Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Multiple chrome.exe *32 v2 - [Resolved]


  • This topic is locked This topic is locked

#1
evelos

evelos

    Member

  • Member
  • PipPip
  • 10 posts

Hi, i have the same problem with scewter had one month ago but the problem goes to firefox and avast as well. In task manager I currently have  "chrome.exe *32" processes running and the same for firefox and avast. Essexboy had help scewter to solve the problem but he said Warning This fix is only relevant for this system and no other, using on another computer may cause problems What i have to do to solve my problem?

 

Thanx for any assistant. Here is my OTL Log:

 

OTL logfile created on: 27/7/2014 1:05:50 μμ - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = D:\Λήψεις
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16750)
Locale: 00000408 | Country: Ελλάδα | Language: ELL | Date Format: d/M/yyyy
 
3,19 Gb Total Physical Memory | 1,97 Gb Available Physical Memory | 61,94% Memory free
6,37 Gb Paging File | 4,84 Gb Available in Paging File | 76,01% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 43,85 Gb Total Space | 21,47 Gb Free Space | 48,97% Space Free | Partition Type: NTFS
Drive D: | 421,81 Gb Total Space | 67,05 Gb Free Space | 15,90% Space Free | Partition Type: NTFS
 
Computer Name: USER-PC | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2014/07/27 13:05:40 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\Λήψεις\OTL.exe
PRC - [2014/06/20 21:44:14 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2014/06/15 11:44:29 | 001,869,488 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_125.exe
PRC - [2014/05/28 12:41:50 | 000,455,680 | ---- | M] (Skillbrains) -- C:\Users\user\AppData\Local\Skillbrains\lightshot\5.1.3.0\Lightshot.exe
PRC - [2014/04/01 19:16:24 | 003,774,312 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\avastui.exe
PRC - [2013/12/18 21:42:32 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2014/06/20 21:44:13 | 003,852,912 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2014/06/15 11:44:29 | 017,024,688 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll
MOD - [2014/02/07 21:48:42 | 019,336,120 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - [2014/02/07 21:48:41 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Stopped] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2013/05/27 08:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
SRV:64bit: - [2011/05/24 23:03:38 | 000,204,288 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009/07/14 04:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2014/06/20 21:44:13 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/12/18 21:42:32 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2009/06/11 00:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - [2014/02/07 21:48:44 | 000,207,904 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2014/02/07 21:48:44 | 000,080,184 | ---- | M] (AVAST Software) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\aswStm.sys -- (aswStm)
DRV:64bit: - [2014/02/07 21:48:44 | 000,065,776 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2014/02/07 21:48:43 | 001,038,072 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2014/02/07 21:48:43 | 000,421,704 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSP.sys -- (aswSP)
DRV:64bit: - [2014/02/07 21:48:43 | 000,092,544 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2014/02/07 21:48:43 | 000,078,648 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2012/03/01 09:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/08/17 10:58:16 | 000,019,968 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcd)
DRV:64bit: - [2011/05/25 00:26:56 | 009,359,872 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2011/05/24 22:25:42 | 000,309,760 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2011/03/30 14:46:44 | 000,114,704 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2010/11/21 06:24:43 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2010/11/21 06:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/21 06:23:48 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub)
DRV:64bit: - [2010/11/21 06:23:48 | 000,088,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:64bit: - [2010/11/21 06:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2010/11/21 06:23:48 | 000,034,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2010/11/21 06:23:47 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2010/11/21 06:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/21 06:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010/11/21 06:23:47 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/09/23 20:23:02 | 006,180,832 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009/07/14 04:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 04:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 04:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 23:35:42 | 000,187,392 | ---- | M] (Realtek Corporation                                            ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009/06/10 23:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 23:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 23:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 23:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/14 04:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
 
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..browser.startup.homepage: "https://www.google.gr/"
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:30.0
FF - user.js - File not found
 
FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2014/07/27 12:41:50 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 30.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 30.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 30.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 30.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
 
[2014/02/07 21:19:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\user\AppData\Roaming\mozilla\Extensions
[2014/07/19 12:35:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\user\AppData\Roaming\mozilla\Firefox\Profiles\oi2qrrnc.default\extensions
[2014/06/20 21:44:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions
[2014/06/20 21:44:14 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\mozilla firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
 
========== Chrome  ==========
 
CHR - default_search_provider:  (Enabled)
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - plugin: Error reading preferences file
CHR - Extension: Xmarks Bookmark Sync = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajpgkpeckebdhofmmjfgcjjiiejpodla\1.0.28_0\
CHR - Extension: ΞΞ³Ξ³Οαφα Google = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\
CHR - Extension: Google Drive  = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Adblock Plus = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.8.3_0\
CHR - Extension: Αναζήτηση Google = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: I \u003C3 House Music = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbihiclmkdmbnihofkkhlmdefkclbfkj\1_0\
CHR - Extension: AdBlock = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.8_0\
CHR - Extension: avast! Online Security = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2022.121_0\
CHR - Extension: Ξ ΞΏΟτοφΟλι Google = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: PDF Viewer = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\oemmndcbldboiebfnladdacbdfmadadm\1.0.215_0\
CHR - Extension: Gmail = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
 
O1 HOSTS File: ([2014/02/07 21:31:04 | 000,000,864 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 validation.sls.microsoft.com
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL (Microsoft Corporation)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe File not found
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [LightShot] C:\Users\user\AppData\Local\Skillbrains\lightshot\Lightshot.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: E&ξαγωγή στο Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: E&ξαγωγή στο Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
O9 - Extra Button: Αποστολή στο OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Α&ποστολή στο OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL (Microsoft Corporation)
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{91F7BB6D-5AF3-4B50-AD75-F6AD81F30525}: DhcpNameServer = 192.168.1.254
O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found
O18:64bit: - Protocol\Handler\ms-help - No CLSID value found
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~2\MICROS~1\Office12\GRA32A~1.DLL (Microsoft Corporation)
O18:64bit: - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2014/07/27 12:29:21 | 000,122,584 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2014/07/27 12:28:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2014/07/27 12:28:07 | 000,091,352 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbamchameleon.sys
[2014/07/27 12:28:07 | 000,063,704 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mwac.sys
[2014/07/27 12:28:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes Anti-Malware
[2014/07/13 13:32:56 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\Adobe
 
========== Files - Modified Within 30 Days ==========
 
[2014/07/27 12:50:17 | 000,001,180 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/07/27 12:48:28 | 000,021,072 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/07/27 12:48:28 | 000,021,072 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/07/27 12:42:25 | 000,001,966 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2014/07/27 12:41:24 | 000,001,176 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/07/27 12:41:12 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/07/27 12:41:04 | 2566,365,184 | -HS- | M] () -- C:\hiberfil.sys
[2014/07/27 12:29:40 | 000,122,584 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2014/07/27 12:28:11 | 000,001,106 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014/07/27 02:18:00 | 000,000,386 | ---- | M] () -- C:\Windows\tasks\update-S-1-5-21-2992675936-2286735739-2217034245-1001.job
[2014/07/27 02:04:00 | 000,000,386 | ---- | M] () -- C:\Windows\tasks\update-sys.job
[2014/07/26 15:04:13 | 000,007,606 | ---- | M] () -- C:\Users\user\AppData\Local\Resmon.ResmonCfg
[2014/07/19 11:56:03 | 000,002,189 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014/07/13 12:59:44 | 000,047,388 | ---- | M] () -- C:\Users\user\Desktop\shoes size.jpg
[2014/07/10 22:29:55 | 000,113,618 | ---- | M] () -- C:\Users\user\Desktop\klidarithmos ika vasili.jpg
 
========== Files Created - No Company Name ==========
 
[2014/07/26 15:04:13 | 000,007,606 | ---- | C] () -- C:\Users\user\AppData\Local\Resmon.ResmonCfg
[2014/07/13 12:59:44 | 000,047,388 | ---- | C] () -- C:\Users\user\Desktop\shoes size.jpg
[2014/07/10 22:29:55 | 000,113,618 | ---- | C] () -- C:\Users\user\Desktop\klidarithmos ika vasili.jpg
[2014/06/06 15:07:04 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2014/06/06 15:03:27 | 000,003,929 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2014/03/25 13:43:51 | 000,000,434 | ---- | C] () -- C:\Users\user\AppData\Local\UserProducts.xml
[2014/02/07 21:42:46 | 000,033,576 | ---- | C] () -- C:\Windows\SysWow64\BCGPOleAcc.dll
[2014/02/07 21:41:56 | 000,165,376 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2014/02/07 21:41:56 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2014/02/07 21:41:55 | 000,810,496 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2014/02/07 21:41:55 | 000,183,808 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2014/02/07 21:41:55 | 000,080,896 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
 
========== ZeroAccess Check ==========
 
[2009/07/14 07:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/07/26 05:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/26 04:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 04:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/21 06:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 04:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

< End of report >
 

 
  • 0

Advertisements


#2
Biscuithd

Biscuithd

    Trusted Helper

  • Malware Removal
  • 2,573 posts

Hi, wavey.gif.pagespeed.ce.4AQn4GwL8t.gif Welcome to the forums!
welcome.gif.pagespeed.ce.jM2aDq5TfO.gif. My name is Biscuithd and I will be assisting you with your Computer issues.

I know how upsetting it can be when one's computer is experiencing problems. I will try to help get things squared away. For a start please make sure that you...

  • Carefully read every post completely before doing anything.
  • If you're not sure, or if something unexpected happens, do NOT continue! Stop and ask!
  • Do not run any other scans or other software on your computer unless asked as it may make this repair more difficult.

 

I see that you've been waiting for a few days. Very sorry about that. We've been quite busy lately, but I have both time and desire to help you.

 

I will be assessing the OTL log that posted, however, since it has been a few days, can you confirm that you still need help?


  • 0

#3
evelos

evelos

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts

Yes i still need help. Nothing has change to the computer. The problem remains. Thank for the interest.


  • 0

#4
Biscuithd

Biscuithd

    Trusted Helper

  • Malware Removal
  • 2,573 posts

Ok, just wanted to be sure. I'll have an assessment and next steps by morning at the latest. :)


  • 0

#5
evelos

evelos

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts

thanks :)


  • 0

#6
Biscuithd

Biscuithd

    Trusted Helper

  • Malware Removal
  • 2,573 posts

Hello,

 

I have some scans and tools that I'd like you to run. They will each produce one or more logs that I'd like you to post back to me. If you have any questions, let me know.

 

OTL Fix

  • Run OTL as you did before.
  • Copy the text in the quote box below (do not copy the word "quote") and paste in the in the box marked Custom Scans/Fixes as shown in the graphic below.

xotlrunfix.jpg.pagespeed.ic.wT-vY4tHzw.j

:commands

[CreateRestorePoint]



:OTL
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE10SR

FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_14_0_0_125.dll File not found

[2014/02/07 21:19:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\user\AppData\Roaming\mozilla\Extensions

[2014/07/19 12:35:00 | 000,000,000 | ---D | M] (No name found) -- C:\Users\user\AppData\Roaming\mozilla\Firefox\Profiles\oi2qrrnc.default\extensions

[2014/06/20 21:44:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\mozilla firefox\browser\extensions

O4 - HKLM..\Run: [mobilegeni daemon] C:\Program Files (x86)\Mobogenie\DaemonProcess.exe File not found

O8:64bit: - Extra context menu item: E&?a???? st? Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found

O8 - Extra context menu item: E&?a???? st? Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found

O1364bit: - gopher Prefix: missing

O13 - gopher Prefix: missing

O18:64bit: - Protocol\Handler\grooveLocalGWS - No CLSID value found

O18:64bit: - Protocol\Handler\ms-help - No CLSID value found

O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.

[2014/07/27 02:18:00 | 000,000,386 | ---- | M] () -- C:\Windows\tasks\update-S-1-5-21-2992675936-2286735739-2217034245-1001.job
 
:Commands

[EMPTYTEMP]

[RESETHOSTS]

[REBOOT]

Then press the Run Fix button

Your computer will reboot. If it does not, please manually reboot.

 

THEN

Please download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Scan.
  • After the scan is complete click on "Clean"
  • Confirm each time with Ok.
  • Your computer will be rebooted automatically. A text file will open after the restart.
  • Please post the content of that logfile with your next answer.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

Next, download Junkware Removal Tool to your desktop.

  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

Please download zoek.exe and save it to your desktop (Firefox users right click and Save Link As...).

  • Close any open browsers.
  • Temporarily disable your AntiVirus program. (If necessary)
  • Double click on zoek.exe to run.
  • Please wait while the tool starts. It will appear to be doing nothing and may take a few seconds to come up
  • Click Options button below the large panel and check the box:

    Auto Clean
  • Click on Run script button
  • Please wait patiently (it may take a few minutes) until a log report will open (this may be after reboot, if required)
  • Copy (Ctrl +C) and paste (Ctrl +V) the contents of the opened entire report back here.

Note: It will also create a log in the C:\ directory named "zoek-results.log"

 

Security Check

Download Security Check from here or here.

  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Last, rerun OTL as you did previously, but this time just press the Quick Scan button. When OTL completes you will find one log, OTL.TXT. Please post that with the adwCleaner log, the Junkware log, the ZOEK log and the Security Log.

 

Also, let me know how the computer is working now.


  • 0

#7
evelos

evelos

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts

Hey,

 

here i the OTL.txt

 

 

OTL logfile created on: 1/8/2014 3:48:32 μμ - Run 2
OTL by OldTimer - Version 3.2.69.0     Folder = D:\Λήψεις
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.10.9200.16750)
Locale: 00000408 | Country: Ελλάδα | Language: ELL | Date Format: d/M/yyyy
 
3,19 Gb Total Physical Memory | 1,93 Gb Available Physical Memory | 60,51% Memory free
6,37 Gb Paging File | 4,91 Gb Available in Paging File | 77,09% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 43,85 Gb Total Space | 22,07 Gb Free Space | 50,34% Space Free | Partition Type: NTFS
Drive D: | 421,81 Gb Total Space | 162,23 Gb Free Space | 38,46% Space Free | Partition Type: NTFS
 
Computer Name: USER-PC | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
========== Processes (SafeList) ==========
 
PRC - [2014/07/31 21:56:36 | 000,275,568 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe
PRC - [2014/07/31 16:00:49 | 004,085,896 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\avastui.exe
PRC - [2014/07/27 15:11:32 | 000,050,344 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2014/07/27 13:05:40 | 000,602,112 | ---- | M] (OldTimer Tools) -- D:\Λήψεις\OTL.exe
PRC - [2013/12/18 21:42:32 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
 
 
========== Modules (No Company Name) ==========
 
MOD - [2014/07/31 21:56:35 | 003,800,688 | ---- | M] () -- C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
MOD - [2014/07/27 15:11:33 | 019,329,904 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2014/07/27 15:11:32 | 000,301,152 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\aswProperty.dll
 
 
========== Services (SafeList) ==========
 
SRV:64bit: - [2014/07/27 15:11:32 | 000,050,344 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV:64bit: - [2013/05/27 08:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2011/05/24 23:03:38 | 000,204,288 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2009/07/14 04:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2014/07/31 21:56:35 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013/12/18 21:42:32 | 000,065,432 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2009/06/11 00:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
 
 
========== Driver Services (SafeList) ==========
 
DRV:64bit: - [2014/07/27 15:12:07 | 000,427,360 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswsp.sys -- (aswSP)
DRV:64bit: - [2014/07/27 15:11:34 | 001,041,168 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\SysNative\drivers\aswSnx.sys -- (aswSnx)
DRV:64bit: - [2014/07/27 15:11:34 | 000,224,896 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswVmm.sys -- (aswVmm)
DRV:64bit: - [2014/07/27 15:11:34 | 000,092,008 | ---- | M] (AVAST Software) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswStm.sys -- (aswStm)
DRV:64bit: - [2014/07/27 15:11:34 | 000,079,184 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV:64bit: - [2014/07/27 15:11:34 | 000,065,776 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\aswRvrt.sys -- (aswRvrt)
DRV:64bit: - [2014/07/27 15:11:34 | 000,029,208 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aswHwid.sys -- (aswHwid)
DRV:64bit: - [2014/07/27 15:11:33 | 000,093,568 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\aswRdr2.sys -- (aswRdr)
DRV:64bit: - [2012/03/01 09:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/08/17 10:58:16 | 000,019,968 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcd)
DRV:64bit: - [2011/05/25 00:26:56 | 009,359,872 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2011/05/24 22:25:42 | 000,309,760 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2011/03/30 14:46:44 | 000,114,704 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2010/11/21 06:24:43 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2010/11/21 06:24:33 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2010/11/21 06:23:48 | 000,117,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\tsusbhub.sys -- (tsusbhub)
DRV:64bit: - [2010/11/21 06:23:48 | 000,088,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Synth3dVsc.sys -- (Synth3dVsc)
DRV:64bit: - [2010/11/21 06:23:48 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV:64bit: - [2010/11/21 06:23:48 | 000,034,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\terminpt.sys -- (terminpt)
DRV:64bit: - [2010/11/21 06:23:47 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2010/11/21 06:23:47 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/21 06:23:47 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV:64bit: - [2010/11/21 06:23:47 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2009/09/23 20:23:02 | 006,180,832 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\igdkmd64.sys -- (igfx)
DRV:64bit: - [2009/07/14 04:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 04:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 04:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/10 23:35:42 | 000,187,392 | ---- | M] (Realtek Corporation                                            ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2009/06/10 23:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 23:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 23:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 23:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009/07/14 04:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
 
 
========== Standard Registry (SafeList) ==========
 
 
========== Internet Explorer ==========
 
IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
 
IE - HKCU\..\SearchScopes,DefaultScope = {012E1000-F331-11DB-8314-0800200C9A66}
IE - HKCU\..\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}: "URL" = http://www.google.co...q={searchTerms}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
========== FireFox ==========
 
FF - prefs.js..browser.startup.homepage: "https://www.google.gr/"
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVAST Software\Avast\WebRep\FF [2014/07/31 00:24:00 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 31.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 31.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 31.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 31.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins
 
[2014/08/01 15:00:39 | 000,000,000 | ---D | M] (No name found) -- C:\Users\user\AppData\Roaming\mozilla\Extensions
 
========== Chrome  ==========
 
CHR - default_search_provider:  (Enabled)
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - homepage:
CHR - plugin: Error reading preferences file
CHR - Extension: Xmarks Bookmark Sync = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajpgkpeckebdhofmmjfgcjjiiejpodla\1.0.28_0\
CHR - Extension: Έ\u03b3\u03b3\u03c1\u03b1\u03c6\u03b1 Google = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.7_0\
CHR - Extension: Google Drive  = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Adblock Plus = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.8.3_0\
CHR - Extension: Α\u03bd\u03b1\u03b6\u03ae\u03c4\u03b7\u03c3\u03b7 Google = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: I <3 House Music = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbihiclmkdmbnihofkkhlmdefkclbfkj\1_0\
CHR - Extension: AdBlock = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.7.9_0\
CHR - Extension: avast! Online Security = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\9.0.2022.121_0\
CHR - Extension: \u03a0\u03bf\u03c1\u03c4\u03bf\u03c6\u03cc\u03bb\u03b9 Google = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_0\
CHR - Extension: PDF Viewer = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\oemmndcbldboiebfnladdacbdfmadadm\1.0.215_0\
CHR - Extension: Gmail = C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1\
 
