fff5ee.com pop up constantly and computer running very slowly

jackydcr · October 20, 2014

Help! We had a tech guy come out to fix our slow computer and now this problem has appeared.

jackydcr · October 20, 2014

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 20-10-2014
Ran by Front Desk (administrator) on FRONTDESK on 20-10-2014 07:10:46
Running from C:\Users\Front Desk\Downloads
Loaded Profile: Front Desk (Available profiles: Front Desk & Desk Clerks)
Platform: Windows 8 (X64) OS Language: English (United States)
Internet Explorer Version 10
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Atheros) C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\InstallServices64.exe
(IObit) C:\Program Files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe
(ITknowledge24.com) C:\Program Files\ITknowledge24\Windows Defender Status Manager\wdsmgr.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [wdsmgr] => C:\Program Files\ITknowledge24\Windows Defender Status Manager\wdsmgr.exe [164352 2014-10-19] (ITknowledge24.com)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [sunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
HKLM-x32\...\Run: [sDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://dell13.msn.com
SearchScopes: HKLM - DefaultScope {C82FBE0B-DD52-41A9-87BF-74A40BDBEBEF} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MDDCJS
SearchScopes: HKLM - {C82FBE0B-DD52-41A9-87BF-74A40BDBEBEF} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MDDCJS
SearchScopes: HKLM-x32 - DefaultScope {C82FBE0B-DD52-41A9-87BF-74A40BDBEBEF} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MDDCJS
SearchScopes: HKLM-x32 - {C82FBE0B-DD52-41A9-87BF-74A40BDBEBEF} URL = http://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MDDCJS
SearchScopes: HKCU - DefaultScope {C82FBE0B-DD52-41A9-87BF-74A40BDBEBEF} URL =
SearchScopes: HKCU - {C82FBE0B-DD52-41A9-87BF-74A40BDBEBEF} URL =
BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{93B9DE5B-088B-45AE-A459-133C4EB10D6E}: [NameServer] 24.25.5.60,24.25.5.61

FireFox:
========
FF ProfilePath: C:\Users\Front Desk\AppData\Roaming\Mozilla\Firefox\Profiles\ewnjccr4.default
FF Homepage: https://www.choiceadvantage.com/choicehotels/sign_in.jsp;jsessionid=T893JDyTy0dXbR272XjSm2zCXhlnLPPP68QLwk2Tn15n5LXN4l5x!-420002365
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF user.js: detected! => C:\Users\Front Desk\AppData\Roaming\Mozilla\Firefox\Profiles\ewnjccr4.default\user.js
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK

Chrome:
=======

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [166720 2012-07-19] (Intel Corporation)
S3 KeyIso; C:\Windows\SysWOW64\keyiso.dll [43520 2012-07-25] (Microsoft Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-10-01] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [968504 2014-10-01] (Malwarebytes Corporation)
S3 Netlogon; C:\Windows\SysWOW64\netlogon.dll [634368 2012-07-25] (Microsoft Corporation)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [254512 2012-04-24] ()
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2088408 2014-06-27] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171928 2014-04-25] (Safer-Networking Ltd.)
R2 StartMenuService; C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe [72512 2013-12-09] (IObit)
S3 StorSvc; C:\Windows\SysWOW64\storsvc.dll [18432 2012-07-25] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16056 2014-03-29] (Microsoft Corporation)
R2 ZAtheros Wlan Agent; C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe [77824 2012-06-19] (Atheros) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-10-01] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2014-10-20] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-10-01] (Malwarebytes Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-20 07:10 - 2014-10-20 07:11 - 00010511 _____ () C:\Users\Front Desk\Downloads\FRST.txt
2014-10-20 07:10 - 2014-10-20 07:10 - 00000000 ____D () C:\FRST
2014-10-20 07:07 - 2014-10-20 07:07 - 02111488 _____ (Farbar) C:\Users\Front Desk\Downloads\FRST64.exe
2014-10-20 06:25 - 2014-10-20 06:25 - 00359408 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-10-20 06:25 - 2014-10-20 06:25 - 00002294 _____ () C:\Windows\PFRO.log
2014-10-20 01:01 - 2014-10-20 01:01 - 00007850 _____ () C:\Windows\system32\exception.txt
2014-10-19 13:57 - 2014-10-19 15:49 - 00048420 _____ () C:\Windows\WindowsUpdate.log
2014-10-19 13:54 - 2014-10-19 13:55 - 04362512 _____ (Piriform Ltd) C:\Users\Front Desk\Downloads\dfsetup218.exe
2014-10-19 13:26 - 2014-10-19 13:25 - 00450713 ____R () C:\Windows\system32\Drivers\etc\hosts.20141019-132604.backup
2014-10-19 13:25 - 2012-07-26 01:26 - 00000824 _____ () C:\Windows\system32\Drivers\etc\hosts.20141019-132532.backup
2014-10-19 13:11 - 2014-10-19 13:13 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-10-19 13:11 - 2014-10-19 13:11 - 00001393 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2014-10-19 13:11 - 2014-10-19 13:11 - 00001381 _____ () C:\Users\Public\Desktop\6.}Spybot.lnk
2014-10-19 13:11 - 2014-10-19 13:11 - 00000000 ____D () C:\Windows\System32\Tasks\Safer-Networking
2014-10-19 13:11 - 2014-10-19 13:11 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2014-10-19 13:11 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2014-10-19 13:10 - 2014-10-19 13:10 - 46525608 _____ (Safer-Networking Ltd. ) C:\Users\Front Desk\Downloads\spybot-2.4.exe
2014-10-19 12:49 - 2014-10-19 12:49 - 00000000 ____D () C:\Program Files\ITknowledge24
2014-10-19 12:48 - 2014-10-19 12:49 - 00344973 _____ () C:\Users\Front Desk\Downloads\installwdmgr.zip
2014-10-19 12:39 - 2014-10-19 12:39 - 00001158 _____ () C:\Users\Front Desk\Desktop\9.}Disk Defrag.lnk
2014-10-19 12:33 - 2014-10-20 01:02 - 00000446 _____ () C:\Windows\Tasks\Defraggler Volume C Task.job
2014-10-19 12:33 - 2014-10-19 12:34 - 00003084 _____ () C:\Windows\System32\Tasks\Defraggler Volume C Task
2014-10-19 12:28 - 2014-09-02 22:21 - 00623104 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-10-19 12:27 - 2014-09-13 02:24 - 02233152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-10-19 12:27 - 2014-09-05 20:46 - 00389176 _____ () C:\Windows\system32\ApnDatabase.xml
2014-10-19 12:27 - 2014-09-02 22:48 - 00457728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-10-19 12:27 - 2014-09-02 22:48 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2014-10-19 12:27 - 2014-09-02 22:22 - 00188928 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2014-10-19 12:27 - 2014-09-02 22:21 - 00212992 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-10-19 12:27 - 2014-08-29 00:17 - 02043392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmSvc.dll
2014-10-19 12:27 - 2014-08-29 00:17 - 00227328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WsmWmiPl.dll
2014-10-19 12:27 - 2014-08-29 00:04 - 02837504 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2014-10-19 12:27 - 2014-08-29 00:04 - 00309248 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2014-10-19 12:27 - 2014-08-28 02:04 - 00499712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSCOMEX.dll
2014-10-19 12:27 - 2014-08-28 02:04 - 00227840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FXSAPI.dll
2014-10-19 12:27 - 2014-08-28 01:59 - 00616448 _____ (Microsoft Corporation) C:\Windows\system32\FXSAPI.dll
2014-10-19 12:27 - 2014-08-28 01:59 - 00609280 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOMEX.dll
2014-10-19 12:27 - 2014-08-28 01:59 - 00432640 _____ (Microsoft Corporation) C:\Windows\system32\FXSTIFF.dll
2014-10-19 12:27 - 2014-08-28 01:59 - 00254976 _____ (Microsoft Corporation) C:\Windows\system32\FXST30.dll
2014-10-19 12:27 - 2014-07-24 09:12 - 00328512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Classpnp.sys
2014-10-19 12:23 - 2014-10-19 12:23 - 00000000 ____D () C:\Users\Front Desk\AppData\Roaming\Oracle
2014-10-19 12:23 - 2014-10-19 12:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-10-19 12:23 - 2014-09-26 18:42 - 00098216 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-10-19 12:23 - 2014-09-26 18:36 - 00272808 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-10-19 12:23 - 2014-09-26 18:36 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-10-19 12:23 - 2014-09-26 18:35 - 00175528 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-10-19 11:36 - 2014-08-20 19:40 - 00732880 _____ (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe
2014-10-19 11:36 - 2014-08-20 13:05 - 00694784 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-10-19 11:36 - 2014-08-20 13:05 - 00198656 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.dll
2014-10-19 11:36 - 2014-08-20 13:05 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-10-19 11:36 - 2014-08-20 13:02 - 00567808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-10-19 11:36 - 2014-08-20 13:02 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-10-19 11:36 - 2014-06-24 03:35 - 00010450 _____ () C:\Windows\system32\autoconfig.cab
2014-10-19 11:36 - 2014-06-24 02:40 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2014-10-19 10:45 - 2014-10-19 13:36 - 00001216 _____ () C:\Users\Public\Desktop\7.}Malwarebytes.lnk
2014-10-19 09:29 - 2014-07-15 18:51 - 00071168 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\hdaudbus.sys
2014-10-19 09:21 - 2014-09-29 18:49 - 00705480 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-10-19 09:21 - 2014-09-29 18:49 - 00104904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-10-19 09:17 - 2014-10-19 09:17 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-10-19 09:11 - 2014-03-24 19:42 - 00305152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wusa.exe
2014-10-19 09:11 - 2014-03-24 18:56 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\wusa.exe
2014-10-19 09:10 - 2014-06-17 19:27 - 01440256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\osk.exe
2014-10-19 09:10 - 2014-06-17 19:24 - 01557504 _____ (Microsoft Corporation) C:\Windows\system32\osk.exe
2014-10-19 09:10 - 2014-06-02 18:33 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2014-10-19 09:10 - 2014-05-29 19:31 - 00452608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SHCore.dll
2014-10-19 09:10 - 2014-05-29 19:03 - 00588288 _____ (Microsoft Corporation) C:\Windows\system32\SHCore.dll
2014-10-19 09:10 - 2014-05-29 19:02 - 01281536 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-10-19 09:10 - 2014-05-29 19:02 - 00439808 _____ (Microsoft Corporation) C:\Windows\system32\lsm.dll
2014-10-19 09:10 - 2014-05-03 02:34 - 06974808 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-10-19 09:10 - 2014-05-03 02:33 - 01824808 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-10-19 09:10 - 2014-05-03 00:51 - 01408976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-10-19 09:10 - 2014-05-01 18:37 - 01023488 _____ (Microsoft Corporation) C:\Windows\system32\localspl.dll
2014-10-19 09:10 - 2014-04-29 18:32 - 00126464 _____ (Microsoft Corporation) C:\Windows\system32\Robocopy.exe
2014-10-19 09:10 - 2014-04-29 18:32 - 00106496 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Robocopy.exe
2014-10-19 09:10 - 2014-03-28 15:19 - 00035856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdBoot.sys
2014-10-19 09:10 - 2014-03-28 04:23 - 19759104 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-10-19 09:10 - 2014-03-28 02:18 - 17562112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-10-19 09:10 - 2014-03-23 18:11 - 00269592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdFilter.sys
2014-10-19 09:10 - 2014-02-03 19:56 - 00332632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-10-19 09:10 - 2014-02-03 19:56 - 00278872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-10-19 09:10 - 2014-01-30 20:48 - 00485888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2014-10-19 09:10 - 2014-01-30 20:48 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2014-10-19 09:10 - 2014-01-30 20:06 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2014-10-19 09:10 - 2014-01-26 23:39 - 01939288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-10-19 09:10 - 2014-01-15 19:42 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2014-10-19 09:10 - 2014-01-02 19:35 - 00365568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-10-19 09:10 - 2014-01-02 19:32 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-10-19 09:09 - 2014-06-06 10:06 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-10-19 09:09 - 2014-06-06 06:17 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qedit.dll
2014-10-19 09:09 - 2014-05-29 18:24 - 00576512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2014-10-19 09:09 - 2014-04-12 05:27 - 00172888 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-10-19 09:09 - 2014-04-12 05:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-10-19 09:09 - 2014-04-12 05:09 - 01043968 _____ (Microsoft Corporation) C:\Windows\system32\usercpl.dll
2014-10-19 09:09 - 2014-04-12 05:09 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-10-19 09:09 - 2014-04-12 05:09 - 00094720 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-10-19 09:09 - 2014-04-12 05:08 - 00827904 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-10-19 09:09 - 2014-04-12 05:08 - 00318464 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-10-19 09:09 - 2014-04-12 05:07 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-10-19 09:09 - 2014-04-12 03:23 - 00961536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\usercpl.dll
2014-10-19 09:09 - 2014-04-12 03:23 - 00273920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-10-19 09:09 - 2014-04-12 03:23 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-10-19 09:09 - 2014-04-12 03:23 - 00076800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-10-19 09:09 - 2014-04-12 03:22 - 00666624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-10-19 09:09 - 2014-04-12 03:22 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-10-19 09:09 - 2014-04-12 02:58 - 00014848 _____ (Microsoft Corporation) C:\Windows\system32\workerdd.dll
2014-10-19 09:09 - 2014-03-10 23:25 - 00100184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-10-19 09:09 - 2014-03-10 20:41 - 00559104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-10-19 09:09 - 2014-03-10 20:41 - 00323072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-10-19 09:09 - 2014-03-10 20:41 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-10-19 09:09 - 2014-03-10 20:39 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-10-19 09:09 - 2014-03-10 20:38 - 00982016 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-10-19 09:09 - 2014-03-10 20:38 - 00684032 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-10-19 09:09 - 2014-03-10 20:38 - 00419328 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-10-19 09:09 - 2014-03-10 20:38 - 00179712 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2014-10-19 09:09 - 2014-03-10 20:38 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-10-19 09:09 - 2014-03-10 20:38 - 00045056 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-10-19 09:09 - 2014-03-10 20:38 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-10-19 09:09 - 2014-03-09 23:05 - 00668160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-10-19 09:09 - 2014-03-09 21:27 - 00099840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-10-19 09:09 - 2014-03-06 20:47 - 01419264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-10-19 09:09 - 2014-03-06 20:08 - 01845760 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-10-19 09:09 - 2014-03-03 19:07 - 00570216 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2014-10-19 09:09 - 2014-03-01 05:47 - 01258496 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-10-19 09:09 - 2014-03-01 05:47 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2014-10-19 09:09 - 2014-03-01 04:07 - 01075200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2014-10-19 09:09 - 2014-03-01 02:59 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-10-19 09:09 - 2014-02-15 00:15 - 00078336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\IPMIDrv.sys
2014-10-19 09:09 - 2014-01-30 20:48 - 01339392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-10-19 09:09 - 2014-01-30 20:06 - 01628160 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-10-19 08:25 - 2014-06-10 18:44 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-10-19 08:25 - 2014-06-10 18:43 - 00035480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TsWpfWrp.exe
2014-10-16 06:29 - 2014-10-10 00:47 - 00693248 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-10-16 06:29 - 2014-10-10 00:47 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-10-16 06:29 - 2014-10-08 00:26 - 00556544 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-10-16 06:29 - 2014-09-28 00:18 - 04068352 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-10-16 06:29 - 2014-09-20 01:18 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-10-16 06:29 - 2014-09-20 01:17 - 02236928 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-10-16 06:29 - 2014-09-20 01:17 - 01407488 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-10-16 06:29 - 2014-09-20 01:17 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-10-16 06:29 - 2014-09-20 01:17 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-10-16 06:29 - 2014-09-20 01:16 - 19280896 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-10-16 06:29 - 2014-09-20 01:16 - 15399424 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-10-16 06:29 - 2014-09-20 01:16 - 03959296 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-10-16 06:29 - 2014-09-20 01:16 - 02655232 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-10-16 06:29 - 2014-09-20 01:16 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-10-16 06:29 - 2014-09-20 01:16 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-10-16 06:29 - 2014-09-20 01:16 - 00255488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-10-16 06:29 - 2014-09-20 01:16 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-10-16 06:29 - 2014-09-20 01:16 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-10-16 06:29 - 2014-09-20 01:16 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-10-16 06:29 - 2014-09-20 01:16 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-10-16 06:29 - 2014-09-20 01:16 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-10-16 06:29 - 2014-09-20 01:16 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-10-16 06:29 - 2014-09-20 01:15 - 01508864 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-10-16 06:29 - 2014-09-20 01:15 - 00451584 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-10-16 06:29 - 2014-09-20 01:15 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-10-16 06:29 - 2014-09-19 23:57 - 14368768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-10-16 06:29 - 2014-09-19 23:57 - 13757952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-10-16 06:29 - 2014-09-19 23:57 - 02861568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-10-16 06:29 - 2014-09-19 23:57 - 02055168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-10-16 06:29 - 2014-09-19 23:57 - 01762816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-10-16 06:29 - 2014-09-19 23:57 - 01180672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-10-16 06:29 - 2014-09-19 23:57 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-10-16 06:29 - 2014-09-19 23:57 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-10-16 06:29 - 2014-09-19 23:57 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-10-16 06:29 - 2014-09-19 23:57 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-10-16 06:29 - 2014-09-19 23:57 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-10-16 06:29 - 2014-09-19 23:57 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-10-16 06:29 - 2014-09-19 23:57 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-10-16 06:29 - 2014-09-19 23:57 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-10-16 06:29 - 2014-09-19 23:57 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-10-16 06:29 - 2014-09-19 23:57 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-10-16 06:29 - 2014-09-19 23:56 - 01440768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-10-16 06:29 - 2014-09-19 23:56 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-10-16 06:29 - 2014-09-19 23:56 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-10-16 06:29 - 2014-09-19 23:38 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-10-16 06:29 - 2014-09-19 23:33 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-10-16 06:29 - 2014-09-19 21:06 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-10-16 06:29 - 2014-09-13 01:29 - 00079360 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-10-16 06:29 - 2014-09-13 00:02 - 00068096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-10-16 06:29 - 2014-09-02 22:48 - 00510464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-10-16 06:29 - 2014-09-02 22:21 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-10-16 06:29 - 2014-07-24 09:50 - 00447296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBHUB3.SYS
2014-10-16 06:29 - 2014-07-16 18:59 - 00305664 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2014-10-16 06:29 - 2014-07-12 02:45 - 01549824 _____ (Microsoft Corporation) C:\Windows\system32\msdtctm.dll
2014-10-16 06:29 - 2014-07-12 00:36 - 00674304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2014-10-16 06:29 - 2014-07-12 00:36 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2014-10-16 06:29 - 2014-07-12 00:34 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2014-10-16 06:29 - 2014-07-12 00:34 - 00250368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2014-10-16 06:29 - 2014-07-07 01:53 - 01125376 _____ (Microsoft Corporation) C:\Windows\system32\mstsc.exe
2014-10-16 06:29 - 2014-07-07 01:52 - 03248128 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-10-16 06:29 - 2014-07-07 01:52 - 00724992 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-10-16 06:29 - 2014-07-07 01:52 - 00300544 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-10-16 06:29 - 2014-07-07 01:51 - 05982208 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-10-16 06:29 - 2014-07-07 00:01 - 01049600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstsc.exe
2014-10-16 06:29 - 2014-07-07 00:01 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-10-16 06:29 - 2014-07-07 00:00 - 05095424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-10-16 06:29 - 2014-07-06 23:59 - 00269312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\aaclient.dll
2014-10-16 06:29 - 2014-06-30 18:42 - 00394240 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2014-10-16 06:29 - 2014-06-30 18:42 - 00087552 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2014-10-16 06:29 - 2014-06-28 02:57 - 01341952 _____ (Microsoft Corporation) C:\Windows\system32\user32.dll
2014-10-16 06:29 - 2014-06-27 22:23 - 01126400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user32.dll
2014-10-16 06:29 - 2014-05-02 23:34 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2014-10-16 06:28 - 2014-09-17 19:24 - 02416128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-10-16 06:28 - 2014-09-17 18:56 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-10-16 06:28 - 2014-08-30 01:48 - 10115072 _____ (Microsoft Corporation) C:\Windows\system32\twinui.dll
2014-10-16 06:28 - 2014-08-30 01:46 - 02306560 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-10-16 06:28 - 2014-08-30 00:05 - 08858112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\twinui.dll
2014-10-16 06:28 - 2014-08-30 00:03 - 02037760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2014-10-16 06:28 - 2014-07-16 19:28 - 00027648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sscore.dll
2014-10-16 06:28 - 2014-07-16 18:59 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2014-10-16 06:28 - 2014-06-12 19:34 - 00754176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\actxprxy.dll
2014-10-16 06:28 - 2014-06-12 19:29 - 02146304 _____ (Microsoft Corporation) C:\Windows\system32\actxprxy.dll
2014-10-16 06:28 - 2014-06-05 13:56 - 00112984 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-10-16 06:28 - 2014-06-05 13:29 - 00393216 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-10-16 06:28 - 2014-06-05 09:11 - 00295424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msihnd.dll
2014-09-25 06:28 - 2014-10-19 13:22 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-09-22 19:27 - 2014-08-09 04:30 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2014-09-22 19:27 - 2014-08-09 04:29 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\tssdisai.dll

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-20 07:00 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\sru
2014-10-20 06:48 - 2014-05-28 11:31 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-10-20 06:32 - 2013-11-12 14:08 - 00003596 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2582954725-240297685-1945197683-1001
2014-10-20 06:26 - 2014-02-19 12:47 - 00168111 _____ () C:\MyXML.xml
2014-10-20 06:26 - 2013-10-10 12:50 - 00000438 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2014-10-20 06:25 - 2014-05-28 11:29 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-10-20 06:25 - 2012-07-26 03:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-19 14:34 - 2013-10-10 12:34 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2582954725-240297685-1945197683-1002
2014-10-19 14:09 - 2013-10-10 10:12 - 00000000 ____D () C:\ProgramData\Spybot - Search & Destroy
2014-10-19 13:55 - 2013-10-10 10:06 - 00000000 ____D () C:\Program Files\Defraggler
2014-10-19 13:07 - 2013-10-10 10:12 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy
2014-10-19 12:40 - 2012-07-26 03:59 - 00000000 ____D () C:\Windows\CbsTemp
2014-10-19 12:37 - 2012-07-26 03:28 - 00850046 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-19 12:29 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\WinStore
2014-10-19 12:26 - 2013-10-10 10:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-10-19 12:26 - 2013-10-10 10:06 - 00000000 ____D () C:\Program Files\CCleaner
2014-10-19 12:23 - 2014-02-19 13:07 - 00000000 ____D () C:\ProgramData\Oracle
2014-10-19 12:23 - 2014-02-19 13:06 - 00000000 ____D () C:\Program Files (x86)\Java
2014-10-19 12:02 - 2013-10-05 11:05 - 00000000 ____D () C:\Users\Front Desk\AppData\Roaming\PCDr
2014-10-19 11:07 - 2014-05-28 11:27 - 00000000 ____D () C:\Users\Front Desk\AppData\Roaming\Systweak
2014-10-19 11:07 - 2013-10-10 12:59 - 00000000 ____D () C:\Users\Desk Clerks\AppData\Local\Adobe
2014-10-19 10:45 - 2014-05-28 11:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-10-19 10:45 - 2014-05-28 11:31 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-10-19 09:36 - 2012-07-26 04:12 - 00000000 ___RD () C:\Windows\ToastData
2014-10-19 09:36 - 2012-07-26 04:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-10-19 09:36 - 2012-07-26 04:12 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-10-19 09:36 - 2012-07-26 04:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-10-19 09:36 - 2012-07-26 04:12 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility
2014-10-19 09:36 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\SecureBootUpdates
2014-10-19 09:36 - 2012-07-26 04:12 - 00000000 ____D () C:\Program Files\Windows Defender
2014-10-19 09:36 - 2012-07-26 04:12 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-10-19 09:36 - 2012-07-26 03:52 - 00000000 ____D () C:\Program Files\Windows Journal
2014-10-19 09:25 - 2013-10-04 19:23 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-10-19 09:19 - 2012-07-26 01:26 - 00524288 ___SH () C:\Windows\system32\config\BBI
2014-10-19 09:17 - 2012-07-26 04:12 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2014-10-19 08:44 - 2013-10-09 03:13 - 00000000 ____D () C:\Windows\system32\MRT
2014-10-18 15:37 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\rescache
2014-10-18 04:30 - 2014-08-27 22:44 - 00000000 ____D () C:\Users\Desk Clerks\AppData\Local\Unity
2014-10-17 22:12 - 2014-08-27 22:43 - 00000000 ____D () C:\Users\Desk Clerks\AppData\Local\Deployment
2014-10-16 11:50 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\NDF
2014-10-12 09:50 - 2012-07-26 04:12 - 00000000 ____D () C:\Windows\system32\FxsTmp
2014-10-03 10:02 - 2013-10-09 03:13 - 103265616 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-10-01 11:11 - 2014-05-28 11:31 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-10-01 11:11 - 2014-05-28 11:31 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-10-01 11:11 - 2013-10-10 10:11 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-09-23 13:07 - 2013-10-10 12:10 - 00000000 ____D () C:\Users\Desk Clerks\AppData\Roaming\Adobe
2014-09-22 02:42 - 2013-10-04 19:33 - 00278152 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe

Some content of TEMP:
====================
C:\Users\Desk Clerks\AppData\Local\Temp\BullseyeCoverage-2-x86.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-10-19 09:49

==================== End Of Log ============================

jackydcr · October 20, 2014

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-10-2014
Ran by Front Desk at 2014-10-20 07:11:26
Running from C:\Users\Front Desk\Downloads
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.293 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 15.0.0.293 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 13 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.18 - Piriform)
CleanUp! (HKLM-x32\...\CleanUp!) (Version: - )
CyberLink LabelPrint 2.5 (x32 Version: 2.5.5415 - CyberLink Corp.) Hidden
CyberLink Media Suite 10 (x32 Version: 10.0.1.2417 - CyberLink Corp.) Hidden
CyberLink Media Suite Essentials (HKLM-x32\...\InstallShield_{8F14AA37-5193-4A14-BD5B-BDF9B361AEF7}) (Version: 10.0 - CyberLink Corp.)
CyberLink Power2Go 8 (x32 Version: 8.0.0.2126 - CyberLink Corp.) Hidden
CyberLink PowerDirector 10 (x32 Version: 10.0.1.2413 - CyberLink Corp.) Hidden
CyberLink PowerDVD 10 (x32 Version: 10.0.4828.52 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform)
Dell Digital Delivery (HKLM-x32\...\{98CB551E-EDB1-4535-82A6-E3258597F64E}) (Version: 2.7.1000.0 - Dell Products, LP)
Dell Product Registration (HKLM-x32\...\{2A0F2CC5-3065-492C-8380-B03AA7106B1A}) (Version: 1.16.1 - Dell Inc.)
Dell Wireless Driver Installation (HKLM-x32\...\{451517F1-7E41-400B-AA36-FB7E2563526D}) (Version: 10.0 - Dell)
Intel® Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1008 - Intel Corporation)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2849 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.0.1030 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.24.738.1 - Intel Corporation) Hidden
Java 7 Update 71 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.710 - Oracle)
Java Auto Updater (x32 Version: 2.1.71.14 - Oracle, Inc.) Hidden
Lexmark MS310 Series Uninstaller (HKLM\...\Lexmark MS310 Series) (Version: - Lexmark International, Inc.)
Malwarebytes Anti-Malware version 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.2.173.0 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Mozilla Firefox 33.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 33.0 (x86 en-US)) (Version: 33.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden
My Dell (HKLM\...\PC-Doctor for Windows) (Version: 3.5.6426.22 - PC-Doctor, Inc.)
Photo Gallery (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6662 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.8400.30136 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.48 - Piriform)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Speccy (HKLM\...\Speccy) (Version: 1.23 - Piriform)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.4.40 - Safer-Networking Ltd.)
Start Menu 8 (HKLM-x32\...\IObit_StartMenu8_is1) (Version: 1.4.0.0 - IObit)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

==================== Restore Points =========================

19-10-2014 16:21:51 Installed Java 7 Update 71

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2012-07-26 01:26 - 2014-10-19 13:26 - 00450713 ____R C:\Windows\system32\Drivers\etc\hosts
127.0.0.1   www.007guard.com
127.0.0.1   007guard.com
127.0.0.1   008i.com
127.0.0.1   www.008k.com
127.0.0.1   008k.com
127.0.0.1   www.00hq.com
127.0.0.1   00hq.com
127.0.0.1   010402.com
127.0.0.1   www.032439.com
127.0.0.1   032439.com
127.0.0.1   www.0scan.com
127.0.0.1   0scan.com
127.0.0.1   1000gratisproben.com
127.0.0.1   www.1000gratisproben.com
127.0.0.1   1001namen.com
127.0.0.1   www.1001namen.com
127.0.0.1   100888290cs.com
127.0.0.1   www.100888290cs.com
127.0.0.1   www.100sexlinks.com
127.0.0.1   100sexlinks.com
127.0.0.1   10sek.com
127.0.0.1   www.10sek.com
127.0.0.1   www.1-2005-search.com
127.0.0.1   1-2005-search.com
127.0.0.1   123fporn.info
127.0.0.1   www.123fporn.info
127.0.0.1   123haustiereundmehr.com
127.0.0.1   www.123haustiereundmehr.com
127.0.0.1   123moviedownload.com

There are 1000 more lines.

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0C0EA0F3-046B-4035-AF31-E0534E077A16} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\My Dell\uaclauncher.exe [2014-01-31] (PC-Doctor, Inc.)
Task: {0DD97256-7A32-4780-91B4-5097B9F32D76} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {1AAFF332-5C62-4558-9991-DAA649C4C9C5} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
Task: {1BC2308A-BB94-460F-BEB1-CBF140521195} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation)
Task: {23A5D8BE-9196-40EB-BD89-794398B2B073} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {39C5B2FF-4AFE-4308-80DB-2BDC9276ED12} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\My Dell\sessionchecker.exe [2014-01-31] (PC-Doctor, Inc.)
Task: {431DE75D-10AC-4C32-9969-B39D54EEE661} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation)
Task: {4941B995-4FBD-4229-8D72-F40E117D5270} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {4B8BFCC0-AE5A-4325-8AC8-B3E2D358DA14} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation)
Task: {520B3CEE-069D-4044-828A-CEDB067866BB} - System32\Tasks\Games\UpdateCheck_S-1-5-21-2582954725-240297685-1945197683-1001
Task: {54115DB4-E76E-492A-8A1C-69E4A59C521A} - System32\Tasks\Dell\Dell System Registration => C:\Program Files (x86)\System Registration\prodreg.exe [2012-07-09] (Dell, Inc.)
Task: {5B0D6408-9001-451B-9CAD-435CA15766D8} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
Task: {85EA2D64-DA46-4D1D-8F91-AFF3292938A3} - System32\Tasks\Microsoft\Windows\Setup\8.1 auto install => C:\Windows\system32\NotificationUI.exe [2014-08-20] (Microsoft Corporation)
Task: {8C529098-37C7-475B-B90C-F9277D3F1565} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-12-03] (CyberLink Corp.)
Task: {92CD2CC1-3ABB-494D-9FCE-5B266BFF0005} - System32\Tasks\StartMenuAutoupdate => C:\Program Files (x86)\IObit\Start Menu 8\AutoUpdate.exe [2013-12-09] (IObit)
Task: {9CDAF747-1C5E-4E6A-A74A-DFD112BC5A89} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {A1CE3147-41C1-4D4B-843D-51E9064CB977} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-09-26] (Piriform Ltd)
Task: {A72208BF-7A49-4FB8-B684-252375F3443A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing
Task: {AB561F15-56F6-4E0F-A0E8-C00E3EEC5523} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation)
Task: {C3F3ABB8-871C-41B5-B6AB-84C79680FDD3} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2013-05-13] (Microsoft)
Task: {C6A88F2D-53D2-4805-9D69-443738A1847C} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
Task: {C76231F2-9457-48B6-8E84-12715C5DF705} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-10-03] (Microsoft Corporation)
Task: {D1606AC7-00AD-4288-918F-83F0F9D25D54} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [2012-12-03] (CyberLink)
Task: {EBF06DEC-4228-4813-AC0C-62821AE4E330} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask
Task: {FF798386-42F0-44D6-ADEB-79EFD1246CDA} - System32\Tasks\Defraggler Volume C Task => C:\Program Files\Defraggler\df64.exe [2014-04-09] (Piriform Ltd)
Task: C:\Windows\Tasks\Defraggler Volume C Task.job => C:\Program Files\Defraggler\df64.exe

==================== Loaded Modules (whitelisted) =============

2013-07-10 12:53 - 2012-04-24 22:43 - 00254512 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2012-03-27 05:03 - 2012-11-19 18:12 - 01579520 _____ () C:\Windows\system32\spool\DRIVERS\x64\3\LMADSP4Z.DLL
2012-03-19 07:12 - 2012-11-19 18:12 - 01800704 _____ () C:\Windows\system32\spool\DRIVERS\x64\3\LMADSPUE.DLL
2014-10-19 13:11 - 2014-05-13 12:04 - 00109400 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-10-19 13:11 - 2014-05-13 12:04 - 00167768 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-10-19 13:11 - 2014-05-13 12:04 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-10-19 13:11 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-10-19 13:11 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2013-10-04 19:33 - 2013-12-09 17:10 - 00348992 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madExcept_.bpl
2013-10-04 19:33 - 2013-12-09 17:10 - 00183616 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madBasic_.bpl
2013-10-04 19:33 - 2013-12-09 17:10 - 00051008 _____ () C:\Program Files (x86)\IObit\Start Menu 8\madDisAsm_.bpl
2014-02-19 12:47 - 2013-12-09 17:10 - 00089920 _____ () C:\Program Files (x86)\IObit\Start Menu 8\NTFSScan.dll
2013-10-04 19:33 - 2013-12-09 17:10 - 00039744 _____ () C:\Program Files (x86)\IObit\Start Menu 8\pri.dll
2013-10-04 19:33 - 2013-12-09 17:11 - 00041280 _____ () C:\Program Files (x86)\IObit\Start Menu 8\winkey.dll
2013-07-10 12:52 - 2012-06-07 23:34 - 00627216 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2012-06-08 14:34 - 2012-06-08 14:34 - 00016400 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2014-09-25 06:28 - 2014-10-19 13:22 - 03649648 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2013-07-10 12:47 - 2012-07-18 15:55 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\ACE.dll
2012-09-23 20:43 - 2012-09-23 20:43 - 00313992 _____ () C:\Program Files (x86)\Adobe\Reader 11.0\Reader\sqlite.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

========================= Accounts: ==========================

Administrator (S-1-5-21-2582954725-240297685-1945197683-500 - Administrator - Disabled)
Desk Clerks (S-1-5-21-2582954725-240297685-1945197683-1002 - Limited - Enabled) => C:\Users\Desk Clerks
Front Desk (S-1-5-21-2582954725-240297685-1945197683-1001 - Administrator - Enabled) => C:\Users\Front Desk
Guest (S-1-5-21-2582954725-240297685-1945197683-501 - Limited - Disabled)

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (10/20/2014 06:26:36 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Explorer.EXE, version: 6.2.9200.16628, time stamp: 0x51a94434
Faulting module name: twinui.dll, version: 6.2.9200.17101, time stamp: 0x54015816
Exception code: 0xc0000005
Fault offset: 0x000000000000186c
Faulting process id: 0xb5c
Faulting application start time: 0xExplorer.EXE0
Faulting application path: Explorer.EXE1
Faulting module path: Explorer.EXE2
Report Id: Explorer.EXE3
Faulting package full name: Explorer.EXE4
Faulting package-relative application ID: Explorer.EXE5

Error: (10/20/2014 06:05:35 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: Explorer.EXE, version: 6.2.9200.16628, time stamp: 0x51a94434
Faulting module name: twinui.dll, version: 6.2.9200.17101, time stamp: 0x54015816
Exception code: 0xc0000005
Fault offset: 0x000000000000186c
Faulting process id: 0x5684
Faulting application start time: 0xExplorer.EXE0
Faulting application path: Explorer.EXE1
Faulting module path: Explorer.EXE2
Report Id: Explorer.EXE3
Faulting package full name: Explorer.EXE4
Faulting package-relative application ID: Explorer.EXE5

Error: (10/20/2014 06:00:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 10.0.9200.17116, time stamp: 0x5010888a
Faulting module name: ntdll.dll, version: 6.2.9200.16912, time stamp: 0x53645e25
Exception code: 0xc0000005
Fault offset: 0x00061830
Faulting process id: 0x6520
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3
Faulting package full name: iexplore.exe4
Faulting package-relative application ID: iexplore.exe5

Error: (10/20/2014 05:55:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 10.0.9200.17116, time stamp: 0x5010888a
Faulting module name: ntdll.dll, version: 6.2.9200.16912, time stamp: 0x53645e25
Exception code: 0xc0000005
Fault offset: 0x00061830
Faulting process id: 0x660c
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3
Faulting package full name: iexplore.exe4
Faulting package-relative application ID: iexplore.exe5

Error: (10/20/2014 05:49:09 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 10.0.9200.17116, time stamp: 0x5010888a
Faulting module name: ntdll.dll, version: 6.2.9200.16912, time stamp: 0x53645e25
Exception code: 0xc0000005
Fault offset: 0x00061830
Faulting process id: 0x2238
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3
Faulting package full name: iexplore.exe4
Faulting package-relative application ID: iexplore.exe5

Error: (10/20/2014 05:46:17 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 10.0.9200.17116, time stamp: 0x5010888a
Faulting module name: ntdll.dll, version: 6.2.9200.16912, time stamp: 0x53645e25
Exception code: 0xc0000005
Fault offset: 0x00061830
Faulting process id: 0x6068
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3
Faulting package full name: iexplore.exe4
Faulting package-relative application ID: iexplore.exe5

Error: (10/20/2014 05:30:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 10.0.9200.17116, time stamp: 0x5010888a
Faulting module name: ntdll.dll, version: 6.2.9200.16912, time stamp: 0x53645e25
Exception code: 0xc0000005
Fault offset: 0x00061830
Faulting process id: 0x161c
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3
Faulting package full name: iexplore.exe4
Faulting package-relative application ID: iexplore.exe5

Error: (10/20/2014 05:30:22 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 10.0.9200.17116, time stamp: 0x5010888a
Faulting module name: ntdll.dll, version: 6.2.9200.16912, time stamp: 0x53645e25
Exception code: 0xc0000005
Fault offset: 0x00061830
Faulting process id: 0x3acc
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3
Faulting package full name: iexplore.exe4
Faulting package-relative application ID: iexplore.exe5

Error: (10/20/2014 05:18:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 10.0.9200.17116, time stamp: 0x5010888a
Faulting module name: ntdll.dll, version: 6.2.9200.16912, time stamp: 0x53645e25
Exception code: 0xc0000005
Fault offset: 0x00061830
Faulting process id: 0x3a5c
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3
Faulting package full name: iexplore.exe4
Faulting package-relative application ID: iexplore.exe5

Error: (10/20/2014 05:16:36 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: iexplore.exe, version: 10.0.9200.17116, time stamp: 0x5010888a
Faulting module name: ntdll.dll, version: 6.2.9200.16912, time stamp: 0x53645e25
Exception code: 0xc0000005
Fault offset: 0x00061830
Faulting process id: 0x181c
Faulting application start time: 0xiexplore.exe0
Faulting application path: iexplore.exe1
Faulting module path: iexplore.exe2
Report Id: iexplore.exe3
Faulting package full name: iexplore.exe4
Faulting package-relative application ID: iexplore.exe5

System errors:
=============
Error: (10/20/2014 06:25:37 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: The previous system shutdown at 5:50:29 AM on ‎10/‎20/‎2014 was unexpected.

Error: (10/19/2014 10:51:34 PM) (Source: DCOM) (EventID: 10010) (User: FrontDesk)
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (10/19/2014 10:50:58 PM) (Source: DCOM) (EventID: 10010) (User: FrontDesk)
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (10/19/2014 04:21:06 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (10/19/2014 04:09:58 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (10/19/2014 03:27:51 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (10/19/2014 03:01:10 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (10/19/2014 02:41:14 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (10/19/2014 02:04:52 PM) (Source: DCOM) (EventID: 10010) (User: FrontDesk)
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (10/19/2014 02:02:42 PM) (Source: DCOM) (EventID: 10010) (User: FrontDesk)
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Microsoft Office Sessions:
=========================
Error: (10/20/2014 06:26:36 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Explorer.EXE6.2.9200.1662851a94434twinui.dll6.2.9200.1710154015816c0000005000000000000186cb5c01cfec50520d1518C:\Windows\Explorer.EXEC:\Windows\System32\twinui.dll916df500-5843-11e4-be9d-a41f7284dd7c

Error: (10/20/2014 06:05:35 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Explorer.EXE6.2.9200.1662851a94434twinui.dll6.2.9200.1710154015816c0000005000000000000186c568401cfec4d5c73a8f9C:\Windows\Explorer.EXEC:\Windows\System32\twinui.dlla226790c-5840-11e4-be9c-a41f7284dd7c

Error: (10/20/2014 06:00:44 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe10.0.9200.171165010888antdll.dll6.2.9200.1691253645e25c000000500061830652001cfec4cb589defaC:\Program Files\Internet Explorer\iexplore.exeC:\Windows\SYSTEM32\ntdll.dllf4a10799-583f-11e4-be9c-a41f7284dd7c

Error: (10/20/2014 05:55:40 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe10.0.9200.171165010888antdll.dll6.2.9200.1691253645e25c000000500061830660c01cfec4bfb15fe59C:\Program Files\Internet Explorer\iexplore.exeC:\Windows\SYSTEM32\ntdll.dll3f273a55-583f-11e4-be9c-a41f7284dd7c

Error: (10/20/2014 05:49:09 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe10.0.9200.171165010888antdll.dll6.2.9200.1691253645e25c000000500061830223801cfec4b0cad4ccfC:\Program Files\Internet Explorer\iexplore.exeC:\Windows\SYSTEM32\ntdll.dll5627a32d-583e-11e4-be9c-a41f7284dd7c

Error: (10/20/2014 05:46:17 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe10.0.9200.171165010888antdll.dll6.2.9200.1691253645e25c000000500061830606801cfec4ab10654e7C:\Program Files\Internet Explorer\iexplore.exeC:\Windows\SYSTEM32\ntdll.dllefbb891e-583d-11e4-be9c-a41f7284dd7c

Error: (10/20/2014 05:30:56 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe10.0.9200.171165010888antdll.dll6.2.9200.1691253645e25c000000500061830161c01cfec4887d6e55fC:\Program Files\Internet Explorer\iexplore.exeC:\Windows\SYSTEM32\ntdll.dllca752fc3-583b-11e4-be9c-a41f7284dd7c

Error: (10/20/2014 05:30:22 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe10.0.9200.171165010888antdll.dll6.2.9200.1691253645e25c0000005000618303acc01cfec4851ecf4a1C:\Program Files\Internet Explorer\iexplore.exeC:\Windows\SYSTEM32\ntdll.dllb64e488c-583b-11e4-be9c-a41f7284dd7c

Error: (10/20/2014 05:18:30 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe10.0.9200.171165010888antdll.dll6.2.9200.1691253645e25c0000005000618303a5c01cfec46c6f06623C:\Program Files\Internet Explorer\iexplore.exeC:\Windows\SYSTEM32\ntdll.dll0e133d1d-583a-11e4-be9c-a41f7284dd7c

Error: (10/20/2014 05:16:36 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: iexplore.exe10.0.9200.171165010888antdll.dll6.2.9200.1691253645e25c000000500061830181c01cfec466d3f9c25C:\Program Files\Internet Explorer\iexplore.exeC:\Windows\SYSTEM32\ntdll.dllca38b781-5839-11e4-be9c-a41f7284dd7c

==================== Memory info ===========================

Processor: Intel® Pentium® CPU G2030 @ 3.00GHz
Percentage of memory in use: 45%
Total physical RAM: 3967.58 MB
Available physical RAM: 2175.07 MB
Total Pagefile: 10367.58 MB
Available Pagefile: 5390.75 MB
Total Virtual: 8192 MB
Available Virtual: 8191.76 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:453.34 GB) (Free:404.08 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 4C0C8B7A)

Partition: GPT Partition Type.

==================== End Of Log ============================

jackydcr · October 20, 2014

I started this earlier but misunderstood instructions. Please forgive me. I can't get this pop up to stop.

FRST.txt

Addition.txt

Psychotic · October 21, 2014

Hi there,
my name is Marius and I will assist you with your malware related problems.

Before we move on, please read the following points carefully.

First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
Perform everything in the correct order. Sometimes one step requires the previous one.
If you have any problems while following my instructions, Stop there and tell me the exact nature of your problem.
Do not run any other scans without instruction or add/remove software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
Post all logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.

Important: To help me reviewing your logs, please post them in code boxes. You can create them by clicking on the <>-symbol on top of the reply window.

Scan with Gmer rootkit scanner

Please download Gmer from here by clicking on the "Download EXE" Button.

Double click on the randomly named GMER.exe. If asked to allow gmer.sys driver to load, please consent.
If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO.
In the right panel, you will see several boxes that have been checked. Uncheck the following ...
- Sections
- IAT/EAT
- Show All ( should be unchecked by default )
[*]Leave everything else as it is. [*]Close all other running programs as well as your Browser. [*]Click the Scan button & wait for it to finish. [*]Once done click on the Save.. button, and in the File name area, type in "ark.txt" or it will save as a .log file which cannot be uploaded to your post. [*]Save it where you can easily find it, such as your desktop. [*]Please post the content of the ark.txt here.

**Caution**
Rootkit scans often produce false positives. Do NOT take any action on any "<--- ROOKIT" entries

Scan with TDSS-Killer

Please read and follow these instructions carefully. We do not want it to fix anything yet (if found), we need to see a report first.

