688]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2010-11-29 421888]
"Nikon Message Center 2"="c:\program files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe" [2011-10-30 571392]
"ArcSoft Connection Service"="c:\program files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" [2010-10-27 207424]
"TrueImageMonitor.exe"="c:\program files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe" [2012-08-23 6010264]
"AcronisTibMounterMonitor"="c:\program files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe" [2012-07-24 941440]
"NBAgent"="c:\program files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe" [2011-09-20 1493288]
"AdobeCS6ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-06-25 1073352]
"Wondershare Helper Compact.exe"="c:\program files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe" [2014-04-01 2007392]
"WSHelperSetup.exe"="c:\program files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe" [2014-04-01 2007392]
"CTSysVol"="c:\program files (x86)\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe" [2003-07-02 57344]
"SBDrvDet"="c:\program files (x86)\Creative\SB Drive Det\SBDrvDet.exe" [2002-12-03 45056]
"UpdReg"="c:\windows\UpdReg.EXE" [2000-05-11 90112]
"CTxfiHlp"="CTXFIHLP.EXE" [2007-04-09 19968]
"AsioThk32Reg"="CTASIO.DLL" [2010-03-18 47104]
"CTHelper"="CTHELPER.EXE" [2010-03-18 19456]
"CTXFIREG"="CTxfiReg.exe" [2007-04-09 43520]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-10-03 4085896]
"Andy"="c:\program files\Andy\HandyAndy.exe" [2015-02-03 907144]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2015-12-14 1085656]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"DevconDefaultDB"="c:\windows\system32\READREG" [X]
"GarminExpressTrayApp"="c:\program files (x86)\Garmin\Express Tray\tray.exe" [2015-04-08 1010008]
.
c:\users\joe\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OneNote 2010 Screen Clipper and Launcher.lnk - c:\program files (x86)\Microsoft Office\Office14\ONENOTEM.EXE /tsr [2015-10-13 228552]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Samsung Network PC Fax.lnk - c:\windows\System32\spool\drivers\x64\3\NetFaxTray64.exe [2014-6-29 380976]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
R2 AcfXAudioService;AcfXAudioService;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 acfva;acfva;c:\windows\system32\DRIVERS\ACFVA64.sys;c:\windows\SYSNATIVE\DRIVERS\ACFVA64.sys [x]
R3 ATICDSDr;ATICDSDr;c:\users\joe\AppData\Local\Temp\ATICDSDr.sys;c:\users\joe\AppData\Local\Temp\ATICDSDr.sys [x]
R3 CAXHWBS2;CAXHWBS2;c:\windows\system32\DRIVERS\CAXHWBS2.sys;c:\windows\SYSNATIVE\DRIVERS\CAXHWBS2.sys [x]
R3 COMMONFX;COMMONFX;c:\windows\system32\drivers\COMMONFX.SYS;c:\windows\SYSNATIVE\drivers\COMMONFX.SYS [x]
R3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe;c:\program files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [x]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [x]
R3 CTAUDFX;CTAUDFX;c:\windows\system32\drivers\CTAUDFX.SYS;c:\windows\SYSNATIVE\drivers\CTAUDFX.SYS [x]
R3 CTERFXFX.SYS;CTERFXFX.SYS;c:\windows\System32\drivers\CTERFXFX.SYS;c:\windows\SYSNATIVE\drivers\CTERFXFX.SYS [x]
R3 CTERFXFX;CTERFXFX;c:\windows\system32\drivers\CTERFXFX.SYS;c:\windows\SYSNATIVE\drivers\CTERFXFX.SYS [x]
R3 CTSBLFX;CTSBLFX;c:\windows\system32\drivers\CTSBLFX.SYS;c:\windows\SYSNATIVE\drivers\CTSBLFX.SYS [x]
R3 dgcfltr;DGC Filter Driver;c:\windows\system32\DRIVERS\ACFDCP64.sys;c:\windows\SYSNATIVE\DRIVERS\ACFDCP64.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TVICHW64;TVICHW64;c:\windows\SysWOW64\Drivers\TVICHW64.SYS;c:\windows\SysWOW64\Drivers\TVICHW64.SYS [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 fltsrv;Acronis Storage Filter Management;c:\windows\system32\DRIVERS\fltsrv.sys;c:\windows\SYSNATIVE\DRIVERS\fltsrv.sys [x]
S0 NBVol;Nero Backup Volume Filter Driver;c:\windows\system32\DRIVERS\NBVol.sys;c:\windows\SYSNATIVE\DRIVERS\NBVol.sys [x]
S0 NBVolUp;Nero Backup Volume Upper Filter Driver;c:\windows\system32\DRIVERS\NBVolUp.sys;c:\windows\SYSNATIVE\DRIVERS\NBVolUp.sys [x]
S0 tib_mounter;Acronis TIB Mounter;c:\windows\system32\DRIVERS\tib_mounter.sys;c:\windows\SYSNATIVE\DRIVERS\tib_mounter.sys [x]
S0 vididr;Acronis Virtual Disk;c:\windows\system32\DRIVERS\vididr.sys;c:\windows\SYSNATIVE\DRIVERS\vididr.sys [x]
S0 vidsflt;Acronis Disk Storage Filter;c:\windows\system32\DRIVERS\vidsflt.sys;c:\windows\SYSNATIVE\DRIVERS\vidsflt.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 BS_I2cIo;BS_I2cIo;c:\windows\system32\drivers\BS_I2cIo.sys;c:\windows\SYSNATIVE\drivers\BS_I2cIo.sys [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [x]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [x]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxDrv.sys [x]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxUSBMon.sys [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [x]
S2 afcdpsrv;Acronis Nonstop Backup Service;c:\program files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe;c:\program files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe;c:\program files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [x]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe;c:\program files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE;c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [x]
