My browsers won't open

sok_pip · October 13, 2015

Hello. Something strange is happening in my pc. About 2 weeks ago I noticed that Chrome couldn't open. I clicked on the quick button the icon was highlited and after 5-10 seconds stopped being highlited and Chrome wouldn't start. I downloaded Google Canary and noticed that Canary could run. I also have Opera and Mozzilla and they both were working properly. But after 3-4 days the same thing happened to Opera and couldn't start and yesterday the same thing happened to Mozzilla. Now the only browser which is still working is Canary.

I tried to resolve by running Malwarebytes Anti-Malware and Superantispyware in safe mode. They found some things and I deleted all of them but nothing changed. I also tried to run msert.exe but i get the message that it is not a valid win32.

Dut to the above I thing my pc is infected! Can anyone help me? Thank you.

kevinf80 · October 13, 2015

Hello and welcome to Malwarebytes.org

P2P/Piracy Warning:

If you're using Peer 2 Peer software such as uTorrent, BitTorrent or similar you must either fully uninstall them or completely disable them from running while being assisted here. Failure to remove or disable such software will result in your topic being closed and no further assistance being provided.If you have illegal/cracked software, cracks, keygens etc. on the system, please remove or uninstall them now and read the policy on Piracy.

Next,

Change the download folder setting in the default Browser so all tools we may use are saved to the Desktop:

Google Chrome - Click the "Customize and control Google Chrome" button in the upper right-corner of the browser.

Choose Settings. at the bottom of the screen click the
"Show advanced settings..." link. Scroll down to find the Downloads section and click the Change... button. Select your desktop and click OK.

Mozilla Firefox - Click the "Open Menu" button in the upper right-corner of the browser.

Choose Options. In the downloads section, click the Browse button, click on the Desktop folder and the click the "Select Folder" button. Click OK to get out of the Options menu.

Internet Explorer - Click the Tools menu in the upper right-corner of the browser.

Select View downloads. Select the Options link in the lower left of the window. Click Browse and select the Desktop and then choose the Select Folder button. Click OK to get out of the download options screen and then click Close to get out of the View Downloads screen.
NOTE: IE8 Does not support changing download locations in this manner. You will need to download the tool(s) to the default folder, usually Downloads, then copy them to the desktop.

Next,

Follow the instructions in the following link to show hidden files:

http://www.bleepingcomputer.com/tutorials/how-to-see-hidden-files-in-windows/

Next,

Please open Malwarebytes Anti-Malware.

On the Settings tab > Detection and Protection sub tab, Detection Options, tick the box "Scan for rootkits".
Under Non-Malware Protection sub tab Change PUP and PUM entries to Treat detections as Malware
Click on the Scan tab, then click on Scan Now >> . If an update is available, click the Update Now button.
A Threat Scan will begin.
With some infections, you may or may not see this message box.

'Could not load DDA driver'
Click 'Yes' to this message, to allow the driver to load after a restart.
Allow the computer to restart. Continue with the rest of these instructions.
When the scan is complete, click Apply Actions.
Wait for the prompt to restart the computer to appear, then click on Yes.
After the restart once you are back at your desktop, open MBAM once more.

To get the log from Malwarebytes do the following:

Click on the History tab > Application Logs.
Double click on the scan log which shows the Date and time of the scan just performed.
Click Export > From export you have three options:

Copy to Clipboard - if seleted right click to your reply and select "Paste" log will be pasted to your reply
Text file (*.txt) - if selected you will have to name the file and save to a place of choice, recommend "Desktop" then attach to reply
XML file (*.xml) - if selected you will have to name the file and save to a place of choice, recommend "Desktop" then attach to reply
Recommend you use "Copy to Clipboard, then Right click to your reply > select "Paste" that will copy the log to your reply…

If Malwarebytes is not installed follow these instructions first:

Download Malwarebytes Anti-Malware to your desktop.

Double-click mbam-setup and follow the prompts to install the program.
At the end, be sure a checkmark is placed next to the following:
Launch Malwarebytes Anti-Malware
A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.
Click Finish. Follow the instructions above....

Next,

Download Farbar Recovery Scan Tool and save it to your desktop.

Note: You need to run the version compatible with your system (32 bit or 64 bit). If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

If your security alerts to FRST either accept the alert or disable your security and allow FRST to run...

Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

Next,

Please download RogueKiller and save it to your desktop from the following link: http://www.bleepingcomputer.com/download/roguekiller/

Quit all running programs.
For Windows XP, double-click to start.
For Vista,Windows 7/8/8.1/10, Right-click on the program and select Run as Administrator to start and when prompted allow it to run.
Read and accept the EULA (End User Licene Agreement)
Click Scan to scan the system.
When the scan completes select "Report",in the next window select "Export txt" the log will open as a text file post that log... Also save to your Desktop for reference. log will open.
Close the program > Don't Fix anything!

Let me see those logs in your reply....

Thank you,

Kevin...

sok_pip · October 13, 2015

Hello Kevin! Thank you for your immediate reply! As I said before my only browser that still works is Google Canary, so I changed the download folder setting to the Desktop only in this browser. I hope this wont cause any problems.

So, I did what you told me and these are the results:

Malwarebytes Anti-Malware Log:

Malwarebytes Anti-Malware

www.malwarebytes.org

Scan Date: 14/10/2015

Scan Time: 00:20

Logfile:

Administrator: Yes

Version: 0.0.0.0000

Malware Database: v2015.10.13.08

Rootkit Database: v2015.10.06.01

License: Trial

Malware Protection: Enabled

Malicious Website Protection: Enabled

Self-protection: Disabled

OS: Windows 7 Service Pack 1

CPU: x64

File System: NTFS

User: Μπούφος

Scan Type: Threat Scan

Result: Completed

Objects Scanned: 343157

Time Elapsed: 30 min, 23 sec

Memory: Enabled

Startup: Enabled

Filesystem: Enabled

Archives: Enabled

Rootkits: Enabled

Heuristics: Enabled

PUP: Enabled

PUM: Enabled

Processes: 0

(No malicious items detected)

Modules: 0

(No malicious items detected)

Registry Keys: 0

(No malicious items detected)

Registry Values: 0

(No malicious items detected)

Registry Data: 0

(No malicious items detected)

Folders: 0

(No malicious items detected)

Files: 0

(No malicious items detected)

Physical Sectors: 0

(No malicious items detected)

(end)

sok_pip · October 13, 2015

This is FRST log:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:12-10-2015

Ran by Μπούφος (administrator) on MPOUFOS-PC (14-10-2015 00:36:01)

Running from C:\Users\Μπούφος\Desktop

Loaded Profiles: Μπούφος (Available Profiles: Μπούφος)

Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Ελληνικά (Ελλάδας)

Internet Explorer Version 11 (Default browser: Chrome)

Boot Mode: Normal

Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe

(AMD) C:\Windows\System32\atiesrxx.exe

(AMD) C:\Windows\System32\atieclxx.exe

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe

(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe

(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe

(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe

(Seagate Technology LLC) C:\Program Files (x86)\Seagate\DriveSettings\Sync\SeagateDriveSettingsService.exe

(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe

(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe

(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe

(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\MDM.EXE

(Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe

(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe

(Oce) C:\Program Files (x86)\Oce\Repro Desk\ORD_ProcessAcrobat.exe

(Realtek) C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\RtlService.exe

(Realtek Semiconductor Corp.) C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\RtWLan.exe

(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.1.8\ToolbarUpdater.exe

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

() C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.1.8\loggingserver.exe

(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE

(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe

(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe

(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe

(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

(Google Inc.) C:\Users\Μπούφος\AppData\Local\Google\Update\1.3.28.15\GoogleCrashHandler.exe

(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.11.163\SSScheduler.exe

(Google Inc.) C:\Users\Μπούφος\AppData\Local\Google\Update\1.3.28.15\GoogleCrashHandler64.exe

(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG2015\avgui.exe

(Dropbox, Inc.) C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\Dropbox.exe

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe

(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

() C:\Program Files (x86)\AVG Web TuneUp\vprot.exe

(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe

(Google Inc.) C:\Users\Μπούφος\AppData\Local\Google\Chrome SxS\Application\chrome.exe

(AVG Secure Search) C:\Program Files (x86)\AVG Web TuneUp\avgcefrend.exe

(Microsoft Corporation) C:\Windows\System32\consent.exe

(Google Inc.) C:\Users\Μπούφος\AppData\Local\Google\Chrome SxS\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\AVG2015\avgui.exe [3775912 2015-08-24] (AVG Technologies CZ, s.r.o.)

HKLM-x32\...\Run: [LifeCam] => C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe [135536 2010-12-13] (Microsoft Corporation)

HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-05-28] (Adobe Systems Incorporated)

HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6134544 2015-10-09] (AVAST Software)

HKLM-x32\...\Run: [Oce Monitor] => C:\Program Files (x86)\Oce\Repro Desk\OceNetSync.exe

HKLM-x32\...\Run: [sunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)

HKLM-x32\...\Run: [DelaypluginInstall] => C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe

HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [3177360 2015-10-06] ()

HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE ->

HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE ->

HKU\S-1-5-21-97775177-4094759592-3081621751-1000\...\Run: [AdobeBridge] => [X]

HKU\S-1-5-21-97775177-4094759592-3081621751-1000\...\Run: [AVG-Secure-Search-Update_0913b] => C:\Users\Μπούφος\AppData\Roaming\AVG 0913b Campaign\AVG-Secure-Search-Update-0913b.exe /PROMPT --mid f10c8ee63a0547d3812cd15256e4ca32-ad1491be2ce6c122f6b66faa90e70c2decf7d34c --CMPID 0913b

HKU\S-1-5-21-97775177-4094759592-3081621751-1000\...\Run: [Dropbox Update] => C:\Users\Μπούφος\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-18] (Dropbox, Inc.)

HKU\S-1-5-21-97775177-4094759592-3081621751-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8418584 2015-07-17] (Piriform Ltd)

HKU\S-1-5-21-97775177-4094759592-3081621751-1000\...\Run: [EPSON BX305 Series] => C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGJE.EXE [224768 2009-09-14] (SEIKO EPSON CORPORATION)

HKU\S-1-5-21-97775177-4094759592-3081621751-1000\...\Run: [skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [57987712 2015-09-28] (Skype Technologies S.A.)

HKU\S-1-5-21-97775177-4094759592-3081621751-1000\...\Run: [Google Update] => C:\Users\Μπούφος\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-09-26] (Google Inc.)

HKU\S-1-5-21-97775177-4094759592-3081621751-1000\...\Run: [sUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7935768 2015-09-23] (SUPERAntiSpyware)

HKU\S-1-5-21-97775177-4094759592-3081621751-1000\...\MountPoints2: {28da1260-0746-11e3-90bc-001b100023c1} - G:\iLinker.exe

HKU\S-1-5-21-97775177-4094759592-3081621751-1000\...\MountPoints2: {b38e30eb-61c1-11e4-b0e1-001b100023c1} - G:\LG_PC_Programs.exe

HKU\S-1-5-21-97775177-4094759592-3081621751-1000\Control Panel\Desktop\\SCRNSAVE.EXE ->

HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->

AppInit_DLLs: C:\PROGRA~2\Linkey\IEEXTE~1\iedll64.dll => No File

ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-10-09] (AVAST Software)

ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.)

ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.)

ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.)

ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-10-02] (Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\SysWOW64\AcSignIcon.dll No File

ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-10-02] (Dropbox, Inc.)

Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2015-05-15]

ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.163\SSScheduler.exe (McAfee, Inc.)

Startup: C:\Users\Μπούφος\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2013-09-14]

ShortcutTarget: Dropbox.lnk -> C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Hosts: 0.0.0.1 mssplus.mcafee.com

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

Tcpip\..\Interfaces\{1E231E93-4606-46D3-8B9B-B019F377EA22}: [DhcpNameServer] 192.168.1.1

Tcpip\..\Interfaces\{8E55C75B-3506-4F5A-8A29-97714FE509AC}: [DhcpNameServer] 192.168.1.1

Internet Explorer:

==================

HKU\S-1-5-21-97775177-4094759592-3081621751-1000\Software\Microsoft\Internet Explorer\Main,Start Page =

BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-10-09] (AVAST Software)

BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)

BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-27] (Google Inc.)

BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)

BHO-x32: Java Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-12-11] (Oracle Corporation)

BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-10-09] (AVAST Software)

BHO-x32: Βοηθός εισόδου στο λογαριασμό Microsoft -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)

BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.1.8.599\AVG Web TuneUp.dll [2015-10-06] (AVG)

BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-27] (Google Inc.)

BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)

BHO-x32: Java Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-12-11] (Oracle Corporation)

Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File

Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File

Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-27] (Google Inc.)

Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-09-27] (Google Inc.)

Toolbar: HKU\S-1-5-21-97775177-4094759592-3081621751-1000 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-09-27] (Google Inc.)

Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)

Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)

Handler: WSWSVCUchrome - No CLSID Value

FireFox:

========

FF ProfilePath: C:\Users\Μπούφος\AppData\Roaming\Mozilla\Firefox\Profiles\40pn7smn.default

FF SearchEngineOrder.1: default-search.net

FF Homepage: www.google.gr

FF Plugin: @microsoft.com/GENUINE -> disabled [No File]

FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1203133.dll [2013-06-26] (Adobe Systems, Inc.)

FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.1.8\\npsitesafety.dll [No File]

FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)

FF Plugin-x32: @huawei.com/npHWPlugin -> C:\Program Files (x86)\Web_TV\WebTVPlugin\npHWPlugin.dll [2014-02-20] ()

FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-12-11] (Oracle Corporation)

FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2014-12-11] (Oracle Corporation)

FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]

FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)

FF Plugin-x32: @ocenet.com/npDwnld -> C:\Program Files (x86)\Oce\Repro Desk\npDwnld.dll [2012-03-22] (Oce)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-18] (Google Inc.)

FF Plugin-x32: @verimatrix.com/ViewRightWeb -> C:\Program Files (x86)\Web_TV\WebTVPlugin\\npViewRight.dll [No File]

FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)

FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-07-23] (VideoLAN)

FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2013-05-28] (Adobe Systems Inc.)

FF Plugin HKU\S-1-5-21-97775177-4094759592-3081621751-1000: @powerchallenge.com/PowerLoader -> C:\Users\D84C~1\AppData\LocalLow\POWERC~1\nppowerloader.dll [2011-03-15] (Power Challenge Sweden AB)

FF Plugin HKU\S-1-5-21-97775177-4094759592-3081621751-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Μπούφος\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-26] (Google Inc.)

FF Plugin HKU\S-1-5-21-97775177-4094759592-3081621751-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Μπούφος\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-26] (Google Inc.)

FF Plugin HKU\S-1-5-21-97775177-4094759592-3081621751-1000: @verimatrix.com/ViewRightWeb -> C:\Program Files (x86)\Web_TV\WebTVPlugin\\npViewRight.dll [No File]

FF SearchPlugin: C:\Users\Μπούφος\AppData\Roaming\Mozilla\Firefox\Profiles\40pn7smn.default\searchplugins\avg-secure-search.xml [2015-07-18]

FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\wtu-secure-search.xml [2015-10-06]

FF Extension: AVG Web TuneUp - C:\Users\Μπούφος\AppData\Roaming\Mozilla\Firefox\Profiles\40pn7smn.default\Extensions\avg@toolbar [2015-07-18]

FF Extension: 1-Click Dailymotion Video Downloader - C:\Users\Μπούφος\AppData\Roaming\Mozilla\Firefox\Profiles\40pn7smn.default\Extensions\DailymotionVideoDownloader@PeterOlayev.com.xpi [2014-02-08]

FF Extension: Youtube To MP3 PRO converter - C:\Users\Μπούφος\AppData\Roaming\Mozilla\Firefox\Profiles\40pn7smn.default\Extensions\jid0-irAmugmQgdURBSCIFZAcjR8ZQMg@jetpack.xpi [2014-05-09]

FF Extension: YouTube to MP3 - C:\Users\Μπούφος\AppData\Roaming\Mozilla\Firefox\Profiles\40pn7smn.default\Extensions\youtube2mp3@mondayx.de.xpi [2014-05-09]

FF Extension: Easy Youtube Video Downloader Express - C:\Users\Μπούφος\AppData\Roaming\Mozilla\Firefox\Profiles\40pn7smn.default\Extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi [2013-11-26]

FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-06]

FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF

FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-08-13]

FF Extension: No Name - C:\Users\ΞΟ€ΞΏΟΟ†ΞΏΟ‚\AppData\Roaming\Mozilla\Firefox\Profiles\40pn7smn.default\extensions\DailymotionVideoDownloader@PeterOlayev.com.xpi [not found]

FF Extension: No Name - C:\Users\ΞΟ€ΞΏΟΟ†ΞΏΟ‚\AppData\Roaming\Mozilla\Firefox\Profiles\40pn7smn.default\extensions\youtube2mp3@mondayx.de.xpi [not found]

Chrome:

=======

CHR HomePage: Default -> hxxps://mysearch.avg.com/?rvt=1

CHR StartupUrls: Default -> "hxxp://www.google.gr/"

CHR DefaultSearchURL: Default -> hxxps://mysearch.avg.com/search?rvt=1&sap=dsp&q={searchTerms}

CHR DefaultSearchKeyword: Default -> https://mysearch.avg.com

CHR DefaultSuggestURL: Default -> hxxps://toolbar.avg.com/acp?q={searchTerms}&o=1

CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.93\PepperFlash\pepflashplayer.dll => No File

CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.93\ppGoogleNaClPluginChrome.dll => No File

CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.93\pdf.dll => No File

CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll => No File

CHR Profile: C:\Users\Μπούφος\AppData\Local\Google\Chrome\User Data\Default

CHR Extension: (AccuWeather Forecast) - C:\Users\Μπούφος\AppData\Local\Google\Chrome\User Data\Default\Extensions\anaabbcbolfcclofcpdipmefibpgacgc [2013-08-24]

CHR Extension: (Έγγραφα Google) - C:\Users\Μπούφος\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-08-13]

CHR Extension: (Google Drive ) - C:\Users\Μπούφος\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-08-13]

CHR Extension: (YouTube) - C:\Users\Μπούφος\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-08-13]

CHR Extension: (AVG Secure Search) - C:\Users\Μπούφος\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2015-07-18]

CHR Extension: (Αναζήτηση Google) - C:\Users\Μπούφος\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-08-13]

CHR Extension: (Easy Youtube Video Downloader) - C:\Users\Μπούφος\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmknocfkgffdgekmfonabppnhdgmghem [2013-11-25]

CHR Extension: (Facebook™ Chat Privacy) - C:\Users\Μπούφος\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfpgaanechfneiboempkfjghninbibjn [2013-09-15]

CHR Extension: (Έγγραφα Google εκτός σύνδεσης) - C:\Users\Μπούφος\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-05]

CHR Extension: (AdBlock) - C:\Users\Μπούφος\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-02-01]

CHR Extension: (Avast Online Security) - C:\Users\Μπούφος\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-09-02]

CHR Extension: (Windows Media Player Extension for HTML5) - C:\Users\Μπούφος\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak [2013-08-24]

CHR Extension: (Skype Click to Call) - C:\Users\Μπούφος\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2014-09-02]

CHR Extension: (Πληρωμές στο Chrome Web Store) - C:\Users\Μπούφος\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-31]

CHR Extension: (WeVideo - Video Editor and Maker) - C:\Users\Μπούφος\AppData\Local\Google\Chrome\User Data\Default\Extensions\okgjbfikepgflmlelgfgecmgjnmnmnnb [2013-10-11]

CHR Extension: (Gmail) - C:\Users\Μπούφος\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-08-13]

CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-04-14]

CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-05-01]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-23] (SUPERAntiSpyware.com)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-10-09] (AVAST Software)

R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4048280 2015-10-09] (Avast Software)

S2 AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe [3637160 2015-08-24] (AVG Technologies CZ, s.r.o.)

R2 avgwd; C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe [335656 2015-08-24] (AVG Technologies CZ, s.r.o.)

R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)

R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)

R2 FreeAgentGoFlex Service; C:\Program Files (x86)\Seagate\DriveSettings\Sync\SeagateDriveSettingsService.exe [91432 2011-02-10] (Seagate Technology LLC)

S2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2015-04-15] (Freemake) [File not signed]

R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation)

R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)

S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.163\McCHSvc.exe [289256 2015-07-31] (McAfee, Inc.)

R2 ORD_ProcessAcrobat; C:\Program Files (x86)\Oce\Repro Desk\ORD_ProcessAcrobat.exe [188928 2012-03-22] (Oce) [File not signed]

R2 Realtek11nCU; C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\RtlService.exe [36864 2010-04-16] (Realtek) [File not signed]

R2 vToolbarUpdater40.1.8; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.1.8\ToolbarUpdater.exe [1875856 2015-10-06] (AVG Secure Search)

S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [1205136 2015-10-06] ()

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 andnetadb; C:\Windows\System32\Drivers\lgandnetadb.sys [31744 2013-04-18] (Google Inc)

S3 AndNetDiag; C:\Windows\System32\DRIVERS\lgandnetdiag64.sys [29184 2013-04-18] (LG Electronics Inc.)

S3 ANDNetModem; C:\Windows\System32\DRIVERS\lgandnetmodem64.sys [36352 2013-06-28] (LG Electronics Inc.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-10-09] (AVAST Software)

R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-10-09] (AVAST Software)

R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-10-09] (AVAST Software)

R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-10-09] (AVAST Software)

R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1049880 2015-10-09] (AVAST Software)

R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [448968 2015-10-09] (AVAST Software)

S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [153744 2015-10-09] (AVAST Software)

R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-10-09] (AVAST Software)

R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [153368 2014-06-18] (AVG Technologies CZ, s.r.o.)

R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [313264 2015-08-19] (AVG Technologies CZ, s.r.o.)

R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [297904 2015-08-19] (AVG Technologies CZ, s.r.o.)

R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [259040 2015-06-16] (AVG Technologies CZ, s.r.o.)

R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [378336 2015-05-07] (AVG Technologies CZ, s.r.o.)

R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [250800 2015-08-04] (AVG Technologies CZ, s.r.o.)

R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [31512 2014-06-18] (AVG Technologies CZ, s.r.o.)

R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [300464 2015-08-04] (AVG Technologies CZ, s.r.o.)

S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)

R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2015-10-14] (Malwarebytes Corporation)

R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)

R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [132656 2015-10-09] (AVAST Software)

S3 RTL8192cu; C:\Windows\System32\DRIVERS\rtwlanu.sys [1038440 2011-05-09] (Realtek Semiconductor Corporation )

S3 rtlss; C:\Windows\System32\Drivers\rtlss.sys [27240 2010-06-21] (Realtek Semiconductor Corporation)

R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)

R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-13] (SUPERAdBlocker.com and SUPERAntiSpyware.com)

R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [274336 2015-10-09] (Avast Software)

S3 ALSysIO; \??\C:\Users\D84C~1\AppData\Local\Temp\ALSysIO64.sys [X]

S3 Andbus; system32\DRIVERS\lgandbus64.sys [X]

S3 AndDiag; system32\DRIVERS\lganddiag64.sys [X]

S3 AndGps; system32\DRIVERS\lgandgps64.sys [X]

S3 ANDModem; system32\DRIVERS\lgandmodem64.sys [X]

S3 andnetndis; system32\DRIVERS\lgandnetndis64.sys [X]

S3 androidusb; System32\Drivers\lgandadb.sys [X]

S3 usbbus; system32\DRIVERS\lgx64bus.sys [X]

S3 UsbDiag; system32\DRIVERS\lgx64diag.sys [X]

S3 USBModem; system32\DRIVERS\lgx64modem.sys [X]

S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-14 00:36 - 2015-10-14 00:36 - 00028984 _____ C:\Users\Μπούφος\Desktop\FRST.txt

2015-10-14 00:35 - 2015-10-14 00:36 - 00000000 ____D C:\FRST

2015-10-14 00:35 - 2015-10-14 00:35 - 02196480 _____ (Farbar) C:\Users\Μπούφος\Desktop\FRST64.exe

2015-10-13 22:57 - 2015-10-13 22:57 - 00099384 _____ C:\Users\Μπούφος\AppData\Roaming\inst.exe

2015-10-13 22:57 - 2015-10-13 22:57 - 00082816 _____ (VSO Software) C:\Users\Μπούφος\AppData\Roaming\pcouffin.sys

2015-10-13 22:57 - 2015-10-13 22:57 - 00007859 _____ C:\Users\Μπούφος\AppData\Roaming\pcouffin.cat

2015-10-13 22:57 - 2015-10-13 22:57 - 00000055 _____ C:\Users\Μπούφος\AppData\Roaming\pcouffin.log

2015-10-13 22:57 - 2015-10-13 22:57 - 00000000 ____D C:\Users\Μπούφος\Documents\PcSetup

2015-10-13 22:36 - 2015-10-13 22:54 - 00000000 ____D C:\Windows\system32\appmgmt

2015-10-13 21:40 - 2015-10-13 21:40 - 00002968 _____ C:\Windows\System32\Tasks\{07D0A911-7408-4FC8-8FF4-9CBAC6314548}

2015-10-13 21:39 - 2015-10-13 21:39 - 00002968 _____ C:\Windows\System32\Tasks\{8C5825FC-BA89-4D9B-B2F8-B6A1D781ED7E}

2015-10-13 21:39 - 2015-10-13 21:39 - 00002968 _____ C:\Windows\System32\Tasks\{6DE58AF4-13A9-42C1-8157-2C2111AA42A4}

2015-10-13 21:39 - 2015-10-13 21:39 - 00002968 _____ C:\Windows\System32\Tasks\{6273EE94-34D3-4D48-8231-CF63DD08B9A4}

2015-10-13 21:39 - 2015-10-13 21:39 - 00002968 _____ C:\Windows\System32\Tasks\{46BA6607-8D2B-40E9-AD36-5489DD277971}

2015-10-13 21:39 - 2015-10-13 21:39 - 00002968 _____ C:\Windows\System32\Tasks\{4218AAE9-8923-4CDE-990C-96F154A94A37}

2015-10-13 21:38 - 2015-10-13 21:38 - 00002968 _____ C:\Windows\System32\Tasks\{F335CEC8-AB33-4BE0-ADD5-C06E110822AF}

2015-10-13 21:38 - 2015-10-13 21:38 - 00002968 _____ C:\Windows\System32\Tasks\{F1011AEE-DA64-4474-9CE8-DFB9683E4037}

2015-10-13 21:38 - 2015-10-13 21:38 - 00002968 _____ C:\Windows\System32\Tasks\{EA06A30C-4E69-436C-9695-6DF194EAA1F5}

2015-10-13 21:38 - 2015-10-13 21:38 - 00002968 _____ C:\Windows\System32\Tasks\{D4AFA158-B484-4114-99A6-2F53B7453C6E}

2015-10-13 21:38 - 2015-10-13 21:38 - 00002968 _____ C:\Windows\System32\Tasks\{CA16AE8A-262A-4957-AE92-C03EDF1E51D2}

2015-10-13 21:38 - 2015-10-13 21:38 - 00002968 _____ C:\Windows\System32\Tasks\{C67BEF8A-DB47-451A-B20F-FA37DE9F78F2}

2015-10-13 21:38 - 2015-10-13 21:38 - 00002968 _____ C:\Windows\System32\Tasks\{ADE9B285-0580-4EDD-8B9A-B92D455B7F76}

2015-10-13 21:38 - 2015-10-13 21:38 - 00002968 _____ C:\Windows\System32\Tasks\{4A09AE34-6600-41A9-A949-4CB335278BE9}

2015-10-13 21:37 - 2015-10-13 21:37 - 00002968 _____ C:\Windows\System32\Tasks\{BA6E5429-2856-4189-8DD8-46CD74CBC54C}

2015-10-13 21:37 - 2015-10-13 21:37 - 00002968 _____ C:\Windows\System32\Tasks\{1CD25CEE-5BAD-45AA-A638-DD8CC0F62FB7}

2015-10-12 23:39 - 2015-10-14 00:26 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys

2015-10-12 23:36 - 2015-10-12 23:36 - 00001102 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2015-10-12 23:36 - 2015-10-12 23:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2015-10-12 23:36 - 2015-10-12 23:36 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware

2015-10-12 23:36 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys

2015-10-12 23:36 - 2015-06-18 08:41 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys

2015-10-12 23:36 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys

2015-10-12 23:33 - 2015-10-12 23:33 - 00002968 _____ C:\Windows\System32\Tasks\{1F02D17C-BB24-4B08-9E06-8101FFB9CD92}

2015-10-12 23:32 - 2015-10-12 23:32 - 00002968 _____ C:\Windows\System32\Tasks\{7415875D-F491-4546-95A8-2CA9A19F44DC}

2015-10-12 23:32 - 2015-10-12 23:32 - 00002968 _____ C:\Windows\System32\Tasks\{1B987491-277E-4094-A818-C051FFA2D8AB}

2015-10-12 23:31 - 2015-10-12 23:31 - 00002968 _____ C:\Windows\System32\Tasks\{C79D2417-BF79-499F-B793-3105354BC7AC}

2015-10-12 23:31 - 2015-10-12 23:31 - 00002968 _____ C:\Windows\System32\Tasks\{71C8EFF1-4F40-43B3-8281-852D72E67862}

2015-10-12 23:31 - 2015-10-12 23:31 - 00002968 _____ C:\Windows\System32\Tasks\{0D174AFA-BAC5-4627-B0F1-901C92E045DB}

2015-10-12 23:30 - 2015-10-12 23:30 - 00002968 _____ C:\Windows\System32\Tasks\{A9777D2D-B3F8-4CD6-918A-F07DD9C02C52}

2015-10-12 23:30 - 2015-10-12 23:30 - 00002968 _____ C:\Windows\System32\Tasks\{04783EB0-5045-424B-B45D-909D6A317DC3}

2015-10-12 21:27 - 2015-10-13 21:27 - 00000514 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task a90fa0ae-ea7b-49b9-bdb2-77537e3120b8.job

2015-10-12 21:27 - 2015-10-12 22:15 - 00000514 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 2a5239c5-1672-49e3-8c9d-d80963228d23.job

2015-10-12 21:27 - 2015-10-12 21:27 - 00003596 _____ C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task 2a5239c5-1672-49e3-8c9d-d80963228d23

2015-10-12 21:27 - 2015-10-12 21:27 - 00003522 _____ C:\Windows\System32\Tasks\SUPERAntiSpyware Scheduled Task a90fa0ae-ea7b-49b9-bdb2-77537e3120b8

2015-10-12 21:27 - 2015-10-12 21:27 - 00000000 ____D C:\Users\Μπούφος\AppData\Roaming\SUPERAntiSpyware.com

2015-10-12 21:26 - 2015-10-12 21:26 - 00001768 _____ C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk

2015-10-12 21:26 - 2015-10-12 21:26 - 00000000 ____D C:\ProgramData\SUPERAntiSpyware.com

2015-10-12 21:26 - 2015-10-12 21:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware

2015-10-12 21:26 - 2015-10-12 21:26 - 00000000 ____D C:\Program Files\SUPERAntiSpyware

2015-10-09 21:21 - 2015-10-09 21:20 - 00132656 _____ (AVAST Software) C:\Windows\system32\Drivers\ngvss.sys

2015-10-09 21:20 - 2015-10-09 21:20 - 00378880 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe

2015-10-09 21:20 - 2015-10-09 21:20 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr

2015-10-09 11:42 - 2015-10-09 11:42 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\0E2E3554.sys

2015-10-06 21:11 - 2015-10-09 11:40 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2015-10-06 21:11 - 2015-10-06 21:11 - 00000000 ____D C:\ProgramData\Malwarebytes

2015-10-06 19:59 - 2015-08-14 13:12 - 00026624 _____ C:\Users\Μπούφος\Desktop\Εκκρεμότητες - Αντίγραφο.xls

2015-10-03 21:50 - 2015-10-03 21:50 - 00000000 ____D C:\Users\Μπούφος\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox

2015-09-30 23:35 - 2015-08-14 13:12 - 00026624 ____N C:\Users\Μπούφος\Desktop\Εκκρεμότητες.xls

2015-09-30 23:32 - 2015-10-12 21:04 - 00000000 ____D C:\Program Files (x86)\Excel Password Recovery Standard

2015-09-29 21:38 - 2015-09-29 21:38 - 00001894 _____ C:\Users\Public\Desktop\McAfee Security Scan Plus.lnk

2015-09-29 21:38 - 2015-09-29 21:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee Security Scan Plus

2015-09-29 21:38 - 2015-09-29 21:38 - 00000000 ____D C:\Program Files\McAfee Security Scan

2015-09-29 15:47 - 2015-09-29 15:48 - 02299096 _____ C:\Users\Μπούφος\Downloads\script.navi-x-4.0.zip

2015-09-29 15:42 - 2015-09-29 15:42 - 00003465 _____ C:\Users\Μπούφος\Downloads\bein+ arena sports (1).txt

2015-09-29 15:36 - 2015-09-29 15:36 - 02119136 _____ C:\Users\Μπούφος\Downloads\plugin.video.sportsaholic.zip

2015-09-29 15:27 - 2015-09-29 15:30 - 00000000 ____D C:\Program Files (x86)\Kodi

2015-09-29 15:27 - 2015-09-29 15:27 - 00000000 ____D C:\Users\Μπούφος\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kodi

2015-09-26 23:42 - 2015-09-26 23:42 - 00000000 ____D C:\Users\Μπούφος\Downloads\plugin.video.sport1live-1.2.0

2015-09-26 23:41 - 2015-09-26 23:41 - 00045582 _____ C:\Users\Μπούφος\Downloads\plugin.video.sport1live-1.2.0.zip

2015-09-26 23:39 - 2015-09-26 23:39 - 00003465 _____ C:\Users\Μπούφος\Downloads\bein+ arena sports.txt

2015-09-26 20:56 - 2015-09-26 21:00 - 66626347 _____ C:\Users\Μπούφος\Downloads\kodi-15.1-Isengard.exe

2015-09-26 20:40 - 2015-10-13 21:41 - 00002408 _____ C:\Users\Μπούφος\Desktop\Google Chrome Canary.lnk

2015-09-26 20:35 - 2015-09-26 20:35 - 00000000 ____D C:\Users\Μπούφος\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome Canary

2015-09-26 20:31 - 2015-10-14 00:36 - 00001202 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000UA.job

2015-09-26 20:31 - 2015-10-12 20:50 - 00001150 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000Core.job

2015-09-26 20:31 - 2015-09-26 20:31 - 00004176 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000UA

2015-09-26 20:31 - 2015-09-26 20:31 - 00003780 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000Core

2015-09-26 09:46 - 2015-10-14 00:24 - 00008138 _____ C:\Windows\PFRO.log

2015-09-24 21:20 - 2015-09-27 21:19 - 00002189 _____ C:\Users\Public\Desktop\Google Chrome.lnk

2015-09-24 21:20 - 2015-09-24 21:20 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome

2015-09-24 20:27 - 2015-10-14 00:24 - 00001624 _____ C:\Windows\setupact.log

2015-09-24 20:27 - 2015-10-13 23:32 - 05071704 _____ C:\Windows\system32\FNTCACHE.DAT

2015-09-24 20:27 - 2015-09-24 20:27 - 00000000 _____ C:\Windows\setuperr.log

2015-09-24 09:48 - 2015-09-24 09:48 - 00153192 _____ C:\Users\Μπούφος\AppData\Local\GDIPFONTCACHEV1.DAT

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-10-14 00:35 - 2009-07-14 07:45 - 00029200 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2015-10-14 00:35 - 2009-07-14 07:45 - 00029200 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2015-10-14 00:32 - 2013-08-13 12:12 - 01539785 _____ C:\Windows\WindowsUpdate.log

2015-10-14 00:29 - 2013-09-11 00:20 - 00000000 ___RD C:\Users\Μπούφος\Dropbox

2015-10-14 00:29 - 2013-09-11 00:18 - 00000000 ____D C:\Users\Μπούφος\AppData\Roaming\Dropbox

2015-10-14 00:25 - 2013-08-13 13:00 - 00001180 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2015-10-14 00:24 - 2009-07-14 08:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT

2015-10-14 00:23 - 2009-07-14 08:32 - 00000000 ____D C:\Windows\Performance

2015-10-14 00:16 - 2013-08-13 13:00 - 00001184 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2015-10-13 23:47 - 2015-06-18 21:22 - 00000926 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000UA.job

2015-10-13 23:37 - 2013-08-14 21:01 - 00000000 ____D C:\ProgramData\Adobe

2015-10-13 23:35 - 2013-08-14 21:10 - 00000000 ____D C:\Program Files (x86)\Adobe

2015-10-13 23:31 - 2013-08-13 13:00 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update

2015-10-13 23:29 - 2013-08-16 17:54 - 00000000 ____D C:\Users\Μπούφος\AppData\Roaming\Skype

2015-10-13 23:21 - 2013-08-16 00:21 - 00000000 ____D C:\Program Files\Common Files\Autodesk Shared

2015-10-13 23:21 - 2013-08-13 18:43 - 00000000 ____D C:\ProgramData\Autodesk

2015-10-13 23:11 - 2013-08-16 00:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk

2015-10-13 23:09 - 2013-10-03 11:52 - 00000000 ____D C:\CADW95

2015-10-13 23:09 - 2013-08-13 12:43 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

2015-10-13 23:06 - 2013-10-03 11:43 - 00000000 ____D C:\Program Files (x86)\AutoCAD 2005

2015-10-13 23:06 - 2013-08-13 17:55 - 00000000 ____D C:\Program Files (x86)\Microsoft Office

2015-10-13 23:05 - 2009-07-14 06:20 - 00000000 ____D C:\Windows\Help

2015-10-13 22:58 - 2014-01-01 22:15 - 00000000 ____D C:\Program Files (x86)\VSO

2015-10-13 22:58 - 2013-12-11 23:32 - 00000000 ____D C:\Users\Μπούφος\AppData\Local\WinAVI

2015-10-13 22:57 - 2014-01-01 22:15 - 00000000 ____D C:\Users\Μπούφος\AppData\Roaming\Vso

2015-10-13 22:54 - 2009-07-14 06:20 - 00000000 __RHD C:\Users\Public\Libraries

2015-10-13 22:36 - 2015-04-24 09:56 - 00000000 ____D C:\ProgramData\Wondershare

2015-10-13 22:35 - 2015-06-08 21:29 - 00000000 ____D C:\Users\Μπούφος\AppData\Roaming\Wondershare

2015-10-13 22:35 - 2015-06-08 21:29 - 00000000 ____D C:\Users\Μπούφος\.android

2015-10-13 22:23 - 2010-11-21 13:15 - 00000000 ____D C:\Windows\ShellNew

2015-10-13 22:23 - 2009-07-14 05:34 - 00000563 _____ C:\Windows\win.ini

2015-10-13 22:20 - 2013-08-15 12:34 - 00000000 ____D C:\Users\Μπούφος\AppData\Roaming\uTorrent

2015-10-13 21:42 - 2014-05-14 13:43 - 00000000 __SHD C:\Users\Μπούφος\AppData\Local\EmieUserList

2015-10-13 21:42 - 2014-05-14 13:43 - 00000000 __SHD C:\Users\Μπούφος\AppData\Local\EmieSiteList

2015-10-13 20:54 - 2013-08-13 12:56 - 00000000 ____D C:\ProgramData\MFAData

2015-10-13 19:52 - 2009-07-14 06:20 - 00000000 ____D C:\Windows\LiveKernelReports

2015-10-12 21:05 - 2010-11-21 13:05 - 00606732 _____ C:\Windows\system32\perfh008.dat

2015-10-12 21:05 - 2010-11-21 13:05 - 00110928 _____ C:\Windows\system32\perfc008.dat

2015-10-12 21:05 - 2009-07-14 08:13 - 01488880 _____ C:\Windows\system32\PerfStringBackup.INI

2015-10-10 09:32 - 2014-12-11 19:03 - 00000000 ____D C:\Windows\SysWOW64\vbox

2015-10-10 09:32 - 2014-12-11 19:03 - 00000000 ____D C:\Windows\system32\vbox

2015-10-10 01:02 - 2013-08-13 18:42 - 00000000 ____D C:\Σπίτι PC (12-08-2013)

2015-10-09 21:20 - 2014-05-12 00:47 - 00028656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys

2015-10-09 21:20 - 2014-01-13 17:22 - 00153744 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys

2015-10-09 21:20 - 2013-08-13 13:00 - 01049880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys

2015-10-09 21:20 - 2013-08-13 13:00 - 00448968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys

2015-10-09 21:20 - 2013-08-13 13:00 - 00274808 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys

2015-10-09 21:20 - 2013-08-13 13:00 - 00093528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys

2015-10-09 21:20 - 2013-08-13 13:00 - 00090968 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys

2015-10-09 21:20 - 2013-08-13 13:00 - 00065224 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys

2015-10-09 21:10 - 2015-04-05 01:07 - 00000000 ___SD C:\Windows\system32\GWX

2015-10-09 12:19 - 2015-04-05 01:07 - 00000000 ___SD C:\Windows\SysWOW64\GWX

2015-10-09 11:40 - 2013-11-26 00:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2015-10-07 19:43 - 2013-08-16 17:54 - 00000000 ____D C:\ProgramData\Skype

2015-10-06 18:36 - 2015-07-18 10:52 - 00000000 ____D C:\Program Files (x86)\AVG Web TuneUp

2015-10-05 15:52 - 2015-06-18 21:21 - 00000874 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000Core.job

2015-10-03 21:30 - 2014-12-27 00:58 - 00000000 ____D C:\Users\Μπούφος\AppData\Roaming\Kodi

2015-10-02 20:34 - 2014-12-23 21:56 - 00003848 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1419360966

2015-10-02 20:34 - 2014-12-23 21:52 - 00000000 ____D C:\Program Files (x86)\Opera

2015-09-29 15:14 - 2009-07-14 06:20 - 00000000 ____D C:\Windows\system32\NDF

2015-09-26 20:35 - 2013-08-13 13:00 - 00000000 ____D C:\Users\Μπούφος\AppData\Local\Google

2015-09-26 13:45 - 2014-06-18 17:34 - 00000000 ____D C:\Users\Μπούφος\AppData\Roaming\MPC-HC

2015-09-24 21:20 - 2013-08-13 13:00 - 00000000 ____D C:\Program Files (x86)\Google

2015-09-18 21:11 - 2013-08-13 13:00 - 00004180 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA

2015-09-18 21:11 - 2013-08-13 13:00 - 00003928 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore

2015-09-17 15:10 - 2015-04-04 15:19 - 00000000 ____D C:\Users\Μπούφος\Desktop\ΞΕΚΑΘΑΡΙΣΜΑ

==================== Files in the root of some directories =======

2015-06-22 11:45 - 2015-06-22 11:45 - 0000132 _____ () C:\Users\Μπούφος\AppData\Roaming\Adobe AIFF Format CS6 Prefs

2014-05-24 00:48 - 2014-06-10 14:08 - 0000132 _____ () C:\Users\Μπούφος\AppData\Roaming\Adobe BMP Format CS6 Prefs

2013-08-18 17:19 - 2015-06-30 19:51 - 0000132 _____ () C:\Users\Μπούφος\AppData\Roaming\Adobe PNG Format CS6 Prefs

2015-10-13 22:57 - 2015-10-13 22:57 - 0099384 _____ () C:\Users\Μπούφος\AppData\Roaming\inst.exe

2015-10-13 22:57 - 2015-10-13 22:57 - 0007859 _____ () C:\Users\Μπούφος\AppData\Roaming\pcouffin.cat

2015-10-13 22:57 - 2015-10-13 22:57 - 0001167 _____ () C:\Users\Μπούφος\AppData\Roaming\pcouffin.inf

2015-10-13 22:57 - 2015-10-13 22:57 - 0000055 _____ () C:\Users\Μπούφος\AppData\Roaming\pcouffin.log

2015-10-13 22:57 - 2015-10-13 22:57 - 0082816 _____ (VSO Software) C:\Users\Μπούφος\AppData\Roaming\pcouffin.sys

2014-01-01 22:15 - 2015-04-24 14:15 - 0001057 _____ () C:\Users\Μπούφος\AppData\Roaming\vso_ts_preview.xml

2014-05-01 23:06 - 2014-05-01 23:06 - 0001456 _____ () C:\Users\Μπούφος\AppData\Local\Adobe Save for Web 13.0 Prefs

2014-08-25 22:05 - 2014-11-09 13:19 - 0005632 _____ () C:\Users\Μπούφος\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

2014-10-28 17:29 - 2014-10-28 17:29 - 0004096 ____H () C:\Users\Μπούφος\AppData\Local\keyfile3.drm

2014-06-20 22:08 - 2014-06-20 22:08 - 0001095 _____ () C:\Users\Μπούφος\AppData\Local\recently-used.xbel

Some files in TEMP:

====================

C:\Users\Μπούφος\AppData\Local\Temp\AcDeltree.exe

C:\Users\Μπούφος\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpesehxy.dll

C:\Users\Μπούφος\AppData\Local\Temp\FNP_ACT_InstallerCA.dll

C:\Users\Μπούφος\AppData\Local\Temp\{6B6F282F-59A3-4E8C-8DC2-7282BF75A8CA}-48.0.2534.0_48.0.2533.0_chrome_updater.exe

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed

C:\Windows\system32\wininit.exe => File is digitally signed

C:\Windows\SysWOW64\wininit.exe => File is digitally signed

C:\Windows\explorer.exe => File is digitally signed

C:\Windows\SysWOW64\explorer.exe => File is digitally signed

C:\Windows\system32\svchost.exe => File is digitally signed

C:\Windows\SysWOW64\svchost.exe => File is digitally signed

C:\Windows\system32\services.exe => File is digitally signed

C:\Windows\system32\User32.dll => File is digitally signed

C:\Windows\SysWOW64\User32.dll => File is digitally signed

C:\Windows\system32\userinit.exe => File is digitally signed

C:\Windows\SysWOW64\userinit.exe => File is digitally signed

C:\Windows\system32\rpcss.dll => File is digitally signed

C:\Windows\system32\dnsapi.dll => File is digitally signed

C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed

C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-10-02 21:43

==================== End of FRST.txt ============================

sok_pip · October 13, 2015

This is the FRST Addition.txt:

Additional scan result of Farbar Recovery Scan Tool (x64) Version:12-10-2015

Ran by Μπούφος (2015-10-14 00:36:44)

Running from C:\Users\Μπούφος\Desktop

Windows 7 Ultimate Service Pack 1 (X64) (2013-08-13 09:12:32)

Boot Mode: Normal

==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-97775177-4094759592-3081621751-500 - Administrator - Disabled)

Guest (S-1-5-21-97775177-4094759592-3081621751-501 - Limited - Disabled)

Μπούφος (S-1-5-21-97775177-4094759592-3081621751-1000 - Administrator - Enabled) => C:\Users\Μπούφος

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}

AV: AVG AntiVirus Free Edition 2015 (Disabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: AVG AntiVirus Free Edition 2015 (Disabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}

AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AAAReports (HKLM-x32\...\{2E83EAA9-B588-4E2A-9144-08DA8AB94EC4}) (Version: 03.02.0 - Geobanking)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.356 - Adobe Systems Incorporated)

Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.8 - Adobe Systems Incorporated)

Adobe Flash Player 10 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 10.0.12.36 - Adobe Systems Incorporated)

Adobe Reader X (10.1.7) - Greek (HKLM-x32\...\{AC76BA86-7AD7-1032-7B44-AA1000000001}) (Version: 10.1.7 - Adobe Systems Incorporated)

Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.3.133 - Adobe Systems, Inc.)

Autodesk Design Review 2011 (HKLM-x32\...\Autodesk Design Review 2011) (Version: 11.0.0.86 - Autodesk, Inc.)

Autodesk Design Review 2011 (x32 Version: 11.0.0.86 - Autodesk, Inc.) Hidden

Autodesk DWF Viewer (HKLM-x32\...\Autodesk DWF Viewer) (Version: 4.1 - Autodesk, Inc.)

Autodesk Material Library 2011 (HKLM-x32\...\{9DEABCB6-B759-4D52-92F8-51B34A2B4D40}) (Version: 2.0.0.49 - Autodesk)

Autodesk Material Library 2011 Base Image library (HKLM-x32\...\{CD1E078C-A6B9-47DA-B035-6365C85C7832}) (Version: 2.0.0.49 - Autodesk)

Autodesk Material Library 2011 Medium Image library (HKLM-x32\...\{975951E7-14D0-49AF-A630-89680D12D7F6}) (Version: 2.0.0.49 - Autodesk)

Avast Free Antivirus (HKLM-x32\...\avast) (Version: 10.4.2233 - AVAST Software)

Avery Wizard 5.0 (HKLM-x32\...\{D43E122B-C053-4545-999A-2219BF8F6422}) (Version: 5.0.3 - Avery)

AVG 2015 (HKLM\...\AVG) (Version: 2015.0.6140 - AVG Technologies)

AVG 2015 (Version: 15.0.4447 - AVG Technologies) Hidden

AVG 2015 (Version: 15.0.6140 - AVG Technologies) Hidden

AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.1.8.599 - AVG Technologies)

CCleaner (HKLM\...\CCleaner) (Version: 5.08 - Piriform)

Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)

Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)

Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)

COORD_GR (HKLM-x32\...\ST5UNST #1) (Version: - )

Core Temp 1.0 RC6 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.0 - Alcpu)

D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden

doPDF 7.3 printer (HKLM\...\doPDF 7 printer_is1) (Version: - Softland)

Dropbox (HKU\S-1-5-21-97775177-4094759592-3081621751-1000\...\Dropbox) (Version: 3.10.7 - Dropbox, Inc.)

Easy Subtitles Synchronizer (HKLM-x32\...\{A35461B1-DFFD-48AE-A672-3C96A08B6A96}) (Version: 1.1.0 - ESS)

EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)

FARO LS 1.1.406.58 (HKLM-x32\...\{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}) (Version: 4.6.58.2 - FARO Scanner Production)

Fast Duplicate File Finder 4.7.0.1 (HKLM-x32\...\{AFECFED6-0A43-488F-8511-1DC6B52F31C3}_is1) (Version: 4.7.0.1 - MindGems, Inc.)

ffdshow v1.3.4530 [2014-02-09] (HKLM-x32\...\ffdshow_is1) (Version: 1.3.4530.0 - )

Folder Size 3.4.0.0 (HKLM-x32\...\{2DFA85ED-588F-4CE3-A175-29E52C3804A8}_is1) (Version: 3.4.0.0 - MindGems, Inc.)

Freemake Video Converter έκδοση 4.1.6 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.6 - Ellora Assets Corporation)

GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.101 - Google Inc.)

Google Chrome Canary (HKU\S-1-5-21-97775177-4094759592-3081621751-1000\...\Google Chrome SxS) (Version: 48.0.2534.0 - Google Inc.)

Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)

Google Earth Pro (HKLM-x32\...\{35DAA04C-1720-4BE3-A920-A03731EC6A1D}) (Version: 7.1.5.1557 - Google)

Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6904.2028 - Google Inc.)

Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden

Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden

Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden

Image Resizer for Windows (64 bit) (Version: 3.0.4802.35565 - Brice Lambson) Hidden

Image Resizer for Windows (HKLM-x32\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson)

Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)

Kodi (HKU\S-1-5-21-97775177-4094759592-3081621751-1000\...\Kodi) (Version: - XBMC-Foundation)

LAV Filters 0.63.0 (HKLM-x32\...\lavfilters_is1) (Version: 0.63.0 - Hendrik Leppkes)

LG On-Screen Phone (HKLM-x32\...\LG On-Screen Phone) (Version: 4.2.001.140114 - LG Electronics)

LG United Mobile Drivers (HKLM-x32\...\{55031CEF-CE75-4A5C-8DEA-60577820529B}) (Version: 3.10.1.0 - LG Electronics)

Malwarebytes Anti-Malware έκδοση 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)

McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.11.163.2 - McAfee, Inc.)

Microsoft .NET Framework 4.5.1 (Ελληνικά) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1032) (Version: 4.5.50938 - Microsoft Corporation)

Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)

Microsoft LifeCam (HKLM\...\{5CE7E3F5-9803-4F32-AA89-2D8848A80109}) (Version: 3.60.253.0 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft Sync Framework 2.0 Core Components (x64) ENU (HKLM\...\{8CCBEC22-D2DB-4DC9-A58A-E1A1F3A38C8A}) (Version: 2.0.1578.0 - Microsoft Corporation)

Microsoft Sync Framework 2.0 Provider Services (x64) ENU (HKLM\...\{03AC245F-4C64-425C-89CF-7783C1D3AB2C}) (Version: 2.0.1578.0 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)

Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden

Mozilla Firefox 41.0.1 (x86 el) (HKLM-x32\...\Mozilla Firefox 41.0.1 (x86 el)) (Version: 41.0.1 - Mozilla)

Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.1.5750 - Mozilla)

MPC-HC 1.7.5 (HKLM-x32\...\{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1) (Version: 1.7.5 - MPC-HC Team)

MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)

MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)

MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)

MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)

Oce Client Tools (HKLM-x32\...\{FDE19E86-2779-4055-A0F9-D909917F1C10}) (Version: 2.54.0.0 - Ocι Technologies B.V.)

Oce WPD (HKLM-x32\...\{3597d6bd-0e73-11d5-ab8a-00d0b7a62d54}) (Version: 1.22 - Oce)

OpenOffice 4.0.1 (HKLM-x32\...\{8022138A-6A6B-45CC-A2F2-81E7E21A4284}) (Version: 4.01.9714 - Apache Software Foundation)

Opera Stable 32.0.1948.69 (HKLM-x32\...\Opera 32.0.1948.69) (Version: 32.0.1948.69 - Opera Software)

Power Challenge Game Plugin (HKU\S-1-5-21-97775177-4094759592-3081621751-1000\...\Power Loader) (Version: - )

QF9700 driver (HKLM-x32\...\{F19DCE25-9F52-42A0-B3BE-2484FA5B7020}) (Version: 1.00.0000 - Corechip)

Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)

REALTEK Wireless LAN Driver and Utility (HKLM-x32\...\{9C049499-055C-4a0c-A916-1D12314F45EB}) (Version: 1.00.0180 - )

Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)

Seagate Drive Settings Installer (HKLM-x32\...\InstallShield_{91DDF870-EE18-44D8-9D93-F4C122B80908}) (Version: 1.00.0000 - Seagate Technologies LLC)

Seagate Drive Settings Installer (x32 Version: 1.00.0000 - Seagate Technologies LLC) Hidden

SketchUp 2015 (HKLM\...\{350488A4-1540-4103-8F01-B27503891EB0}) (Version: 15.3.331 - Trimble Navigation Limited)

Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)

Skype™ 7.12 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.12.101 - Skype Technologies S.A.)

Software Updater (HKLM-x32\...\{8DBC5A0A-31C4-46C7-B252-6B593EA11A87}) (Version: 4.3.7 - SEIKO EPSON CORPORATION)

Subtitle Workshop 2.51 (HKLM-x32\...\SubtitleWorkshop) (Version: - )

Subtitles 1.3 (HKLM-x32\...\{A35065BD-3077-435B-ABE5-80ADC6282046}_is1) (Version: 1.3 - Subtitles.com.br)

SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1206 - SUPERAntiSpyware.com)

swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden

SyncToy 2.1 (x64) (HKLM\...\{88DAAF05-5A72-46D2-A7C5-C3759697E943}) (Version: 2.1.0 - Microsoft)

Visual Similarity Duplicate Image Finder Demo 5.6.0.1 (HKLM-x32\...\{72D6BE71-2A6F-4D01-809E-A3174D1738A0}_is1) (Version: 5.6.0.1 - MindGems, Inc.)

Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)

Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)

Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)

VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)

WebTV Plugin (HKLM-x32\...\{6DF0A804-C373-4C28-AB2A-4B0EC9ABDA6C}) (Version: 3.0.2.33 - WebTV Plugin)

Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)

WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)

Απεγκατάσταση εκτυπωτή EPSON BX305 Series (HKLM\...\EPSON BX305 Series) (Version: - SEIKO EPSON Corporation)

Κτιριοδομικός Κανονισμός (HKLM-x32\...\Κτιριοδομικός Κανονισμός) (Version: - )

Πακέτο συμβατότητας για το 2007 Microsoft Office system (HKLM-x32\...\{90120000-0020-0408-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)

Συλλογή φωτογραφιών (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden

Φορολογία Εισοδήματος 2015 (HKLM-x32\...\Φορολογία Εισοδήματος 2015) (Version: - epsilon net)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{1BEAC3E3-B852-44F4-B468-8906C062422E}\localserver32 -> C:\Users\Μπούφος\AppData\Local\Google\Chrome SxS\Application\48.0.2534.0\delegate_execute.exe (Google Inc.)

CustomCLSID: HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{6D7AE628-FF41-4CD3-91DD-34825BB1A251}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2011\acad.exe /Automation => No File

CustomCLSID: HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{C92FB640-AD4D-498A-9979-A51A2540C977}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2011\acad.exe /Automation => No File

CustomCLSID: HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Μπούφος\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll (Google Inc.)

CustomCLSID: HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{D70E31AD-2614-49F2-B0FC-ACA781D81F3E}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2011\acad.exe => No File

CustomCLSID: HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2011\acadficn.dll => No File

CustomCLSID: HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Μπούφος\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll (Google Inc.)

CustomCLSID: HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)

CustomCLSID: HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)

==================== Restore Points =========================

13-10-2015 22:21:13 Το Microsoft Office Professional Edition 2003 καταργήθηκε

13-10-2015 22:50:51 Removed BlueStacks Notification Center

13-10-2015 22:59:15 Removed Vegas Pro 11.0

13-10-2015 23:01:11 Removed AutoCAD 2005 - English

13-10-2015 23:07:17 Ρυθμισμένο CADware 9.5

13-10-2015 23:38:07 Removed Nero Burning ROM 11.

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 05:34 - 2015-09-29 21:38 - 00000856 ____A C:\Windows\system32\Drivers\etc\hosts

0.0.0.1 mssplus.mcafee.com

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {014E97F1-1D19-460C-B378-81A6307EFB31} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000UA => C:\Users\Μπούφος\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-18] (Dropbox, Inc.)

Task: {06E2F88A-F7FE-477E-8A56-3162A1D75B81} - System32\Tasks\{E6DA3195-0946-4F95-B489-FA38193C5414} => Chrome.exe http://ui.skype.com/ui/0/6.14.0.104/el/abandoninstall?page=tsMain

Task: {07B4884F-E1C9-4471-8897-2D58E491DBCF} - System32\Tasks\{6273EE94-34D3-4D48-8231-CF63DD08B9A4} => C:\Σπίτι PC (12-08-2013)\Download\msert (1).exe [2015-10-12] ()

Task: {0DD4CC29-8E63-44AB-8808-4332AB1196AA} - System32\Tasks\{C67BEF8A-DB47-451A-B20F-FA37DE9F78F2} => C:\Σπίτι PC (12-08-2013)\Download\msert (1).exe [2015-10-12] ()

Task: {1452AD88-AEC6-4323-A5DC-129637EF4928} - System32\Tasks\{4218AAE9-8923-4CDE-990C-96F154A94A37} => C:\Σπίτι PC (12-08-2013)\Download\msert (1).exe [2015-10-12] ()

Task: {17C32E99-D737-4639-9813-A25247BB9025} - System32\Tasks\SUPERAntiSpyware Scheduled Task 2a5239c5-1672-49e3-8c9d-d80963228d23 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)

Task: {1CEE83CA-9986-4909-BC62-0E6F220E6053} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000UA => C:\Users\Μπούφος\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-26] (Google Inc.)

Task: {1D5E1878-C0E0-4689-9457-CDD71358EAC7} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000Core => C:\Users\Μπούφος\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-26] (Google Inc.)

Task: {1EA4C7F2-E816-45F9-8DE9-7F43B3411914} - System32\Tasks\{46BA6607-8D2B-40E9-AD36-5489DD277971} => C:\Σπίτι PC (12-08-2013)\Download\msert (1).exe [2015-10-12] ()

Task: {250510EE-4CA6-47C0-9A51-BDF6DADDFC74} - System32\Tasks\{28E78691-26D6-40C3-872E-4CD9B913CE1A} => pcalua.exe -a C:\ProgramData\LGMOBILEAX\LGMLauncher.exe -d C:\ProgramData\LGMOBILEAX

Task: {290DED69-2AC2-40A8-89DD-E52E6BE4E530} - System32\Tasks\{8A51F5E5-CB86-416C-A424-FE955FD4DCE4} => C:\CADW95\System\CADw95.exe

Task: {2C39DCCE-C541-439E-BE7D-25F7E2F65C27} - System32\Tasks\{7415875D-F491-4546-95A8-2CA9A19F44DC} => C:\Σπίτι PC (12-08-2013)\Download\msert (2).exe [2015-10-12] ()

Task: {31624347-C3D2-475F-AA57-2BF90EFD8C9A} - System32\Tasks\{4EE7682D-FFF2-4E02-8AEE-08BDF871B890} => pcalua.exe -a "C:\Σπίτι PC (12-08-2013)\Download\B2CAppSetup (6).exe" -d "C:\Σπίτι PC (12-08-2013)\Download"

Task: {37DC15CA-0D46-4DAE-9AEC-20EF44984291} - System32\Tasks\{CA16AE8A-262A-4957-AE92-C03EDF1E51D2} => C:\Σπίτι PC (12-08-2013)\Download\msert (1).exe [2015-10-12] ()

Task: {3D73CD93-91CB-4047-8066-54D0F3CAA315} - System32\Tasks\{EA06A30C-4E69-436C-9695-6DF194EAA1F5} => C:\Σπίτι PC (12-08-2013)\Download\msert (1).exe [2015-10-12] ()

Task: {40E90A0E-E96D-4C31-9A95-64ADEFA26416} - System32\Tasks\{CA61EA16-8C72-466E-87CD-C3FC550F38DB} => C:\Program Files (x86)\AutoCAD 2005\acad.exe

Task: {4456E65B-C304-4CF1-AB42-57A627931251} - System32\Tasks\{815F43BA-B3FB-4B91-AB73-F8792B0C753C} => pcalua.exe -a "C:\Σπίτι PC (12-08-2013)\Download\B2CAppSetup (2).exe" -d "C:\Σπίτι PC (12-08-2013)\Download"

Task: {50B8A14B-3223-4481-934B-7F4528056431} - System32\Tasks\{07D0A911-7408-4FC8-8FF4-9CBAC6314548} => C:\Σπίτι PC (12-08-2013)\Download\msert (1).exe [2015-10-12] ()

Task: {54438B5A-A716-4979-9921-ADB515930951} - System32\Tasks\{376FDDE5-700A-4C9C-8399-7D6EAA62F7D2} => C:\Users\Μπούφος\Downloads\PowerPoint 2003 Portable\PowerPoint 2003 Portable\PowerPoint 2003 Portable\Microsoft Office PowerPoint 2003.exe

Task: {5675473C-85BD-48F1-AEA3-5AA2DBCB39A4} - System32\Tasks\{54ECAA45-018C-4390-8FD8-D02A75F3C1D1} => pcalua.exe -a "C:\Σπίτι PC (12-08-2013)\Download\B2CAppSetup (4).exe" -d "C:\Σπίτι PC (12-08-2013)\Download"

Task: {56F12BA0-0E7A-4FEF-8541-3F8C72797E0B} - System32\Tasks\{8C5825FC-BA89-4D9B-B2F8-B6A1D781ED7E} => C:\Σπίτι PC (12-08-2013)\Download\msert (1).exe [2015-10-12] ()

Task: {5ED22222-92C6-417E-B09B-84F7C4440CF7} - System32\Tasks\{F1011AEE-DA64-4474-9CE8-DFB9683E4037} => C:\Σπίτι PC (12-08-2013)\Download\msert (1).exe [2015-10-12] ()

Task: {6717F065-670F-45BB-8459-1B1ADA12E6A1} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-10-09] (AVAST Software)

Task: {67C4D3B2-BE77-47B5-B74F-0FF8BDEEACA0} - System32\Tasks\{F4A19F0E-C5A9-4B7C-85AA-AC7381519F86} => C:\Users\Μπούφος\Downloads\PowerPoint 2003 Portable\PowerPoint 2003 Portable\PowerPoint 2003 Portable\Microsoft Office PowerPoint 2003.exe

Task: {6A381452-058E-4A22-B502-742256F4A63D} - System32\Tasks\Microsoft_Hardware_Launch_rundll32_exe => Rundll32.exe url.dll,OpenURL http://go.microsoft.com/fwlink/?LinkID=103422&clcid=0x409

Task: {6DD31436-151C-4C48-99BF-62DD2EAD0CCE} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000Core => C:\Users\Μπούφος\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-18] (Dropbox, Inc.)