O1 HOSTS File: ([2014/08/01 14:58:37 | 000,000,098 | ---- | M]) - C:\Windows\SysNative\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1       localhost
O2:64bit: - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL (Microsoft Corporation)
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKCU..\Run: [LightShot] C:\Users\user\AppData\Local\Skillbrains\lightshot\Lightshot.exe Flags: uninsdeletevalue File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O8:64bit: - Extra context menu item: E&ξαγωγή στο Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
O8 - Extra context menu item: E&ξαγωγή στο Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 File not found
O9 - Extra Button: Αποστολή στο OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Α&ποστολή στο OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL (Microsoft Corporation)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{91F7BB6D-5AF3-4B50-AD75-F6AD81F30525}: DhcpNameServer = 192.168.1.254
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\PROGRA~2\MICROS~1\Office12\GR469A~1.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
========== Files/Folders - Created Within 30 Days ==========
 
[2014/08/01 15:38:02 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2014/08/01 15:36:57 | 000,000,000 | ---D | C] -- C:\Windows\Temp
[2014/08/01 15:36:57 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\Temp
[2014/08/01 15:19:44 | 000,000,000 | ---D | C] -- C:\zoek_backup
[2014/08/01 15:09:01 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2014/08/01 15:08:15 | 001,016,261 | ---- | C] (Thisisu) -- C:\Users\user\Desktop\JRT.exe
[2014/07/31 21:56:28 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2014/07/27 15:12:18 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Roaming\AVAST Software
[2014/07/27 15:12:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
[2014/07/27 15:11:51 | 000,092,008 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswStm.sys
[2014/07/27 15:11:48 | 001,041,168 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2014/07/27 15:11:47 | 000,427,360 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswsp.sys
[2014/07/27 15:11:46 | 000,079,184 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2014/07/27 15:11:45 | 000,093,568 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2014/07/27 15:11:42 | 000,307,344 | ---- | C] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2014/07/27 15:11:33 | 000,043,152 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2014/07/27 15:07:48 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2014/07/27 15:05:33 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software
[2014/07/27 14:01:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2014/07/27 14:01:53 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2014/07/27 13:35:18 | 000,536,576 | ---- | C] (SQLite Development Team) -- C:\Windows\SysWow64\sqlite3.dll
[2014/07/27 13:34:43 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2014/07/27 12:29:21 | 000,122,584 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2014/07/27 12:28:11 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
[2014/07/27 12:28:07 | 000,091,352 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbamchameleon.sys
[2014/07/27 12:28:07 | 000,063,704 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mwac.sys
[2014/07/27 12:28:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes Anti-Malware
[2014/07/13 13:32:56 | 000,000,000 | ---D | C] -- C:\Users\user\AppData\Local\Adobe
 
========== Files - Modified Within 30 Days ==========
 
[2014/08/01 15:50:00 | 000,001,180 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2014/08/01 15:44:58 | 000,021,072 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2014/08/01 15:44:58 | 000,021,072 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2014/08/01 15:40:17 | 000,854,390 | ---- | M] () -- C:\Users\user\Desktop\SecurityCheck.exe
[2014/08/01 15:37:56 | 000,001,176 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2014/08/01 15:37:42 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2014/08/01 15:37:38 | 2566,365,184 | -HS- | M] () -- C:\hiberfil.sys
[2014/08/01 15:19:43 | 000,024,064 | ---- | M] () -- C:\Windows\zoek-delete.exe
[2014/08/01 15:18:31 | 001,287,168 | ---- | M] () -- C:\Users\user\Desktop\zoek.exe
[2014/08/01 15:08:15 | 001,016,261 | ---- | M] (Thisisu) -- C:\Users\user\Desktop\JRT.exe
[2014/08/01 14:58:37 | 000,000,098 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\Hosts
[2014/07/31 00:24:17 | 000,001,966 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2014/07/28 17:13:26 | 000,003,304 | ---- | M] () -- C:\bootsqm.dat
[2014/07/27 15:12:07 | 000,427,360 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswsp.sys
[2014/07/27 15:11:34 | 001,041,168 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswSnx.sys
[2014/07/27 15:11:34 | 000,307,344 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\aswBoot.exe
[2014/07/27 15:11:34 | 000,224,896 | ---- | M] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2014/07/27 15:11:34 | 000,092,008 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswStm.sys
[2014/07/27 15:11:34 | 000,079,184 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswMonFlt.sys
[2014/07/27 15:11:34 | 000,065,776 | ---- | M] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2014/07/27 15:11:34 | 000,029,208 | ---- | M] () -- C:\Windows\SysNative\drivers\aswHwid.sys
[2014/07/27 15:11:33 | 000,093,568 | ---- | M] (AVAST Software) -- C:\Windows\SysNative\drivers\aswRdr2.sys
[2014/07/27 15:11:33 | 000,043,152 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2014/07/27 12:29:40 | 000,122,584 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
[2014/07/27 12:28:11 | 000,001,106 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2014/07/26 15:04:13 | 000,007,606 | ---- | M] () -- C:\Users\user\AppData\Local\Resmon.ResmonCfg
[2014/07/19 11:56:03 | 000,002,189 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2014/07/13 12:59:44 | 000,047,388 | ---- | M] () -- C:\Users\user\Desktop\shoes size.jpg
[2014/07/10 22:29:55 | 000,113,618 | ---- | M] () -- C:\Users\user\Desktop\klidarithmos ika vasili.jpg
 
========== Files Created - No Company Name ==========
 
[2014/08/01 15:40:17 | 000,854,390 | ---- | C] () -- C:\Users\user\Desktop\SecurityCheck.exe
[2014/08/01 15:36:57 | 000,024,064 | ---- | C] () -- C:\Windows\zoek-delete.exe
[2014/08/01 15:18:23 | 001,287,168 | ---- | C] () -- C:\Users\user\Desktop\zoek.exe
[2014/07/28 17:13:26 | 000,003,304 | ---- | C] () -- C:\bootsqm.dat
[2014/07/27 15:12:12 | 000,001,966 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2014/07/27 15:11:50 | 000,224,896 | ---- | C] () -- C:\Windows\SysNative\drivers\aswVmm.sys
[2014/07/27 15:11:47 | 000,065,776 | ---- | C] () -- C:\Windows\SysNative\drivers\aswRvrt.sys
[2014/07/27 15:11:46 | 000,029,208 | ---- | C] () -- C:\Windows\SysNative\drivers\aswHwid.sys
[2014/07/26 15:04:13 | 000,007,606 | ---- | C] () -- C:\Users\user\AppData\Local\Resmon.ResmonCfg
[2014/07/13 12:59:44 | 000,047,388 | ---- | C] () -- C:\Users\user\Desktop\shoes size.jpg
[2014/07/10 22:29:55 | 000,113,618 | ---- | C] () -- C:\Users\user\Desktop\klidarithmos ika vasili.jpg
[2014/06/06 15:07:04 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2014/06/06 15:03:27 | 000,003,929 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2014/03/25 13:43:51 | 000,000,434 | ---- | C] () -- C:\Users\user\AppData\Local\UserProducts.xml
[2014/02/07 21:42:46 | 000,033,576 | ---- | C] () -- C:\Windows\SysWow64\BCGPOleAcc.dll
[2014/02/07 21:41:56 | 000,165,376 | ---- | C] () -- C:\Windows\SysWow64\unrar.dll
[2014/02/07 21:41:56 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2014/02/07 21:41:55 | 000,810,496 | ---- | C] () -- C:\Windows\SysWow64\xvidcore.dll
[2014/02/07 21:41:55 | 000,183,808 | ---- | C] () -- C:\Windows\SysWow64\xvidvfw.dll
[2014/02/07 21:41:55 | 000,080,896 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll
 
========== ZeroAccess Check ==========
 
[2009/07/14 07:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013/07/26 05:24:57 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013/07/26 04:55:59 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 04:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/21 06:24:25 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 04:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
========== LOP Check ==========
 
[2014/07/27 15:12:18 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\AVAST Software
[2014/02/12 18:16:28 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\BSplayer
[2014/02/08 23:39:03 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\BSplayer Pro
[2014/07/31 01:07:07 | 000,000,000 | ---D | M] -- C:\Users\user\AppData\Roaming\uTorrent
 
========== Purity Check ==========
 
 

< End of report >
 

 

 

here the adwcleaner log

 

 

# AdwCleaner v3.302 - Report created 01/08/2014 at 15:04:23
# Updated 30/07/2014 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : user - USER-PC
# Running from : D:\Λήψεις\AdwCleaner(1).exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Scheduled Tasks ] *****

Task Deleted : update-sys

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\Conduit

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16750


-\\ Mozilla Firefox v31.0 (x86 el)

[ File : C:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\oi2qrrnc.default\prefs.js ]


-\\ Google Chrome v36.0.1985.125

[ File : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [1804 octets] - [27/07/2014 13:34:58]
AdwCleaner[R1].txt - [1138 octets] - [01/08/2014 15:03:31]
AdwCleaner[S0].txt - [1809 octets] - [27/07/2014 13:38:22]
AdwCleaner[S1].txt - [1023 octets] - [01/08/2014 15:04:23]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1083 octets] ##########
 

 

 

here the jtc log

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Ultimate x64
Ran by user on ¨ 01/08/2014 at 15:09:03,47
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ FireFox

Emptied folder: C:\Users\user\AppData\Roaming\mozilla\firefox\profiles\oi2qrrnc.default\minidumps [12 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ¨ 01/08/2014 at 15:17:02,20
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

 

here the zoek.log

 

Zoek.exe v5.0.0.0 Updated 31-07-2014
Tool run by user on ¨ 01/08/2014 at 15:19:48,95.
Microsoft Windows 7 Ultimate  6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\user\Desktop\zoek.exe [Scan all users]  [Checkboxes used]

==== System Restore Info ======================

1/8/2014 3:25:41 μμ Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Deleting Files \ Folders ======================

C:\Users\user\.android deleted
C:\found.000 deleted
C:\Users\user\AppData\Local\cache deleted
C:\Users\user\Searches deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"[email protected]"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [31/07/2014 12:24 §£]

==== Firefox Extensions ======================

==== Firefox Plugins ======================

Profilepath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\oi2qrrnc.default
4390CCD3790F8D9C427C0C29590C62D7    - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll -    Shockwave Flash


==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[27/07/2014 03:11 ££]

I \u003C3 House Music - user\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbihiclmkdmbnihofkkhlmdefkclbfkj
AdBlock - user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom
avast Online Security - user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
PDF Viewer - user\AppData\Local\Google\Chrome\User Data\Default\Extensions\oemmndcbldboiebfnladdacbdfmadadm

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft..../?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
No DefaultScope Set For HKCU

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft..../?LinkId=69157"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google  Url="http://www.google.co...={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing  Url="http://www.bing.com/...ox&FORM=IE8SRC"

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\user\AppData\Local\Mozilla\Firefox\Profiles\oi2qrrnc.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=166 folders=40 2736616 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\user\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\user\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on ¨ 01/08/2014 at 15:37:58,04 ======================

 

and here the security log

 

 