S2 EpsonScanSvc;Epson Scanner Service;c:\windows\system32\EscSvc64.exe;c:\windows\SYSNATIVE\EscSvc64.exe [x]
S2 FreeAgentGoFlex Service;Seagate Drive Settings Service;c:\program files (x86)\Seagate\DriveSettings\Sync\SeagateDriveSettingsService.exe;c:\program files (x86)\Seagate\DriveSettings\Sync\SeagateDriveSettingsService.exe [x]
S2 Garmin Device Interaction Service;Garmin Device Interaction Service;c:\program files (x86)\Garmin\Device Interaction Service\GarminService.exe;c:\program files (x86)\Garmin\Device Interaction Service\GarminService.exe [x]
S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [x]
S2 HsfXAudioService;HsfXAudioService;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Samsung Network Fax Server;Samsung Network Fax Server;c:\windows\system32\spool\drivers\x64\3\NetFaxServer64.exe;c:\windows\SYSNATIVE\spool\drivers\x64\3\NetFaxServer64.exe [x]
S2 SSPORT;SSPORT;c:\windows\system32\Drivers\SSPORT.sys;c:\windows\SYSNATIVE\Drivers\SSPORT.sys [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 syncagentsrv;Acronis Sync Agent Service;c:\program files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe;c:\program files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [x]
S3 afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys;c:\windows\SYSNATIVE\DRIVERS\afcdp.sys [x]
S3 COMMONFX.SYS;COMMONFX.SYS;c:\windows\System32\drivers\COMMONFX.SYS;c:\windows\SYSNATIVE\drivers\COMMONFX.SYS [x]
S3 CTAUDFX.SYS;CTAUDFX.SYS;c:\windows\System32\drivers\CTAUDFX.SYS;c:\windows\SYSNATIVE\drivers\CTAUDFX.SYS [x]
S3 CTSBLFX.SYS;CTSBLFX.SYS;c:\windows\System32\drivers\CTSBLFX.SYS;c:\windows\SYSNATIVE\drivers\CTSBLFX.SYS [x]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2011-03-04 16:29 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Contents of the 'Scheduled Tasks' folder
.
2016-04-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-30 18:01]
.
2016-04-03 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-30 18:01]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-10-02 12:57 634872 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncError]
@="{934BC6C0-FEC2-4df5-A100-961DE2C8A0ED}"
[HKEY_CLASSES_ROOT\CLSID\{934BC6C0-FEC2-4df5-A100-961DE2C8A0ED}]
2012-08-23 05:13 2732160 ----a-w- c:\program files (x86)\Acronis\TrueImageHome\tishell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncInProgress]
@="{00F848DC-B1D4-4892-9C25-CAADC86A215D}"
[HKEY_CLASSES_ROOT\CLSID\{00F848DC-B1D4-4892-9C25-CAADC86A215D}]
2012-08-23 05:13 2732160 ----a-w- c:\program files (x86)\Acronis\TrueImageHome\tishell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncOk]
@="{71573297-552E-46fc-BE3D-3DFAF88D47B7}"
[HKEY_CLASSES_ROOT\CLSID\{71573297-552E-46fc-BE3D-3DFAF88D47B7}]
2012-08-23 05:13 2732160 ----a-w- c:\program files (x86)\Acronis\TrueImageHome\tishell64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Acronis Scheduler2 Service"="c:\program files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe" [2012-08-23 403328]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-06-11 12503184]
"Zune Launcher"="c:\program files\Zune\ZuneLauncher.exe" [2011-08-05 163552]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2013-03-21 472992]
"CDAServer"="c:\program files\Common Files\Common Desktop Agent\CDASrv.exe" [2012-03-09 462712]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2014-12-13 2531472]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2014-12-13 2824504]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <local>
Trusted Zone: aol.com\free
TCP: DhcpNameServer = 209.18.47.62 209.18.47.61
DPF: {D9305048-DD6B-4EDF-8706-096EBE24E1D7} - hxxp://162.17.56.115/IPCWeb.cab
DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} - hxxp://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
.
- - - - ORPHANS REMOVED - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
AddRemove-Cole2k Media - Codec Pack - c:\windows\SysWOW64\C2MP\Uninst.exe
AddRemove-{0886900B-B2F3-452C-B580-60F1253F7F80} - c:\programdata\{E6A5D1F3-568D-4BA2-B7B6-7B6E93D9DA97}\Controller Editor Setup PC.exe
AddRemove-{A8EC0CC0-AD8D-4244-B080-424EDF7A7634} - c:\programdata\{E648CD4D-3307-4213-89B2-9C0E20C77202}\Traktor 2 Setup PC.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Nico Mak Computing\WinZip]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,6f,00,66,00,\
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Creative\Shared Files\CTAudSvc.exe
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe
.
**************************************************************************
.
Completion time: 2016-04-03 19:00:23 - machine was rebooted
ComboFix-quarantined-files.txt 2016-04-03 23:00
ComboFix2.txt 2016-04-03 01:17
ComboFix3.txt 2016-04-03 00:18
ComboFix4.txt 2016-03-31 00:57
.
Pre-Run: 770,879,643,648 bytes free
Post-Run: 770,471,755,776 bytes free
.
- - End Of File - - 2D75CD4FA399F12F5A28BC31253715B1
A36C5E4F47E84449FF07ED3517B43A31