Task: {7160ED79-38F4-4F51-A97E-1F61D3DE7598} - System32\Tasks\{6DE58AF4-13A9-42C1-8157-2C2111AA42A4} => C:\Σπίτι PC (12-08-2013)\Download\msert (1).exe [2015-10-12] ()

Task: {73D4899E-C3BB-4327-9B19-1936AA99490E} - System32\Tasks\{1CD25CEE-5BAD-45AA-A638-DD8CC0F62FB7} => C:\Σπίτι PC (12-08-2013)\Download\msert (1).exe [2015-10-12] ()

Task: {74CFCF5F-91BB-4E40-934E-EF426E455F93} - System32\Tasks\{21C388A0-C3E0-49F8-87FF-2CA0025A7965} => pcalua.exe -a G:\setup.exe -d G:\

Task: {7F791DA0-AC04-461E-8D0A-D42718D8288E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-07-17] (Piriform Ltd)

Task: {821EF2D5-5520-43BF-B512-87DEED347A4C} - System32\Tasks\{71C8EFF1-4F40-43B3-8281-852D72E67862} => C:\Σπίτι PC (12-08-2013)\Download\msert (2).exe [2015-10-12] ()

Task: {872DE0B9-9A4C-44F0-8367-7D096D4AFD1B} - System32\Tasks\{D4AFA158-B484-4114-99A6-2F53B7453C6E} => C:\Σπίτι PC (12-08-2013)\Download\msert (1).exe [2015-10-12] ()

Task: {93D85A27-13CF-4F1D-85B5-66BFB4E9203E} - System32\Tasks\{C79D2417-BF79-499F-B793-3105354BC7AC} => C:\Σπίτι PC (12-08-2013)\Download\msert (2).exe [2015-10-12] ()

Task: {ADE609A1-CBB9-4307-BAEE-89CDF274601E} - System32\Tasks\{04783EB0-5045-424B-B45D-909D6A317DC3} => C:\Σπίτι PC (12-08-2013)\Download\msert (1).exe [2015-10-12] ()

Task: {B5E4E78D-F76E-4243-A726-12D938F8B419} - System32\Tasks\{2EF62E52-8B2A-4C46-AA76-AAFAAD48535C} => Chrome.exe http://ui.skype.com/ui/0/6.14.0.104/el/abandoninstall?page=tsMain

Task: {B7C0F1E9-45C6-4225-8421-97292BF8B6D1} - System32\Tasks\{1B987491-277E-4094-A818-C051FFA2D8AB} => C:\Σπίτι PC (12-08-2013)\Download\msert (2).exe [2015-10-12] ()

Task: {B8333DDA-F327-4ABE-894B-DABF0FDA80E2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)

Task: {B85443FC-90DF-42CD-B9D9-1A7CA636AD04} - System32\Tasks\{F642C786-CD97-437F-AC15-12FD0E52B2BC} => pcalua.exe -a "C:\Σπίτι PC (12-08-2013)\Download\B2CAppSetup (3).exe" -d "C:\Σπίτι PC (12-08-2013)\Download"

Task: {BDD84F42-F9B9-48DD-A79B-C8E29E030302} - System32\Tasks\{2A04B9D7-3819-4336-B3CF-3086158F2C18} => pcalua.exe -a "C:\Σπίτι PC (12-08-2013)\Download\B2CAppSetup (1).exe" -d "C:\Σπίτι PC (12-08-2013)\Download"

Task: {C49E6F85-2830-442A-AFB4-6074CCAB22CB} - System32\Tasks\{6EDD1871-0A72-4A8B-B083-8EC22CF36C9E} => pcalua.exe -a C:\Users\Μπούφος\Downloads\B2CAppSetup(1).exe -d C:\Users\Μπούφος\Downloads

Task: {C4EB4BFD-5ED8-4DDD-8E9C-161A33D7BB59} - System32\Tasks\{7E46670E-35BA-41AD-AAFC-5B2263DD8A21} => pcalua.exe -a C:\ProgramData\LGMOBILEAX\B2C_Client\B2CAppUninstall.exe -d C:\ProgramData\LGMOBILEAX\B2C_Client

Task: {C527DAD2-EB02-47A5-B33B-1266F086BC0B} - System32\Tasks\SUPERAntiSpyware Scheduled Task a90fa0ae-ea7b-49b9-bdb2-77537e3120b8 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)

Task: {C532FCF7-B063-4AB6-ABD0-853251F379F9} - System32\Tasks\{64AD89BB-1249-499E-B80C-CB9C769AC652} => Chrome.exe http://ui.skype.com/ui/0/6.11.0.102/el/abandoninstall?page=tsMain

Task: {D086D0F7-553B-4B1F-8D20-860BF77A853F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)

Task: {D19A5966-F807-4702-8C71-D116E3E66031} - System32\Tasks\{ADE9B285-0580-4EDD-8B9A-B92D455B7F76} => C:\Σπίτι PC (12-08-2013)\Download\msert (1).exe [2015-10-12] ()

Task: {D2B9898C-91A7-42AA-815D-50A888B7B957} - System32\Tasks\{F335CEC8-AB33-4BE0-ADD5-C06E110822AF} => C:\Σπίτι PC (12-08-2013)\Download\msert (1).exe [2015-10-12] ()

Task: {D793BEF0-2BCD-4360-98E8-91A802D1799D} - System32\Tasks\{1F02D17C-BB24-4B08-9E06-8101FFB9CD92} => C:\Σπίτι PC (12-08-2013)\Download\msert (2).exe [2015-10-12] ()

Task: {DB8396C7-8766-494C-A70C-EC155898F764} - System32\Tasks\{369D3D01-B8A7-4CDE-BFC5-544FA5BDF551} => pcalua.exe -a C:\Users\Μπούφος\Downloads\B2CAppSetup.exe -d C:\Users\Μπούφος\Downloads

Task: {DDC0C662-C222-46C4-80DC-E7091367852A} - System32\Tasks\{4A09AE34-6600-41A9-A949-4CB335278BE9} => C:\Σπίτι PC (12-08-2013)\Download\msert (1).exe [2015-10-12] ()

Task: {E2B4AA57-C99D-413C-926B-E7AFBD5744FE} - System32\Tasks\{B3586267-068C-4CA2-80F6-8E8FDF6C4A7F} => Chrome.exe http://ui.skype.com/ui/0/6.14.0.104/el/abandoninstall?source=lightinstaller&page=tsPlugin

Task: {E51C2531-F72C-4928-9F50-1B39432040B2} - System32\Tasks\{BEF0CF9F-3AD3-4695-B3E4-CDDCCD2239FA} => pcalua.exe -a C:\Users\Μπούφος\Downloads\epson375004eu.exe -d C:\Users\Μπούφος\Downloads

Task: {E7F973B4-FB84-4351-ACC2-FD2F5FA48AF0} - System32\Tasks\{4967D4FC-B90A-4266-B3E8-7A67D1FB66D5} => Chrome.exe http://ui.skype.com/ui/0/6.14.0.104/el/abandoninstall?source=lightinstaller&page=tsPlugin

Task: {EA055B5F-157D-436F-9627-521745CDCD89} - System32\Tasks\{A9777D2D-B3F8-4CD6-918A-F07DD9C02C52} => C:\Σπίτι PC (12-08-2013)\Download\msert (1).exe [2015-10-12] ()

Task: {EAB1426B-86F4-41FD-8C6C-FB928D3E8756} - System32\Tasks\Opera scheduled Autoupdate 1419360966 => C:\Program Files (x86)\Opera\launcher.exe [2015-09-25] (Opera Software)

Task: {F4498380-EA4B-46A7-83C3-6D2A7941831C} - System32\Tasks\{0D174AFA-BAC5-4627-B0F1-901C92E045DB} => C:\Σπίτι PC (12-08-2013)\Download\msert (2).exe [2015-10-12] ()

Task: {F659741F-19BD-47B8-8709-1C7ED2C44DDA} - System32\Tasks\{BA6E5429-2856-4189-8DD8-46CD74CBC54C} => C:\Σπίτι PC (12-08-2013)\Download\msert (1).exe [2015-10-12] ()

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000Core.job => C:\Users\Μπούφος\AppData\Local\Dropbox\Update\DropboxUpdate.exe

Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000UA.job => C:\Users\Μπούφος\AppData\Local\Dropbox\Update\DropboxUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000Core.job => C:\Users\Μπούφος\AppData\Local\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000UA.job => C:\Users\Μπούφος\AppData\Local\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 2a5239c5-1672-49e3-8c9d-d80963228d23.job => C:\Program Files\SUPERAntiSpyware\SASTask.exedC:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task a90fa0ae-ea7b-49b9-bdb2-77537e3120b8.job => C:\Program Files\SUPERAntiSpyware\SASTask.exedC:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

==================== Loaded Modules (Whitelisted) ==============

2015-07-18 10:52 - 2015-10-06 18:31 - 01205136 _____ () C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe

2015-10-06 18:36 - 2015-10-06 18:31 - 00168336 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.1.8\loggingserver.exe

2015-07-17 20:34 - 2015-07-17 20:34 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1032.dll

2015-07-18 10:52 - 2015-10-06 18:31 - 03177360 _____ () C:\Program Files (x86)\AVG Web TuneUp\vprot.exe

2015-10-13 21:41 - 2015-10-13 10:58 - 01983816 _____ () C:\Users\Μπούφος\AppData\Local\Google\Chrome SxS\Application\48.0.2534.0\libglesv2.dll

2015-10-13 21:41 - 2015-10-13 10:58 - 00093512 _____ () C:\Users\Μπούφος\AppData\Local\Google\Chrome SxS\Application\48.0.2534.0\libegl.dll

2015-10-09 21:20 - 2015-10-09 21:20 - 00103376 _____ () C:\Program Files\AVAST Software\Avast\log.dll

2015-10-09 21:20 - 2015-10-09 21:20 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll

2015-10-13 19:00 - 2015-10-13 19:00 - 02994544 _____ () C:\Program Files\AVAST Software\Avast\defs\15101300\algo.dll

2013-08-13 12:43 - 2009-12-09 21:20 - 00126976 _____ () C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\EnumDevLib.dll

2015-10-06 18:36 - 2015-10-06 18:31 - 00528272 _____ () C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.1.8\log4cplusU.dll

2015-10-14 00:28 - 2015-10-14 00:28 - 00071168 _____ () c:\users\d84c~1\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpesehxy.dll

2015-03-05 00:45 - 2015-09-24 02:07 - 00012800 _____ () C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\QtQuick.2\qtquick2plugin.dll

2015-03-05 00:45 - 2015-09-24 02:07 - 00779776 _____ () C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll

2015-07-30 20:10 - 2015-09-24 02:07 - 00056320 _____ () C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\QtQuick\Layouts\qquicklayoutsplugin.dll

2015-03-05 00:45 - 2015-09-24 02:07 - 00012288 _____ () C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\QtQuick\Window.2\windowplugin.dll

2015-10-09 21:20 - 2015-10-09 21:20 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll

2015-07-18 10:52 - 2015-10-06 18:31 - 40638864 _____ () C:\Program Files (x86)\AVG Web TuneUp\libcef.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm

AlternateDataStreams: C:\Users\Μπούφος\Desktop\MIRSINI.rar:com.dropbox.attributes

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-97775177-4094759592-3081621751-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Μπούφος\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg

DNS Servers: 192.168.1.1

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{39E422AF-61B0-4537-91E3-B42FF2906DBE}] => (Allow) C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\RtWLan.exe

FirewallRules: [{FDD6E9DF-6CA1-40BD-A43C-F1C1ABC59C11}] => (Allow) C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\RtWLan.exe

FirewallRules: [{462D48C5-8DE7-4951-840E-2B496558E641}] => (Allow) LPort=1542

FirewallRules: [{1214C6DB-93D2-4E3D-B5D9-C0F2BA96FC91}] => (Allow) LPort=1542

FirewallRules: [{87081DF0-A132-49BE-BEDD-CA3C40C735DF}] => (Allow) LPort=53

FirewallRules: [{5F6CC2F7-BFE5-42A3-B3CB-49EDED3DB69A}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe

FirewallRules: [{A6BB355B-6FB5-43D5-80A3-4200CC10E096}] => (Allow) C:\Program Files (x86)\AVG\AVG2013\avgmfapx.exe

FirewallRules: [{BCA3E1F3-12AF-445F-A403-37BF81785F3B}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe

FirewallRules: [{D5376888-3F05-46C3-92CF-BADEAC8D27F4}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe

FirewallRules: [{72FDBE93-0D97-44C8-AE8F-C2A2C7D5A800}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe

FirewallRules: [{1DEF7F94-910D-46B6-9807-E69EE03D1C41}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe

FirewallRules: [{DA164F4D-1E63-4849-81DE-89B74BC979EA}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe

FirewallRules: [{A78AB486-1EDF-48D2-AA4C-DB3A84C0A38E}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe

FirewallRules: [{E5BC810F-42B1-40B3-8EF3-9074B0457531}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe

FirewallRules: [{2611BBF4-5F1E-452A-B942-669E10828A8C}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe

FirewallRules: [{34451548-EEF2-43DD-A34D-91F4799565B5}] => (Allow) C:\Users\Μπούφος\AppData\Roaming\uTorrent\uTorrent.exe

FirewallRules: [{E7E20831-70AA-44DA-AA7F-0BC53BDB5C56}] => (Allow) C:\Users\Μπούφος\AppData\Roaming\uTorrent\uTorrent.exe

FirewallRules: [{72C1CB04-80C8-4EE8-B465-AEF0B6FC5B19}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe

FirewallRules: [TCP Query User{E264C0F0-3A65-4743-9CB9-6E3055B01CCA}C:\users\μπούφος\appdata\locallow\powerchallenge\powersoccer\powersoccer.exe] => (Allow) C:\users\μπούφος\appdata\locallow\powerchallenge\powersoccer\powersoccer.exe

FirewallRules: [uDP Query User{85DC33E7-40A0-45AC-B3E7-C20862A1C5D0}C:\users\μπούφος\appdata\locallow\powerchallenge\powersoccer\powersoccer.exe] => (Allow) C:\users\μπούφος\appdata\locallow\powerchallenge\powersoccer\powersoccer.exe

FirewallRules: [{B0562614-C652-43B6-99AC-11B5A28231AC}] => (Allow) C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\Dropbox.exe

FirewallRules: [{F0BB0614-0A40-462D-9DC1-533EB9C0D8B5}] => (Allow) C:\Users\Μπούφος\AppData\Roaming\Dropbox\bin\Dropbox.exe

FirewallRules: [TCP Query User{0F291019-BE4F-4E3E-8F6F-358C05A02226}C:\users\μπούφος\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\μπούφος\appdata\roaming\dropbox\bin\dropbox.exe

FirewallRules: [uDP Query User{A411F896-8FD2-40A8-98F0-DF491ADAE937}C:\users\μπούφος\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\μπούφος\appdata\roaming\dropbox\bin\dropbox.exe

FirewallRules: [TCP Query User{BDA30C56-7C7C-45A8-9A77-8515E7ADE5B9}C:\shttps\http.exe] => (Allow) C:\shttps\http.exe

FirewallRules: [uDP Query User{4972600B-7A1D-4C1D-AA30-603519475731}C:\shttps\http.exe] => (Allow) C:\shttps\http.exe

FirewallRules: [{D521BEF8-A363-4210-B1C1-08D09357A8A9}] => (Allow) C:\Users\Μπούφος\AppData\Roaming\uTorrent\uTorrent.exe

FirewallRules: [{D023AC0E-0E13-4DFB-A386-7B51FD49222B}] => (Allow) C:\Users\Μπούφος\AppData\Roaming\uTorrent\uTorrent.exe

FirewallRules: [{E1EA5E26-A41B-43CE-9EEF-BBCFCCC675AF}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe

FirewallRules: [{D653473E-1542-441E-84D8-03E26C3B2EF3}] => (Allow) C:\Program Files (x86)\AVG\AVG2014\avgmfapx.exe

FirewallRules: [{8D903583-E7A4-43D3-8C90-B91CD6E1209A}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe

FirewallRules: [{C771244C-A368-44B4-B4F1-EC2DB44DDC96}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe

FirewallRules: [TCP Query User{831BEFB1-5183-4CD6-A3B7-ECBC29BE1771}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe

FirewallRules: [uDP Query User{3350684E-FCF3-4A2B-BB54-BEBC295D41E3}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe

FirewallRules: [{E5195741-0935-4D22-A6F9-3D114FBBE18B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [{51306784-8A88-405F-8236-FC1E0A5A23FE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

FirewallRules: [TCP Query User{7CC828D0-647B-4D43-9DE6-418126DE4601}C:\program files (x86)\wondershare\vcu\dscheck.exe] => (Allow) C:\program files (x86)\wondershare\vcu\dscheck.exe

FirewallRules: [uDP Query User{2BE4DDEB-4257-4413-B648-3CFCBC786900}C:\program files (x86)\wondershare\vcu\dscheck.exe] => (Allow) C:\program files (x86)\wondershare\vcu\dscheck.exe

FirewallRules: [{E0B59EAB-0A57-4D8C-A003-024BBA79DDEC}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

FirewallRules: [{2408B215-5CD0-49E8-8263-A151861FC300}] => (Allow) LPort=2869

FirewallRules: [{FDB0A119-EF14-4472-BE60-6CE140D4ABF0}] => (Allow) LPort=1900

FirewallRules: [{340C862C-490E-4E93-9286-CB1B06DEB462}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe

FirewallRules: [{E61C014E-1B78-4556-ACB1-155B87D03262}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe

FirewallRules: [{13AA8BF8-3987-400B-A031-0945937B18FB}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe

FirewallRules: [{DD288784-EFB1-421C-8F94-19DC839B195B}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe

FirewallRules: [{F3F72749-A8D3-431F-91AF-A3C137FB18D1}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe

FirewallRules: [{8D3346A1-A96A-4CCE-9AE8-7716AEE9EC16}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe

FirewallRules: [{A54CF36D-5795-4C6A-B87B-1A370E79015B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

FirewallRules: [TCP Query User{D40945B1-79EE-4794-AC72-A90F65E41AB8}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe

FirewallRules: [uDP Query User{47D7007B-ACB7-4B23-BE60-30844A0138D7}C:\program files (x86)\kodi\kodi.exe] => (Allow) C:\program files (x86)\kodi\kodi.exe

FirewallRules: [{EFA2DE18-4E64-446E-BB6E-777E64120F84}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe

FirewallRules: [{44893017-4653-45FD-8D95-7CBDC101899E}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe

==================== Faulty Device Manager Devices =============

Name: Περιφερειακή συσκευή Bluetooth

Description: Περιφερειακή συσκευή Bluetooth

Class Guid:

Manufacturer:

Service:

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Περιφερειακή συσκευή Bluetooth

Description: Περιφερειακή συσκευή Bluetooth

Class Guid:

Manufacturer:

Service:

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Ελεγκτής Ενιαίου Σειριακού Διαύλου (Universal Serial Bus - USB)

Description: Ελεγκτής Ενιαίου Σειριακού Διαύλου (Universal Serial Bus - USB)

Class Guid:

Manufacturer:

Service:

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Περιφερειακή συσκευή Bluetooth

Description: Περιφερειακή συσκευή Bluetooth

Class Guid:

Manufacturer:

Service:

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Περιφερειακή συσκευή Bluetooth

Description: Περιφερειακή συσκευή Bluetooth

Class Guid:

Manufacturer:

Service:

Problem: : The drivers for this device are not installed. (Code 28)

Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

==================== Event log errors: =========================

Application errors:

==================

Error: (10/14/2015 12:26:00 AM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/13/2015 11:43:04 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Όνομα ελαττωματικής εφαρμογής firefox.exe, έκδοση 41.0.1.5750, χρονική σήμανση 0x560b22a1

Όνομα ελαττωματικής λειτουργικής μονάδας unknown, έκδοση 0.0.0.0, χρονική σήμανση 0x00000000

Κωδικός εξαίρεσης: 0xc000041d

Μετατόπιση σφάλματος: 0x76f1bd71

Αναγνωριστικό ελαττωματικής διεργασίας: 0x1ce8

Χρόνος έναρξης ελαττωματικής εφαρμογής: 0xfirefox.exe0

Διαδρομή ελαττωματικής εφαρμογής: firefox.exe1

Διαδρομή ελλατωματικής λειτουργικής μονάδας:firefox.exe2

Αναγνωριστικό αναφοράς:firefox.exe3

Error: (10/13/2015 11:42:23 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Όνομα ελαττωματικής εφαρμογής firefox.exe, έκδοση 41.0.1.5750, χρονική σήμανση 0x560b22a1

Όνομα ελαττωματικής λειτουργικής μονάδας unknown, έκδοση 0.0.0.0, χρονική σήμανση 0x00000000

Κωδικός εξαίρεσης: 0xc000041d

Μετατόπιση σφάλματος: 0x76f1bd71

Αναγνωριστικό ελαττωματικής διεργασίας: 0x1a1c

Χρόνος έναρξης ελαττωματικής εφαρμογής: 0xfirefox.exe0

Διαδρομή ελαττωματικής εφαρμογής: firefox.exe1

Διαδρομή ελλατωματικής λειτουργικής μονάδας:firefox.exe2

Αναγνωριστικό αναφοράς:firefox.exe3

Error: (10/13/2015 11:30:34 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Όνομα ελαττωματικής εφαρμογής chrome.exe, έκδοση 45.0.2454.101, χρονική σήμανση 0x56034380

Όνομα ελαττωματικής λειτουργικής μονάδας unknown, έκδοση 0.0.0.0, χρονική σήμανση 0x00000000

Κωδικός εξαίρεσης: 0xc000041d

Μετατόπιση σφάλματος: 0x76f1bd71

Αναγνωριστικό ελαττωματικής διεργασίας: 0x1754

Χρόνος έναρξης ελαττωματικής εφαρμογής: 0xchrome.exe0

Διαδρομή ελαττωματικής εφαρμογής: chrome.exe1

Διαδρομή ελλατωματικής λειτουργικής μονάδας:chrome.exe2

Αναγνωριστικό αναφοράς:chrome.exe3

Error: (10/13/2015 11:29:36 PM) (Source: WinMgmt) (EventID: 10) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/13/2015 11:11:25 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10006) (User: Mpoufos-PC)

Description: Δεν ήταν δυνατός ο τερματισμός της εφαρμογής ή υπηρεσίας 'Εξερεύνηση των Windows'.

Error: (10/13/2015 10:58:26 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Όνομα ελαττωματικής εφαρμογής chrome.exe, έκδοση 45.0.2454.101, χρονική σήμανση 0x56034380

Όνομα ελαττωματικής λειτουργικής μονάδας unknown, έκδοση 0.0.0.0, χρονική σήμανση 0x00000000

Κωδικός εξαίρεσης: 0xc000041d

Μετατόπιση σφάλματος: 0x77bbbd71

Αναγνωριστικό ελαττωματικής διεργασίας: 0x1bb0

Χρόνος έναρξης ελαττωματικής εφαρμογής: 0xchrome.exe0

Διαδρομή ελαττωματικής εφαρμογής: chrome.exe1

Διαδρομή ελλατωματικής λειτουργικής μονάδας:chrome.exe2

Αναγνωριστικό αναφοράς:chrome.exe3

Error: (10/13/2015 10:57:59 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Όνομα ελαττωματικής εφαρμογής chrome.exe, έκδοση 45.0.2454.101, χρονική σήμανση 0x56034380

Όνομα ελαττωματικής λειτουργικής μονάδας unknown, έκδοση 0.0.0.0, χρονική σήμανση 0x00000000

Κωδικός εξαίρεσης: 0xc000041d

Μετατόπιση σφάλματος: 0x77bbbd71

Αναγνωριστικό ελαττωματικής διεργασίας: 0x1eb0

Χρόνος έναρξης ελαττωματικής εφαρμογής: 0xchrome.exe0

Διαδρομή ελαττωματικής εφαρμογής: chrome.exe1

Διαδρομή ελλατωματικής λειτουργικής μονάδας:chrome.exe2

Αναγνωριστικό αναφοράς:chrome.exe3

Error: (10/13/2015 10:53:07 PM) (Source: Application Error) (EventID: 1000) (User: )

Description: Όνομα ελαττωματικής εφαρμογής chrome.exe, έκδοση 45.0.2454.101, χρονική σήμανση 0x56034380

Όνομα ελαττωματικής λειτουργικής μονάδας unknown, έκδοση 0.0.0.0, χρονική σήμανση 0x00000000

Κωδικός εξαίρεσης: 0xc000041d

Μετατόπιση σφάλματος: 0x77bbbd71

Αναγνωριστικό ελαττωματικής διεργασίας: 0xbd4

Χρόνος έναρξης ελαττωματικής εφαρμογής: 0xchrome.exe0

Διαδρομή ελαττωματικής εφαρμογής: chrome.exe1

Διαδρομή ελλατωματικής λειτουργικής μονάδας:chrome.exe2

Αναγνωριστικό αναφοράς:chrome.exe3

Error: (10/13/2015 10:47:56 PM) (Source: ESENT) (EventID: 439) (User: )

Description: Windows (2848) Windows: Unable to write a shadowed header for file C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk. Error -1032.

System errors:

=============

Error: (10/14/2015 12:25:15 AM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας Freemake Improver εξαιτίας του ακόλουθου σφάλματος:

%%1053

Error: (10/14/2015 12:25:15 AM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: Το χρονικό όριο αναμονής ξεπεράστηκε (30000 χιλιοστά του δευτερολέπτου) κατά την αναμονή για τη σύνδεση της υπηρεσίας Freemake Improver.

Error: (10/14/2015 12:24:18 AM) (Source: atikmdag) (EventID: 10261) (User: )

Description: Display is not active

Error: (10/14/2015 12:24:18 AM) (Source: atikmdag) (EventID: 19468) (User: )

Description: CPLIB :: General - Invalid Parameter

Error: (10/13/2015 11:29:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας AvastVBox COM Service εξαιτίας του ακόλουθου σφάλματος:

%%1053

Error: (10/13/2015 11:29:10 PM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: Το χρονικό όριο αναμονής ξεπεράστηκε (30000 χιλιοστά του δευτερολέπτου) κατά την αναμονή για τη σύνδεση της υπηρεσίας AvastVBox COM Service.

Error: (10/13/2015 11:29:10 PM) (Source: DCOM) (EventID: 10005) (User: )

Description: 1053AvastVBoxSvc{F319F1B8-7587-4146-AF9C-0D6D77819BF1}

Error: (10/13/2015 11:27:37 PM) (Source: Service Control Manager) (EventID: 7000) (User: )

Description: Δεν ήταν δυνατή η εκκίνηση της υπηρεσίας Freemake Improver εξαιτίας του ακόλουθου σφάλματος:

%%1053

Error: (10/13/2015 11:27:37 PM) (Source: Service Control Manager) (EventID: 7009) (User: )

Description: Το χρονικό όριο αναμονής ξεπεράστηκε (30000 χιλιοστά του δευτερολέπτου) κατά την αναμονή για τη σύνδεση της υπηρεσίας Freemake Improver.