Download TDSSKiller.zip and extract to your desktop

Execute TDSSKiller.exe by doubleclicking on it.
Press Start Scan
If Malicious objects are found, do NOT select Copy to quarantine. Change the action to Skip, and save the log.
Once complete, a log will be produced at the root drive which is typically C:\ ,for example, C:\TDSSKiller.<version_date_time>log.txt

Please attach this file to your next reply.

jackydcr · October 21, 2014

Thank you for your assistance. Unfortunately, once I downloaded the GMER.exe, my computer went to a blue screen with an error that read "Whea Uncorrectable Error" and restarted. I started the computer back up and clicked on the program again, but the computer did the same thing.

jackydcr · October 21, 2014

Okay, I tried that first program a third time and was able to run the program. Here are the results of that :

GMER 2.1.19357 - http://www.gmer.netRootkit scan 2014-10-21 13:14:17Windows 6.2.9200  x64 \Device\Harddisk0\DR0 -> \Device\00000035 ST500DM002-1BD142 rev.KC47 465.76GBRunning: cuh840sr.exe; Driver: C:\Users\FRONTD~1\AppData\Local\Temp\fwdyipog.sys---- Threads - GMER 2.1 ----Thread  C:\Windows\system32\csrss.exe [552:584]      fffff960009325e8Thread  C:\Windows\system32\svchost.exe [1300:2356]  000007fd3a224910---- Disk sectors - GMER 2.1 ----Disk    \Device\Harddisk0\DR0                        unknown MBR code---- EOF - GMER 2.1 ----