 Results of screen317's Security Check version 0.99.86  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 10 Out of date!
``````````````Antivirus/Firewall Check:``````````````
avast! Antivirus   
 Antivirus up to date!  (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
 Adobe Flash Player 14.0.0.145  
 Adobe Reader 10.1.10 Adobe Reader out of Date!  
 Mozilla Firefox (31.0)
 Google Chrome 35.0.1916.153  
 Google Chrome 36.0.1985.125  
````````Process Check: objlist.exe by Laurent````````  
 AVAST Software Avast AvastSvc.exe  
 AVAST Software Avast avastui.exe  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  
````````````````````End of Log``````````````````````
 


  • 0

#8
Biscuithd

Biscuithd

    Trusted Helper

  • Malware Removal
  • 2,573 posts

Your Adobe Reader and Internet Explorer are out of date. Please follow the instructions below and perform the updates.


Updating Adobe Reader


 

  • Malware will exploit any vulnerabilities it can find in outdated software. If you are using Adobe Reader for reading pdf files, try using FoxIt Reader. It is a very capable alternative to Adobe.
  • Please click here to download FoxIt Reader.
  • If you wish to continue to use Adobe Reader, then please update it by clicking here.
  • Please remember to uncheck the option to install McAfee's Security Suite.


Internet Explorer is out of date

Updating Internet Explorer

Your Internet Explorer is out of date. Keeping IE updated is another important way of keeping infections off your system.

Please click here to update your Internet Explorer.

Next,

 

When this is complete, re-run System Check as you did previously and post the results.

 

Also, let me know how the computer is working?

 


  • 0

#9
evelos

evelos

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts

here are the results of system check log

 

 

Results of screen317's Security Check version 0.99.86  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:``````````````
avast! Antivirus   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:`````````
 Adobe Flash Player 14.0.0.145  
 Adobe Reader XI  
 Mozilla Firefox (31.0)
 Google Chrome 35.0.1916.153  
 Google Chrome 36.0.1985.125  
````````Process Check: objlist.exe by Laurent````````  
 AVAST Software Avast AvastSvc.exe  
 AVAST Software Avast avastui.exe  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:  
````````````````````End of Log``````````````````````

 

Nothing has change to the computer. It freeze and slow down as before
 


  • 0

#10
Biscuithd

Biscuithd

    Trusted Helper

  • Malware Removal
  • 2,573 posts

Let's have a look at this from a different angle. Please run two different scans for me, TDSSKiller and FRST.

 

Please download TDSSKiller to the desktop.

Alternate download is here.

  • Right-click on TDSSKiller.exe and select Run as Administrator to start the program and follow the prompts.
  • When the main GUI(graphical user interface) window opens, click on Change Parameters
  • Under Additional options, select both Verify driver digital signatures & Detect TDLFS File System >> OK
  • Click on Start Scan, the scan will run.
  • When the scan has finished, if it finds anything please click on the drop down arrow next to Cure and select Skip
  • A Report will have been created by TDSSKiller in your root directory C:\
  • To find the log go to Start(Windows 7 Orb) > Computer > C: >> TDSSKiller.V.V.V.VV_DD.DD.YYYY_TT.TT.TT_log <-- The letters denote the version and date & time etc.
  • Post the contents of that log in your next reply please.

Note: Do not have TDSSKiller remove anything if found at this point in time!

Then,

 

Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  • Select additions at the bottom
  • Press Scan button.
    frst.JPG
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please attach both logs generated.

Make sure you post back the TDSSKiller log and the FRST log.


  • 0

Advertisements


#11
evelos

evelos

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts

hey,

 

here the tdsskiller log

 

22:24:31.0615 0x0b5c  TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
22:24:33.0349 0x0b5c  ============================================================
22:24:33.0349 0x0b5c  Current date / time: 2014/08/01 22:24:33.0349
22:24:33.0349 0x0b5c  SystemInfo:
22:24:33.0349 0x0b5c  
22:24:33.0349 0x0b5c  OS Version: 6.1.7601 ServicePack: 1.0
22:24:33.0349 0x0b5c  Product type: Workstation
22:24:33.0349 0x0b5c  ComputerName: USER-PC
22:24:33.0349 0x0b5c  UserName: user
22:24:33.0349 0x0b5c  Windows directory: C:\Windows
22:24:33.0349 0x0b5c  System windows directory: C:\Windows
22:24:33.0349 0x0b5c  Running under WOW64
22:24:33.0349 0x0b5c  Processor architecture: Intel x64
22:24:33.0349 0x0b5c  Number of processors: 4
22:24:33.0349 0x0b5c  Page size: 0x1000
22:24:33.0349 0x0b5c  Boot type: Normal boot
22:24:33.0349 0x0b5c  ============================================================
22:24:34.0607 0x0b5c  KLMD registered as C:\Windows\system32\drivers\95912837.sys
22:24:34.0795 0x0b5c  System UUID: {28C110EA-4FBF-2C11-098C-C6BCD9DC3A7A}
22:24:35.0220 0x0b5c  Drive \Device\Harddisk0\DR0 - Size: 0x7470AFDE00 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0x38080, SectorsPerTrack: 0x13, TracksPerCylinder: 0xE0, Type 'K0', Flags 0x00000040
22:24:35.0256 0x0b5c  ============================================================
22:24:35.0256 0x0b5c  \Device\Harddisk0\DR0:
22:24:35.0256 0x0b5c  MBR partitions:
22:24:35.0256 0x0b5c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
22:24:35.0256 0x0b5c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x57B2800
22:24:35.0256 0x0b5c  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x57E5329, BlocksNum 0x34B9F918
22:24:35.0256 0x0b5c  ============================================================
22:24:35.0274 0x0b5c  C: <-> \Device\Harddisk0\DR0\Partition2
22:24:35.0298 0x0b5c  D: <-> \Device\Harddisk0\DR0\Partition3
22:24:35.0298 0x0b5c  ============================================================
22:24:35.0298 0x0b5c  Initialize success
22:24:35.0298 0x0b5c  ============================================================
22:25:30.0983 0x1034  ============================================================
22:25:30.0983 0x1034  Scan started
22:25:30.0983 0x1034  Mode: Manual; SigCheck; TDLFS;
22:25:30.0983 0x1034  ============================================================
22:25:30.0983 0x1034  KSN ping started
22:25:33.0436 0x1034  KSN ping finished: true
22:25:34.0084 0x1034  ================ Scan system memory ========================
22:25:34.0084 0x1034  System memory - ok
22:25:34.0084 0x1034  ================ Scan services =============================
22:25:34.0186 0x1034  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
22:25:34.0272 0x1034  1394ohci - ok
22:25:34.0295 0x1034  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
22:25:34.0327 0x1034  ACPI - ok
22:25:34.0334 0x1034  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
22:25:34.0358 0x1034  AcpiPmi - ok
22:25:34.0444 0x1034  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:25:34.0452 0x1034  AdobeARMservice - ok
22:25:34.0491 0x1034  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
22:25:34.0530 0x1034  adp94xx - ok
22:25:34.0553 0x1034  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
22:25:34.0577 0x1034  adpahci - ok
22:25:34.0592 0x1034  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
22:25:34.0616 0x1034  adpu320 - ok
22:25:34.0647 0x1034  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
22:25:34.0686 0x1034  AeLookupSvc - ok
22:25:34.0733 0x1034  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
22:25:34.0788 0x1034  AFD - ok
22:25:34.0811 0x1034  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
22:25:34.0819 0x1034  agp440 - ok
22:25:34.0834 0x1034  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
22:25:34.0866 0x1034  ALG - ok
22:25:34.0881 0x1034  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
22:25:34.0897 0x1034  aliide - ok
22:25:34.0928 0x1034  [ 514089CB4A7DF38DC4DD936ADE4114D3, 22941C8FE50C5BEFDDCF4C5A0AB7633DD692D432145738752EA446042B89CFA9 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
22:25:34.0959 0x1034  AMD External Events Utility - ok
22:25:34.0975 0x1034  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
22:25:34.0991 0x1034  amdide - ok
22:25:34.0999 0x1034  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
22:25:35.0030 0x1034  AmdK8 - ok
22:25:35.0327 0x1034  [ 9A4B92150A5E259A7159D914CC3A60D7, 86347094D75B2530B24F00B3ACF9D1F8C330938472D67AC38462742E98762484 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
22:25:35.0702 0x1034  amdkmdag - ok
22:25:35.0741 0x1034  [ 9DEB889D152F9C9DBA98BE8986084535, 0125ACA28B1043748DBF555D1935E271A398ACEB07E5C79932E7DC0D1A7028A1 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
22:25:35.0780 0x1034  amdkmdap - ok
22:25:35.0788 0x1034  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
22:25:35.0811 0x1034  AmdPPM - ok
22:25:35.0827 0x1034  [ 6EC6D772EAE38DC17C14AED9B178D24B, B4FB936B31B1265B8CC6B426C64965C34D0CCF1638E645ACD65E88F4AFFC57A6 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
22:25:35.0842 0x1034  amdsata - ok
22:25:35.0858 0x1034  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
22:25:35.0874 0x1034  amdsbs - ok
22:25:35.0889 0x1034  [ 1142A21DB581A84EA5597B03A26EBAA0, F94EB140D0CD068760D7EB081FF75154C75DAC75E5E24B6DE4E4F9CE65A70343 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
22:25:35.0897 0x1034  amdxata - ok
22:25:35.0936 0x1034  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
22:25:35.0983 0x1034  AppID - ok
22:25:35.0999 0x1034  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
22:25:36.0053 0x1034  AppIDSvc - ok
22:25:36.0061 0x1034  [ 3977D4A871CA0D4F2ED1E7DB46829731, 2AF1C3225994769C3FD25CD7E9603964B035576F25B0B6D91545566E0722FFAA ] Appinfo         C:\Windows\System32\appinfo.dll
22:25:36.0108 0x1034  Appinfo - ok
22:25:36.0147 0x1034  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
22:25:36.0178 0x1034  AppMgmt - ok
22:25:36.0194 0x1034  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
22:25:36.0209 0x1034  arc - ok
22:25:36.0217 0x1034  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
22:25:36.0233 0x1034  arcsas - ok
22:25:36.0280 0x1034  [ D95E64416A4A3ED6986E0F474DA934BD, DBB4A0DED0DABE1F8FF0DB8C0E9EC4EC906A85A45DC0AEC013A8744F9BF5D40E ] aswHwid         C:\Windows\system32\drivers\aswHwid.sys
22:25:36.0295 0x1034  aswHwid - ok
22:25:36.0311 0x1034  [ FF1E537A3632CBB9A0BF72B9FD0878D5, B26E6A1F6E6FA5280A12861EFAD44D8F49353F47B21843EBA73E149CF613DCBC ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
22:25:36.0327 0x1034  aswMonFlt - ok
22:25:36.0334 0x1034  [ A5757DE5F9C83AB40667A53D5126EA40, 58B72B1B126CF641188703CE82E26BEB0C41AD7587CFFCCCE9E3C64CC7AACC90 ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
22:25:36.0350 0x1034  aswRdr - ok
22:25:36.0389 0x1034  [ 645D97385F3F284FB5604F9B970F4D24, 15A9D7F0F4C1062210E4E744A9069B8645177D19F35B8740D74022639DC05F2E ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
22:25:36.0397 0x1034  aswRvrt - ok
22:25:36.0444 0x1034  [ B8FDEDE963B82CFD23B3A53A3084666D, 3537E5B684FB6F0AA589A5FA7CD111E1744DF384AB1A266D4114100F104ED11B ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
22:25:36.0506 0x1034  aswSnx - ok
22:25:36.0538 0x1034  [ 0DEDC041DF594AEC2C3BD00417CFAF60, 0D3A8924503986546EE256D185225C0B080FDB6B0C8B0BED7516B07A7334371B ] aswSP           C:\Windows\system32\drivers\aswSP.sys
22:25:36.0561 0x1034  aswSP - ok
22:25:36.0577 0x1034  [ 48DED912CDE54FC0923B9858512366E1, 9B216B934408A7CB3CE2B41240B7EF01EAA3BC066211B784064FF8AC97A29B4E ] aswStm          C:\Windows\system32\drivers\aswStm.sys
22:25:36.0592 0x1034  aswStm - ok
22:25:36.0608 0x1034  [ 471A311745848B80339436688A8286E6, E51C57236CEC19AC38E85D115DB97875517D837811188AD2E53FA49055B53890 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
22:25:36.0624 0x1034  aswVmm - ok
22:25:36.0639 0x1034  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
22:25:36.0702 0x1034  AsyncMac - ok
22:25:36.0725 0x1034  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
22:25:36.0741 0x1034  atapi - ok
22:25:36.0780 0x1034  [ CBD14F698DEF12EE3557604B726CB8EB, 45EDD88B18F2DE9024851BFDE9DC0CA943692DD306CB3A0822F4A5C0C3D7CDD6 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
22:25:36.0795 0x1034  AtiHDAudioService - ok
22:25:36.0842 0x1034  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:25:36.0928 0x1034  AudioEndpointBuilder - ok
22:25:36.0952 0x1034  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
22:25:36.0999 0x1034  AudioSrv - ok
22:25:37.0053 0x1034  [ 73F5C13B431915BAE35254B4E95DFB71, 393A045859382C44133C004598B1512048046BCC129FED2247A77FDBFCDB6DFF ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
22:25:37.0069 0x1034  avast! Antivirus - ok
22:25:37.0084 0x1034  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
22:25:37.0124 0x1034  AxInstSV - ok
22:25:37.0155 0x1034  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
22:25:37.0194 0x1034  b06bdrv - ok
22:25:37.0225 0x1034  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
22:25:37.0256 0x1034  b57nd60a - ok
22:25:37.0272 0x1034  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
22:25:37.0295 0x1034  BDESVC - ok
22:25:37.0311 0x1034  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
22:25:37.0358 0x1034  Beep - ok
22:25:37.0405 0x1034  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
22:25:37.0452 0x1034  BFE - ok
22:25:37.0491 0x1034  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
22:25:37.0577 0x1034  BITS - ok
22:25:37.0600 0x1034  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
22:25:37.0624 0x1034  blbdrive - ok
22:25:37.0647 0x1034  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
22:25:37.0663 0x1034  bowser - ok
22:25:37.0670 0x1034  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
22:25:37.0694 0x1034  BrFiltLo - ok
22:25:37.0694 0x1034  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
22:25:37.0709 0x1034  BrFiltUp - ok
22:25:37.0741 0x1034  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
22:25:37.0756 0x1034  Browser - ok
22:25:37.0772 0x1034  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
22:25:37.0803 0x1034  Brserid - ok
22:25:37.0811 0x1034  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
22:25:37.0834 0x1034  BrSerWdm - ok
22:25:37.0834 0x1034  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
22:25:37.0858 0x1034  BrUsbMdm - ok
22:25:37.0858 0x1034  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
22:25:37.0874 0x1034  BrUsbSer - ok
22:25:37.0889 0x1034  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
22:25:37.0913 0x1034  BTHMODEM - ok
22:25:37.0936 0x1034  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
22:25:37.0983 0x1034  bthserv - ok
22:25:37.0999 0x1034  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
22:25:38.0045 0x1034  cdfs - ok
22:25:38.0100 0x1034  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
22:25:38.0124 0x1034  cdrom - ok
22:25:38.0147 0x1034  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
22:25:38.0194 0x1034  CertPropSvc - ok
22:25:38.0209 0x1034  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
22:25:38.0241 0x1034  circlass - ok
22:25:38.0264 0x1034  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
22:25:38.0288 0x1034  CLFS - ok
22:25:38.0342 0x1034  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:25:38.0358 0x1034  clr_optimization_v2.0.50727_32 - ok
22:25:38.0405 0x1034  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:25:38.0413 0x1034  clr_optimization_v2.0.50727_64 - ok
22:25:38.0436 0x1034  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
22:25:38.0452 0x1034  CmBatt - ok
22:25:38.0467 0x1034  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
22:25:38.0475 0x1034  cmdide - ok
22:25:38.0514 0x1034  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
22:25:38.0561 0x1034  CNG - ok
22:25:38.0569 0x1034  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
22:25:38.0577 0x1034  Compbatt - ok
22:25:38.0600 0x1034  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
22:25:38.0631 0x1034  CompositeBus - ok
22:25:38.0647 0x1034  COMSysApp - ok
22:25:38.0655 0x1034  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
22:25:38.0670 0x1034  crcdisk - ok
22:25:38.0694 0x1034  [ D8129C49798CBBFB2E4351D4B7B8EF9C, 7C125DBA3F88E7C6D98AE0869EDB7995360904A913923528ABD0429B2608C313 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
22:25:38.0725 0x1034  CryptSvc - ok
22:25:38.0756 0x1034  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
22:25:38.0827 0x1034  CSC - ok
22:25:38.0858 0x1034  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
22:25:38.0905 0x1034  CscService - ok
22:25:38.0959 0x1034  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
22:25:39.0022 0x1034  DcomLaunch - ok
22:25:39.0061 0x1034  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
22:25:39.0116 0x1034  defragsvc - ok
22:25:39.0131 0x1034  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
22:25:39.0178 0x1034  DfsC - ok
22:25:39.0209 0x1034  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
22:25:39.0256 0x1034  Dhcp - ok
22:25:39.0272 0x1034  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
22:25:39.0319 0x1034  discache - ok
22:25:39.0334 0x1034  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
22:25:39.0350 0x1034  Disk - ok
22:25:39.0389 0x1034  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
22:25:39.0413 0x1034  dmvsc - ok
22:25:39.0444 0x1034  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
22:25:39.0467 0x1034  Dnscache - ok
22:25:39.0491 0x1034  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
22:25:39.0545 0x1034  dot3svc - ok
22:25:39.0561 0x1034  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
22:25:39.0616 0x1034  DPS - ok
22:25:39.0655 0x1034  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
22:25:39.0678 0x1034  drmkaud - ok
22:25:39.0717 0x1034  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
22:25:39.0764 0x1034  DXGKrnl - ok
22:25:39.0780 0x1034  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
22:25:39.0834 0x1034  EapHost - ok
22:25:39.0944 0x1034  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
22:25:40.0092 0x1034  ebdrv - ok
22:25:40.0116 0x1034  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\Windows\System32\lsass.exe
22:25:40.0139 0x1034  EFS - ok
22:25:40.0202 0x1034  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
22:25:40.0249 0x1034  ehRecvr - ok
22:25:40.0264 0x1034  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
22:25:40.0280 0x1034  ehSched - ok
22:25:40.0319 0x1034  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
22:25:40.0358 0x1034  elxstor - ok
22:25:40.0366 0x1034  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
22:25:40.0389 0x1034  ErrDev - ok
22:25:40.0420 0x1034  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
22:25:40.0475 0x1034  EventSystem - ok
22:25:40.0483 0x1034  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
22:25:40.0538 0x1034  exfat - ok
22:25:40.0577 0x1034  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
22:25:40.0624 0x1034  fastfat - ok
22:25:40.0686 0x1034  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
22:25:40.0733 0x1034  Fax - ok
22:25:40.0741 0x1034  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
22:25:40.0764 0x1034  fdc - ok
22:25:40.0780 0x1034  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
22:25:40.0827 0x1034  fdPHost - ok
22:25:40.0834 0x1034  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
22:25:40.0881 0x1034  FDResPub - ok
22:25:40.0889 0x1034  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
22:25:40.0905 0x1034  FileInfo - ok
22:25:40.0920 0x1034  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
22:25:40.0959 0x1034  Filetrace - ok
22:25:40.0975 0x1034  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
22:25:40.0983 0x1034  flpydisk - ok
22:25:41.0006 0x1034  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
22:25:41.0022 0x1034  FltMgr - ok
22:25:41.0077 0x1034  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
22:25:41.0139 0x1034  FontCache - ok
22:25:41.0202 0x1034  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:25:41.0209 0x1034  FontCache3.0.0.0 - ok
22:25:41.0225 0x1034  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
22:25:41.0233 0x1034  FsDepends - ok
22:25:41.0256 0x1034  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
22:25:41.0264 0x1034  Fs_Rec - ok
22:25:41.0303 0x1034  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
22:25:41.0327 0x1034  fvevol - ok
22:25:41.0342 0x1034  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
22:25:41.0358 0x1034  gagp30kx - ok
22:25:41.0389 0x1034  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
22:25:41.0459 0x1034  gpsvc - ok
22:25:41.0514 0x1034  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:25:41.0522 0x1034  gupdate - ok
22:25:41.0538 0x1034  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:25:41.0545 0x1034  gupdatem - ok
22:25:41.0553 0x1034  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
22:25:41.0577 0x1034  hcw85cir - ok
22:25:41.0670 0x1034  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:25:41.0725 0x1034  HdAudAddService - ok
22:25:41.0741 0x1034  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
22:25:41.0772 0x1034  HDAudBus - ok
22:25:41.0772 0x1034  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
22:25:41.0788 0x1034  HidBatt - ok
22:25:41.0803 0x1034  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
22:25:41.0834 0x1034  HidBth - ok
22:25:41.0834 0x1034  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
22:25:41.0858 0x1034  HidIr - ok
22:25:41.0866 0x1034  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
22:25:41.0905 0x1034  hidserv - ok
22:25:41.0936 0x1034  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
22:25:41.0959 0x1034  HidUsb - ok
22:25:41.0983 0x1034  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
22:25:42.0030 0x1034  hkmsvc - ok
22:25:42.0045 0x1034  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:25:42.0069 0x1034  HomeGroupListener - ok
22:25:42.0092 0x1034  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:25:42.0124 0x1034  HomeGroupProvider - ok
22:25:42.0131 0x1034  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
22:25:42.0147 0x1034  HpSAMD - ok
22:25:42.0186 0x1034  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
22:25:42.0256 0x1034  HTTP - ok
22:25:42.0272 0x1034  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
22:25:42.0280 0x1034  hwpolicy - ok
22:25:42.0303 0x1034  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
22:25:42.0319 0x1034  i8042prt - ok