 

[reysalomon]

OTL logfile created on: 4/3/2016 7:08:03 PM - Run 3
OTL by OldTimer - Version 3.2.69.0 Folder = E:\
64bit- Professional Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.11.9600.18230)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

4.00 Gb Total Physical Memory | 2.30 Gb Available Physical Memory | 57.46% Memory free
8.00 Gb Paging File | 6.28 Gb Available in Paging File | 78.52% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 931.41 Gb Total Space | 717.67 Gb Free Space | 77.05% Space Free | Partition Type: NTFS
Drive E: | 7.46 Gb Total Space | 7.45 Gb Free Space | 99.85% Space Free | Partition Type: FAT32
Drive F: | 465.70 Gb Total Space | 447.50 Gb Free Space | 96.09% Space Free | Partition Type: NTFS
Drive K: | 7.46 Gb Total Space | 0.31 Gb Free Space | 4.14% Space Free | Partition Type: FAT32

Computer Name: HOME | User Name: joe | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - E:\OTL (1).exe (OldTimer Tools)
PRC - C:\Users\joe\Desktop\Steam\Steam.exe (Valve Corporation)
PRC - C:\Users\joe\Desktop\Steam\bin\steamwebhelper.exe (Valve Corporation)
PRC - C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Microsoft Corporation)
PRC - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
PRC - C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe (Garmin Ltd. or its subsidiaries)
PRC - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
PRC - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation)
PRC - C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
PRC - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe (Acronis)
PRC - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis)
PRC - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis)
PRC - C:\Program Files (x86)\Seagate\DriveSettings\Sync\SeagateDriveSettingsService.exe (Seagate Technology LLC)
PRC - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
PRC - C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (Creative Technology Ltd)


========== Modules (No Company Name) ==========

MOD - C:\Users\joe\Desktop\Steam\video.dll ()
MOD - C:\Users\joe\Desktop\Steam\bin\chromehtml.dll ()
MOD - C:\Users\joe\Desktop\Steam\SDL2.dll ()
MOD - C:\Users\joe\Desktop\Steam\openvr_api.dll ()
MOD - C:\Users\joe\Desktop\Steam\bin\libcef.dll ()
MOD - C:\Users\joe\Desktop\Steam\libavcodec-56.dll ()
MOD - C:\Users\joe\Desktop\Steam\libavformat-56.dll ()
MOD - C:\Users\joe\Desktop\Steam\libswscale-3.dll ()
MOD - C:\Users\joe\Desktop\Steam\libavutil-54.dll ()
MOD - C:\Users\joe\Desktop\Steam\libavresample-2.dll ()
MOD - C:\Users\joe\Desktop\Steam\winh264.dll ()
MOD - C:\Users\joe\Desktop\Steam\v8.dll ()
MOD - C:\Users\joe\Desktop\Steam\icui18n.dll ()
MOD - C:\Users\joe\Desktop\Steam\icuuc.dll ()


========== Services (SafeList) ==========

SRV:64bit: - (IEEtwCollectorService) -- C:\Windows\SysNative\IEEtwCollector.exe (Microsoft Corporation)
SRV:64bit: - (DiagTrack) -- C:\Windows\SysNative\diagtrack.dll (Microsoft Corporation)
SRV:64bit: - (GfExperienceService) -- C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe (NVIDIA Corporation)
SRV:64bit: - (NvStreamSvc) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe (NVIDIA Corporation)
SRV:64bit: - (avast! Antivirus) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software)
SRV:64bit: - (!SASCORE) -- C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE (SUPERAntiSpyware.com)
SRV:64bit: - (Samsung Network Fax Server) -- C:\Windows\SysNative\spool\drivers\x64\3\NetFaxServer64.exe (Samsung Electronics Co., Ltd.)
SRV:64bit: - (EPSON_PM_RPCV4_04) -- C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE (SEIKO EPSON CORPORATION)
SRV:64bit: - (EpsonScanSvc) -- C:\Windows\SysNative\escsvc64.exe (Seiko Epson Corporation)
SRV:64bit: - (ZuneWlanCfgSvc) -- C:\Program Files\Zune\ZuneWlanCfgSvc.exe (Microsoft Corporation)
SRV:64bit: - (WMZuneComm) -- C:\Program Files\Zune\WMZuneComm.exe (Microsoft Corporation)
SRV:64bit: - (ZuneNetworkSvc) -- C:\Program Files\Zune\ZuneNss.exe (Microsoft Corporation)
SRV:64bit: - (AppMgmt) -- C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SRV:64bit: - (AgereModemAudio) -- C:\Program Files\LSI SoftModem\agr64svc.exe (LSI Corporation)
SRV - (Steam Client Service) -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (c2cautoupdatesvc) -- C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation)
SRV - (c2cpnrsvc) -- C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Microsoft Corporation)
SRV - (AdobeARMservice) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated)
SRV - (clr_optimization_v4.0.30319_32) -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe (Microsoft Corporation)
SRV - (Garmin Device Interaction Service) -- C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe (Garmin Ltd. or its subsidiaries)
SRV - (Stereo Service) -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (NVIDIA Corporation)
SRV - (NvNetworkService) -- C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe (NVIDIA Corporation)
SRV - (Creative Audio Engine Licensing Service) -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe (Creative Labs)
SRV - (clr_optimization_v2.0.50727_32) -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe (Microsoft Corporation)
SRV - (Creative ALchemy AL6 Licensing Service) -- C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe (Creative Labs)
SRV - (Samsung Network Fax Server) -- C:\Windows\system32\spool\drivers\x64\3\NetFaxServer64.exe (Samsung Electronics Co., Ltd.)
SRV - (afcdpsrv) -- C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe (Acronis)
SRV - (AcrSch2Svc) -- C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe (Acronis)
SRV - (syncagentsrv) -- C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis)
SRV - (AcfXAudioService) -- C:\Windows\SysWOW64\ACFXAU64.dll (Conexant Systems, Inc.)
SRV - (FreeAgentGoFlex Service) -- C:\Program Files (x86)\Seagate\DriveSettings\Sync\SeagateDriveSettingsService.exe (Seagate Technology LLC)
SRV - (ACDaemon) -- C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft Inc.)
SRV - (CTAudSvcService) -- C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe (Creative Technology Ltd)
SRV - (HsfXAudioService) -- C:\Windows\SysWOW64\XAudio64.dll (Conexant Systems, Inc.)