Error: (10/13/2015 11:26:27 PM) (Source: atikmdag) (EventID: 10261) (User: )

Description: Display is not active

==================== Memory info ===========================

Processor: AMD Phenom II X4 965 Processor

Percentage of memory in use: 35%

Total physical RAM: 7935.24 MB

Available physical RAM: 5108.46 MB

Total Virtual: 15868.67 MB

Available Virtual: 12670.52 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:226.63 GB) NTFS

Drive e: () (Fixed) (Total:232.88 GB) (Free:201.67 GB) NTFS

==================== MBR & Partition Table ==================

========================================================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 192E2E6B)

Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)

Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

========================================================

Disk: 1 (Size: 232.9 GB) (Disk ID: E5ECE5EC)

Partition 1: (Active) - (Size=232.9 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

sok_pip · October 13, 2015

This is Roguekiller log:

RogueKiller V10.11.0.0 [Oct 12 2015] by Adlice Software

mail : http://www.adlice.com/contact/

Feedback : http://forum.adlice.com

Website : http://www.adlice.com/software/roguekiller/

Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version

Started in : Normal mode

User : ??????? [Administrator]

Started from : C:\Users\???????\Desktop\RogueKiller.exe

Mode : Scan -- Date : 10/14/2015 00:57:24

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 12 ¤¤¤

[PUP] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} -> Found

[suspicious.Path] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | DelaypluginInstall : C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe [x] -> Found

[PUP] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run | vProt : "C:\Program Files (x86)\AVG Web TuneUp\vprot.exe" -> Found

[suspicious.Path] (X64) HKEY_USERS\S-1-5-21-97775177-4094759592-3081621751-1000\Software\Microsoft\Windows\CurrentVersion\Run | AVG-Secure-Search-Update_0913b : C:\Users\???????\AppData\Roaming\AVG 0913b Campaign\AVG-Secure-Search-Update-0913b.exe /PROMPT --mid f10c8ee63a0547d3812cd15256e4ca32-ad1491be2ce6c122f6b66faa90e70c2decf7d34c --CMPID 0913b [x][x][x][x][x][x][x][x] -> Found

[suspicious.Path] (X86) HKEY_USERS\S-1-5-21-97775177-4094759592-3081621751-1000\Software\Microsoft\Windows\CurrentVersion\Run | AVG-Secure-Search-Update_0913b : C:\Users\???????\AppData\Roaming\AVG 0913b Campaign\AVG-Secure-Search-Update-0913b.exe /PROMPT --mid f10c8ee63a0547d3812cd15256e4ca32-ad1491be2ce6c122f6b66faa90e70c2decf7d34c --CMPID 0913b [x][x][x][x][x][x][x][x] -> Found

[suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\ALSysIO (\??\C:\Users\D84C~1\AppData\Local\Temp\ALSysIO64.sys) -> Found

[suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\ALSysIO (\??\C:\Users\D84C~1\AppData\Local\Temp\ALSysIO64.sys) -> Found

[suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\ALSysIO (\??\C:\Users\D84C~1\AppData\Local\Temp\ALSysIO64.sys) -> Found

[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-97775177-4094759592-3081621751-1000\Software\Microsoft\Internet Explorer\Main | Start Page : -> Found

[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-97775177-4094759592-3081621751-1000\Software\Microsoft\Internet Explorer\Main | Start Page : -> Found

[PUM.SearchPage] (X64) HKEY_USERS\S-1-5-21-97775177-4094759592-3081621751-1000\Software\Microsoft\Internet Explorer\Main | Search Bar : Preserve -> Found

[PUM.SearchPage] (X86) HKEY_USERS\S-1-5-21-97775177-4094759592-3081621751-1000\Software\Microsoft\Internet Explorer\Main | Search Bar : Preserve -> Found

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 0 ¤¤¤

¤¤¤ Hosts File : 1 ¤¤¤

[C:\Windows\System32\drivers\etc\hosts] 0.0.0.1 mssplus.mcafee.com

¤¤¤ Antirootkit : 0 (Driver: Not loaded [0xc000036b]) ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤

+++++ PhysicalDrive0: ST500DM002-1BD142 ATA Device +++++

--- User ---

[MBR] 0e0fad5bae240edbdc9401e081c5a584

[bSP] 2688ef70832776e688a28e9fb0e88782 : Windows Vista/7/8|VT.Unknown MBR Code

Partition table:

0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 100 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]

1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 206848 | Size: 476838 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]

User = LL1 ... OK

User = LL2 ... OK

+++++ PhysicalDrive1: ST3250410AS ATA Device +++++

--- User ---

[MBR] a6d1d91135ac6a0a39b029517678866a

[bSP] 5e2c10e6a193ed0a66139259ea917b25 : Windows XP|VT.Unknown MBR Code

Partition table:

0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 238472 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]

User = LL1 ... OK

User = LL2 ... OK

kevinf80 · October 13, 2015

Have you replaced entry names with ?????, Continue as follows:

Download attached fixlist.txt file (end of reply) and save it to the Desktop, or the folder you saved FRST into.
NOTE. It's important that both FRST and fixlist.txt are in the same location or the fix will not work.

Run FRST and press the Fix button just once and wait.
The tool will make a log on the Desktop (Fixlog.txt) or the folder it was ran from. Please post it to your reply.

Next,

Download AdwCleaner by Xplode onto your Desktop.

Double click on Adwcleaner.exe to run the tool.
Click on the Scan in the Actions box
Please wait fot the scan to finish..
When "Waiting for action.Please uncheck elements you want to keep" shows in top line..
Click on the Cleaning box.
Next click OK on the "Closing Programs" pop up box.
Click OK on the Information box & again OK to allow the necessary reboot
After restart the AdwCleaner(C*)-Notepad log will appear, please copy/paste it in your next reply. Where * is the number relative to list of scans completed...

Next,

Please download Junkware Removal Tool to your desktop.

Shut down your protection software now to avoid potential conflicts. (re-enable when done)
Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
The tool will open and start scanning your system.
Please be patient as this can take a while to complete depending on your system's specifications.
On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
Post the contents of JRT.txt into your next message.

Next,

Scan with ZOEK

Please download ZOEK by Smeenk from here: http://hijackthis.nl/smeenk/ and save it to your desktop (preferred version is the *.exe one)
Temporary disable your AntiVirus and AntiSpyware protection - instructions here.

Right-click on icon and select Run as Administrator to start the tool.
Wait patiently until the main console will appear, it may take a minute or two.
In the main box please paste in the following script:

services_list;standardsearch;autoclean;emptyclsid;emptyfolderscheck;deleteiedefaults;firefoxlook;chromelook;FFdefaults;CHRdefaults;

Make sure that Scan All Users option is checked.
Push Run Script and wait patiently. The scan may take a couple of minutes.
When the scan completes, a zoek-results logfile should open in notepad.
If a reboot is needed, it will be opened after it. You may also find it at your main drive (usually C:\ drive)

Please include its content in your next reply. Don't forget to re-enable security software!

Let me see those logs, also give an update on any remaining issues or concerns...

Thank you,

Kevin...

Fixlist.txt

sok_pip · October 14, 2015

Hello Kevin! First of all thank you again for your time and patience. To answer your first question, I haven't replaced entry names with ????? and I dont know how to do that. I did everything else you told me and these are the results.

Fixlog.txt from FRST

Fix result of Farbar Recovery Scan Tool (x64) Version:12-10-2015

Ran by Μπούφος (2015-10-14 19:08:08) Run:1

Running from C:\Users\Μπούφος\Desktop

Loaded Profiles: Μπούφος (Available Profiles: Μπούφος)

Boot Mode: Normal

==============================================

fixlist content:

*****************

Start

CreateRestorePoint:

CloseProcesses:

HKU\S-1-5-21-97775177-4094759592-3081621751-1000\...\MountPoints2: {28da1260-0746-11e3-90bc-001b100023c1} - G:\iLinker.exe

HKU\S-1-5-21-97775177-4094759592-3081621751-1000\...\MountPoints2: {b38e30eb-61c1-11e4-b0e1-001b100023c1} - G:\LG_PC_Programs.exe

HKU\S-1-5-21-97775177-4094759592-3081621751-1000\Control Panel\Desktop\\SCRNSAVE.EXE ->

HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->

AppInit_DLLs: C:\PROGRA~2\Linkey\IEEXTE~1\iedll64.dll => No File

Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File

Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File

Handler: WSWSVCUchrome - No CLSID Value

FF Extension: No Name - C:\Users\??€????†???‚\AppData\Roaming\Mozilla\Firefox\Profiles\40pn7smn.default\extensions\DailymotionVideoDownloader@PeterOlayev.com.xpi [not found]

FF Extension: No Name - C:\Users\??€????†???‚\AppData\Roaming\Mozilla\Firefox\Profiles\40pn7smn.default\extensions\youtube2mp3@mondayx.de.xpi [not found]

S3 ALSysIO; \??\C:\Users\D84C~1\AppData\Local\Temp\ALSysIO64.sys [X]

S3 Andbus; system32\DRIVERS\lgandbus64.sys [X]

S3 AndDiag; system32\DRIVERS\lganddiag64.sys [X]

S3 AndGps; system32\DRIVERS\lgandgps64.sys [X]

S3 ANDModem; system32\DRIVERS\lgandmodem64.sys [X]

S3 andnetndis; system32\DRIVERS\lgandnetndis64.sys [X]

S3 androidusb; System32\Drivers\lgandadb.sys [X]

S3 usbbus; system32\DRIVERS\lgx64bus.sys [X]

S3 UsbDiag; system32\DRIVERS\lgx64diag.sys [X]

S3 USBModem; system32\DRIVERS\lgx64modem.sys [X]

S3 VGPU; System32\drivers\rdvgkmd.sys [X]

C:\Users\?p??f??\AppData\Local\Temp\AcDeltree.exe

C:\Users\?p??f??\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpesehxy.dll

C:\Users\?p??f??\AppData\Local\Temp\FNP_ACT_InstallerCA.dll

C:\Users\?p??f??\AppData\Local\Temp\{6B6F282F-59A3-4E8C-8DC2-7282BF75A8CA}-48.0.2534.0_48.0.2533.0_chrome_updater.exe

CustomCLSID: HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{6D7AE628-FF41-4CD3-91DD-34825BB1A251}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2011\acad.exe /Automation => No File

CustomCLSID: HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{C92FB640-AD4D-498A-9979-A51A2540C977}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2011\acad.exe /Automation => No File

CustomCLSID: HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{D70E31AD-2614-49F2-B0FC-ACA781D81F3E}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2011\acad.exe => No File

CustomCLSID: HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2011\acadficn.dll => No File

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`26hfm

AlternateDataStreams: C:\Users\?p??f??\Desktop\MIRSINI.rar:com.dropbox.attributes

EmptyTemp:

End

*****************

Restore point was successfully created.

Processes closed successfully.

"HKU\S-1-5-21-97775177-4094759592-3081621751-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{28da1260-0746-11e3-90bc-001b100023c1}" => key removed successfully

HKCR\CLSID\{28da1260-0746-11e3-90bc-001b100023c1} => key not found.

"HKU\S-1-5-21-97775177-4094759592-3081621751-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b38e30eb-61c1-11e4-b0e1-001b100023c1}" => key removed successfully

HKCR\CLSID\{b38e30eb-61c1-11e4-b0e1-001b100023c1} => key not found.

HKU\S-1-5-21-97775177-4094759592-3081621751-1000\Control Panel\Desktop\\SCRNSAVE.EXE => value removed successfully

HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE => value removed successfully

"C:\PROGRA~2\Linkey\IEEXTE~1\iedll64.dll" => Value data removed successfully.

HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => value removed successfully

HKCR\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => key not found.

HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => value removed successfully

HKCR\CLSID\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => key not found.

"HKCR\PROTOCOLS\Handler\WSWSVCUchrome" => key removed successfully

C:\Users\??€????†???‚\AppData\Roaming\Mozilla\Firefox\Profiles\40pn7smn.default\extensions\DailymotionVideoDownloader@PeterOlayev.com.xpi => not found.

C:\Users\??€????†???‚\AppData\Roaming\Mozilla\Firefox\Profiles\40pn7smn.default\extensions\youtube2mp3@mondayx.de.xpi => not found.

ALSysIO => service removed successfully

Andbus => service removed successfully

AndDiag => service removed successfully

AndGps => service removed successfully

ANDModem => service removed successfully

andnetndis => service removed successfully

androidusb => service removed successfully

usbbus => service removed successfully

UsbDiag => service removed successfully

USBModem => service removed successfully

VGPU => service removed successfully

"C:\Users\?p??f??\AppData\Local\Temp\AcDeltree.exe" => File/Folder not found.

"C:\Users\?p??f??\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpesehxy.dll" => File/Folder not found.

"C:\Users\?p??f??\AppData\Local\Temp\FNP_ACT_InstallerCA.dll" => File/Folder not found.

"C:\Users\?p??f??\AppData\Local\Temp\{6B6F282F-59A3-4E8C-8DC2-7282BF75A8CA}-48.0.2534.0_48.0.2533.0_chrome_updater.exe" => File/Folder not found.

"HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{6D7AE628-FF41-4CD3-91DD-34825BB1A251}" => key removed successfully

"HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{C92FB640-AD4D-498A-9979-A51A2540C977}" => key removed successfully

"HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{D70E31AD-2614-49F2-B0FC-ACA781D81F3E}" => key removed successfully

"HKU\S-1-5-21-97775177-4094759592-3081621751-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}" => key removed successfully

C:\ProgramData\Reprise => ":wupeogjxldtlfudivq`qsp`26hfm" ADS removed successfully.

"C:\Users\?p??f??\Desktop\MIRSINI.rar" => ":com.dropbox.attributes" ADS not found.

EmptyTemp: => 3.6 GB temporary data Removed.

The system needed a reboot.

==== End of Fixlog 19:16:25 ====

sok_pip · October 14, 2015

AdwCleaner log

# AdwCleaner v5.013 - Logfile created 14/10/2015 at 19:53:35

# Updated 09/10/2015 by Xplode

# Database : 2015-10-13.2 [server]

# Operating system : Windows 7 Ultimate Service Pack 1 (x64)

# Username : Μπούφος - MPOUFOS-PC

# Running from : C:\Users\Μπούφος\Desktop\AdwCleaner.exe

# Option : Cleaning

# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : vToolbarUpdater40.1.8

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search

[-] Folder Deleted : C:\ProgramData\AVG Secure Search

[-] Folder Deleted : C:\ProgramData\AVG Security Toolbar

[-] Folder Deleted : C:\Users\Μπούφος\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn

[-] Folder Deleted : C:\Users\Μπούφος\AppData\LocalLow\AVG Nation toolbar

[-] Folder Deleted : C:\Users\Μπούφος\AppData\Roaming\Mozilla\Firefox\Profiles\40pn7smn.default\Extensions\Avg@toolbar

***** [ Files ] *****

[-] File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml

[-] File Deleted : C:\Users\Μπούφος\AppData\Roaming\Mozilla\Firefox\Profiles\40pn7smn.default\Extensions\DailymotionVideoDownloader@PeterOlayev.com.xpi

[-] File Deleted : C:\Users\Μπούφος\AppData\Roaming\Mozilla\Firefox\Profiles\40pn7smn.default\searchplugins\avg-secure-search.xml

***** [ DLLs ] *****

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\IEPlugin.DLL

[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE

[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho

[-] Key Deleted : HKLM\SOFTWARE\Classes\protector_dll.protectorbho.1

[-] Key Deleted : HKLM\SOFTWARE\Classes\S

[-] Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi

[-] Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1

[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]

[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin

[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh

[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}

[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{408CFAD9-8F13-4747-8EC7-770A339C7237}

[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}

[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}

[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}

[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A43DE495-3D00-47D4-9D2C-303115707939}

[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}

[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}

[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}

[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}

[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}

[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}

[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}

[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}

[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}

[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}

[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}

[-] Key Deleted : HKU\.DEFAULT\Software\AVG Nation toolbar

[-] Key Deleted : HKU\.DEFAULT\Software\Avg Secure Update

[-] Key Deleted : HKCU\Software\Softonic

[-] Key Deleted : HKCU\Software\Avg Secure Update

[-] Key Deleted : HKLM\SOFTWARE\Avg Secure Update

[!] Key Not Deleted : [x64] HKCU\Software\Softonic

[!] Key Not Deleted : [x64] HKCU\Software\Avg Secure Update

***** [ Web browsers ] *****

[-] [C:\Users\Μπούφος\AppData\Roaming\Mozilla\Firefox\Profiles\40pn7smn.default\prefs.js] [Preference] Deleted : user_pref("browser.search.order.1", "default-search.net");

[-] [C:\Users\Μπούφος\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : chfdnecihphmhljaaejmgoiahnihplgn

[-] [C:\Users\Μπούφος\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : lfmhcpmkbdkbgbmkjoiopeeegenkdikp

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [4863 bytes] ##########

sok_pip · October 14, 2015

JRT log

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Malwarebytes

Version: 7.6.4 (09.28.2015:1)

OS: Windows 7 Ultimate x64

Ran by ‹§¦η¦ on ’« 14/10/2015 at 20:58:26,34

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Tasks

~~~ Registry Values

~~~ Registry Keys

~~~ Files

~~~ Folders

~~~ FireFox

Emptied folder: C:\Users\‹§¦η¦\AppData\Roaming\mozilla\firefox\profiles\40pn7smn.default\minidumps [19 files]

~~~ Chrome

[C:\Users\‹§¦η¦\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - default search provider reset

[C:\Users\‹§¦η¦\Appdata\Local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:

[C:\Users\‹§¦η¦\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset

[C:\Users\‹§¦η¦\Appdata\Local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:

[]

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Scan was completed on ’« 14/10/2015 at 21:02:19,78

End of JRT log

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

sok_pip · October 14, 2015

ZOEK log

Zoek.exe v5.0.0.1 Updated 13-October-2015

Tool run by ‹§¦η¦ on ’« 14/10/2015 at 21:03:49,38.

Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\D84C~1\Desktop\zoek.exe [scan all users] [script inserted]

==== System Restore Info ======================

14/10/2015 21:04:50 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\PROGRA~2\WinAVI deleted successfully

C:\PROGRA~2\COMMON~1\Symantec Shared deleted successfully

C:\PROGRA~3\Oracle deleted successfully

C:\Users\D84C~1\AppData\Local\EmieSiteList deleted successfully

C:\Users\D84C~1\AppData\Local\EmieUserList deleted successfully

C:\Users\D84C~1\AppData\Local\WinAVI deleted successfully

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Running Processes ======================

C:\Program Files\AVAST Software\Avast\AvastSvc.exe

C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe

C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe

C:\Program Files (x86)\Skype\Phone\Skype.exe

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe

C:\Users\Μπούφος\Desktop\zoek.exe

C:\Windows\SysWOW64\cmd.exe

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WtuSystemSupport deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\WtuSystemSupport deleted successfully

==== FireFox Fix ======================

Deleted from C:\Users\D84C~1\AppData\Roaming\Mozilla\Firefox\Profiles\40pn7smn.default\prefs.js:

user_pref("browser.startup.homepage", "www.google.gr");

user_pref("browser.search.useDBForOrder", true);

Added to C:\Users\D84C~1\AppData\Roaming\Mozilla\Firefox\Profiles\40pn7smn.default\prefs.js:

user_pref("browser.startup.homepage", "about:home");

user_pref("browser.newtab.url", "about:newtab");

==== Deleting Files \ Folders ======================

C:\PROGRA~2\WinAVI not found

C:\Users\D84C~1\AppData\Local\AVG Web TuneUp deleted

C:\Users\D84C~1\.android deleted

C:\PROGRA~2\AVG Web TuneUp deleted

C:\PROGRA~2\COMMON~1\Wondershare deleted

C:\bootsect.tmp deleted

C:\msdia80.tmp deleted

C:\PROGRA~3\AVG Web TuneUp deleted

C:\PROGRA~3\Wondershare Video Converter Ultimate deleted

C:\PROGRA~3\InstallMate deleted

C:\PROGRA~3\Package Cache deleted

C:\Users\D84C~1\AppData\Local\Wondershare deleted

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk deleted

C:\Windows\SysNative\config\systemprofile\Searches deleted

"C:\Windows\Installer\188bdf.msi" deleted

==== System Specs ======================

Windows: Windows 7 Ultimate Edition (64-bit) Service Pack 1 (Build 7601)

Memory (RAM): 7936 MB

CPU Info: AMD Phenom II X4 965 Processor

CPU Speed: 3344,0 MHz

Sound Card: Ηχεία (2- USB Sound Device |

Ακουστικά (Συσκευή High Definit |

Display Adapters: AMD 760G | AMD 760G | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver

Monitors: 1x; Οθόνη PnP γενικής χρήσης |

Screen Resolution: 1920 X 1080 - 32 bit

Network: Network Present

Network Adapters: | Realtek PCIe GBE Family Controller

CD / DVD Drives: 2x (D: | F: | ) D: HL-DT-STDVDRAM GH22NS70 | F: TSSTcorpCD/DVDW SH-S182M

Ports: COM1 | COM5 | COM6 | COM7 | COM8 | COM9 LPT1

Mouse: 3 Button Wheel Mouse Present

Hard Disks: C: 465,7GB | E: 232,9GB

Hard Disks - Free: C: 231,2GB | E: 201,7GB

Manufacturer *: American Megatrends Inc.

BIOS Info: AT/AT COMPATIBLE | 08/16/32 | _ASUS_ - 20131002

Time Zone: Χειμερινή ώρα GTB

Motherboard *: ASRock 960GM/U3S3 FX

Country: „ΆΆα›

Language: ELL

==== System Specs (Software) ======================

AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}

AV: AVG AntiVirus Free Edition 2015 *Enabled/Updated* {4D41356F-32AD-7C42-C820-63775EE4F413}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: AVG AntiVirus Free Edition 2015 *Enabled/Updated* {F620D48B-1497-73CC-F290-58052563BEAE}

SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

Internet Explorer Version: 11.0.9600.18015

Mozilla Firefox version: 41.0.1 (x86 el)

Opera Browser version: 32.0.1948.69

Google Chrome version: 45.0.2454.101

Adobe Reader version: 10.1.7.27

Sun Java version: 1.7.0_67 (32-bit)

Shockwave Player version: 12.0.3r133

==== Files Recently Created / Modified ======================

====== C:\Windows ====

2015-10-09 18:20:35 F0ECBDA4D2FD129FF15C299AF8462FC8 43112 ----a-w- C:\Windows\avastSS.scr

====== C:\Users\D84C~1\AppData\Local\Temp ====

2015-10-14 17:58:18 E0DC8C6BBC787B972A9A468648DBFD85 1008128 ----a-w- C:\Users\D84C~1\AppData\Local\Temp\jrt\libiconv2.dll

2015-10-14 17:58:18 D202BAA425176287017FFE1FB5D1B77C 103424 ----a-w- C:\Users\D84C~1\AppData\Local\Temp\jrt\libintl3.dll

2015-10-14 17:58:18 57CAC848FA14AE38F14F9441F8933282 140288 ----a-w- C:\Users\D84C~1\AppData\Local\Temp\jrt\pcre3.dll

2015-10-14 17:58:18 547C43567AB8C08EB30F6C6BACB479A3 79360 ----a-w- C:\Users\D84C~1\AppData\Local\Temp\jrt\regex2.dll

2015-10-14 17:58:17 D34DE397C882E8E71FB0966D28F07CB1 71992 ----a-w- C:\Users\D84C~1\AppData\Local\Temp\jrt\CreateRestorePoint.exe

2015-10-14 17:58:17 2F9C7FDA92C346CB5AA32091536AE0CB 43520 ----a-w- C:\Users\D84C~1\AppData\Local\Temp\jrt\nfo\nircmdc.exe

2015-10-14 17:17:20 0AE9C56506E2F69B4DEB9D90C8297938 71168 ----a-w- C:\Users\D84C~1\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpvmx1m5.dll

====== Java Cache =====

====== C:\Windows\SysWOW64 =====

====== C:\Windows\SysWOW64\drivers =====

====== C:\Windows\Sysnative =====

2015-10-09 18:20:55 36F4012709319D4D2F8858DAF2C3117E 378880 ----a-w- C:\Windows\Sysnative\aswBoot.exe

====== C:\Windows\Sysnative\drivers =====

2015-10-13 21:45:16 FD44FA80DA03EA144153A76DEBBB61B4 35064 ----a-w- C:\Windows\Sysnative\drivers\TrueSight.sys

2015-10-12 20:39:55 8F22037D3F5A6BB676525D825A1388B9 113880 ----a-w- C:\Windows\Sysnative\drivers\MBAMSwissArmy.sys

2015-10-12 20:36:56 E681CE4AE5C09651D53CB4387CA3560E 109272 ----a-w- C:\Windows\Sysnative\drivers\mbamchameleon.sys

2015-10-12 20:36:56 AE757332EA130E94E646621CC695B52A 63704 ----a-w- C:\Windows\Sysnative\drivers\mwac.sys

2015-10-12 20:36:56 A8D28D5B3E2A528D1EF0E338E44F2820 25816 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys

2015-10-09 18:21:00 8AED7DEF1F9659C911E1B1C9DD3CE8CD 132656 ----a-w- C:\Windows\Sysnative\drivers\ngvss.sys

2015-10-09 08:42:39 8F22037D3F5A6BB676525D825A1388B9 113880 ----a-w- C:\Windows\Sysnative\drivers\0E2E3554.sys

====== C:\Windows\Tasks ======

2015-10-13 18:40:05 F878EFC16B979E27DFE9DE2546CC2E3C 2968 ----a-w- C:\Windows\Sysnative\Tasks\{07D0A911-7408-4FC8-8FF4-9CBAC6314548}

2015-10-13 18:39:56 F878EFC16B979E27DFE9DE2546CC2E3C 2968 ----a-w- C:\Windows\Sysnative\Tasks\{46BA6607-8D2B-40E9-AD36-5489DD277971}

2015-10-13 18:39:21 F878EFC16B979E27DFE9DE2546CC2E3C 2968 ----a-w- C:\Windows\Sysnative\Tasks\{4218AAE9-8923-4CDE-990C-96F154A94A37}

2015-10-13 18:39:15 F878EFC16B979E27DFE9DE2546CC2E3C 2968 ----a-w- C:\Windows\Sysnative\Tasks\{6273EE94-34D3-4D48-8231-CF63DD08B9A4}

2015-10-13 18:39:14 F878EFC16B979E27DFE9DE2546CC2E3C 2968 ----a-w- C:\Windows\Sysnative\Tasks\{6DE58AF4-13A9-42C1-8157-2C2111AA42A4}

2015-10-13 18:39:06 F878EFC16B979E27DFE9DE2546CC2E3C 2968 ----a-w- C:\Windows\Sysnative\Tasks\{8C5825FC-BA89-4D9B-B2F8-B6A1D781ED7E}

2015-10-13 18:38:57 F878EFC16B979E27DFE9DE2546CC2E3C 2968 ----a-w- C:\Windows\Sysnative\Tasks\{F335CEC8-AB33-4BE0-ADD5-C06E110822AF}

2015-10-13 18:38:49 F878EFC16B979E27DFE9DE2546CC2E3C 2968 ----a-w- C:\Windows\Sysnative\Tasks\{4A09AE34-6600-41A9-A949-4CB335278BE9}

2015-10-13 18:38:40 F878EFC16B979E27DFE9DE2546CC2E3C 2968 ----a-w- C:\Windows\Sysnative\Tasks\{F1011AEE-DA64-4474-9CE8-DFB9683E4037}

2015-10-13 18:38:30 F878EFC16B979E27DFE9DE2546CC2E3C 2968 ----a-w- C:\Windows\Sysnative\Tasks\{CA16AE8A-262A-4957-AE92-C03EDF1E51D2}

2015-10-13 18:38:29 F878EFC16B979E27DFE9DE2546CC2E3C 2968 ----a-w- C:\Windows\Sysnative\Tasks\{C67BEF8A-DB47-451A-B20F-FA37DE9F78F2}

2015-10-13 18:38:28 F878EFC16B979E27DFE9DE2546CC2E3C 2968 ----a-w- C:\Windows\Sysnative\Tasks\{EA06A30C-4E69-436C-9695-6DF194EAA1F5}

2015-10-13 18:38:22 F878EFC16B979E27DFE9DE2546CC2E3C 2968 ----a-w- C:\Windows\Sysnative\Tasks\{ADE9B285-0580-4EDD-8B9A-B92D455B7F76}

2015-10-13 18:38:08 F878EFC16B979E27DFE9DE2546CC2E3C 2968 ----a-w- C:\Windows\Sysnative\Tasks\{D4AFA158-B484-4114-99A6-2F53B7453C6E}

2015-10-13 18:37:55 F878EFC16B979E27DFE9DE2546CC2E3C 2968 ----a-w- C:\Windows\Sysnative\Tasks\{BA6E5429-2856-4189-8DD8-46CD74CBC54C}

2015-10-13 18:37:31 F878EFC16B979E27DFE9DE2546CC2E3C 2968 ----a-w- C:\Windows\Sysnative\Tasks\{1CD25CEE-5BAD-45AA-A638-DD8CC0F62FB7}

2015-10-12 20:33:11 83E45D4D8EB1A69C35B2FCA4220D0CCC 2968 ----a-w- C:\Windows\Sysnative\Tasks\{1F02D17C-BB24-4B08-9E06-8101FFB9CD92}

2015-10-12 20:32:40 83E45D4D8EB1A69C35B2FCA4220D0CCC 2968 ----a-w- C:\Windows\Sysnative\Tasks\{7415875D-F491-4546-95A8-2CA9A19F44DC}

2015-10-12 20:32:26 83E45D4D8EB1A69C35B2FCA4220D0CCC 2968 ----a-w- C:\Windows\Sysnative\Tasks\{1B987491-277E-4094-A818-C051FFA2D8AB}

2015-10-12 20:31:45 83E45D4D8EB1A69C35B2FCA4220D0CCC 2968 ----a-w- C:\Windows\Sysnative\Tasks\{0D174AFA-BAC5-4627-B0F1-901C92E045DB}

2015-10-12 20:31:44 83E45D4D8EB1A69C35B2FCA4220D0CCC 2968 ----a-w- C:\Windows\Sysnative\Tasks\{C79D2417-BF79-499F-B793-3105354BC7AC}

2015-10-12 20:31:41 83E45D4D8EB1A69C35B2FCA4220D0CCC 2968 ----a-w- C:\Windows\Sysnative\Tasks\{71C8EFF1-4F40-43B3-8281-852D72E67862}

2015-10-12 20:30:31 F878EFC16B979E27DFE9DE2546CC2E3C 2968 ----a-w- C:\Windows\Sysnative\Tasks\{A9777D2D-B3F8-4CD6-918A-F07DD9C02C52}

2015-10-12 20:30:23 F878EFC16B979E27DFE9DE2546CC2E3C 2968 ----a-w- C:\Windows\Sysnative\Tasks\{04783EB0-5045-424B-B45D-909D6A317DC3}

2015-10-12 18:27:16 CFE6DDF605E3FCF3620A067E8BCDA7D1 514 ----a-w- C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 2a5239c5-1672-49e3-8c9d-d80963228d23.job

2015-10-12 18:27:16 A6C6C278752FAE41073813A249871EF1 514 ----a-w- C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task a90fa0ae-ea7b-49b9-bdb2-77537e3120b8.job

2015-10-12 18:27:16 944CB019D74206A896CCB181003D4E30 3522 ----a-w- C:\Windows\Sysnative\Tasks\SUPERAntiSpyware Scheduled Task a90fa0ae-ea7b-49b9-bdb2-77537e3120b8

2015-10-12 18:27:16 6C454C4768BC09DCA8A9F26B95585460 3596 ----a-w- C:\Windows\Sysnative\Tasks\SUPERAntiSpyware Scheduled Task 2a5239c5-1672-49e3-8c9d-d80963228d23

2015-09-26 17:31:08 910AE5F2A6E9AEF81962EFE919657F0F 4176 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000UA

2015-09-26 17:31:08 34B84B17C97F5E2CE38746BFA14A8031 1202 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000UA.job

2015-09-26 17:31:07 F4F2AD9CB2D298BA6EFD57AFBDDE5FED 3780 ----a-w- C:\Windows\Sysnative\Tasks\GoogleUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000Core

2015-09-26 17:31:07 6A8E9DC68BCBB3C828DE20233BECCF19 1150 ----a-w- C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000Core.job

====== C:\Windows\Temp ======

======= C:\Program Files =====

2015-10-12 18:26:45 -------- d-----w- C:\Program Files\SUPERAntiSpyware

======= C:\PROGRA~2 =====

2015-09-30 20:32:52 -------- d-----w- C:\PROGRA~2\Excel Password Recovery Standard

2015-09-29 12:27:26 -------- d-----w- C:\PROGRA~2\Kodi

======= C: =====

====== C:\Users\D84C~1\AppData ======

2015-10-13 19:57:55 AF7CE12C4F3DC8CB2B07685C916BBCFE 82816 ----a-w- C:\Users\D84C~1\AppData\Roaming\pcouffin.sys

2015-10-13 19:57:55 7F13C6D2AE5F9D8B41E9D7D6CAD16EAA 1167 ----a-w- C:\Users\D84C~1\AppData\Roaming\pcouffin.inf

2015-10-13 19:57:55 1E7BDB2AC98BCE13AE85C0F6DB1ECCB8 7859 ----a-w- C:\Users\D84C~1\AppData\Roaming\pcouffin.cat