22:25:42.0342 0x1034  [ 3DF4395A7CF8B7A72A5F4606366B8C2D, 483588B8FC6E05488ED631C4E1CFC398553FEBFA2CD2BB527B4DF12D19774F80 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
22:25:42.0374 0x1034  iaStorV - ok
22:25:42.0436 0x1034  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:25:42.0483 0x1034  idsvc - ok
22:25:42.0499 0x1034  IEEtwCollectorService - ok
22:25:42.0725 0x1034  [ 24CC43ECDEEFD4C19FBBEE4951B647F1, 416799965E6602F8F03E2A92E8BB42B1D5643C65EF09815FC5A56A2FA73E6773 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
22:25:42.0975 0x1034  igfx - ok
22:25:42.0991 0x1034  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
22:25:43.0006 0x1034  iirsp - ok
22:25:43.0053 0x1034  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
22:25:43.0116 0x1034  IKEEXT - ok
22:25:43.0139 0x1034  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
22:25:43.0155 0x1034  intelide - ok
22:25:43.0170 0x1034  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
22:25:43.0194 0x1034  intelppm - ok
22:25:43.0225 0x1034  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
22:25:43.0280 0x1034  IPBusEnum - ok
22:25:43.0288 0x1034  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:25:43.0327 0x1034  IpFilterDriver - ok
22:25:43.0366 0x1034  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
22:25:43.0413 0x1034  iphlpsvc - ok
22:25:43.0420 0x1034  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
22:25:43.0444 0x1034  IPMIDRV - ok
22:25:43.0444 0x1034  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
22:25:43.0491 0x1034  IPNAT - ok
22:25:43.0506 0x1034  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
22:25:43.0522 0x1034  IRENUM - ok
22:25:43.0530 0x1034  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
22:25:43.0545 0x1034  isapnp - ok
22:25:43.0561 0x1034  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
22:25:43.0584 0x1034  iScsiPrt - ok
22:25:43.0600 0x1034  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
22:25:43.0616 0x1034  kbdclass - ok
22:25:43.0631 0x1034  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
22:25:43.0647 0x1034  kbdhid - ok
22:25:43.0663 0x1034  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\Windows\system32\lsass.exe
22:25:43.0678 0x1034  KeyIso - ok
22:25:43.0702 0x1034  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
22:25:43.0709 0x1034  KSecDD - ok
22:25:43.0733 0x1034  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
22:25:43.0749 0x1034  KSecPkg - ok
22:25:43.0756 0x1034  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
22:25:43.0803 0x1034  ksthunk - ok
22:25:43.0827 0x1034  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
22:25:43.0889 0x1034  KtmRm - ok
22:25:43.0920 0x1034  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
22:25:43.0975 0x1034  LanmanServer - ok
22:25:44.0014 0x1034  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:25:44.0061 0x1034  LanmanWorkstation - ok
22:25:44.0084 0x1034  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
22:25:44.0131 0x1034  lltdio - ok
22:25:44.0163 0x1034  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
22:25:44.0225 0x1034  lltdsvc - ok
22:25:44.0241 0x1034  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
22:25:44.0272 0x1034  lmhosts - ok
22:25:44.0303 0x1034  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
22:25:44.0319 0x1034  LSI_FC - ok
22:25:44.0327 0x1034  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
22:25:44.0342 0x1034  LSI_SAS - ok
22:25:44.0350 0x1034  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
22:25:44.0366 0x1034  LSI_SAS2 - ok
22:25:44.0374 0x1034  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
22:25:44.0389 0x1034  LSI_SCSI - ok
22:25:44.0413 0x1034  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
22:25:44.0459 0x1034  luafv - ok
22:25:44.0483 0x1034  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
22:25:44.0506 0x1034  Mcx2Svc - ok
22:25:44.0514 0x1034  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
22:25:44.0530 0x1034  megasas - ok
22:25:44.0553 0x1034  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
22:25:44.0569 0x1034  MegaSR - ok
22:25:44.0631 0x1034  [ FAFE367D032ED82E9332B4C741A20216, 7B123766E360570E0FCB211835B7910D6A1806C25A06BCA9227AB9E993376CA8 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe
22:25:44.0639 0x1034  Microsoft Office Groove Audit Service - ok
22:25:44.0663 0x1034  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
22:25:44.0709 0x1034  MMCSS - ok
22:25:44.0717 0x1034  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
22:25:44.0764 0x1034  Modem - ok
22:25:44.0780 0x1034  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
22:25:44.0803 0x1034  monitor - ok
22:25:44.0827 0x1034  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
22:25:44.0842 0x1034  mouclass - ok
22:25:44.0866 0x1034  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
22:25:44.0881 0x1034  mouhid - ok
22:25:44.0889 0x1034  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
22:25:44.0905 0x1034  mountmgr - ok
22:25:44.0944 0x1034  [ 4E9D8041D352A33332FD6F59A3A78B03, D4E6229B07EF9866993EEE4F6223DC7F1FF1108273FE14A3DC74E65C181DE56A ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:25:44.0959 0x1034  MozillaMaintenance - ok
22:25:44.0975 0x1034  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
22:25:44.0991 0x1034  mpio - ok
22:25:45.0014 0x1034  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
22:25:45.0045 0x1034  mpsdrv - ok
22:25:45.0084 0x1034  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
22:25:45.0163 0x1034  MpsSvc - ok
22:25:45.0178 0x1034  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
22:25:45.0194 0x1034  MRxDAV - ok
22:25:45.0225 0x1034  [ C2B4651001A867FF3F8865863B592991, 251CAAF0F8CE94318532CB0CEF32A065BE321469D8B577F699E2B11EEFDD941A ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
22:25:45.0249 0x1034  mrxsmb - ok
22:25:45.0272 0x1034  [ 7E79946AFC5F799AB62982282BE5AC13, A2A95F4C7BC970FA61FCF58F1118FA3D6806A85BC8735936196CD15538FB3080 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:25:45.0311 0x1034  mrxsmb10 - ok
22:25:45.0327 0x1034  [ 5FB954100CEA2BFEC6446FBBECAA3F79, 305F04F22E6632731E5A8C0E4BEE731DB5D0A3D1A0639C04C6575D36BFC90B5B ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:25:45.0350 0x1034  mrxsmb20 - ok
22:25:45.0389 0x1034  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
22:25:45.0405 0x1034  msahci - ok
22:25:45.0420 0x1034  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
22:25:45.0436 0x1034  msdsm - ok
22:25:45.0452 0x1034  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
22:25:45.0483 0x1034  MSDTC - ok
22:25:45.0499 0x1034  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
22:25:45.0538 0x1034  Msfs - ok
22:25:45.0545 0x1034  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
22:25:45.0584 0x1034  mshidkmdf - ok
22:25:45.0600 0x1034  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
22:25:45.0616 0x1034  msisadrv - ok
22:25:45.0639 0x1034  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
22:25:45.0686 0x1034  MSiSCSI - ok
22:25:45.0686 0x1034  msiserver - ok
22:25:45.0709 0x1034  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
22:25:45.0749 0x1034  MSKSSRV - ok
22:25:45.0756 0x1034  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
22:25:45.0795 0x1034  MSPCLOCK - ok
22:25:45.0803 0x1034  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
22:25:45.0850 0x1034  MSPQM - ok
22:25:45.0874 0x1034  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
22:25:45.0897 0x1034  MsRPC - ok
22:25:45.0913 0x1034  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
22:25:45.0920 0x1034  mssmbios - ok
22:25:45.0936 0x1034  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
22:25:45.0975 0x1034  MSTEE - ok
22:25:45.0983 0x1034  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
22:25:45.0999 0x1034  MTConfig - ok
22:25:46.0006 0x1034  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
22:25:46.0022 0x1034  Mup - ok
22:25:46.0053 0x1034  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
22:25:46.0124 0x1034  napagent - ok
22:25:46.0155 0x1034  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
22:25:46.0202 0x1034  NativeWifiP - ok
22:25:46.0264 0x1034  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
22:25:46.0311 0x1034  NDIS - ok
22:25:46.0327 0x1034  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
22:25:46.0358 0x1034  NdisCap - ok
22:25:46.0381 0x1034  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
22:25:46.0413 0x1034  NdisTapi - ok
22:25:46.0420 0x1034  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
22:25:46.0452 0x1034  Ndisuio - ok
22:25:46.0475 0x1034  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
22:25:46.0514 0x1034  NdisWan - ok
22:25:46.0530 0x1034  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
22:25:46.0577 0x1034  NDProxy - ok
22:25:46.0592 0x1034  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
22:25:46.0631 0x1034  NetBIOS - ok
22:25:46.0647 0x1034  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
22:25:46.0694 0x1034  NetBT - ok
22:25:46.0709 0x1034  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\Windows\system32\lsass.exe
22:25:46.0725 0x1034  Netlogon - ok
22:25:46.0756 0x1034  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
22:25:46.0819 0x1034  Netman - ok
22:25:46.0850 0x1034  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
22:25:46.0920 0x1034  netprofm - ok
22:25:46.0944 0x1034  [ 3E5A36127E201DDF663176B66828FAFE, 5A08BA9EFB1A72DF1DD839BA5FA2B8994012BA62A515588FF62333B33B60045B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:25:46.0952 0x1034  NetTcpPortSharing - ok
22:25:46.0959 0x1034  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
22:25:46.0975 0x1034  nfrd960 - ok
22:25:46.0999 0x1034  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
22:25:47.0038 0x1034  NlaSvc - ok
22:25:47.0061 0x1034  [ 907B5E1E4A592E5EDC5E4CCBDE4863C2, 7A3FA5B779CBBED46CA81328951B71352E4FC60153A91965877834EC7C6F0074 ] nmwcd           C:\Windows\system32\drivers\ccdcmbx64.sys
22:25:47.0084 0x1034  nmwcd - ok
22:25:47.0100 0x1034  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
22:25:47.0131 0x1034  Npfs - ok
22:25:47.0163 0x1034  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
22:25:47.0202 0x1034  nsi - ok
22:25:47.0209 0x1034  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
22:25:47.0256 0x1034  nsiproxy - ok
22:25:47.0319 0x1034  [ 05D78AA5CB5F3F5C31160BDB955D0B7C, E3CD3FAF52ED11A8FB96D667510F1EDCA49053705AA3A13F560F8F6EC995CA45 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
22:25:47.0389 0x1034  Ntfs - ok
22:25:47.0405 0x1034  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
22:25:47.0436 0x1034  Null - ok
22:25:47.0452 0x1034  [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48, 7738785DE8B50D69993F4408498B812D0283FEE5C04FF5B89C20F149B44E9737 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
22:25:47.0467 0x1034  nvraid - ok
22:25:47.0483 0x1034  [ F7CD50FE7139F07E77DA8AC8033D1832, DA96F4B15C8165E6AE1D00E03A062C66CA3A3089E4FF0E9E11CE00B154DD12EC ] nvstor          C:\Windows\system32\drivers\nvstor.sys
22:25:47.0499 0x1034  nvstor - ok
22:25:47.0522 0x1034  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
22:25:47.0538 0x1034  nv_agp - ok
22:25:47.0584 0x1034  [ 84DE1DD996B48B05ACE31AD015FA108A, 4B9D1E4EF83ECED6C77F23D9879C124534F7053D7423E3A2D0F67A4A720CEA94 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:25:47.0616 0x1034  odserv - ok
22:25:47.0624 0x1034  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
22:25:47.0639 0x1034  ohci1394 - ok
22:25:47.0663 0x1034  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:25:47.0678 0x1034  ose - ok
22:25:47.0702 0x1034  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
22:25:47.0749 0x1034  p2pimsvc - ok
22:25:47.0780 0x1034  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
22:25:47.0819 0x1034  p2psvc - ok
22:25:47.0842 0x1034  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
22:25:47.0858 0x1034  Parport - ok
22:25:47.0881 0x1034  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
22:25:47.0889 0x1034  partmgr - ok
22:25:47.0905 0x1034  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
22:25:47.0944 0x1034  PcaSvc - ok
22:25:47.0959 0x1034  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
22:25:47.0975 0x1034  pci - ok
22:25:47.0991 0x1034  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
22:25:48.0006 0x1034  pciide - ok
22:25:48.0022 0x1034  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
22:25:48.0038 0x1034  pcmcia - ok
22:25:48.0053 0x1034  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
22:25:48.0069 0x1034  pcw - ok
22:25:48.0100 0x1034  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
22:25:48.0178 0x1034  PEAUTH - ok
22:25:48.0241 0x1034  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
22:25:48.0327 0x1034  PeerDistSvc - ok
22:25:48.0389 0x1034  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
22:25:48.0413 0x1034  PerfHost - ok
22:25:48.0475 0x1034  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
22:25:48.0577 0x1034  pla - ok
22:25:48.0616 0x1034  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
22:25:48.0663 0x1034  PlugPlay - ok
22:25:48.0678 0x1034  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
22:25:48.0702 0x1034  PNRPAutoReg - ok
22:25:48.0725 0x1034  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
22:25:48.0749 0x1034  PNRPsvc - ok
22:25:48.0780 0x1034  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
22:25:48.0850 0x1034  PolicyAgent - ok
22:25:48.0874 0x1034  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
22:25:48.0920 0x1034  Power - ok
22:25:48.0952 0x1034  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
22:25:48.0991 0x1034  PptpMiniport - ok
22:25:48.0999 0x1034  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
22:25:49.0030 0x1034  Processor - ok
22:25:49.0053 0x1034  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
22:25:49.0069 0x1034  ProfSvc - ok
22:25:49.0084 0x1034  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
22:25:49.0100 0x1034  ProtectedStorage - ok
22:25:49.0124 0x1034  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
22:25:49.0163 0x1034  Psched - ok
22:25:49.0233 0x1034  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
22:25:49.0303 0x1034  ql2300 - ok
22:25:49.0319 0x1034  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
22:25:49.0334 0x1034  ql40xx - ok
22:25:49.0350 0x1034  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
22:25:49.0389 0x1034  QWAVE - ok
22:25:49.0405 0x1034  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
22:25:49.0420 0x1034  QWAVEdrv - ok
22:25:49.0436 0x1034  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
22:25:49.0475 0x1034  RasAcd - ok
22:25:49.0491 0x1034  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
22:25:49.0530 0x1034  RasAgileVpn - ok
22:25:49.0545 0x1034  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
22:25:49.0584 0x1034  RasAuto - ok
22:25:49.0592 0x1034  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
22:25:49.0639 0x1034  Rasl2tp - ok
22:25:49.0663 0x1034  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
22:25:49.0725 0x1034  RasMan - ok
22:25:49.0741 0x1034  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
22:25:49.0788 0x1034  RasPppoe - ok
22:25:49.0795 0x1034  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
22:25:49.0842 0x1034  RasSstp - ok
22:25:49.0866 0x1034  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
22:25:49.0920 0x1034  rdbss - ok
22:25:49.0936 0x1034  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
22:25:49.0952 0x1034  rdpbus - ok
22:25:49.0967 0x1034  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
22:25:49.0999 0x1034  RDPCDD - ok
22:25:50.0030 0x1034  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
22:25:50.0045 0x1034  RDPDR - ok
22:25:50.0061 0x1034  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
22:25:50.0100 0x1034  RDPENCDD - ok
22:25:50.0124 0x1034  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
22:25:50.0155 0x1034  RDPREFMP - ok
22:25:50.0186 0x1034  [ 70CBA1A0C98600A2AA1863479B35CB90, 91A133297921B4955817176251AFC5283DA3C7D2099700C4C92ECC94DBE9A99E ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
22:25:50.0202 0x1034  RdpVideoMiniport - ok
22:25:50.0225 0x1034  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
22:25:50.0256 0x1034  RDPWD - ok
22:25:50.0280 0x1034  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
22:25:50.0295 0x1034  rdyboost - ok
22:25:50.0319 0x1034  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
22:25:50.0358 0x1034  RemoteAccess - ok
22:25:50.0389 0x1034  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
22:25:50.0428 0x1034  RemoteRegistry - ok
22:25:50.0459 0x1034  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
22:25:50.0506 0x1034  RpcEptMapper - ok
22:25:50.0530 0x1034  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
22:25:50.0553 0x1034  RpcLocator - ok
22:25:50.0577 0x1034  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
22:25:50.0624 0x1034  RpcSs - ok
22:25:50.0639 0x1034  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
22:25:50.0686 0x1034  rspndr - ok
22:25:50.0709 0x1034  [ BAEFEE35D27A5440D35092CE10267BEC, FB550D38C01E07B1170C52C1441874B56DD3BECB10CBE8E132EE3276A05C796E ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
22:25:50.0733 0x1034  RTL8167 - ok
22:25:50.0749 0x1034  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
22:25:50.0772 0x1034  s3cap - ok
22:25:50.0788 0x1034  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\Windows\system32\lsass.exe
22:25:50.0803 0x1034  SamSs - ok
22:25:50.0819 0x1034  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
22:25:50.0827 0x1034  sbp2port - ok
22:25:50.0850 0x1034  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
22:25:50.0913 0x1034  SCardSvr - ok
22:25:50.0920 0x1034  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
22:25:50.0959 0x1034  scfilter - ok
22:25:51.0022 0x1034  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
22:25:51.0108 0x1034  Schedule - ok
22:25:51.0131 0x1034  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
22:25:51.0170 0x1034  SCPolicySvc - ok
22:25:51.0186 0x1034  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
22:25:51.0209 0x1034  SDRSVC - ok
22:25:51.0225 0x1034  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
22:25:51.0272 0x1034  secdrv - ok
22:25:51.0280 0x1034  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
22:25:51.0319 0x1034  seclogon - ok
22:25:51.0327 0x1034  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
22:25:51.0374 0x1034  SENS - ok
22:25:51.0389 0x1034  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
22:25:51.0413 0x1034  SensrSvc - ok
22:25:51.0420 0x1034  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
22:25:51.0444 0x1034  Serenum - ok
22:25:51.0467 0x1034  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
22:25:51.0491 0x1034  Serial - ok
22:25:51.0506 0x1034  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
22:25:51.0522 0x1034  sermouse - ok
22:25:51.0538 0x1034  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
22:25:51.0577 0x1034  SessionEnv - ok
22:25:51.0577 0x1034  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
22:25:51.0600 0x1034  sffdisk - ok
22:25:51.0600 0x1034  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
22:25:51.0624 0x1034  sffp_mmc - ok
22:25:51.0631 0x1034  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
22:25:51.0647 0x1034  sffp_sd - ok
22:25:51.0655 0x1034  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
22:25:51.0670 0x1034  sfloppy - ok
22:25:51.0702 0x1034  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
22:25:51.0764 0x1034  SharedAccess - ok
22:25:51.0788 0x1034  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:25:51.0850 0x1034  ShellHWDetection - ok
22:25:51.0858 0x1034  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
22:25:51.0866 0x1034  SiSRaid2 - ok
22:25:51.0881 0x1034  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
22:25:51.0897 0x1034  SiSRaid4 - ok
22:25:51.0920 0x1034  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
22:25:51.0959 0x1034  Smb - ok
22:25:51.0975 0x1034  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
22:25:51.0999 0x1034  SNMPTRAP - ok
22:25:52.0006 0x1034  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
22:25:52.0022 0x1034  spldr - ok
22:25:52.0045 0x1034  [ B96C17B5DC1424D56EEA3A99E97428CD, AF0A85066A7983878DC1C663811CE61C6CA1912DC956184F878B7B82DB93C651 ] Spooler         C:\Windows\System32\spoolsv.exe
22:25:52.0108 0x1034  Spooler - ok
22:25:52.0225 0x1034  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
22:25:52.0405 0x1034  sppsvc - ok
22:25:52.0420 0x1034  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
22:25:52.0459 0x1034  sppuinotify - ok
22:25:52.0499 0x1034  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
22:25:52.0538 0x1034  srv - ok
22:25:52.0561 0x1034  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
22:25:52.0600 0x1034  srv2 - ok
22:25:52.0616 0x1034  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
22:25:52.0639 0x1034  srvnet - ok
22:25:52.0655 0x1034  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
22:25:52.0702 0x1034  SSDPSRV - ok
22:25:52.0717 0x1034  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
22:25:52.0756 0x1034  SstpSvc - ok
22:25:52.0772 0x1034  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
22:25:52.0788 0x1034  stexstor - ok
22:25:52.0819 0x1034  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
22:25:52.0881 0x1034  stisvc - ok
22:25:52.0905 0x1034  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
22:25:52.0913 0x1034  storflt - ok
22:25:52.0936 0x1034  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
22:25:52.0952 0x1034  storvsc - ok
22:25:52.0967 0x1034  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
22:25:52.0975 0x1034  swenum - ok
22:25:55.0045 0x1034  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
22:25:55.0131 0x1034  swprv - ok
22:25:55.0155 0x1034  [ C3A39C4079305480972D29C44B868C78, 8F1BB75C743256F905EAEDE744B6082C53774C49126875FB4E4FBA30F5478B17 ] Synth3dVsc      C:\Windows\system32\drivers\synth3dvsc.sys
22:25:55.0170 0x1034  Synth3dVsc - ok
22:25:55.0233 0x1034  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
22:25:55.0334 0x1034  SysMain - ok
22:25:55.0350 0x1034  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:25:55.0381 0x1034  TabletInputService - ok
22:25:55.0405 0x1034  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
22:25:55.0459 0x1034  TapiSrv - ok
22:25:55.0475 0x1034  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