jackydcr · October 21, 2014

Here is the result from the second program you asked me to run

13:26:03.0672 0x00c8  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:5813:26:03.0672 0x00c8  UEFI system13:26:06.0422 0x00c8  ============================================================13:26:06.0422 0x00c8  Current date / time: 2014/10/21 13:26:06.042213:26:06.0422 0x00c8  SystemInfo:13:26:06.0422 0x00c8  13:26:06.0422 0x00c8  OS Version: 6.2.9200 ServicePack: 0.013:26:06.0422 0x00c8  Product type: Workstation13:26:06.0422 0x00c8  ComputerName: FRONTDESK13:26:06.0422 0x00c8  UserName: Front Desk13:26:06.0422 0x00c8  Windows directory: C:\Windows13:26:06.0422 0x00c8  System windows directory: C:\Windows13:26:06.0422 0x00c8  Running under WOW6413:26:06.0422 0x00c8  Processor architecture: Intel x6413:26:06.0422 0x00c8  Number of processors: 213:26:06.0422 0x00c8  Page size: 0x100013:26:06.0422 0x00c8  Boot type: Normal boot13:26:06.0422 0x00c8  ============================================================13:26:06.0907 0x00c8  KLMD registered as C:\Windows\system32\drivers\45973488.sys13:26:07.0157 0x00c8  System UUID: {34BE31C0-1E47-FBAA-FDD6-B1E2A3C97D7F}13:26:07.0641 0x00c8  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x0000004013:26:07.0657 0x00c8  ============================================================13:26:07.0657 0x00c8  \Device\Harddisk0\DR0:13:26:07.0657 0x00c8  GPT partitions:13:26:07.0657 0x00c8  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {4A984DC3-7F59-4B44-AEAD-801D8A143C2B}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0xFA00013:26:07.0657 0x00c8  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {796BADD3-6BBF-4D9F-B631-466EB71A4965}, UniqueGUID: {B1DBF81E-D6AB-4B1A-9EEC-B7F8410AC636}, Name: Basic data partition, StartLBA 0xFA800, BlocksNum 0x1400013:26:07.0657 0x00c8  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {C263D14B-A8DE-46CB-B51A-A7E4DAE7CCA7}, Name: Microsoft reserved partition, StartLBA 0x10E800, BlocksNum 0x4000013:26:07.0657 0x00c8  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {0C1DC1D4-2D74-4763-AB12-8606D192111D}, Name: Basic data partition, StartLBA 0x14E800, BlocksNum 0xF500013:26:07.0657 0x00c8  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {8D6A91B2-4549-4674-AF7A-A899874F4AF5}, Name: Basic data partition, StartLBA 0x243800, BlocksNum 0x38AAE00013:26:07.0657 0x00c8  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {6293430F-BD27-43D1-A2AC-05D56E52E091}, Name: Microsoft recovery partition, StartLBA 0x38CF1800, BlocksNum 0x169403013:26:07.0657 0x00c8  MBR partitions:13:26:07.0657 0x00c8  ============================================================13:26:07.0688 0x00c8  C: <-> \Device\Harddisk0\DR0\Partition513:26:07.0688 0x00c8  ============================================================13:26:07.0688 0x00c8  Initialize success13:26:07.0688 0x00c8  ============================================================13:26:09.0029 0x0348  ============================================================13:26:09.0029 0x0348  Scan started13:26:09.0029 0x0348  Mode: Manual; 13:26:09.0029 0x0348  ============================================================13:26:09.0029 0x0348  KSN ping started13:26:11.0529 0x0348  KSN ping finished: true13:26:11.0873 0x0348  ================ Scan system memory ========================13:26:11.0873 0x0348  System memory - ok13:26:11.0889 0x0348  ================ Scan services =============================13:26:11.0967 0x0348  [ E890C46E4754F0DF51BAFCC8D2E07498, E620D03030F3B65442E0A5CB8B59016A6E8DB3BCA52741977B8897B34438E902 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys13:26:11.0982 0x0348  1394ohci - ok13:26:11.0998 0x0348  [ 4F18D4C7EA14F11A7211F60D553C03DB, 09AB6D2D8E9B7B6D6A97708551C0E4B34538947A15EA2A69C11764D7BC0BB7F6 ] 3ware           C:\Windows\system32\drivers\3ware.sys13:26:11.0998 0x0348  3ware - ok13:26:12.0029 0x0348  [ 975AABEB243B800C23626D6B652C5A9C, FB02336F26AF10BA2A0D1B97C33CB1D78BB90CA51EF008A613A0274779798FAD ] ACPI            C:\Windows\system32\drivers\ACPI.sys13:26:12.0029 0x0348  ACPI - ok13:26:12.0045 0x0348  [ DC968C37822117E576B933F34A2D130C, 4C94E00ADC242296D7CBBFC7346D5F9AE5FE1B0C616ECA3BDE10A7B34FD2040B ] acpiex          C:\Windows\system32\Drivers\acpiex.sys13:26:12.0045 0x0348  acpiex - ok13:26:12.0045 0x0348  [ 0CA9F7C3A78227C21A0A7854E245CFB2, D54147C9C1EE2F0098B863B0852E027DB89D6FA67F6B7FD54F609D9715A11442 ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys13:26:12.0045 0x0348  acpipagr - ok13:26:12.0060 0x0348  [ 8EB8DA03B142D3DD1EB9ED8107A76C43, 24B9B24F9A5BDF3AAD13C4EE0638497D9CA4A100096C6EAE403E0215EA89C439 ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys13:26:12.0060 0x0348  AcpiPmi - ok13:26:12.0060 0x0348  [ CBCE725C5D86ABA7D2604E22951AA9B8, DE0440F0E943F057EBCD01DB4B1E12DBC241FBF03C42021306D322AB88FF8F21 ] acpitime        C:\Windows\System32\drivers\acpitime.sys13:26:12.0060 0x0348  acpitime - ok13:26:12.0139 0x0348  [ C5679E5186B2FC95BC76A8A9870D5456, 70AC61850B811A0A902532F098AE1D5DF4622455E56C78B89D4ABDBE4A061A48 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe13:26:12.0139 0x0348  AdobeARMservice - ok13:26:12.0185 0x0348  [ 93C6388592B99925C1D1576E465BC80F, 4C48BE5471DA4788357D71E90DFEA20FE320C7AAE1F4C55AFBE2E46FEA5CF8FB ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys13:26:12.0185 0x0348  adp94xx - ok13:26:12.0201 0x0348  [ D27763E0247292654E7F7D16444C7C72, 0314C713D31E2B34F215B52F804F014D876E6ED92DC656CC3E27920CCD36CF0E ] adpahci         C:\Windows\system32\drivers\adpahci.sys13:26:12.0201 0x0348  adpahci - ok13:26:12.0201 0x0348  [ 67B90070FF48F794AF19F9FCF0080D75, 5D0D352606D58D2CA0814F38EF7B1774C030BE44353DF5910CBFAAF4FDE64ED6 ] adpu320         C:\Windows\system32\drivers\adpu320.sys13:26:12.0217 0x0348  adpu320 - ok13:26:12.0232 0x0348  [ 974AE60BF5B90E31412D93596C968E5B, 092B59C2B67C4618E7B1800615D1DF7199482F60D0D27BD91763F7F8D7FC883F ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll13:26:12.0248 0x0348  AeLookupSvc - ok13:26:12.0279 0x0348  [ D1E343BC00136CE03C4D403194D06A80, 94F2543164A2CEA179EDE53E1294EE24391A59CAEFF83BA5CE9385E8E686E89C ] AERTFilters     C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe13:26:12.0279 0x0348  AERTFilters - ok13:26:12.0326 0x0348  [ FE7FB9612D354EB41DF4F0FF5D6FB259, 98D5BD9C1300195C49CB0717A831A06D99F7AE631D5EA065E10BFE7C2FA57A18 ] AFD             C:\Windows\system32\drivers\afd.sys13:26:12.0326 0x0348  AFD - ok13:26:12.0342 0x0348  [ 01590377A5AB19E792528C628A2A68F9, F3A4B6CA4E8D4436E44E36D7F7EEF3DC861D1EE50D41F4273226C4ED95674B84 ] agp440          C:\Windows\system32\drivers\agp440.sys13:26:12.0342 0x0348  agp440 - ok13:26:12.0357 0x0348  [ D1BE8E6E5B3AF23A4393AF1BF867977A, B3AE97D35A9304198715D76F6C3F0545AA176FDEBA6C2055782558B11DFA14EB ] ALG             C:\Windows\System32\alg.exe13:26:12.0357 0x0348  ALG - ok13:26:12.0373 0x0348  [ 025E8C755BE293E50854D26D1BBE5133, 4373639689306A3D8FE0F862072711BAD5DBAA45E105CD3129586439A90EE070 ] AllUserInstallAgent C:\Windows\system32\AUInstallAgent.dll13:26:12.0373 0x0348  AllUserInstallAgent - ok13:26:12.0389 0x0348  [ 5A81054B824004B1ECC04F0034A1CDF9, 73A1986A4B346C425157216EBF16CC90EFFC642EDF6109E6364CF0552E3388FD ] AmdK8           C:\Windows\System32\drivers\amdk8.sys13:26:12.0404 0x0348  AmdK8 - ok13:26:12.0404 0x0348  [ B849D453E644FAB9BC8EF6DC8CA9C4C6, B803CDA478D3385937C44CBB05A0E65ABACEFEBA682975787C44E2904FB89D2D ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys13:26:12.0404 0x0348  AmdPPM - ok13:26:12.0421 0x0348  [ 35A0EB5AECB0FA3C41A2FB514A562304, 737783ABF348288471AC7051D4DC6CB336D686C94EC7B8938DCA74AFE9BECB1C ] amdsata         C:\Windows\system32\drivers\amdsata.sys13:26:12.0421 0x0348  amdsata - ok13:26:12.0437 0x0348  [ 00452671904F5EE94B50BF0219C97164, 99F9B86D3DB3E10B014120A63CD43CBAAB22C8E38851090ABE37D89ABD61F7B6 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys13:26:12.0437 0x0348  amdsbs - ok13:26:12.0437 0x0348  [ EA3FFE53E92E59C87E3ECA9BEB20D9B7, DC0B8B798720F5F75F8AFD3383CF69194282AEEE84DCACB97382F4C86E1D3E49 ] amdxata         C:\Windows\system32\drivers\amdxata.sys13:26:12.0437 0x0348  amdxata - ok13:26:12.0453 0x0348  [ 83B3682CE922FB0F415734B26D9D6233, 9102E8B410BB1AE426770896B6AB584D1F02830337FBB2DEC182F3F19832F35F ] AppID           C:\Windows\system32\drivers\appid.sys13:26:12.0453 0x0348  AppID - ok13:26:12.0468 0x0348  [ CE2BEAD7F31816FF0AC490D048C969F9, 7D24C5A9E8F7C21CC6D8BF2CA29A8B79DDE7EEDE2F37D36B9071ECE1CF61371F ] AppIDSvc        C:\Windows\System32\appidsvc.dll13:26:12.0468 0x0348  AppIDSvc - ok13:26:12.0484 0x0348  [ 4F750B7EFCB6520AE01E01D082D7D476, AD2A67D727A1D4DD0BBACC6B4BB432FA9A14D50D8BA292B95A4747CEC9F85728 ] Appinfo         C:\Windows\System32\appinfo.dll13:26:12.0484 0x0348  Appinfo - ok13:26:12.0484 0x0348  [ E933401B392387F4BE34DE8BAF1722A7, 57CC6DE31E2C82D2B12509F0A5EC9EC70DD2EF6A1F31A66ADF62DC6AE0A67323 ] arc             C:\Windows\system32\drivers\arc.sys13:26:12.0484 0x0348  arc - ok13:26:12.0500 0x0348  [ 07CA323EF2E8247A568AB0F3662AD644, 1224B41193F0E9B164732BA5BF707A13427C82C1D8C3EDC2AAE5C5C75454B9F6 ] arcsas          C:\Windows\system32\drivers\arcsas.sys13:26:12.0500 0x0348  arcsas - ok13:26:12.0500 0x0348  [ 74DBAEC35366C4EE7670428808715A6A, 3B3A7A81CD8038C4750560B94A9247C4409410780B312BA71EDF2E393DCA7474 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys13:26:12.0500 0x0348  AsyncMac - ok13:26:12.0515 0x0348  [ A721FF570C2387E383BDDEA9632863C9, 45DD7787F44A2C742560FEB03AB66910C2F0002D95BB02C55EEDE973AA92AD24 ] atapi           C:\Windows\system32\drivers\atapi.sys13:26:12.0515 0x0348  atapi - ok13:26:12.0640 0x0348  [ CBBD8F724C6C0B3D05477BB5C982D4B8, FE591060960F34E926CDCA4B03A59CB1FDDA098B84C6C4FCF5D0592F79F07670 ] athr            C:\Windows\system32\DRIVERS\athw8x.sys13:26:12.0687 0x0348  athr - ok13:26:12.0718 0x0348  [ BCD7A47EF587DC00DD61D12D9C2D1E44, 95BC9AC8BA8A86DB5C7A6317002BD9872F193B401A0C58DF252DCF3D4A7541E2 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll13:26:12.0718 0x0348  AudioEndpointBuilder - ok13:26:12.0750 0x0348  [ 599B3F685A263A114FFAF3BE29C49C75, 579E9561BA8537888E061E303F3F89E2E6F8B8DED74369C3767DB10B35CD45E8 ] Audiosrv        C:\Windows\System32\Audiosrv.dll13:26:12.0765 0x0348  Audiosrv - ok13:26:12.0781 0x0348  [ 89491EF71D5EA011127832C588002853, 05620E4235956D8446FB9604F930738C8AA97E3A74C907E37F7CC08B8EDA0461 ] AxInstSV        C:\Windows\System32\AxInstSV.dll13:26:12.0781 0x0348  AxInstSV - ok13:26:12.0812 0x0348  [ 87AB5BB072A3F128541D5B815F82FFDD, 186AF33D3DE90638C3E165CAC3DA17295E8A80CDB523F9BE4AF7D38CA6954905 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys13:26:12.0828 0x0348  b06bdrv - ok13:26:12.0843 0x0348  [ 81703BC5D68DEDBB086C2368FBE7B334, CFD4A55C8045C482F8D410514F3211AEFA00097AB395F5A04BFE983ED6254F6B ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys13:26:12.0843 0x0348  BasicDisplay - ok13:26:12.0859 0x0348  [ 5EC68164E14D25675C98BBB5F09E8606, 1D7EDB21C87039FC5F39F46460AD852BC4EC6B179B1C205D189DD3C397343435 ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys13:26:12.0859 0x0348  BasicRender - ok13:26:12.0875 0x0348  [ 89143A7BA7850F5C7E61B43BB44B6418, 00BB781DF87D4FF1BAFD318AFE237296B4F5925023BA4486405EC0A384C88D8F ] BDESVC          C:\Windows\System32\bdesvc.dll13:26:12.0890 0x0348  BDESVC - ok13:26:12.0890 0x0348  [ 9E7AEA59776D904607985AFFE7E5E183, C3DB745A9F4DA7CB9628A7913DD52B2444B14FEB9D588FF6558CF52CEB8955EB ] Beep            C:\Windows\system32\drivers\Beep.sys13:26:12.0890 0x0348  Beep - ok13:26:12.0953 0x0348  [ 53AA55632B94622F2DC3695E86EF9363, 9B5BB8EDA48A37AE97BCD42D83B25A6D10AA6231EABE745DCCE6D60E19094A6F ] BFE             C:\Windows\System32\bfe.dll13:26:12.0953 0x0348  BFE - ok13:26:12.0984 0x0348  [ D598C44A7072D3108D8D8102EC5E07F7, D7472E9BAAB7B6E1D30F4E153412E2A16EE5C08DE2BF8BFF4D65089825226FE0 ] BITS            C:\Windows\System32\qmgr.dll13:26:13.0000 0x0348  BITS - ok13:26:13.0031 0x0348  [ B17AC10B47C7FCB44D22A1F06415840E, 990D6F629D93F4F913D218ACE5187A26DCB762BAFB2BB279CCE8CAF2755D85A5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys13:26:13.0031 0x0348  bowser - ok13:26:13.0062 0x0348  [ 038FA1B55531E7020DB705B42FCCE373, 023E87E3204D64890D6FEA78E762E5BC5BD0A59325EBC264834727779EEEDBC5 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll13:26:13.0062 0x0348  BrokerInfrastructure - ok13:26:13.0078 0x0348  [ 310068BDA80B1D55C36580FD8A873FAF, A75412FF1F483461F526E9A359DCEECA5E683441514464D5ED82D1A9740D583E ] Browser         C:\Windows\System32\browser.dll13:26:13.0078 0x0348  Browser - ok13:26:13.0093 0x0348  [ 6695200F455E251F0BCC9CE4D0978D59, 4DB2F967E449581A9330EF43E794B45B93581564B20C5B991FC1EC665A640D69 ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys13:26:13.0093 0x0348  BthAvrcpTg - ok13:26:13.0109 0x0348  [ 616EB8748C988AEE98D93DA141C3D3B4, 15A055B0496BDB29CBCF6EEBF112D4BA1C7A2FF39124728830D0FD1FD7A404CB ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys13:26:13.0109 0x0348  BthHFEnum - ok13:26:13.0125 0x0348  [ DCB4EBD928A6FB368BE6CAE522412DE1, 9E1345F29467054689B9F48B5CCB567760D36610A4EA9AF41B829EAD60347269 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys13:26:13.0125 0x0348  bthhfhid - ok13:26:13.0125 0x0348  [ 033916CE8784A848B9A3D686B7F66D97, B4D0514D59646CF6B70D4FA488CF95C38EA38CC5C509329CC8753E897C640AFA ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys13:26:13.0125 0x0348  BTHMODEM - ok13:26:13.0140 0x0348  [ A4387C3D271959313E2577DB7BE8BA7A, C71474802102102EBE04DF036EEB2F5FB3380BE288E3842F19F234EFAE977D70 ] bthserv         C:\Windows\system32\bthserv.dll13:26:13.0140 0x0348  bthserv - ok13:26:13.0140 0x0348  [ 990B1BABE6E81FB18E65A87EBEFB1772, 1820D4AC57E1D4B7FB5AA89C277B16910ED73712878D2B43FE542CE16DFE16C3 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys13:26:13.0140 0x0348  cdfs - ok13:26:13.0156 0x0348  [ 339BFF85D788268752DA8C9644B188EE, C2279F1A39AED39865A5027D2FD087F8E82F3ED8C94BA4D922855B98E792AFC5 ] cdrom           C:\Windows\System32\drivers\cdrom.sys13:26:13.0156 0x0348  cdrom - ok13:26:13.0172 0x0348  [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] CertPropSvc     C:\Windows\System32\certprop.dll13:26:13.0187 0x0348  CertPropSvc - ok13:26:13.0187 0x0348  [ F64B7D1A37CC1D5F421D5359EEC81E2E, 2B4879DD32B2C20B94847755E22B1BCBE2B567B3989C57A9BA2DD783307EFFDB ] circlass        C:\Windows\System32\drivers\circlass.sys13:26:13.0187 0x0348  circlass - ok13:26:13.0203 0x0348  [ 9905168708DB68849B879B5548F68AB3, B7A495E57B9398704988DC472126CBC5B8D76761A34F51732FBF6CC88E3AB79A ] CLFS            C:\Windows\system32\drivers\CLFS.sys13:26:13.0203 0x0348  CLFS - ok13:26:13.0234 0x0348  [ 075CCE75090786F124573A788C8656E6, AA188CFF2F8EE2D9F50701AB2315D24E15D7715FD84F5054D3FC175D4BD35734 ] CLVirtualDrive  C:\Windows\system32\DRIVERS\CLVirtualDrive.sys13:26:13.0234 0x0348  CLVirtualDrive - ok13:26:13.0234 0x0348  [ 2DC8538A2260647484A6C921CA837313, 094059DD66B0C50A1CAE288F920107B0B6AD1AA5758284E35B92C131EDEA30EA ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys13:26:13.0234 0x0348  CmBatt - ok13:26:13.0312 0x0348  [ DBF9E5346431557BF56F41E7F8EC0DC1, D5FA34C873DA9BE40301D53198355556506AB5145B78B14D0AA88570A0058589 ] CNG             C:\Windows\system32\Drivers\cng.sys13:26:13.0328 0x0348  CNG - ok13:26:13.0328 0x0348  [ 0E5B1E9E7122EDAAF1F6CE047965CA92, 803E585B92D1E2E5B6BF67BE511E88DC2629A12407C3E30F7AEFB544D390A9B8 ] CompositeBus    C:\Windows\System32\drivers\CompositeBus.sys13:26:13.0343 0x0348  CompositeBus - ok13:26:13.0343 0x0348  COMSysApp - ok13:26:13.0343 0x0348  [ D9CB0782AF819548072AA45B70F8B22D, 04796F39ABB88759A534DE3D0C51F684BF2A8DE1F4028B657CCFDBDD39A6618C ] condrv          C:\Windows\system32\drivers\condrv.sys13:26:13.0343 0x0348  condrv - ok13:26:13.0390 0x0348  [ BAC3B9819BFD603290AC0A2C87D605D3, 26AC456B94251E85B5E0C83050CEABAE04BE9C3F81B9851F259C415C421591CE ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe13:26:13.0390 0x0348  cphs - ok13:26:13.0437 0x0348  [ 5CE2742F063731EC10C1B2EE386A2C08, 309919BDDD4649AFB95A99DCF8AFC3BAE10F9BC1E2819C0794CFD0F80682C223 ] CryptSvc        C:\Windows\system32\cryptsvc.dll13:26:13.0437 0x0348  CryptSvc - ok13:26:13.0453 0x0348  [ FAEF4C245BE832DB41B15DAAC336AFB7, 1F8C98AB0DF4327FCB01FE0356025488E19B48A45FFFA50576B49A8587FAC42B ] dam             C:\Windows\system32\drivers\dam.sys13:26:13.0453 0x0348  dam - ok13:26:13.0484 0x0348  [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] DcomLaunch      C:\Windows\system32\rpcss.dll13:26:13.0500 0x0348  DcomLaunch - ok13:26:13.0515 0x0348  [ C8650D1F61149AA546BDBC99172EBBC1, D9592ED1B6F23B6EC76A0B93635B6E38702311B0A6982F0F9DEC37FCDAF1288B ] defragsvc       C:\Windows\System32\defragsvc.dll13:26:13.0531 0x0348  defragsvc - ok13:26:13.0562 0x0348  [ 2E19CAEACBBCB68B2338D936D64EA012, 840BD87697D2A11A959E57F695E2E3546555E0C82E812BD30750E3F5BCE7A51F ] DellDigitalDelivery c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe13:26:13.0578 0x0348  DellDigitalDelivery - ok13:26:13.0593 0x0348  [ 5EAEF67AE2AF4D2DC664B649DB7B2E16, ADAC7FD6AC12B50F4998C5EB0BD770DD4B80A94C4CC1B9376AD77648E48D012D ] DeviceAssociationService C:\Windows\system32\das.dll13:26:13.0593 0x0348  DeviceAssociationService - ok13:26:13.0625 0x0348  [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll13:26:13.0625 0x0348  DeviceInstall - ok13:26:13.0656 0x0348  [ 431141C6859990824D17F71C30A78728, 448B3DC20C8FDD5B66217E0E01DBCC4904F94BDA0826F109D139DDD2C2D7FBF2 ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys13:26:13.0656 0x0348  Dfsc - ok13:26:13.0672 0x0348  [ 9E0E72222264745ADEB0E5AC680B0ED6, 576AFC8741695396A3B8E9DBDD3703E9D70370437D09D162262E47A140D101B4 ] Dhcp            C:\Windows\system32\dhcpcore.dll13:26:13.0687 0x0348  Dhcp - ok13:26:13.0703 0x0348  [ 3C736FAE17BA6F91BA37594AAB139CD0, 34304A194105B19E7ADD80108DC85C3B7AA9E942C84A7EF93C475CE1D9AE4615 ] discache        C:\Windows\system32\drivers\discache.sys13:26:13.0703 0x0348  discache - ok13:26:13.0718 0x0348  [ AE3786294CC246A5403783E1B86A0168, 29A7B4B490CBB16DAEF5D67D0A58A2577CF3FEE8F889484DB867F6913D9D2A28 ] disk            C:\Windows\system32\drivers\disk.sys13:26:13.0718 0x0348  disk - ok13:26:13.0734 0x0348  [ 82A7C72593793FE1EADA7A305BD1567A, 75F432E4C75AE9EFF553BD860B3B250853BDDA85C17DBD9B7242D74593506A86 ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys13:26:13.0734 0x0348  dmvsc - ok13:26:13.0765 0x0348  [ A2C6DACDE258D0835DA4B5075225272C, 6AD668A1992642BA8EF1B24B9AAA4BBA32E7ACDF14FA7B4410A14F7272505EF4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll13:26:13.0765 0x0348  Dnscache - ok13:26:13.0797 0x0348  [ 9949AD2ABA168A618D46C799D6CC898C, DFAC86A0AEE83C9EFE1BEE9EC15C8CAF1D619D55AF3ACC3986057A5AC985D06A ] dot3svc         C:\Windows\System32\dot3svc.dll13:26:13.0797 0x0348  dot3svc - ok13:26:13.0797 0x0348  [ 109FC3F80BF4F4DC5A071058074F13C1, F30736F45BA1811D59E9CB1C172D8D1EA9F5A7D36DCFFBFC9E7E02448C1CF851 ] DPS             C:\Windows\system32\dps.dll13:26:13.0797 0x0348  DPS - ok13:26:13.0843 0x0348  [ 9C7C183F937951AE17C5B8B3259CF3FF, 8ED607139F15D08B4835ACF864421BA4C08C88FE90B9AAF707F5D8514D7731B1 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys13:26:13.0843 0x0348  drmkaud - ok13:26:13.0875 0x0348  [ F87F4AAAF6664906248D11D5E579A53B, F283932F68ED93891EEF00C18724359AB7057E922A3CDC8BC6F33F84D2B0BEE5 ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll13:26:13.0875 0x0348  DsmSvc - ok13:26:13.0953 0x0348  [ 2BB5627EB587FA995086C3D8C21B6D3F, 871E35BBE66180781324D38823B74263B660CF9254EE348A15421FAC5667F294 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys13:26:13.0968 0x0348  DXGKrnl - ok13:26:13.0984 0x0348  [ 58BA473DD88F5FC1932282BA683AA03E, B8A4407D3006D91BE88F9C5389AC1CACC73BEBF6F66433A1E5EB8E58E8836C12 ] Eaphost         C:\Windows\System32\eapsvc.dll13:26:13.0984 0x0348  Eaphost - ok13:26:14.0093 0x0348  [ 5AB97B3282D7D6114949D1EB5C8598E4, FB9449CC1CDC12C12AA0469BB6ACC770CB011250EDFD86E9600E754610608EFD ] ebdrv           C:\Windows\system32\drivers\evbda.sys13:26:14.0140 0x0348  ebdrv - ok13:26:14.0172 0x0348  [ F1DA34D64F2BA200D28A7451804E2FEE, 8BDF328F18F1EB58AC0E383ABA7985BA69EA9622B262CD524E3390FDE824DEEB ] EFS             C:\Windows\System32\lsass.exe13:26:14.0172 0x0348  EFS - ok13:26:14.0203 0x0348  [ 66D60BD9A4C05616ABECA2A901475098, 8111550DB03FFD72F1822F47B16F075DA92874B64F19342D7CF60B0EE648AFEF ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys13:26:14.0203 0x0348  EhStorClass - ok13:26:14.0219 0x0348  [ A61D0F543024E458C0FE32352E1978E2, BDE6BC140300EAF790F16466C28897CE0BD7D94DCED13FDE20AA4AACA0F6A4FD ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys13:26:14.0219 0x0348  EhStorTcgDrv - ok13:26:14.0219 0x0348  [ D790D058D67582DB9C84C2D33695FE6B, A5763D7F6D191EA4B290B3E92D842AC36FD46DF598472E70B46E45D8CCD2F912 ] ErrDev          C:\Windows\System32\drivers\errdev.sys13:26:14.0219 0x0348  ErrDev - ok13:26:14.0281 0x0348  [ F9E01C2D9F8BC049E04CF5DC24A5F638, CB6CCB59C77D4A59DDA846608AABEF1DFEC24C8422712AB8D59E27C13D731D2E ] EventSystem     C:\Windows\system32\es.dll13:26:14.0297 0x0348  EventSystem - ok13:26:14.0312 0x0348  [ 7A4D6FEB8C52B3FE855E4DCDF9107E03, 6B0146A4C9AD32DCDC2DEE8E8C5A29F687665458486449E0D37B151ED63B8ADC ] exfat           C:\Windows\system32\drivers\exfat.sys13:26:14.0312 0x0348  exfat - ok13:26:14.0328 0x0348  [ 60996602A7111FD2D086E803F33E4282, E62A91C90F8542990BEA4E6A5D9DD3D070F4EB23B4C13414C5DA2B0219509749 ] fastfat         C:\Windows\system32\drivers\fastfat.sys13:26:14.0328 0x0348  fastfat - ok13:26:14.0359 0x0348  [ F0E7F8382ED5E138B0DFA4CB5058BCFE, 6247C7B75F975F5AB080FFB9881EF58A6F360219F7AF2DE871F38E80CAF3B62C ] Fax             C:\Windows\system32\fxssvc.exe13:26:14.0359 0x0348  Fax - ok13:26:14.0375 0x0348  [ 73B2D11DF0B6E03A0CB0323218ACB3E4, BA9256919BAA2E0760F6A658B557FDC389ACE8F9820D1A41FD995FC5613F5AA6 ] fdc             C:\Windows\System32\drivers\fdc.sys13:26:14.0375 0x0348  fdc - ok13:26:14.0390 0x0348  [ 0828E3E7BD77C89149EAD3232BFD38DB, A6A296647A4EDBFF59124E3A9C0AB48759AA1738615ACFA5A454FF6BD3C31BA2 ] fdPHost         C:\Windows\system32\fdPHost.dll13:26:14.0390 0x0348  fdPHost - ok13:26:14.0406 0x0348  [ 872506AAB591E8908DF4461475AF92DF, 772F2D08CB95775E438822B9EA005CBA92ED4071ADAB2C0101156A7D037D4704 ] FDResPub        C:\Windows\system32\fdrespub.dll13:26:14.0406 0x0348  FDResPub - ok13:26:14.0437 0x0348  [ 0588950D93A426F97C7AAADB1A9B0458, ABCB3619BD58CAC438FC032495AE45A7B6FFDD4BD33C1B3D1BC7F9F13FCB727A ] fhsvc           C:\Windows\system32\fhsvc.dll13:26:14.0437 0x0348  fhsvc - ok13:26:14.0453 0x0348  [ 88A9EBACD1058ABB237A6B4E96E7F397, 263D25D33B679EB01D97763701347C31B2F72E28CE2C7EC8013EA77756D98BE1 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys13:26:14.0453 0x0348  FileInfo - ok13:26:14.0453 0x0348  [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02, 1D7BFB00D74A28AC13ECBA1E0036D50EE79266AC02CEDB2632466BF9DD46F211 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys13:26:14.0453 0x0348  Filetrace - ok13:26:14.0469 0x0348  [ B1D4C168FF7B8579E3745888658FFB1D, 1A5C13E902A0C788A8B995ADD2FBC3303005911C0AA3F3F4497D3016AA0EF583 ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys13:26:14.0469 0x0348  flpydisk - ok13:26:14.0484 0x0348  [ B33EC133AE4E6C1881D2302D93D2467D, 77E3A16257EA3698B3FCD947D004144E8D1EEE48EF5C82DF49B1B9B2B3C61DB2 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys13:26:14.0500 0x0348  FltMgr - ok13:26:14.0547 0x0348  [ 0BCDC0FF11B984162B0CF0FF6E9E0146, D44A3CECBA36B7A64854E244FA6B5E65047896BF9983D20B431410FBBA36697A ] FontCache       C:\Windows\system32\FntCache.dll13:26:14.0562 0x0348  FontCache - ok13:26:14.0640 0x0348  [ 0B56259F5611787222A04A8F254E51D4, F77AEC0ACBFAF9154E32223B84B613229DACCD953AEBC3E96C27570F9AB10FD0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe13:26:14.0640 0x0348  FontCache3.0.0.0 - ok13:26:14.0640 0x0348  [ A5F7873A39E4E9FAAAE59B7E9E36B705, 32036109F5A50E9F3BEF97C5B28AE8179B3A5E22517868A83CADE4671FF90DEC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys13:26:14.0640 0x0348  FsDepends - ok13:26:14.0656 0x0348  [ A6DD7D491F587F4BC13FB972977DC8E8, B86F97F17F6F443EC16DEF67CCA4EF78AFE56078D2877838A982FECB19557C87 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys13:26:14.0672 0x0348  Fs_Rec - ok13:26:14.0703 0x0348  [ C1646A95EAC515F60CDB2A7A8A013C1E, F559B83C02B17265EDE95DD497C1A94E402F07EC251FC47449F789907AFFED14 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys13:26:14.0703 0x0348  fvevol - ok13:26:14.0750 0x0348  [ A969D92973DFA895E7776B4BFE36DBB2, 7528E6983ECC59291A7A386E4E459B19D1593ABDDFFD276E2F01B0EA21693E20 ] FxPPM           C:\Windows\System32\drivers\fxppm.sys13:26:14.0750 0x0348  FxPPM - ok13:26:14.0750 0x0348  [ 52BC441E07A827EBAB70CDC7EAEDB28D, 8DECBD8E12EA52039742599CFBBF0D3B6610B57EF8D9DAEEEA33D202A478D286 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys13:26:14.0765 0x0348  gagp30kx - ok13:26:14.0781 0x0348  [ 721F8EEF5E9747F32670DEFF7FB92541, E0A8EF70753E260C2C7D93D316B5EF9589DB086FDF829BDA2958C6A09CE471A6 ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys13:26:14.0781 0x0348  gencounter - ok13:26:14.0797 0x0348  [ FC2B8B06BDBD3B6457F5A3DA9AD2410E, 4BF196E1CAC94E9265EBEB68F41C3E29F0C709ECFF9420B5B1C9C82680D5D6A8 ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys13:26:14.0797 0x0348  GPIOClx0101 - ok13:26:14.0844 0x0348  [ 5358678C6370F2ADC5291849F6503262, 841633D7A936C3889690C67E189BAD4C6B294C196FFFE5B564FCECDFE46A9E52 ] gpsvc           C:\Windows\System32\gpsvc.dll13:26:14.0875 0x0348  gpsvc - ok13:26:14.0906 0x0348  [ 58CC013EFA9893057160EDA018D8ADCE, BE8AA220CFBD90202C1B130DF349C3198E3447F3C2DC7BC5FC8816F57F78BA00 ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys13:26:14.0906 0x0348  HDAudBus - ok13:26:14.0937 0x0348  [ 3F76BBA53D65E85A7F53E7A71082082C, D1E18815BB19CD11007C4A66162C76F55D4FE6B09B34ED45969C7ECC29D394AD ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys13:26:14.0937 0x0348  HidBatt - ok13:26:14.0969 0x0348  [ 085F150D002B7F0153D3C06DDF33A143, 41847FD02608ECFE3A6B4B38CBDE8416B0EF17491868511FD704B0BCC280338E ] HidBth          C:\Windows\System32\drivers\hidbth.sys13:26:14.0969 0x0348  HidBth - ok13:26:15.0000 0x0348  [ CC4A07E51D89575CAB6F4EB590D87CD4, DFB4EAF0923EF9FF6C42EDD1EA5E4025F243C9BE2D03D5423FE8A897DC01D657 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys13:26:15.0000 0x0348  hidi2c - ok13:26:15.0000 0x0348  [ DC96F7DACB777CDEAEF9958A50BFDA06, 7CE79F32D5EE65C0178CFF56523825D3EE01095B2CE8C67634A6604A821A9086 ] HidIr           C:\Windows\System32\drivers\hidir.sys13:26:15.0000 0x0348  HidIr - ok13:26:15.0031 0x0348  [ FAC37D7B3D6354A5A5E19A45B50B4008, 2962B552A1DA545DFDEF0886582E82596FE8A3A19AAF989B025AFDA84D16D4EC ] hidserv         C:\Windows\system32\hidserv.dll13:26:15.0031 0x0348  hidserv - ok13:26:15.0047 0x0348  [ 012C354B4AB48E9A7A657DF39E3A2073, B15D0089CE509FF1CF73DFE095425C1C99FC3971622DCAAD9CAEB989A12A4FDB ] HidUsb          C:\Windows\System32\drivers\hidusb.sys13:26:15.0062 0x0348  HidUsb - ok13:26:15.0078 0x0348  [ 43F884B61A24377567CD0FEB35236334, B3BA36B527C8D6D83DE2FBCD8D503B87FD2611BF15B07A7BC138DC8BAE6A50C1 ] hkmsvc          C:\Windows\system32\kmsvc.dll13:26:15.0078 0x0348  hkmsvc - ok13:26:15.0109 0x0348  [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF, E6967F3F465C6E903221BC0FCBAE7D05FD18C0BF110D929335F5935364B3C1BC ] HomeGroupListener C:\Windows\system32\ListSvc.dll13:26:15.0125 0x0348  HomeGroupListener - ok13:26:15.0156 0x0348  [ E0D9F6FE18FA7F53ADD29AF719CE2B7E, B965DCC72625188F3B896CB447B7696F22687266EAFC5AA270E2AD53DD9F324D ] HomeGroupProvider C:\Windows\system32\provsvc.dll13:26:15.0172 0x0348  HomeGroupProvider - ok13:26:15.0187 0x0348  [ 64DB7A8D97CA53DCCF93D0A1E08342CF, 02CAB7F28D3830C482683425C60044239C6F1562556688A274CA2C237C846E76 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys13:26:15.0187 0x0348  HpSAMD - ok13:26:15.0203 0x0348  [ F4A91D985EB9D1D2717D538F3424603C, 454AD2FF3A7963B9835AEF300F6672F92D0CCF59593BA2CCC83F0EC1446BB659 ] HTTP            C:\Windows\system32\drivers\HTTP.sys13:26:15.0219 0x0348  HTTP - ok13:26:15.0234 0x0348  [ 2A98301068801700906C06649860FE94, 664394A52326289DCA0828B0041A105653F4FEF3E3DCCC3787AAE0F6FDC73A14 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys13:26:15.0234 0x0348  hwpolicy - ok13:26:15.0234 0x0348  [ DC76901D82097C9E297F20C287CB9A27, 01A412D0D8A65050BE4250A7C4B9F98A4C43FD891827761E0C830369A5F9F09C ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys13:26:15.0234 0x0348  hyperkbd - ok13:26:15.0250 0x0348  [ 716413AB3CA12DE0A7222D28C1C9352C, B82B586BD9DBD70DDA19A02504E8CB00DA53677703AB848B53387601C5BAD3D3 ] HyperVideo      C:\Windows\system32\DRIVERS\HyperVideo.sys13:26:15.0250 0x0348  HyperVideo - ok13:26:15.0250 0x0348  [ C9E9CBF73AFFBFE3E801EFB516787BA3, 1A850D614BDA6AA4195CC657702BC6242BA51B90131717743182AA160F65E72C ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys13:26:15.0250 0x0348  i8042prt - ok13:26:15.0297 0x0348  [ 459016E8A4FA6426EDB5A9456A6E5E58, 92B73EE5559ABD8783EC5AF8A2B6EBDE0D937745B4BEDBEA6DF06DD8606AE56C ] iaStorA         C:\Windows\system32\drivers\iaStorA.sys13:26:15.0297 0x0348  iaStorA - ok13:26:15.0344 0x0348  [ 0AB254994A460550258446950BB58311, BD10811912680DD3B814B7D1303785C996D892C79108110A2257E9BD0C28245C ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe13:26:15.0344 0x0348  IAStorDataMgrSvc - ok13:26:15.0359 0x0348  [ 5E394EBD26FD68AA9300332C46BEDD62, 56A5DA7CE08C07B519E55D0A46AA9D10B640349808EFE02B3278267B75B5F603 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys13:26:15.0359 0x0348  iaStorV - ok13:26:15.0578 0x0348  [ 87B67C33144BE5A68D20D9BE4D528E43, 7F8F0CF99541DD721ACAB8A709B6BA2418B2F79532BF252859012E43D83A3F5B ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys13:26:15.0703 0x0348  igfx - ok13:26:15.0719 0x0348  [ 24847A06B84339FEEDE5CABF3D27D320, 7727B1DAD0D4A1D474FBBEFCEBDF36A1F07D1AA300869AE57A24ED91BF84B6B4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys13:26:15.0719 0x0348  iirsp - ok13:26:15.0800 0x0348  [ E455C83E029121270BED73CDAC381F37, 433D525C19DBF26FAC28853C606C872D973104842B0EF1B2BF2EAC85457E2953 ] IKEEXT          C:\Windows\System32\ikeext.dll13:26:15.0816 0x0348  IKEEXT - ok13:26:15.0909 0x0348  [ C2F868881D48A568B525255F084EF063, EFB1704AE223CF886EDA5F1411C8178EDE4B5E1F7EE373E3DA89A6EA1A57D91D ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys13:26:15.0956 0x0348  IntcAzAudAddService - ok13:26:15.0988 0x0348  [ F5495B38BFB9149925F54F65AB40EFBF, 7CBB72C41E2343DACBFB967A39CA04788561EDECB289C41BC2D6A06B80882AC4 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys13:26:15.0988 0x0348  IntcDAud - ok13:26:16.0034 0x0348  [ B353F1834FCD36D77BE3F74992C147D4, BFBC42B500FC7D6D2B523F988DD54156D2B6132CBE366EB591BF45556959A8E9 ] Intel(R) Capability Licensing Service Interface c:\Program Files\Intel\iCLS Client\HeciServer.exe13:26:16.0050 0x0348  Intel(R) Capability Licensing Service Interface - ok13:26:16.0066 0x0348  [ 4F37726CF764CA18A8A84F85EF3A7F24, 6212B23917526E127CE641A11A58DA93651FFE70829C4079FE465DBDC81CF470 ] intelide        C:\Windows\system32\drivers\intelide.sys13:26:16.0066 0x0348  intelide - ok13:26:16.0097 0x0348  [ E15CDF68DD73423F15D4AC404793AF0D, E2D0136AF68D1A73EB3A63C83284B4661222CB0A4AFACCF276CB57CBD4850287 ] intelppm        C:\Windows\System32\drivers\intelppm.sys13:26:16.0097 0x0348  intelppm - ok13:26:16.0097 0x0348  [ 8FCA66234A0933D796BB780B7953BAB9, 7DD677F5EE09A8D7A75C9E475B5E6B3DCA49D1E846C7D160B839D7029B1C5B6D ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys13:26:16.0097 0x0348  IpFilterDriver - ok13:26:16.0159 0x0348  [ C217B8D2E58C57A319B16125C3D4B69C, 905BB858E1782BD08FF080A4A604CE662440A15601B178FBD30269C306C04CCF ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll13:26:16.0175 0x0348  iphlpsvc - ok13:26:16.0206 0x0348  [ A4071DA3AE419F9694BFCB267C7DB8D7, 392DEE1DA51606C29418A98D2861F115E9F67C688B4281C53E87BA73A98809FB ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys13:26:16.0206 0x0348  IPMIDRV - ok13:26:16.0222 0x0348  [ 3969B9C218DD3FAA9F4ED2FFC3651C02, 93447F124CC55FB17055126432194153E1BB8F0FD95A47608494B6834A5F7089 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys13:26:16.0222 0x0348  IPNAT - ok13:26:16.0238 0x0348  [ 25CD7C4BB2863FFC2B0B311F0AEBF77C, 4099BAA2DB4ADB93B878D71E241B7D9EB7E0EE7ED0FE2450CCB9E4718B3726EB ] IRENUM          C:\Windows\system32\drivers\irenum.sys13:26:16.0238 0x0348  IRENUM - ok13:26:16.0238 0x0348  [ D940C5BB9DC92E588533C19ABCC3D2C2, D1442854CEDE86F2C187A35851E74C873D34B772C60BC118FA1577F79C03364D ] isapnp          C:\Windows\system32\drivers\isapnp.sys13:26:16.0238 0x0348  isapnp - ok13:26:16.0269 0x0348  [ E6530FD4F61B40F338BF4355A21B9A09, FE9BF039B9901BEC260A69F7C49ACFA9881AD470DCCBA70C7EC36F518DA71702 ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys13:26:16.0269 0x0348  iScsiPrt - ok13:26:16.0347 0x0348  [ 5B7DE9D87B9D2713BDD6A53678DC2A49, E7A0D68FA2ED2730640F40FF59338BE173C8973BFC38286E6320CA332A39C204 ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe13:26:16.0347 0x0348  jhi_service - ok13:26:16.0347 0x0348  [ 8FBD94B69D6423E20ABCD59D86368B21, 218EF992095E365EC917413749856A64D55D8129D77098E24D670843233377F4 ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys13:26:16.0363 0x0348  kbdclass - ok13:26:16.0363 0x0348  [ E88C932ABDF8185A62C8F2FC7B051FB6, 67F9AF58237A11F0BF3D15AA5B32E5CE66B7AA039B999D938F7F6E63DCEA7A6E ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys13:26:16.0363 0x0348  kbdhid - ok13:26:16.0378 0x0348  [ FB6C185092E18011EF49989425C2AA87, 043524409E0A764201DD221C48B7DEEA0D161945EB37D4B88313BAB2299949DF ] kdnic           C:\Windows\system32\DRIVERS\kdnic.sys13:26:16.0378 0x0348  kdnic - ok13:26:16.0378 0x0348  [ F1DA34D64F2BA200D28A7451804E2FEE, 8BDF328F18F1EB58AC0E383ABA7985BA69EA9622B262CD524E3390FDE824DEEB ] KeyIso          C:\Windows\system32\lsass.exe13:26:16.0378 0x0348  KeyIso - ok13:26:16.0416 0x0348  [ 8B3EB6372436195B8EA8AE09A184BCE2, 9AFB7A9D6AEEBF5994C85B355155024768116E2D537C9FA169BC3F4594ECD35C ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys13:26:16.0416 0x0348  KSecDD - ok13:26:16.0447 0x0348  [ 3DD9C86EA88E8B5A51904AD87E1F2E78, F9EC9A571212117C01934CD29057EB1B3FA095F670294244AF7D9387D3F6E555 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys13:26:16.0447 0x0348  KSecPkg - ok13:26:16.0447 0x0348  [ 81492FEEBF2F26455B00EE8DBAE8A1B0, E33AA2DFB2D3BB30B02CDADA2EC290F86329DA3198327A653F39A843D86390B9 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys13:26:16.0447 0x0348  ksthunk - ok13:26:16.0478 0x0348  [ 5825DBACEDC3812B5CF8D40B997BF210, 1C2997BCC707C1029B21876E093038CE3BBF6E6694B4CCF7EEDD47172ED9A541 ] KtmRm           C:\Windows\system32\msdtckrm.dll13:26:16.0494 0x0348  KtmRm - ok13:26:16.0531 0x0348  [ 05A5B36592BB5F371B6AB020A2691E42, 384230A10EA0394E260282509B7D8EFCBFF8814611F6EFAB2DD346B97963EC55 ] LanmanServer    C:\Windows\system32\srvsvc.dll13:26:16.0547 0x0348  LanmanServer - ok13:26:16.0563 0x0348  [ 16650912BE5A94B40E0B3B4C39652B56, 908C2C9367AE0AC9AECB5D91514BB33ACD746D99F19C1A8DD6A9550E9CAD9E00 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll13:26:16.0563 0x0348  LanmanWorkstation - ok13:26:16.0578 0x0348  [ CEEFD29FC551F289810B0B9381B321DC, 900F206B487B2190D9363F28AA4BA0CD7DCFE1D005BE05A48AF74B1B81194691 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys13:26:16.0578 0x0348  lltdio - ok13:26:16.0594 0x0348  [ BCF53485E0A94722CDE3C4A93CD8EB8C, D24E1066EB102245A89A5D17D608DB9DF6B71C99F1C77E070B95EFD17D268141 ] lltdsvc         C:\Windows\System32\lltdsvc.dll13:26:16.0594 0x0348  lltdsvc - ok13:26:16.0609 0x0348  [ 5A2F7F1CBC2E631A497DAD16164E06D2, 35274FC6C386380B01B5E8F467E71A2C4E2FB2AD701554F9B1A9B036B0340142 ] lmhosts         C:\Windows\System32\lmhsvc.dll13:26:16.0609 0x0348  lmhosts - ok13:26:16.0641 0x0348  [ E70FD0D2C95F559A17321D831875593D, 57839ADA7CC6606D98B43FC2F4EC6F5E9B75A2F3EC937C11322201128A161E0D ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe13:26:16.0641 0x0348  LMS - ok13:26:16.0672 0x0348  [ 022CDD12161B063D7852B1075BF3FFF2, E21267243AF2FC208D27E67827B1264A762C99AECEDB7AD2C48A04F421A6B2F0 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys13:26:16.0672 0x0348  LSI_SAS - ok13:26:16.0672 0x0348  [ 07AD59D669B996F29F91817F0ECFA34F, 026F332F862D142BFFC9D169CCD17A35BFB6B301EEC72AA13E16369B3520919C ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys13:26:16.0672 0x0348  LSI_SAS2 - ok13:26:16.0688 0x0348  [ 216FB796AA4E252ACCE93B1BCB80B5EC, 5B1E49B5F7B9C7A778198D27F8EE500FE35DC32D40B22A3D6ED67560BEB04212 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys13:26:16.0688 0x0348  LSI_SCSI - ok13:26:16.0688 0x0348  [ 5E80530AF37102488EE980B4A92AF99F, 364E18EAD9AC22F8A306B24C6C43E58224F6BE2744EFEAA2484696B8D9880851 ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys13:26:16.0688 0x0348  LSI_SSS - ok13:26:16.0722 0x0348  [ 1DC9B701F8EB7D67774035AC9C3104F6, 77371267CDA605F78674BF8FA14B134B22299CD96EADA60A68762207595F0B46 ] LSM             C:\Windows\System32\lsm.dll13:26:16.0722 0x0348  LSM - ok13:26:16.0738 0x0348  [ 2BDC5D711FA61307CE6190D47C956368, 6BCDC6CBB9783F1ABE8957BDA94AF977DFB2A310BB6D19085EFC8609C97FD180 ] luafv           C:\Windows\system32\drivers\luafv.sys13:26:16.0738 0x0348  luafv - ok13:26:16.0784 0x0348  [ 5C3669B71657F22E67A1D4BD49D2CBE7, 7CAE59AA6CA9CBBD70BBD707A155FB169BF3F71096275BF7C0F415B6A092C671 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys13:26:16.0784 0x0348  MBAMProtector - ok13:26:16.0847 0x0348  [ 6D8A2EE4244630B290A837E79C0F37A1, 6783BBC0BDC93E4D6D43531A1AD0DF5CD26C3BBFA6384927C5CF65AD97FB04AD ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe13:26:16.0878 0x0348  MBAMScheduler - ok13:26:16.0909 0x0348  [ 09D4503CBB6ADB3A54E7C7A75090B728, 6139EA3338FD64205481EDEC813A44F8D395FDA7B67AA431DA61F3631C3EDAE6 ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe13:26:16.0925 0x0348  MBAMService - ok13:26:16.0959 0x0348  [ 26C43960C99EE861A5D0EDC4DCF3B1C3, 6238FB8E785652040CCE3E7044EA52066CE1BF173A1467474D64A3AB214B6BCD ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys13:26:16.0959 0x0348  MBAMSwissArmy - ok13:26:16.0975 0x0348  [ D1F2D4DF0A5D3B700794E26356A55B44, E8A06F85BAAC221026E3213947D59DF13DE8E17FBDD2BC68B6B921D74C632612 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys13:26:16.0975 0x0348  MBAMWebAccessControl - ok13:26:16.0991 0x0348  [ 9B0D829C3BE4E7472DB9DD2B79908E3C, ACED5806FFF39E84007B5A3DCB16315329DC53007F46B1BEEDC391CC659F7DD3 ] megasas         C:\Windows\system32\drivers\megasas.sys13:26:17.0006 0x0348  megasas - ok13:26:17.0022 0x0348  [ ECC3F54C7AFC318271C4F0B4606D8DB0, FD1ACB18B8C912C7A57DABCD5460800DD0721A82E09C8D79C47B3392D61CBEA6 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys13:26:17.0022 0x0348  MegaSR - ok13:26:17.0053 0x0348  [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64          C:\Windows\System32\drivers\HECIx64.sys13:26:17.0053 0x0348  MEIx64 - ok13:26:17.0084 0x0348  [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] MMCSS           C:\Windows\system32\mmcss.dll13:26:17.0084 0x0348  MMCSS - ok13:26:17.0100 0x0348  [ 780098AD5DA8A4822E2563984C85EF7B, 29312970774E944B5ED388316CF3D350DCABF721F9695737B0AC56BE878B0446 ] Modem           C:\Windows\system32\drivers\modem.sys13:26:17.0100 0x0348  Modem - ok13:26:17.0116 0x0348  [ EA8EAD3F5B762F889CC7F3966625B48B, B701A42E5E08B7BC6601560446146803182E5DC631AB73E9408F19CB6432F121 ] monitor         C:\Windows\System32\drivers\monitor.sys13:26:17.0116 0x0348  monitor - ok13:26:17.0131 0x0348  [ 618446B98C79776654340CE27C73485E, EFE7169FDD545933B5949DA2D09266971C0C3E6894E7BD8AFE29E41567C72B16 ] mouclass        C:\Windows\System32\drivers\mouclass.sys13:26:17.0131 0x0348  mouclass - ok13:26:17.0147 0x0348  [ C0ADEBED913295803B579ED288936CBB, 58F71541166D1DA07C18FBD27458D55E3F8AD7291CB7496B3A2F01372A5B0CAE ] mouhid          C:\Windows\System32\drivers\mouhid.sys13:26:17.0147 0x0348  mouhid - ok13:26:17.0178 0x0348  [ E7E9DBFDD3F25ED0C05B99AE9FA18BDE, 6D0204BA271FD3262DAE6E6BF9C12C0D49E3C9AF40EB1E072BD5CA5E2B8598D5 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys13:26:17.0178 0x0348  mountmgr - ok13:26:17.0225 0x0348  [ 6ACCF2E8210880D7005C608AFDB5301C, D00122C928C5818A24E6C11183F79C253CFB6576AD54DC92AEEFC630ABBDE655 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe13:26:17.0225 0x0348  MozillaMaintenance - ok13:26:17.0241 0x0348  [ 4CCBBD4944777CA100B9A6C2F149A46F, 7FC172FAF8266BFBBBBAD94FD67EA3C1872F5927DC3900A9A54DB2DFE34E7415 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys13:26:17.0241 0x0348  mpsdrv - ok13:26:17.0288 0x0348  [ 9DE3341BD4E14BC5FADFCAD3019F2D0D, 37E0531EADABC6D4BCC496826651D4D14CF0D10156FF13C11BDE466084B44FF4 ] MpsSvc          C:\Windows\system32\mpssvc.dll13:26:17.0288 0x0348  MpsSvc - ok13:26:17.0319 0x0348  [ 3D70147F55F1EC84EB9139ED7FFE48BC, 12429C2FDDDA13815F0E18F9009011AA5360955759A23A38175543F480CB92EF ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys13:26:17.0319 0x0348  MRxDAV - ok13:26:17.0366 0x0348  [ 14EE56050E1637926F5CFA65B1F4209B, C654280B4BB461898B43DF350B5BB76C2FDEBD6B49A19D08B2F28D92E2FA3D0D ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys13:26:17.0381 0x0348  mrxsmb - ok13:26:17.0397 0x0348  [ 06D5F2FA3C61E8EA91648EA8E9F99FD3, C665B7896501D42C73955F4EAF4FA3C6B2C9286957D6023C235AFBF9BFB761C6 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys13:26:17.0413 0x0348  mrxsmb10 - ok13:26:17.0428 0x0348  [ 0AA400AB21745F1153ECE75E0186509A, E26696A00008BB8D88ABED6F379FFFAE21ACE9AA7108D9E89A7D99CAF2F23FEF ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys13:26:17.0428 0x0348  mrxsmb20 - ok