2015-10-13 19:57:55 16E53BFC96CE14021C0E07EB1C198478 99384 ----a-w- C:\Users\D84C~1\AppData\Roaming\inst.exe

2015-10-12 18:27:00 -------- d-----w- C:\Users\D84C~1\AppData\Roaming\SUPERAntiSpyware.com

2015-10-03 18:50:48 -------- d-----w- C:\Users\D84C~1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox

2015-09-29 12:27:42 -------- d-----w- C:\Users\D84C~1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Kodi

2015-09-27 21:05:12 44BE71CE8601AB493CAA623067E3C494 350488 ----a-w- C:\Windows\serviceprofiles\Localservice\AppData\Local\FontCache3.0.0.0.dat

2015-09-26 17:35:11 -------- d-----w- C:\Users\D84C~1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome Canary

2015-09-24 06:48:28 CEFBC0556C94A94D30F556683C9387DA 153192 ----a-w- C:\Users\D84C~1\AppData\Local\GDIPFONTCACHEV1.DAT

====== C:\Users\D84C~1 ======

2015-10-14 16:07:27 38BE4E69AED17CFF7C001E56C4AC95A0 1801288 ----a-w- C:\Users\D84C~1\Desktop\JRT.exe

2015-10-14 16:01:31 8BA618F15C8D721B12668D602DBAE5DB 1682432 ----a-w- C:\Users\D84C~1\Desktop\AdwCleaner.exe

2015-10-13 21:45:13 -------- d-----w- C:\ProgramData\RogueKiller

2015-10-13 21:36:59 CDBF5AE1B111E7990B68DDD6924403AF 18832456 ----a-w- C:\Users\D84C~1\Desktop\RogueKiller.exe

2015-10-13 21:35:19 41D109BF3CD8E8BFECEB81EE7E58D5E7 2196480 ----a-w- C:\Users\D84C~1\Desktop\FRST64.exe

2015-10-12 18:26:47 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SUPERAntiSpyware

2015-10-12 18:26:45 -------- d-----w- C:\ProgramData\SUPERAntiSpyware.com

2015-09-24 18:20:58 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome

====== C: exe-files ==

2015-10-14 18:09:28 635DBF6CD989626ABEE812AF15948A8A 1369416 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Chrome SxS\User Data\SwReporter\4.32.1\software_reporter_tool.exe

2015-10-14 17:58:17 D34DE397C882E8E71FB0966D28F07CB1 71992 ----a-w- C:\Users\Μπούφος\AppData\Local\Temp\jrt\CreateRestorePoint.exe

2015-10-14 17:58:17 2F9C7FDA92C346CB5AA32091536AE0CB 43520 ----a-w- C:\Users\Μπούφος\AppData\Local\Temp\jrt\nfo\nircmdc.exe

2015-10-14 17:34:46 7093C496392BC2C45F4808E50BC53FF6 1320568 ----a-w- C:\Windows\Temp\opera autoupdate\installer.exe

2015-10-14 16:07:27 38BE4E69AED17CFF7C001E56C4AC95A0 1801288 ----a-w- C:\Users\Μπούφος\Desktop\JRT.exe

2015-10-14 16:01:31 8BA618F15C8D721B12668D602DBAE5DB 1682432 ----a-w- C:\Users\Μπούφος\Desktop\AdwCleaner.exe

2015-10-14 15:39:42 0DC4E8E556D95D6F2865AA8FC7414804 8099920 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Update\Install\{E34159E1-EC36-4896-8010-17D6088476AC}\48.0.2535.0_48.0.2534.0_chrome_updater.exe

2015-10-14 15:39:38 0DC4E8E556D95D6F2865AA8FC7414804 8099920 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Update\Download\{4EA16AC7-FD5A-47C3-875B-DBF4A2008C20}\48.0.2535.0\48.0.2535.0_48.0.2534.0_chrome_updater.exe

2015-10-13 21:36:59 CDBF5AE1B111E7990B68DDD6924403AF 18832456 ----a-w- C:\Users\Μπούφος\Desktop\RogueKiller.exe

2015-10-13 21:35:19 41D109BF3CD8E8BFECEB81EE7E58D5E7 2196480 ----a-w- C:\Users\Μπούφος\Desktop\FRST64.exe

2015-10-13 19:57:55 16E53BFC96CE14021C0E07EB1C198478 99384 ----a-w- C:\Users\Μπούφος\AppData\Roaming\inst.exe

2015-10-13 19:18:48 41D109BF3CD8E8BFECEB81EE7E58D5E7 2196480 ----a-w- C:\Σπίτι PC (12-08-2013)\Download\FRST64 (1).exe

2015-10-13 18:50:59 41D109BF3CD8E8BFECEB81EE7E58D5E7 2196480 ----a-w- C:\Σπίτι PC (12-08-2013)\Download\FRST64.exe

2015-10-13 18:41:32 5F192B91F351027B1FFCF525C7D1036C 1216840 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Chrome SxS\Application\48.0.2534.0\Installer\setup.exe

2015-10-13 18:41:20 E6AF25538CD06796D011939261CAA3F2 783688 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Chrome SxS\Application\48.0.2534.0\delegate_execute.exe

2015-10-13 18:39:25 E1B786569BB1713C79F16CFC64DA98E4 7235152 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Update\Install\{8E888999-3D30-4966-8EB0-D472F691AA9A}\48.0.2534.0_48.0.2533.0_chrome_updater.exe

2015-10-13 18:39:24 E1B786569BB1713C79F16CFC64DA98E4 7235152 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Update\Download\{4EA16AC7-FD5A-47C3-875B-DBF4A2008C20}\48.0.2534.0\48.0.2534.0_48.0.2533.0_chrome_updater.exe

2015-10-12 20:35:02 D3B6FA14CB7E12B7FBC0B3AA26235898 24345872 ----a-w- C:\Σπίτι PC (12-08-2013)\Download\mbam-setup-2.1.8.1057.exe

2015-10-12 20:24:07 CDA7647B0FEF82B451517EDC73B62D82 103809024 ----a-w- C:\Σπίτι PC (12-08-2013)\Download\msert (2).exe

2015-10-12 20:07:41 6B21A8349E3FE74DA80E2A6E49DA940B 90177536 ----a-w- C:\Σπίτι PC (12-08-2013)\Download\msert (1).exe

2015-10-12 18:24:48 84BD2148EE4A476E54C1014D1A005BE3 1304392 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Chrome SxS\User Data\SwReporter\4.30.5\software_reporter_tool.exe

2015-10-12 15:38:25 6B68173EFDA44BE6520C85AF2DD5C9F2 1216840 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Chrome SxS\Application\48.0.2533.0\Installer\setup.exe

2015-10-12 15:38:23 2CE23339D13B44650D64D48FF9070ADC 783688 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Chrome SxS\Application\48.0.2533.0\delegate_execute.exe

2015-10-12 15:37:27 BC7B7B2FA39FA3D749BC6D72938D2C01 6133328 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Update\Install\{79A23AE2-6A0D-4305-A220-66711EE97FC9}\48.0.2533.0_48.0.2532.0_chrome_updater.exe

2015-10-10 14:56:18 65B8C7516949C9C5B1784BCAD9827512 7485520 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Update\Install\{12898220-63BC-4D4F-9AB9-EED447EBDB46}\48.0.2532.0_48.0.2531.0_chrome_updater.exe

2015-10-09 18:39:58 A872CE792F18ADD2A8203337B968236D 49746512 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Update\Install\{00C1359A-23D5-42E8-9814-C67F70136D28}\48.0.2531.0_chrome_installer_win64.exe

2015-10-09 18:20:55 36F4012709319D4D2F8858DAF2C3117E 378880 ----a-w- C:\Windows\System32\aswBoot.exe

2015-10-09 08:54:11 D3F0E4F448CFD98F60D55D01A97939E7 707072 ----a-w- C:\Windows\System32\GWX\GWXConfigManager.exe

2015-10-09 08:54:11 A45BD2EFB89B0870E8D46E36A101FA50 418304 ----a-w- C:\Windows\System32\GWX\GWXUX.exe

2015-10-09 08:54:11 8C1FAC4BA4A1A3F4991763FA01527CB9 523264 ----a-w- C:\Windows\System32\GWX\GWX.exe

2015-10-09 08:54:11 7E925A9A931C8AE2B15EC801BE0183D6 388400 ----a-w- C:\Windows\System32\GWX\GWXUXWorker.exe

2015-10-09 08:54:11 26A2294858EA67A297D8A4920A0AF71C 360960 ----a-w- C:\Windows\System32\GWX\GWXDetector.exe

2015-10-09 08:54:11 0D400710E06F502D715853A5AF1FF98C 445952 ----a-w- C:\Windows\SysWOW64\GWX\GWX.exe

=== C: other files ==

2015-10-14 17:58:17 FCEB5D2ECAB2DCD63628CC2B95248A0A 31220 ----a-w- C:\Users\Μπούφος\AppData\Local\Temp\jrt\iexplore.bat

2015-10-14 17:58:17 F836546B0C268B8930447AD51C19B683 1568 ----a-w- C:\Users\Μπούφος\AppData\Local\Temp\jrt\delfolders.bat

2015-10-14 17:58:17 E0A0B0442A4ED95A003A1C0F0AE63E2B 4910 ----a-w- C:\Users\Μπούφος\AppData\Local\Temp\jrt\chrome_pref.bat

2015-10-14 17:58:17 D417D73EB98BB3A0F3F600D0FAD19B89 12470 ----a-w- C:\Users\Μπούφος\AppData\Local\Temp\jrt\runvalues.bat

2015-10-14 17:58:17 CA495C330AF9FB8D8608A536D6377909 7910 ----a-w- C:\Users\Μπούφος\AppData\Local\Temp\jrt\chrome.bat

2015-10-14 17:58:17 C74DACC98CBDA29BA34D82665E6C43FF 2245 ----a-w- C:\Users\Μπούφος\AppData\Local\Temp\jrt\medfos.bat

2015-10-14 17:58:17 B23B16209341AEAE62A7D32117A36F55 1192 ----a-w- C:\Users\Μπούφος\AppData\Local\Temp\jrt\TDL4.bat

2015-10-14 17:58:17 A8F5541C419593F3ECAC0E0A3FB0F2BA 1162 ----a-w- C:\Users\Μπούφος\AppData\Local\Temp\jrt\surfvox.bat

2015-10-14 17:58:17 963314F5C29169C336EB321B21120AFA 18094 ----a-w- C:\Users\Μπούφος\AppData\Local\Temp\jrt\get.bat

2015-10-14 17:58:17 93A6196509429319C854A941F14F1E7C 252 ----a-w- C:\Users\Μπούφος\AppData\Local\Temp\jrt\ev_clear.bat

2015-10-14 17:58:17 9246BABAAAE2978EABF6F0D784B0683D 34543 ----a-w- C:\Users\Μπούφος\AppData\Local\Temp\jrt\prelim.bat

2015-10-14 17:58:17 891F0F4D0B28EB6721C8FE7B8AA10217 17954 ----a-w- C:\Users\Μπούφος\AppData\Local\Temp\jrt\mws.bat

2015-10-14 17:58:17 81F82F01664FD84D77EF8521A2C39463 23026 ----a-w- C:\Users\Μπούφος\AppData\Local\Temp\jrt\ask.bat

2015-10-14 17:58:17 7C2536139B5D838D88D3E0082F9A77FC 167302 ----a-w- C:\Users\Μπούφος\AppData\Local\Temp\jrt\firefox.bat

2015-10-14 17:58:17 5AA2EDB2A4E406EDBCF2281726A7557B 9123 ----a-w- C:\Users\Μπούφος\AppData\Local\Temp\jrt\searchlnk.bat

2015-10-14 17:58:17 568A88D4AEC0FEA6E36C8605F9CCAB37 134 ----a-w- C:\Users\Μπούφος\AppData\Local\Temp\jrt\edge.bat

2015-10-14 17:58:17 1E8F0916024B512938FB5E905D8B6A7C 150562 ----a-w- C:\Users\Μπούφος\AppData\Local\Temp\jrt\misc.bat

2015-10-13 21:45:16 FD44FA80DA03EA144153A76DEBBB61B4 35064 ----a-w- C:\Windows\System32\drivers\TrueSight.sys

2015-10-13 19:57:55 AF7CE12C4F3DC8CB2B07685C916BBCFE 82816 ----a-w- C:\Users\Μπούφος\AppData\Roaming\pcouffin.sys

2015-10-13 18:41:31 D2F6A1B11344D9AC7BCFB75900D4ADE1 23668 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Chrome SxS\Application\48.0.2534.0\default_apps\youtube.crx

2015-10-13 18:41:31 8AD223868AB9974F7746D0227730A0CC 26392 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Chrome SxS\Application\48.0.2534.0\default_apps\search.crx

2015-10-13 18:41:31 71E1283B8440F6264CEC99DF9AD81F5B 25561 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Chrome SxS\Application\48.0.2534.0\default_apps\drive.crx

2015-10-13 18:41:31 2E2E328E5BF6BE61203164B3E9EA8094 24040 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Chrome SxS\Application\48.0.2534.0\default_apps\gmail.crx

2015-10-13 18:41:31 2C71C49F991095A1848624907BACBB08 4578 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Chrome SxS\Application\48.0.2534.0\default_apps\docs.crx

2015-10-12 20:39:55 8F22037D3F5A6BB676525D825A1388B9 113880 ----a-w- C:\Windows\System32\drivers\MBAMSwissArmy.sys

2015-10-12 20:36:56 E681CE4AE5C09651D53CB4387CA3560E 109272 ----a-w- C:\Windows\System32\drivers\mbamchameleon.sys

2015-10-12 20:36:56 AE757332EA130E94E646621CC695B52A 63704 ----a-w- C:\Windows\System32\drivers\mwac.sys

2015-10-12 20:36:56 A8D28D5B3E2A528D1EF0E338E44F2820 25816 ----a-w- C:\Windows\System32\drivers\mbam.sys

2015-10-12 15:38:21 D2F6A1B11344D9AC7BCFB75900D4ADE1 23668 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Chrome SxS\Application\48.0.2533.0\default_apps\youtube.crx

2015-10-12 15:38:21 8AD223868AB9974F7746D0227730A0CC 26392 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Chrome SxS\Application\48.0.2533.0\default_apps\search.crx

2015-10-12 15:38:21 71E1283B8440F6264CEC99DF9AD81F5B 25561 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Chrome SxS\Application\48.0.2533.0\default_apps\drive.crx

2015-10-12 15:38:21 2E2E328E5BF6BE61203164B3E9EA8094 24040 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Chrome SxS\Application\48.0.2533.0\default_apps\gmail.crx

2015-10-12 15:38:21 2C71C49F991095A1848624907BACBB08 4578 ----a-w- C:\Users\Μπούφος\AppData\Local\Google\Chrome SxS\Application\48.0.2533.0\default_apps\docs.crx

2015-10-10 06:32:17 558E7F0E44D4700372EDAC81DA83D98D 296496 ----a-w- C:\Windows\System32\vbox\VBoxSF.sys

2015-10-09 18:24:00 A2126C4423FD5B651A426B7E0580E05E 5186127 ----a-w- C:\Σπίτι PC (12-08-2013)\Download\photoshop cs6 amtlib.dll ok.zip

2015-10-09 18:21:00 8AED7DEF1F9659C911E1B1C9DD3CE8CD 132656 ----a-w- C:\Windows\System32\drivers\ngvss.sys

2015-10-09 08:42:39 8F22037D3F5A6BB676525D825A1388B9 113880 ----a-w- C:\Windows\System32\drivers\0E2E3554.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-97775177-4094759592-3081621751-1000\Software\Microsoft\Windows\CurrentVersion\Run]

"AVG-Secure-Search-Update_0913b"="C:\Users\‹§¦η¦\AppData\Roaming\AVG 0913b Campaign\AVG-Secure-Search-Update-0913b.exe /PROMPT --mid f10c8ee63a0547d3812cd15256e4ca32-ad1491be2ce6c122f6b66faa90e70c2decf7d34c --CMPID 0913b"

"Dropbox Update"="C:\Users\‹§¦η¦\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c"

"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

"EPSON BX305 Series"="C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGJE.EXE /FU C:\Windows\TEMP\E_SE9E1.tmp /EF HKCU"

"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"

"Google Update"="C:\Users\‹§¦η¦\AppData\Local\Google\Update\GoogleUpdate.exe /c"

"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"AVG_UI"="C:\Program Files (x86)\AVG\AVG2015\avgui.exe /TRAYONLY"

"LifeCam"="C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"

"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"AvastUI.exe"="C:\Program Files\AVAST Software\Avast\AvastUI.exe /nogui"

"Oce Monitor"="C:\Program Files (x86)\Oce\Repro Desk\OceNetSync.exe"

"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

"DelaypluginInstall"="C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"AVG-Secure-Search-Update_0913b"="C:\Users\‹§¦η¦\AppData\Roaming\AVG 0913b Campaign\AVG-Secure-Search-Update-0913b.exe /PROMPT --mid f10c8ee63a0547d3812cd15256e4ca32-ad1491be2ce6c122f6b66faa90e70c2decf7d34c --CMPID 0913b"

"Dropbox Update"="C:\Users\‹§¦η¦\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c"

"CCleaner Monitoring"="C:\Program Files\CCleaner\CCleaner64.exe /MONITOR"

"EPSON BX305 Series"="C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGJE.EXE /FU C:\Windows\TEMP\E_SE9E1.tmp /EF HKCU"

"Skype"="C:\Program Files (x86)\Skype\Phone\Skype.exe /minimized /regrun"

"Google Update"="C:\Users\‹§¦η¦\AppData\Local\Google\Update\GoogleUpdate.exe /c"

"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"

==== Startup Folders ======================

2013-09-13 21:15:28 1103 ----a-w- C:\Users\D84C~1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000Core.job --a------ C:\Users\\AppData\Local\Dropbox\Update\DropboxUpdate.exe []

C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000UA.job --a------ C:\Users\\AppData\Local\Dropbox\Update\DropboxUpdate.exe []

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [30/08/2015 20:04]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [30/08/2015 20:04]

C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 2a5239c5-1672-49e3-8c9d-d80963228d23.job --a------ C:\Program Files\SUPERAntiSpyware\SASTask.exe [07/11/2013 23:08]

C:\Windows\tasks\SUPERAntiSpyware Scheduled Task a90fa0ae-ea7b-49b9-bdb2-77537e3120b8.job --a------ C:\Program Files\SUPERAntiSpyware\SASTask.exe [07/11/2013 23:08]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"]

"C:\Windows\SysNative\tasks\DropboxUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000Core" [C:\Users\‹§¦η¦\AppData\Local\Dropbox\Update\DropboxUpdate.exe]

"C:\Windows\SysNative\tasks\DropboxUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000UA" [C:\Users\‹§¦η¦\AppData\Local\Dropbox\Update\DropboxUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000Core" [C:\Users\‹§¦η¦\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-97775177-4094759592-3081621751-1000UA" [C:\Users\‹§¦η¦\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\Opera scheduled Autoupdate 1419360966" [C:\Program Files (x86)\Opera\launcher.exe]

"C:\Windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe]

"C:\Windows\SysNative\tasks\SUPERAntiSpyware Scheduled Task 2a5239c5-1672-49e3-8c9d-d80963228d23" [C:\Program Files\SUPERAntiSpyware\SASTask.exe]

"C:\Windows\SysNative\tasks\SUPERAntiSpyware Scheduled Task a90fa0ae-ea7b-49b9-bdb2-77537e3120b8" [C:\Program Files\SUPERAntiSpyware\SASTask.exe]

"C:\Windows\SysNative\tasks\{04783EB0-5045-424B-B45D-909D6A317DC3}" [C:\‘§ε« PC (12-08-2013)\Download\msert (1).exe]

"C:\Windows\SysNative\tasks\{07D0A911-7408-4FC8-8FF4-9CBAC6314548}" [C:\‘§ε« PC (12-08-2013)\Download\msert (1).exe]

"C:\Windows\SysNative\tasks\{0D174AFA-BAC5-4627-B0F1-901C92E045DB}" [C:\‘§ε« PC (12-08-2013)\Download\msert (2).exe]

"C:\Windows\SysNative\tasks\{1B987491-277E-4094-A818-C051FFA2D8AB}" [C:\‘§ε« PC (12-08-2013)\Download\msert (2).exe]

"C:\Windows\SysNative\tasks\{1CD25CEE-5BAD-45AA-A638-DD8CC0F62FB7}" [C:\‘§ε« PC (12-08-2013)\Download\msert (1).exe]

"C:\Windows\SysNative\tasks\{1F02D17C-BB24-4B08-9E06-8101FFB9CD92}" [C:\‘§ε« PC (12-08-2013)\Download\msert (2).exe]

"C:\Windows\SysNative\tasks\{2EF62E52-8B2A-4C46-AA76-AAFAAD48535C}" ["c:\program files (x86)\google\chrome\application\chrome.exe"]

"C:\Windows\SysNative\tasks\{376FDDE5-700A-4C9C-8399-7D6EAA62F7D2}" [C:\Users\‹§¦η¦\Downloads\PowerPoint 2003 Portable\PowerPoint 2003 Portable\PowerPoint 2003 Portable\Microsoft Office PowerPoint 2003.exe]

"C:\Windows\SysNative\tasks\{4218AAE9-8923-4CDE-990C-96F154A94A37}" [C:\‘§ε« PC (12-08-2013)\Download\msert (1).exe]

"C:\Windows\SysNative\tasks\{46BA6607-8D2B-40E9-AD36-5489DD277971}" [C:\‘§ε« PC (12-08-2013)\Download\msert (1).exe]

"C:\Windows\SysNative\tasks\{4967D4FC-B90A-4266-B3E8-7A67D1FB66D5}" ["c:\program files (x86)\google\chrome\application\chrome.exe"]

"C:\Windows\SysNative\tasks\{4A09AE34-6600-41A9-A949-4CB335278BE9}" [C:\‘§ε« PC (12-08-2013)\Download\msert (1).exe]

"C:\Windows\SysNative\tasks\{6273EE94-34D3-4D48-8231-CF63DD08B9A4}" [C:\‘§ε« PC (12-08-2013)\Download\msert (1).exe]

"C:\Windows\SysNative\tasks\{64AD89BB-1249-499E-B80C-CB9C769AC652}" ["c:\program files (x86)\google\chrome\application\chrome.exe"]

"C:\Windows\SysNative\tasks\{6DE58AF4-13A9-42C1-8157-2C2111AA42A4}" [C:\‘§ε« PC (12-08-2013)\Download\msert (1).exe]

"C:\Windows\SysNative\tasks\{71C8EFF1-4F40-43B3-8281-852D72E67862}" [C:\‘§ε« PC (12-08-2013)\Download\msert (2).exe]

"C:\Windows\SysNative\tasks\{7415875D-F491-4546-95A8-2CA9A19F44DC}" [C:\‘§ε« PC (12-08-2013)\Download\msert (2).exe]

"C:\Windows\SysNative\tasks\{8A51F5E5-CB86-416C-A424-FE955FD4DCE4}" [C:\CADW95\System\CADw95.exe]

"C:\Windows\SysNative\tasks\{8C5825FC-BA89-4D9B-B2F8-B6A1D781ED7E}" [C:\‘§ε« PC (12-08-2013)\Download\msert (1).exe]

"C:\Windows\SysNative\tasks\{A9777D2D-B3F8-4CD6-918A-F07DD9C02C52}" [C:\‘§ε« PC (12-08-2013)\Download\msert (1).exe]

"C:\Windows\SysNative\tasks\{ADE9B285-0580-4EDD-8B9A-B92D455B7F76}" [C:\‘§ε« PC (12-08-2013)\Download\msert (1).exe]

"C:\Windows\SysNative\tasks\{B3586267-068C-4CA2-80F6-8E8FDF6C4A7F}" ["c:\program files (x86)\google\chrome\application\chrome.exe"]

"C:\Windows\SysNative\tasks\{BA6E5429-2856-4189-8DD8-46CD74CBC54C}" [C:\‘§ε« PC (12-08-2013)\Download\msert (1).exe]

"C:\Windows\SysNative\tasks\{C67BEF8A-DB47-451A-B20F-FA37DE9F78F2}" [C:\‘§ε« PC (12-08-2013)\Download\msert (1).exe]

"C:\Windows\SysNative\tasks\{C79D2417-BF79-499F-B793-3105354BC7AC}" [C:\‘§ε« PC (12-08-2013)\Download\msert (2).exe]

"C:\Windows\SysNative\tasks\{CA16AE8A-262A-4957-AE92-C03EDF1E51D2}" [C:\‘§ε« PC (12-08-2013)\Download\msert (1).exe]

"C:\Windows\SysNative\tasks\{CA61EA16-8C72-466E-87CD-C3FC550F38DB}" [C:\Program Files (x86)\AutoCAD 2005\acad.exe]

"C:\Windows\SysNative\tasks\{D4AFA158-B484-4114-99A6-2F53B7453C6E}" [C:\‘§ε« PC (12-08-2013)\Download\msert (1).exe]

"C:\Windows\SysNative\tasks\{E6DA3195-0946-4F95-B489-FA38193C5414}" ["c:\program files (x86)\google\chrome\application\chrome.exe"]

"C:\Windows\SysNative\tasks\{EA06A30C-4E69-436C-9695-6DF194EAA1F5}" [C:\‘§ε« PC (12-08-2013)\Download\msert (1).exe]

"C:\Windows\SysNative\tasks\{F1011AEE-DA64-4474-9CE8-DFB9683E4037}" [C:\‘§ε« PC (12-08-2013)\Download\msert (1).exe]

"C:\Windows\SysNative\tasks\{F335CEC8-AB33-4BE0-ADD5-C06E110822AF}" [C:\‘§ε« PC (12-08-2013)\Download\msert (1).exe]

"C:\Windows\SysNative\tasks\{F4A19F0E-C5A9-4B7C-85AA-AC7381519F86}" [C:\Users\‹§¦η¦\Downloads\PowerPoint 2003 Portable\PowerPoint 2003 Portable\PowerPoint 2003 Portable\Microsoft Office PowerPoint 2003.exe]

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\D84C~1\AppData\Roaming\Mozilla\Firefox\Profiles\40pn7smn.default

user_pref("browser.startup.homepage", "about:home");

user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]

"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [09/10/2015 21:20]

==== Firefox Extensions ======================

ProfilePath: C:\Users\D84C~1\AppData\Roaming\Mozilla\Firefox\Profiles\40pn7smn.default

- Youtube To MP3 PRO converter - %ProfilePath%\extensions\jid0-irAmugmQgdURBSCIFZAcjR8ZQMg@jetpack.xpi

- YouTube to MP3 - %ProfilePath%\extensions\youtube2mp3@mondayx.de.xpi

- Easy Youtube Video Downloader Express - %ProfilePath%\extensions\{b9acf540-acba-11e1-8ccb-001fd0e08bd4}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox

- Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

- Skype Click to Call - %AppDir%\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi

==== Firefox Plugins ======================

==== Chromium Look ======================

Google Chrome Version: 45.0.2454.101

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[14/04/2015 22:03]

lifbcibllhkdhoafpjfnlhfpfgnpldfl - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx[01/05/2015 11:17]

AccuWeather Forecast - D84C~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\anaabbcbolfcclofcpdipmefibpgacgc

Google Docs - D84C~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake

Google Drive - D84C~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf

YouTube - D84C~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - D84C~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Easy Youtube Video Downloader - D84C~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmknocfkgffdgekmfonabppnhdgmghem

Facebook Chat Privacy - D84C~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gfpgaanechfneiboempkfjghninbibjn

Google Docs Offline - D84C~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi

AdBlock - D84C~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom

Avast Online Security - D84C~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki

Windows Media Player Extension for HTML5 - D84C~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\hokdglbhghcebcopdbanieangmcamaak

Skype Click to Call - D84C~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl

Chrome Web Store Payments - D84C~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

WeVideo - Video Editor and Maker - D84C~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\okgjbfikepgflmlelgfgecmgjnmnmnnb

Gmail - D84C~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

Google Slides - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek

Google Docs - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake

Google Drive - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf

YouTube - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Google Sheets - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap

Google Docs Offline - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi

AdBlock - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom

Avast Online Security - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki

Google Keep - notes and lists - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki

Skype Click to Call - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl

Norton Safe Search as default for Chrome - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\nmgcfemagnogdodbambjhdcmfcpicngl

Chrome Web Store Payments - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Gmail - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

Google Docs - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake

Google Drive - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf

YouTube - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Google Docs Offline - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi

AdBlock - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Extensions\gighmmpiobklfepjocnamgkkbiglidom

Unlimited Free VPN - Hola - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio

Avast Online Security - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki

Chrome Web Store Payments - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Gmail - D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chromium Fix ======================

C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Local Storage\http_www.azlyrics.com_0.localstorage deleted successfully

C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Local Storage\http_www.azlyrics.com_0.localstorage-journal deleted successfully

C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Local Storage\https_static.olark.com_0.localstorage deleted successfully

C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Local Storage\https_static.olark.com_0.localstorage-journal deleted successfully

C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Local Storage\http_c.betrad.com_0.localstorage deleted successfully

C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Local Storage\http_c.betrad.com_0.localstorage-journal deleted successfully

C:\Users\D84C~1\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmknocfkgffdgekmfonabppnhdgmghem deleted successfully

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"

==== Reset Google Chrome ======================

C:\Users\D84C~1\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully

C:\Users\D84C~1\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully

C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Default\Preferences was reset successfully

C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Default\Secure Preferences was reset successfully

C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Preferences was reset successfully

C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Secure Preferences was reset successfully

C:\Users\D84C~1\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Default\Web Data was reset successfully

C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Default\Web Data-journal was reset successfully

C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Web Data will be reset at reboot

C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Web Data-journal will be reset at reboot

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A0A5CBD84C137C642B25B695E31AA178 deleted successfully

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Web TuneUp deleted successfully

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{8DBC5A0A-31C4-46C7-B252-6B593EA11A87} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\A0A5CBD84C137C642B25B695E31AA178 deleted successfully

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=userinit.exe,

O1 - Hosts: 0.0.0.1 mssplus.mcafee.com

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

O2 - BHO: Βοηθός εισόδου στο λογαριασμό Microsoft - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2015\avgui.exe" /TRAYONLY

O4 - HKLM\..\Run: [LifeCam] "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui

O4 - HKLM\..\Run: [Oce Monitor] C:\Program Files (x86)\Oce\Repro Desk\OceNetSync.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [DelaypluginInstall] C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe

O4 - HKCU\..\Run: [AVG-Secure-Search-Update_0913b] C:\Users\Μπούφος\AppData\Roaming\AVG 0913b Campaign\AVG-Secure-Search-Update-0913b.exe /PROMPT --mid f10c8ee63a0547d3812cd15256e4ca32-ad1491be2ce6c122f6b66faa90e70c2decf7d34c --CMPID 0913b

O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Μπούφος\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c

O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR

O4 - HKCU\..\Run: [EPSON BX305 Series] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGJE.EXE /FU "C:\Windows\TEMP\E_SE9E1.tmp" /EF "HKCU"

O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun

O4 - HKCU\..\Run: [Google Update] "C:\Users\Μπούφος\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [sUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - Startup: Dropbox.lnk = ?