22:25:55.0514 0x1034  TBS - ok
22:25:55.0592 0x1034  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
22:25:55.0678 0x1034  Tcpip - ok
22:25:55.0741 0x1034  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
22:25:55.0795 0x1034  TCPIP6 - ok
22:25:55.0819 0x1034  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
22:25:55.0827 0x1034  tcpipreg - ok
22:25:55.0842 0x1034  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
22:25:55.0866 0x1034  TDPIPE - ok
22:25:55.0897 0x1034  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
22:25:55.0913 0x1034  TDTCP - ok
22:25:55.0936 0x1034  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
22:25:55.0975 0x1034  tdx - ok
22:25:55.0983 0x1034  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
22:25:55.0999 0x1034  TermDD - ok
22:25:56.0022 0x1034  [ 2B5BDFF688EC9871D7EC5837833374E9, BD6C629FA2938987ABF95B790B20F0B7D4D023D5013E575F343A802D6213074E ] terminpt        C:\Windows\system32\drivers\terminpt.sys
22:25:56.0045 0x1034  terminpt - ok
22:25:56.0077 0x1034  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
22:25:56.0155 0x1034  TermService - ok
22:25:56.0170 0x1034  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
22:25:56.0186 0x1034  Themes - ok
22:25:56.0194 0x1034  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
22:25:56.0233 0x1034  THREADORDER - ok
22:25:56.0249 0x1034  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
22:25:56.0295 0x1034  TrkWks - ok
22:25:56.0342 0x1034  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:25:56.0381 0x1034  TrustedInstaller - ok
22:25:56.0413 0x1034  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
22:25:56.0436 0x1034  tssecsrv - ok
22:25:56.0459 0x1034  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
22:25:56.0475 0x1034  TsUsbFlt - ok
22:25:56.0475 0x1034  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
22:25:56.0506 0x1034  TsUsbGD - ok
22:25:56.0530 0x1034  [ E1748D04AE40118B62BC18AC86032192, A954B141D1B27272C771D14F3B40C7CC1F572DD72559F2C96182EFBE2B095FDE ] tsusbhub        C:\Windows\system32\drivers\tsusbhub.sys
22:25:56.0553 0x1034  tsusbhub - ok
22:25:56.0584 0x1034  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
22:25:56.0624 0x1034  tunnel - ok
22:25:56.0631 0x1034  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
22:25:56.0647 0x1034  uagp35 - ok
22:25:56.0663 0x1034  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
22:25:56.0717 0x1034  udfs - ok
22:25:56.0733 0x1034  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
22:25:56.0756 0x1034  UI0Detect - ok
22:25:56.0772 0x1034  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
22:25:56.0780 0x1034  uliagpkx - ok
22:25:56.0795 0x1034  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
22:25:56.0819 0x1034  umbus - ok
22:25:56.0827 0x1034  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
22:25:56.0850 0x1034  UmPass - ok
22:25:56.0874 0x1034  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
22:25:56.0913 0x1034  UmRdpService - ok
22:25:56.0936 0x1034  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
22:25:56.0999 0x1034  upnphost - ok
22:25:57.0022 0x1034  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
22:25:57.0045 0x1034  usbccgp - ok
22:25:57.0069 0x1034  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
22:25:57.0092 0x1034  usbcir - ok
22:25:57.0116 0x1034  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
22:25:57.0139 0x1034  usbehci - ok
22:25:57.0163 0x1034  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
22:25:57.0202 0x1034  usbhub - ok
22:25:57.0217 0x1034  [ 58E546BBAF87664FC57E0F6081E4F609, 1DD99D57369A0069654432AB5325AFD8F7D422D531E053EA05FF664BA6BDAEF9 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
22:25:57.0225 0x1034  usbohci - ok
22:25:57.0241 0x1034  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
22:25:57.0264 0x1034  usbprint - ok
22:25:57.0280 0x1034  [ D76510CFA0FC09023077F22C2F979D86, 5662281C6D515423255D3C262EA368DBAFC250235E535FBFA3E59D3487695439 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:25:57.0303 0x1034  USBSTOR - ok
22:25:57.0319 0x1034  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
22:25:57.0334 0x1034  usbuhci - ok
22:25:57.0342 0x1034  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
22:25:57.0397 0x1034  UxSms - ok
22:25:57.0405 0x1034  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\Windows\system32\lsass.exe
22:25:57.0420 0x1034  VaultSvc - ok
22:25:57.0452 0x1034  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
22:25:57.0459 0x1034  vdrvroot - ok
22:25:57.0491 0x1034  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
22:25:57.0561 0x1034  vds - ok
22:25:57.0561 0x1034  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
22:25:57.0584 0x1034  vga - ok
22:25:57.0600 0x1034  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
22:25:57.0631 0x1034  VgaSave - ok
22:25:57.0639 0x1034  VGPU - ok
22:25:57.0663 0x1034  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
22:25:57.0678 0x1034  vhdmp - ok
22:25:57.0694 0x1034  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
22:25:57.0709 0x1034  viaide - ok
22:25:57.0741 0x1034  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
22:25:57.0756 0x1034  vmbus - ok
22:25:57.0772 0x1034  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
22:25:57.0780 0x1034  VMBusHID - ok
22:25:57.0803 0x1034  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
22:25:57.0811 0x1034  volmgr - ok
22:25:57.0842 0x1034  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
22:25:57.0866 0x1034  volmgrx - ok
22:25:57.0881 0x1034  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
22:25:57.0905 0x1034  volsnap - ok
22:25:57.0944 0x1034  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
22:25:57.0959 0x1034  vsmraid - ok
22:25:58.0022 0x1034  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
22:25:58.0139 0x1034  VSS - ok
22:25:58.0155 0x1034  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
22:25:58.0178 0x1034  vwifibus - ok
22:25:58.0202 0x1034  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
22:25:58.0256 0x1034  W32Time - ok
22:25:58.0272 0x1034  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
22:25:58.0295 0x1034  WacomPen - ok
22:25:58.0327 0x1034  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
22:25:58.0358 0x1034  WANARP - ok
22:25:58.0374 0x1034  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
22:25:58.0413 0x1034  Wanarpv6 - ok
22:25:58.0467 0x1034  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
22:25:58.0553 0x1034  wbengine - ok
22:25:58.0569 0x1034  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
22:25:58.0608 0x1034  WbioSrvc - ok
22:25:58.0631 0x1034  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
22:25:58.0678 0x1034  wcncsvc - ok
22:25:58.0694 0x1034  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:25:58.0717 0x1034  WcsPlugInService - ok
22:25:58.0733 0x1034  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
22:25:58.0741 0x1034  Wd - ok
22:25:58.0788 0x1034  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
22:25:58.0827 0x1034  Wdf01000 - ok
22:25:58.0850 0x1034  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
22:25:58.0881 0x1034  WdiServiceHost - ok
22:25:58.0889 0x1034  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
22:25:58.0913 0x1034  WdiSystemHost - ok
22:25:58.0928 0x1034  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
22:25:58.0959 0x1034  WebClient - ok
22:25:58.0983 0x1034  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
22:25:59.0038 0x1034  Wecsvc - ok
22:25:59.0053 0x1034  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
22:25:59.0092 0x1034  wercplsupport - ok
22:25:59.0108 0x1034  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
22:25:59.0163 0x1034  WerSvc - ok
22:25:59.0178 0x1034  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
22:25:59.0217 0x1034  WfpLwf - ok
22:25:59.0233 0x1034  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
22:25:59.0241 0x1034  WIMMount - ok
22:25:59.0272 0x1034  WinDefend - ok
22:25:59.0280 0x1034  WinHttpAutoProxySvc - ok
22:25:59.0327 0x1034  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
22:25:59.0374 0x1034  Winmgmt - ok
22:25:59.0467 0x1034  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
22:25:59.0584 0x1034  WinRM - ok
22:25:59.0616 0x1034  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
22:25:59.0639 0x1034  WinUsb - ok
22:25:59.0678 0x1034  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
22:25:59.0764 0x1034  Wlansvc - ok
22:25:59.0772 0x1034  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
22:25:59.0788 0x1034  WmiAcpi - ok
22:25:59.0803 0x1034  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
22:25:59.0834 0x1034  wmiApSrv - ok
22:25:59.0842 0x1034  WMPNetworkSvc - ok
22:25:59.0858 0x1034  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
22:25:59.0874 0x1034  WPCSvc - ok
22:25:59.0889 0x1034  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
22:25:59.0905 0x1034  WPDBusEnum - ok
22:25:59.0928 0x1034  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
22:25:59.0975 0x1034  ws2ifsl - ok
22:25:59.0991 0x1034  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
22:26:00.0022 0x1034  wscsvc - ok
22:26:00.0022 0x1034  WSearch - ok
22:26:00.0131 0x1034  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
22:26:00.0225 0x1034  wuauserv - ok
22:26:00.0241 0x1034  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
22:26:00.0264 0x1034  WudfPf - ok
22:26:00.0319 0x1034  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
22:26:00.0334 0x1034  WUDFRd - ok
22:26:00.0350 0x1034  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
22:26:00.0374 0x1034  wudfsvc - ok
22:26:00.0405 0x1034  [ 9A3452B3C2A46C073166C5CF49FAD1AE, D6F95F51D8E37BA4CF403965EC08CCFEEA9EEFDBFC7752432EAEC19925BDA115 ] WwanSvc         C:\Windows\System32\wwansvc.dll
22:26:00.0436 0x1034  WwanSvc - ok
22:26:00.0444 0x1034  ================ Scan global ===============================
22:26:00.0452 0x1034  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
22:26:00.0483 0x1034  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
22:26:00.0506 0x1034  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
22:26:00.0530 0x1034  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
22:26:00.0553 0x1034  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
22:26:00.0569 0x1034  [ Global ] - ok
22:26:00.0569 0x1034  ================ Scan MBR ==================================
22:26:00.0577 0x1034  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:26:01.0045 0x1034  \Device\Harddisk0\DR0 - ok
22:26:01.0045 0x1034  ================ Scan VBR ==================================
22:26:01.0045 0x1034  [ CAEC19301ED92FDADEF48C681741F400 ] \Device\Harddisk0\DR0\Partition1
22:26:01.0045 0x1034  \Device\Harddisk0\DR0\Partition1 - ok
22:26:01.0053 0x1034  [ E66F9ADFF4ED1047C235E41DFAD64960 ] \Device\Harddisk0\DR0\Partition2
22:26:01.0053 0x1034  \Device\Harddisk0\DR0\Partition2 - ok
22:26:01.0053 0x1034  [ E81096DC3146B072C7E40FF5D9041FCB ] \Device\Harddisk0\DR0\Partition3
22:26:01.0100 0x1034  \Device\Harddisk0\DR0\Partition3 - ok
22:26:01.0108 0x1034  ================ Scan generic autorun ======================
22:26:01.0139 0x1034  [ 92FDB0658CA16974B4AE80E248A5B118, 9E0CF6A9C845C5F9E4B80B9105DBECE15ACC27984FCBFD8774C00EBE20DB652F ] C:\Windows\system32\igfxtray.exe
22:26:01.0155 0x1034  IgfxTray - ok
22:26:01.0170 0x1034  [ 23A6AE66AA4BEF792649736385BB51BA, FC85E38B2F5F52E970EAE5DAFC3B738BCC8BF596AF3766F0EDA03040664E1F08 ] C:\Windows\system32\hkcmd.exe
22:26:01.0202 0x1034  HotKeysCmds - ok
22:26:01.0217 0x1034  [ F6FA1865978214FB7FCD80149BBF1C13, 3CA24827982B521986DBE1E5600316155800C3777BAF415B978C7FE9F3AA3DD2 ] C:\Windows\system32\igfxpers.exe
22:26:01.0241 0x1034  Persistence - ok
22:26:01.0280 0x1034  [ 38D198A2DD54A67120040566A38103BA, 01604BD91A5B2C0DDC7B52036511F8219952626716E75979D8464F2C56BA0114 ] C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe
22:26:01.0295 0x1034  GrooveMonitor - ok
22:26:01.0358 0x1034  [ 7C3218CE118044136BF3FFD00755A70C, 1A0E428314787442D82B6255BEFE63EBC35AAF793CE753BA876A58AA0D4C0AB6 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
22:26:01.0381 0x1034  StartCCC - detected UnsignedFile.Multi.Generic ( 1 )
22:26:01.0459 0x1034  StartCCC ( UnsignedFile.Multi.Generic ) - warning
22:26:04.0061 0x1034  [ 26B558B2D31C7425B455B00E562EAD93, B64D128A2F1FC42BA4376F8EB08D70F4B705745CB983D0631DB45851BF34BBDF ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
22:26:04.0217 0x1034  AvastUI.exe - ok
22:26:04.0303 0x1034  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
22:26:04.0350 0x1034  Adobe ARM - ok
22:26:04.0413 0x1034  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
22:26:04.0475 0x1034  Sidebar - ok
22:26:04.0514 0x1034  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
22:26:04.0545 0x1034  mctadmin - ok
22:26:04.0584 0x1034  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
22:26:04.0624 0x1034  Sidebar - ok
22:26:04.0631 0x1034  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
22:26:04.0655 0x1034  mctadmin - ok
22:26:04.0733 0x1034  [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
22:26:04.0811 0x1034  Sidebar - ok
22:26:04.0834 0x1034  LightShot - ok
22:26:04.0858 0x1034  AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2021.515 ), 0x41000 ( enabled : updated )
22:26:04.0858 0x1034  Win FW state via NFP2: enabled
22:26:07.0288 0x1034  ============================================================
22:26:07.0288 0x1034  Scan finished
22:26:07.0288 0x1034  ============================================================
22:26:07.0295 0x102c  Detected object count: 1
22:26:07.0295 0x102c  Actual detected object count: 1
22:26:40.0569 0x102c  StartCCC ( UnsignedFile.Multi.Generic ) - skipped by user
22:26:40.0569 0x102c  StartCCC ( UnsignedFile.Multi.Generic ) - User select action: Skip
 

 

 

here is the  frst log

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-07-2014 02
Ran by user (administrator) on USER-PC on 01-08-2014 22:30:24
Running from D:\Λήψεις
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Ελληνικά (Ελλάδας)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Kaspersky Lab ZAO) D:\Λήψεις\tdsskiller(1).exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-05-24] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-07-31] (AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2992675936-2286735739-2217034245-1001\...\Run: [LightShot] => C:\Users\user\AppData\Local\Skillbrains\lightshot\Lightshot.exe Flags: uninsdeletevalue
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://gr.msn.com/?o...U219DHP&pc=U219
SearchScopes: HKCU - {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.co...q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\oi2qrrnc.default
FF Homepage: https://www.google.gr/
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazon-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-en-GB.xml
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-07-27]

Chrome:
=======
CHR HomePage:
CHR Extension: (Xmarks Bookmark Sync) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajpgkpeckebdhofmmjfgcjjiiejpodla [2014-02-08]
CHR Extension: (Έγγραφα Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-07]
CHR Extension: (Google Drive ) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-07]
CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-07]
CHR Extension: (Adblock Plus) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-02-08]
CHR Extension: (Αναζήτηση Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-07]
CHR Extension: (I <3 House Music) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbihiclmkdmbnihofkkhlmdefkclbfkj [2014-06-22]
CHR Extension: (AdBlock) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-02-08]
CHR Extension: (avast! Online Security) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-07-27]
CHR Extension: (Πορτοφόλι Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-07]
CHR Extension: (PDF Viewer) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\oemmndcbldboiebfnladdacbdfmadadm [2014-02-09]
CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-07]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-27]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-27] (AVAST Software)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-07-27] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-07-27] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-07-27] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-07-27] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-07-27] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-07-27] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-07-27] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-07-27] ()
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-01 22:29 - 2014-08-01 22:30 - 00000000 ____D () C:\FRST
2014-08-01 17:30 - 2014-08-01 17:30 - 00000000 __SHD () C:\Users\user\AppData\Local\EmieUserList
2014-08-01 17:30 - 2014-08-01 17:30 - 00000000 __SHD () C:\Users\user\AppData\Local\EmieSiteList
2014-08-01 17:27 - 2014-08-01 17:27 - 00000000 ___HD () C:\Windows\msdownld.tmp
2014-08-01 17:27 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-08-01 17:24 - 2014-08-01 17:24 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-01 17:24 - 2014-08-01 17:24 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-01 17:24 - 2014-08-01 17:24 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-01 17:24 - 2014-08-01 17:24 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-01 17:24 - 2014-08-01 17:24 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-08-01 17:24 - 2014-08-01 17:24 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-08-01 17:24 - 2014-08-01 17:24 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-08-01 17:24 - 2014-08-01 17:24 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-08-01 17:24 - 2014-08-01 17:24 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00266424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00240824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-08-01 17:24 - 2014-08-01 17:24 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-08-01 17:24 - 2014-08-01 17:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-01 17:22 - 2014-08-01 17:27 - 00014595 _____ () C:\Windows\IE11_main.log
2014-08-01 17:17 - 2014-08-01 17:17 - 00000000 ____D () C:\Users\user\AppData\Local\Adobe
2014-08-01 17:16 - 2014-08-01 17:16 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-08-01 17:16 - 2014-08-01 17:16 - 00002019 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-08-01 17:16 - 2014-08-01 17:16 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-08-01 15:52 - 2014-08-01 15:52 - 00057328 _____ () C:\Users\user\Desktop\OTL.Txt
2014-08-01 15:42 - 2014-08-01 15:42 - 00000918 _____ () C:\Users\user\Desktop\checkup.txt
2014-08-01 15:40 - 2014-08-01 15:40 - 00854390 _____ () C:\Users\user\Desktop\SecurityCheck.exe
2014-08-01 15:38 - 2014-08-01 15:38 - 00005038 _____ () C:\Users\user\Desktop\zoek-results.txt
2014-08-01 15:36 - 2014-08-01 15:19 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-08-01 15:25 - 2014-08-01 15:37 - 00005038 _____ () C:\zoek-results.log
2014-08-01 15:19 - 2014-08-01 15:34 - 00000000 ____D () C:\zoek_backup
2014-08-01 15:18 - 2014-08-01 15:18 - 01287168 _____ () C:\Users\user\Desktop\zoek.exe
2014-08-01 15:17 - 2014-08-01 15:17 - 00000759 _____ () C:\Users\user\Desktop\JRT.txt
2014-08-01 15:09 - 2014-08-01 15:09 - 00000000 ____D () C:\Windows\ERUNT
2014-08-01 15:08 - 2014-08-01 15:08 - 01016261 _____ (Thisisu) C:\Users\user\Desktop\JRT.exe
2014-08-01 15:06 - 2014-08-01 15:06 - 00001163 _____ () C:\Users\user\Desktop\AdwCleaner[S1].txt
2014-08-01 15:02 - 2014-08-01 15:02 - 00009472 _____ () C:\Users\user\Desktop\08012014_145742.log
2014-07-31 21:56 - 2014-07-31 21:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-28 17:14 - 2014-07-28 17:14 - 00274320 _____ () C:\Windows\Minidump\072814-27218-01.dmp
2014-07-27 15:12 - 2014-08-01 21:21 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-07-27 15:12 - 2014-07-31 00:24 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-07-27 15:12 - 2014-07-27 15:12 - 00000000 ____D () C:\Users\user\AppData\Roaming\AVAST Software
2014-07-27 15:12 - 2014-07-27 15:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-07-27 15:11 - 2014-07-27 15:12 - 00427360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-07-27 15:11 - 2014-07-27 15:11 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-27 15:11 - 2014-07-27 15:11 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-07-27 15:07 - 2014-07-27 15:07 - 00000000 ____D () C:\Program Files\AVAST Software
2014-07-27 15:05 - 2014-07-27 15:07 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-07-27 15:00 - 2014-08-01 17:28 - 00349286 _____ () C:\Windows\PFRO.log
2014-07-27 14:04 - 2014-08-01 21:21 - 00001232 _____ () C:\Windows\setupact.log
2014-07-27 14:04 - 2014-07-27 14:04 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-27 14:01 - 2014-07-27 14:01 - 00002770 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-07-27 14:01 - 2014-07-27 14:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-07-27 14:01 - 2014-07-27 14:01 - 00000000 ____D () C:\Program Files\CCleaner
2014-07-27 13:35 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-07-27 13:34 - 2014-08-01 15:04 - 00000000 ____D () C:\AdwCleaner
2014-07-27 12:29 - 2014-07-27 12:29 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-27 12:28 - 2014-07-27 12:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-27 12:28 - 2014-07-27 12:28 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-27 12:28 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-07-27 12:28 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-07-26 15:04 - 2014-07-26 15:04 - 00007606 _____ () C:\Users\user\AppData\Local\Resmon.ResmonCfg

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-01 22:30 - 2014-08-01 22:29 - 00000000 ____D () C:\FRST
2014-08-01 21:57 - 2014-02-07 21:22 - 00001180 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-01 21:28 - 2009-07-14 07:45 - 00021072 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-01 21:28 - 2009-07-14 07:45 - 00021072 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-01 21:24 - 2014-02-07 19:34 - 01187273 _____ () C:\Windows\WindowsUpdate.log
2014-08-01 21:21 - 2014-07-27 15:12 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-08-01 21:21 - 2014-07-27 14:04 - 00001232 _____ () C:\Windows\setupact.log
2014-08-01 21:21 - 2014-02-07 21:22 - 00001176 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-01 21:21 - 2009-07-14 08:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-01 17:30 - 2014-08-01 17:30 - 00000000 __SHD () C:\Users\user\AppData\Local\EmieUserList