========== Driver Services (SafeList) ==========

DRV:64bit: - (RMCAST) -- C:\Windows\SysNative\drivers\rmcast.sys (Microsoft Corporation)
DRV:64bit: - (RTL8167) -- C:\Windows\SysNative\drivers\Rt64win7.sys (Realtek )
DRV:64bit: - (NvStreamKms) -- C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys (NVIDIA Corporation)
DRV:64bit: - (aswSnx) -- C:\Windows\SysNative\drivers\aswsnx.sys (AVAST Software)
DRV:64bit: - (nvvad_WaveExtensible) -- C:\Windows\SysNative\drivers\nvvad64v.sys (NVIDIA Corporation)
DRV:64bit: - (NVHDA) -- C:\Windows\SysNative\drivers\nvhda64v.sys (NVIDIA Corporation)
DRV:64bit: - (aswSP) -- C:\Windows\SysNative\drivers\aswsp.sys (AVAST Software)
DRV:64bit: - (aswVmm) -- C:\Windows\SysNative\drivers\aswVmm.sys ()
DRV:64bit: - (aswRdr) -- C:\Windows\SysNative\drivers\aswRdr2.sys (AVAST Software)
DRV:64bit: - (aswStm) -- C:\Windows\SysNative\drivers\aswStm.sys (AVAST Software)
DRV:64bit: - (aswMonFlt) -- C:\Windows\SysNative\drivers\aswMonFlt.sys (AVAST Software)
DRV:64bit: - (aswRvrt) -- C:\Windows\SysNative\drivers\aswRvrt.sys ()
DRV:64bit: - (aswHwid) -- C:\Windows\SysNative\drivers\aswHwid.sys ()
DRV:64bit: - (SSPORT) -- C:\Windows\SysNative\drivers\SSPORT.SYS (Samsung Electronics)
DRV:64bit: - (afcdp) -- C:\Windows\SysNative\drivers\afcdp.sys (Acronis)
DRV:64bit: - (tdrpman) -- C:\Windows\SysNative\drivers\tdrpman.sys (Acronis)
DRV:64bit: - (tib_mounter) -- C:\Windows\SysNative\drivers\tib_mounter.sys (Acronis)
DRV:64bit: - (vididr) -- C:\Windows\SysNative\drivers\vididr.sys (Acronis)
DRV:64bit: - (vidsflt) -- C:\Windows\SysNative\drivers\vidsflt.sys (Acronis)
DRV:64bit: - (snapman) -- C:\Windows\SysNative\drivers\snapman.sys (Acronis)
DRV:64bit: - (fltsrv) -- C:\Windows\SysNative\drivers\fltsrv.sys (Acronis)
DRV:64bit: - (Fs_Rec) -- C:\Windows\SysNative\drivers\fs_rec.sys (Microsoft Corporation)
DRV:64bit: - (SASDIFSV) -- C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV:64bit: - (NBVol) -- C:\Windows\SysNative\drivers\NBVol.sys (Nero AG)
DRV:64bit: - (NBVolUp) -- C:\Windows\SysNative\drivers\NBVolUp.sys (Nero AG)
DRV:64bit: - (SASKUTIL) -- C:\Program Files\SUPERAntiSpyware\saskutil64.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV:64bit: - (amdsata) -- C:\Windows\SysNative\drivers\amdsata.sys (Advanced Micro Devices)
DRV:64bit: - (amdxata) -- C:\Windows\SysNative\drivers\amdxata.sys (Advanced Micro Devices)
DRV:64bit: - (acfva) -- C:\Windows\SysNative\drivers\ACFVA64.sys (Conexant Systems Inc.)
DRV:64bit: - (dgcfltr) -- C:\Windows\SysNative\drivers\ACFDCP64.sys (Conexant Systems, Inc.)
DRV:64bit: - (HpSAMD) -- C:\Windows\SysNative\drivers\HpSAMD.sys (Hewlett-Packard Company)
DRV:64bit: - (TsUsbFlt) -- C:\Windows\SysNative\drivers\TsUsbFlt.sys (Microsoft Corporation)
DRV:64bit: - (usbser) -- C:\Windows\SysNative\drivers\usbser.sys (Microsoft Corporation)
DRV:64bit: - (hap17v2k) -- C:\Windows\SysNative\drivers\haP17v2k.sys (Creative Technology Ltd)
DRV:64bit: - (hap16v2k) -- C:\Windows\SysNative\drivers\haP16v2k.sys (Creative Technology Ltd)
DRV:64bit: - (ha10kx2k) -- C:\Windows\SysNative\drivers\ha10kx2k.sys (Creative Technology Ltd)
DRV:64bit: - (emupia) -- C:\Windows\SysNative\drivers\emupia2k.sys (Creative Technology Ltd)
DRV:64bit: - (ctsfm2k) -- C:\Windows\SysNative\drivers\ctsfm2k.sys (Creative Technology Ltd)
DRV:64bit: - (ctprxy2k) -- C:\Windows\SysNative\drivers\ctprxy2k.sys (Creative Technology Ltd)
DRV:64bit: - (ossrv) -- C:\Windows\SysNative\drivers\ctoss2k.sys (Creative Technology Ltd.)
DRV:64bit: - (ctaud2k) -- C:\Windows\SysNative\drivers\ctaud2k.sys (Creative Technology Ltd)