jackydcr · October 21, 2014

13:26:17.0444 0x0348 [ 98487487D6B3797CA927E9D7B030AE13, 05840AF0DD2E3CB596DA768DBD0728B52210EC05B55AB5921E697AD8956938DD ] MsBridge C:\Windows\system32\DRIVERS\bridge.sys

13:26:17.0444 0x0348 MsBridge - ok

13:26:17.0475 0x0348 [ 4A07458EB4F17573BD39F22029A991C1, 74D7A1882EA4D19B8F090C2813489E5D3F759BF4AF2D88AE852EC6510C405B5E ] MSDTC C:\Windows\System32\msdtc.exe

13:26:17.0475 0x0348 MSDTC - ok

13:26:17.0475 0x0348 [ 3886F1F2A4D2900ABAA7E4486BEEE6A2, ECCA22985838A914EDC866C491DEB64B9FF5110EFA9BEE541F634AC5EC3081F9 ] Msfs C:\Windows\system32\drivers\Msfs.sys

13:26:17.0475 0x0348 Msfs - ok

13:26:17.0506 0x0348 [ C32A7A39B960A42BA9D4FBE47213CA03, 4DA48587138972DA5E95AEDBBBE73BA8CCADC8172C6654427ABEAC8047B27E95 ] msgpiowin32 C:\Windows\System32\drivers\msgpiowin32.sys

13:26:17.0506 0x0348 msgpiowin32 - ok

13:26:17.0522 0x0348 [ D3857A767B91A061B408CCAB02DA4F40, A4D780772086AD8717EE6DC2B6189F796939FB5E5AA08FD9D1984101998FBECF ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys

13:26:17.0522 0x0348 mshidkmdf - ok

13:26:17.0522 0x0348 [ 839B48910FB1E887635C48F3EC11A05E, F8CFD99911500CC1B6A90C8E2A1697BD5A6E5776A62A62FE5B342FE204C936B1 ] mshidumdf C:\Windows\System32\drivers\mshidumdf.sys

13:26:17.0522 0x0348 mshidumdf - ok

13:26:17.0538 0x0348 [ 55C0DB741E3AB7463242B185B1C2997C, D2E2A5B48A64EA0EC2A6566C08E65A38D11CEA64BCA7B57793BA0D009E4D974A ] msisadrv C:\Windows\system32\drivers\msisadrv.sys

13:26:17.0538 0x0348 msisadrv - ok

13:26:17.0538 0x0348 [ 216C6B035A4BA5560E1255BD8E5BB89F, A14E038604B9A5506DB145A4D9F51E2751AC825240D2744924F39C332B5DE00B ] MSiSCSI C:\Windows\system32\iscsiexe.dll

13:26:17.0553 0x0348 MSiSCSI - ok

13:26:17.0553 0x0348 msiserver - ok

13:26:17.0569 0x0348 [ 509809566E49F4411055864EA8D437CD, 70F37BF9C759E8BCA1C6AC8FB9805950925E1C648ED37E8561A0F7A407DFDC28 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys

13:26:17.0569 0x0348 MSKSSRV - ok

13:26:17.0569 0x0348 [ 63145201D6458E4958E572E7D6FC2604, EDD4A8A3BBE94B983554B1117734E66A2647B867269C5F0567C47EDE6F3FACCB ] MsLldp C:\Windows\system32\DRIVERS\mslldp.sys

13:26:17.0569 0x0348 MsLldp - ok

13:26:17.0569 0x0348 [ 99D526E803DB6D7FF290FD98B6204641, 4AFAA3B1186621AEAD19E12D3DBE104DD8FCD5C106F9EC3ADA4AD1BC7093E61F ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys

13:26:17.0569 0x0348 MSPCLOCK - ok

13:26:17.0585 0x0348 [ 06FA77C3E2A491ADCD704C5E73006269, 465A7EE5387E6C11398A554F73437278F5BF110356E7F49F315905C1F2459278 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys

13:26:17.0585 0x0348 MSPQM - ok

13:26:17.0585 0x0348 [ E134EC4DE11CF78CB01432D180710D84, BB111F97AEEFDCA5866B157E9957599CD7A4952B5BCCA0B0BCA9EDFCD17E61FE ] MsRPC C:\Windows\system32\drivers\MsRPC.sys

13:26:17.0600 0x0348 MsRPC - ok

13:26:17.0600 0x0348 [ B5AECF12F09DEE97C9FCAA5BA016CE1E, F5305C4CE6C93A3A3481BD13BE0C23FE26571E11029ACFFE75FB78913681FCFC ] mssmbios C:\Windows\System32\drivers\mssmbios.sys

13:26:17.0600 0x0348 mssmbios - ok

13:26:17.0600 0x0348 [ 72D66A05E0F99F2528F6C6204FD22AA1, B14D433BC5795F1DC4C672302285E665DC012693E75574F60664AAD8874DE562 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys

13:26:17.0600 0x0348 MSTEE - ok

13:26:17.0616 0x0348 [ 8AAAE399FC255FA105D4158CBA289001, 2F55C02605B4A3406B289FF9D46C76260B9138E3DE96AFAEA0E0522E5A2A746C ] MTConfig C:\Windows\System32\drivers\MTConfig.sys

13:26:17.0616 0x0348 MTConfig - ok

13:26:17.0616 0x0348 [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A, 00D33A4AB3E7C5F65F59C63F8E2FD27EF38D5484595F785D5632E9414E29352C ] Mup C:\Windows\system32\Drivers\mup.sys

13:26:17.0616 0x0348 Mup - ok

13:26:17.0631 0x0348 [ 3A1E095277BBD406CEA8EA6B76950664, 47838F307A6354E77C19A7B1F3F3E22726EF60403B611F358AD6FFE81D7214E7 ] mvumis C:\Windows\system32\drivers\mvumis.sys

13:26:17.0647 0x0348 mvumis - ok

13:26:17.0678 0x0348 [ 4B18840511D720BA118D3017E8165875, 724458A69269A5AE57E8DAB74FF3C198A79B6F7A9602BF38A70B4A40543ED167 ] napagent C:\Windows\system32\qagentRT.dll

13:26:17.0678 0x0348 napagent - ok

13:26:17.0694 0x0348 [ 43D7388A90A4C6EA346A4D6FF0377479, DFDCFA448B49C8A577056070AF516F08CD2E452706A3CF9173195ABA4256F35D ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys

13:26:17.0710 0x0348 NativeWifiP - ok

13:26:17.0725 0x0348 [ 6A0C3996DA7DAE6D6939676D786EEEC4, 6E8A4C6234FD3040BC889E92016A4D5AC7BCAF5059521E50C733966163A546A0 ] NcaSvc C:\Windows\System32\ncasvc.dll

13:26:17.0725 0x0348 NcaSvc - ok

13:26:17.0725 0x0348 [ C982FE4CC91DECE2259F494FCEB4030F, 4C285407E6F9FBBA92180F4063AEFB736ED142D802F0151002F0CC20AB7BB4E5 ] NcdAutoSetup C:\Windows\System32\NcdAutoSetup.dll

13:26:17.0725 0x0348 NcdAutoSetup - ok

13:26:17.0772 0x0348 [ A10E176F3B2BF83EDE7B5C4658C93B66, 42F2FAEB4A29BBC6727D7E159D3E7E2E66D33785E5C98496EEB44D281601A23E ] NDIS C:\Windows\system32\drivers\ndis.sys

13:26:17.0788 0x0348 NDIS - ok

13:26:17.0788 0x0348 [ 39C8A1D9D46F5E83A016BCAB72455284, 80DBED610E0818C2C7122FBC5BC8C15BCE981538AE48DC48F464A86389AF3F68 ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys

13:26:17.0788 0x0348 NdisCap - ok

13:26:17.0788 0x0348 [ 762941932B7E4C588E48A577BA9D6440, 71FA1870E398CB848D8294FEF6C60E0499CAB9A16EC3F487564C41072590E4F3 ] NdisImPlatform C:\Windows\system32\DRIVERS\NdisImPlatform.sys

13:26:17.0788 0x0348 NdisImPlatform - ok

13:26:17.0819 0x0348 [ 7A6F8A6D0E01432EBA294EF29CDD0FA7, D902AE15194A9F8A2198914FC76184FE7E2B589747275952A04A52853128FDB8 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys

13:26:17.0819 0x0348 NdisTapi - ok

13:26:17.0819 0x0348 [ 79AB68BB3FFF974AD4F41FA559F4EC67, 1745EC6520B48E325C56D98A1F4DB9CE135FE3E097B3D66E6598791132CAD7BD ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys

13:26:17.0819 0x0348 Ndisuio - ok

13:26:17.0835 0x0348 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys

13:26:17.0835 0x0348 NdisWan - ok

13:26:17.0850 0x0348 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] NDISWANLEGACY C:\Windows\system32\DRIVERS\ndiswan.sys

13:26:17.0850 0x0348 NDISWANLEGACY - ok

13:26:17.0866 0x0348 [ 3730942D7DB2F8BB5F84542B7FF6F650, 89C9D7D7305205BDB304CE6DA7D1A57EDE86A9D77429698802A39D75EB78CAAB ] NDProxy C:\Windows\system32\drivers\NDProxy.sys

13:26:17.0866 0x0348 NDProxy - ok

13:26:17.0866 0x0348 [ D3F60A4345FCA9C1BE68AD7D0D6DE770, 214AF09F4B021C2F8655FBC8AC8C801E89CD9115CDE690FAEBDA69D63D660EDD ] Ndu C:\Windows\system32\drivers\Ndu.sys

13:26:17.0866 0x0348 Ndu - ok

13:26:17.0881 0x0348 [ 7C203A76394F9AE68F69EEE5F9612C4A, 2222654915913BDC9367A2075714906A10CF22C047A7494CD59CB71834ED1B62 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys

13:26:17.0881 0x0348 NetBIOS - ok

13:26:17.0881 0x0348 [ 7CEC25C682D319D484630B3952C31A11, 025C46B367E0570E9E3F9DF1564C3E47B1524E9E9A180BBDF0E9C684838F5E42 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys

13:26:17.0897 0x0348 NetBT - ok

13:26:17.0928 0x0348 [ F1DA34D64F2BA200D28A7451804E2FEE, 8BDF328F18F1EB58AC0E383ABA7985BA69EA9622B262CD524E3390FDE824DEEB ] Netlogon C:\Windows\system32\lsass.exe

13:26:17.0928 0x0348 Netlogon - ok

13:26:17.0944 0x0348 [ 89519D29CBEC2121CA65CC29C4D345E0, F3BA7BCAFEC8DD8B29837458D1B2B1DEE748AEAAAE0575FD3AAE65CFC72A04CD ] Netman C:\Windows\System32\netman.dll

13:26:17.0944 0x0348 Netman - ok

13:26:17.0975 0x0348 [ 79FA9393C67EBBF92A56923592CF7A7C, A8AB8A6346B97B68810CC632F425085BE9E63ACAED0F119A7BFD03F2DA4AA5F6 ] netprofm C:\Windows\System32\netprofmsvc.dll

13:26:17.0975 0x0348 netprofm - ok

13:26:18.0022 0x0348 [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

13:26:18.0022 0x0348 NetTcpPortSharing - ok

13:26:18.0053 0x0348 [ 12DD2800E4EEA37DC9AE256AD62423B4, 34740469EEA8740CBACD881CB232C9ABB9AB180DE5F45336BC6DBE154259F29B ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys

13:26:18.0053 0x0348 nfrd960 - ok

13:26:18.0085 0x0348 [ 80ABCD4C2DE9FD832477303AE0CA3BE5, 98F3958E650CEB1006D92980503E1B176D2CA55D2A6742C1C27CDE829D137DA9 ] NlaSvc C:\Windows\System32\nlasvc.dll

13:26:18.0085 0x0348 NlaSvc - ok

13:26:18.0100 0x0348 [ 17E19A742FB30C002F8B43575451DBE1, 59D226A4A5B5281C399BE96C694915E38EEAF335D31F346B0C65D8F469D7C9C3 ] Npfs C:\Windows\system32\drivers\Npfs.sys

13:26:18.0100 0x0348 Npfs - ok

13:26:18.0116 0x0348 [ 8ED299C30792544264E558BEA79F0947, 8A03FDA9AADB79ECBCBCDC988B7D8CF0672689C9DF673A2ECFE0D2D88A9C6A6B ] npsvctrig C:\Windows\System32\drivers\npsvctrig.sys

13:26:18.0116 0x0348 npsvctrig - ok

13:26:18.0131 0x0348 [ 832B5FDF0B5577713FD7F2465FCD0ACE, 4A551CDBACED47DD781EC59F8B59A13D66EFD85DCF636BCFCBACFE5972A78E93 ] nsi C:\Windows\system32\nsisvc.dll

13:26:18.0131 0x0348 nsi - ok

13:26:18.0131 0x0348 [ 689B3B1E95C70ABF7AFF29F9406EF1E0, 8B62D8AE53E1B3218158FADC0075682AB06D18998CF5DE82C920A9CD91C0652F ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys

13:26:18.0131 0x0348 nsiproxy - ok

13:26:18.0210 0x0348 [ 7BE3EDFFA3216F989A6BDCB14795DD08, 19A2D0120C46CA9BCFBC16DC3E65687ACDDCBA33B79128188652BA2AFAA2EE2F ] Ntfs C:\Windows\system32\drivers\Ntfs.sys

13:26:18.0241 0x0348 Ntfs - ok

13:26:18.0241 0x0348 [ 4163ADE07DB51843AE31F65B94F5398D, 4349E7EF1EE1E71E1F436BA42F5B58871D82B987D513BA2D6E1CEB8A21BD1B20 ] Null C:\Windows\system32\drivers\Null.sys

13:26:18.0256 0x0348 Null - ok

13:26:18.0272 0x0348 [ D6D34118263412D3AAA8348A9572B7F2, 66106A25BC5A4CA7697A23ED67CEDB5C0BF678EA70FD967A405D2DF76F4CA3A4 ] nvraid C:\Windows\system32\drivers\nvraid.sys

13:26:18.0272 0x0348 nvraid - ok

13:26:18.0272 0x0348 [ 27AFC428D1D32ABD04A86763A4EDDEA9, 0920866013A8C8CFEE00E6AECDD41736F5501C49837E2D785998734F087F6B98 ] nvstor C:\Windows\system32\drivers\nvstor.sys

13:26:18.0272 0x0348 nvstor - ok

13:26:18.0288 0x0348 [ 051CFB5107BAAE510419BDC41F8C4036, 9990906F17A3886EF301D2AA6556263B52A1C0554C6BD18331AF44ECECAEE4B5 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys

13:26:18.0288 0x0348 nv_agp - ok

13:26:18.0303 0x0348 [ AB76700D764A342D7475FB8F47CAB18C, ECDF705D3E69EF6E7044C98A462A7281D0E7D0D85769C0815555D934B0B69C8D ] p2pimsvc C:\Windows\system32\pnrpsvc.dll

13:26:18.0303 0x0348 p2pimsvc - ok

13:26:18.0335 0x0348 [ 4319FD931DCD796435ECB5DB4A04FBA5, 20185B2F359EEC202B37019A4E4F5B914ADCF78B97AF0CBD91EECED2259FC6DE ] p2psvc C:\Windows\system32\p2psvc.dll

13:26:18.0335 0x0348 p2psvc - ok

13:26:18.0350 0x0348 [ 4563DAF8C6A740AD7F501E219BD10766, 7A1212DDAE2D66A9C2041262796904E36036CDC4C5B75C2F66B8DF9D89F7C25D ] Parport C:\Windows\System32\drivers\parport.sys

13:26:18.0350 0x0348 Parport - ok

13:26:18.0381 0x0348 [ D6ACCF9F2EEEEA711C14EFD976E573F3, 60D2A81832A8D24F91C3EF134440D5026354917F59462BACBCE7A01D84767D91 ] partmgr C:\Windows\system32\drivers\partmgr.sys

13:26:18.0381 0x0348 partmgr - ok

13:26:18.0413 0x0348 [ 4811D9EC53649105A5A8BEA661B0F936, C77907E03D0561500FCFEAFAC323E9679E66297329901A0CA2BD7E919419A8E8 ] PcaSvc C:\Windows\System32\pcasvc.dll

13:26:18.0413 0x0348 PcaSvc - ok

13:26:18.0428 0x0348 [ 4A003E8F718C1E6A2050CA98CD53E3E2, BCC3BE1EC3FA4967353371D85094D096940A7B5944A6FFCA31E8FBE83D92CC6C ] pci C:\Windows\system32\drivers\pci.sys

13:26:18.0428 0x0348 pci - ok

13:26:18.0444 0x0348 [ F9908D274D458220F91E89B54D78D837, 1E89ABFA6B375383E0297CEE5AF66E37F90E16DD21ABA5C91777A86CDF013B4D ] pciide C:\Windows\system32\drivers\pciide.sys

13:26:18.0444 0x0348 pciide - ok

13:26:18.0461 0x0348 [ 84D19CB6102627932DCB5DFDF89FE269, 2F9C47E076645B35877D9ACA77968EFFCDA8794D76265CD9A4AAA239C4B33C5F ] pcmcia C:\Windows\system32\drivers\pcmcia.sys

13:26:18.0461 0x0348 pcmcia - ok

13:26:18.0468 0x0348 [ CEBBAD5391C2644560C55628A40BFD27, 8AAA6EBD8D89FC91AECCCF1452F53C5650A1A17027FF4E64D224371404CE4C8B ] pcw C:\Windows\system32\drivers\pcw.sys

13:26:18.0468 0x0348 pcw - ok

13:26:18.0484 0x0348 [ 0698DEDEAD6A00AD0D468C687D830FBF, B9DCA1A61F2EF80DB26380F390F2E9A17114D33129D61CF465B949B6A7916CAA ] pdc C:\Windows\system32\drivers\pdc.sys

13:26:18.0484 0x0348 pdc - ok

13:26:18.0515 0x0348 [ 61FE70659CD43E07F94DA4DC31DEC493, 3739B6670B440173FD81DE3D47B0B90FAF296802AD4F57C05BF5CF191BF16022 ] PEAUTH C:\Windows\system32\drivers\peauth.sys

13:26:18.0515 0x0348 PEAUTH - ok

13:26:18.0562 0x0348 [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A, 459CF99D5243C4ACAA38C7B426ADC52F1044C759D06A925D475DF6213AEB85CD ] PerfHost C:\Windows\SysWow64\perfhost.exe

13:26:18.0562 0x0348 PerfHost - ok

13:26:18.0625 0x0348 [ 6E84BFF58F7643499277F29DFA2F8C8D, 401CCF137F35D9690C7B56B2BFEDB2DB72709EBE38626D787904B67640EF6F14 ] pla C:\Windows\system32\pla.dll

13:26:18.0640 0x0348 pla - ok

13:26:18.0656 0x0348 [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] PlugPlay C:\Windows\system32\umpnpmgr.dll

13:26:18.0671 0x0348 PlugPlay - ok

13:26:18.0671 0x0348 [ 8E2414E818C26C4A9C70CB2B8567F04F, A16B22AE143BA070C562FBE5DEF32F7E228F50B302B66E46B46C44C0F50A4461 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll

13:26:18.0687 0x0348 PNRPAutoReg - ok

13:26:18.0687 0x0348 [ AB76700D764A342D7475FB8F47CAB18C, ECDF705D3E69EF6E7044C98A462A7281D0E7D0D85769C0815555D934B0B69C8D ] PNRPsvc C:\Windows\system32\pnrpsvc.dll

13:26:18.0703 0x0348 PNRPsvc - ok

13:26:18.0718 0x0348 [ 520D48ECB54A33821C95EE496A4235AF, 3C7984E480F134E303E6AD03A3837515F3E03A4727F1AD184BD1D8C71D68FFEF ] Point64 C:\Windows\System32\drivers\point64.sys

13:26:18.0734 0x0348 Point64 - ok

13:26:18.0765 0x0348 [ 0108C8E5176D590F242701EF5A62CC26, 3A72F5D4402663B7445F6B3C55F01E83A619B6192F7D3CC2DE3C57F9F50D5A2D ] PolicyAgent C:\Windows\System32\ipsecsvc.dll

13:26:18.0781 0x0348 PolicyAgent - ok

13:26:18.0796 0x0348 [ F1E067F56373F11EA4B785CAE823740A, 69BD30E64DA17595FF29C9C9FF9AD4F2F4BE29B688FBAC9DABB2FA9D13A47FF0 ] Power C:\Windows\system32\umpo.dll

13:26:18.0796 0x0348 Power - ok

13:26:18.0828 0x0348 [ 362D47E5B4D67270DE4B8606036F4ADD, 716E229C68D91AEA5B5629F60133D5CBDC0C95ABA54D9DC6264E923CAF4DC6C0 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys

13:26:18.0828 0x0348 PptpMiniport - ok

13:26:18.0968 0x0348 [ EE553F62E81D7F7F3718DB960A1EF2C0, 84A8C79B4F51D606F567A038280007F278D57BE06AB0F060E4D43AC1347AB459 ] PrintNotify C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll

13:26:19.0015 0x0348 PrintNotify - ok

13:26:19.0046 0x0348 [ DD979EB6A7212F60E4AFBE96EDC7AE6D, BC681D64C5B8F08FD4613D71111853FCD5B05E4BD127D2C6258BAED7627105BE ] Processor C:\Windows\System32\drivers\processr.sys

13:26:19.0046 0x0348 Processor - ok

13:26:19.0078 0x0348 [ 429E8502AD2227CF88F8840FC5BD590D, A186DA46C083580ACEDE9C7E3156865034302CD803140EEEC8E1DE16DA4BC99B ] ProfSvc C:\Windows\system32\profsvc.dll

13:26:19.0078 0x0348 ProfSvc - ok

13:26:19.0093 0x0348 [ EB8034147D4820CD31BFCB11A2A652DF, B10B5E16B7A05D2DB2D5D1945B6146DE15EEDE2C778772A59F104706B5145E46 ] Psched C:\Windows\system32\DRIVERS\pacer.sys

13:26:19.0093 0x0348 Psched - ok

13:26:19.0125 0x0348 [ 0AFBF333B6F87A2F598EAB379AF100B8, D11F3A4D7E4463B62E2DBDE5FC61425B1FDFB07DD1A19BC001D479CA1F554510 ] QWAVE C:\Windows\system32\qwave.dll

13:26:19.0125 0x0348 QWAVE - ok

13:26:19.0140 0x0348 [ 13D47BB0CCA2FC51BD15F8E85C6A078E, EA832A9511007C9E8599C3066E1FA66BE869E8A27886D9A9AC590BD4DFBD1A15 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys

13:26:19.0140 0x0348 QWAVEdrv - ok

13:26:19.0156 0x0348 [ 873C60F8178100557740A832FCE10B5F, 400EF60CB2C98E2AFE122AF3D01CCE56A1548AF865345EE2194AB74DBCBF4C48 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys

13:26:19.0156 0x0348 RasAcd - ok

13:26:19.0171 0x0348 [ 69B93F623B130976243ECA3D84CC99CA, F27617E651EADFAEE479619AAB01CDAA98111BA63E204D5C44A1256732CB0100 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys

13:26:19.0187 0x0348 RasAgileVpn - ok

13:26:19.0187 0x0348 [ 005F6E54C4A2DA4EBF68FB0392CE8BB0, 2F3C90A04964D4D906238BD557D90F7AC05DF86FE9729C4378B39431F54DDAE3 ] RasAuto C:\Windows\System32\rasauto.dll

13:26:19.0187 0x0348 RasAuto - ok

13:26:19.0203 0x0348 [ A14D625C5AEE5FFE0F47D1A1D419FAAE, 1229B81C23340AD5B436B1FD227876EB41715CE6BD270BA367F18879D26B8F04 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys

13:26:19.0203 0x0348 Rasl2tp - ok

13:26:19.0218 0x0348 [ C923C785A2DE0B396AD6D13ACAFF2DE9, 4F950DA776FBABEC7D546983D6F3018733F61268A4BF95C01D4836AD000BD073 ] RasMan C:\Windows\System32\rasmans.dll

13:26:19.0218 0x0348 RasMan - ok

13:26:19.0234 0x0348 [ 00695B9C2DB6111064499C529E90C042, 3CD4DF4D8001C2BBF52EEEB1F0D587209878BEAC339D268892477AD840D490F1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys

13:26:19.0234 0x0348 RasPppoe - ok

13:26:19.0234 0x0348 [ A7F24D8CD1956B0A1FDCB86CC5114DE4, 30489D235362DF62B105378597168B13F4BAC74A8EDDBDA25237E3C017B69FEE ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys

13:26:19.0234 0x0348 RasSstp - ok

13:26:19.0265 0x0348 [ CA03D642ACE58E1BA54E4B383F91CD69, 39BB942603801CF11FBEA28E24F8C8D1EF2AF615D1FABF951683A015D6A6EF37 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys

13:26:19.0281 0x0348 rdbss - ok

13:26:19.0281 0x0348 [ CA7DF5EC95D8DE0DD24BE7FF97369F68, 153E6F716CA935DBCACB8FF1BB8DE5F5551CE3D18878225470E45893CA69BDB8 ] rdpbus C:\Windows\System32\drivers\rdpbus.sys

13:26:19.0281 0x0348 rdpbus - ok

13:26:19.0281 0x0348 [ B2A3AD74FF2E2FFA73AF2567108231B3, DF8CEA6215F75C634D56F6B8AE11ECCEEB5F8CBC091AC3D6D9F7DE214B00A439 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys

13:26:19.0296 0x0348 RDPDR - ok

13:26:19.0328 0x0348 [ 57F4787E4602A3FCA719C0A33137C6DA, D03AE59A184EB5D126F8EAB9D36EE406ABB8B9ED834F2D2496DDB1349FF56F89 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys

13:26:19.0328 0x0348 RdpVideoMiniport - ok

13:26:19.0343 0x0348 [ B3CB0721E81E30419CE7D837EF4EA151, EC9410818661BF77E4A19694E3A3030E1D983B36F49C72E27F92A1424E0729C2 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys

13:26:19.0343 0x0348 RDPWD - ok

13:26:19.0359 0x0348 [ 62C1F8A0685FE07E998AA296C4F697C4, C636AB2D0F139003A6AD7A12E9DC13EE4485A62F30DA59AF842FF02FE07442EE ] rdyboost C:\Windows\system32\drivers\rdyboost.sys

13:26:19.0375 0x0348 rdyboost - ok

13:26:19.0390 0x0348 [ 3663CCF243EE0C04E9F6F91ED1737273, 31D06445996F99A7F6B32004D1BA63A21C61DE125373F860BA9A9DE5278E8293 ] RemoteAccess C:\Windows\System32\mprdim.dll

13:26:19.0390 0x0348 RemoteAccess - ok

13:26:19.0421 0x0348 [ E80DD61E52EDFFF9DA1ED7260A68855B, 97909F42AE35E28B8F98C01A1D8BAD80A949CDCA0C88FB4ACF0A655DC7C10E45 ] RemoteRegistry C:\Windows\system32\regsvc.dll

13:26:19.0421 0x0348 RemoteRegistry - ok

13:26:19.0500 0x0348 [ 41DDCF1ADD1FB7DE23DCF671740DDBE6, 87ECB5C883CEFF76D126A5B4D92E069C9298FA5B62CC981870F9ECCA13C074F1 ] RichVideo C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe

13:26:19.0500 0x0348 RichVideo - ok

13:26:19.0531 0x0348 [ 73F2E030B5C24E4E41401B5F0D59E6FD, FAA8B5E3159684E0836900C6EAF63857B445F7F180169B56D5790F097EDAA38B ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll

13:26:19.0531 0x0348 RpcEptMapper - ok

13:26:19.0546 0x0348 [ 10B21284B3D964AB3DC45490E57D422E, 12D5E3A7785F21C99C5EAD14A88EB7A86A058E26C091991339356D99D196CC13 ] RpcLocator C:\Windows\system32\locator.exe

13:26:19.0562 0x0348 RpcLocator - ok

13:26:19.0593 0x0348 [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] RpcSs C:\Windows\system32\rpcss.dll

13:26:19.0625 0x0348 RpcSs - ok

13:26:19.0640 0x0348 [ E04E770DD198B9399640717145E79EBF, 2F9BECB7E4B0A522C6370FD39CFD7DFD3FB5D0A779AECCED2EE855629FA3C952 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys

13:26:19.0640 0x0348 rspndr - ok

13:26:19.0671 0x0348 [ 0E32A8922DCFD28EA00AAEC07CB3F331, 27F329C6A66DB01C291E1EDCEB7781A05658520B12FF8ECD1FBD3B86EF78DF30 ] RSUSBSTOR C:\Windows\System32\Drivers\RtsUStor.sys

13:26:19.0671 0x0348 RSUSBSTOR - ok

13:26:19.0718 0x0348 [ 7D9DA8EC6784A9EE213C676709D46BE6, 9861D1EF107F7D1590B89098EAEA7F509C1EF46999C37703F3766BAD733D8AD2 ] RTL8168 C:\Windows\system32\DRIVERS\Rt630x64.sys

13:26:19.0718 0x0348 RTL8168 - ok

13:26:19.0750 0x0348 [ 752EC7DCD2F96871A3857EEE6AFE965A, 1D0640966B9147A06ED0E733711773E6B4AB8AC6D962D5B369ECB04170D18AD8 ] s3cap C:\Windows\System32\drivers\vms3cap.sys

13:26:19.0750 0x0348 s3cap - ok

13:26:19.0781 0x0348 [ F1DA34D64F2BA200D28A7451804E2FEE, 8BDF328F18F1EB58AC0E383ABA7985BA69EA9622B262CD524E3390FDE824DEEB ] SamSs C:\Windows\system32\lsass.exe

13:26:19.0781 0x0348 SamSs - ok

13:26:19.0796 0x0348 [ 9C7B28CE0D136DB226E24DB3BC817F92, E9DE55D6432ADD08EC75F99F2B5D2BD1F553F4EE55991B1767B1578351EE0BF2 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys

13:26:19.0796 0x0348 sbp2port - ok

13:26:19.0828 0x0348 [ 14316954FCE79C9DE5A0AFF9D42C83AA, B60FB1FAC0299F9560761411711E86EDFA2F8D27B58230E2E4BB37736FAB2287 ] SCardSvr C:\Windows\System32\SCardSvr.dll

13:26:19.0828 0x0348 SCardSvr - ok

13:26:19.0843 0x0348 [ 5D7733A12756B267FCA021672B26BC9E, 01CE5B5F49914B9E099BD909A66296F3A40644AE47BA1D5EBFFB30CD33C70A4A ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys

13:26:19.0843 0x0348 scfilter - ok

13:26:19.0890 0x0348 [ 201C397A73DFEE109490F4BA1168CFC2, 74FC2A30CBF2E2197E75860A3B308CDCBEB3C28794ABED388B493505A2D84BAA ] Schedule C:\Windows\system32\schedsvc.dll

13:26:19.0906 0x0348 Schedule - ok

13:26:19.0937 0x0348 [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] SCPolicySvc C:\Windows\System32\certprop.dll

13:26:19.0937 0x0348 SCPolicySvc - ok

13:26:19.0968 0x0348 [ F58B030A0664385C707B8C1C63682041, E46AADAA2CD687B9A4B564DC5B002493C8480542588E660BC3DF89EAF9DB0427 ] sdbus C:\Windows\System32\drivers\sdbus.sys

13:26:19.0968 0x0348 sdbus - ok

13:26:20.0000 0x0348 [ 92968277ED491E4B3DDA361E3952361E, 71C50853BB2126A34C7CD014EE44D4B8B39F589E2E8E8E8F4C982E07498E3899 ] SDRSVC C:\Windows\System32\SDRSVC.dll

13:26:20.0000 0x0348 SDRSVC - ok

13:26:20.0109 0x0348 [ D777F1417D9BB9F66CD9D9C3B61F730F, 0CBD830EB9D2B0F1946131F20907793B2D68A3BCEEC3EA5416972149F73DC815 ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe

13:26:20.0125 0x0348 SDScannerService - ok

13:26:20.0156 0x0348 [ BB107AA9980B0DA4E19A3A90C3BD4460, BCB4CF0FFF1FD57302557B68044A88C8EEAAE57C2FEAE8EAD1F410F960298B6D ] sdstor C:\Windows\System32\drivers\sdstor.sys

13:26:20.0156 0x0348 sdstor - ok

13:26:20.0218 0x0348 [ 68D6C7F99BC73B88954D844FCCBEB2A0, F746861B103C8BE8EA234B9FCFBBDD2412C79FB65F2F1E0F5E6EBC0B34905FF1 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe

13:26:20.0250 0x0348 SDUpdateService - ok

13:26:20.0265 0x0348 [ 9B9B368A8FF5CAF91D7A333CF62CD2CC, A4AE7FFBBAF983BFDE15B521ED162CBC4E6FC85BCDB200C75D45878B3FFDFA68 ] SDWSCService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe

13:26:20.0265 0x0348 SDWSCService - ok

13:26:20.0281 0x0348 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys

13:26:20.0281 0x0348 secdrv - ok

13:26:20.0312 0x0348 [ CD282626738B6BC92B6E7CD0AAE95B63, 1A56567C781786C85C63E24E79186EE5C82D3EB2679061B21BA0571A3A6CB7F5 ] seclogon C:\Windows\system32\seclogon.dll

13:26:20.0312 0x0348 seclogon - ok

13:26:20.0336 0x0348 [ 9C51620998F0763039DFA6BF68E475ED, 9E496ADE7CE9A446BE8A2C2FC61B462D966778A94A4C147AABBD25C4821C2BCE ] SENS C:\Windows\System32\sens.dll

13:26:20.0336 0x0348 SENS - ok

13:26:20.0347 0x0348 [ 0D50B4B860DAB65241628D04CD33ACAE, 2AA897C3F9ED076AB9244A32745D18489B076F3ED28A35B868C472131C5B5B46 ] SensrSvc C:\Windows\system32\sensrsvc.dll

13:26:20.0362 0x0348 SensrSvc - ok

13:26:20.0362 0x0348 [ 87C46B239A7EEF30FDFDD5E9BD46130C, F36FB5B20AC58FBD31F7E636059D2D865B751E178E51A03B94ABE0BBD1AB1EC9 ] SerCx C:\Windows\system32\drivers\SerCx.sys

13:26:20.0362 0x0348 SerCx - ok

13:26:20.0378 0x0348 [ 7A1F9347C85FD55E39B8A76B3A25C5AD, 03AF3B23285278A38F4CBEAB7FD326A48FA1EC7F8D044C059CE5403C6D225639 ] Serenum C:\Windows\System32\drivers\serenum.sys

13:26:20.0378 0x0348 Serenum - ok

13:26:20.0378 0x0348 [ F640A0A218BBF857F1D04A15D7D939F6, 948C13886281FE7947E10FB7B34D5CCFE512FB632F1132B6062AC85149F79950 ] Serial C:\Windows\System32\drivers\serial.sys

13:26:20.0378 0x0348 Serial - ok

13:26:20.0378 0x0348 [ F1A5F56B2620B862CC28FF96A0A6DAAB, E5367212B2CADF3820D657CFC27CD961547E28DAB950C68E1380CF97FB68F3F4 ] sermouse C:\Windows\System32\drivers\sermouse.sys

13:26:20.0378 0x0348 sermouse - ok

13:26:20.0393 0x0348 [ CB60A60340788C8D6DE2A269D28086AB, 2D8948E59BB9B00E16D20E425F80E7B862957DBAC9A4D1484E5191FAF333B60D ] SessionEnv C:\Windows\system32\sessenv.dll

13:26:20.0409 0x0348 SessionEnv - ok

13:26:20.0409 0x0348 [ 7EE65419B29302C795714FF8073969A1, E28D89A5423E3A5062030EB2418E9435DD5D8B9D16570046E782D3FCFDA2E79A ] sfloppy C:\Windows\System32\drivers\sfloppy.sys

13:26:20.0409 0x0348 sfloppy - ok

13:26:20.0440 0x0348 [ 090AE16F79C8EAD04E6031F863DA85F3, 3F27BE46DF602B53940414A6E9FEB23B36CFFB8E9A7F41440C3315B8E27D0029 ] SharedAccess C:\Windows\System32\ipnathlp.dll

13:26:20.0456 0x0348 SharedAccess - ok

13:26:20.0472 0x0348 [ A77F3ABE13FCC698511E5DEC7ACEBD5F, 78A43FDA9F770FD8BA107605DB44BC71D8B89D7E75560DA783AA6356C1873C15 ] ShellHWDetection C:\Windows\System32\shsvcs.dll

13:26:20.0487 0x0348 ShellHWDetection - ok

13:26:20.0487 0x0348 [ 2560721D6F16D5B611C36A3A9D28C1B2, 15C30404902654ABA5DB5367FC5BD31343B12A3FC22B4BC5A26B09016447B5ED ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys

13:26:20.0487 0x0348 SiSRaid2 - ok

13:26:20.0487 0x0348 [ 3AA8FDE1DBF65BB8B88B053529554A0D, 8060D946344D043D336F4735363C23C37C91A6DB3F81E575C267B2EC2BECB0EC ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys

13:26:20.0487 0x0348 SiSRaid4 - ok

13:26:20.0534 0x0348 [ E660156A4588A84305CB772FD2C0DB21, 9492EB6578D4A689945E1FC2440EFA77D461049CDB2D00A645969A71B7DA68E1 ] SNMPTRAP C:\Windows\System32\snmptrap.exe

13:26:20.0534 0x0348 SNMPTRAP - ok

13:26:20.0565 0x0348 [ 9110193D93960E38B8692E4519C75D72, 789381B4CCC056EE431E78E2339AC9802264A1CE4B378DDA9769649664C9A7A0 ] spaceport C:\Windows\system32\drivers\spaceport.sys

13:26:20.0565 0x0348 spaceport - ok

13:26:20.0565 0x0348 [ 3D8679C8DF52EB26EB7583A4E0A29202, DCD9B69299275857712AB200C014AE820C8A9F7E53C4A335A84518FBE4BB56BB ] SpbCx C:\Windows\system32\drivers\SpbCx.sys

13:26:20.0565 0x0348 SpbCx - ok

13:26:20.0597 0x0348 [ 3F215BF2D4D8D6756298B25B579772C2, 744192D1635E5D296BFD399E870B70592202CEAF95C31C2D2B226A868D33A3FD ] Spooler C:\Windows\System32\spoolsv.exe

13:26:20.0612 0x0348 Spooler - ok

13:26:20.0737 0x0348 [ 061A977C920FBE4BF71FF47C966DDDCA, 746516396B72E4ADB05D978C819CD45FE44EE194756F6DA50121D755439CA590 ] sppsvc C:\Windows\system32\sppsvc.exe

13:26:20.0815 0x0348 sppsvc - ok

13:26:20.0847 0x0348 [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6, 61EEB1349489CB85204F1B4E398BE24EDC01FB914120C9DD0487F8EE1EDA055E ] srv C:\Windows\system32\DRIVERS\srv.sys

13:26:20.0862 0x0348 srv - ok

13:26:20.0909 0x0348 [ B56A855B23676CCE05B626C6037FD02F, 3C0DCB16A96BD6A002A4FAF1AF939AF470D95137CB745F5DAD039B5D8C956E30 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys

13:26:20.0940 0x0348 srv2 - ok

13:26:20.0972 0x0348 [ 78E9665C8DC59106D133CBEF0F0C3DE3, 380FD51EE00CEF3FFEF9BFB5E14538E084F1DDF8D8F8BCDF4EC23CB8C3A40D2F ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys

13:26:20.0972 0x0348 srvnet - ok

13:26:21.0003 0x0348 [ 7A20882D76D4A78240A5AC9F2C2EBA21, ACA05211EE542999A118BBD2CD051038A7DC8C40C4B8971DC6514BA90E90EC61 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll

13:26:21.0003 0x0348 SSDPSRV - ok

13:26:21.0018 0x0348 [ D233B16999A8E626F6004BD7814C57EC, 5BBFE5DDF1269617ABD1BDBED85A79D99BB52EA29C2BB3A8F4A1827BFAA1A747 ] SstpSvc C:\Windows\system32\sstpsvc.dll

13:26:21.0034 0x0348 SstpSvc - ok

13:26:21.0065 0x0348 [ 53432CFCC959C9D3D94B1C626129BB9F, 9864C688FA8454DEDB486A50893076F3AC0C37FDB75A7505BCC671F230F262B5 ] StartMenuService C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe

13:26:21.0065 0x0348 StartMenuService - ok

13:26:21.0097 0x0348 [ 4E85355B94CFCB67C135F6521A4895A7, AC4FC65C1E62A54B3834E7FE0A2B1ECC48A2AA563AE5BD508326EE68FFFBBEEE ] stexstor C:\Windows\system32\drivers\stexstor.sys

13:26:21.0097 0x0348 stexstor - ok

13:26:21.0128 0x0348 [ BAC8A721736AECC55A4F71523AEAB65F, B52E1303B13A961A5FC190829E55B6F28ACA409A6EEF44B358D1D210558FE1D8 ] stisvc C:\Windows\System32\wiaservc.dll

13:26:21.0143 0x0348 stisvc - ok

13:26:21.0175 0x0348 [ B240874B2CA0CD02E8CD11E140B14C57, 0FDBEE3DB644175A30065CAF020F375703ADC45A33221788C010F3111707FC25 ] storahci C:\Windows\system32\drivers\storahci.sys

13:26:21.0175 0x0348 storahci - ok

13:26:21.0190 0x0348 [ F74DBC95A57B1EE866D3732EB5F79BE2, E4FE9D5CD0A385ACB60D5D5E8D969F26C3A6BC0C08FF0838DBE9CA106229C8DE ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys

13:26:21.0190 0x0348 storflt - ok

13:26:21.0206 0x0348 [ 5337E138B49ED1F44CCBA4073BC35C20, 2B296973215E3865A56C46DC3D27F1460D96BC321558CE7A911B05B0E7BF397F ] StorSvc C:\Windows\system32\storsvc.dll

13:26:21.0206 0x0348 StorSvc - ok

13:26:21.0222 0x0348 [ 543CD3CC0E05B8D8815E0D4F040B6F59, 4B57C9534E94A0A67FC82DBD4FAECACA180BEC281FB477550A37C0A04777E09E ] storvsc C:\Windows\system32\drivers\storvsc.sys

13:26:21.0222 0x0348 storvsc - ok

13:26:21.0222 0x0348 [ 8BC1C1ED6EF9C985A3FAA6A72F41679A, 82CC77030D23013572B4A64A64B6156789F253BF56268B790093CE3D345410A0 ] svsvc C:\Windows\system32\svsvc.dll

13:26:21.0222 0x0348 svsvc - ok

13:26:21.0237 0x0348 [ 4AFD66AAE74FFB5986BC240744DC5FC9, 0C9347614E3FD3B4D3B29FA4A5DA23FF6EE4CD9A1FFC378B855B8DE61B2876CF ] swenum C:\Windows\System32\drivers\swenum.sys

13:26:21.0237 0x0348 swenum - ok

13:26:21.0253 0x0348 [ 502F9488540051F3E6C39889ECFA76BB, 22ABD681BE4CF8A1F484C6363C1334B1EF7A6C074D837B0121DE1896887B84C6 ] swprv C:\Windows\System32\swprv.dll

13:26:21.0268 0x0348 swprv - ok

13:26:21.0315 0x0348 [ A06CB9269D29EE3D0F3F5630ABB660B8, 519A01FC7D9414B26CCBC23E7FB1CEAF1C91CD173B4F4A4025F8316B7460C584 ] SysMain C:\Windows\system32\sysmain.dll

13:26:21.0331 0x0348 SysMain - ok

13:26:21.0362 0x0348 [ 6FB88606C4A71E1BFAF97D63A676C673, D72F93A482E989ACA50F9647B7AD699A4656AEAACF377BB2B8CEBB094B748852 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll

13:26:21.0362 0x0348 SystemEventsBroker - ok

13:26:21.0393 0x0348 [ A6C06C45C44AD06C70AF8899AEC15BDC, AC2CCCDBA6B94BA85A6D41B47343193D175786D4ECF71AE9C7766ADD63A1273F ] TabletInputService C:\Windows\System32\TabSvc.dll

13:26:21.0393 0x0348 TabletInputService - ok

13:26:21.0393 0x0348 [ 88B7721AB551C4325036B25A34A2BF7B, 2817CC6294542524EC373A674535F913440736BEBE81233CA91D5ECD93620B02 ] TapiSrv C:\Windows\System32\tapisrv.dll

13:26:21.0409 0x0348 TapiSrv - ok

13:26:21.0487 0x0348 [ 2AE9136724568DB4F08BC04F131CFC54, 11AA017AE39D0A63233D01A8AE33FD53D5302683E037D29B73366D6233764080 ] Tcpip C:\Windows\system32\drivers\tcpip.sys

13:26:21.0519 0x0348 Tcpip - ok

13:26:21.0597 0x0348 [ 2AE9136724568DB4F08BC04F131CFC54, 11AA017AE39D0A63233D01A8AE33FD53D5302683E037D29B73366D6233764080 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys

13:26:21.0628 0x0348 TCPIP6 - ok

13:26:21.0659 0x0348 [ 8F2A13A5DF99D72FDDE87F502A66F989, 2228C62ACDB4CBBFDD2BE705E604E0B9A8AEA7146F65F2D8B9B2A2FB49ACFAE1 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys

13:26:21.0659 0x0348 tcpipreg - ok

13:26:21.0659 0x0348 [ 73DC722CE5DF26D7638CE2446F2655C7, 9B8E6F6DEA5E0C2AEAC24A31897D2E73F86EF44F1C25FEF82D2C860353793817 ] tdx C:\Windows\system32\DRIVERS\tdx.sys

13:26:21.0659 0x0348 tdx - ok

13:26:21.0675 0x0348 [ F7C8AB5D8AFFAA318D6A21093D139BF4, 0A35052EF7DC8615783A23897358D8C579BE694363615C9563FF629E7B719991 ] terminpt C:\Windows\System32\drivers\terminpt.sys

13:26:21.0675 0x0348 terminpt - ok

13:26:21.0722 0x0348 [ 2B3D2FDF50EDABEBE0A9E6F741C81858, F0C3A1DC968C5D28EF68BE4352577B4F8D4B4FB6274268DCCCD8A5C132DEC2F9 ] TermService C:\Windows\System32\termsrv.dll

13:26:21.0722 0x0348 TermService - ok

13:26:21.0737 0x0348 [ 519A6F672FFF56B7D8EE8C730CEC8ECD, 2B36F10C0AE16A261DC0887B1050808BA1F0568F3879E4ABC3D370F08C3FADB7 ] Themes C:\Windows\system32\themeservice.dll

13:26:21.0737 0x0348 Themes - ok

13:26:21.0769 0x0348 [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] THREADORDER C:\Windows\system32\mmcss.dll

13:26:21.0769 0x0348 THREADORDER - ok

13:26:21.0784 0x0348 [ 4515B9E4140F04FB3907692DF89FCA87, F68EC56524BDA877646E987BE7414C1D622BD9FF05A5AEADCA39030FDC2B0115 ] TimeBroker C:\Windows\System32\TimeBrokerServer.dll

13:26:21.0784 0x0348 TimeBroker - ok

13:26:21.0800 0x0348 [ E94F7A7B48C7638D1F3F8089344C97B7, 276CDE59614D563A52529BCC4BFC726E5F5BE131C9C4142558A644D79328C810 ] TPM C:\Windows\system32\drivers\tpm.sys

13:26:21.0800 0x0348 TPM - ok

13:26:21.0815 0x0348 [ 8C8CF3041B27E7657ADD0EE17F6DBFCA, A6846478B9E7B0A509E5A28C6C7B66ED39F0247F9AFF01E3C3CADC0DBEF3CA00 ] TrkWks C:\Windows\System32\trkwks.dll

13:26:21.0831 0x0348 TrkWks - ok

13:26:21.0894 0x0348 [ 8ABBB5CE0C62E0A6D28F32F44B7F865C, 4C78FE2A4A25A758D5191C4EDB2A6FE691FF82E7C16C0F146DC96DAD87D4F64E ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

13:26:21.0894 0x0348 TrustedInstaller - ok

13:26:21.0925 0x0348 [ 4E7C5FB10A50435523DE0CAA37DE2BD3, D6206DF61950F2541FB754E57C4D9EF9FA0CC1EDD6F6FA4E45F02B47958493F7 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys

13:26:21.0925 0x0348 TsUsbFlt - ok

13:26:21.0925 0x0348 [ 16D684A820872EE54F6370703AC0B513, 795E20484358424CE9FA766937DD99413025A8AF967D03490392E8E02A382D0B ] TsUsbGD C:\Windows\System32\drivers\TsUsbGD.sys

13:26:21.0925 0x0348 TsUsbGD - ok

13:26:21.0940 0x0348 [ 78C9EE193AC2B4CBDBC48B620314D740, 41523E47D321BFF5778F5E453545B928C0A469C3BBA51578E74D6721D7DF9273 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys

13:26:21.0956 0x0348 tunnel - ok

13:26:21.0956 0x0348 [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A, AA7DA2207C0236F47859A4791F9D7301E7ADB50A59D831DC859ECC7CA70D3E1D ] uagp35 C:\Windows\system32\drivers\uagp35.sys

13:26:21.0956 0x0348 uagp35 - ok

13:26:21.0972 0x0348 [ 6FD6D03B7752C78712E5CFF29A305026, F09C5188AAFCF4C77B05BA1E604F9912782A9F1371F72F959288EBC2725407ED ] UASPStor C:\Windows\System32\drivers\uaspstor.sys

13:26:21.0972 0x0348 UASPStor - ok

13:26:21.0987 0x0348 [ 061BA3EE0D2BE17944990544008CF190, C9236D368EC2281B545E8C008BC2801F21A9716ED3D4DAEDB0751A5008346E81 ] UCX01000 C:\Windows\System32\drivers\ucx01000.sys

13:26:21.0987 0x0348 UCX01000 - ok

13:26:22.0019 0x0348 [ 25C50F4EDF70D0A831E0566BD181CCF2, F2F9E86FB5617C16077D2073EC0AA747F76F1EB5148BA110347A84F3C3569F83 ] udfs C:\Windows\system32\DRIVERS\udfs.sys

13:26:22.0019 0x0348 udfs - ok

13:26:22.0050 0x0348 [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D, 16DE6E0894C356A58AF12BEC2FE9B188F147DD4B16CB2414DE600CE4127F929D ] UI0Detect C:\Windows\system32\UI0Detect.exe

13:26:22.0050 0x0348 UI0Detect - ok

13:26:22.0065 0x0348 [ 07FEBCDF24FABA0D47B635D85A0FFB7A, 452C04B14681EBCE8B1B25B75A1B7CC978722B7DDE54D624E17841B14ACCF65D ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys

13:26:22.0065 0x0348 uliagpkx - ok

13:26:22.0081 0x0348 [ 02CEB3FE6152668A7BA420B93B664860, 613F27540FD1EFE2442E326F507DACD5A25691C8481937022B7E1104F3E6E9E2 ] umbus C:\Windows\System32\drivers\umbus.sys

13:26:22.0081 0x0348 umbus - ok

13:26:22.0081 0x0348 [ 991EE6B5FC41EAEF99C8AF5B92F2CA09, 30AAD7D18FF5962CEC7180359D148EED5A1BF193DDB2B34508897FC3EBA692C3 ] UmPass C:\Windows\System32\drivers\umpass.sys

13:26:22.0081 0x0348 UmPass - ok

13:26:22.0097 0x0348 [ 43FEFB040A0CC30F795FBF544169594D, F2A730C0F7C883321C378D4564120A40428D7F8E393F02C8D6A08934795A35C7 ] UmRdpService C:\Windows\System32\umrdp.dll

13:26:22.0097 0x0348 UmRdpService - ok

13:26:22.0159 0x0348 [ C485FB802F6C4A306B8F89BA087E5CA2, DE2E0F4A22D63EC54E23491962282ED3B01C7EB9941774A0C5633A776EAD499A ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

13:26:22.0175 0x0348 UNS - ok

13:26:22.0206 0x0348 [ 14D22C411854AA2560AFC94CD2D5E61F, BB376734733671C02319E6DB1800D41212694446FD65465498C92D4ECBFE7458 ] upnphost C:\Windows\System32\upnphost.dll

13:26:22.0206 0x0348 upnphost - ok

13:26:22.0237 0x0348 [ C976C4306F9AE133D6BBD47FDFC3BF92, 820413D92D6A89055A7F26523BF5CC4B668610C4A06E8B0D163FBF929B1DFA9A ] usbccgp C:\Windows\System32\drivers\usbccgp.sys

13:26:22.0237 0x0348 usbccgp - ok

13:26:22.0253 0x0348 [ 427B6DB8C05A5A977E8C3525370A2595, C67222CA9123AE12D953995326B3B582C146CEA89594B7209DB0B1F628A0118D ] usbcir C:\Windows\System32\drivers\usbcir.sys

13:26:22.0253 0x0348 usbcir - ok

13:26:22.0269 0x0348 [ B24FDEB1B18496F1B463782235AA3AF1, 3F5036F36987C8007D03DAFC3EC30615515BE96D9A1DF879BCD4EB0E66CD50B1 ] usbehci C:\Windows\System32\drivers\usbehci.sys

13:26:22.0269 0x0348 usbehci - ok

13:26:22.0300 0x0348 [ F8C2A832DF9403F5EA8080CBDBDA95FB, 50E9455465672BC13EB945BEC132D2F30BA2EB25C68928D2B4C256F2DB292A83 ] usbhub C:\Windows\System32\drivers\usbhub.sys

13:26:22.0300 0x0348 usbhub - ok

13:26:22.0347 0x0348 [ FAAB461D5AEB21EE5FC5C0DBD6648223, 187EB7AC6CDE39621C587EB1551DBC358DE2BC7C8A4265DB817C9D6F5ADE54A3 ] USBHUB3 C:\Windows\System32\drivers\UsbHub3.sys

13:26:22.0362 0x0348 USBHUB3 - ok

13:26:22.0378 0x0348 [ 325F6179009B5A7F6118951A5BA422AB, 756CB2893530485E8C3ACFF5A40F4C6EB446E72B2296E8772058E407A5E066DE ] usbohci C:\Windows\System32\drivers\usbohci.sys

13:26:22.0378 0x0348 usbohci - ok

13:26:22.0394 0x0348 [ 9FDBA6982582A6F2354144980F641E7B, 054A65412CB22C5BE970FD3A266E140110D869B614B9F9894628D553CE82C991 ] usbprint C:\Windows\System32\drivers\usbprint.sys

13:26:22.0394 0x0348 usbprint - ok

13:26:22.0425 0x0348 [ BFC7FE4AAEB61317A921871B4085EF4B, CBC3FBAEAD6C82A437CC87A97007EF807C64053AB8FA5C3233C2A0CF6FC8D019 ] USBSTOR C:\Windows\System32\drivers\USBSTOR.SYS

13:26:22.0425 0x0348 USBSTOR - ok

13:26:22.0440 0x0348 [ 1ABF657259DB57F7E5558E4DF1357C0C, 34EAF5DEA3293CFA96BA81B036305FD90ABAE05B9CB73D4F54FB236448C1978C ] usbuhci C:\Windows\System32\drivers\usbuhci.sys

13:26:22.0440 0x0348 usbuhci - ok

13:26:22.0472 0x0348 [ 8DC398D7B8E02C929A2096E74A170970, 87B3CE84D05F50C33935B28F0AFF1CB15DAA4530768BA1FB25C311609CD4B0A5 ] USBXHCI C:\Windows\System32\drivers\USBXHCI.SYS

13:26:22.0487 0x0348 USBXHCI - ok

13:26:22.0487 0x0348 [ F1DA34D64F2BA200D28A7451804E2FEE, 8BDF328F18F1EB58AC0E383ABA7985BA69EA9622B262CD524E3390FDE824DEEB ] VaultSvc C:\Windows\system32\lsass.exe

13:26:22.0503 0x0348 VaultSvc - ok

13:26:22.0503 0x0348 [ BACECBFF9C97F7627A60B0E0F1FE7EE8, DC82F767D066B93A48A090DC7146EBCCDC54B43C6CD9DF29A160E09E3A531DC8 ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys

13:26:22.0503 0x0348 vdrvroot - ok

13:26:22.0550 0x0348 [ 1B4488988E5E7512E6C5CD1255E9E973, B82C26E767A8895CFFD76C11D07D5C945C38E1BD32CC27D20A6C0FA7F6064FC5 ] vds C:\Windows\System32\vds.exe

13:26:22.0550 0x0348 vds - ok

13:26:22.0565 0x0348 [ 74FA2D4368DE6F6CE14393EDF1F342BE, C5CE4164B2C3D583A7FB8687ADEADCDB08D36A5AB1965E5FC6949AEED15881C8 ] VerifierExt C:\Windows\system32\drivers\VerifierExt.sys

13:26:22.0565 0x0348 VerifierExt - ok

13:26:22.0597 0x0348 [ 500BE6B2E49883720D0AE8BB859ED7A3, 4606B02A3E8123510676E554635EB5ECF9DC5F2B83928710C8563787C52CC102 ] vhdmp C:\Windows\System32\drivers\vhdmp.sys

13:26:22.0597 0x0348 vhdmp - ok

13:26:22.0612 0x0348 [ F5B4A14B00E89250C50982AC762DDD1D, 581CD97DD42E74A82F06BFB827DFC82618B4A8667ACA7E93C628BB0D056CE8F0 ] viaide C:\Windows\system32\drivers\viaide.sys

13:26:22.0612 0x0348 viaide - ok

13:26:22.0612 0x0348 [ 78DB50F7329F6D1311658DABFFFC8BE0, 8CB0C831608033C4BC1D2DA7FAA7D429333A3654E76A989F7AF85BFC5F086BE9 ] vmbus C:\Windows\system32\drivers\vmbus.sys

13:26:22.0612 0x0348 vmbus - ok

13:26:22.0628 0x0348 [ ECFEE2F2BA3932C7880D1A8F67D68F91, 57DCD55A518A9FBDEF72B511C643B1062C3F7BD339F4B0FC19E9D84C615B968D ] VMBusHID C:\Windows\System32\drivers\VMBusHID.sys

13:26:22.0628 0x0348 VMBusHID - ok

13:26:22.0659 0x0348 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicheartbeat C:\Windows\System32\ICSvc.dll

13:26:22.0675 0x0348 vmicheartbeat - ok

13:26:22.0675 0x0348 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmickvpexchange C:\Windows\System32\ICSvc.dll

13:26:22.0675 0x0348 vmickvpexchange - ok

13:26:22.0690 0x0348 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicrdv C:\Windows\System32\ICSvc.dll

13:26:22.0690 0x0348 vmicrdv - ok

13:26:22.0706 0x0348 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicshutdown C:\Windows\System32\ICSvc.dll

13:26:22.0706 0x0348 vmicshutdown - ok

13:26:22.0722 0x0348 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmictimesync C:\Windows\System32\ICSvc.dll

13:26:22.0722 0x0348 vmictimesync - ok

13:26:22.0722 0x0348 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicvss C:\Windows\System32\ICSvc.dll

13:26:22.0737 0x0348 vmicvss - ok

13:26:22.0737 0x0348 [ CB60FAAED8B49B812EBBF77EB87D9B18, ADA7C68D4C4981555ED48981E8B7ACBEEF5C39F902EB98782FC3DFF495FE0C33 ] volmgr C:\Windows\system32\drivers\volmgr.sys

13:26:22.0737 0x0348 volmgr - ok

13:26:22.0753 0x0348 [ A74101DA9809251BCD0E5A26BAE0F824, 15A3A7CC31A13C5882812C344D0937A8A4503D12DB07B9F7F2A8191B739CDBF7 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys

13:26:22.0753 0x0348 volmgrx - ok

13:26:22.0800 0x0348 [ 78A5BBA3819FFFC62FFEC3E2220D102D, A95797B97D576374C2CDA8A09E6C51A89BADE428AAA89D5093579C85062E5874 ] volsnap C:\Windows\system32\drivers\volsnap.sys

13:26:22.0800 0x0348 volsnap - ok

13:26:22.0815 0x0348 [ A8DA1C1B52ECEA3726DEBED4FF1B700D, 75C024EC3858DF24FB82FE105BDD1E37900D53EFE9D72F42CDDFFD0742525586 ] vpci C:\Windows\System32\drivers\vpci.sys

13:26:22.0815 0x0348 vpci - ok

13:26:22.0815 0x0348 [ 38A60CD9C009C55C6D3B5586F8E6A353, 7F7E2AE39F1A0A5245650911E310E0948BC22A18262A16FA76B44A042D66312D ] vsmraid C:\Windows\system32\drivers\vsmraid.sys

13:26:22.0831 0x0348 vsmraid - ok

13:26:22.0878 0x0348 [ D0C69E44BC1E1D4AD290FD84104623D8, 4C86760EA4BD2A64FFD42D89284EC3E5048CB2F0F6F3B80D017B41C0D2456A90 ] VSS C:\Windows\system32\vssvc.exe

13:26:22.0894 0x0348 VSS - ok

13:26:22.0909 0x0348 [ A0F6FE0FC2F647C22BBFD6BD4249DBCC, AC2F3C70EDCA0AFBB2606267DFE6D3E8E7B0772140153BAD6B0A9EDE6A1D2F29 ] VSTXRAID C:\Windows\system32\drivers\vstxraid.sys

13:26:22.0909 0x0348 VSTXRAID - ok

13:26:22.0940 0x0348 [ 62460A45435A26A334907E3F2EA45611, FEF86E05117CC0AAB8211CA1542776EB620BD4699BD590D91F16621ED35B9824 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys

13:26:22.0940 0x0348 vwifibus - ok

13:26:22.0940 0x0348 [ 095E943D27025E4D588AF0A72CC2318F, 3CE406A202F93EF8C4BC7317621A672670D734C69166393CA7256D5E5E667041 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys

13:26:22.0940 0x0348 vwififlt - ok

13:26:22.0940 0x0348 [ 73FA1A41A97A5C34ADC03B3577FF1A86, CBA4BC0DA837C163587BBB4BF2AC1549C72440307C984D3CDF8995023718136C ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys

13:26:22.0940 0x0348 vwifimp - ok

13:26:23.0019 0x0348 [ F690B6EEAA94576727B24376D7ED3601, A61EE96024C8FC4058481DFB1E7F0AD746565368672FA3B6BA8F9E23D0F47E4C ] W32Time C:\Windows\system32\w32time.dll

13:26:23.0019 0x0348 W32Time - ok

13:26:23.0034 0x0348 [ 6B806E893714019969E2B50D7EF6A4D9, 38FE2B01082DC4C2A0C11A292016A727F48C3DF1293DC3A0216B2254A452263F ] WacomPen C:\Windows\System32\drivers\wacompen.sys

13:26:23.0034 0x0348 WacomPen - ok

13:26:23.0050 0x0348 [ 61F6972FF9AC9A8D0B4D62076DC30051, 5A028036461534CA53CB2D6C1D720783D408A9F17FD77AB1ECDD75FBAD9F2381 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys

13:26:23.0050 0x0348 Wanarp - ok

13:26:23.0050 0x0348 [ 61F6972FF9AC9A8D0B4D62076DC30051, 5A028036461534CA53CB2D6C1D720783D408A9F17FD77AB1ECDD75FBAD9F2381 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys

13:26:23.0050 0x0348 Wanarpv6 - ok

13:26:23.0097 0x0348 [ 42DF22F8C448E7CD219F6D63743505E2, 063F4280C7BD20CE1360436B76A17DFE17FF611F75337A47373D098CC6C263BF ] wbengine C:\Windows\system32\wbengine.exe

13:26:23.0128 0x0348 wbengine - ok

13:26:23.0144 0x0348 [ 31D37B2F6069C631EF0557D322924812, 6E18A1060F3C8F4BF220E286C44327866A8F9109E74928AA2D8C2DA9C452038B ] WbioSrvc C:\Windows\System32\wbiosrvc.dll

13:26:23.0144 0x0348 WbioSrvc - ok

13:26:23.0159 0x0348 [ AF1349386D4C6786EF4E34FACEF15042, 6B33778409BC54C1955B92508ADDEBAFD629141961B71C94A91DC4CFE8391A13 ] Wcmsvc C:\Windows\System32\wcmsvc.dll

13:26:23.0159 0x0348 Wcmsvc - ok

13:26:23.0175 0x0348 [ 5B5FEAB51172F5513C2CF7B39CFA6A01, 4FDAC5168E00D44781C6F5D98ECD4977A12663C5CE6FFDFF9DBC89A28D6212D8 ] wcncsvc C:\Windows\System32\wcncsvc.dll

13:26:23.0190 0x0348 wcncsvc - ok

13:26:23.0206 0x0348 [ E19556D414332E2BEBA1F368229006B4, AB3454EC85D7B6E62D44C4510C1547AE7F736558588E54B0E265F7B3A5810E15 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll

13:26:23.0206 0x0348 WcsPlugInService - ok

13:26:23.0222 0x0348 [ B3A4D918DAB90505B6BC7B70632913CB, ECC19DCD7902C29D0682C70B9546CF8B82477A32147EE30EB6750D8499605B46 ] Wd C:\Windows\system32\drivers\wd.sys

13:26:23.0222 0x0348 Wd - ok

13:26:23.0253 0x0348 [ 3772FF85F0098686B0DCD77076AE0786, 8B0221F6003C53856676FFD9CDCFF43DF29B410AB2F340C10BB858F0E6EC14CE ] WdBoot C:\Windows\system32\drivers\WdBoot.sys

13:26:23.0253 0x0348 WdBoot - ok

13:26:23.0300 0x0348 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys

13:26:23.0316 0x0348 Wdf01000 - ok

13:26:23.0331 0x0348 [ AB6F7DE8BFBF61A42F8764D9A621BD8B, DEFDC9FDC0B234403EE1339105B8D12B486D77B3BA01A703339B5DB8B95FA4D8 ] WdFilter C:\Windows\system32\drivers\WdFilter.sys

13:26:23.0331 0x0348 WdFilter - ok

13:26:23.0347 0x0348 [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] WdiServiceHost C:\Windows\system32\wdi.dll

13:26:23.0347 0x0348 WdiServiceHost - ok

13:26:23.0362 0x0348 [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] WdiSystemHost C:\Windows\system32\wdi.dll

13:26:23.0362 0x0348 WdiSystemHost - ok

13:26:23.0394 0x0348 [ 9B1384CE8E681D2D77BB3524B8E86311, BDEF9D0A79A7C26A88088A306F91632F300E587736CDD2C64717EC54DD6E89FF ] WebClient C:\Windows\System32\webclnt.dll

13:26:23.0394 0x0348 WebClient - ok

13:26:23.0425 0x0348 [ 35FD720943D4FCD75C3275BF062FF140, 9D8345E6DE1AE23F93AD0B52D27D1CCFD69EF7EE50654F92CA999BEC4570A773 ] Wecsvc C:\Windows\system32\wecsvc.dll

13:26:23.0425 0x0348 Wecsvc - ok

13:26:23.0425 0x0348 [ 4D2612E3C462B68F499D840B1133263E, 4DDAEB4480AEC31A8184838588E0D3DFA31CE6D2FA6E906926860C75F52DC7B7 ] wercplsupport C:\Windows\System32\wercplsupport.dll

13:26:23.0425 0x0348 wercplsupport - ok

13:26:23.0456 0x0348 [ 5F70EBFC1F75B487DE79501E3CCBDB54, 2FCA57BF60A43B03BB42FBF22BBFC19AD2266FBBD818494AD114125E6E433321 ] WerSvc C:\Windows\System32\WerSvc.dll

13:26:23.0456 0x0348 WerSvc - ok

13:26:23.0472 0x0348 [ 44BB9C31E6242C4BD1CE7C2B440C2533, E603BB001028918B687818E930340008C752679B133037367A8A8E41DA559FFE ] WFPLWFS C:\Windows\system32\DRIVERS\wfplwfs.sys

13:26:23.0472 0x0348 WFPLWFS - ok

13:26:23.0487 0x0348 [ 60E0C220593DA4F7C289CB909D2DBAE0, 057CA7727F748600CC155043081AB9E3244763CF4913F317D13226A515F6FDB6 ] WiaRpc C:\Windows\System32\wiarpc.dll

13:26:23.0487 0x0348 WiaRpc - ok

13:26:23.0519 0x0348 [ A3C7624A42A3447EF5EDD1ED37FE4E60, BD8BDF0A571873FA8277878AF7AED11196CFF1B4DF1EA6BA13BD4887D7B63B94 ] WIMMount C:\Windows\system32\drivers\wimmount.sys

13:26:23.0519 0x0348 WIMMount - ok

13:26:23.0566 0x0348 WinDefend - ok

13:26:23.0612 0x0348 [ 7911470B6018059A880469A63B65700A, 4B6131491A028FBCA54AC261112D183EFD42E98160545C8E8DFBDA01C87B3FB5 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll

13:26:23.0628 0x0348 WinHttpAutoProxySvc - ok

13:26:23.0675 0x0348 [ 3D6B518B71C75C8FA4115A33615C107A, ED7A266013D29D3B1A462464735C3632BEA121D1B32553907AEAA0B00595C3DF ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll

13:26:23.0691 0x0348 Winmgmt - ok

13:26:23.0784 0x0348 [ 89DA335401D956F2696E35A38817BE19, D5A8D5C0BE285564AB0DF1B4594FE612359C72BE3B64063C3460BB73AA34F413 ] WinRM C:\Windows\system32\WsmSvc.dll

13:26:23.0831 0x0348 WinRM - ok

13:26:23.0878 0x0348 [ 6351724B8FA0255C2DBD970297F00B93, A02F274479F9F32E30C75A5BD991B008B3CCB47D380D5870563EF918DAC5730E ] WlanSvc C:\Windows\System32\wlansvc.dll

13:26:23.0909 0x0348 WlanSvc - ok

13:26:23.0972 0x0348 [ B330CE47FB74A6BE9A3FFFF4B3F64D9B, B76226808406D8B38DE2D3A8CCE633BB507022C8BAAA6C3DAD34204CC6CE1284 ] wlidsvc C:\Windows\system32\wlidsvc.dll

13:26:24.0003 0x0348 wlidsvc - ok

13:26:24.0019 0x0348 [ E2A596CACFC6504306CDB7B593B90084, DF89CF57249553CE922C841F18B99A213185FA1099C053B9BB8C0F6E5BC3FEC0 ] WmiAcpi C:\Windows\System32\drivers\wmiacpi.sys

13:26:24.0019 0x0348 WmiAcpi - ok

13:26:24.0050 0x0348 [ D113499052C5E541906B727779F0F959, 05FB51086C0A0CE3812A7E6098C5A454ECCFE8553669CFA715153564F2226DB0 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe

13:26:24.0066 0x0348 wmiApSrv - ok

13:26:24.0081 0x0348 WMPNetworkSvc - ok

13:26:24.0081 0x0348 [ C6FF953D5D6F2EAE3B8883474D5076B3, 001CBB7FBC30209C892869258E5ABD3F0932886E156ECB10DCA599F6D32648BE ] wpcfltr C:\Windows\system32\DRIVERS\wpcfltr.sys

13:26:24.0097 0x0348 wpcfltr - ok

13:26:24.0113 0x0348 [ A6ED163169876BFD2437E872FE2F1509, C13E8676800EEEF690F51C4DEA660B36C8734AE2CCAAC48054E10D74B98949B8 ] WPCSvc C:\Windows\System32\wpcsvc.dll

13:26:24.0113 0x0348 WPCSvc - ok

13:26:24.0128 0x0348 [ 3013658A4D327854BEEC4A08D9655194, C4CF5AA6A47CC55E7037B0BFE20AE0A6442ADDC5DEB89D6861C98C61851FA821 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll

13:26:24.0128 0x0348 WPDBusEnum - ok

13:26:24.0144 0x0348 [ 0346CAFC181C91C6E2330332EB332ED6, D46F44C339399CAAE13CD71C53A169E95065208E07E5420DE00A4509D6CB056F ] WpdUpFltr C:\Windows\system32\drivers\WpdUpFltr.sys

13:26:24.0144 0x0348 WpdUpFltr - ok

13:26:24.0159 0x0348 [ BC8B5CB336E63BB25EAD1CE8EDD34B81, A42759956EDCCC6D0688240AA4F833FB9CA132D42D2D901CDCBB24DCE1788C1D ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys

13:26:24.0159 0x0348 ws2ifsl - ok

13:26:24.0175 0x0348 [ 012CFE7F0F95266F554EE3B91EE2128A, 866312F6BF7369BE686F1BA9F01311C99E95E268C6E63BE37C841F54F5AA0DB8 ] wscsvc C:\Windows\System32\wscsvc.dll

13:26:24.0191 0x0348 wscsvc - ok

13:26:24.0191 0x0348 WSearch - ok

13:26:24.0253 0x0348 [ D4D04839F3DFAF09D94BAB1016F7A297, 944A41D251F522EE87189C1D01CF7EEE2C70BF4353BA4005C44F03DB485F843F ] WSService C:\Windows\System32\WSService.dll

13:26:24.0300 0x0348 WSService - ok

13:26:24.0378 0x0348 [ 10EA2DBD2820A504D98D19F5EDAAFC04, 5B84D7C169CBAEBCE4A03BB89426E74DBF5AFCA1F8FDE2A5BC1006A8464D7E24 ] wuauserv C:\Windows\system32\wuaueng.dll

13:26:24.0425 0x0348 wuauserv - ok

13:26:24.0441 0x0348 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys

13:26:24.0441 0x0348 WudfPf - ok

13:26:24.0472 0x0348 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\System32\drivers\WUDFRd.sys

13:26:24.0472 0x0348 WUDFRd - ok

13:26:24.0488 0x0348 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFSensorLP C:\Windows\system32\DRIVERS\WUDFRd.sys

13:26:24.0488 0x0348 WUDFSensorLP - ok

13:26:24.0503 0x0348 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll

13:26:24.0503 0x0348 wudfsvc - ok

13:26:24.0519 0x0348 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFWpdFs C:\Windows\system32\DRIVERS\WUDFRd.sys

13:26:24.0519 0x0348 WUDFWpdFs - ok

13:26:24.0534 0x0348 [ 6D9E07436B6646EC8F7EFFD39B6BA288, 82C1CEA93ECEF17D221AD0F87C5BD96F3FD8143841C16BD9608BD4D58D90B8E0 ] WwanSvc C:\Windows\System32\wwansvc.dll

13:26:24.0550 0x0348 WwanSvc - ok

13:26:24.0566 0x0348 [ 67BB3DC074C640AD609B19E0BBA42BDC, 452CCC94F361A9BE5C032DEA16742B788AF1BA44277E9C8B27A259347C0AB358 ] ZAtheros Wlan Agent C:\Program Files (x86)\Dell Wireless\Ath_WlanAgent.exe

13:26:24.0581 0x0348 ZAtheros Wlan Agent - ok

13:26:24.0581 0x0348 ================ Scan global ===============================

13:26:24.0613 0x0348 [ DDC1AFBF9DDF880CE9BD3896114D8DED, E2406231EA4D2689A5EDFA9BD1A1BC064359D8D23B37F113A18B5EAE3E2D4050 ] C:\Windows\system32\basesrv.dll

13:26:24.0644 0x0348 [ E9343076AE704D20BB0D01F3AF3EFFEF, FF2CE4146945976F9480690505CECD3C7C719BAF0F633E6192C8272C75EF295D ] C:\Windows\system32\winsrv.dll

13:26:24.0675 0x0348 [ BD7C6949984D19AAA609896B675E7357, 5B46538B27BC70F5A3805AA63F6AACDC780C7168468FB535F2D35CF26B9DEE06 ] C:\Windows\system32\sxssrv.dll

13:26:24.0706 0x0348 [ 8F226143046435C75C033B0C52E90FFE, 54FA316485B57D7B8104FE621F5F40DEC35E3D57C3DF46B5F7EACF57445FE7CA ] C:\Windows\system32\services.exe

13:26:24.0706 0x0348 [ Global ] - ok

13:26:24.0706 0x0348 ================ Scan MBR ==================================

13:26:24.0722 0x0348 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0

13:26:24.0722 0x0348 \Device\Harddisk0\DR0 - ok

13:26:24.0722 0x0348 ================ Scan VBR ==================================

13:26:24.0738 0x0348 [ F0BF5239B50DB658A35CF2EB142D914B ] \Device\Harddisk0\DR0\Partition1

13:26:24.0753 0x0348 \Device\Harddisk0\DR0\Partition1 - ok

13:26:24.0753 0x0348 [ FADA1C96249154C9844BC9844530955B ] \Device\Harddisk0\DR0\Partition2

13:26:24.0769 0x0348 \Device\Harddisk0\DR0\Partition2 - ok

13:26:24.0784 0x0348 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3

13:26:24.0784 0x0348 \Device\Harddisk0\DR0\Partition3 - ok

13:26:24.0784 0x0348 [ 704795B437F05161A9B46541171F5461 ] \Device\Harddisk0\DR0\Partition4

13:26:24.0800 0x0348 \Device\Harddisk0\DR0\Partition4 - ok

13:26:24.0816 0x0348 [ 7E458A5CC10FE6C57FA1C5557F04CCE3 ] \Device\Harddisk0\DR0\Partition5

13:26:24.0816 0x0348 \Device\Harddisk0\DR0\Partition5 - ok

13:26:24.0847 0x0348 [ A88BF80DECBB0554BFD638FB2CB4484C ] \Device\Harddisk0\DR0\Partition6

13:26:24.0847 0x0348 \Device\Harddisk0\DR0\Partition6 - ok

13:26:24.0847 0x0348 ================ Scan generic autorun ======================

13:26:24.0894 0x0348 [ 949607BCB86EFD03313DB3D7DCBC7C02, 20332698466E585641797532A62B14FAC08ECCB99B7F334F4920A7AC651FD997 ] C:\Program Files\ITknowledge24\Windows Defender Status Manager\wdsmgr.exe

13:26:24.0894 0x0348 wdsmgr - ok

13:26:24.0972 0x0348 [ 47EA5F76FAB723C61AB4A0D79BAD512C, A7A38EB0A7068B160E6949945EF639F999A06AE35746F6E79C7350745798E5C9 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

13:26:24.0988 0x0348 Adobe ARM - ok

13:26:25.0019 0x0348 [ 14D6542607ACD4B2D1DDB1A36E0D8813, 3A270600549E8E7988D5AF3486C0F504269B9573393D87BF87BDB2287BF007B2 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

13:26:25.0019 0x0348 SunJavaUpdateSched - ok

13:26:25.0144 0x0348 [ 7EE68A122ED08E4AAD8DA551E34D2515, B3C9AB270AF595D3DBAFBF4A312B96CBF00C16F0A03CCC86BE56825CD1EB7143 ] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe

13:26:25.0191 0x0348 SDTray - ok

13:26:25.0191 0x0348 Waiting for KSN requests completion. In queue: 348

13:26:26.0207 0x0348 Waiting for KSN requests completion. In queue: 40

13:26:27.0222 0x0348 Waiting for KSN requests completion. In queue: 40

13:26:28.0254 0x0348 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.5.218.0 ), 0x61100 ( enabled : updated )

13:26:28.0254 0x0348 Win FW state via NFP2: enabled

13:26:30.0757 0x0348 ============================================================

13:26:30.0757 0x0348 Scan finished

13:26:30.0757 0x0348 ============================================================

13:26:30.0757 0x0c14 Detected object count: 0

13:26:30.0757 0x0c14 Actual detected object count: 0

Larusso · October 22, 2014

Hy there

Marius is away for a few days and I'll help you with your problem until he is back.
Please note that I attend a part time school and I am not able to reply on Tuesdays and Wednesdays ( today no school )

So, do the pop ups appear in both browsers ?

Honestly, your logfiles appears to be clean so far so did the technican install Defraggler and Spybot ?

2014-10-19 13:55 - 2013-10-10 10:06 - 00000000 ____D () C:\Program Files\Defraggler
2014-10-19 13:07 - 2013-10-10 10:12 - 00000000 ____D () C:\Program Files (x86)\Spybot - Search & Destroy

Also, I see you use a classic start menu for Windows 8 from IOBIT.

This link might be worth a read why we here at Malwarebytes do not recommend any kind of Software from IOBIT.

https://forums.malwarebytes.org/index.php?/topic/29681-iobit-steals-malwarebytes-intellectual-property/

jackydcr · October 23, 2014

The technician did install those 2 programs.

The same warnings/pop ups from malware bytes are still coming.... saying about the malicious website etc.

jackydcr · October 23, 2014

Malwarebytes Anti-Malware

www.malwarebytes.org

Update, 10/23/2014 12:35:35 AM, SYSTEM, FRONTDESK, Scheduler, Failed, Unable to access update server,

Detection, 10/23/2014 12:35:40 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 88.214.193.211, 57383, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 12:35:40 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 88.214.193.211, 57384, Outbound,

Detection, 10/23/2014 12:35:55 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 88.214.193.211, 57397, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 12:35:55 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 88.214.193.211, 57398, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 12:44:30 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 54.200.194.83, simpleinstant-update.be, 58707, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 1:31:22 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 80.252.188.229, ba2b687.se, 64274, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 1:31:32 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 80.252.188.229, ba2b687.se, 64274, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 1:31:32 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 80.252.188.229, ba2b687.se, 64275, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 1:31:32 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 80.252.188.229, ba2b687.se, 64276, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 1:31:33 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 80.252.188.229, ba2b687.se, 64277, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Update, 10/23/2014 1:56:12 AM, SYSTEM, FRONTDESK, Scheduler, Malware Database, 2014.10.23.1, 2014.10.23.2,

Protection, 10/23/2014 1:56:14 AM, SYSTEM, FRONTDESK, Protection, Refresh, Starting,

Protection, 10/23/2014 1:56:14 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, Stopping,

Protection, 10/23/2014 1:56:15 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, Stopped,

Protection, 10/23/2014 1:57:03 AM, SYSTEM, FRONTDESK, Protection, Refresh, Success,

Protection, 10/23/2014 1:57:03 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, Starting,

Protection, 10/23/2014 1:57:03 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, Started,

Detection, 10/23/2014 2:10:17 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 49702, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:10:19 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 49754, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:10:21 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 49763, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:10:52 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 50038, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:11:12 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 50389, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:11:45 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 50818, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:11:47 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 50855, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:11:52 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51049, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:11:57 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51104, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:11:58 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51117, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:12:13 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51343, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:12:15 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51351, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:12:45 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51639, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:12:47 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51663, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:12:58 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51974, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:12:58 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51998, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:13:24 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 52408, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:14:00 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 52695, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:14:02 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 52745, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:14:16 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 52893, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:14:27 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 53000, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:14:36 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 53021, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:14:56 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 53234, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:15:15 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 53759, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:15:17 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 53824, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:15:25 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 54115, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:15:33 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 54246, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:15:36 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 54300, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:15:45 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 61928, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:16:13 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 64334, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:16:28 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 64793, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:16:36 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 64827, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:16:48 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 65067, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:17:00 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 65391, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:17:04 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 65429, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:17:16 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 49174, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:17:18 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 49224, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:17:18 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 49226, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:17:57 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 49741, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:18:18 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 50004, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:18:27 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 50111, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:18:29 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 50122, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:18:37 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 50154, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:18:54 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 50210, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:19:01 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 50345, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:19:18 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 50662, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:19:26 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 50683, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:19:26 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 50686, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:19:27 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 50687, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:19:29 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 50793, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:19:29 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 50796, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:19:48 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51013, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:20:01 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51337, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:20:02 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51341, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:20:18 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51590, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:20:20 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51601, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:20:23 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51621, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:20:27 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51697, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:20:29 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51702, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:20:34 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51704, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:20:38 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51706, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:20:38 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51707, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:20:54 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51711, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:20:59 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51713, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:21:06 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51717, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:21:12 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51719, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:21:21 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51723, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:21:24 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51725, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:21:27 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51727, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:21:27 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51728, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:21:27 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51729, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:21:30 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51731, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:21:30 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51732, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:21:33 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51733, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:21:38 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51737, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:22:02 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51753, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:22:12 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51758, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:22:21 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51762, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:22:24 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51763, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:22:24 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51764, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:22:30 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51769, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:22:35 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51774, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:22:38 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51776, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:23:02 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51783, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:23:22 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51793, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:23:31 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51801, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:23:35 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 66.45.56.109, redirect.ad-feeds.net, 51804, Outbound, C:\Windows\SysWOW64\dllhost.exe,

Detection, 10/23/2014 2:40:50 AM, SYSTEM, FRONTDESK, Protection, Malicious Website Protection, IP, 88.85.84.113, 53646, Outbound, C:\Windows\SysWOW64\dllhost.exe,

(end)

Larusso · October 24, 2014

Good to know that the tech has not really an idea what he is doing.

Please uninstall Spybot and Defraggler.

Please download AdwCleaner by Xplode and save to your Desktop.

Double click on AdwCleaner.exe to run the tool.
Vista/Windows 7/8 users right-click and select Run As Administrator
The tool will start to update the database, please wait a bit.
Click on I agree button.
Click on the Scan button.
AdwCleaner will begin...be patient as the scan may take some time to complete.
After the scan has finished, click on the Report button...a logfile (AdwCleaner[R#].txt) will open in Notepad for review (where the largest value of # represents the most recent report).
The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
Copy and paste the contents of that logfile in your next reply.
A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.

How does your system behave now ?

jackydcr · October 24, 2014

Yeah, I figured he was clueless. Here are the results of the scan

# AdwCleaner v4.001 - Report created 24/10/2014 at 06:49:50# Updated 20/10/2014 by Xplode# Database : 2014-10-23.2# Operating System : Windows 8  (64 bits)# Username : Front Desk - FRONTDESK# Running from : C:\Users\Front Desk\Downloads\AdwCleaner.exe# Option : Scan***** [ Services ] ********** [ Files / Folders ] *****File Found : C:\Users\Front Desk\AppData\Roaming\Mozilla\Firefox\Profiles\ewnjccr4.default\user.jsFolder Found : C:\Program Files\002Folder Found : C:\Users\Front Desk\AppData\Roaming\Systweak***** [ Scheduled Tasks ] ********** [ Shortcuts ] ********** [ Registry ] *****Key Found : HKCU\Software\systweakKey Found : [x64] HKCU\Software\systweakKey Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASAPI32Key Found : HKLM\SOFTWARE\Microsoft\Tracing\AdvancedSystemProtector_RASMANCSKey Found : HKLM\SOFTWARE\systweak***** [ Browsers ] *****-\\ Internet Explorer v10.0.9200.17116-\\ Mozilla Firefox v33.0 (x86 en-US)*************************AdwCleaner[R0].txt - [1135 octets] - [24/10/2014 06:49:50]########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [1195 octets] ##########

Thanks!

Larusso · October 25, 2014

Good morning

How does your system behave now ?

Would be nice when you answer this question

LDTate · November 20, 2014

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

fff5ee.com pop up constantly and computer running very slowly

Recommended Posts

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Recently Browsing 0 members

Important Information