2014-08-01 17:30 - 2014-08-01 17:30 - 00000000 __SHD () C:\Users\user\AppData\Local\EmieSiteList
2014-08-01 17:29 - 2014-02-07 19:37 - 00001429 _____ () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-08-01 17:29 - 2014-02-07 19:30 - 00000000 ____D () C:\Windows\Panther
2014-08-01 17:28 - 2014-07-27 15:00 - 00349286 _____ () C:\Windows\PFRO.log
2014-08-01 17:27 - 2014-08-01 17:27 - 00000000 ___HD () C:\Windows\msdownld.tmp
2014-08-01 17:27 - 2014-08-01 17:22 - 00014595 _____ () C:\Windows\IE11_main.log
2014-08-01 17:27 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-08-01 17:24 - 2014-08-01 17:24 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-01 17:24 - 2014-08-01 17:24 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-01 17:24 - 2014-08-01 17:24 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-01 17:24 - 2014-08-01 17:24 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-01 17:24 - 2014-08-01 17:24 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-08-01 17:24 - 2014-08-01 17:24 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-08-01 17:24 - 2014-08-01 17:24 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-08-01 17:24 - 2014-08-01 17:24 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-08-01 17:24 - 2014-08-01 17:24 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00266424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00240824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-08-01 17:24 - 2014-08-01 17:24 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-08-01 17:24 - 2014-08-01 17:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-01 17:17 - 2014-08-01 17:17 - 00000000 ____D () C:\Users\user\AppData\Local\Adobe
2014-08-01 17:16 - 2014-08-01 17:16 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-08-01 17:16 - 2014-08-01 17:16 - 00002019 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-08-01 17:16 - 2014-08-01 17:16 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-08-01 17:16 - 2014-02-07 21:25 - 00000000 ____D () C:\ProgramData\Adobe
2014-08-01 15:52 - 2014-08-01 15:52 - 00057328 _____ () C:\Users\user\Desktop\OTL.Txt
2014-08-01 15:42 - 2014-08-01 15:42 - 00000918 _____ () C:\Users\user\Desktop\checkup.txt
2014-08-01 15:40 - 2014-08-01 15:40 - 00854390 _____ () C:\Users\user\Desktop\SecurityCheck.exe
2014-08-01 15:38 - 2014-08-01 15:38 - 00005038 _____ () C:\Users\user\Desktop\zoek-results.txt
2014-08-01 15:37 - 2014-08-01 15:25 - 00005038 _____ () C:\zoek-results.log
2014-08-01 15:34 - 2014-08-01 15:19 - 00000000 ____D () C:\zoek_backup
2014-08-01 15:19 - 2014-08-01 15:36 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-08-01 15:18 - 2014-08-01 15:18 - 01287168 _____ () C:\Users\user\Desktop\zoek.exe
2014-08-01 15:17 - 2014-08-01 15:17 - 00000759 _____ () C:\Users\user\Desktop\JRT.txt
2014-08-01 15:09 - 2014-08-01 15:09 - 00000000 ____D () C:\Windows\ERUNT
2014-08-01 15:08 - 2014-08-01 15:08 - 01016261 _____ (Thisisu) C:\Users\user\Desktop\JRT.exe
2014-08-01 15:06 - 2014-08-01 15:06 - 00001163 _____ () C:\Users\user\Desktop\AdwCleaner[S1].txt
2014-08-01 15:04 - 2014-07-27 13:34 - 00000000 ____D () C:\AdwCleaner
2014-08-01 15:02 - 2014-08-01 15:02 - 00009472 _____ () C:\Users\user\Desktop\08012014_145742.log
2014-08-01 15:00 - 2014-02-07 21:19 - 00000000 ____D () C:\Users\user\AppData\Roaming\Mozilla
2014-08-01 10:31 - 2014-02-07 21:18 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-07-31 21:56 - 2014-07-31 21:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-31 01:24 - 2014-02-08 14:57 - 00000000 ____D () C:\Users\user\AppData\Roaming\Media Player Classic
2014-07-31 01:07 - 2014-02-08 14:39 - 00000000 ____D () C:\Users\user\AppData\Roaming\uTorrent
2014-07-31 00:24 - 2014-07-27 15:12 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-07-28 17:14 - 2014-07-28 17:14 - 00274320 _____ () C:\Windows\Minidump\072814-27218-01.dmp
2014-07-28 17:14 - 2014-05-31 11:55 - 00000000 ____D () C:\Windows\Minidump
2014-07-28 14:59 - 2014-02-16 12:51 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-07-28 14:59 - 2014-02-16 12:51 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-27 15:12 - 2014-07-27 15:12 - 00000000 ____D () C:\Users\user\AppData\Roaming\AVAST Software
2014-07-27 15:12 - 2014-07-27 15:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-07-27 15:12 - 2014-07-27 15:11 - 00427360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-07-27 15:11 - 2014-07-27 15:11 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-27 15:11 - 2014-07-27 15:11 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-07-27 15:07 - 2014-07-27 15:07 - 00000000 ____D () C:\Program Files\AVAST Software
2014-07-27 15:07 - 2014-07-27 15:05 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-07-27 14:07 - 2014-06-15 14:59 - 00000000 ____D () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lightshot
2014-07-27 14:04 - 2014-07-27 14:04 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-27 14:01 - 2014-07-27 14:01 - 00002770 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-07-27 14:01 - 2014-07-27 14:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-07-27 14:01 - 2014-07-27 14:01 - 00000000 ____D () C:\Program Files\CCleaner
2014-07-27 12:29 - 2014-07-27 12:29 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-27 12:28 - 2014-07-27 12:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-27 12:28 - 2014-07-27 12:28 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-27 12:28 - 2014-02-22 01:23 - 00001106 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-27 12:28 - 2014-02-22 01:23 - 00000000 ____D () C:\Users\user\AppData\Roaming\Malwarebytes
2014-07-27 12:28 - 2014-02-22 01:23 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-26 15:04 - 2014-07-26 15:04 - 00007606 _____ () C:\Users\user\AppData\Local\Resmon.ResmonCfg
2014-07-21 22:12 - 2009-07-14 08:08 - 00032504 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-07-19 11:56 - 2014-02-07 21:24 - 00002189 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-07-06 17:45 - 2010-11-21 13:15 - 00000000 ___RD () C:\Users\Public\Recorded TV

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-28 17:08

==================== End Of Log ============================

 

 

 

 

and here is the addition frst log

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-07-2014 02
Ran by user (administrator) on USER-PC on 01-08-2014 22:30:24
Running from D:\Λήψεις
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Ελληνικά (Ελλάδας)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Kaspersky Lab ZAO) D:\Λήψεις\tdsskiller(1).exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-05-24] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-07-31] (AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2992675936-2286735739-2217034245-1001\...\Run: [LightShot] => C:\Users\user\AppData\Local\Skillbrains\lightshot\Lightshot.exe Flags: uninsdeletevalue
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://gr.msn.com/?o...U219DHP&pc=U219
SearchScopes: HKCU - {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.co...q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\oi2qrrnc.default
FF Homepage: https://www.google.gr/
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazon-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-en-GB.xml
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-07-27]

Chrome:
=======
CHR HomePage:
CHR Extension: (Xmarks Bookmark Sync) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajpgkpeckebdhofmmjfgcjjiiejpodla [2014-02-08]
CHR Extension: (Έγγραφα Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-07]
CHR Extension: (Google Drive ) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-07]
CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-07]
CHR Extension: (Adblock Plus) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-02-08]
CHR Extension: (Αναζήτηση Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-07]
CHR Extension: (I <3 House Music) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbihiclmkdmbnihofkkhlmdefkclbfkj [2014-06-22]
CHR Extension: (AdBlock) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-02-08]
CHR Extension: (avast! Online Security) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-07-27]
CHR Extension: (Πορτοφόλι Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-07]
CHR Extension: (PDF Viewer) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\oemmndcbldboiebfnladdacbdfmadadm [2014-02-09]
CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-07]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-27]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-27] (AVAST Software)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-07-27] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-07-27] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-07-27] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-07-27] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-07-27] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-07-27] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-07-27] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-07-27] ()
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-01 22:29 - 2014-08-01 22:30 - 00000000 ____D () C:\FRST
2014-08-01 17:30 - 2014-08-01 17:30 - 00000000 __SHD () C:\Users\user\AppData\Local\EmieUserList
2014-08-01 17:30 - 2014-08-01 17:30 - 00000000 __SHD () C:\Users\user\AppData\Local\EmieSiteList
2014-08-01 17:27 - 2014-08-01 17:27 - 00000000 ___HD () C:\Windows\msdownld.tmp
2014-08-01 17:27 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-08-01 17:24 - 2014-08-01 17:24 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-01 17:24 - 2014-08-01 17:24 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-01 17:24 - 2014-08-01 17:24 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-01 17:24 - 2014-08-01 17:24 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-01 17:24 - 2014-08-01 17:24 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-08-01 17:24 - 2014-08-01 17:24 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-08-01 17:24 - 2014-08-01 17:24 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-08-01 17:24 - 2014-08-01 17:24 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-08-01 17:24 - 2014-08-01 17:24 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00266424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00240824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-08-01 17:24 - 2014-08-01 17:24 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-08-01 17:24 - 2014-08-01 17:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-01 17:22 - 2014-08-01 17:27 - 00014595 _____ () C:\Windows\IE11_main.log
2014-08-01 17:17 - 2014-08-01 17:17 - 00000000 ____D () C:\Users\user\AppData\Local\Adobe
2014-08-01 17:16 - 2014-08-01 17:16 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-08-01 17:16 - 2014-08-01 17:16 - 00002019 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-08-01 17:16 - 2014-08-01 17:16 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-08-01 15:52 - 2014-08-01 15:52 - 00057328 _____ () C:\Users\user\Desktop\OTL.Txt
2014-08-01 15:42 - 2014-08-01 15:42 - 00000918 _____ () C:\Users\user\Desktop\checkup.txt
2014-08-01 15:40 - 2014-08-01 15:40 - 00854390 _____ () C:\Users\user\Desktop\SecurityCheck.exe
2014-08-01 15:38 - 2014-08-01 15:38 - 00005038 _____ () C:\Users\user\Desktop\zoek-results.txt
2014-08-01 15:36 - 2014-08-01 15:19 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-08-01 15:25 - 2014-08-01 15:37 - 00005038 _____ () C:\zoek-results.log
2014-08-01 15:19 - 2014-08-01 15:34 - 00000000 ____D () C:\zoek_backup
2014-08-01 15:18 - 2014-08-01 15:18 - 01287168 _____ () C:\Users\user\Desktop\zoek.exe
2014-08-01 15:17 - 2014-08-01 15:17 - 00000759 _____ () C:\Users\user\Desktop\JRT.txt
2014-08-01 15:09 - 2014-08-01 15:09 - 00000000 ____D () C:\Windows\ERUNT
2014-08-01 15:08 - 2014-08-01 15:08 - 01016261 _____ (Thisisu) C:\Users\user\Desktop\JRT.exe
2014-08-01 15:06 - 2014-08-01 15:06 - 00001163 _____ () C:\Users\user\Desktop\AdwCleaner[S1].txt
2014-08-01 15:02 - 2014-08-01 15:02 - 00009472 _____ () C:\Users\user\Desktop\08012014_145742.log
2014-07-31 21:56 - 2014-07-31 21:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-28 17:14 - 2014-07-28 17:14 - 00274320 _____ () C:\Windows\Minidump\072814-27218-01.dmp
2014-07-27 15:12 - 2014-08-01 21:21 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-07-27 15:12 - 2014-07-31 00:24 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-07-27 15:12 - 2014-07-27 15:12 - 00000000 ____D () C:\Users\user\AppData\Roaming\AVAST Software
2014-07-27 15:12 - 2014-07-27 15:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-07-27 15:11 - 2014-07-27 15:12 - 00427360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-07-27 15:11 - 2014-07-27 15:11 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-27 15:11 - 2014-07-27 15:11 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-07-27 15:07 - 2014-07-27 15:07 - 00000000 ____D () C:\Program Files\AVAST Software
2014-07-27 15:05 - 2014-07-27 15:07 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-07-27 15:00 - 2014-08-01 17:28 - 00349286 _____ () C:\Windows\PFRO.log
2014-07-27 14:04 - 2014-08-01 21:21 - 00001232 _____ () C:\Windows\setupact.log
2014-07-27 14:04 - 2014-07-27 14:04 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-27 14:01 - 2014-07-27 14:01 - 00002770 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-07-27 14:01 - 2014-07-27 14:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-07-27 14:01 - 2014-07-27 14:01 - 00000000 ____D () C:\Program Files\CCleaner
2014-07-27 13:35 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-07-27 13:34 - 2014-08-01 15:04 - 00000000 ____D () C:\AdwCleaner
2014-07-27 12:29 - 2014-07-27 12:29 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-27 12:28 - 2014-07-27 12:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-27 12:28 - 2014-07-27 12:28 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-27 12:28 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-07-27 12:28 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-07-26 15:04 - 2014-07-26 15:04 - 00007606 _____ () C:\Users\user\AppData\Local\Resmon.ResmonCfg

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-01 22:30 - 2014-08-01 22:29 - 00000000 ____D () C:\FRST
2014-08-01 21:57 - 2014-02-07 21:22 - 00001180 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-01 21:28 - 2009-07-14 07:45 - 00021072 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-01 21:28 - 2009-07-14 07:45 - 00021072 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-01 21:24 - 2014-02-07 19:34 - 01187273 _____ () C:\Windows\WindowsUpdate.log
2014-08-01 21:21 - 2014-07-27 15:12 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-08-01 21:21 - 2014-07-27 14:04 - 00001232 _____ () C:\Windows\setupact.log
2014-08-01 21:21 - 2014-02-07 21:22 - 00001176 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-01 21:21 - 2009-07-14 08:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-01 17:30 - 2014-08-01 17:30 - 00000000 __SHD () C:\Users\user\AppData\Local\EmieUserList
2014-08-01 17:30 - 2014-08-01 17:30 - 00000000 __SHD () C:\Users\user\AppData\Local\EmieSiteList
2014-08-01 17:29 - 2014-02-07 19:37 - 00001429 _____ () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-08-01 17:29 - 2014-02-07 19:30 - 00000000 ____D () C:\Windows\Panther
2014-08-01 17:28 - 2014-07-27 15:00 - 00349286 _____ () C:\Windows\PFRO.log
2014-08-01 17:27 - 2014-08-01 17:27 - 00000000 ___HD () C:\Windows\msdownld.tmp
2014-08-01 17:27 - 2014-08-01 17:22 - 00014595 _____ () C:\Windows\IE11_main.log
2014-08-01 17:27 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-08-01 17:24 - 2014-08-01 17:24 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-01 17:24 - 2014-08-01 17:24 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-01 17:24 - 2014-08-01 17:24 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-01 17:24 - 2014-08-01 17:24 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-01 17:24 - 2014-08-01 17:24 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-08-01 17:24 - 2014-08-01 17:24 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-08-01 17:24 - 2014-08-01 17:24 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-08-01 17:24 - 2014-08-01 17:24 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-08-01 17:24 - 2014-08-01 17:24 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00266424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00240824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-08-01 17:24 - 2014-08-01 17:24 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-08-01 17:24 - 2014-08-01 17:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-01 17:17 - 2014-08-01 17:17 - 00000000 ____D () C:\Users\user\AppData\Local\Adobe
2014-08-01 17:16 - 2014-08-01 17:16 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-08-01 17:16 - 2014-08-01 17:16 - 00002019 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-08-01 17:16 - 2014-08-01 17:16 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-08-01 17:16 - 2014-02-07 21:25 - 00000000 ____D () C:\ProgramData\Adobe
2014-08-01 15:52 - 2014-08-01 15:52 - 00057328 _____ () C:\Users\user\Desktop\OTL.Txt
2014-08-01 15:42 - 2014-08-01 15:42 - 00000918 _____ () C:\Users\user\Desktop\checkup.txt
2014-08-01 15:40 - 2014-08-01 15:40 - 00854390 _____ () C:\Users\user\Desktop\SecurityCheck.exe
2014-08-01 15:38 - 2014-08-01 15:38 - 00005038 _____ () C:\Users\user\Desktop\zoek-results.txt
2014-08-01 15:37 - 2014-08-01 15:25 - 00005038 _____ () C:\zoek-results.log
2014-08-01 15:34 - 2014-08-01 15:19 - 00000000 ____D () C:\zoek_backup
2014-08-01 15:19 - 2014-08-01 15:36 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-08-01 15:18 - 2014-08-01 15:18 - 01287168 _____ () C:\Users\user\Desktop\zoek.exe
2014-08-01 15:17 - 2014-08-01 15:17 - 00000759 _____ () C:\Users\user\Desktop\JRT.txt
2014-08-01 15:09 - 2014-08-01 15:09 - 00000000 ____D () C:\Windows\ERUNT
2014-08-01 15:08 - 2014-08-01 15:08 - 01016261 _____ (Thisisu) C:\Users\user\Desktop\JRT.exe
2014-08-01 15:06 - 2014-08-01 15:06 - 00001163 _____ () C:\Users\user\Desktop\AdwCleaner[S1].txt
2014-08-01 15:04 - 2014-07-27 13:34 - 00000000 ____D () C:\AdwCleaner
2014-08-01 15:02 - 2014-08-01 15:02 - 00009472 _____ () C:\Users\user\Desktop\08012014_145742.log
2014-08-01 15:00 - 2014-02-07 21:19 - 00000000 ____D () C:\Users\user\AppData\Roaming\Mozilla
2014-08-01 10:31 - 2014-02-07 21:18 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-07-31 21:56 - 2014-07-31 21:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-31 01:24 - 2014-02-08 14:57 - 00000000 ____D () C:\Users\user\AppData\Roaming\Media Player Classic
2014-07-31 01:07 - 2014-02-08 14:39 - 00000000 ____D () C:\Users\user\AppData\Roaming\uTorrent
2014-07-31 00:24 - 2014-07-27 15:12 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-07-28 17:14 - 2014-07-28 17:14 - 00274320 _____ () C:\Windows\Minidump\072814-27218-01.dmp
2014-07-28 17:14 - 2014-05-31 11:55 - 00000000 ____D () C:\Windows\Minidump
2014-07-28 14:59 - 2014-02-16 12:51 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-07-28 14:59 - 2014-02-16 12:51 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-27 15:12 - 2014-07-27 15:12 - 00000000 ____D () C:\Users\user\AppData\Roaming\AVAST Software
2014-07-27 15:12 - 2014-07-27 15:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-07-27 15:12 - 2014-07-27 15:11 - 00427360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-07-27 15:11 - 2014-07-27 15:11 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-27 15:11 - 2014-07-27 15:11 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-07-27 15:07 - 2014-07-27 15:07 - 00000000 ____D () C:\Program Files\AVAST Software
2014-07-27 15:07 - 2014-07-27 15:05 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-07-27 14:07 - 2014-06-15 14:59 - 00000000 ____D () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lightshot
2014-07-27 14:04 - 2014-07-27 14:04 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-27 14:01 - 2014-07-27 14:01 - 00002770 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-07-27 14:01 - 2014-07-27 14:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-07-27 14:01 - 2014-07-27 14:01 - 00000000 ____D () C:\Program Files\CCleaner
2014-07-27 12:29 - 2014-07-27 12:29 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-27 12:28 - 2014-07-27 12:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-27 12:28 - 2014-07-27 12:28 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-27 12:28 - 2014-02-22 01:23 - 00001106 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-27 12:28 - 2014-02-22 01:23 - 00000000 ____D () C:\Users\user\AppData\Roaming\Malwarebytes
2014-07-27 12:28 - 2014-02-22 01:23 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-26 15:04 - 2014-07-26 15:04 - 00007606 _____ () C:\Users\user\AppData\Local\Resmon.ResmonCfg
2014-07-21 22:12 - 2009-07-14 08:08 - 00032504 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-07-19 11:56 - 2014-02-07 21:24 - 00002189 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-07-06 17:45 - 2010-11-21 13:15 - 00000000 ___RD () C:\Users\Public\Recorded TV

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-28 17:08

==================== End Of Log ============================


  • 0

#12
Biscuithd

Biscuithd

    Trusted Helper

  • Malware Removal
  • 2,573 posts

Would you describe your symptoms again for me? I know you said it freezes and slows down, but could tell me more? When it freezes, is it during startup or when browsing? Does it freeze when you're typing a document? When it freezes, how long does it take before it unfreezes? Does it do anything else that is odd?


  • 0

#13
evelos

evelos

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts

It freezes when i browsing for about a minute when  the computer feels nothing. The mouse dont move neither ctr-alt-del understands. At this time when freezes the computer seems to runnning something because it sounds busy. When it comes back it works for little  time  and then freezes again doing the same circle.


  • 0

#14
Biscuithd

Biscuithd

    Trusted Helper

  • Malware Removal
  • 2,573 posts

Ok, let's take a look at your Short Cuts.

 

  • Run FRST. as you have done in the past.
  • Make sure Shortcut.txt is checked as well as Addition.txt.
  • Click Scan to start FRST.
  • When FRST finishes scanning, logs FRST.txt, addition.txt and Shortcut.txt will open.
  • Copy (Ctrl+C) and Paste (Ctrl+V) the contents of these logs into your next post please.

  • 0

#15
evelos

evelos

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts

hey,

 

here is the shortcut.txt

 

Users shortcut scan result (x64) Version: 31-07-2014 02
Ran by user at 2014-08-02 17:50:24
Running from C:\Users\user\Desktop
Boot Mode: Normal
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)



Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\µTorrent.lnk -> C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk -> C:\Windows\Installer\{AC76BA86-7AD7-1033-7B44-AB0000000001}\SC_Reader.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk -> C:\Windows\ehome\ehshell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk -> C:\Program Files\DVD Maker\DVDMaker.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk -> C:\Windows\System32\xpsrchvw.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Console RAR manual.lnk -> C:\Program Files\WinRAR\Rar.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR help.lnk -> C:\Program Files\WinRAR\WinRAR.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Documentation.lnk -> C:\Program Files (x86)\VideoLAN\VLC\Documentation.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Release Notes.lnk -> C:\Program Files (x86)\VideoLAN\VLC\NEWS.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VideoLAN Website.lnk -> C:\Program Files (x86)\VideoLAN\VLC\VideoLAN Website.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player.lnk -> C:\Program Files (x86)\VideoLAN\VLC\vlc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero Burning ROM.lnk -> C:\Program Files (x86)\Nero\Nero Core\nero.exe (Nero AG)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Access 2007.lnk -> C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\accicons.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Excel 2007.lnk -> C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Groove 2007.lnk -> C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\GrooveIcon.ico ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office InfoPath 2007.lnk -> C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\inficon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office OneNote 2007.lnk -> C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\joticon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Outlook 2007.lnk -> C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office PowerPoint 2007.lnk -> C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Publisher 2007.lnk -> C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Microsoft Office Word 2007.lnk -> C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Εργαλεία του Microsoft Office\Microsoft Office 2007 Ρυθμίσεις γλώσσας.lnk -> C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Εργαλεία του Microsoft Office\Microsoft Office Picture Manager.lnk -> C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\oisicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Εργαλεία του Microsoft Office\Διαγνωστικά του Microsoft Office.lnk -> C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Εργαλεία του Microsoft Office\Οργάνωση Clip της Microsoft.lnk -> C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\cagicon.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office\Εργαλεία του Microsoft Office\Ψηφιακό πιστοποιητικό για έργα της VBA.lnk -> C:\Windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Malwarebytes Anti-Malware.lnk -> C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Malwarebytes Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Απεγκατάσταση του Malwarebytes Anti-Malware.lnk -> C:\Program Files (x86)\Malwarebytes Anti-Malware\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk -> C:\Program Files (x86)\Malwarebytes Anti-Malware\Chameleon\Windows\chameleon.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Create Recovery Disc.lnk -> C:\Windows\System32\recdisc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Remote Assistance.lnk -> C:\Windows\System32\msra.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Media Player Classic.lnk -> C:\Program Files (x86)\K-Lite Codec Pack\Media Player Classic\mpc-hc.exe (MPC-HC Team)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Uninstall\Uninstall K-Lite Codec Pack.lnk -> C:\Program Files (x86)\K-Lite Codec Pack\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Tools\Codec Tweak Tool.lnk -> C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Tools\GraphStudio.lnk -> C:\Program Files (x86)\K-Lite Codec Pack\Tools\graphstudio.exe (MONOGRAM Mutimedia s.r.o.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Tools\Haali Muxer.lnk -> C:\Program Files (x86)\K-Lite Codec Pack\Filters\Haali\gdsmux.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Tools\MediaInfo.lnk -> C:\Program Files (x86)\K-Lite Codec Pack\Tools\mediainfo.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Tools\VobSubStrip.lnk -> C:\Program Files (x86)\K-Lite Codec Pack\Tools\VobSubStrip.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Tools\Win7DSFilterTweaker.lnk -> C:\Program Files (x86)\K-Lite Codec Pack\Tools\Win7DSFilterTweaker.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Tools\Xvid StatsReader.lnk -> C:\Program Files (x86)\K-Lite Codec Pack\Tools\StatsReader.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Help\Frequently Asked Questions.lnk -> C:\Program Files (x86)\K-Lite Codec Pack\Info\faq.htm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Codec Tweak Tool\All options.lnk -> C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk -> C:\Program Files\CCleaner\CCleaner64.exe (Piriform Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center\Catalyst Control Center.lnk -> C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe (ATI Technologies Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast\avast! Free Antivirus.lnk -> C:\Program Files\AVAST Software\Avast\avastui.exe (AVAST Software)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Data Sources (ODBC).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Print Management.lnk -> C:\Windows\System32\printmanagement.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Calculator.lnk -> C:\Windows\System32\calc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\displayswitch.lnk -> C:\Windows\System32\displayswitch.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\NetworkProjection.lnk -> C:\Windows\System32\NetProj.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sound Recorder.lnk -> C:\Windows\System32\SoundRecorder.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sticky Notes.lnk -> C:\Windows\System32\StikyNot.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Sync Center.lnk -> C:\Windows\System32\mobsync.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\Windowspowershell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\ShapeCollector.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\ShapeCollector.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\TabTip.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\TabTip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Tablet PC\Windows Journal.lnk -> C:\Program Files\Windows Journal\Journal.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\System Restore.lnk -> C:\Windows\System32\rstrui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Windows Easy Transfer Reports.lnk -> C:\Windows\System32\migwiz\PostMig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Windows Easy Transfer.lnk -> C:\Windows\System32\migwiz\migwiz.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\Windows\System32\eudcedit.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\Adobe Reader XI.lnk -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe (Adobe Systems Incorporated)
Shortcut: C:\Users\Public\Desktop\avast! Free Antivirus.lnk -> C:\Program Files\AVAST Software\Avast\avastui.exe (AVAST Software)
Shortcut: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk -> C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Malwarebytes Corporation)
Shortcut: C:\Users\Public\Desktop\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\user\Links\Desktop.lnk -> C:\Users\user\Desktop ()
Shortcut: C:\Users\user\Links\Downloads.lnk -> C:\Users\user\Downloads ()
Shortcut: C:\Users\user\Desktop\Downloads.lnk -> D:\Downloads ()
Shortcut: C:\Users\user\Desktop\Format Factory.lnk -> C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe (Free Time)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Console RAR manual.lnk -> C:\Program Files\WinRAR\Rar.txt ()
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR help.lnk -> C:\Program Files\WinRAR\WinRAR.chm ()
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe ()
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lightshot\Learn More.lnk -> C:\Users\user\AppData\Local\Skillbrains\lightshot\5.1.3.0\learnmore.url (No File)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lightshot\Lightshot .lnk -> C:\Users\user\AppData\Local\Skillbrains\lightshot\Lightshot.exe (No File)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory\FormatFactory.lnk -> C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe (Free Time)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory\Uninstall.lnk -> C:\Program Files (x86)\FreeTime\FormatFactory\uninst.exe ()
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Private Character Editor.lnk -> C:\Windows\System32\eudcedit.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Windows\SendTo\Format Factory.lnk -> C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe (Free Time)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Office\Πρόσφατο\Λήψεις.LNK -> D:\Λήψεις ()
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Office\Πρόσφατο\Παρουσίαση .LNK -> D:\Λήψεις\Παρουσίαση .ppt (No File)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Office\Πρόσφατο\Πρότυπα.LNK -> C:\Users\user\AppData\Roaming\Microsoft\Πρότυπα ()
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk -> C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\µTorrent.lnk -> C:\Program Files (x86)\uTorrent\uTorrent.exe (BitTorrent, Inc.)




ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DefaultPrograms
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk -> C:\Windows\System32\wuapp.exe (Microsoft Corporation) -> startmenu
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) -> /showgadgets
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Quick Settings\Reset VLC media player preferences and cache files.lnk -> C:\Program Files (x86)\VideoLAN\VLC\vlc.exe () -> --reset-config --reset-plugins-cache vlc://quit
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Quick Settings\Video\Set Video mode to Direct3D (no hardware acceleration).lnk -> C:\Program Files (x86)\VideoLAN\VLC\vlc.exe () -> --vout direct3d --overlay --no-directx-hw-yuv --save-config vlc://quit
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Quick Settings\Video\Set Video mode to Direct3D.lnk -> C:\Program Files (x86)\VideoLAN\VLC\vlc.exe () -> --vout direct3d --overlay --directx-hw-yuv --save-config vlc://quit
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Quick Settings\Video\Set Video mode to DirectX (no hardware acceleration).lnk -> C:\Program Files (x86)\VideoLAN\VLC\vlc.exe () -> --vout directx --no-overlay --no-directx-hw-yuv --save-config vlc://quit
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Quick Settings\Video\Set Video mode to DirectX (no video overlay).lnk -> C:\Program Files (x86)\VideoLAN\VLC\vlc.exe () -> --vout directx --no-overlay --directx-hw-yuv --save-config vlc://quit
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Quick Settings\Video\Set Video mode to DirectX.lnk -> C:\Program Files (x86)\VideoLAN\VLC\vlc.exe () -> --vout directx --overlay --directx-hw-yuv --save-config vlc://quit
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Quick Settings\Video\Set Video mode to OpenGL.lnk -> C:\Program Files (x86)\VideoLAN\VLC\vlc.exe () -> --vout opengl --overlay --save-config vlc://quit
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Quick Settings\Interface\Set Main Interface to Qt (default).lnk -> C:\Program Files (x86)\VideoLAN\VLC\vlc.exe () -> -I qt --save-config vlc://quit
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Quick Settings\Interface\Set Main Interface to Skinnable.lnk -> C:\Program Files (x86)\VideoLAN\VLC\vlc.exe () -> -I skins --save-config vlc://quit
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Quick Settings\Audio\Set Audio mode to DirectX (default).lnk -> C:\Program Files (x86)\VideoLAN\VLC\vlc.exe () -> --aout aout_directx --save-config vlc://quit
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Quick Settings\Audio\Set Audio mode to Waveout.lnk -> C:\Program Files (x86)\VideoLAN\VLC\vlc.exe () -> --aout waveout --save-config vlc://quit
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero\Nero Express.lnk -> C:\Program Files (x86)\Nero\Nero Core\nero.exe (Nero AG) -> /w
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Maintenance\Backup and Restore Center.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.BackupAndRestore
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\DirectVobSub.lnk -> C:\Windows\SysWOW64\rundll32.exe (Microsoft Corporation) -> "C:\Program Files (x86)\K-Lite Codec Pack\Filters\vsfilter.dll",DirectVobSub
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\ffdshow audio decoder.lnk -> C:\Windows\SysWOW64\rundll32.exe (Microsoft Corporation) -> "C:\Program Files (x86)\K-Lite Codec Pack\ffdshow\ffdshow.ax",configureAudio
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\ffdshow DXVA video decoder.lnk -> C:\Windows\SysWOW64\rundll32.exe (Microsoft Corporation) -> "C:\Program Files (x86)\K-Lite Codec Pack\ffdshow\ffdshow.ax",configureDXVA
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\ffdshow VFW interface.lnk -> C:\Windows\SysWOW64\rundll32.exe (Microsoft Corporation) -> "C:\Windows\SysWOW64\ff_vfw.dll",configureVFW
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\ffdshow video decoder.lnk -> C:\Windows\SysWOW64\rundll32.exe (Microsoft Corporation) -> "C:\Program Files (x86)\K-Lite Codec Pack\ffdshow\ffdshow.ax",configure
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\Haali Media Splitter.lnk -> C:\Windows\SysWOW64\rundll32.exe (Microsoft Corporation) -> "C:\Program Files (x86)\K-Lite Codec Pack\Filters\Haali\splitter.ax",Configure
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\Haali video renderer.lnk -> C:\Program Files (x86)\K-Lite Codec Pack\Tools\dsconfig.exe (MONOGRAM Multimedia, s.r.o.) -> {760A8F35-97E7-479D-AAF5-DA9EFF95D751}
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\madFLAC.lnk -> C:\Program Files (x86)\K-Lite Codec Pack\Tools\dsconfig.exe (MONOGRAM Multimedia, s.r.o.) -> {6B257121-CBB6-46B3-ABFA-B14DFA98C4A6}
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\Reset to recommended settings.lnk -> C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe () -> /showsections=reset_settings
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\VP7 decoder.lnk -> C:\Program Files (x86)\K-Lite Codec Pack\Tools\dsconfig.exe (MONOGRAM Multimedia, s.r.o.) -> {C204438D-6E1A-4309-B09C-0C0F749863AF}
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Configuration\Xvid encoder.lnk -> C:\Windows\SysWOW64\rundll32.exe (Microsoft Corporation) -> "C:\Windows\SysWOW64\xvidvfw.dll",Configure
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Codec Tweak Tool\Generate log with system information.lnk -> C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe () -> /showsections=generate_log
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Codec Tweak Tool\Manage ACM and VFW codecs.lnk -> C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe () -> /showsections=codec_management
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Codec Tweak Tool\Manage DirectShow filters.lnk -> C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe () -> /showsections=dsfilter_management
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack\Codec Tweak Tool\Manage preferred DirectShow source filters.lnk -> C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe () -> /showsections=sourcefilters
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Catalyst Control Center\Βοήθεια.lnk -> C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.exe (ATI Technologies Inc.) -> Start Help -help
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Security Configuration Management.lnk -> C:\Windows\System32\secpol.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows PowerShell Modules.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation) -> -NoExit -ImportSystemModules
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation) -> /open
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Welcome Center.lnk -> C:\Windows\System32\rundll32.exe (Microsoft Corporation) -> %SystemRoot%\system32\OobeFldr.dll,ShowWelcomeCenter LaunchedBy_StartMenuShortcut
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.EaseOfAccessCenter
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FormatFactory\Help.lnk -> C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe (Free Time) -> /help
ShortcutWithArgument: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) ->  -extoff
ShortcutWithArgument: C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Accessibility\Ease of Access.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.EaseOfAccessCenter
ShortcutWithArgument: C:\Users\user\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\user\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1


InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner Homepage.url -> hxxp://www.piriform.com/ccleaner
InternetURL: C:\Users\user\Favorites\Τοποθεσίες Web της Microsoft\Microsoft Store.url -> hxxp://go.microsoft.com/fwlink/?linkid=140813
InternetURL: C:\Users\user\Favorites\Windows Live\Windows Live Mail.url -> hxxp://go.microsoft.com/fwlink/?LinkId=72681
InternetURL: C:\Users\user\Favorites\Windows Live\Windows Live Spaces.url -> hxxp://go.microsoft.com/fwlink/?LinkId=72682
InternetURL: C:\Users\user\Favorites\Windows Live\Λήψη Windows Live.url -> hxxp://go.microsoft.com/fwlink/?LinkId=72700

==================== End of log =============================
 

 

 

the addition.txt

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 31-07-2014 02
Ran by user at 2014-08-02 17:49:52
Running from C:\Users\user\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKLM-x32\...\uTorrent) (Version: 2.2.1 - )
Adobe Flash Player 14 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
AMD APP SDK Runtime (Version: 2.4.650.9 - Advanced Micro Devices Inc.) Hidden
ATI AVIVO64 Codecs (Version: 11.6.0.10524 - ATI Technologies Inc.) Hidden
ATI Catalyst Install Manager (HKLM\...\{3FD3FC64-DA16-318E-DFD5-57466FF5FEB5}) (Version: 3.0.829.0 - ATI Technologies, Inc.)
avast! Free Antivirus (HKLM-x32\...\Avast) (Version: 9.0.2021 - AVAST Software)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.66.1075 - AB Team, d.o.o.)
Catalyst Control Center - Branding (x32 Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center (x32 Version: 2011.0524.2352.41027 - Επωνυμία Επιχείρησης) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2011.0524.2352.41027 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (x32 Version: 2011.0524.2352.41027 - ATI) Hidden
Catalyst Control Center Profiles Desktop (x32 Version: 2011.0524.2352.41027 - ATI) Hidden
CCC Help Chinese Standard (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Chinese Traditional (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Czech (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Danish (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Dutch (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help English (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Finnish (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help French (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help German (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Greek (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Hungarian (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Italian (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Japanese (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Korean (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Norwegian (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Polish (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Portuguese (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Russian (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Spanish (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Swedish (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Thai (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
CCC Help Turkish (x32 Version: 2011.0524.2351.41027 - ATI) Hidden
ccc-utility64 (Version: 2011.0524.2352.41027 - ATI) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.16 - Piriform)
FormatFactory 2.60 (HKLM-x32\...\FormatFactory) (Version: 2.60 - Free Time)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 36.0.1985.125 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
HydraVision (x32 Version: 4.2.206.0 - ATI Technologies Inc.) Hidden
Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1930 - Intel Corporation)
K-Lite Codec Pack 7.0.0 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 7.0.0 - )
Malwarebytes Anti-Malware έκδοση 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Microsoft Office Access MUI (Greek) 2007 (x32 Version: 12.0.4818.1000 - Microsoft Corporation) Hidden
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (Greek) 2007 (x32 Version: 12.0.4818.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (Greek) 2007 (x32 Version: 12.0.4818.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (Greek) 2007 (x32 Version: 12.0.4818.1000 - Microsoft Corporation) Hidden
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (Greek) 2007 (x32 Version: 12.0.4818.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (Greek) 2007 (x32 Version: 12.0.4818.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (Greek) 2007 (x32 Version: 12.0.4818.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proof (Greek) 2007 (x32 Version: 12.0.4818.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Greek) 2007 (x32 Version: 12.0.4818.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (Greek) 2007 (x32 Version: 12.0.4818.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (Greek) 2007 (Version: 12.0.4818.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (Greek) 2007 (x32 Version: 12.0.4818.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (Greek) 2007 (x32 Version: 12.0.4818.1000 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Mozilla Firefox 31.0 (x86 el) (HKLM-x32\...\Mozilla Firefox 31.0 (x86 el)) (Version: 31.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Nero 8 Micro v8.1.1.4 (HKLM-x32\...\Nero8114_Micro_is1) (Version:  - www.nero.com)