DRV:64bit: - (ctac32k) -- C:\Windows\SysNative\drivers\ctac32k.sys (Creative Technology Ltd)
DRV:64bit: - (CTERFXFX.SYS) -- C:\Windows\SysNative\drivers\CTERFXFX.sys (Creative Technology Ltd)
DRV:64bit: - (CTERFXFX) -- C:\Windows\SysNative\drivers\CTERFXFX.sys (Creative Technology Ltd)
DRV:64bit: - (CTSBLFX.SYS) -- C:\Windows\SysNative\drivers\CTSBLFX.sys (Creative Technology Ltd)
DRV:64bit: - (CTSBLFX) -- C:\Windows\SysNative\drivers\CTSBLFX.sys (Creative Technology Ltd)
DRV:64bit: - (CTAUDFX.SYS) -- C:\Windows\SysNative\drivers\CTAUDFX.sys (Creative Technology Ltd)
DRV:64bit: - (CTAUDFX) -- C:\Windows\SysNative\drivers\CTAUDFX.sys (Creative Technology Ltd)
DRV:64bit: - (COMMONFX.SYS) -- C:\Windows\SysNative\drivers\COMMONFX.sys (Creative Technology Ltd)
DRV:64bit: - (COMMONFX) -- C:\Windows\SysNative\drivers\COMMONFX.sys (Creative Technology Ltd)
DRV:64bit: - (HSF_DPV) -- C:\Windows\SysNative\drivers\CAX_DPV.sys (Conexant Systems, Inc.)
DRV:64bit: - (CAXHWBS2) -- C:\Windows\SysNative\drivers\CAXHWBS2.sys (Conexant Systems, Inc.)
DRV:64bit: - (winachsf) -- C:\Windows\SysNative\drivers\CAX_CNXT.sys (Conexant Systems, Inc.)
DRV:64bit: - (AgereSoftModem) -- C:\Windows\SysNative\drivers\agrsm64.sys (LSI Corporation)
DRV:64bit: - (amdsbs) -- C:\Windows\SysNative\drivers\amdsbs.sys (AMD Technologies Inc.)
DRV:64bit: - (LSI_SAS2) -- C:\Windows\SysNative\drivers\lsi_sas2.sys (LSI Corporation)
DRV:64bit: - (stexstor) -- C:\Windows\SysNative\drivers\stexstor.sys (Promise Technology)
DRV:64bit: - (MODEMCSA) -- C:\Windows\SysNative\drivers\MODEMCSA.sys (Microsoft Corporation)
DRV:64bit: - (ebdrv) -- C:\Windows\SysNative\drivers\evbda.sys (Broadcom Corporation)
DRV:64bit: - (b06bdrv) -- C:\Windows\SysNative\drivers\bxvbda.sys (Broadcom Corporation)
DRV:64bit: - (b57nd60a) -- C:\Windows\SysNative\drivers\b57nd60a.sys (Broadcom Corporation)
DRV:64bit: - (hcw85cir) -- C:\Windows\SysNative\drivers\hcw85cir.sys (Hauppauge Computer Works, Inc.)
DRV:64bit: - (XAudio) -- C:\Windows\SysNative\drivers\XAudio64.sys (Conexant Systems, Inc.)
DRV:64bit: - (BS_I2cIo) -- C:\Windows\SysNative\drivers\BS_I2cIo.sys (BIOSTAR Group)
DRV:64bit: - (CTHWIUT.DLL) -- C:\Windows\SysNative\CTHWIUT.DLL (Creative Technology Ltd.)
DRV:64bit: - (CT20XUT.DLL) -- C:\Windows\SysNative\CT20XUT.DLL (Creative Technology Ltd.)
DRV:64bit: - (CTEXFIFX.DLL) -- C:\Windows\SysNative\CTEXFIFX.DLL (Creative Technology Ltd.)
DRV:64bit: - (CTEDSPSY.DLL) -- C:\Windows\SysNative\CTEDSPSY.DLL (Creative Technology Ltd)
DRV:64bit: - (CTEDSPIO.DLL) -- C:\Windows\SysNative\CTEDSPIO.DLL (Creative Technology Ltd)
DRV:64bit: - (CTEDSPFX.DLL) -- C:\Windows\SysNative\CTEDSPFX.DLL (Creative Technology Ltd)
DRV:64bit: - (CTEAPSFX.DLL) -- C:\Windows\SysNative\CTEAPSFX.DLL (Creative Technology Ltd)
DRV:64bit: - (mdmxsdk) -- C:\Windows\SysNative\drivers\mdmxsdk.sys (Conexant)
DRV - (TVICHW64) -- C:\Windows\SysWOW64\drivers\TVICHW64.SYS (EnTech Taiwan)
DRV - (gdrv) -- C:\Windows\gdrv.sys (Windows (R) Server 2003 DDK provider)
DRV - (WIMMount) -- C:\Windows\SysWOW64\drivers\wimmount.sys (Microsoft Corporation)
DRV - (BS_I2cIo) -- C:\Windows\SysWOW64\drivers\BS_I2cIo.sys (BIOSTAR Group)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={sea...putEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
IE - HKLM\..\SearchScopes,DefaultScope = {632F07F3-19A1-4d16-A23F-E6CE9486BAB5}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\..\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={sea...putEncoding}&oe={outputEncoding}&sourceid=ie7

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = <local>


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll ( Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll (Adobe Systems)
FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeExManDetect: C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Windows\system32\C2MP\npdivx32.dll File not found
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@live.heroesandgenerals.com/npretox: C:\Program Files (x86)\Heroes & Generals\live\npretox-1.0.6.1\npretoxlive-1.0.6.1.dll (Reto-Moto ApS)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems)
FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeExManDetect: C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
FF - HKCU\Software\MozillaPlugins\@my.com/Games: C:\Users\joe\AppData\Local\MyComGames\NPMyComDetector.dll (MY.COM B.V.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\joe\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2015/12/10 20:00:19 | 000,000,000 | ---D | M]

[2016/04/03 13:23:28 | 000,000,000 | ---D | M] (No name found) -- C:\Users\joe\AppData\Roaming\Mozilla\Firefox\Profiles\extensions
[2014/02/14 20:50:36 | 000,000,000 | ---D | M] (No name found) -- C:\Users\joe\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\extensions
[2013/06/26 13:40:28 | 000,228,503 | ---- | M] () (No name found) -- C:\Users\joe\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\ftd@ftd.com.xpi

O1 HOSTS File: ([2016/04/03 18:54:53 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2:64bit: - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2:64bit: - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll File not found
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Skype Click to Call for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O3:64bit: - HKLM\..\Toolbar: (no name) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4:64bit: - HKLM..\Run: [Acronis Scheduler2 Service] C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe (Acronis)
O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
O4:64bit: - HKLM..\Run: [CDAServer] C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe ()
O4:64bit: - HKLM..\Run: [NvBackend] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [ShadowPlay] C:\Windows\SysNative\nvspcap64.dll (NVIDIA Corporation)
O4:64bit: - HKLM..\Run: [Zune Launcher] C:\Program Files\Zune\ZuneLauncher.exe (Microsoft Corporation)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [AcronisTibMounterMonitor] C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe (Acronis)
O4 - HKLM..\Run: [AdobeCS6ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Andy] C:\Program Files\Andy\HandyAndy.exe ()
O4 - HKLM..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe (ArcSoft Inc.)
O4 - HKLM..\Run: [AsioThk32Reg] C:\Windows\SysWow64\ctasio.dll (Creative Technology Ltd)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CTHelper] C:\Windows\SysWow64\CtHelper.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [CTSysVol] C:\Program Files (x86)\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [CTxfiHlp] C:\Windows\SysWow64\Ctxfihlp.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [CTXFIREG] C:\Windows\SysWow64\Ctxfireg.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [NBAgent] C:\Program Files (x86)\Nero\Nero 11\Nero BackItUp\NBAgent.exe (Nero AG)
O4 - HKLM..\Run: [Nikon Message Center 2] C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe (Nikon Corporation)
O4 - HKLM..\Run: [SBDrvDet] C:\Program Files (x86)\Creative\SB Drive Det\SBDrvDet.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [TrueImageMonitor.exe] C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis)
O4 - HKLM..\Run: [UpdReg] C:\Windows\Updreg.EXE (Creative Technology Ltd.)
O4 - HKLM..\Run: [Wondershare Helper Compact.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Wondershare)
O4 - HKLM..\Run: [WSHelperSetup.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Wondershare)
O4 - HKCU..\Run: [EPLTarget\P0000000000000000] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIJAE.EXE /EPT "EPLTarget\P0000000000000000" /M "XP-800 Series" File not found
O4 - HKCU..\Run: [instanteyedropper] C:\Program Files (x86)\InstantEyedropper\InstantEyedropper.exe ()
O4 - HKCU..\Run: [MyComGames] C:\Users\joe\AppData\Local\MyComGames\MyComGames.exe (MY.COM B.V.)
O4 - HKCU..\Run: [SansaDispatch] C:\Users\joe\AppData\Roaming\SanDisk\Sansa Updater\SansaDispatch.exe (SanDisk Corporation)
O4 - HKCU..\Run: [Steam] C:\Users\joe\Desktop\Steam\steam.exe (Valve Corporation)
O4 - HKCU..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE (SUPERAntiSpyware)
O4 - HKCU..\Run: [WSHelperSetup.exe] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Wondershare)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9:64bit: - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O9 - Extra Button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O10:64bit: - NameSpace_Catalog5\Catalog_Entries64\000000000009 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files (x86)\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: aol.com ([free] http in Trusted sites)
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab (Creative Software AutoUpdate Support Package 2)
O16 - DPF: {D9305048-DD6B-4EDF-8706-096EBE24E1D7} http://162.17.56.115/IPCWeb.cab (ZMODOOCX Control)
O16 - DPF: {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab (Creative Software AutoUpdate 2)
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab (Creative Software AutoUpdate Support Package)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 209.18.47.62 209.18.47.61
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{030BC4C0-FF21-497C-956E-B332975CB47D}: DhcpNameServer = 209.18.47.62 209.18.47.61
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F2EF5B50-E843-40D8-B912-8FAAA500EFDB}: DhcpNameServer = 167.206.254.1 167.206.254.2
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18:64bit: - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\SkypeIEPlugin.dll (Microsoft Corporation)
O18 - Protocol\Handler\skypec2c {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2016/04/03 18:40:25 | 005,658,312 | R--- | C] (Swearware) -- C:\Users\joe\Desktop\ComboFix.exe
[2016/04/02 08:35:17 | 000,000,000 | ---D | C] -- C:\Users\joe\AppData\Local\GWX
[2016/04/01 21:35:38 | 000,977,624 | ---- | C] (Realtek ) -- C:\Windows\SysNative\drivers\Rt64win7.sys
[2016/04/01 19:51:48 | 000,000,000 | --SD | C] -- C:\Windows\SysWow64\GWX
[2016/04/01 19:51:48 | 000,000,000 | --SD | C] -- C:\Windows\SysNative\GWX
[2016/04/01 19:51:46 | 000,000,000 | --SD | C] -- C:\Windows\SysNative\CompatTel
[2016/04/01 19:51:46 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\appraiser
[2016/04/01 18:48:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft ASP.NET
[2016/03/30 20:44:07 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2016/03/30 20:44:07 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2016/03/30 20:44:07 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2016/03/30 20:41:35 | 000,000,000 | ---D | C] -- C:\Qoobox
[2016/03/30 20:41:24 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2016/03/30 19:46:28 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[4 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2016/04/03 19:09:29 | 000,014,448 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2016/04/03 19:09:29 | 000,014,448 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2016/04/03 19:04:55 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2016/04/03 19:01:36 | 002,807,050 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2016/04/03 19:01:36 | 000,846,950 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2016/04/03 19:01:36 | 000,006,252 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2016/04/03 18:54:53 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2016/04/03 18:54:17 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2016/04/03 18:54:07 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2016/04/03 18:54:02 | 3220,627,456 | -HS- | M] () -- C:\hiberfil.sys
[2016/04/03 18:52:38 | 000,033,456 | ---- | M] () -- C:\Windows\SysNative\BMXStateBkp-{00000005-00000000-00000001-00001102-00000004-20011102}.rfx
[2016/04/03 18:52:38 | 000,033,456 | ---- | M] () -- C:\Windows\SysNative\BMXState-{00000005-00000000-00000001-00001102-00000004-20011102}.rfx
[2016/04/03 18:52:38 | 000,028,068 | ---- | M] () -- C:\Windows\SysNative\BMXCtrlState-{00000005-00000000-00000001-00001102-00000004-20011102}.rfx
[2016/04/03 18:52:38 | 000,028,068 | ---- | M] () -- C:\Windows\SysNative\BMXBkpCtrlState-{00000005-00000000-00000001-00001102-00000004-20011102}.rfx
[2016/04/03 18:52:38 | 000,011,564 | ---- | M] () -- C:\Windows\SysNative\DVCState-{00000005-00000000-00000001-00001102-00000004-20011102}.rfx
[2016/04/02 19:48:24 | 005,658,312 | R--- | M] (Swearware) -- C:\Users\joe\Desktop\ComboFix.exe
[2016/04/01 22:15:17 | 000,192,216 | ---- | M] (Malwarebytes) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2016/04/01 19:58:05 | 005,027,064 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2016/03/14 20:50:27 | 000,000,258 | RHS- | M] () -- C:\Users\joe\ntuser.pol
[2016/03/14 20:50:27 | 000,000,258 | RHS- | M] () -- C:\ProgramData\ntuser.pol
[2016/03/14 20:11:23 | 000,001,102 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2016/03/10 22:48:04 | 000,000,137 | ---- | M] () -- C:\Users\joe\Desktop\AdventureQuest 3D.url
[4 C:\Windows\SysNative\*.tmp files -> C:\Windows\SysNative\*.tmp -> ]

========== Files Created - No Company Name ==========

[2016/04/01 17:04:54 | 000,016,303 | ---- | C] () -- C:\Windows\SysWow64\ieuinit.inf
[2016/04/01 17:04:54 | 000,016,303 | ---- | C] () -- C:\Windows\SysNative\ieuinit.inf
[2016/03/30 20:44:07 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2016/03/30 20:44:07 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2016/03/30 20:44:07 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2016/03/30 20:44:07 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2016/03/30 20:44:07 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2016/03/10 22:48:04 | 000,000,137 | ---- | C] () -- C:\Users\joe\Desktop\AdventureQuest 3D.url
[2015/04/12 14:05:26 | 000,740,775 | ---- | C] () -- C:\ProgramData\AndyDrivers.zip
[2014/12/24 16:20:03 | 000,000,064 | ---- | C] () -- C:\Users\joe\AppData\Roaming\WB.CFG
[2014/08/16 15:05:29 | 000,148,480 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
[2014/08/16 15:05:29 | 000,073,728 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
[2014/08/15 16:28:47 | 000,000,231 | ---- | C] () -- C:\Windows\AC3API.INI
[2014/08/15 16:28:46 | 001,048,576 | ---- | C] () -- C:\Windows\SysWow64\SFMAN.DAT
[2014/08/15 15:59:51 | 000,000,136 | ---- | C] () -- C:\Windows\SBWIN.INI
[2014/06/29 18:02:59 | 000,152,920 | R--- | C] () -- C:\Windows\Wiainst64.exe
[2014/06/29 18:02:37 | 001,571,160 | ---- | C] () -- C:\Windows\TotalUninstaller.exe
[2014/05/28 01:57:40 | 000,000,552 | ---- | C] () -- C:\Windows\SysWow64\schtasks.bin
[2014/03/22 15:15:45 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2013/08/09 23:35:18 | 000,000,258 | RHS- | C] () -- C:\Users\joe\ntuser.pol
[2012/09/06 18:40:23 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Jingles
[2012/09/06 18:40:23 | 000,000,268 | RH-- | C] () -- C:\Users\joe\AppData\Roaming\Internet Services
[2012/09/06 18:40:23 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLes.DAT
[2012/09/06 18:40:23 | 000,000,012 | RH-- | C] () -- C:\ProgramData\MIDI Devices
[2012/09/06 18:39:48 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Kernel Extension
[2012/09/06 18:39:48 | 000,000,268 | RH-- | C] () -- C:\ProgramData\Jazz Kit
[2012/09/06 18:39:48 | 000,000,268 | RH-- | C] () -- C:\Users\joe\AppData\Roaming\Iterate Items
[2012/09/06 18:39:48 | 000,000,268 | RH-- | C] () -- C:\Users\joe\AppData\Roaming\Internet Plug-Ins
[2012/09/06 18:39:48 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLev.DAT
[2012/09/06 18:39:48 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLet.DAT
[2012/09/06 18:39:48 | 000,000,012 | RH-- | C] () -- C:\ProgramData\MIDI Patch Names
[2012/09/06 18:39:32 | 000,000,268 | RH-- | C] () -- C:\Users\joe\AppData\Roaming\Licenses
[2012/09/06 18:39:32 | 000,000,020 | -H-- | C] () -- C:\ProgramData\PKP_DLeo.DAT
[2012/09/06 18:39:32 | 000,000,012 | RH-- | C] () -- C:\ProgramData\Phaser
[2012/09/06 18:39:32 | 000,000,012 | RH-- | C] () -- C:\ProgramData\MAS

========== ZeroAccess Check ==========

[2009/07/14 00:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2016/01/22 02:19:58 | 014,179,840 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2016/01/22 02:05:58 | 012,877,824 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/13 21:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 08:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/13 21:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2015/02/18 14:19:59 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\.minecraft
[2012/09/13 14:41:02 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\Acronis
[2016/04/02 01:32:28 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\Andy
[2014/10/02 14:26:36 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\AVAST Software
[2012/12/07 19:50:56 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2013/09/05 16:38:59 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\Epson
[2014/06/15 17:02:24 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\GameCenter
[2014/04/12 00:16:32 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\Garmin
[2015/02/18 13:44:10 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\java
[2013/08/28 19:53:54 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\Leadertech
[2015/07/05 19:09:31 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\LolClient
[2015/12/19 14:33:59 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\NCSOFT
[2012/09/09 14:39:11 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\Nikon
[2012/12/07 16:02:01 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\PDAppFlex
[2012/09/06 23:38:11 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\Publish Providers
[2015/07/05 18:33:38 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\Riot Games
[2014/06/29 18:03:45 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\Samsung
[2014/06/13 19:35:23 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\SanDisk
[2012/09/06 23:38:06 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\Sony
[2015/07/30 18:53:03 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\Unity
[2014/10/28 18:30:40 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\usbjtag
[2015/06/19 22:56:24 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\uTorrent
[2014/05/28 01:39:16 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\wi_upd
[2014/05/28 16:00:30 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\Wondershare
[2014/10/02 16:51:16 | 000,000,000 | ---D | M] -- C:\Users\joe\AppData\Roaming\Xilisoft

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 837 bytes -> C:\Users\Public\Documents\[Ticket ID_ 201234] domain-2.eml:OECustomProperty
@Alternate Data Stream - 837 bytes -> C:\Users\Public\Documents\[Ticket ID_ 201234] domain.eml:OECustomProperty
@Alternate Data Stream - 797 bytes -> C:\Users\Public\Documents\access code.eml:OECustomProperty
@Alternate Data Stream - 761 bytes -> C:\Users\Public\Documents\About raibeamny_com.eml:OECustomProperty

< End of report >

 

[johnb35]

Please open OTL but this time copy and paste the following into the custom scans/fixes box at the bottom and click on the run fix box up top.

:OTL

O2:64bit: - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll File not found
O3:64bit: - HKLM\..\Toolbar: (no name) - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present

I'm asking this again because you never answered me...

When you ran malwarebytes or anything else, did it mention anything about a zero access rootkit?

Another thing you can try doing is go into device manager and uninstall the network adapter and reboot windows and let the driver reinstall. Hopefully that will fix it.

 

[reysalomon]

ok I am goint to unintall the network

 

[reysalomon]

I paste the code into OTL, I ran but it finish fast. Is that ok

 

[reysalomon]

========== OTL ==========
64bit-Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}\ deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}\ deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.

OTL by OldTimer - Version 3.2.69.0 log created on 04032016_202038

 

[johnb35]

I paste the code into OTL, I ran but it finish fast. Is that ok

Yes, the fix runs pretty quick.

 

[reysalomon]

I sent the log

 

[johnb35]

Did you uninstall the network adapter and reboot? Are you able to browse online?

 

[reysalomon]

yes I uninstall network adapter and rebbot. I can not browse. should I try repair windows with the windows 7 pro CD

 

[johnb35]

You can try but I doubt it will work. I know you said you did it, but can you make sure the proxy setting is unchecked again?

 

[reysalomon]

yes, is uncheck. what you recommend

 

[johnb35]

I just can't figure out why you can't browse online. You can ping websites and get a response without any loss. No proxy setting is enabled. When you hover over the network icon down in the taskbar, does it say you have internet access? Download and run Ccleaner. Install the program, open it up and click on run cleaner without changing any options. Will take some time if you haven't ran it before.

Get it here.

https://www.piriform.com/ccleaner/download/standard

Other than that, its either a corrupt windows install or bad ethernet cable or ethernet adapter.

 

[reysalomon]

yes, I have internet access. I am using another computer with the same router.

 

[reysalomon]

I was able to browse until i ran those programs i mention at the beginning of my post.

 

[johnb35]

Can you post the logs they showed you? That might help. The only other thing to do would be to do a system restore back to before you ran the scans and then run each program and remove whatever it finds and see if you still have internet. I can't really help much more without seeing the logs from the programs.