O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe

O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe

O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe

O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe

O23 - Service: Seagate Drive Settings Service (FreeAgentGoFlex Service) - Seagate Technology LLC - C:\Program Files (x86)\Seagate\DriveSettings\Sync\SeagateDriveSettingsService.exe

O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe

O23 - Service: Υπηρεσία Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Υπηρεσία Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe

O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.11.163\McCHSvc.exe

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: ORD Process Acrobat (ORD_ProcessAcrobat) - Oce - C:\Program Files (x86)\Oce\Repro Desk\ORD_ProcessAcrobat.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Realtek11nCU - Realtek - C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\RtlService.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\D84C~1\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XLWH5PHA will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\D84C~1\AppData\Local\Opera Software\Opera Stable\Cache emptied successfully

C:\Users\D84C~1\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Default\Cache emptied successfully

C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Cache will be emptied at reboot

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=377 folders=107 157620329 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully

C:\Users\Default User\AppData\Local\Temp emptied successfully

C:\Users\D84C~1\AppData\Local\Temp will be emptied at reboot

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp will be emptied at reboot

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully

C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\D84C~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Web Data" not found

"C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Web Data-journal" not found

"C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Cache\data_0" deleted

"C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Cache\data_1" deleted

"C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Cache\data_2" deleted

"C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Cache\data_3" deleted

"C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Cache\data_4" deleted

"C:\Users\D84C~1\AppData\Local\Google\Chrome SxS\User Data\Profile 1\Cache\index" deleted

"C:\Users\D84C~1\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XLWH5PHA" not found

"C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Low" not deleted

==== EOF on ’« 14/10/2015 at 21:46:14,90 ======================

sok_pip · October 14, 2015

Also, to give an update on the remaining issues as you asked me, I tried to open Opera, Chrome and Mozzilla and they still doesn't work. The only one is still working is Google Canary! Thank you again Kevin and I am waiting for your reply.

kevinf80 · October 14, 2015

I want you to make a clean install of Chrome, see how it responds when complete:

If your Chrome Bookmarks are important do this first:

Go to this link: http://www.wikihow.com/Export-Bookmarks-from-Chrome follow the instructions and Export your Bookmarks from Chrome, save to your Desktop or similar. Note the instructions can also be used to Import the bookmarks.....

Continue for a clean install:

Remove all synced data from Chrome go here: http://www.howtogeek.com/103655/how-to-delete-your-google-chrome-browser-sync-data/ follow those instructions...

Uninstall Chrome: https://support.google.com/chrome/answer/95319?hl=en-GB follow those instructions, ensure the option to "Also delete your browsing data" is selected. <<--- Very important!!

Install Google Chrome from here: https://www.google.com/intl/en_uk/chrome/browser/desktop/index.html

Install Adblock Plus to Chrome: https://chrome.google.com/webstore/detail/adblock-plus/cfhdojbkjhnklbpkdaibdccddilifddb

Thank you,

Kevin

sok_pip · October 14, 2015

When I uninstall chrome there is no option "Also delete your browsing data". So chrome was uninstalled but without that very important part beeing selected. I tried to reinstall Chrome anyway and uninstall it again but still there was no option to "Also delete your browsing data".

kevinf80 · October 14, 2015

Ok, what is the outcome of the re-install..

sok_pip · October 14, 2015

Nothing. Still doesnt open Chrome. Same with mozzilla and opera. Just Canary still working

kevinf80 · October 14, 2015

Please read carefully and follow these steps.

Download TDSSKiller from here http://support.kaspersky.com/downloads/utils/tdsskiller.exe and save it to your Desktop.

Doubleclick on

to run the application.

The "Ready to scan" window will open, Click on "Change parameters"

Place a checkmark next to Verify Driver Digital Signature and Detect TDLFS file system, (Leave "Service & Drivers" and "Boot Sectors" ticked. Click OK.

Select "Start Scan"

If an infected file is detected, the default action will be Cure, click on Continue.

If a suspicious file is detected, the default action will be Skip, click on Continue.

It may ask you to reboot the computer to complete the process. Click on Reboot Now.

If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

sok_pip · October 14, 2015

TDSSkiller Report (part1 because the post was too long):

00:59:21.0745 0x159c TDSS rootkit removing tool 3.1.0.5 Jul 24 2015 12:29:57

00:59:24.0410 0x159c ============================================================

00:59:24.0410 0x159c Current date / time: 2015/10/15 00:59:24.0410

00:59:24.0410 0x159c SystemInfo:

00:59:24.0410 0x159c

00:59:24.0410 0x159c OS Version: 6.1.7601 ServicePack: 1.0

00:59:24.0410 0x159c Product type: Workstation

00:59:24.0411 0x159c ComputerName: MPOUFOS-PC

00:59:24.0411 0x159c UserName: Μπούφος

00:59:24.0411 0x159c Windows directory: C:\Windows

00:59:24.0411 0x159c System windows directory: C:\Windows

00:59:24.0411 0x159c Running under WOW64

00:59:24.0411 0x159c Processor architecture: Intel x64

00:59:24.0411 0x159c Number of processors: 4

00:59:24.0411 0x159c Page size: 0x1000

00:59:24.0411 0x159c Boot type: Normal boot

00:59:24.0411 0x159c ============================================================

00:59:26.0075 0x159c KLMD registered as C:\Windows\system32\drivers\97945022.sys

00:59:27.0069 0x159c System UUID: {11873FA5-6CBD-C83C-E267-47780C5E1B74}

00:59:28.0014 0x159c Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

00:59:31.0530 0x159c Drive \Device\Harddisk1\DR1 - Size: 0x3A38A25E00 ( 232.88 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

00:59:31.0562 0x159c ============================================================

00:59:31.0562 0x159c \Device\Harddisk0\DR0:

00:59:31.0563 0x159c MBR partitions:

00:59:31.0563 0x159c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000

00:59:31.0563 0x159c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353000

00:59:31.0563 0x159c \Device\Harddisk1\DR1:

00:59:31.0580 0x159c MBR partitions:

00:59:31.0580 0x159c \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C4542

00:59:31.0580 0x159c ============================================================

00:59:31.0600 0x159c C: <-> \Device\Harddisk0\DR0\Partition2

00:59:31.0612 0x159c E: <-> \Device\Harddisk1\DR1\Partition1

00:59:31.0669 0x159c ============================================================

00:59:31.0669 0x159c Initialize success

00:59:31.0669 0x159c ============================================================

00:59:59.0627 0x117c ============================================================

00:59:59.0627 0x117c Scan started

00:59:59.0627 0x117c Mode: Manual; SigCheck; TDLFS;

00:59:59.0627 0x117c ============================================================

00:59:59.0627 0x117c KSN ping started

01:00:15.0594 0x117c KSN ping finished: true

01:00:16.0428 0x117c ================ Scan system memory ========================

01:00:16.0429 0x117c System memory - ok

01:00:16.0430 0x117c ================ Scan services =============================

01:00:16.0539 0x117c [ 970C70F6B2953ED43822D3797855D84C, CB22723678B514277BC6E6DDDD206F3B2377CD889C9D473A47A7056BE597BC6B ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE

01:00:16.0665 0x117c !SASCORE - ok

01:00:16.0822 0x117c [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys

01:00:16.0913 0x117c 1394ohci - ok

01:00:16.0941 0x117c [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys

01:00:16.0970 0x117c ACPI - ok

01:00:16.0978 0x117c [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys

01:00:17.0018 0x117c AcpiPmi - ok

01:00:17.0122 0x117c [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

01:00:17.0165 0x117c AdobeARMservice - ok

01:00:17.0201 0x117c [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys

01:00:17.0244 0x117c adp94xx - ok

01:00:17.0279 0x117c [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys

01:00:17.0310 0x117c adpahci - ok

01:00:17.0332 0x117c [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys

01:00:17.0357 0x117c adpu320 - ok

01:00:17.0395 0x117c [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll

01:00:17.0466 0x117c AeLookupSvc - ok

01:00:17.0557 0x117c [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys

01:00:17.0670 0x117c AFD - ok

01:00:17.0710 0x117c [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys

01:00:17.0732 0x117c agp440 - ok

01:00:17.0770 0x117c [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe

01:00:17.0806 0x117c ALG - ok

01:00:17.0852 0x117c [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys

01:00:17.0880 0x117c aliide - ok

01:00:17.0911 0x117c [ D696F317BD465A602566F8E1DCCE15F7, 6CE77CD4221C0854986F760D1944DF9F4255192D99630D43A0527A6D58D83406 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe

01:00:17.0936 0x117c AMD External Events Utility - ok

01:00:17.0972 0x117c [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys

01:00:18.0019 0x117c amdide - ok

01:00:18.0062 0x117c [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys

01:00:18.0139 0x117c AmdK8 - ok

01:00:18.0173 0x117c [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys

01:00:18.0206 0x117c AmdPPM - ok

01:00:18.0258 0x117c [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys

01:00:18.0300 0x117c amdsata - ok

01:00:18.0322 0x117c [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys

01:00:18.0358 0x117c amdsbs - ok

01:00:18.0380 0x117c [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys

01:00:18.0400 0x117c amdxata - ok

01:00:18.0457 0x117c [ 8769A70C4E7648D1885BECF0119AEA1C, BE1395D34F06C98AAA0230F113174A8A4C7BCFEE29C32487D0FA58CF140E1AFD ] andnetadb C:\Windows\system32\Drivers\lgandnetadb.sys

01:00:18.0518 0x117c andnetadb - ok

01:00:18.0573 0x117c [ B46840E5BDAEE0C749A3E5778F65EBE4, 121C68A65E3D3A9423363C5028568799A81B569801BE0F876AFE6EC86F9D2E92 ] AndNetDiag C:\Windows\system32\DRIVERS\lgandnetdiag64.sys

01:00:18.0712 0x117c AndNetDiag - ok

01:00:18.0751 0x117c [ 130701C53E4DF44B54FED8C3892150F5, C9EB4D1793BA3D20FB1846AD508C6310D038E8BEFBE13B5A0A30A1F39D1586AB ] ANDNetModem C:\Windows\system32\DRIVERS\lgandnetmodem64.sys

01:00:18.0804 0x117c ANDNetModem - ok

01:00:18.0860 0x117c [ 0BBAEE2BBDE712C4BBD9F128C2BE1AD3, E7422E9EB5FE5F0DA6470C31EAFE240B5B4890CB0A5AEE246D5568ED9A559E1C ] AppID C:\Windows\system32\drivers\appid.sys

01:00:18.0900 0x117c AppID - ok

01:00:18.0914 0x117c [ 66C9D0B357D30DA3155044168845013A, 43AE0BBA41A321605EB22E999A56FFDD2C85B6B3D4925961C85AB2A8600B4237 ] AppIDSvc C:\Windows\System32\appidsvc.dll

01:00:18.0937 0x117c AppIDSvc - ok

01:00:18.0979 0x117c [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo C:\Windows\System32\appinfo.dll

01:00:18.0999 0x117c Appinfo - ok

01:00:19.0044 0x117c [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll

01:00:19.0088 0x117c AppMgmt - ok

01:00:19.0118 0x117c [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys

01:00:19.0150 0x117c arc - ok

01:00:19.0178 0x117c [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys

01:00:19.0211 0x117c arcsas - ok

01:00:19.0338 0x117c [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe

01:00:19.0391 0x117c aspnet_state - ok

01:00:19.0462 0x117c [ 30E7D7B63BE378C6DCD31434E1C5EBEB, 6F38FBD6B45506E57D4EC6C84C83F0829F280167E14B65643F583B41AA23C18B ] aswHwid C:\Windows\system32\drivers\aswHwid.sys

01:00:19.0530 0x117c aswHwid - ok

01:00:19.0595 0x117c [ 6C3B7781075271AD9DFBD77BC7FBB9F7, AC53FD0EE1D7695219225440D3922EEF0B953F45F0ED3034CF5F1630A6B40607 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys

01:00:19.0643 0x117c aswMonFlt - ok

01:00:19.0701 0x117c [ 3C04B80B49697EB7DFE5FA43620F8728, 4BC11901898348318BA807938BEA888BC54FE80ADA17C209C728F14EA4E91F21 ] aswRdr C:\Windows\system32\drivers\aswRdr2.sys

01:00:19.0759 0x117c aswRdr - ok

01:00:19.0771 0x117c [ AA8CB23B3B4A4B16F49CB54CA04FE0D9, A94D214B43EDAEC52656EA36C2A830E76C40B90E8F4BABEF4F16BA679A429586 ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys

01:00:19.0800 0x117c aswRvrt - ok

01:00:19.0878 0x117c [ E40965585B901AA60AF26279E09959E0, F3EACB4F1E78903D648DE75CC01642BFACA76C0605A6831EC24201292891B5DE ] aswSnx C:\Windows\system32\drivers\aswSnx.sys

01:00:19.0956 0x117c aswSnx - ok

01:00:20.0039 0x117c [ B54E400C1B044D6D7D9EF95BA865741E, C929B53F53EFD15D3EE64FED23686A01F77E8F7BC74623D02D10D4CFEC3D6BF2 ] aswSP C:\Windows\system32\drivers\aswSP.sys

01:00:20.0071 0x117c aswSP - ok

01:00:20.0145 0x117c [ 0652346DF90731A87E4C7C9A9C45A8E0, 38B8A760B532254A8CB2FD6B922269A1B96BB5E5F243D130B4BBD09ED50DEDB8 ] aswStm C:\Windows\system32\drivers\aswStm.sys

01:00:20.0200 0x117c aswStm - ok

01:00:20.0222 0x117c [ 54230972D23E6E4D034D7CB577DC784C, 7F51E81CBAFB143982AF2C68675CF0D46DD17A9A17A8805EBF628FAE84DFF8A9 ] aswVmm C:\Windows\system32\drivers\aswVmm.sys

01:00:20.0261 0x117c aswVmm - ok

01:00:20.0275 0x117c [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys

01:00:20.0344 0x117c AsyncMac - ok

01:00:20.0383 0x117c [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys

01:00:20.0423 0x117c atapi - ok

01:00:20.0610 0x117c [ 52BD95CAA9CAE8977FE043E9AD6D2D0E, E96DD29A2FCE1403340CB29D34F657DF17F483F62A2E8E24890F9BC4812B2971 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys

01:00:20.0846 0x117c atikmdag - ok

01:00:20.0909 0x117c [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll

01:00:20.0935 0x117c AudioEndpointBuilder - ok

01:00:20.0952 0x117c [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll

01:00:20.0977 0x117c AudioSrv - ok

01:00:21.0032 0x117c [ 11120878E5276B367E1A10FF8C9B595B, 7C02EEF3733307C31BAC4DA9975EC017AC40D0893D88228C30FFAA536DAA73FB ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe

01:00:21.0086 0x117c avast! Antivirus - ok

01:00:21.0361 0x117c [ CF5F47B708C539A40EBBDD7E4675FADA, F324726EB8E5B5A3DB74DC7E78B7141999E2677F1B607D6DEF809C1DA92D4A68 ] AvastVBoxSvc C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe

01:00:21.0454 0x117c AvastVBoxSvc - ok

01:00:21.0533 0x117c [ 54FE1CAFA3B3029B282E6A05EA672031, E972B8A22322FF06903A1E3AB20585E02A21C3A6EA9A75C172231494A08D14D1 ] Avgdiska C:\Windows\system32\DRIVERS\avgdiska.sys

01:00:21.0591 0x117c Avgdiska - ok

01:00:21.0809 0x117c [ 0E8CCCB4BB86CC56DDF6FA8AED84E45F, 89ECADBCBDD2769F7D7B6BB39BFB760E75AA90661A5F1C6C49C5D864022A5892 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe

01:00:21.0891 0x117c AVGIDSAgent - ok

01:00:21.0956 0x117c [ 9A4E5B1673F15F2339733D7C4ACFD85A, 58CC9A5B2DFF1D0E26DBFFD1381822159924901049EB4A409A3EB877DB622F74 ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys

01:00:22.0002 0x117c AVGIDSDriver - ok

01:00:22.0051 0x117c [ 87AC702B45501609BE76F703A73FD558, EC77078E1DD537A9EDCB3E0382A2D371A689009399F22FB6CA95FFBF697FA63B ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys

01:00:22.0092 0x117c AVGIDSHA - ok

01:00:22.0155 0x117c [ 0CFB17D66DC1D76214F50E33C41CC8B6, 344E0D99C8D741C63F62859A29284D328E76E07A409692F1B6FB1F9DB3946420 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys

01:00:22.0205 0x117c Avgldx64 - ok

01:00:22.0254 0x117c [ 7EC2B7BBA7A30691D2E0D8478F219B90, EBB18E34D502E85F6450E944B3A1AD7B86692F2F0C9041B927F69CE40E7802A6 ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys

01:00:22.0297 0x117c Avgloga - ok

01:00:22.0333 0x117c [ 93B6EF1B73E7AF384F2574F7FB4282F5, 02AC65217043FFE880FA294961AB52CDAE14F463FE9A0FF48FC25BD9DD8B10B9 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys

01:00:22.0384 0x117c Avgmfx64 - ok

01:00:22.0429 0x117c [ 3CE824D46BA1871713ABF147E6BAD556, B4D8AFC388BE06D6E3C5CDC865F80FF101E731E1D2B221FFC6C1E28487E1B3CD ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys

01:00:22.0463 0x117c Avgrkx64 - ok

01:00:22.0514 0x117c [ 3D295116030186FC6A014CA5388A4A55, 73E702B8162622F431602993E3C219F81326BA494E990CA889A11B8048BA0998 ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys

01:00:22.0587 0x117c Avgtdia - ok

01:00:22.0647 0x117c [ 2406EEC0525DAE3F254C0A2070F78DA3, F2492903C2FD0BA67D2B23B5B3F6B5271CB1253DC4AFB5BEBFDCE38408B8D477 ] avgwd C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe

01:00:22.0680 0x117c avgwd - ok

01:00:22.0745 0x117c [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll

01:00:22.0790 0x117c AxInstSV - ok

01:00:22.0836 0x117c [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys

01:00:22.0885 0x117c b06bdrv - ok

01:00:22.0947 0x117c [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys

01:00:23.0009 0x117c b57nd60a - ok

01:00:23.0049 0x117c [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll

01:00:23.0085 0x117c BDESVC - ok

01:00:23.0099 0x117c [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys

01:00:23.0146 0x117c Beep - ok

01:00:23.0256 0x117c [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll

01:00:23.0303 0x117c BFE - ok

01:00:23.0344 0x117c [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll

01:00:23.0389 0x117c BITS - ok

01:00:23.0406 0x117c [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys

01:00:23.0445 0x117c blbdrive - ok

01:00:23.0474 0x117c [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys

01:00:23.0497 0x117c bowser - ok

01:00:23.0517 0x117c [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys

01:00:23.0556 0x117c BrFiltLo - ok

01:00:23.0578 0x117c [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys

01:00:23.0620 0x117c BrFiltUp - ok

01:00:23.0666 0x117c [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll

01:00:23.0702 0x117c Browser - ok

01:00:23.0730 0x117c [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys

01:00:23.0765 0x117c Brserid - ok

01:00:23.0778 0x117c [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys

01:00:23.0802 0x117c BrSerWdm - ok

01:00:23.0813 0x117c [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys

01:00:23.0855 0x117c BrUsbMdm - ok

01:00:23.0879 0x117c [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys

01:00:23.0964 0x117c BrUsbSer - ok

01:00:24.0027 0x117c [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys

01:00:24.0106 0x117c BthEnum - ok

01:00:24.0132 0x117c [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys

01:00:24.0185 0x117c BTHMODEM - ok

01:00:24.0218 0x117c [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys

01:00:24.0321 0x117c BthPan - ok

01:00:24.0423 0x117c [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys

01:00:24.0506 0x117c BTHPORT - ok

01:00:24.0537 0x117c [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll

01:00:24.0571 0x117c bthserv - ok

01:00:24.0583 0x117c [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys

01:00:24.0612 0x117c BTHUSB - ok

01:00:24.0798 0x117c [ FECA9F830A5C6BAB9978E6781A26AE2B, CA1681A2F4FA849815B8E823805E078DB9C050CEE86E9E394B2A37B57CC474A6 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe

01:00:24.0842 0x117c c2cautoupdatesvc - ok

01:00:24.0958 0x117c [ 5B33709F7FE59BB625F113EED86AFC5C, 8D29FE242D55526FDEB2CB4009B5DE19C93972E872BE6328AD3305E360A3D44B ] c2cpnrsvc C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe

01:00:25.0006 0x117c c2cpnrsvc - ok

01:00:25.0023 0x117c [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys

01:00:25.0063 0x117c cdfs - ok

01:00:25.0091 0x117c [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys

01:00:25.0147 0x117c cdrom - ok

01:00:25.0209 0x117c [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll

01:00:25.0278 0x117c CertPropSvc - ok

01:00:25.0297 0x117c [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys

01:00:25.0343 0x117c circlass - ok

01:00:25.0402 0x117c [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys

01:00:25.0452 0x117c CLFS - ok

01:00:25.0610 0x117c [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

01:00:25.0655 0x117c clr_optimization_v2.0.50727_32 - ok

01:00:25.0721 0x117c [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

01:00:25.0753 0x117c clr_optimization_v2.0.50727_64 - ok

01:00:25.0858 0x117c [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

01:00:25.0902 0x117c clr_optimization_v4.0.30319_32 - ok

01:00:25.0911 0x117c [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

01:00:25.0933 0x117c clr_optimization_v4.0.30319_64 - ok

01:00:25.0965 0x117c [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\drivers\CmBatt.sys

01:00:26.0028 0x117c CmBatt - ok

01:00:26.0056 0x117c [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys

01:00:26.0084 0x117c cmdide - ok

01:00:26.0186 0x117c [ 4566E7FEA8C966648DFC34FE9953653E, CEFF85D84529F8EFE119ECC8E521B854A4A30F30F4212B30AE8B577F41682576 ] CNG C:\Windows\system32\Drivers\cng.sys

01:00:26.0238 0x117c CNG - ok

01:00:26.0251 0x117c [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys

01:00:26.0271 0x117c Compbatt - ok

01:00:26.0298 0x117c [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys

01:00:26.0380 0x117c CompositeBus - ok

01:00:26.0403 0x117c COMSysApp - ok

01:00:26.0415 0x117c [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys

01:00:26.0443 0x117c crcdisk - ok

01:00:26.0504 0x117c [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll

01:00:26.0580 0x117c CryptSvc - ok

01:00:26.0655 0x117c [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys

01:00:26.0740 0x117c CSC - ok

01:00:26.0770 0x117c [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll

01:00:26.0803 0x117c CscService - ok

01:00:26.0851 0x117c [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll

01:00:26.0907 0x117c DcomLaunch - ok

01:00:26.0963 0x117c [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll

01:00:27.0034 0x117c defragsvc - ok

01:00:27.0057 0x117c [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys

01:00:27.0115 0x117c DfsC - ok

01:00:27.0151 0x117c [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll

01:00:27.0190 0x117c Dhcp - ok

01:00:27.0352 0x117c [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack C:\Windows\system32\diagtrack.dll

01:00:27.0394 0x117c DiagTrack - ok

01:00:27.0419 0x117c [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys

01:00:27.0477 0x117c discache - ok

01:00:27.0516 0x117c [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys

01:00:27.0562 0x117c Disk - ok

01:00:27.0583 0x117c [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys

01:00:27.0629 0x117c dmvsc - ok

01:00:27.0685 0x117c [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll

01:00:27.0743 0x117c Dnscache - ok

01:00:27.0797 0x117c [ A5E97B8E11AC35F2C5DAF85FF95B1E52, E054BB8F75465173E227C8AADA39DCE724F892755DFCFCC6E005BA999BAC6C35 ] dot3svc C:\Windows\System32\dot3svc.dll

01:00:27.0844 0x117c dot3svc - ok

01:00:27.0887 0x117c [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll

01:00:27.0933 0x117c DPS - ok

01:00:27.0971 0x117c [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys

01:00:28.0045 0x117c drmkaud - ok

01:00:28.0128 0x117c [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys

01:00:28.0250 0x117c DXGKrnl - ok

01:00:28.0275 0x117c [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll

01:00:28.0324 0x117c EapHost - ok

01:00:28.0463 0x117c [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys

01:00:28.0608 0x117c ebdrv - ok

01:00:28.0662 0x117c [ 2BB259A51DDADBCF9652C67A3E82447C, 2B2BF0A30E60FC66C55B83E1BB0A9F3D97263318FE5991EC2C880E8A12E4A045 ] EFS C:\Windows\System32\lsass.exe

01:00:28.0682 0x117c EFS - ok

01:00:28.0749 0x117c [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe

01:00:28.0785 0x117c ehRecvr - ok

01:00:28.0799 0x117c [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe

01:00:28.0865 0x117c ehSched - ok

01:00:28.0925 0x117c [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys

01:00:28.0977 0x117c elxstor - ok

01:00:28.0986 0x117c [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys

01:00:29.0017 0x117c ErrDev - ok

01:00:29.0063 0x117c [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll

01:00:29.0099 0x117c EventSystem - ok

01:00:29.0120 0x117c [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys

01:00:29.0163 0x117c exfat - ok

01:00:29.0184 0x117c [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys

01:00:29.0247 0x117c fastfat - ok

01:00:29.0318 0x117c [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe

01:00:29.0369 0x117c Fax - ok

01:00:29.0390 0x117c [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys

01:00:29.0447 0x117c fdc - ok

01:00:29.0463 0x117c [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll

01:00:29.0515 0x117c fdPHost - ok

01:00:29.0527 0x117c [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll

01:00:29.0556 0x117c FDResPub - ok

01:00:29.0575 0x117c [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys

01:00:29.0597 0x117c FileInfo - ok

01:00:29.0604 0x117c [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys

01:00:29.0642 0x117c Filetrace - ok

01:00:29.0782 0x117c [ A4297244D4F817278A6AE45B1899CA9C, F70146A3D78061F00549906355503EDB4402F0599D34CE3208B51562C44AB80A ] FLEXnet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe

01:00:29.0839 0x117c FLEXnet Licensing Service 64 - ok

01:00:29.0856 0x117c [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys

01:00:29.0877 0x117c flpydisk - ok

01:00:29.0894 0x117c [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys

01:00:29.0921 0x117c FltMgr - ok

01:00:30.0022 0x117c [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache C:\Windows\system32\FntCache.dll

01:00:30.0061 0x117c FontCache - ok

01:00:30.0105 0x117c [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

01:00:30.0133 0x117c FontCache3.0.0.0 - ok

01:00:30.0198 0x117c [ B82EA97912868BA120C0E2220D47B43A, A146DD600A440646766D458FF738387FAC7B7488487B669519E6F148F86C3F15 ] FreeAgentGoFlex Service C:\Program Files (x86)\Seagate\DriveSettings\Sync\SeagateDriveSettingsService.exe

01:00:30.0223 0x117c FreeAgentGoFlex Service - ok

01:00:30.0341 0x117c [ 5C50F60E95EF63FCBE15E54BCBD653AC, 9C6A6568BDA871623D41D945651CFC4C5B1521B532F4DC4CFB64BCC3E165D321 ] Freemake Improver C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe

01:00:30.0365 0x117c Freemake Improver - detected UnsignedFile.Multi.Generic ( 1 )

01:00:33.0219 0x117c Detect skipped due to KSN trusted

01:00:33.0220 0x117c Freemake Improver - ok

01:00:33.0273 0x117c [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys

01:00:33.0321 0x117c FsDepends - ok

01:00:33.0358 0x117c [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys

01:00:33.0406 0x117c Fs_Rec - ok

01:00:33.0470 0x117c [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys

01:00:33.0519 0x117c fvevol - ok

01:00:33.0534 0x117c [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys

01:00:33.0564 0x117c gagp30kx - ok

01:00:33.0601 0x117c [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll

01:00:33.0651 0x117c gpsvc - ok

01:00:33.0728 0x117c [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

01:00:33.0762 0x117c gupdate - ok

01:00:33.0769 0x117c [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

01:00:33.0785 0x117c gupdatem - ok

01:00:33.0812 0x117c [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

01:00:33.0826 0x117c gusvc - ok

01:00:33.0844 0x117c [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys

01:00:33.0884 0x117c hcw85cir - ok

01:00:33.0921 0x117c [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys

01:00:34.0015 0x117c HdAudAddService - ok

01:00:34.0038 0x117c [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys

01:00:34.0090 0x117c HDAudBus - ok

01:00:34.0095 0x117c [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys

01:00:34.0144 0x117c HidBatt - ok

01:00:34.0157 0x117c [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys

01:00:34.0193 0x117c HidBth - ok

01:00:34.0220 0x117c [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys

01:00:34.0271 0x117c HidIr - ok

01:00:34.0294 0x117c [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll

01:00:34.0333 0x117c hidserv - ok

01:00:34.0367 0x117c [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys

01:00:34.0388 0x117c HidUsb - ok

01:00:34.0410 0x117c [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll

01:00:34.0440 0x117c hkmsvc - ok

01:00:34.0462 0x117c [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll

01:00:34.0490 0x117c HomeGroupListener - ok

01:00:34.0581 0x117c [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll

01:00:34.0614 0x117c HomeGroupProvider - ok

01:00:34.0636 0x117c [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys

01:00:34.0659 0x117c HpSAMD - ok

01:00:34.0749 0x117c [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys

01:00:34.0805 0x117c HTTP - ok

01:00:34.0820 0x117c [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys

01:00:34.0839 0x117c hwpolicy - ok

01:00:34.0862 0x117c [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\drivers\i8042prt.sys

01:00:34.0896 0x117c i8042prt - ok

01:00:34.0950 0x117c [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys

01:00:34.0983 0x117c iaStorV - ok

01:00:35.0079 0x117c [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

01:00:35.0114 0x117c idsvc - ok

01:00:35.0127 0x117c IEEtwCollectorService - ok

01:00:35.0140 0x117c [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys

01:00:35.0160 0x117c iirsp - ok

01:00:35.0234 0x117c [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll

01:00:35.0270 0x117c IKEEXT - ok

01:00:35.0309 0x117c [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys

01:00:35.0355 0x117c intelide - ok

01:00:35.0377 0x117c [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\drivers\intelppm.sys

01:00:35.0426 0x117c intelppm - ok

01:00:35.0458 0x117c [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll

01:00:35.0520 0x117c IPBusEnum - ok

01:00:35.0543 0x117c [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys

01:00:35.0549 0x1d70 Object required for P2P: [ 11120878E5276B367E1A10FF8C9B595B ] avast! Antivirus

01:00:35.0608 0x117c IpFilterDriver - ok

01:00:35.0674 0x117c [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll

01:00:35.0717 0x117c iphlpsvc - ok

01:00:35.0731 0x117c [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys

01:00:35.0775 0x117c IPMIDRV - ok

01:00:35.0800 0x117c [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys

01:00:35.0859 0x117c IPNAT - ok

01:00:35.0900 0x117c [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys

01:00:35.0984 0x117c IRENUM - ok

01:00:36.0005 0x117c [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys

01:00:36.0033 0x117c isapnp - ok

01:00:36.0057 0x117c [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys

01:00:36.0116 0x117c iScsiPrt - ok

01:00:36.0128 0x117c [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys

01:00:36.0166 0x117c kbdclass - ok

01:00:36.0175 0x117c [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys

01:00:36.0202 0x117c kbdhid - ok

01:00:36.0213 0x117c [ 2BB259A51DDADBCF9652C67A3E82447C, 2B2BF0A30E60FC66C55B83E1BB0A9F3D97263318FE5991EC2C880E8A12E4A045 ] KeyIso C:\Windows\system32\lsass.exe

01:00:36.0228 0x117c KeyIso - ok

01:00:36.0270 0x117c [ DC68774A5C7D5F366460776F90CB603F, 4F03BB6D83363CF7BD6A9A3523A13103AD6D9AF2234C75BEDF207F2C3459F545 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys

01:00:36.0318 0x117c KSecDD - ok

01:00:36.0333 0x117c [ 9A90F7B02065307947043EEF0BA2EC3A, 5DF1A5AF07FB85F52C6256518C35B6AE8EB6698183CC1235A80CA4805FB33423 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys

01:00:36.0366 0x117c KSecPkg - ok

01:00:36.0375 0x117c [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys

01:00:36.0438 0x117c ksthunk - ok

01:00:36.0472 0x117c [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll

01:00:36.0509 0x117c KtmRm - ok

01:00:36.0581 0x117c [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll

01:00:36.0661 0x117c LanmanServer - ok

01:00:36.0704 0x117c [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

01:00:36.0762 0x117c LanmanWorkstation - ok

01:00:36.0784 0x117c [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys

01:00:36.0831 0x117c lltdio - ok

01:00:36.0851 0x117c [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll

01:00:36.0917 0x117c lltdsvc - ok

01:00:36.0949 0x117c [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll

01:00:37.0019 0x117c lmhosts - ok

01:00:37.0046 0x117c [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys

01:00:37.0069 0x117c LSI_FC - ok

01:00:37.0088 0x117c [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys

01:00:37.0111 0x117c LSI_SAS - ok

01:00:37.0120 0x117c [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys

01:00:37.0141 0x117c LSI_SAS2 - ok

01:00:37.0157 0x117c [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys

01:00:37.0180 0x117c LSI_SCSI - ok

01:00:37.0192 0x117c [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys

01:00:37.0248 0x117c luafv - ok

01:00:37.0323 0x117c [ A8D28D5B3E2A528D1EF0E338E44F2820, 40D1EFDD253BC0A0D984A5AD8A2721C3E83B15F14D538204714E6D5B00D92CEB ] MBAMProtector C:\Windows\system32\drivers\mbam.sys

01:00:37.0368 0x117c MBAMProtector - ok

01:00:37.0529 0x117c [ 301E3FDFCF33640BB8763BA444BC5093, 362B069BB9A313A06B376CE27E6F7F8D569F6CA39A8ABC96D9DF231EE462C604 ] MBAMScheduler C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

01:00:37.0574 0x117c MBAMScheduler - ok

01:00:37.0628 0x117c [ 83C982A395D00BAFF6515FB38424EA76, 0E1B66F84A483D47550347D4A9426B95A066DB5104C4284F606A16768A11DB0C ] MBAMService C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe

01:00:37.0659 0x117c MBAMService - ok

01:00:37.0725 0x117c [ 8F22037D3F5A6BB676525D825A1388B9, 2AAC748D46136DFA1BE45150BF0AB7707D45391CAC1F63B964D341D11B135C91 ] MBAMSwissArmy C:\Windows\system32\drivers\MBAMSwissArmy.sys

01:00:37.0772 0x117c MBAMSwissArmy - ok

01:00:37.0810 0x117c [ AE757332EA130E94E646621CC695B52A, E688CF34A4206F32B5C7301119D8459C3456FC178FA1DAA6215CE15F2C824C43 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys

01:00:37.0852 0x117c MBAMWebAccessControl - ok

01:00:37.0951 0x117c [ D8DBCF7C20F3D39AA0037C64118A5FC4, B29CD8F9C3AFED9C55716A331496FC98F563BBB895BF7D36A5C54DCEA37A7366 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.11.163\McCHSvc.exe

01:00:37.0977 0x117c McComponentHostService - ok

01:00:38.0000 0x117c [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll

01:00:38.0025 0x117c Mcx2Svc - ok

01:00:38.0104 0x117c [ 11F714F85530A2BD134074DC30E99FCA, BDB5FD3B2DF4ADD19B31965B3E789768B59E872B3EA85912B1FFB32B2AF9D5D8 ] MDM C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE

01:00:38.0121 0x117c MDM - ok

01:00:38.0141 0x117c [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys

01:00:38.0162 0x117c megasas - ok

01:00:38.0188 0x117c [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys

01:00:38.0216 0x117c MegaSR - ok

01:00:38.0240 0x117c [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll

01:00:38.0287 0x117c MMCSS - ok

01:00:38.0306 0x117c [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys

01:00:38.0363 0x117c Modem - ok

01:00:38.0396 0x117c [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys

01:00:38.0417 0x1d70 Object send P2P result: true

01:00:38.0439 0x117c monitor - ok

01:00:38.0462 0x117c [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys

01:00:38.0499 0x117c mouclass - ok

01:00:38.0521 0x117c [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys

01:00:38.0592 0x117c mouhid - ok

01:00:38.0627 0x117c [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys

01:00:38.0659 0x117c mountmgr - ok

01:00:38.0727 0x117c [ 6215DA3AD492CFBEBEE2ADBED0A6CC22, 07B290B58EF722825D50AF97E10B7098A2118B3F335E1FFF8F9E5E9AF7A0A6CE ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

01:00:38.0770 0x117c MozillaMaintenance - ok

01:00:38.0795 0x117c [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys

01:00:38.0829 0x117c mpio - ok

01:00:38.0853 0x117c [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys

01:00:38.0967 0x117c mpsdrv - ok

01:00:39.0004 0x117c [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll

01:00:39.0068 0x117c MpsSvc - ok

01:00:39.0104 0x117c [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys

01:00:39.0196 0x117c MRxDAV - ok

01:00:39.0239 0x117c [ 4D7B0528D458F5E80BADFCDE33713036, 7F62A6B9DA3F6F984966D9628D12EAAE2D7FC78966A18D358E00AE4674E94E99 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys

01:00:39.0274 0x117c mrxsmb - ok

01:00:39.0291 0x117c [ 58025289A49408ED35B8DF83C65B0742, 0D06C9CE960C730B2B2CCA267F6A075C34FF38C0A2E5C2B0180D2E7DD5D36353 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys

01:00:39.0340 0x117c mrxsmb10 - ok

01:00:39.0366 0x117c [ AE81C16A65C6156D3DDDE03E36FD93BA, 861DBA162C9C80CD852B31EB618B4BAD925CDCB6F392F3459725050744A71E75 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys

01:00:39.0389 0x117c mrxsmb20 - ok

01:00:39.0431 0x117c [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys

01:00:39.0471 0x117c msahci - ok

01:00:39.0509 0x117c [ 41FB1D61DF09C36CCAB0B04EEC66F6D5, C6D0F6B8429656C56A142F95AF0B4A85DD4B78A735664C8775F49C3B04C564B7 ] MSCamSvc C:\Program Files\Microsoft LifeCam\MSCamS64.exe

01:00:39.0528 0x117c MSCamSvc - ok

01:00:39.0560 0x117c [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys

01:00:39.0594 0x117c msdsm - ok

01:00:39.0621 0x117c [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe

01:00:39.0661 0x117c MSDTC - ok

01:00:39.0691 0x117c [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys

01:00:39.0743 0x117c Msfs - ok

01:00:39.0758 0x117c [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys

01:00:39.0845 0x117c mshidkmdf - ok

01:00:39.0908 0x117c [ BB590070D606AE6F008341FC9A7B2AD7, CF1073A093E679C5BCA19681789FBB85A8286E356F2C0609E0B446DF65A86E29 ] MSHUSBVideo C:\Windows\system32\Drivers\nx6000.sys

01:00:39.0950 0x117c MSHUSBVideo - ok

01:00:39.0959 0x117c [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys

01:00:39.0986 0x117c msisadrv - ok

01:00:40.0016 0x117c [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll

01:00:40.0082 0x117c MSiSCSI - ok

01:00:40.0085 0x117c msiserver - ok

01:00:40.0110 0x117c [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys

01:00:40.0146 0x117c MSKSSRV - ok

01:00:40.0150 0x117c [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys

01:00:40.0186 0x117c MSPCLOCK - ok

01:00:40.0195 0x117c [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys

01:00:40.0252 0x117c MSPQM - ok

01:00:40.0281 0x117c [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys

01:00:40.0312 0x117c MsRPC - ok

01:00:40.0321 0x117c [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys

01:00:40.0341 0x117c mssmbios - ok

01:00:40.0344 0x117c [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys

01:00:40.0379 0x117c MSTEE - ok

01:00:40.0394 0x117c [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys

01:00:40.0455 0x117c MTConfig - ok

01:00:40.0467 0x117c [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys

01:00:40.0495 0x117c Mup - ok

01:00:40.0522 0x117c [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll

01:00:40.0561 0x117c napagent - ok

01:00:40.0606 0x117c [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys

01:00:40.0686 0x117c NativeWifiP - ok

01:00:40.0747 0x117c [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys

01:00:40.0804 0x117c NDIS - ok

01:00:40.0814 0x117c [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys

01:00:40.0852 0x117c NdisCap - ok

01:00:40.0866 0x117c [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys

01:00:40.0982 0x117c NdisTapi - ok

01:00:41.0008 0x117c [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys

01:00:41.0080 0x117c Ndisuio - ok

01:00:41.0103 0x117c [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys

01:00:41.0160 0x117c NdisWan - ok

01:00:41.0181 0x117c [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys

01:00:41.0219 0x117c NDProxy - ok

01:00:41.0242 0x117c [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys

01:00:41.0302 0x117c NetBIOS - ok

01:00:41.0325 0x117c [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys

01:00:41.0383 0x117c NetBT - ok

01:00:41.0408 0x117c [ 2BB259A51DDADBCF9652C67A3E82447C, 2B2BF0A30E60FC66C55B83E1BB0A9F3D97263318FE5991EC2C880E8A12E4A045 ] Netlogon C:\Windows\system32\lsass.exe

01:00:41.0422 0x117c Netlogon - ok

01:00:41.0449 0x117c [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll

01:00:41.0506 0x117c Netman - ok

01:00:41.0566 0x117c [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

01:00:41.0583 0x117c NetMsmqActivator - ok

01:00:41.0596 0x117c [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

01:00:41.0612 0x117c NetPipeActivator - ok

01:00:41.0635 0x117c [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll

01:00:41.0715 0x117c netprofm - ok

01:00:41.0736 0x117c [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

01:00:41.0752 0x117c NetTcpActivator - ok

01:00:41.0757 0x117c [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

01:00:41.0773 0x117c NetTcpPortSharing - ok

01:00:41.0788 0x117c [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys

01:00:41.0810 0x117c nfrd960 - ok

01:00:41.0877 0x117c [ 8AED7DEF1F9659C911E1B1C9DD3CE8CD, 3ECFF30C8D8E7CF4514055F4E63B36C900EF104ECC75F804B11AF6307874153B ] ngvss C:\Windows\system32\drivers\ngvss.sys

01:00:41.0932 0x117c ngvss - ok

01:00:41.0985 0x117c [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc

sok_pip · October 14, 2015

TDSSKillerl log part 2:

C:\Windows\System32\nlasvc.dll

01:00:42.0046 0x117c NlaSvc - ok

01:00:42.0065 0x117c [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys

01:00:42.0129 0x117c Npfs - ok

01:00:42.0162 0x117c [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll

01:00:42.0192 0x117c nsi - ok

01:00:42.0205 0x117c [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys

01:00:42.0265 0x117c nsiproxy - ok

01:00:42.0363 0x117c [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys

01:00:42.0452 0x117c Ntfs - ok

01:00:42.0468 0x117c [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys

01:00:42.0522 0x117c Null - ok

01:00:42.0561 0x117c [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys

01:00:42.0585 0x117c nvraid - ok

01:00:42.0626 0x117c [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys

01:00:42.0651 0x117c nvstor - ok

01:00:42.0666 0x117c [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys

01:00:42.0690 0x117c nv_agp - ok

01:00:42.0701 0x117c [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys

01:00:42.0724 0x117c ohci1394 - ok

01:00:42.0832 0x117c [ C571839127B59310912D7D69A5ABE0F0, B1C8C346A11FF04A56510DDD814B55BFA738E7F700B719D4E7D0C98DACCCD01C ] ORD_ProcessAcrobat C:\Program Files (x86)\Oce\Repro Desk\ORD_ProcessAcrobat.exe

01:00:42.0852 0x117c ORD_ProcessAcrobat - detected UnsignedFile.Multi.Generic ( 1 )

01:00:45.0837 0x117c ORD_ProcessAcrobat ( UnsignedFile.Multi.Generic ) - warning

01:00:48.0679 0x117c [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll

01:00:48.0741 0x117c p2pimsvc - ok

01:00:48.0777 0x117c [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll

01:00:48.0830 0x117c p2psvc - ok

01:00:48.0873 0x117c [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys

01:00:48.0939 0x117c Parport - ok

01:00:48.0978 0x117c [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys

01:00:49.0008 0x117c partmgr - ok

01:00:49.0048 0x117c [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll

01:00:49.0073 0x117c PcaSvc - ok

01:00:49.0085 0x117c [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys

01:00:49.0122 0x117c pci - ok

01:00:49.0165 0x117c [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys

01:00:49.0192 0x117c pciide - ok

01:00:49.0218 0x117c [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys

01:00:49.0257 0x117c pcmcia - ok

01:00:49.0272 0x117c [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys

01:00:49.0301 0x117c pcw - ok

01:00:49.0353 0x117c [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys

01:00:49.0405 0x117c PEAUTH - ok

01:00:49.0494 0x117c [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll

01:00:49.0537 0x117c PeerDistSvc - ok

01:00:49.0588 0x117c [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe

01:00:49.0621 0x117c PerfHost - ok

01:00:49.0708 0x117c [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll

01:00:49.0785 0x117c pla - ok

01:00:49.0863 0x117c [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll

01:00:49.0918 0x117c PlugPlay - ok

01:00:49.0929 0x117c [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll

01:00:49.0944 0x117c PNRPAutoReg - ok

01:00:49.0963 0x117c [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll

01:00:49.0983 0x117c PNRPsvc - ok

01:00:50.0004 0x117c [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll

01:00:50.0091 0x117c PolicyAgent - ok

01:00:50.0126 0x117c [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll

01:00:50.0173 0x117c Power - ok

01:00:50.0208 0x117c [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys

01:00:50.0248 0x117c PptpMiniport - ok

01:00:50.0263 0x117c [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys

01:00:50.0328 0x117c Processor - ok

01:00:50.0398 0x117c [ D0891D2F5D63DAB719F005919762912C, F187C38764D01AE3FD7CF711DF8B5FE8EB455186F104D5A76FB9DD7443066352 ] ProfSvc C:\Windows\system32\profsvc.dll

01:00:50.0428 0x117c ProfSvc - ok

01:00:50.0442 0x117c [ 2BB259A51DDADBCF9652C67A3E82447C, 2B2BF0A30E60FC66C55B83E1BB0A9F3D97263318FE5991EC2C880E8A12E4A045 ] ProtectedStorage C:\Windows\system32\lsass.exe

01:00:50.0462 0x117c ProtectedStorage - ok

01:00:50.0485 0x117c [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys

01:00:50.0525 0x117c Psched - ok

01:00:50.0579 0x117c [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys

01:00:50.0661 0x117c ql2300 - ok

01:00:50.0694 0x117c [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys

01:00:50.0718 0x117c ql40xx - ok

01:00:50.0747 0x117c [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll

01:00:50.0770 0x117c QWAVE - ok

01:00:50.0777 0x117c [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys

01:00:50.0821 0x117c QWAVEdrv - ok

01:00:50.0844 0x117c [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys

01:00:50.0881 0x117c RasAcd - ok

01:00:50.0904 0x117c [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys

01:00:50.0962 0x117c RasAgileVpn - ok

01:00:50.0989 0x117c [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll

01:00:51.0022 0x117c RasAuto - ok

01:00:51.0036 0x117c [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys

01:00:51.0076 0x117c Rasl2tp - ok

01:00:51.0091 0x117c [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll

01:00:51.0143 0x117c RasMan - ok

01:00:51.0166 0x117c [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys

01:00:51.0248 0x117c RasPppoe - ok

01:00:51.0263 0x117c [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys

01:00:51.0327 0x117c RasSstp - ok

01:00:51.0368 0x117c [ 90F489A0A6BC302AEDCEDABFBC7952F8, 46E5065811A584209E84F2E39606EA9A355CF178BCD4D6CFFA83C2B45D740559 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys

01:00:51.0430 0x117c rdbss - ok

01:00:51.0453 0x117c [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys

01:00:51.0505 0x117c rdpbus - ok

01:00:51.0523 0x117c [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys

01:00:51.0608 0x117c RDPCDD - ok

01:00:51.0642 0x117c [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys

01:00:51.0668 0x117c RDPDR - ok

01:00:51.0688 0x117c [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys

01:00:51.0740 0x117c RDPENCDD - ok

01:00:51.0760 0x117c [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys

01:00:51.0848 0x117c RDPREFMP - ok

01:00:51.0882 0x117c [ 065F79543D7999EC28B687F87E96B803, 6B235C422DCA79ABF0D051C066B2866643333F7ADB7AF914F6EEAC448AA59AAF ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys

01:00:51.0904 0x117c RdpVideoMiniport - ok

01:00:51.0955 0x117c [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys

01:00:52.0022 0x117c RDPWD - ok

01:00:52.0054 0x117c [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys

01:00:52.0090 0x117c rdyboost - ok

01:00:52.0130 0x117c [ EA569D48B2E755AF6D96F03F3335D98A, EED2DCDF187A69F36A38129C8A1E0D6FE0EBF9232DEAF68A116E9A26E40AB636 ] Realtek11nCU C:\Program Files (x86)\REALTEK\11n USB Wireless LAN Utility\RtlService.exe

01:00:52.0136 0x117c Realtek11nCU - detected UnsignedFile.Multi.Generic ( 1 )

01:00:55.0084 0x117c Detect skipped due to KSN trusted

01:00:55.0084 0x117c Realtek11nCU - ok

01:00:55.0137 0x117c [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll

01:00:55.0225 0x117c RemoteAccess - ok

01:00:55.0244 0x117c [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll

01:00:55.0296 0x117c RemoteRegistry - ok

01:00:55.0333 0x117c [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys

01:00:55.0385 0x117c RFCOMM - ok

01:00:55.0411 0x117c [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll

01:00:55.0453 0x117c RpcEptMapper - ok

01:00:55.0468 0x117c [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe

01:00:55.0495 0x117c RpcLocator - ok

01:00:55.0517 0x117c [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll

01:00:55.0556 0x117c RpcSs - ok

01:00:55.0583 0x117c [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys

01:00:55.0623 0x117c rspndr - ok

01:00:55.0680 0x117c [ 9140DB0911DE035FED0A9A77A2D156EA, 07C9D7E2978062ABD84B58B390360D4C0F72C6A5A2310444579DC095943BD008 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys

01:00:55.0716 0x117c RTL8167 - ok

01:00:55.0781 0x117c [ 48D25FF2DE27DEFBB96143E7A94297BA, 5E68B2ECFB064DA865EF479FBF2BB338C98C61ED85DF24673690E4F7EDA736D7 ] RTL8192cu C:\Windows\system32\DRIVERS\rtwlanu.sys

01:00:55.0834 0x117c RTL8192cu - ok

01:00:55.0855 0x117c [ C66F68E501687573B6EAA66F3F0AB285, C028CD68C4C41D3B388681FD577176F94EF2BCE8C1C5E3EBB4CA18F7E20BA715 ] rtlss C:\Windows\system32\Drivers\rtlss.sys

01:00:55.0875 0x117c rtlss - ok

01:00:55.0889 0x117c [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys

01:00:55.0920 0x117c s3cap - ok

01:00:55.0928 0x117c [ 2BB259A51DDADBCF9652C67A3E82447C, 2B2BF0A30E60FC66C55B83E1BB0A9F3D97263318FE5991EC2C880E8A12E4A045 ] SamSs C:\Windows\system32\lsass.exe

01:00:55.0942 0x117c SamSs - ok

01:00:56.0007 0x117c [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS

01:00:56.0072 0x117c SASDIFSV - ok

01:00:56.0093 0x117c [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS

01:00:56.0119 0x117c SASKUTIL - ok

01:00:56.0134 0x117c [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys

01:00:56.0166 0x117c sbp2port - ok

01:00:56.0190 0x117c [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll

01:00:56.0247 0x117c SCardSvr - ok

01:00:56.0281 0x117c [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys

01:00:56.0376 0x117c scfilter - ok

01:00:56.0431 0x117c [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll

01:00:56.0467 0x117c Schedule - ok

01:00:56.0485 0x117c [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll

01:00:56.0516 0x117c SCPolicySvc - ok

01:00:56.0531 0x117c [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll

01:00:56.0556 0x117c SDRSVC - ok

01:00:56.0585 0x117c [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys

01:00:56.0658 0x117c secdrv - ok

01:00:56.0685 0x117c [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll

01:00:56.0740 0x117c seclogon - ok

01:00:56.0759 0x117c [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll

01:00:56.0806 0x117c SENS - ok

01:00:56.0830 0x117c [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll

01:00:56.0866 0x117c SensrSvc - ok

01:00:56.0897 0x117c [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys

01:00:56.0928 0x117c Serenum - ok

01:00:56.0944 0x117c [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys

01:00:56.0968 0x117c Serial - ok

01:00:56.0983 0x117c [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys

01:00:57.0046 0x117c sermouse - ok

01:00:57.0087 0x117c [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll

01:00:57.0150 0x117c SessionEnv - ok

01:00:57.0174 0x117c [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys

01:00:57.0222 0x117c sffdisk - ok

01:00:57.0240 0x117c [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys

01:00:57.0295 0x117c sffp_mmc - ok

01:00:57.0319 0x117c [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys

01:00:57.0351 0x117c sffp_sd - ok

01:00:57.0367 0x117c [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys

01:00:57.0396 0x117c sfloppy - ok

01:00:57.0438 0x117c [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll

01:00:57.0536 0x117c SharedAccess - ok

01:00:57.0579 0x117c [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll

01:00:57.0640 0x117c ShellHWDetection - ok

01:00:57.0659 0x117c [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys

01:00:57.0680 0x117c SiSRaid2 - ok

01:00:57.0690 0x117c [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys

01:00:57.0713 0x117c SiSRaid4 - ok

01:00:57.0786 0x117c [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe

01:00:57.0814 0x117c SkypeUpdate - ok

01:00:57.0850 0x117c [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys

01:00:57.0934 0x117c Smb - ok

01:00:58.0005 0x117c [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe

01:00:58.0047 0x117c SNMPTRAP - ok

01:00:58.0058 0x117c [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys

01:00:58.0085 0x117c spldr - ok

01:00:58.0136 0x117c [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe

01:00:58.0163 0x117c Spooler - ok

01:00:58.0285 0x117c [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe

01:00:58.0416 0x117c sppsvc - ok

01:00:58.0449 0x117c [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll

01:00:58.0484 0x117c sppuinotify - ok

01:00:58.0526 0x117c [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys

01:00:58.0616 0x117c srv - ok

01:00:58.0648 0x117c [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys

01:00:58.0682 0x117c srv2 - ok

01:00:58.0729 0x117c [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys

01:00:58.0773 0x117c srvnet - ok

01:00:58.0789 0x117c [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll

01:00:58.0840 0x117c SSDPSRV - ok

01:00:58.0862 0x117c [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll

01:00:58.0896 0x117c SstpSvc - ok

01:00:58.0912 0x117c [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys

01:00:58.0933 0x117c stexstor - ok

01:00:58.0959 0x117c [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll

01:00:58.0989 0x117c stisvc - ok

01:00:59.0016 0x117c [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys

01:00:59.0061 0x117c storflt - ok

01:00:59.0078 0x117c [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys

01:00:59.0107 0x117c storvsc - ok

01:00:59.0120 0x117c [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys

01:00:59.0148 0x117c swenum - ok

01:00:59.0171 0x117c [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll

01:00:59.0218 0x117c swprv - ok

01:00:59.0236 0x117c [ C3A39C4079305480972D29C44B868C78, 8F1BB75C743256F905EAEDE744B6082C53774C49126875FB4E4FBA30F5478B17 ] Synth3dVsc C:\Windows\system32\drivers\synth3dvsc.sys

01:00:59.0259 0x117c Synth3dVsc - ok

01:00:59.0370 0x117c [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll

01:00:59.0418 0x117c SysMain - ok

01:00:59.0436 0x117c [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll

01:00:59.0474 0x117c TabletInputService - ok

01:00:59.0499 0x117c [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll

01:00:59.0562 0x117c TapiSrv - ok

01:00:59.0578 0x117c [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll

01:00:59.0631 0x117c TBS - ok

01:00:59.0734 0x117c [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys

01:00:59.0827 0x117c Tcpip - ok

01:00:59.0888 0x117c [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys

01:00:59.0965 0x117c TCPIP6 - ok

01:01:00.0008 0x117c [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys

01:01:00.0106 0x117c tcpipreg - ok

01:01:00.0142 0x117c [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys

01:01:00.0224 0x117c TDPIPE - ok

01:01:00.0256 0x117c [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys

01:01:00.0338 0x117c TDTCP - ok

01:01:00.0386 0x117c [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys

01:01:00.0469 0x117c tdx - ok

01:01:00.0497 0x117c [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys

01:01:00.0529 0x117c TermDD - ok

01:01:00.0560 0x117c [ 2B5BDFF688EC9871D7EC5837833374E9, BD6C629FA2938987ABF95B790B20F0B7D4D023D5013E575F343A802D6213074E ] terminpt C:\Windows\system32\drivers\terminpt.sys

01:01:00.0581 0x117c terminpt - ok

01:01:00.0688 0x117c [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll

01:01:00.0759 0x117c TermService - ok

01:01:00.0781 0x117c [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll

01:01:00.0808 0x117c Themes - ok

01:01:00.0836 0x117c [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll

01:01:00.0867 0x117c THREADORDER - ok

01:01:00.0884 0x117c [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll

01:01:00.0932 0x117c TrkWks - ok

01:01:01.0014 0x117c [ FD44FA80DA03EA144153A76DEBBB61B4, 0C46717F489A415A583470DAE8CF58E47BC307B9CB0F9DB6C4EDF33B7525475C ] TrueSight C:\Windows\System32\drivers\TrueSight.sys

01:01:01.0056 0x117c TrueSight - ok

01:01:01.0095 0x117c [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

01:01:01.0161 0x117c TrustedInstaller - ok

01:01:01.0194 0x117c [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys

01:01:01.0216 0x117c tssecsrv - ok

01:01:01.0240 0x117c [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys

01:01:01.0262 0x117c TsUsbFlt - ok

01:01:01.0282 0x117c [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys

01:01:01.0318 0x117c TsUsbGD - ok

01:01:01.0360 0x117c [ E1748D04AE40118B62BC18AC86032192, A954B141D1B27272C771D14F3B40C7CC1F572DD72559F2C96182EFBE2B095FDE ] tsusbhub C:\Windows\system32\drivers\tsusbhub.sys

01:01:01.0427 0x117c tsusbhub - ok

01:01:01.0457 0x117c [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys

01:01:01.0502 0x117c tunnel - ok

01:01:01.0518 0x117c [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys

01:01:01.0540 0x117c uagp35 - ok

01:01:01.0559 0x117c [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys

01:01:01.0628 0x117c udfs - ok

01:01:01.0655 0x117c [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe

01:01:01.0688 0x117c UI0Detect - ok

01:01:01.0710 0x117c [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys

01:01:01.0732 0x117c uliagpkx - ok

01:01:01.0753 0x117c [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys

01:01:01.0796 0x117c umbus - ok

01:01:01.0813 0x117c [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys

01:01:01.0834 0x117c UmPass - ok

01:01:01.0867 0x117c [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll

01:01:01.0910 0x117c UmRdpService - ok

01:01:01.0931 0x117c [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll

01:01:01.0969 0x117c upnphost - ok

01:01:02.0012 0x117c [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys

01:01:02.0064 0x117c usbaudio - ok

01:01:02.0103 0x117c [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys

01:01:02.0167 0x117c usbccgp - ok

01:01:02.0200 0x117c [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys

01:01:02.0253 0x117c usbcir - ok

01:01:02.0291 0x117c [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys

01:01:02.0323 0x117c usbehci - ok

01:01:02.0356 0x117c [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys

01:01:02.0447 0x117c usbhub - ok

01:01:02.0472 0x117c [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\DRIVERS\usbohci.sys

01:01:02.0505 0x117c usbohci - ok

01:01:02.0528 0x117c [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys

01:01:02.0551 0x117c usbprint - ok

01:01:02.0577 0x117c [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys

01:01:02.0615 0x117c usbscan - ok

01:01:02.0641 0x117c [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS

01:01:02.0664 0x117c USBSTOR - ok

01:01:02.0677 0x117c [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys

01:01:02.0715 0x117c usbuhci - ok

01:01:02.0744 0x117c [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys

01:01:02.0782 0x117c usbvideo - ok

01:01:02.0803 0x117c [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll

01:01:02.0835 0x117c UxSms - ok

01:01:02.0847 0x117c [ 2BB259A51DDADBCF9652C67A3E82447C, 2B2BF0A30E60FC66C55B83E1BB0A9F3D97263318FE5991EC2C880E8A12E4A045 ] VaultSvc C:\Windows\system32\lsass.exe

01:01:02.0861 0x117c VaultSvc - ok

01:01:03.0018 0x117c [ 3470D2C83CA7A056B91216EA1D571304, 3189ABF6E8C08B1B0F406DB5E78F9ABD9A0AE3FF52615B681A8DEB1A38E26B83 ] VBoxAswDrv C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys

01:01:03.0066 0x117c VBoxAswDrv - ok

01:01:03.0103 0x117c [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys

01:01:03.0144 0x117c vdrvroot - ok

01:01:03.0184 0x117c [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe

01:01:03.0245 0x117c vds - ok

01:01:03.0260 0x117c [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys

01:01:03.0284 0x117c vga - ok

01:01:03.0296 0x117c [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys

01:01:03.0333 0x117c VgaSave - ok

01:01:03.0353 0x117c [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys

01:01:03.0380 0x117c vhdmp - ok

01:01:03.0417 0x117c [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys

01:01:03.0463 0x117c viaide - ok

01:01:03.0488 0x117c [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys

01:01:03.0523 0x117c vmbus - ok

01:01:03.0535 0x117c [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys

01:01:03.0577 0x117c VMBusHID - ok

01:01:03.0598 0x117c [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys

01:01:03.0619 0x117c volmgr - ok

01:01:03.0639 0x117c [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys

01:01:03.0670 0x117c volmgrx - ok

01:01:03.0684 0x117c [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys

01:01:03.0713 0x117c volsnap - ok

01:01:03.0730 0x117c [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys

01:01:03.0755 0x117c vsmraid - ok

01:01:03.0808 0x117c [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe

01:01:03.0867 0x117c VSS - ok

01:01:03.0892 0x117c [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys

01:01:03.0968 0x117c vwifibus - ok

01:01:03.0982 0x117c [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys

01:01:04.0008 0x117c vwififlt - ok

01:01:04.0028 0x117c [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll

01:01:04.0086 0x117c W32Time - ok

01:01:04.0111 0x117c [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys

01:01:04.0187 0x117c WacomPen - ok

01:01:04.0225 0x117c [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys

01:01:04.0320 0x117c WANARP - ok

01:01:04.0324 0x117c [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys

01:01:04.0361 0x117c Wanarpv6 - ok

01:01:04.0491 0x117c [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe

01:01:04.0538 0x117c WatAdminSvc - ok

01:01:04.0642 0x117c [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe

01:01:04.0726 0x117c wbengine - ok

01:01:04.0760 0x117c [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll

01:01:04.0841 0x117c WbioSrvc - ok

01:01:04.0876 0x117c [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll

01:01:04.0922 0x117c wcncsvc - ok

01:01:04.0945 0x117c [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll

01:01:04.0969 0x117c WcsPlugInService - ok

01:01:04.0986 0x117c [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys

01:01:05.0006 0x117c Wd - ok

01:01:05.0083 0x117c [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys

01:01:05.0145 0x117c Wdf01000 - ok

01:01:05.0177 0x117c [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll

01:01:05.0193 0x117c WdiServiceHost - ok

01:01:05.0198 0x117c [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll

01:01:05.0213 0x117c WdiSystemHost - ok

01:01:05.0272 0x117c [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll

01:01:05.0325 0x117c WebClient - ok

01:01:05.0351 0x117c [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll

01:01:05.0425 0x117c Wecsvc - ok

01:01:05.0434 0x117c [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll

01:01:05.0467 0x117c wercplsupport - ok

01:01:05.0482 0x117c [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll

01:01:05.0514 0x117c WerSvc - ok

01:01:05.0535 0x117c [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys

01:01:05.0571 0x117c WfpLwf - ok

01:01:05.0579 0x117c [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys

01:01:05.0615 0x117c WIMMount - ok

01:01:05.0632 0x117c WinDefend - ok

01:01:05.0637 0x117c WinHttpAutoProxySvc - ok

01:01:05.0661 0x117c [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll

01:01:05.0715 0x117c Winmgmt - ok

01:01:05.0827 0x117c [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll

01:01:05.0917 0x117c WinRM - ok

01:01:06.0014 0x117c [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys

01:01:06.0059 0x117c WinUsb - ok

01:01:06.0099 0x117c [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll

01:01:06.0133 0x117c Wlansvc - ok

01:01:06.0425 0x117c [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

01:01:06.0478 0x117c wlidsvc - ok

01:01:06.0503 0x117c [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys

01:01:06.0538 0x117c WmiAcpi - ok

01:01:06.0571 0x117c [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe

01:01:06.0632 0x117c wmiApSrv - ok

01:01:06.0664 0x117c WMPNetworkSvc - ok

01:01:06.0688 0x117c [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll

01:01:06.0741 0x117c WPCSvc - ok

01:01:06.0763 0x117c [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll

01:01:06.0788 0x117c WPDBusEnum - ok

01:01:06.0806 0x117c [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys

01:01:06.0844 0x117c ws2ifsl - ok

01:01:06.0863 0x117c [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll

01:01:06.0883 0x117c wscsvc - ok

01:01:06.0886 0x117c WSearch - ok

01:01:07.0030 0x117c [ 39D604E190DFE2E483B637D6796ABAFF, 52DCCEA0DB59F00C615D94CC2B70FC1C335E553E8FC79AAC8C8C7D9EE1F6111D ] wuauserv C:\Windows\system32\wuaueng.dll

01:01:07.0115 0x117c wuauserv - ok

01:01:07.0138 0x117c [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys

01:01:07.0160 0x117c WudfPf - ok

01:01:07.0199 0x117c [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys

01:01:07.0225 0x117c WUDFRd - ok

01:01:07.0243 0x117c [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll

01:01:07.0261 0x117c wudfsvc - ok

01:01:07.0313 0x117c [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll

01:01:07.0371 0x117c WwanSvc - ok

01:01:07.0437 0x117c ================ Scan global ===============================

01:01:07.0472 0x117c [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll

01:01:07.0528 0x117c [ BEF290D165BE120135C21438C40E2F99, 00E34AF01AE4EEB00351AC6825F54DC5038D7994C8D5C21AC903A41E933BCCAF ] C:\Windows\system32\winsrv.dll

01:01:07.0549 0x117c [ BEF290D165BE120135C21438C40E2F99, 00E34AF01AE4EEB00351AC6825F54DC5038D7994C8D5C21AC903A41E933BCCAF ] C:\Windows\system32\winsrv.dll

01:01:07.0579 0x117c [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll

01:01:07.0634 0x117c [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe

01:01:07.0658 0x117c [ Global ] - ok

01:01:07.0658 0x117c ================ Scan MBR ==================================

01:01:07.0666 0x117c [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0

01:01:08.0090 0x117c \Device\Harddisk0\DR0 - ok

01:01:08.0104 0x117c [ 3C27C0429156ADC19E0F46AF77CD22D7 ] \Device\Harddisk1\DR1

01:01:08.0237 0x117c \Device\Harddisk1\DR1 - ok

01:01:08.0238 0x117c ================ Scan VBR ==================================

01:01:08.0244 0x117c [ C806253EF65FAB0DCE044C107C018C9C ] \Device\Harddisk0\DR0\Partition1

01:01:08.0247 0x117c \Device\Harddisk0\DR0\Partition1 - ok

01:01:08.0254 0x117c [ DE94E6EB8B8A3C6797CBD07D9E7F11FA ] \Device\Harddisk0\DR0\Partition2

01:01:08.0258 0x117c \Device\Harddisk0\DR0\Partition2 - ok

01:01:08.0265 0x117c [ 78103CE91D0116C6ECBFB7994EB4C4E2 ] \Device\Harddisk1\DR1\Partition1

01:01:08.0268 0x117c \Device\Harddisk1\DR1\Partition1 - ok

01:01:08.0270 0x117c ================ Scan generic autorun ======================

01:01:08.0492 0x117c [ 3B5E455A5F849C73B4881622778B5EFD, 20D22C398669BF64866987D5B79A20ECA90F0A25968A169F3C0ADF3B0F1A38D1 ] C:\Program Files (x86)\AVG\AVG2015\avgui.exe

01:01:08.0571 0x117c AVG_UI - ok

01:01:08.0673 0x117c [ FA87C6A22F3339B9EDC2F2079BC1E996, 86084094C9576D0BF48B299E048649D930214EDEC9B7462C9242D360A720AB00 ] C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe

01:01:08.0709 0x117c LifeCam - ok

01:01:08.0832 0x117c [ 48BE298F7FD1BEF4D8FBACB04D8D95C4, D375B3F6E850E4B0EC81BAA0E554C356BE2248AA77C6C56F5267CA05460FE4EB ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

01:01:08.0866 0x117c Adobe ARM - ok

01:01:09.0121 0x117c [ 123CE08362EE48BBA7F9F1D7EB50F24F, B78A49B186475805D7022E22AE163C535F3594F62CEA2759547EC514FA6CBFCC ] C:\Program Files\AVAST Software\Avast\AvastUI.exe

01:01:09.0250 0x117c AvastUI.exe - ok

01:01:09.0309 0x117c Oce Monitor - ok

01:01:09.0371 0x117c [ 308F2EE28005510DE616409148CF077B, A2126CB185B0053086BDD6F0A16A503F6CA629AC677E4B7AE6D43C770061D087 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

01:01:09.0406 0x117c SunJavaUpdateSched - ok

01:01:09.0453 0x117c DelaypluginInstall - ok

01:01:09.0556 0x117c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe

01:01:09.0617 0x117c Sidebar - ok

01:01:09.0635 0x117c [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe

01:01:09.0655 0x117c mctadmin - ok

01:01:09.0699 0x117c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe

01:01:09.0738 0x117c Sidebar - ok

01:01:09.0746 0x117c [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe

01:01:09.0765 0x117c mctadmin - ok

01:01:09.0785 0x117c AVG-Secure-Search-Update_0913b - ok

01:01:09.0869 0x117c [ 7C6D524C78A1722AD987B9E47AC1FEE2, FFDC6C92ABB547D0DCD2621EC423C755A78079B061A41FA1751A56799D1A79A5 ] C:\Users\Μπούφος\AppData\Local\Dropbox\Update\DropboxUpdate.exe

01:01:09.0909 0x117c Dropbox Update - ok

01:01:10.0177 0x117c [ 47DBCC66CF9A3DCEF2D42051431160D3, 5E99CB8333471E80590AED8CA139EF859AD617D1C7BD9406913A86016DCA08F6 ] C:\Program Files\CCleaner\CCleaner64.exe

01:01:10.0451 0x117c CCleaner Monitoring - ok

01:01:10.0522 0x117c [ 42E974C4428C22980B17547D0AE32A83, 33C55B98C9001F2F999025E43BCE6ACC2A8E95FD5D6B5BB7DF2E31C88828A210 ] C:\Windows\system32\spool\DRIVERS\x64\3\E_IATIGJE.EXE

01:01:10.0551 0x117c EPSON BX305 Series - ok

01:01:10.0594 0x117c Skype - ok

01:01:10.0669 0x117c [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] C:\Users\Μπούφος\AppData\Local\Google\Update\GoogleUpdate.exe

01:01:10.0695 0x117c Google Update - ok

01:01:10.0982 0x117c [ C5FF4D34A1330551F227BE40DF169F1E, FBD97BB5C6A57707ED8657F8212D8E3CAB3AF70989145AF92462F656DDCFE899 ] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

01:01:11.0255 0x117c SUPERAntiSpyware - ok

01:01:11.0268 0x117c Waiting for KSN requests completion. In queue: 159

01:01:12.0268 0x117c Waiting for KSN requests completion. In queue: 159

01:01:13.0268 0x117c Waiting for KSN requests completion. In queue: 159

01:01:14.0268 0x117c Waiting for KSN requests completion. In queue: 159

01:01:14.0315 0x19a4 Object required for P2P: [ C5FF4D34A1330551F227BE40DF169F1E ] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

01:01:15.0268 0x117c Waiting for KSN requests completion. In queue: 1

01:01:16.0268 0x117c Waiting for KSN requests completion. In queue: 1

01:01:17.0268 0x117c Waiting for KSN requests completion. In queue: 1

01:01:18.0268 0x117c Waiting for KSN requests completion. In queue: 1

01:01:19.0268 0x117c Waiting for KSN requests completion. In queue: 1

01:01:20.0269 0x117c Waiting for KSN requests completion. In queue: 1

01:01:21.0269 0x117c Waiting for KSN requests completion. In queue: 1

01:01:22.0269 0x117c Waiting for KSN requests completion. In queue: 1

01:01:23.0269 0x117c Waiting for KSN requests completion. In queue: 1

01:01:24.0269 0x117c Waiting for KSN requests completion. In queue: 1

01:01:25.0269 0x117c Waiting for KSN requests completion. In queue: 1

01:01:26.0269 0x117c Waiting for KSN requests completion. In queue: 1

01:01:27.0269 0x117c Waiting for KSN requests completion. In queue: 1

01:01:28.0266 0x19a4 Object send P2P result: true

01:01:28.0495 0x117c AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.4.2233.1299 ), 0x41000 ( enabled : updated )

01:01:28.0520 0x117c AV detected via SS2: AVG AntiVirus Free Edition 2015, C:\Program Files (x86)\AVG\AVG2015\avgwsc.exe ( 15.0.0.6140 ), 0x41000 ( enabled : updated )

01:01:28.0605 0x117c Win FW state via NFP2: enabled ( trusted )

01:01:31.0364 0x117c ============================================================

01:01:31.0364 0x117c Scan finished

01:01:31.0364 0x117c ============================================================

01:01:31.0387 0x1b3c Detected object count: 1

01:01:31.0387 0x1b3c Actual detected object count: 1

01:01:58.0094 0x1b3c ORD_ProcessAcrobat ( UnsignedFile.Multi.Generic ) - skipped by user

01:01:58.0094 0x1b3c ORD_ProcessAcrobat ( UnsignedFile.Multi.Generic ) - User select action: Skip

kevinf80 · October 14, 2015

Can you uninstall whichever Anti-virus program you do not use, AVG or Avast...

Next,

1.Download Malwarebytes Anti-Rootkit from this link:

http://www.malwarebytes.org/products/mbar/

2. Unzip the File to a convenient location. (Recommend the Desktop)
3. Open the folder where the contents were unzipped to run mbar.exe

4. Double-click on the mbar.exe file, you may receive a User Account Control prompt asking if you are sure you wish to allow the program to run. Please allow the program to run and MBAR will now start to install any necessary drivers that are required for the program to operate correctly. If a rootkit is interfering with the installation of the drivers you will see a message that states that the DDA driver was not installed and that you should reboot your computer to install it. You will see this image:

5. If you receive this message, please click on the Yes button and Malwarebytes Anti-Rootkit will now restart your computer. Once the computer is rebooted and you login, MBAR will automatically start and you will now be at the start screen. (If no Rootkit warning you will go from step 4 to 6.)

6. The following image opens, select Next.

7. The following image opens, select Update

8. When the update completes select Next.

9. In the following window ensure "Targets" are ticked. Then select "Scan"

10. If an infection is found select the "Cleanup Button" to remove threats, Reboot if prompted. Wait while the system shuts down and the cleanup process is performed.

11. Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click "Cleanup Button" once more and repeat the process.
12. If no threats were found you will see the following image, Select Exit:

13. Verify that your system is now running normally, making sure that the following items are functional:

Internet access
Windows Update
Windows Firewall

14. If there are additional problems with your system, such as any of those listed above or other system issues, then run the 'fixdamage' tool included within Malwarebytes Anti-Rootkit folder.

15. Select "Y" from your Keyboard, tap Enter.

16. The fix will be applied, select any key to Exit.

17. Let me know how your system now responds. Copy and paste the two following logs from the mbar folder:

System - log
Mbar - log Date and time of scan will also be shown

Thanks,

Kevin...

sok_pip · October 15, 2015

System log:

---------------------------------------

Malwarebytes Anti-Rootkit BETA 1.09.3.1001

OS version: 6.1.7601 Windows 7 Service Pack 1 x64

Account is Administrative

Internet Explorer version: 11.0.9600.18059

File system is: NTFS

Disk drives: C:\ DRIVE_FIXED, E:\ DRIVE_FIXED

CPU speed: 3.406000 GHz

Memory total: 8320704512, free: 5592952832

Downloaded database version: v2015.10.15.05

Downloaded database version: v2015.10.06.01

Downloaded database version: v2015.10.14.01

=======================================

Initializing...

------------ Kernel report ------------

10/15/2015 21:50:19

------------ Loaded modules -----------

\SystemRoot\system32\ntoskrnl.exe

\SystemRoot\system32\hal.dll

\SystemRoot\system32\kdcom.dll

\SystemRoot\system32\mcupdate_AuthenticAMD.dll

\SystemRoot\system32\PSHED.dll

\SystemRoot\system32\CLFS.SYS

\SystemRoot\system32\CI.dll

\SystemRoot\system32\drivers\Wdf01000.sys

\SystemRoot\system32\drivers\WDFLDR.SYS

\SystemRoot\system32\drivers\ACPI.sys

\SystemRoot\system32\drivers\WMILIB.SYS

\SystemRoot\system32\drivers\msisadrv.sys

\SystemRoot\system32\drivers\pci.sys

\SystemRoot\system32\drivers\vdrvroot.sys

\SystemRoot\System32\drivers\partmgr.sys

\SystemRoot\system32\drivers\volmgr.sys

\SystemRoot\System32\drivers\volmgrx.sys

\SystemRoot\system32\drivers\pciide.sys

\SystemRoot\system32\drivers\PCIIDEX.SYS

\SystemRoot\System32\drivers\mountmgr.sys

\SystemRoot\system32\drivers\atapi.sys

\SystemRoot\system32\drivers\ataport.SYS

\SystemRoot\system32\drivers\msahci.sys

\SystemRoot\system32\drivers\amdxata.sys

\SystemRoot\system32\drivers\fltmgr.sys

\SystemRoot\system32\drivers\fileinfo.sys

\SystemRoot\System32\Drivers\Ntfs.sys

\SystemRoot\System32\Drivers\msrpc.sys

\SystemRoot\System32\Drivers\ksecdd.sys

\SystemRoot\System32\Drivers\cng.sys

\SystemRoot\System32\drivers\pcw.sys

\SystemRoot\System32\Drivers\Fs_Rec.sys

\SystemRoot\system32\drivers\ndis.sys

\SystemRoot\system32\drivers\NETIO.SYS

\SystemRoot\System32\Drivers\ksecpkg.sys

\SystemRoot\System32\drivers\tcpip.sys

\SystemRoot\System32\drivers\fwpkclnt.sys

\SystemRoot\system32\drivers\vmstorfl.sys

\SystemRoot\system32\drivers\volsnap.sys

\SystemRoot\System32\Drivers\spldr.sys

\SystemRoot\System32\drivers\rdyboost.sys

\SystemRoot\System32\Drivers\mup.sys

\SystemRoot\System32\drivers\hwpolicy.sys

\SystemRoot\System32\DRIVERS\fvevol.sys

\SystemRoot\system32\drivers\disk.sys

\SystemRoot\system32\drivers\CLASSPNP.SYS

\SystemRoot\system32\DRIVERS\cdrom.sys

\SystemRoot\System32\Drivers\Null.SYS

\SystemRoot\System32\Drivers\Beep.SYS

\SystemRoot\System32\drivers\vga.sys

\SystemRoot\System32\drivers\VIDEOPRT.SYS

\SystemRoot\System32\drivers\watchdog.sys

\SystemRoot\System32\DRIVERS\RDPCDD.sys

\SystemRoot\system32\drivers\rdpencdd.sys

\SystemRoot\system32\drivers\rdprefmp.sys

\SystemRoot\System32\Drivers\Msfs.SYS

\SystemRoot\System32\Drivers\Npfs.SYS

\SystemRoot\system32\DRIVERS\tdx.sys

\SystemRoot\system32\DRIVERS\TDI.SYS

\SystemRoot\System32\DRIVERS\netbt.sys

\SystemRoot\system32\drivers\afd.sys

\SystemRoot\system32\DRIVERS\wfplwf.sys

\SystemRoot\system32\DRIVERS\pacer.sys

\SystemRoot\system32\DRIVERS\vwififlt.sys

\SystemRoot\system32\DRIVERS\netbios.sys

\SystemRoot\system32\DRIVERS\serial.sys

\SystemRoot\system32\DRIVERS\wanarp.sys

\SystemRoot\system32\DRIVERS\termdd.sys

\??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS

\??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS

\SystemRoot\system32\DRIVERS\rdbss.sys

\SystemRoot\system32\drivers\nsiproxy.sys

\SystemRoot\system32\DRIVERS\mssmbios.sys

\SystemRoot\System32\drivers\discache.sys

\SystemRoot\system32\drivers\csc.sys

\SystemRoot\System32\Drivers\dfsc.sys

\SystemRoot\system32\DRIVERS\blbdrive.sys

\SystemRoot\system32\DRIVERS\tunnel.sys

\SystemRoot\system32\DRIVERS\amdppm.sys

\SystemRoot\system32\DRIVERS\atikmdag.sys

\SystemRoot\System32\drivers\dxgkrnl.sys

\SystemRoot\System32\drivers\dxgmms1.sys

\SystemRoot\system32\DRIVERS\HDAudBus.sys

\SystemRoot\system32\DRIVERS\Rt64win7.sys

\SystemRoot\system32\DRIVERS\usbohci.sys

\SystemRoot\system32\DRIVERS\USBPORT.SYS

\SystemRoot\system32\DRIVERS\usbehci.sys

\SystemRoot\system32\DRIVERS\parport.sys

\SystemRoot\system32\DRIVERS\serenum.sys

\SystemRoot\system32\DRIVERS\wmiacpi.sys

\SystemRoot\system32\DRIVERS\CompositeBus.sys

\SystemRoot\system32\DRIVERS\AgileVpn.sys

\SystemRoot\system32\DRIVERS\rasl2tp.sys

\SystemRoot\system32\DRIVERS\ndistapi.sys

\SystemRoot\system32\DRIVERS\ndiswan.sys

\SystemRoot\system32\DRIVERS\raspppoe.sys

\SystemRoot\system32\DRIVERS\raspptp.sys

\SystemRoot\system32\DRIVERS\rassstp.sys

\SystemRoot\system32\DRIVERS\rdpbus.sys

\SystemRoot\system32\DRIVERS\kbdclass.sys

\SystemRoot\system32\DRIVERS\mouclass.sys

\SystemRoot\system32\DRIVERS\swenum.sys

\SystemRoot\system32\DRIVERS\ks.sys

\SystemRoot\system32\DRIVERS\umbus.sys

\SystemRoot\system32\DRIVERS\usbhub.sys

\SystemRoot\System32\Drivers\NDProxy.SYS

\SystemRoot\system32\drivers\HdAudio.sys

\SystemRoot\system32\drivers\portcls.sys

\SystemRoot\system32\drivers\drmk.sys

\SystemRoot\system32\drivers\ksthunk.sys

\SystemRoot\system32\DRIVERS\USBD.SYS

\SystemRoot\system32\DRIVERS\usbccgp.sys

\SystemRoot\system32\drivers\usbaudio.sys

\SystemRoot\system32\DRIVERS\hidusb.sys

\SystemRoot\system32\DRIVERS\HIDCLASS.SYS

\SystemRoot\system32\DRIVERS\HIDPARSE.SYS

\SystemRoot\system32\DRIVERS\usbscan.sys

\SystemRoot\system32\DRIVERS\usbprint.sys

\SystemRoot\system32\DRIVERS\kbdhid.sys

\SystemRoot\System32\Drivers\nx6000.sys

\SystemRoot\System32\Drivers\usbvideo.sys

\SystemRoot\system32\DRIVERS\mouhid.sys

\SystemRoot\System32\Drivers\BTHUSB.sys

\SystemRoot\System32\Drivers\bthport.sys

\SystemRoot\system32\DRIVERS\rfcomm.sys

\SystemRoot\system32\DRIVERS\BthEnum.sys

\SystemRoot\system32\DRIVERS\bthpan.sys

\SystemRoot\system32\DRIVERS\bthmodem.sys

\SystemRoot\system32\drivers\modem.sys

\SystemRoot\system32\DRIVERS\cdfs.sys

\SystemRoot\System32\Drivers\crashdmp.sys

\SystemRoot\System32\Drivers\dump_dumpata.sys

\SystemRoot\System32\Drivers\dump_atapi.sys

\SystemRoot\System32\Drivers\dump_dumpfve.sys

\SystemRoot\System32\win32k.sys

\SystemRoot\System32\drivers\Dxapi.sys

\SystemRoot\system32\DRIVERS\monitor.sys

\SystemRoot\System32\TSDDD.dll

\SystemRoot\System32\cdd.dll

\SystemRoot\System32\ATMFD.DLL

\SystemRoot\system32\drivers\luafv.sys

\??\C:\Windows\system32\drivers\mbam.sys

\SystemRoot\system32\DRIVERS\lltdio.sys

\SystemRoot\system32\DRIVERS\nwifi.sys

\SystemRoot\system32\DRIVERS\ndisuio.sys

\SystemRoot\system32\DRIVERS\rspndr.sys

\SystemRoot\system32\drivers\HTTP.sys

\SystemRoot\system32\DRIVERS\bowser.sys

\SystemRoot\System32\drivers\mpsdrv.sys

\SystemRoot\system32\DRIVERS\mrxsmb.sys

\SystemRoot\system32\DRIVERS\mrxsmb10.sys

\SystemRoot\system32\DRIVERS\mrxsmb20.sys

\SystemRoot\system32\drivers\peauth.sys

\SystemRoot\System32\DRIVERS\srvnet.sys

\SystemRoot\System32\drivers\tcpipreg.sys

\SystemRoot\System32\DRIVERS\srv2.sys

\SystemRoot\System32\DRIVERS\srv.sys

\??\C:\Windows\system32\drivers\mwac.sys

\??\C:\Windows\system32\drivers\MBAMSwissArmy.sys

\??\C:\Windows\system32\drivers\mbamchameleon.sys

\Windows\System32\ntdll.dll

\Windows\System32\smss.exe

\Windows\System32\apisetschema.dll

\Windows\System32\autochk.exe

----------- End -----------

Done!

Scan started

Database versions:

main: v2015.10.15.05

rootkit: v2015.10.06.01

<<<2>>>

Physical Sector Size: 512

Drive: 0, DevicePointer: 0xfffffa8007841060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\

--------- Disk Stack ------

DevicePointer: 0xfffffa8007841b90, DeviceName: Unknown, DriverName: \Driver\partmgr\

DevicePointer: 0xfffffa8007841060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\

DevicePointer: 0xfffffa8006829520, DeviceName: Unknown, DriverName: \Driver\ACPI\

DevicePointer: 0xfffffa8006827680, DeviceName: \Device\Ide\IdeDeviceP2T0L0-2\, DriverName: \Driver\atapi\

------------ End ----------

Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\

Upper DeviceData: 0x0, 0x0, 0x0

Lower DeviceData: 0x0, 0x0, 0x0

<<<3>>>

Volume: C:

File system type: NTFS

SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes

<<<2>>>

<<<3>>>

Volume: C:

File system type: NTFS

SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes

Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...

Done!

Drive 0

This is a System drive

Scanning MBR on drive 0...

Inspecting partition table:

MBR Signature: 55AA

Disk Signature: 192E2E6B

Partition information:

Partition 0 type is Primary (0x7)

Partition is ACTIVE.

Partition starts at LBA: 2048 Numsec = 204800

Partition is bootable

Partition file system is NTFS

Partition 1 type is Primary (0x7)

Partition is NOT ACTIVE.

Partition starts at LBA: 206848 Numsec = 976564224

Partition is not bootable

Partition file system is NTFS

Partition 2 type is Empty (0x0)

Partition is NOT ACTIVE.

Partition starts at LBA: 0 Numsec = 0

Partition is not bootable

Partition 3 type is Empty (0x0)

Partition is NOT ACTIVE.

Partition starts at LBA: 0 Numsec = 0

Partition is not bootable

Disk Size: 500107862016 bytes

Sector size: 512 bytes

Done!

Physical Sector Size: 512

Drive: 1, DevicePointer: 0xfffffa8007842060, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\

--------- Disk Stack ------

DevicePointer: 0xfffffa8007842b90, DeviceName: Unknown, DriverName: \Driver\partmgr\

DevicePointer: 0xfffffa8007842060, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\

DevicePointer: 0xfffffa800727e520, DeviceName: Unknown, DriverName: \Driver\ACPI\

DevicePointer: 0xfffffa800682f060, DeviceName: \Device\Ide\IdeDeviceP3T0L0-3\, DriverName: \Driver\atapi\

------------ End ----------

Alternate DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\

Upper DeviceData: 0x0, 0x0, 0x0

Lower DeviceData: 0x0, 0x0, 0x0

Drive 1

Scanning MBR on drive 1...

Inspecting partition table:

MBR Signature: 55AA

Disk Signature: E5ECE5EC

Partition information:

Partition 0 type is Primary (0x7)

Partition is ACTIVE.

Partition starts at LBA: 63 Numsec = 488392002

Partition is not bootable

Partition file system is NTFS

Partition 1 type is Empty (0x0)

Partition is NOT ACTIVE.

Partition starts at LBA: 0 Numsec = 0

Partition is not bootable

Partition 2 type is Empty (0x0)

Partition is NOT ACTIVE.

Partition starts at LBA: 0 Numsec = 0

Partition is not bootable

Partition 3 type is Empty (0x0)

Partition is NOT ACTIVE.

Partition starts at LBA: 0 Numsec = 0

Partition is not bootable

Disk Size: 250058268160 bytes

Sector size: 512 bytes

Done!

Scan finished

=======================================

Removal queue found; removal started

Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-i.mbam...

Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-0-2048-i.mbam...

Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-0-1-206848-i.mbam...

Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-0-r.mbam...

Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-1-i.mbam...

Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\VBR-1-0-63-i.mbam...

Removing C:\ProgramData\Malwarebytes' Anti-Malware (portable)\MBR-1-r.mbam...

Removal finished

sok_pip · October 15, 2015

Malwarebytes Anti-Rootkit BETA 1.9.3.1001

www.malwarebytes.org

Database version:

main: v2015.10.15.05

rootkit: v2015.10.06.01

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 11.0.9600.18059

Μπούφος :: MPOUFOS-PC [administrator]

15/10/2015 21:50:28

mbar-log-2015-10-15 (21-50-28).txt

Scan type: Quick scan

Scan options disabled:

Objects scanned: 338602

Time elapsed: 20 minute(s), 9 second(s)

Memory Processes Detected: 0

(No malicious items detected)

Memory Modules Detected: 0

(No malicious items detected)

Registry Keys Detected: 0

(No malicious items detected)

Registry Values Detected: 0

(No malicious items detected)

Registry Data Items Detected: 0

(No malicious items detected)

Folders Detected: 0

(No malicious items detected)

Files Detected: 0

(No malicious items detected)

Physical Sectors Detected: 0

(No malicious items detected)

(end)

sok_pip · October 15, 2015

Hello Kevin!! Everything works fine now! All browsers open without exception! Thank you very much!

So, was my computer infected? Is it safe to use it now? Can I reinstall AVG and Avast now?

Thank you again for all your time and kindness. I saw that you have a paypal account and I want to make a donation to you but right now we have limited access to our money here in Greece and paypal is temporary stopped its service in Greece. But I promise when paypal starts working again in Greece I will give a donation to you!! Thank you again!!

kevinf80 · October 15, 2015

Thank you for those kind words, they mean more to me than a donation. We still need to clean up:

Download "Delfix by Xplode" and save it to your desktop.

Or use the following if first link is down:

"Delfix link mirror"

Double Click to start the program. If you are using Vista or higher, please right-click and choose run as administrator

Make Sure the following items are checked:

Remove disinfection tools
Purge System Restore <--- this will remove all previous and possibly exploited restore points, a new point relative to system status at present will be created.
Reset system settings

Now click on "Run" and wait patiently until the tool has completed.

The tool will create a log when it has completed. We don't need you to post this.

Any remnant files/logs from tools we have used can be deleted…

Next,

Please only install AVG or Avast, not both. Two AV`s installed together with realtime protection active will cause major problems for your system.....

Next,

Read the following links to fully understand PC Security and Best Practices, you may find them useful....

Answers to Common Security Questions and best Practices

Do I need a Registry Cleaner?

Take care and surf safe

Kevin....

sok_pip · October 15, 2015

I ran Delfix! So, my pc is ok now right? Thank you very much again Kevin for saving my pc! Have a great day (or night)!

My browsers won't open

Recommended Posts

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Link to post

Share on other sites

Recently Browsing 0 members

Important Information