The KMPlayer (HKLM-x32\...\The KMPlayer) (Version: 3.6.0.87 - KMP Media co., Ltd)
VLC media player 1.0.0-git-20080927-0008 (HKLM-x32\...\VLC media player) (Version: 1.0.0-git-20080927-0008 - VideoLAN Team)
WinRAR 4.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 4.00.0 - win.rar GmbH)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


==================== Restore Points  =========================

01-08-2014 14:23:00 Πρόγραμμα εγκατάστασης λειτουργικών μονάδων των Windows

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 05:34 - 2014-08-01 14:58 - 00000098 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
::1       localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {09DD3040-AADD-4107-8887-3276E99C31C4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-07] (Google Inc.)
Task: {2AB52D7B-1B63-4439-8119-01B591F87034} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-07] (Google Inc.)
Task: {4E889591-00A4-4BDC-89FC-66196508A988} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-07-23] (Piriform Ltd)
Task: {B111C40A-A728-4188-BDBB-DB5D1AB2B607} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-07-27] (AVAST Software)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-02-18 00:43 - 2011-03-02 13:40 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll
2011-03-14 14:20 - 2011-03-14 14:20 - 00430080 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2011-03-14 14:20 - 2011-03-14 14:20 - 00032768 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\BrandingResources.dll
2011-05-24 23:50 - 2011-05-24 23:50 - 00243712 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2014-07-27 15:11 - 2014-07-27 15:11 - 00301152 _____ () C:\Program Files\AVAST Software\Avast\aswProperty.dll
2014-08-02 15:21 - 2014-08-02 15:21 - 02795008 _____ () C:\Program Files\AVAST Software\Avast\defs\14080201\algo.dll
2014-07-27 15:11 - 2014-07-27 15:11 - 19329904 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)


==================== Faulty Device Manager Devices =============

Name: Ελεγκτής Ethernet
Description: Ελεγκτής Ethernet
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (08/02/2014 11:21:29 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/01/2014 09:21:32 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/01/2014 05:29:51 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/01/2014 03:38:10 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (08/02/2014 11:20:56 AM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: NT AUTHORITY)
Description: Κάποιες δυνατότητες διαχείρισης της απόδοσης ισχύος του επεξεργαστή απενεργοποιήθηκαν λόγω γνωστού προβλήματος με το υλικολογισμικό. Ζητήστε από τον κατασκευαστή του υπολογιστή ενημερωμένες εκδόσεις υλικολογισμικού.

Error: (08/02/2014 04:30:43 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (08/01/2014 09:20:54 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: NT AUTHORITY)
Description: Κάποιες δυνατότητες διαχείρισης της απόδοσης ισχύος του επεξεργαστή απενεργοποιήθηκαν λόγω γνωστού προβλήματος με το υλικολογισμικό. Ζητήστε από τον κατασκευαστή του υπολογιστή ενημερωμένες εκδόσεις υλικολογισμικού.

Error: (08/01/2014 05:44:59 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (08/01/2014 05:28:39 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: NT AUTHORITY)
Description: Κάποιες δυνατότητες διαχείρισης της απόδοσης ισχύος του επεξεργαστή απενεργοποιήθηκαν λόγω γνωστού προβλήματος με το υλικολογισμικό. Ζητήστε από τον κατασκευαστή του υπολογιστή ενημερωμένες εκδόσεις υλικολογισμικού.

Error: (08/01/2014 05:27:42 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (08/01/2014 03:37:37 PM) (Source: Microsoft-Windows-Kernel-Processor-Power) (EventID: 6) (User: NT AUTHORITY)
Description: Κάποιες δυνατότητες διαχείρισης της απόδοσης ισχύος του επεξεργαστή απενεργοποιήθηκαν λόγω γνωστού προβλήματος με το υλικολογισμικό. Ζητήστε από τον κατασκευαστή του υπολογιστή ενημερωμένες εκδόσεις υλικολογισμικού.

Error: (08/01/2014 03:37:05 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (08/01/2014 03:33:59 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Η υπηρεσία PEVSystemStart έχει σημανθεί ως υπηρεσία αλληλεπίδρασης.  Όμως οι ρυθμίσεις του συστήματος δεν επιτρέπουν τις αλληλεπιδραστικές υπηρεσίες.  Αυτή η υπηρεσία ίσως να μην λειτουργεί σωστά.

Error: (08/01/2014 03:33:58 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Η υπηρεσία PEVSystemStart έχει σημανθεί ως υπηρεσία αλληλεπίδρασης.  Όμως οι ρυθμίσεις του συστήματος δεν επιτρέπουν τις αλληλεπιδραστικές υπηρεσίες.  Αυτή η υπηρεσία ίσως να μην λειτουργεί σωστά.


Microsoft Office Sessions:
=========================

==================== Memory info ===========================

Percentage of memory in use: 23%
Total physical RAM: 3263.3 MB
Available physical RAM: 2481.58 MB
Total Pagefile: 6524.79 MB
Available Pagefile: 5257.3 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:43.85 GB) (Free:21.65 GB) NTFS
Drive d: (Νέος τόμος) (Fixed) (Total:421.81 GB) (Free:154.07 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 466 GB) (Disk ID: F7512B6E)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=44 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=422 GB) - (Type=07 NTFS)

==================== End Of Log ============================

 

 

 

 

and the frst.txt

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 31-07-2014 02
Ran by user (administrator) on USER-PC on 02-08-2014 17:49:05
Running from C:\Users\user\Desktop
Platform: Windows 7 Ultimate Service Pack 1 (X64) OS Language: Ελληνικά (Ελλάδας)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(BitTorrent, Inc.) C:\Program Files (x86)\uTorrent\uTorrent.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2011-05-24] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-07-31] (AVAST Software)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2992675936-2286735739-2217034245-1001\...\Run: [LightShot] => C:\Users\user\AppData\Local\Skillbrains\lightshot\Lightshot.exe Flags: uninsdeletevalue
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://gr.msn.com/?o...U219DHP&pc=U219
SearchScopes: HKCU - {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.co...q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\oi2qrrnc.default
FF Homepage: https://www.google.gr/
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazon-en-GB.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-en-GB.xml
FF HKLM-x32\...\Firefox\Extensions: [[email protected]] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-07-27]

Chrome:
=======
CHR HomePage:
CHR Extension: (Xmarks Bookmark Sync) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajpgkpeckebdhofmmjfgcjjiiejpodla [2014-02-08]
CHR Extension: (Έγγραφα Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-02-07]
CHR Extension: (Google Drive ) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-02-07]
CHR Extension: (YouTube) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-02-07]
CHR Extension: (Adblock Plus) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-02-08]
CHR Extension: (Αναζήτηση Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-02-07]
CHR Extension: (I <3 House Music) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbihiclmkdmbnihofkkhlmdefkclbfkj [2014-06-22]
CHR Extension: (AdBlock) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-02-08]
CHR Extension: (avast! Online Security) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-07-27]
CHR Extension: (Πορτοφόλι Google) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-07]
CHR Extension: (PDF Viewer) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\oemmndcbldboiebfnladdacbdfmadadm [2014-02-09]
CHR Extension: (Gmail) - C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-02-07]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-27]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-27] (AVAST Software)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-07-27] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-07-27] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-07-27] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-07-27] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1041168 2014-07-27] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [427360 2014-07-27] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [92008 2014-07-27] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [224896 2014-07-27] ()
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-02 17:49 - 2014-08-02 17:49 - 00008383 _____ () C:\Users\user\Desktop\FRST.txt
2014-08-02 17:46 - 2014-08-01 22:29 - 02094080 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe
2014-08-01 22:29 - 2014-08-02 17:49 - 00000000 ____D () C:\FRST
2014-08-01 17:30 - 2014-08-01 17:30 - 00000000 __SHD () C:\Users\user\AppData\Local\EmieUserList
2014-08-01 17:30 - 2014-08-01 17:30 - 00000000 __SHD () C:\Users\user\AppData\Local\EmieSiteList
2014-08-01 17:27 - 2014-08-01 17:27 - 00000000 ___HD () C:\Windows\msdownld.tmp
2014-08-01 17:27 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2014-08-01 17:24 - 2014-08-01 17:24 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-01 17:24 - 2014-08-01 17:24 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-01 17:24 - 2014-08-01 17:24 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-01 17:24 - 2014-08-01 17:24 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-01 17:24 - 2014-08-01 17:24 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-08-01 17:24 - 2014-08-01 17:24 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-08-01 17:24 - 2014-08-01 17:24 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-08-01 17:24 - 2014-08-01 17:24 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-08-01 17:24 - 2014-08-01 17:24 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00266424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00240824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-08-01 17:24 - 2014-08-01 17:24 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-08-01 17:24 - 2014-08-01 17:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-01 17:22 - 2014-08-01 17:27 - 00014595 _____ () C:\Windows\IE11_main.log
2014-08-01 17:17 - 2014-08-01 17:17 - 00000000 ____D () C:\Users\user\AppData\Local\Adobe
2014-08-01 17:16 - 2014-08-01 17:16 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-08-01 17:16 - 2014-08-01 17:16 - 00002019 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-08-01 17:16 - 2014-08-01 17:16 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-08-01 15:52 - 2014-08-01 15:52 - 00057328 _____ () C:\Users\user\Desktop\OTL.Txt
2014-08-01 15:42 - 2014-08-01 15:42 - 00000918 _____ () C:\Users\user\Desktop\checkup.txt
2014-08-01 15:40 - 2014-08-01 15:40 - 00854390 _____ () C:\Users\user\Desktop\SecurityCheck.exe
2014-08-01 15:38 - 2014-08-01 15:38 - 00005038 _____ () C:\Users\user\Desktop\zoek-results.txt
2014-08-01 15:36 - 2014-08-01 15:19 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-08-01 15:25 - 2014-08-01 15:37 - 00005038 _____ () C:\zoek-results.log
2014-08-01 15:19 - 2014-08-01 15:34 - 00000000 ____D () C:\zoek_backup
2014-08-01 15:18 - 2014-08-01 15:18 - 01287168 _____ () C:\Users\user\Desktop\zoek.exe
2014-08-01 15:17 - 2014-08-01 15:17 - 00000759 _____ () C:\Users\user\Desktop\JRT.txt
2014-08-01 15:09 - 2014-08-01 15:09 - 00000000 ____D () C:\Windows\ERUNT
2014-08-01 15:08 - 2014-08-01 15:08 - 01016261 _____ (Thisisu) C:\Users\user\Desktop\JRT.exe
2014-08-01 15:06 - 2014-08-01 15:06 - 00001163 _____ () C:\Users\user\Desktop\AdwCleaner[S1].txt
2014-08-01 15:02 - 2014-08-01 15:02 - 00009472 _____ () C:\Users\user\Desktop\08012014_145742.log
2014-07-31 21:56 - 2014-07-31 21:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-28 17:14 - 2014-07-28 17:14 - 00274320 _____ () C:\Windows\Minidump\072814-27218-01.dmp
2014-07-27 15:12 - 2014-08-01 21:21 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-07-27 15:12 - 2014-07-31 00:24 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-07-27 15:12 - 2014-07-27 15:12 - 00000000 ____D () C:\Users\user\AppData\Roaming\AVAST Software
2014-07-27 15:12 - 2014-07-27 15:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-07-27 15:11 - 2014-07-27 15:12 - 00427360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-07-27 15:11 - 2014-07-27 15:11 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-27 15:11 - 2014-07-27 15:11 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-07-27 15:07 - 2014-07-27 15:07 - 00000000 ____D () C:\Program Files\AVAST Software
2014-07-27 15:05 - 2014-07-27 15:07 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-07-27 15:00 - 2014-08-01 17:28 - 00349286 _____ () C:\Windows\PFRO.log
2014-07-27 14:04 - 2014-08-02 11:21 - 00001288 _____ () C:\Windows\setupact.log
2014-07-27 14:04 - 2014-07-27 14:04 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-27 14:01 - 2014-07-27 14:01 - 00002770 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-07-27 14:01 - 2014-07-27 14:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-07-27 14:01 - 2014-07-27 14:01 - 00000000 ____D () C:\Program Files\CCleaner
2014-07-27 13:35 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-07-27 13:34 - 2014-08-01 15:04 - 00000000 ____D () C:\AdwCleaner
2014-07-27 12:29 - 2014-07-27 12:29 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-27 12:28 - 2014-07-27 12:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-27 12:28 - 2014-07-27 12:28 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-27 12:28 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-07-27 12:28 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-07-26 15:04 - 2014-07-26 15:04 - 00007606 _____ () C:\Users\user\AppData\Local\Resmon.ResmonCfg

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-02 17:49 - 2014-08-02 17:49 - 00008383 _____ () C:\Users\user\Desktop\FRST.txt
2014-08-02 17:49 - 2014-08-01 22:29 - 00000000 ____D () C:\FRST
2014-08-02 17:48 - 2014-02-08 14:39 - 00000000 ____D () C:\Users\user\AppData\Roaming\uTorrent
2014-08-02 17:03 - 2014-02-07 21:22 - 00001176 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-02 16:50 - 2014-02-07 21:22 - 00001180 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-02 11:28 - 2009-07-14 07:45 - 00021072 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-02 11:28 - 2009-07-14 07:45 - 00021072 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-02 11:24 - 2014-02-07 19:34 - 01195563 _____ () C:\Windows\WindowsUpdate.log
2014-08-02 11:21 - 2014-07-27 14:04 - 00001288 _____ () C:\Windows\setupact.log
2014-08-02 11:21 - 2009-07-14 08:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-01 23:25 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\rescache
2014-08-01 22:29 - 2014-08-02 17:46 - 02094080 _____ (Farbar) C:\Users\user\Desktop\FRST64.exe
2014-08-01 21:21 - 2014-07-27 15:12 - 00004182 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-08-01 17:30 - 2014-08-01 17:30 - 00000000 __SHD () C:\Users\user\AppData\Local\EmieUserList
2014-08-01 17:30 - 2014-08-01 17:30 - 00000000 __SHD () C:\Users\user\AppData\Local\EmieSiteList
2014-08-01 17:29 - 2014-02-07 19:37 - 00001429 _____ () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-08-01 17:29 - 2014-02-07 19:30 - 00000000 ____D () C:\Windows\Panther
2014-08-01 17:28 - 2014-07-27 15:00 - 00349286 _____ () C:\Windows\PFRO.log
2014-08-01 17:27 - 2014-08-01 17:27 - 00000000 ___HD () C:\Windows\msdownld.tmp
2014-08-01 17:27 - 2014-08-01 17:22 - 00014595 _____ () C:\Windows\IE11_main.log
2014-08-01 17:27 - 2009-07-14 06:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-08-01 17:24 - 2014-08-01 17:24 - 23464448 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 17276416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 13527040 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 11742208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 05721088 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02768384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-08-01 17:24 - 2014-08-01 17:24 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-01 17:24 - 2014-08-01 17:24 - 02266112 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02179072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 02040832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-01 17:24 - 2014-08-01 17:24 - 01964544 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-08-01 17:24 - 2014-08-01 17:24 - 01791488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01393664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01139200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00631808 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-08-01 17:24 - 2014-08-01 17:24 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-08-01 17:24 - 2014-08-01 17:24 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00608768 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00598016 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00526336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00452608 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00442368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-08-01 17:24 - 2014-08-01 17:24 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-08-01 17:24 - 2014-08-01 17:24 - 00292864 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00266424 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00240824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00239616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-08-01 17:24 - 2014-08-01 17:24 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-08-01 17:24 - 2014-08-01 17:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-08-01 17:24 - 2014-08-01 17:24 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-08-01 17:24 - 2014-08-01 17:24 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-08-01 17:17 - 2014-08-01 17:17 - 00000000 ____D () C:\Users\user\AppData\Local\Adobe
2014-08-01 17:16 - 2014-08-01 17:16 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-08-01 17:16 - 2014-08-01 17:16 - 00002019 _____ () C:\Users\Public\Desktop\Adobe Reader XI.lnk
2014-08-01 17:16 - 2014-08-01 17:16 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-08-01 17:16 - 2014-02-07 21:25 - 00000000 ____D () C:\ProgramData\Adobe
2014-08-01 15:52 - 2014-08-01 15:52 - 00057328 _____ () C:\Users\user\Desktop\OTL.Txt
2014-08-01 15:42 - 2014-08-01 15:42 - 00000918 _____ () C:\Users\user\Desktop\checkup.txt
2014-08-01 15:40 - 2014-08-01 15:40 - 00854390 _____ () C:\Users\user\Desktop\SecurityCheck.exe
2014-08-01 15:38 - 2014-08-01 15:38 - 00005038 _____ () C:\Users\user\Desktop\zoek-results.txt
2014-08-01 15:37 - 2014-08-01 15:25 - 00005038 _____ () C:\zoek-results.log
2014-08-01 15:34 - 2014-08-01 15:19 - 00000000 ____D () C:\zoek_backup
2014-08-01 15:19 - 2014-08-01 15:36 - 00024064 _____ () C:\Windows\zoek-delete.exe
2014-08-01 15:18 - 2014-08-01 15:18 - 01287168 _____ () C:\Users\user\Desktop\zoek.exe
2014-08-01 15:17 - 2014-08-01 15:17 - 00000759 _____ () C:\Users\user\Desktop\JRT.txt
2014-08-01 15:09 - 2014-08-01 15:09 - 00000000 ____D () C:\Windows\ERUNT
2014-08-01 15:08 - 2014-08-01 15:08 - 01016261 _____ (Thisisu) C:\Users\user\Desktop\JRT.exe
2014-08-01 15:06 - 2014-08-01 15:06 - 00001163 _____ () C:\Users\user\Desktop\AdwCleaner[S1].txt
2014-08-01 15:04 - 2014-07-27 13:34 - 00000000 ____D () C:\AdwCleaner
2014-08-01 15:02 - 2014-08-01 15:02 - 00009472 _____ () C:\Users\user\Desktop\08012014_145742.log
2014-08-01 15:00 - 2014-02-07 21:19 - 00000000 ____D () C:\Users\user\AppData\Roaming\Mozilla
2014-08-01 10:31 - 2014-02-07 21:18 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-07-31 21:56 - 2014-07-31 21:56 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-07-31 01:24 - 2014-02-08 14:57 - 00000000 ____D () C:\Users\user\AppData\Roaming\Media Player Classic
2014-07-31 00:24 - 2014-07-27 15:12 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-07-28 17:14 - 2014-07-28 17:14 - 00274320 _____ () C:\Windows\Minidump\072814-27218-01.dmp
2014-07-28 17:14 - 2014-05-31 11:55 - 00000000 ____D () C:\Windows\Minidump
2014-07-28 14:59 - 2014-02-16 12:51 - 00699056 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-07-28 14:59 - 2014-02-16 12:51 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-07-27 15:12 - 2014-07-27 15:12 - 00000000 ____D () C:\Users\user\AppData\Roaming\AVAST Software
2014-07-27 15:12 - 2014-07-27 15:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast
2014-07-27 15:12 - 2014-07-27 15:11 - 00427360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 01041168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00307344 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-07-27 15:11 - 2014-07-27 15:11 - 00224896 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00092008 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-07-27 15:11 - 2014-07-27 15:11 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-07-27 15:11 - 2014-07-27 15:11 - 00029208 _____ () C:\Windows\system32\Drivers\aswHwid.sys
2014-07-27 15:07 - 2014-07-27 15:07 - 00000000 ____D () C:\Program Files\AVAST Software
2014-07-27 15:07 - 2014-07-27 15:05 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-07-27 14:07 - 2014-06-15 14:59 - 00000000 ____D () C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lightshot
2014-07-27 14:04 - 2014-07-27 14:04 - 00000000 _____ () C:\Windows\setuperr.log
2014-07-27 14:01 - 2014-07-27 14:01 - 00002770 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-07-27 14:01 - 2014-07-27 14:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2014-07-27 14:01 - 2014-07-27 14:01 - 00000000 ____D () C:\Program Files\CCleaner
2014-07-27 12:29 - 2014-07-27 12:29 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-07-27 12:28 - 2014-07-27 12:28 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-07-27 12:28 - 2014-07-27 12:28 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-07-27 12:28 - 2014-02-22 01:23 - 00001106 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-07-27 12:28 - 2014-02-22 01:23 - 00000000 ____D () C:\Users\user\AppData\Roaming\Malwarebytes
2014-07-27 12:28 - 2014-02-22 01:23 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-07-26 15:04 - 2014-07-26 15:04 - 00007606 _____ () C:\Users\user\AppData\Local\Resmon.ResmonCfg
2014-07-21 22:12 - 2009-07-14 08:08 - 00032504 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-07-19 11:56 - 2014-02-07 21:24 - 00002189 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-07-06 17:45 - 2010-11-21 13:15 - 00000000 ___RD () C:\Users\Public\Recorded TV

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-07-28 17:08

==================== End Of Log ============================


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP