Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer talks with ads from time to time.


  • This topic is locked This topic is locked
25 replies to this topic

#1 jovson

jovson

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sweden
  • Local time:03:16 AM

Posted 29 October 2014 - 03:44 AM

Hi.

I have tried a nuber of programs to try to Clean this virus, but with no success. I thought i have cleand the coputer, and i don´t find any result in cleaningprograms, but to day it talked with a ad again...aarrghh.

Getting crazy about this and i need professionell help.

 

This is my first post.

 



BC AdBot (Login to Remove)

 


#2 jovson

jovson
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sweden
  • Local time:03:16 AM

Posted 30 October 2014 - 05:11 PM

I hope i did Everything right with the question, but i sen a dds.txt from the scan, so maby you can help me with this.

Attached Files

  • Attached File  dds.txt   22.92KB   4 downloads


#3 jovson

jovson
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sweden
  • Local time:03:16 AM

Posted 03 November 2014 - 03:31 AM

Hi. Am i doing anything wrong with the post? I am new about this, i am not getting any help. I hope i have get the right settings in my profile. Greateful for help about this.



#4 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,740 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:16 PM

Posted 03 November 2014 - 03:45 AM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/553798 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from the following link if you no longer have it available and save it to your destop.

    DDS.com Download Link
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control can be found HERE.

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#5 jovson

jovson
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sweden
  • Local time:03:16 AM

Posted 03 November 2014 - 04:03 AM

I do have a "generic" original Windows 7 Dvd, but the computer came preinstalled.

 

I have been desperate and tried every program there is. Malwarebytes, Cclenaer, Superantispyware, Hitmanpro and so on.

 

 

Attached Files



#6 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:09:16 PM

Posted 04 November 2014 - 07:30 PM

Hello jovson,

  • Welcome to Bleeping Computer.
  • My name is fireman4it and I will be helping you with your Malware problem.

    Please take note of some guidelines for this fix:
  • Refrain from making any changes to your computer including installing/uninstall programs, deleting files, modifying the registry, and running scanners or tools.
      
  • If you do not understand any step(s) provided, please do not hesitate to ask before continuing.
      
  • Even if things appear to be better, it might not mean we are finished. Please continue to follow my instructions and reply back until I give you the "all clean".
  • In the upper right hand corner of the topic you will see a button called Follow This Topic.I suggest you click it and select Immediate E-Mail notification and click on Follow This Topic. This way you will be advised when we respond to your topic and facilitate the cleaning of your machine.

      
  • Finally, please reply using the Post  button in the lower right hand corner of your screen. Do not start a new topic. The logs that you post should be pasted directly into the reply, unless they do not fit into the post.
  •   I will be analyzing your log. I will get back to you with instructions.

 

 

1.

Please download AdwCleaner by Xplode and save to your Desktop.

  • Double click on AdwCleaner.exe to run the tool .
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer.
  • After the scan has finished...
  • Click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.

 

 

2.

  •    
  • Download RogueKiller on the desktop
       
  • Close all the running processes
       
  • Under Vista/Seven, right click -> Run as Administrator
       
  • Otherwise just double-click on RogueKiller.exe
       
  • When prompted, Click Scan 
       
  • A report should open, give its content to your helper. (RKreport could also be found next to the executable)
       
  • If RogueKiller has been blocked, do not hesitate to try a few times more. If really won't run, rename in winlogon.exe (or winlogon.com) and try again

 

 

3.

Please download Farbar Recovery Scan Tool and save it to your Desktop.

Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

  • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will produce a log called FRST.txt in the same directory the tool is run from.
  • Please copy and paste log back here.
  • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#7 jovson

jovson
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sweden
  • Local time:03:16 AM

Posted 05 November 2014 - 03:37 AM

Hi and thank you so much for your help.

 

 

# AdwCleaner v3.311 - Report created 05/11/2014 at 09:17:57
# Updated 30/09/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : Mikael - MIKAEL-HP
# Running from : G:\Mikael Larsson\Bleeping\2-AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17344

*************************

AdwCleaner[R0].txt - [1342 octets] - [23/10/2014 17:26:33]
AdwCleaner[R1].txt - [1553 octets] - [24/10/2014 15:23:34]
AdwCleaner[R2].txt - [1252 octets] - [25/10/2014 16:08:40]
AdwCleaner[R3].txt - [1157 octets] - [25/10/2014 16:46:39]
AdwCleaner[R4].txt - [1041 octets] - [05/11/2014 09:17:09]
AdwCleaner[S0].txt - [1422 octets] - [23/10/2014 17:27:39]
AdwCleaner[S1].txt - [1218 octets] - [25/10/2014 16:48:39]
AdwCleaner[S2].txt - [964 octets] - [05/11/2014 09:17:57]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1023 octets] ##########

 

RogueKiller V10.0.4.0 (x64) [Oct 29 2014] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Mikael [Administrator]
Mode : Scan -- Date : 11/05/2014  09:27:26

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 0 ¤¤¤

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: ST500DM0 02-1BD142 SCSI Disk Device +++++
--- User ---
[MBR] 3610fbae84ed1f916775b59d6c28690b
[BSP] a7c96a28648855e5e1c3c4a4a6fa5d29 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 1025 MB
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 2101248 | Size: 463377 MB
2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 951097344 | Size: 12432 MB
3 - [XXXXXX] FAT32-LBA (0xc) [VISIBLE] Offset (sectors): 976558080 | Size: 100 MB
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: Kingston DataTraveler 2.0 USB Device +++++
--- User ---
[MBR] a6863686ec501448ba2cbb35ab3cd346
[BSP] d40b6c28791521410913a00989adf646 : Unknown MBR Code
Partition table:
0 - [ACTIVE] FAT32-LBA (0xc) [VISIBLE] Offset (sectors): 63 | Size: 14761 MB
User = LL1 ... OK
Error reading LL2 MBR! ([32] Begäran stöds inte. )

============================================
RKreport_DEL_10282014_203429.log - RKreport_SCN_10282014_203311.log

 

 

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 04-11-2014
Ran by Mikael (administrator) on MIKAEL-HP on 05-11-2014 09:32:51
Running from G:\Mikael Larsson\Bleeping
Loaded Profile: Mikael (Available profiles: Mikael)
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: Svenska (Sverige)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
(F-Secure Corporation) C:\Program Files (x86)\Telia\Telias sakerhetstjanster\fshoster32.exe
(F-Secure Corporation) C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\CCF_Reputation\fsorsp.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(PDF Complete Inc) C:\Program Files (x86)\PDF Complete\pdfsvc.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
(F-Secure Corporation) C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\ComputerSecurity\Common\FSMA32.EXE
(F-Secure Corporation) C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\ComputerSecurity\Common\FSHDLL64.EXE
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Acresso Corporation) C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
(Spotify Ltd) C:\Users\Mikael\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
(Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfPro5Hook.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(F-Secure Corporation) C:\Program Files (x86)\Telia\Telias sakerhetstjanster\fshoster32.exe
(F-Secure Corporation) C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\ComputerSecurity\Common\FSM32.EXE
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(F-Secure Corporation) C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\ComputerSecurity\Anti-Virus\fsgk32.exe
(F-Secure Corporation) C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\ComputerSecurity\Anti-Virus\fssm32.exe
(Hewlett-Packard Company) C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe
(Farbar) G:\Mikael Larsson\Bleeping\4-FRST64.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7570136 2014-10-27] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [287592 2014-03-26] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2014-10-27] (Intel Corporation)
HKLM-x32\...\Run: [CLMLServer_For_P2G8] => c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe [111576 2013-08-05] (CyberLink)
HKLM-x32\...\Run: [CLVirtualDrive] => c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe [490760 2013-08-07] (CyberLink Corp.)
HKLM-x32\...\Run: [PDF Complete] => C:\Program Files (x86)\PDF Complete\pdfsty.exe [683656 2013-07-18] (PDF Complete Inc)
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [46368 2010-03-08] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [29984 2010-03-08] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PPort12reminder] => C:\Program Files (x86)\Nuance\PaperPort\Ereg\Ereg.exe [328992 2010-02-09] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDFHook] => C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe [636192 2010-03-05] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDF5 Registry Controller] => C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe [62752 2010-03-05] (Nuance Communications, Inc.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [F-Secure Hoster (28332)] => C:\Program Files (x86)\Telia\Telias sakerhetstjanster\fshoster32.exe [188400 2013-01-18] (F-Secure Corporation)
HKLM-x32\...\Run: [F-Secure Manager] => C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\ComputerSecurity\Common\FSM32.EXE [310208 2013-08-20] (F-Secure Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-10-21] (Hewlett-Packard)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-368085864-2470945014-1147271735-1001\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [222496 2009-05-05] (Acresso Corporation)
HKU\S-1-5-21-368085864-2470945014-1147271735-1001\...\Run: [Spotify Web Helper] => C:\Users\Mikael\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1514040 2014-10-08] (Spotify Ltd)
BootExecute: autocheck autochk * sh4native Sh4Removal

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.se/
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPCOM14/22
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPCOM14/22
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.uk.msn.com/HPCOM14/22
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://g.uk.msn.com/HPCOM14/22
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll No File
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll (Hewlett-Packard)
BHO-x32: PlusIEEventHelper Class -> {551A852F-39A6-44A7-9C13-AFBEC9185A9D} -> C:\Program Files (x86)\Nuance\PDF Viewer Plus\Bin\PlusIEContextMenu.dll (Zeon Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll (Hewlett-Packard)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.5

FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @bankid.com/BankID säkerhetsprogram,version=6.0.1.5 -> C:\Program Files (x86)\BankID\npBispBrowser.dll (Finansiell ID-Teknik BID AB)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.5\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

Chrome:
=======

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed]
R2 CyberLink PowerDVD 12 Media Server Monitor Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [77576 2013-08-12] (CyberLink)
R2 CyberLink PowerDVD 12 Media Server Service; c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [298760 2013-08-12] (CyberLink)
R2 fshoster; C:\Program Files (x86)\Telia\Telias sakerhetstjanster\fshoster32.exe [188400 2013-01-18] (F-Secure Corporation)
R3 FSMA; C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\ComputerSecurity\Common\FSMA32.EXE [207808 2013-08-20] (F-Secure Corporation)
R2 FSORSPClient; C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\CCF_Reputation\fsorsp.exe [60352 2014-07-17] (F-Secure Corporation)
R2 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [92160 2013-08-30] (Hewlett-Packard Company) [File not signed]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-03-26] (Intel Corporation)
R2 Intel® Capability Licensing Service Interface; c:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-12] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-12] (Intel® Corporation)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-08-08] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-08-08] (Intel Corporation)
R2 pdfcDispatcher; C:\Program Files (x86)\PDF Complete\pdfsvc.exe [1143432 2013-07-18] (PDF Complete Inc)
R2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [144672 2010-03-08] (Nuance Communications, Inc.)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [290520 2014-10-27] (Realtek Semiconductor)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 CLVirtualDrive; C:\Windows\System32\DRIVERS\CLVirtualDrive.sys [90608 2011-12-27] (CyberLink)
R3 F-Secure Gatekeeper; C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\ComputerSecurity\Anti-Virus\minifilter\fsgk.sys [202792 2014-11-05] (F-Secure Corporation)
R1 F-Secure HIPS; C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\ComputerSecurity\HIPS\drivers\fshs.sys [69960 2014-07-17] (F-Secure Corporation)
R0 fsbts; C:\Windows\System32\Drivers\fsbts.sys [56016 2014-07-17] ()
R0 fsbts; C:\Windows\SysWOW64\Drivers\fsbts.sys [41024 2014-07-17] ()
R3 fsni; C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\CCF_Scanning\fsni64.sys [86056 2014-06-19] (F-Secure Corporation)
R1 fsvista; C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys [13248 2013-08-20] ()
R0 iaStorF; C:\Windows\System32\drivers\iaStorF.sys [28008 2014-03-26] (Intel Corporation)
R3 MEIx64; C:\Windows\system32\drivers\TeeDriverx64.sys [99288 2013-08-08] (Intel Corporation)
S3 esgiguard; \??\C:\Program Files (x86)\Enigma Software Group\SpyHunter\esgiguard.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-10-29 11:11 - 2014-11-05 09:32 - 00000000 ____D () C:\FRST
2014-10-28 20:31 - 2014-10-28 20:31 - 00000000 ____D () C:\Users\Mikael\AppData\Local\CrashDumps
2014-10-28 20:29 - 2014-11-05 09:22 - 00037624 _____ () C:\windows\system32\Drivers\TrueSight.sys
2014-10-28 20:29 - 2014-10-28 20:29 - 00000000 ____D () C:\ProgramData\RogueKiller
2014-10-27 17:17 - 2014-10-27 17:17 - 00000000 ____D () C:\Program Files (x86)\Enigma Software Group
2014-10-27 17:16 - 2014-10-28 20:24 - 00000000 ____D () C:\windows\AF54923662584AC6A0435B5B89C6EB61.TMP
2014-10-27 15:29 - 2014-10-27 15:29 - 00000000 ____D () C:\Program Files (x86)\ESET
2014-10-27 14:14 - 2014-10-27 14:13 - 58487808 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RCoRes64.dat
2014-10-27 14:14 - 2014-10-27 14:13 - 03932120 _____ (Realtek Semiconductor Corp.) C:\windows\system32\Drivers\RTKVHD64.sys
2014-10-27 14:14 - 2014-10-27 14:13 - 02832088 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RtPgEx64.dll
2014-10-27 14:14 - 2014-10-27 14:13 - 02798296 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RltkAPO64.dll
2014-10-27 14:14 - 2014-10-27 14:13 - 02770976 _____ (Fortemedia Corporation) C:\windows\system32\FMAPO64.dll
2014-10-27 14:14 - 2014-10-27 14:13 - 01959128 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RTSnMg64.cpl
2014-10-27 14:14 - 2014-10-27 14:13 - 01286872 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RTCOM64.dll
2014-10-27 14:14 - 2014-10-27 14:13 - 01019608 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RtkApi64.dll
2014-10-27 14:14 - 2014-10-27 14:13 - 01002031 _____ () C:\windows\system32\Drivers\RTAIODAT.DAT
2014-10-27 14:14 - 2014-10-27 14:13 - 00948440 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RCoInstII64.dll
2014-10-27 14:14 - 2014-10-27 14:13 - 00628952 _____ (Realtek Semiconductor Corp.) C:\windows\system32\RtDataProc64.dll
2014-10-27 14:14 - 2014-10-27 14:13 - 00209096 _____ (Andrea Electronics Corporation) C:\windows\system32\AERTAC64.dll
2014-10-27 14:14 - 2014-10-27 14:13 - 00113576 _____ (Real Sound Lab SIA) C:\windows\system32\CONEQMSAPOGUILibrary.dll
2014-10-27 13:53 - 2014-10-27 13:53 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2014-10-27 13:53 - 2014-10-27 13:53 - 00000000 ____D () C:\Users\Mikael\AppData\Roaming\Intel Corporation
2014-10-27 13:52 - 2014-10-27 13:52 - 00000000 ____D () C:\Users\Mikael\Intel
2014-10-27 13:41 - 2014-10-27 13:41 - 00791024 _____ (Intel Corporation) C:\windows\system32\Drivers\iusb3xhc.sys
2014-10-27 13:41 - 2014-10-27 13:41 - 00370672 _____ (Intel Corporation) C:\windows\system32\Drivers\iusb3hub.sys
2014-10-27 13:41 - 2014-10-27 13:41 - 00020464 _____ (Intel Corporation) C:\windows\system32\Drivers\iusb3hcs.sys
2014-10-27 13:33 - 2014-10-27 13:52 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-10-27 13:31 - 2014-10-27 13:52 - 00000000 ____D () C:\Users\Mikael\Desktop\mbar
2014-10-25 18:01 - 2014-10-25 18:12 - 00000000 ____D () C:\Program Files (x86)\FileHippo.com
2014-10-25 18:01 - 2014-10-25 18:01 - 00269490 _____ () C:\Users\Mikael\Downloads\FHSetup.exe
2014-10-25 16:56 - 2014-10-25 16:57 - 02347384 _____ (ESET) C:\Users\Mikael\Downloads\esetsmartinstaller_enu.exe
2014-10-25 16:08 - 2014-10-25 16:08 - 00012872 _____ (SurfRight B.V.) C:\windows\system32\bootdelete.exe
2014-10-25 15:57 - 2014-10-25 15:57 - 00000000 ____D () C:\windows\ERUNT
2014-10-24 15:50 - 2014-10-27 13:49 - 00000052 _____ () C:\windows\SysWOW64\DOErrors.log
2014-10-24 15:49 - 2014-10-24 15:49 - 00000000 _____ () C:\windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2014-10-24 11:44 - 2014-10-24 11:44 - 00005808 _____ () C:\spyhunter.fix
2014-10-24 11:44 - 2010-05-13 16:34 - 00014232 _____ () C:\windows\SysWOW64\sh4native.exe
2014-10-24 11:37 - 2014-10-24 11:37 - 00000000 _____ () C:\autoexec.bat
2014-10-23 17:27 - 2014-10-23 17:27 - 00000888 _____ () C:\windows\SysWOW64\InstallUtil.InstallLog
2014-10-23 17:26 - 2014-11-05 09:17 - 00000000 ____D () C:\AdwCleaner
2014-10-23 17:26 - 2014-10-23 17:26 - 01962496 _____ () C:\Users\Mikael\Downloads\AdwCleaner.exe
2014-10-23 16:49 - 2014-10-23 16:49 - 00022704 _____ () C:\windows\system32\Drivers\EsgScanner.sys
2014-10-23 16:26 - 2014-10-23 16:26 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Mikael\Downloads\SpyHunter-Installer.exe
2014-10-23 16:24 - 2014-10-23 16:25 - 11194928 _____ (SurfRight B.V.) C:\Users\Mikael\Downloads\HitmanPro_x64 (1).exe
2014-10-16 10:25 - 2014-10-28 20:24 - 00000000 ____D () C:\Backup
2014-10-16 10:20 - 2014-10-16 10:21 - 09741664 _____ (SurfRight B.V.) C:\Users\Mikael\Downloads\HitmanPro_x64.exe
2014-10-16 09:50 - 2014-10-16 09:50 - 00000470 _____ () C:\windows\system32\.crusader
2014-10-16 09:40 - 2014-10-16 09:54 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-10-16 09:28 - 2014-11-05 09:18 - 00022570 _____ () C:\windows\PFRO.log
2014-10-16 09:28 - 2014-11-05 09:18 - 00005417 _____ () C:\windows\setupact.log
2014-10-16 09:28 - 2014-10-16 09:28 - 00000000 _____ () C:\windows\setuperr.log
2014-10-16 09:26 - 2014-10-16 09:26 - 00081822 _____ () C:\Users\Mikael\Documents\cc_20141016_102628.reg
2014-10-16 09:14 - 2014-10-16 09:14 - 00002774 _____ () C:\windows\System32\Tasks\CCleanerSkipUAC
2014-10-16 09:14 - 2014-10-16 09:14 - 00000000 ____D () C:\Program Files\CCleaner
2014-10-16 09:12 - 2014-10-27 13:33 - 00128728 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2014-10-16 09:12 - 2014-10-27 13:31 - 00092888 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbamchameleon.sys
2014-10-16 09:12 - 2014-10-16 09:12 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-10-16 09:12 - 2014-10-16 09:12 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-10-16 09:12 - 2014-10-01 10:11 - 00063704 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2014-10-16 09:12 - 2014-10-01 10:11 - 00025816 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mbam.sys
2014-10-16 09:11 - 2014-10-16 09:12 - 19828376 _____ (Malwarebytes Corporation ) C:\Users\Mikael\Downloads\mbam-setup-2.0.3.1025.exe
2014-10-15 07:38 - 2014-09-29 01:58 - 03198976 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2014-10-15 07:38 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\windows\system32\dfshim.dll
2014-10-15 07:38 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\windows\SysWOW64\dfshim.dll
2014-10-15 07:38 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\windows\SysWOW64\mscorier.dll
2014-10-15 07:38 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\windows\system32\mscorier.dll
2014-10-15 07:38 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\windows\SysWOW64\mscories.dll
2014-10-15 07:38 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\windows\system32\mscories.dll
2014-10-15 07:36 - 2014-08-19 04:11 - 00693176 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2014-10-15 07:36 - 2014-08-19 04:10 - 00616352 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2014-10-15 07:36 - 2014-08-19 04:08 - 00503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2014-10-15 07:36 - 2014-07-07 03:07 - 14632960 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2014-10-15 07:36 - 2014-07-07 03:07 - 00782848 _____ (Microsoft Corporation) C:\windows\system32\wmdrmsdk.dll
2014-10-15 07:36 - 2014-07-07 03:07 - 00229376 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2014-10-15 07:36 - 2014-07-07 03:06 - 05551032 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2014-10-15 07:36 - 2014-07-07 03:06 - 04120576 _____ (Microsoft Corporation) C:\windows\system32\mf.dll
2014-10-15 07:36 - 2014-07-07 03:06 - 01574400 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2014-10-15 07:36 - 2014-07-07 03:06 - 01480192 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2014-10-15 07:36 - 2014-07-07 03:06 - 01202176 _____ (Microsoft Corporation) C:\windows\system32\drmv2clt.dll
2014-10-15 07:36 - 2014-07-07 03:06 - 01069056 _____ (Microsoft Corporation) C:\windows\system32\cryptui.dll
2014-10-15 07:36 - 2014-07-07 03:06 - 00842240 _____ (Microsoft Corporation) C:\windows\system32\blackbox.dll
2014-10-15 07:36 - 2014-07-07 03:06 - 00679424 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll
2014-10-15 07:36 - 2014-07-07 03:06 - 00631808 _____ (Microsoft Corporation) C:\windows\system32\evr.dll
2014-10-15 07:36 - 2014-07-07 03:06 - 00500224 _____ (Microsoft Corporation) C:\windows\system32\AUDIOKSE.dll
2014-10-15 07:36 - 2014-07-07 03:06 - 00497664 _____ (Microsoft Corporation) C:\windows\system32\drmmgrtn.dll
2014-10-15 07:36 - 2014-07-07 03:06 - 00440832 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll
2014-10-15 07:36 - 2014-07-07 03:06 - 00432128 _____ (Microsoft Corporation) C:\windows\system32\mfplat.dll
2014-10-15 07:36 - 2014-07-07 03:06 - 00296448 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2014-10-15 07:36 - 2014-07-07 03:06 - 00284672 _____ (Microsoft Corporation) C:\windows\system32\EncDump.dll
2014-10-15 07:36 - 2014-07-07 03:06 - 00188416 _____ (Microsoft Corporation) C:\windows\system32\pcasvc.dll
2014-10-15 07:36 - 2014-07-07 03:06 - 00187904 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2014-10-15 07:36 - 2014-07-07 02:52 - 00663552 _____ (Microsoft Corporation) C:\windows\system32\Drivers\PEAuth.sys
2014-10-15 07:36 - 2014-07-07 02:40 - 11411456 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmp.dll
2014-10-15 07:36 - 2014-07-07 02:40 - 03208704 _____ (Microsoft Corporation) C:\windows\SysWOW64\mf.dll
2014-10-15 07:36 - 2014-07-07 02:40 - 01329664 _____ (Microsoft Corporation) C:\windows\SysWOW64\quartz.dll
2014-10-15 07:36 - 2014-07-07 02:40 - 01174528 _____ (Microsoft Corporation) C:\windows\SysWOW64\crypt32.dll
2014-10-15 07:36 - 2014-07-07 02:40 - 01005056 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptui.dll
2014-10-15 07:36 - 2014-07-07 02:40 - 00988160 _____ (Microsoft Corporation) C:\windows\SysWOW64\drmv2clt.dll
2014-10-15 07:36 - 2014-07-07 02:40 - 00744960 _____ (Microsoft Corporation) C:\windows\SysWOW64\blackbox.dll
2014-10-15 07:36 - 2014-07-07 02:40 - 00617984 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmdrmsdk.dll
2014-10-15 07:36 - 2014-07-07 02:40 - 00489984 _____ (Microsoft Corporation) C:\windows\SysWOW64\evr.dll
2014-10-15 07:36 - 2014-07-07 02:40 - 00442880 _____ (Microsoft Corporation) C:\windows\SysWOW64\AUDIOKSE.dll
2014-10-15 07:36 - 2014-07-07 02:40 - 00406016 _____ (Microsoft Corporation) C:\windows\SysWOW64\drmmgrtn.dll
2014-10-15 07:36 - 2014-07-07 02:40 - 00354816 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfplat.dll
2014-10-15 07:36 - 2014-07-07 02:40 - 00195584 _____ (Microsoft Corporation) C:\windows\SysWOW64\AudioSes.dll
2014-10-15 07:36 - 2014-07-07 02:40 - 00179200 _____ (Microsoft Corporation) C:\windows\SysWOW64\wintrust.dll
2014-10-15 07:36 - 2014-07-07 02:40 - 00143872 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsvc.dll
2014-10-15 07:36 - 2014-07-07 02:39 - 03970488 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2014-10-15 07:36 - 2014-07-07 02:39 - 03914680 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2014-10-15 07:36 - 2014-06-28 01:21 - 00619056 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2014-10-15 07:36 - 2014-06-28 01:21 - 00532176 _____ (Microsoft Corporation) C:\windows\system32\winresume.exe
2014-10-15 07:36 - 2014-06-28 01:21 - 00457400 _____ (Microsoft Corporation) C:\windows\system32\ci.dll
2014-10-15 07:35 - 2014-10-10 03:05 - 00507392 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2014-10-15 07:35 - 2014-10-10 03:05 - 00276480 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2014-10-15 07:35 - 2014-10-10 03:00 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2014-10-15 07:35 - 2014-10-07 03:54 - 00378552 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2014-10-15 07:35 - 2014-10-07 03:04 - 00331448 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2014-10-15 07:35 - 2014-09-25 23:46 - 00365056 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2014-10-15 07:35 - 2014-09-25 23:46 - 00069632 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2014-10-15 07:35 - 2014-09-25 23:32 - 02017280 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2014-10-15 07:35 - 2014-09-19 02:56 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2014-10-15 07:35 - 2014-09-19 02:44 - 17484800 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2014-10-15 07:35 - 2014-09-19 02:39 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2014-10-15 07:35 - 2014-09-19 02:30 - 00033792 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2014-10-15 07:35 - 2014-09-19 02:14 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2014-10-15 07:35 - 2014-09-19 02:06 - 00072704 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2014-10-15 07:35 - 2014-09-19 02:01 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2014-10-15 07:35 - 2014-09-19 02:01 - 00051200 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2014-10-15 07:35 - 2014-09-19 01:53 - 00032768 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2014-10-15 07:35 - 2014-09-19 01:49 - 00597504 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2014-10-15 07:35 - 2014-09-19 01:42 - 00710656 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2014-10-15 07:35 - 2014-09-19 01:36 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-10-15 07:35 - 2014-09-19 01:20 - 00607744 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2014-10-15 07:35 - 2014-09-19 01:14 - 01447936 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2014-10-15 07:35 - 2014-09-19 00:53 - 01190400 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2014-10-15 07:35 - 2014-08-19 04:08 - 00063488 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2014-10-15 07:35 - 2014-08-19 04:08 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2014-10-15 07:35 - 2014-08-19 04:07 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2014-10-15 07:35 - 2014-08-19 04:07 - 00146944 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2014-10-15 07:35 - 2014-08-19 04:07 - 00058880 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2014-10-15 07:35 - 2014-08-19 04:07 - 00032256 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2014-10-15 07:35 - 2014-08-19 04:07 - 00017920 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2014-10-15 07:35 - 2014-08-19 03:41 - 00050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\appidapi.dll
2014-10-15 07:35 - 2014-08-19 03:41 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2014-10-15 07:35 - 2014-08-19 03:06 - 00061440 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2014-10-15 07:35 - 2014-07-07 03:06 - 00641024 _____ (Microsoft Corporation) C:\windows\system32\msscp.dll
2014-10-15 07:35 - 2014-07-07 03:06 - 00325632 _____ (Microsoft Corporation) C:\windows\system32\msnetobj.dll
2014-10-15 07:35 - 2014-07-07 03:06 - 00206848 _____ (Microsoft Corporation) C:\windows\system32\mfps.dll
2014-10-15 07:35 - 2014-07-07 03:06 - 00082432 _____ (Microsoft Corporation) C:\windows\system32\cryptsp.dll
2014-10-15 07:35 - 2014-07-07 03:06 - 00055808 _____ (Microsoft Corporation) C:\windows\system32\rrinstaller.exe
2014-10-15 07:35 - 2014-07-07 03:06 - 00024576 _____ (Microsoft Corporation) C:\windows\system32\mfpmp.exe
2014-10-15 07:35 - 2014-07-07 03:06 - 00009728 _____ (Microsoft Corporation) C:\windows\system32\spwmp.dll
2014-10-15 07:35 - 2014-07-07 03:06 - 00005120 _____ (Microsoft Corporation) C:\windows\system32\msdxm.ocx
2014-10-15 07:35 - 2014-07-07 03:06 - 00005120 _____ (Microsoft Corporation) C:\windows\system32\dxmasf.dll
2014-10-15 07:35 - 2014-07-07 03:05 - 12625920 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2014-10-15 07:35 - 2014-07-07 03:05 - 00126464 _____ (Microsoft Corporation) C:\windows\system32\audiodg.exe
2014-10-15 07:35 - 2014-07-07 03:02 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\mferror.dll
2014-10-15 07:35 - 2014-07-07 02:40 - 00504320 _____ (Microsoft Corporation) C:\windows\SysWOW64\msscp.dll
2014-10-15 07:35 - 2014-07-07 02:40 - 00374784 _____ (Microsoft Corporation) C:\windows\SysWOW64\AudioEng.dll
2014-10-15 07:35 - 2014-07-07 02:40 - 00265216 _____ (Microsoft Corporation) C:\windows\SysWOW64\msnetobj.dll
2014-10-15 07:35 - 2014-07-07 02:40 - 00103424 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfps.dll
2014-10-15 07:35 - 2014-07-07 02:40 - 00081408 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptsp.dll
2014-10-15 07:35 - 2014-07-07 02:40 - 00008192 _____ (Microsoft Corporation) C:\windows\SysWOW64\spwmp.dll
2014-10-15 07:35 - 2014-07-07 02:40 - 00004096 _____ (Microsoft Corporation) C:\windows\SysWOW64\msdxm.ocx
2014-10-15 07:35 - 2014-07-07 02:40 - 00004096 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxmasf.dll
2014-10-15 07:35 - 2014-07-07 02:39 - 12625408 _____ (Microsoft Corporation) C:\windows\SysWOW64\wmploc.DLL
2014-10-15 07:35 - 2014-07-07 02:39 - 00050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\rrinstaller.exe
2014-10-15 07:35 - 2014-07-07 02:39 - 00023040 _____ (Microsoft Corporation) C:\windows\SysWOW64\mfpmp.exe
2014-10-15 07:35 - 2014-07-07 02:37 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\mferror.dll
2014-10-15 07:34 - 2014-09-25 23:50 - 13619200 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2014-10-15 07:34 - 2014-09-25 23:46 - 00243200 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2014-10-15 07:34 - 2014-09-25 23:43 - 11807232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2014-10-15 07:34 - 2014-09-25 23:31 - 02108416 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2014-10-15 07:34 - 2014-09-19 03:25 - 23631360 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2014-10-15 07:34 - 2014-09-19 02:55 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2014-10-15 07:34 - 2014-09-19 02:41 - 02796032 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2014-10-15 07:34 - 2014-09-19 02:40 - 00547328 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2014-10-15 07:34 - 2014-09-19 02:40 - 00066048 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2014-10-15 07:34 - 2014-09-19 02:38 - 00083968 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2014-10-15 07:34 - 2014-09-19 02:36 - 05829632 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2014-10-15 07:34 - 2014-09-19 02:31 - 00051200 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2014-10-15 07:34 - 2014-09-19 02:27 - 00595968 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2014-10-15 07:34 - 2014-09-19 02:26 - 00139264 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2014-10-15 07:34 - 2014-09-19 02:25 - 04201472 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2014-10-15 07:34 - 2014-09-19 02:25 - 00758272 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2014-10-15 07:34 - 2014-09-19 02:25 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2014-10-15 07:34 - 2014-09-19 02:18 - 00940032 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2014-10-15 07:34 - 2014-09-19 02:14 - 00446464 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2014-10-15 07:34 - 2014-09-19 02:02 - 00454656 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2014-10-15 07:34 - 2014-09-19 02:01 - 00195584 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2014-10-15 07:34 - 2014-09-19 02:00 - 00085504 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2014-10-15 07:34 - 2014-09-19 01:59 - 00061952 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2014-10-15 07:34 - 2014-09-19 01:58 - 00289280 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2014-10-15 07:34 - 2014-09-19 01:55 - 02187264 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2014-10-15 07:34 - 2014-09-19 01:54 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2014-10-15 07:34 - 2014-09-19 01:51 - 00440320 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2014-10-15 07:34 - 2014-09-19 01:50 - 00112128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2014-10-15 07:34 - 2014-09-19 01:42 - 00731136 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2014-10-15 07:34 - 2014-09-19 01:40 - 01249280 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2014-10-15 07:34 - 2014-09-19 01:33 - 02309632 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2014-10-15 07:34 - 2014-09-19 01:32 - 00164864 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2014-10-15 07:34 - 2014-09-19 01:18 - 01068032 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2014-10-15 07:34 - 2014-09-19 00:59 - 01810944 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2014-10-15 07:34 - 2014-09-19 00:59 - 00775168 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2014-10-15 07:34 - 2014-09-19 00:52 - 00678400 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2014-10-15 07:33 - 2014-09-18 03:00 - 03241472 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2014-10-15 07:33 - 2014-09-18 02:32 - 02363904 _____ (Microsoft Corporation) C:\windows\SysWOW64\msi.dll
2014-10-15 07:33 - 2014-08-29 03:07 - 03179520 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2014-10-15 07:32 - 2014-09-05 03:11 - 06584320 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2014-10-15 07:32 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2014-10-15 07:32 - 2014-09-04 06:23 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\rastls.dll
2014-10-15 07:32 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\windows\SysWOW64\rastls.dll
2014-10-15 07:31 - 2014-07-17 03:07 - 00681984 _____ (Microsoft Corporation) C:\windows\system32\termsrv.dll
2014-10-15 07:31 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\windows\system32\winlogon.exe
2014-10-15 07:31 - 2014-07-17 03:07 - 00235520 _____ (Microsoft Corporation) C:\windows\system32\winsta.dll
2014-10-15 07:31 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\windows\system32\rdpcorekmts.dll
2014-10-15 07:31 - 2014-07-17 03:07 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2014-10-15 07:31 - 2014-07-17 03:07 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2014-10-15 07:31 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\windows\SysWOW64\winsta.dll
2014-10-15 07:31 - 2014-07-17 02:39 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2014-10-15 07:31 - 2014-07-17 02:39 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2014-10-15 07:31 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rdpwd.sys
2014-10-15 07:31 - 2014-07-17 02:21 - 00039936 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tssecsrv.sys
2014-10-15 07:30 - 2014-09-13 02:58 - 00077312 _____ (Microsoft Corporation) C:\windows\system32\packager.dll
2014-10-15 07:30 - 2014-09-13 02:40 - 00067072 _____ (Microsoft Corporation) C:\windows\SysWOW64\packager.dll
2014-10-14 13:43 - 2014-10-14 13:43 - 00000000 ____D () C:\Users\Mikael\Documents\my games
2014-10-14 13:40 - 2014-10-14 13:40 - 00002291 _____ () C:\Users\Mikael\Desktop\LAJBANS PÅ DEN GOA TIN.lnk
2014-10-14 13:40 - 2014-10-14 13:40 - 00000000 ____D () C:\windows\SysWOW64\AGEIA
2014-10-14 13:40 - 2014-10-14 13:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-10-14 13:40 - 2014-10-14 13:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Agricultural Simulator Historical Farming 2012
2014-10-14 13:40 - 2014-10-14 13:40 - 00000000 ____D () C:\Program Files (x86)\AGEIA Technologies
2014-10-14 13:39 - 2014-10-14 13:43 - 00000000 ____D () C:\Program Files (x86)\Agricultural Simulator Historical Farming 2012
2014-10-13 18:24 - 2014-10-13 18:24 - 00000000 ____D () C:\Users\Mikael\AppData\Roaming\Landwirt2014
2014-10-13 15:56 - 2014-10-13 15:56 - 00000222 _____ () C:\Users\Mikael\Desktop\Professional Farmer 2014.url
2014-10-13 15:46 - 2010-06-02 03:55 - 00527192 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_7.dll
2014-10-13 15:46 - 2010-06-02 03:55 - 00518488 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_7.dll
2014-10-13 15:46 - 2010-06-02 03:55 - 00239960 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_7.dll
2014-10-13 15:46 - 2010-06-02 03:55 - 00176984 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_7.dll
2014-10-13 15:46 - 2010-06-02 03:55 - 00077656 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_5.dll
2014-10-13 15:46 - 2010-06-02 03:55 - 00074072 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_5.dll
2014-10-13 15:46 - 2010-05-26 10:41 - 02526056 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_43.dll
2014-10-13 15:46 - 2010-05-26 10:41 - 02401112 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_43.dll
2014-10-13 15:46 - 2010-05-26 10:41 - 02106216 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_43.dll
2014-10-13 15:46 - 2010-05-26 10:41 - 01998168 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_43.dll
2014-10-13 15:46 - 2010-05-26 10:41 - 01907552 _____ (Microsoft Corporation) C:\windows\system32\d3dcsx_43.dll
2014-10-13 15:46 - 2010-05-26 10:41 - 01868128 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dcsx_43.dll
2014-10-13 15:46 - 2010-05-26 10:41 - 00511328 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_43.dll
2014-10-13 15:46 - 2010-05-26 10:41 - 00470880 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_43.dll
2014-10-13 15:46 - 2010-05-26 10:41 - 00276832 _____ (Microsoft Corporation) C:\windows\system32\d3dx11_43.dll
2014-10-13 15:46 - 2010-05-26 10:41 - 00248672 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx11_43.dll
2014-10-13 15:46 - 2010-02-04 09:01 - 00530776 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_6.dll
2014-10-13 15:46 - 2010-02-04 09:01 - 00528216 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_6.dll
2014-10-13 15:46 - 2010-02-04 09:01 - 00238936 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_6.dll
2014-10-13 15:46 - 2010-02-04 09:01 - 00176984 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_6.dll
2014-10-13 15:46 - 2010-02-04 09:01 - 00078680 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_4.dll
2014-10-13 15:46 - 2010-02-04 09:01 - 00074072 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_4.dll
2014-10-13 15:46 - 2010-02-04 09:01 - 00024920 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_7.dll
2014-10-13 15:46 - 2010-02-04 09:01 - 00022360 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_7.dll
2014-10-13 15:46 - 2009-09-04 16:44 - 00517960 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_5.dll
2014-10-13 15:46 - 2009-09-04 16:44 - 00515416 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_5.dll
2014-10-13 15:46 - 2009-09-04 16:44 - 00238936 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_5.dll
2014-10-13 15:46 - 2009-09-04 16:44 - 00176968 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_5.dll
2014-10-13 15:46 - 2009-09-04 16:29 - 05554512 _____ (Microsoft Corporation) C:\windows\system32\d3dcsx_42.dll
2014-10-13 15:46 - 2009-09-04 16:29 - 05501792 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dcsx_42.dll
2014-10-13 15:46 - 2009-09-04 16:29 - 02582888 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_42.dll
2014-10-13 15:46 - 2009-09-04 16:29 - 02475352 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_42.dll
2014-10-13 15:46 - 2009-09-04 16:29 - 01974616 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_42.dll
2014-10-13 15:46 - 2009-09-04 16:29 - 01892184 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_42.dll
2014-10-13 15:46 - 2009-09-04 16:29 - 00523088 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_42.dll
2014-10-13 15:46 - 2009-09-04 16:29 - 00453456 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_42.dll
2014-10-13 15:46 - 2009-09-04 16:29 - 00285024 _____ (Microsoft Corporation) C:\windows\system32\d3dx11_42.dll
2014-10-13 15:46 - 2009-09-04 16:29 - 00235344 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx11_42.dll
2014-10-13 15:46 - 2009-03-09 14:27 - 02430312 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_41.dll
2014-10-13 15:46 - 2009-03-09 14:27 - 01846632 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_41.dll
2014-10-13 15:46 - 2009-03-09 14:27 - 00520544 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_41.dll
2014-10-13 15:46 - 2009-03-09 14:27 - 00453456 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_41.dll
2014-10-13 15:45 - 2009-09-04 16:44 - 00073544 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_3.dll
2014-10-13 15:45 - 2009-09-04 16:44 - 00069464 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_3.dll
2014-10-13 15:45 - 2009-03-16 13:18 - 00521560 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_4.dll
2014-10-13 15:45 - 2009-03-16 13:18 - 00517448 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_4.dll
2014-10-13 15:45 - 2009-03-16 13:18 - 00235352 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_4.dll
2014-10-13 15:45 - 2009-03-16 13:18 - 00174936 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_4.dll
2014-10-13 15:45 - 2009-03-16 13:18 - 00024920 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_6.dll
2014-10-13 15:45 - 2009-03-16 13:18 - 00022360 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_6.dll
2014-10-13 15:45 - 2009-03-09 14:27 - 05425496 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_41.dll
2014-10-13 15:45 - 2009-03-09 14:27 - 04178264 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_41.dll
2014-10-13 15:45 - 2008-10-27 09:04 - 00518480 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_3.dll
2014-10-13 15:45 - 2008-10-27 09:04 - 00514384 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_3.dll
2014-10-13 15:45 - 2008-10-27 09:04 - 00235856 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_3.dll
2014-10-13 15:45 - 2008-10-27 09:04 - 00175440 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_3.dll
2014-10-13 15:45 - 2008-10-27 09:04 - 00074576 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_2.dll
2014-10-13 15:45 - 2008-10-27 09:04 - 00070992 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_2.dll
2014-10-13 15:45 - 2008-10-27 09:04 - 00025936 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_5.dll
2014-10-13 15:45 - 2008-10-27 09:04 - 00023376 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_5.dll
2014-10-13 15:45 - 2008-10-15 05:22 - 05631312 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_40.dll
2014-10-13 15:45 - 2008-10-15 05:22 - 04379984 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_40.dll
2014-10-13 15:45 - 2008-10-15 05:22 - 02605920 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_40.dll
2014-10-13 15:45 - 2008-10-15 05:22 - 02036576 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_40.dll
2014-10-13 15:45 - 2008-10-15 05:22 - 00519000 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_40.dll
2014-10-13 15:45 - 2008-10-15 05:22 - 00452440 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_40.dll
2014-10-13 15:45 - 2008-07-31 09:41 - 00238088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_2.dll
2014-10-13 15:45 - 2008-07-31 09:41 - 00177672 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_2.dll
2014-10-13 15:45 - 2008-07-31 09:41 - 00072200 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_1.dll
2014-10-13 15:45 - 2008-07-31 09:41 - 00068616 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_1.dll
2014-10-13 15:45 - 2008-07-31 09:40 - 00513544 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_2.dll
2014-10-13 15:45 - 2008-07-31 09:40 - 00509448 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_2.dll
2014-10-13 15:45 - 2008-07-10 10:01 - 00467984 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_39.dll
2014-10-13 15:45 - 2008-07-10 10:00 - 04992520 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_39.dll
2014-10-13 15:45 - 2008-07-10 10:00 - 03851784 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_39.dll
2014-10-13 15:45 - 2008-07-10 10:00 - 01942552 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_39.dll
2014-10-13 15:45 - 2008-07-10 10:00 - 01493528 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_39.dll
2014-10-13 15:45 - 2008-07-10 10:00 - 00540688 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_39.dll
2014-10-13 15:45 - 2008-05-30 13:19 - 00511496 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_1.dll
2014-10-13 15:45 - 2008-05-30 13:19 - 00507400 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_1.dll
2014-10-13 15:45 - 2008-05-30 13:18 - 00238088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_1.dll
2014-10-13 15:45 - 2008-05-30 13:18 - 00177672 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_1.dll
2014-10-13 15:45 - 2008-05-30 13:17 - 00068104 _____ (Microsoft Corporation) C:\windows\system32\XAPOFX1_0.dll
2014-10-13 15:45 - 2008-05-30 13:17 - 00065032 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAPOFX1_0.dll
2014-10-13 15:45 - 2008-05-30 13:17 - 00025608 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_4.dll
2014-10-13 15:45 - 2008-05-30 13:16 - 00028168 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_4.dll
2014-10-13 15:45 - 2008-05-30 13:11 - 04991496 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_38.dll
2014-10-13 15:45 - 2008-05-30 13:11 - 03850760 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_38.dll
2014-10-13 15:45 - 2008-05-30 13:11 - 01941528 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_38.dll
2014-10-13 15:45 - 2008-05-30 13:11 - 01491992 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_38.dll
2014-10-13 15:45 - 2008-05-30 13:11 - 00540688 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_38.dll
2014-10-13 15:45 - 2008-05-30 13:11 - 00467984 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_38.dll
2014-10-13 15:45 - 2008-03-05 15:04 - 00489480 _____ (Microsoft Corporation) C:\windows\system32\XAudio2_0.dll
2014-10-13 15:45 - 2008-03-05 15:03 - 00479752 _____ (Microsoft Corporation) C:\windows\SysWOW64\XAudio2_0.dll
2014-10-13 15:45 - 2008-03-05 15:03 - 00238088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine3_0.dll
2014-10-13 15:45 - 2008-03-05 15:03 - 00177672 _____ (Microsoft Corporation) C:\windows\system32\xactengine3_0.dll
2014-10-13 15:45 - 2008-03-05 15:00 - 00028168 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_3.dll
2014-10-13 15:45 - 2008-03-05 15:00 - 00025608 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_3.dll
2014-10-13 15:45 - 2008-03-05 14:56 - 04910088 _____ (Microsoft Corporation) C:\windows\system32\D3DX9_37.dll
2014-10-13 15:45 - 2008-03-05 14:56 - 03786760 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DX9_37.dll
2014-10-13 15:45 - 2008-03-05 14:56 - 01860120 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_37.dll
2014-10-13 15:45 - 2008-03-05 14:56 - 01420824 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_37.dll
2014-10-13 15:45 - 2008-02-05 22:07 - 00529424 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_37.dll
2014-10-13 15:45 - 2008-02-05 22:07 - 00462864 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_37.dll
2014-10-13 15:45 - 2007-10-22 02:40 - 00411656 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_10.dll
2014-10-13 15:45 - 2007-10-22 02:39 - 00267272 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_10.dll
2014-10-13 15:45 - 2007-10-22 02:37 - 00021000 _____ (Microsoft Corporation) C:\windows\system32\X3DAudio1_2.dll
2014-10-13 15:45 - 2007-10-22 02:37 - 00017928 _____ (Microsoft Corporation) C:\windows\SysWOW64\X3DAudio1_2.dll
2014-10-13 15:45 - 2007-10-12 14:14 - 05081608 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_36.dll
2014-10-13 15:45 - 2007-10-12 14:14 - 03734536 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_36.dll
2014-10-13 15:45 - 2007-10-12 14:14 - 02006552 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_36.dll
2014-10-13 15:45 - 2007-10-12 14:14 - 01374232 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_36.dll
2014-10-13 15:45 - 2007-10-02 08:56 - 00508264 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_36.dll
2014-10-13 15:45 - 2007-10-02 08:56 - 00444776 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_36.dll
2014-10-13 15:45 - 2007-07-19 23:57 - 00411496 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_9.dll
2014-10-13 15:45 - 2007-07-19 23:57 - 00267112 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_9.dll
2014-10-13 15:45 - 2007-07-19 17:14 - 05073256 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_35.dll
2014-10-13 15:45 - 2007-07-19 17:14 - 03727720 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_35.dll
2014-10-13 15:45 - 2007-07-19 17:14 - 01985904 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_35.dll
2014-10-13 15:45 - 2007-07-19 17:14 - 01358192 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_35.dll
2014-10-13 15:45 - 2007-07-19 17:14 - 00508264 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_35.dll
2014-10-13 15:45 - 2007-07-19 17:14 - 00444776 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_35.dll
2014-10-13 15:45 - 2007-06-20 19:49 - 00409960 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_8.dll
2014-10-13 15:45 - 2007-06-20 19:46 - 00266088 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_8.dll
2014-10-13 15:45 - 2007-05-16 15:45 - 04496232 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_34.dll
2014-10-13 15:45 - 2007-05-16 15:45 - 03497832 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_34.dll
2014-10-13 15:45 - 2007-05-16 15:45 - 01401200 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_34.dll
2014-10-13 15:45 - 2007-05-16 15:45 - 01124720 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_34.dll
2014-10-13 15:45 - 2007-05-16 15:45 - 00506728 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_34.dll
2014-10-13 15:45 - 2007-05-16 15:45 - 00443752 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_34.dll
2014-10-13 15:45 - 2007-04-04 17:55 - 00403304 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_7.dll
2014-10-13 15:45 - 2007-04-04 17:55 - 00261480 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_7.dll
2014-10-13 15:45 - 2007-04-04 17:54 - 00107368 _____ (Microsoft Corporation) C:\windows\system32\xinput1_3.dll
2014-10-13 15:45 - 2007-04-04 17:53 - 00081768 _____ (Microsoft Corporation) C:\windows\SysWOW64\xinput1_3.dll
2014-10-13 15:45 - 2007-03-15 15:57 - 00506728 _____ (Microsoft Corporation) C:\windows\system32\d3dx10_33.dll
2014-10-13 15:45 - 2007-03-15 15:57 - 00443752 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10_33.dll
2014-10-13 15:45 - 2007-03-12 15:42 - 04494184 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_33.dll
2014-10-13 15:45 - 2007-03-12 15:42 - 03495784 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_33.dll
2014-10-13 15:45 - 2007-03-12 15:42 - 01400176 _____ (Microsoft Corporation) C:\windows\system32\D3DCompiler_33.dll
2014-10-13 15:45 - 2007-03-12 15:42 - 01123696 _____ (Microsoft Corporation) C:\windows\SysWOW64\D3DCompiler_33.dll
2014-10-13 15:45 - 2007-03-05 11:42 - 00017688 _____ (Microsoft Corporation) C:\windows\system32\x3daudio1_1.dll
2014-10-13 15:45 - 2007-03-05 11:42 - 00015128 _____ (Microsoft Corporation) C:\windows\SysWOW64\x3daudio1_1.dll
2014-10-13 15:45 - 2007-01-24 14:27 - 00393576 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_6.dll
2014-10-13 15:45 - 2007-01-24 14:27 - 00255848 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_6.dll
2014-10-13 15:45 - 2006-12-08 11:02 - 00251672 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_5.dll
2014-10-13 15:45 - 2006-12-08 11:00 - 00390424 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_5.dll
2014-10-13 15:45 - 2006-11-29 12:06 - 04398360 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_32.dll
2014-10-13 15:45 - 2006-11-29 12:06 - 03426072 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_32.dll
2014-10-13 15:45 - 2006-11-29 12:06 - 00469264 _____ (Microsoft Corporation) C:\windows\system32\d3dx10.dll
2014-10-13 15:45 - 2006-11-29 12:06 - 00440080 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx10.dll
2014-10-13 15:45 - 2006-09-28 15:05 - 03977496 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_31.dll
2014-10-13 15:45 - 2006-09-28 15:05 - 02414360 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_31.dll
2014-10-13 15:45 - 2006-09-28 15:05 - 00237848 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_4.dll
2014-10-13 15:45 - 2006-09-28 15:04 - 00364824 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_4.dll
2014-10-13 15:45 - 2006-07-28 08:31 - 00083736 _____ (Microsoft Corporation) C:\windows\system32\xinput1_2.dll
2014-10-13 15:45 - 2006-07-28 08:30 - 00363288 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_3.dll
2014-10-13 15:45 - 2006-07-28 08:30 - 00236824 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_3.dll
2014-10-13 15:45 - 2006-07-28 08:30 - 00062744 _____ (Microsoft Corporation) C:\windows\SysWOW64\xinput1_2.dll
2014-10-13 15:45 - 2006-05-31 06:24 - 00230168 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_2.dll
2014-10-13 15:45 - 2006-05-31 06:22 - 00354072 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_2.dll
2014-10-13 15:45 - 2006-03-31 11:41 - 03927248 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_30.dll
2014-10-13 15:45 - 2006-03-31 11:40 - 02388176 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_30.dll
2014-10-13 15:45 - 2006-03-31 11:40 - 00352464 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_1.dll
2014-10-13 15:45 - 2006-03-31 11:39 - 00229584 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_1.dll
2014-10-13 15:45 - 2006-03-31 11:39 - 00083664 _____ (Microsoft Corporation) C:\windows\system32\xinput1_1.dll
2014-10-13 15:45 - 2006-03-31 11:39 - 00062672 _____ (Microsoft Corporation) C:\windows\SysWOW64\xinput1_1.dll
2014-10-13 15:45 - 2006-02-03 07:43 - 03830992 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_29.dll
2014-10-13 15:45 - 2006-02-03 07:43 - 02332368 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_29.dll
2014-10-13 15:45 - 2006-02-03 07:42 - 00355536 _____ (Microsoft Corporation) C:\windows\system32\xactengine2_0.dll
2014-10-13 15:45 - 2006-02-03 07:42 - 00230096 _____ (Microsoft Corporation) C:\windows\SysWOW64\xactengine2_0.dll
2014-10-13 15:45 - 2006-02-03 07:41 - 00016592 _____ (Microsoft Corporation) C:\windows\system32\x3daudio1_0.dll
2014-10-13 15:45 - 2006-02-03 07:41 - 00014032 _____ (Microsoft Corporation) C:\windows\SysWOW64\x3daudio1_0.dll
2014-10-13 15:45 - 2005-12-05 17:09 - 03815120 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_28.dll
2014-10-13 15:45 - 2005-12-05 17:09 - 02323664 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_28.dll
2014-10-13 15:45 - 2005-07-22 18:59 - 03807440 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_27.dll
2014-10-13 15:45 - 2005-07-22 18:59 - 02319568 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_27.dll
2014-10-13 15:44 - 2005-05-26 14:34 - 03767504 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_26.dll
2014-10-13 15:44 - 2005-05-26 14:34 - 02297552 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_26.dll
2014-10-13 15:44 - 2005-03-18 16:19 - 03823312 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_25.dll
2014-10-13 15:44 - 2005-03-18 16:19 - 02337488 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_25.dll
2014-10-13 15:44 - 2005-02-05 18:45 - 03544272 _____ (Microsoft Corporation) C:\windows\system32\d3dx9_24.dll
2014-10-13 15:44 - 2005-02-05 18:45 - 02222800 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3dx9_24.dll
2014-10-13 15:39 - 2014-10-16 10:04 - 00000000 ____D () C:\Program Files (x86)\Steam
2014-10-13 15:39 - 2014-10-13 15:39 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2014-10-13 15:38 - 2014-10-13 15:38 - 01142392 _____ () C:\Users\Mikael\Downloads\SteamSetup (1).exe
2014-10-13 15:37 - 2014-10-13 15:37 - 01142392 _____ () C:\Users\Mikael\Downloads\SteamSetup.exe
2014-10-11 10:15 - 2014-10-11 10:15 - 00000000 ____D () C:\windows\System32\Tasks\Games
2014-10-08 05:26 - 2014-10-08 05:26 - 00000000 ____D () C:\Users\Mikael\AppData\Roaming\unincar
2014-10-06 08:43 - 2014-10-06 08:43 - 00000000 ____D () C:\Users\Mikael\AppData\Local\FreeOCR
2014-10-06 08:35 - 2014-10-06 08:58 - 00000000 ____D () C:\FreeOCR
2014-10-06 08:35 - 2007-03-10 09:11 - 02680320 _____ (HiComponents) C:\windows\SysWOW64\ImageEnXLibrary.ocx

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-11-05 09:28 - 2009-07-14 05:45 - 00027568 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-05 09:28 - 2009-07-14 05:45 - 00027568 ____H () C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-05 09:25 - 2014-05-12 19:16 - 00664532 _____ () C:\windows\system32\perfh01D.dat
2014-11-05 09:25 - 2014-05-12 19:16 - 00142830 _____ () C:\windows\system32\perfc01D.dat
2014-11-05 09:25 - 2009-07-14 06:13 - 01582648 _____ () C:\windows\system32\PerfStringBackup.INI
2014-11-05 09:24 - 2014-07-17 10:10 - 00003932 _____ () C:\windows\System32\Tasks\User_Feed_Synchronization-{18BCFDFD-57DB-4D11-B914-CDD8AB98A4C0}
2014-11-05 09:24 - 2014-07-17 10:06 - 01554209 _____ () C:\windows\WindowsUpdate.log
2014-11-05 09:18 - 2014-08-05 10:08 - 00000990 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-11-05 09:18 - 2014-05-12 19:53 - 00000000 ____D () C:\ProgramData\PDFC
2014-11-05 09:18 - 2009-07-14 06:08 - 00000006 ____H () C:\windows\Tasks\SA.DAT
2014-10-29 00:05 - 2014-07-17 10:26 - 00000868 _____ () C:\windows\Tasks\Adobe Flash Player Updater.job
2014-10-27 16:18 - 2014-07-24 13:03 - 00000000 ____D () C:\Users\Mikael\Downloads\produkey
2014-10-27 14:15 - 2014-05-12 19:33 - 00000000 ____D () C:\windows\SysWOW64\RTCOM
2014-10-27 14:14 - 2014-05-12 19:44 - 00000000 ___HD () C:\Program Files (x86)\Temp
2014-10-27 14:13 - 2014-05-12 19:44 - 02080472 _____ (Realtek Semiconductor Corp.) C:\windows\RtlExUpd.dll
2014-10-27 14:13 - 2011-02-11 17:32 - 00000000 ____D () C:\SWSETUP
2014-10-27 13:53 - 2014-05-12 19:46 - 00000000 ____D () C:\ProgramData\Intel
2014-10-27 13:53 - 2011-02-11 21:29 - 01604950 _____ () C:\windows\SysWOW64\PerfStringBackup.INI
2014-10-27 13:52 - 2014-07-17 10:08 - 00000000 ____D () C:\Users\Mikael
2014-10-27 13:52 - 2014-05-12 19:33 - 00000000 ____D () C:\Program Files\Intel
2014-10-27 13:48 - 2014-05-12 19:42 - 00000000 ____D () C:\ProgramData\Package Cache
2014-10-27 13:41 - 2014-05-12 19:47 - 00041984 _____ (Intel Corporation) C:\windows\system32\Drivers\USB3Ver.dll
2014-10-25 18:15 - 2014-08-05 10:08 - 00000000 ____D () C:\Users\Mikael\AppData\Local\Google
2014-10-24 15:20 - 2014-07-24 13:01 - 00000000 ____D () C:\Users\Mikael\Desktop\Gamla Skrivbordet
2014-10-23 16:45 - 2014-07-17 12:11 - 00000000 ____D () C:\Users\Mikael\Documents\Outlook-filer
2014-10-22 22:56 - 2009-07-14 04:20 - 00000000 ____D () C:\windows\system32\NDF
2014-10-17 21:21 - 2014-08-05 10:08 - 00003990 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-10-17 21:21 - 2014-08-05 10:08 - 00003738 _____ () C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-10-17 21:21 - 2014-08-05 10:08 - 00000994 _____ () C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-17 07:15 - 2014-08-02 08:56 - 00000000 ____D () C:\Users\Mikael\AppData\Roaming\Spotify
2014-10-16 09:26 - 2014-07-29 16:40 - 00000000 ____D () C:\windows\Minidump
2014-10-16 09:26 - 2011-02-11 21:13 - 00000000 ____D () C:\windows\Panther
2014-10-16 07:28 - 2009-07-14 04:20 - 00000000 ____D () C:\windows\rescache
2014-10-16 06:18 - 2014-08-02 08:56 - 00000000 ____D () C:\Users\Mikael\AppData\Local\Spotify
2014-10-15 14:27 - 2009-07-14 06:09 - 00000000 ____D () C:\windows\System32\Tasks\WPD
2014-10-15 14:23 - 2009-07-14 05:45 - 00341048 _____ () C:\windows\system32\FNTCACHE.DAT
2014-10-15 14:21 - 2014-07-17 13:14 - 00000000 ___SD () C:\windows\system32\CompatTel
2014-10-15 14:21 - 2009-07-14 04:20 - 00000000 ____D () C:\windows\SysWOW64\Dism
2014-10-15 14:21 - 2009-07-14 04:20 - 00000000 ____D () C:\windows\system32\Dism
2014-10-15 07:53 - 2014-07-17 10:59 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-10-15 07:49 - 2014-07-17 12:26 - 00000000 ____D () C:\windows\system32\MRT
2014-10-15 07:45 - 2014-07-17 12:26 - 103265616 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2014-10-07 15:58 - 2014-08-05 14:25 - 00000000 ____D () C:\Users\Mikael\Desktop\EDVARD

Some content of TEMP:
====================
C:\Users\Mikael\AppData\Local\Temp\dllnt_dump.dll
C:\Users\Mikael\AppData\Local\Temp\Quarantine.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-10-28 21:02

==================== End Of Log ============================

 

 

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 04-11-2014
Ran by Mikael at 2014-11-05 09:33:16
Running from G:\Mikael Larsson\Bleeping
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Datorskydd (Disabled - Up to date) {15414183-282E-D62C-CA37-EF24860A2F17}
AS: Datorskydd (Disabled - Up to date) {AE20A067-0E14-D9A2-F087-D456FD8D65AA}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Svenska (HKLM-x32\...\{AC76BA86-7AD7-1053-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Agricultural Simulator Historical Farming 2012 (HKLM-x32\...\Agricultural Simulator Historical Farming 2012) (Version:  - )
BankID säkerhetsprogram (HKLM-x32\...\{4B2557F9-8C03-4BE7-9984-4DE525076580}) (Version: 6.0.1.5 - Finansiell ID-Teknik BID AB)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Brother MFL-Pro Suite DCP-7065DN (HKLM-x32\...\{3ACCCFB3-7B17-4E9F-ACB0-46868FCD4487}) (Version: 1.1.3.0 - Brother Industries, Ltd.)
CCleaner (HKLM\...\CCleaner) (Version: 4.18 - Piriform)
Computer Security 12.77.101.0 (release) (x32 Version: 12.77.101.0 - F-Secure Corporation) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.3.3207 - CyberLink Corp.)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.2.3212 - CyberLink Corp.)
DirectX for Managed Code Update (Summer 2004) (x32 Version: 9.02.2904 - Microsoft) Hidden
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
F-Secure CCF Reputation (x32 Version: 1.0.25.1877 - F-Secure) Hidden
F-Secure CCF Scanning 1.43.102.193 (release) (x32 Version: 1.43.102.193 - F-Secure Corporation) Hidden
F-Secure Network CCF 1.02.128 (x32 Version: 1.02.128.1 - F-Secure Corporation) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.5 - Google Inc.) Hidden
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Documentation (HKLM-x32\...\{A4DA13A9-5086-4581-AE32-A05EFB815A54}) (Version: 1.1.0.0 - Hewlett-Packard)
HP Setup (HKLM-x32\...\{438363A8-F486-4C37-834C-4955773CB3D3}) (Version: 9.1.15453.4066 - Hewlett-Packard Company)
HP SoftPaq Download Manager (HKLM-x32\...\{49524B48-4FE9-4A62-A9FD-1F2258DF5489}) (Version: 3.4.12.0 - Hewlett-Packard Company)
HP Software Setup (HKLM-x32\...\{7561C06A-7797-4462-A7C3-86F45AE901CF}) (Version: 8.7.4 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{3AF15EEA-8EDF-4393-BB6C-CF8A9986486A}) (Version: 7.3.35.20 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 13.00.0000 - Hewlett-Packard)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.13.1706 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.2.1000 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.19 - Intel Corporation)
Intel® Chipset Device Software (x32 Version: 10.0.14 - Intel® Corporation) Hidden
Malwarebytes Anti-Malware version 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (svenska) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1053) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office Hem och Småföretag 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools för Office Runtime (x64) Language Pack - SVE (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - SVE) (Version: 10.0.50903 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nuance PaperPort 12 (HKLM-x32\...\{6C0A559F-8583-4B5A-8B50-20BEE15D8E64}) (Version: 12.1.0000 - Nuance Communications, Inc.)
Nuance PDF Viewer Plus (HKLM-x32\...\{28656860-4728-433C-8AD4-D1A930437BC8}) (Version: 5.30.3290 - Nuance Communications, Inc)
NVIDIA PhysX (HKLM-x32\...\{1C4551A6-4743-4093-91E4-1477CD655043}) (Version: 9.09.0203 - NVIDIA Corporation)
opensource (x32 Version: 1.0.14960.3876 - Your Company Name) Hidden
PDF Complete Corporate Edition (HKLM-x32\...\PDF Complete) (Version: 4.1.50 - PDF Complete, Inc)
Professional Farmer 2014 (HKLM-x32\...\Steam App 258880) (Version:  - PlayWay S.A.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.74.815.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7224 - Realtek Semiconductor Corp.)
Scansoft PDF Professional (x32 Version:  - ) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
Spotify (HKCU\...\Spotify) (Version: 0.9.14.13.gba5645ad - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Säker surf (HKLM-x32\...\F-Secure ServiceEnabler 28332) (Version: 1.77.243.0 - F-Secure Corporation)
Säker surf (x32 Version: 1.77.243.0 - F-Secure Corporation) Hidden
unincar (HKLM-x32\...\{eb4c7b00-66dd-43cc-6fd4-201961863adc}) (Version: 1.0.0 - citgen)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-368085864-2470945014-1147271735-1001_Classes\CLSID\{56FDF344-FD6D-11d0-958A-006097C9A090}\InprocServer32 -> C:\Users\Mikael\AppData\Roaming\unincar\cumadis.dll ()

==================== Restore Points  =========================

23-10-2014 11:22:34 Schemalagd kontrollpunkt
23-10-2014 15:28:39 Installed SpyHunter
23-10-2014 15:35:39 Installed Should I Remove It
23-10-2014 15:41:19 Removed SpyHunter
24-10-2014 10:31:51 Installed SpyHunter
24-10-2014 10:36:01 Removed SpyHunter
24-10-2014 10:36:44 Installed SpyHunter
24-10-2014 14:32:31 Removed SpyHunter
25-10-2014 15:08:00 Checkpoint by HitmanPro
25-10-2014 17:12:34 Removed Should I Remove It
27-10-2014 12:36:53 HPSF Applying updates
27-10-2014 12:52:21 IIF_MSI
27-10-2014 13:47:04 Windows Update
27-10-2014 16:16:44 Installed SpyHunter
28-10-2014 19:23:29 Removed SpyHunter

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____N C:\windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0389F19C-FF29-4138-8936-96C8C56E95A5} - System32\Tasks\Games\UpdateCheck_S-1-5-21-368085864-2470945014-1147271735-1001
Task: {0D4E04D1-BFAF-4166-B98C-D19579D0CB47} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-27] (Adobe Systems Incorporated)
Task: {16629BE6-B0FB-4712-AC21-6FC9EE1F8DB0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-05] (Google Inc.)
Task: {3D9F67C2-0EF0-4437-BDFE-5DD2BAAEA2AB} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-08-30] (Hewlett-Packard Company)
Task: {52335860-91D7-4290-B2FD-C30777A7D949} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {9B859227-86B8-4E1D-AF83-D47F9F6CD93F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-05] (Google Inc.)
Task: {ADB5741D-FB0F-424A-837A-CD8965656933} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-09-26] (Piriform Ltd)
Task: {DE25910A-0E25-4843-9373-4B2BBC0F5CC0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-08-30] (Hewlett-Packard Company)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-07-17 10:49 - 2005-04-22 05:36 - 00143360 ____R () C:\windows\system32\BrSNMP64.dll
2014-07-17 12:08 - 2013-08-20 09:57 - 00045504 _____ () C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\ComputerSecurity\Anti-Virus\FSAVHRES.eng
2013-01-18 10:06 - 2013-01-18 10:06 - 00208880 _____ () C:\Program Files (x86)\Telia\Telias sakerhetstjanster\daas2.dll
2014-05-12 19:49 - 2013-08-05 08:49 - 00627672 _____ () C:\Program Files (x86)\CyberLink\Power2Go8\CLMediaLibrary.dll
2013-08-05 23:48 - 2013-08-05 23:48 - 00016856 _____ () c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvcPS.dll
2014-07-17 10:49 - 2009-02-27 15:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2014-07-17 11:39 - 2014-07-17 11:39 - 00593464 _____ () C:\windows\WinSxS\x86_f-secure.qt_4_6_2_2e112a926211c0a3_4.6.482.65_none_b59e1e0911fd55ab\QtMultimediaKit1.dll
2014-07-17 12:08 - 2013-08-20 09:57 - 00056256 _____ () C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\ComputerSecurity\FSGUI\fsavures.eng
2014-07-17 12:08 - 2013-08-20 09:57 - 00093120 _____ () C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\ComputerSecurity\FSGUI\strres.eng
2014-05-12 19:46 - 2013-08-08 22:25 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
2014-07-17 12:12 - 2014-07-17 12:12 - 00030888 _____ () C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\ComputerSecurity\Anti-Virus\minifilter\hashlib_x86.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR

========================= Accounts: ==========================

Administratör (S-1-5-21-368085864-2470945014-1147271735-500 - Administrator - Disabled)
Gäst (S-1-5-21-368085864-2470945014-1147271735-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-368085864-2470945014-1147271735-1003 - Limited - Enabled)
Mikael (S-1-5-21-368085864-2470945014-1147271735-1001 - Administrator - Enabled) => C:\Users\Mikael

==================== Faulty Device Manager Devices =============

Name: KINGSTON
Description: DataTraveler 2.0
Class Guid: {eec5ad98-8080-425f-922a-dabf3de3f69a}
Manufacturer: Kingston
Service: WUDFRd
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.

==================== Event log errors: =========================

Application errors:
==================
Error: (11/03/2014 09:44:54 AM) (Source: FSecure-FSecure-F-Secure Anti-Virus) (EventID: 103) (User: )
Description: 1  2014-11-03  09:44:53+02:00  MIKAEL-HP  Mikael-HP\Mikael  F-Secure Anti-Virus
 An error occurred while scanning \DEVICE\HARDDISKVOLUME2\WINDOWS\SYSTEM32\WOW64.DLL.

Error: (10/28/2014 09:06:23 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Det gick inte att skapa aktiveringskontext för C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1. Det finns ett fel i manifest- eller principfilen C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2 på rad C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
En komponentversion som begärs av programmet står i konflikt med en annan komponentversion som redan är aktiv.
Följande komponenter orsakar konflikten:
Komponent 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponent 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/28/2014 09:06:16 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Det gick inte att skapa aktiveringskontext för C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1. Det finns ett fel i manifest- eller principfilen C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2 på rad C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
En komponentversion som begärs av programmet står i konflikt med en annan komponentversion som redan är aktiv.
Följande komponenter orsakar konflikten:
Komponent 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponent 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/28/2014 09:04:16 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Det gick inte att skapa aktiveringskontext för C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1. Det finns ett fel i manifest- eller principfilen C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2 på rad C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
En komponentversion som begärs av programmet står i konflikt med en annan komponentversion som redan är aktiv.
Följande komponenter orsakar konflikten:
Komponent 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponent 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (10/28/2014 08:31:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Felet uppstod i programmet med namn: Explorer.EXE, version 6.1.7601.17567, tidsstämpel 0x4d672ee4
, felet uppstod i modulen med namn: cumadis.dll_unloaded, version 0.0.0.0, tidsstämpel 0x5361a976
Undantagskod: 0xc0000005
Felförskjutning: 0x000007fee62522e0
Process-ID: 0x708
Programmets starttid: 0xExplorer.EXE0
Sökväg till program: Explorer.EXE1
Sökväg till modul: Explorer.EXE2
Rapport-ID: Explorer.EXE3

Error: (10/27/2014 05:17:22 PM) (Source: MsiInstaller) (EventID: 11721) (User: Mikael-HP)
Description: Produkt: SpyHunter -- Fel 1721. Ett problem har uppstått med Windows Installer-paketet. Ett program som krävs för den här installationen kunde inte köras. Kontakta supportpersonal eller paketets leverantör. Åtgärd: , plats: WiseCustomCall, kommando: g1

Error: (10/27/2014 05:16:50 PM) (Source: FSecure-FSecure-F-Secure Anti-Virus) (EventID: 103) (User: )
Description: 1  2014-10-27  17:16:50+02:00  MIKAEL-HP  Mikael-HP\Mikael  F-Secure Anti-Virus
 Malicious code found in file G:\SpyHunter_4.17.6.4336 - MG\patch-SND\spyhunter.4.3.32-patch.exe.
 Infection: Gen:Trojan.Heur.JP.pmGfaOqwSVj
 Action: The file was deleted.

Error: (10/27/2014 03:29:03 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Det gick inte att skapa aktiveringskontext för C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1. Det finns ett fel i manifest- eller principfilen C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2 på rad C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
En komponentversion som begärs av programmet står i konflikt med en annan komponentversion som redan är aktiv.
Följande komponenter orsakar konflikten:
Komponent 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Komponent 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

System errors:
=============
Error: (11/03/2014 09:57:03 AM) (Source: Disk) (EventID: 11) (User: )
Description: Drivrutinen hittade ett styrenhetsfel på \Device\Harddisk1\DR2.

Error: (11/03/2014 09:57:02 AM) (Source: Disk) (EventID: 11) (User: )
Description: Drivrutinen hittade ett styrenhetsfel på \Device\Harddisk1\DR2.

Error: (11/03/2014 09:57:02 AM) (Source: Disk) (EventID: 11) (User: )
Description: Drivrutinen hittade ett styrenhetsfel på \Device\Harddisk1\DR2.

Error: (11/03/2014 09:57:01 AM) (Source: Disk) (EventID: 11) (User: )
Description: Drivrutinen hittade ett styrenhetsfel på \Device\Harddisk1\DR2.

Error: (10/29/2014 00:09:38 AM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: NT instans)
Description: 0x8000002a171\??\Volume{db5d5dc5-0d88-11e4-8b1b-806e6f6e6963}\System Volume Information\SPP\SppCbsHiveStore\{cd42efe1-f6f1-427c-b004-033192c625a4}{9FE39520-29CD-4AD1-A259-289889E66CCC}

Error: (10/27/2014 03:37:59 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Microsoft Office Sessions:
=========================
Error: (11/03/2014 09:44:54 AM) (Source: FSecure-FSecure-F-Secure Anti-Virus) (EventID: 103) (User: )
Description: 1  2014-11-03  09:44:53+02:00  MIKAEL-HP  Mikael-HP\Mikael  F-Secure Anti-Virus
 An error occurred while scanning \DEVICE\HARDDISKVOLUME2\WINDOWS\SYSTEM32\WOW64.DLL.

Error: (10/28/2014 09:06:23 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Users\Mikael\downloads\esetsmartinstaller_enu.exe

Error: (10/28/2014 09:06:16 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\Users\Mikael\downloads\esetsmartinstaller_enu.exe

Error: (10/28/2014 09:04:16 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (10/28/2014 08:31:06 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Explorer.EXE6.1.7601.175674d672ee4cumadis.dll_unloaded0.0.0.05361a976c0000005000007fee62522e070801cff2e416d3f468C:\windows\Explorer.EXEcumadis.dllf5e2d005-5ed8-11e4-a3d7-9cb654eef85d

Error: (10/27/2014 05:17:22 PM) (Source: MsiInstaller) (EventID: 11721) (User: Mikael-HP)
Description: Produkt: SpyHunter -- Fel 1721. Ett problem har uppstått med Windows Installer-paketet. Ett program som krävs för den här installationen kunde inte köras. Kontakta supportpersonal eller paketets leverantör. Åtgärd: , plats: WiseCustomCall, kommando: g1 (NULL)(NULL)(NULL)(NULL)(NULL)

Error: (10/27/2014 05:16:50 PM) (Source: FSecure-FSecure-F-Secure Anti-Virus) (EventID: 103) (User: )
Description: 1  2014-10-27  17:16:50+02:00  MIKAEL-HP  Mikael-HP\Mikael  F-Secure Anti-Virus
 Malicious code found in file G:\SpyHunter_4.17.6.4336 - MG\patch-SND\spyhunter.4.3.32-patch.exe.
 Infection: Gen:Trojan.Heur.JP.pmGfaOqwSVj
 Action: The file was deleted.

Error: (10/27/2014 03:29:03 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestG:\Mikael Larsson\3-esetsmartinstaller_enu.exe

==================== Memory info ===========================

Processor: Intel® Core™ i3-4130 CPU @ 3.40GHz
Percentage of memory in use: 31%
Total physical RAM: 8120.2 MB
Available physical RAM: 5530.77 MB
Total Pagefile: 16238.57 MB
Available Pagefile: 14182.19 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB

==================== Drives ================================

Drive c: (Windows ) (Fixed) (Total:452.52 GB) (Free:384.49 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (HP_RECOVERY) (Fixed) (Total:12.14 GB) (Free:1.36 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive e: (HP_TOOLS) (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
Drive g: (KINGSTON) (Removable) (Total:14.4 GB) (Free:0.56 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: BB3F8736)
Partition 1: (Active) - (Size=1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=452.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=12.1 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=100 MB) - (Type=0C)

========================================================
Disk: 1 (Size: 14.4 GB) (Disk ID: 240878AA)
Partition 1: (Active) - (Size=14.4 GB) - (Type=0C)

==================== End Of Log ============================



#8 jovson

jovson
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sweden
  • Local time:03:16 AM

Posted 05 November 2014 - 05:37 AM

Hello. I started the internet Explorer and started Task manager. All of a sudden the computer talks with an ad again. I took a photo of the address the program started. I hope this will help.

Attached Files



#9 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:09:16 PM

Posted 05 November 2014 - 09:48 PM

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!
  • Double-click on TDSSKiller.exe to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do not choose Delete unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the contents of that file in your next reply.

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#10 jovson

jovson
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sweden
  • Local time:03:16 AM

Posted 06 November 2014 - 03:42 AM

09:39:19.0899 0x110c  TDSS rootkit removing tool 3.0.0.41 Oct 28 2014 17:58:34
09:39:23.0113 0x110c  ============================================================
09:39:23.0113 0x110c  Current date / time: 2014/11/06 09:39:23.0113
09:39:23.0113 0x110c  SystemInfo:
09:39:23.0113 0x110c 
09:39:23.0113 0x110c  OS Version: 6.1.7601 ServicePack: 1.0
09:39:23.0113 0x110c  Product type: Workstation
09:39:23.0113 0x110c  ComputerName: MIKAEL-HP
09:39:23.0113 0x110c  UserName: Mikael
09:39:23.0113 0x110c  Windows directory: C:\windows
09:39:23.0113 0x110c  System windows directory: C:\windows
09:39:23.0113 0x110c  Running under WOW64
09:39:23.0113 0x110c  Processor architecture: Intel x64
09:39:23.0113 0x110c  Number of processors: 4
09:39:23.0113 0x110c  Page size: 0x1000
09:39:23.0113 0x110c  Boot type: Normal boot
09:39:23.0113 0x110c  ============================================================
09:39:33.0253 0x110c  KLMD registered as C:\windows\system32\drivers\83651334.sys
09:39:34.0048 0x110c  System UUID: {10157D28-DA98-CA04-E158-52D018C37109}
09:39:36.0419 0x110c  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:39:36.0435 0x110c  Drive \Device\Harddisk1\DR1 - Size: 0x39AA7E800 ( 14.42 Gb ), SectorSize: 0x200, Cylinders: 0x759, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
09:39:36.0435 0x110c  ============================================================
09:39:36.0435 0x110c  \Device\Harddisk0\DR0:
09:39:36.0451 0x110c  MBR partitions:
09:39:36.0451 0x110c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x200800
09:39:36.0451 0x110c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x201000, BlocksNum 0x38908800
09:39:36.0451 0x110c  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x38B09800, BlocksNum 0x1848000
09:39:36.0451 0x110c  \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x3A351800, BlocksNum 0x32000
09:39:36.0451 0x110c  \Device\Harddisk1\DR1:
09:39:36.0451 0x110c  MBR partitions:
09:39:36.0451 0x110c  \Device\Harddisk1\DR1\Partition1: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x1CD4D41
09:39:36.0451 0x110c  ============================================================
09:39:36.0669 0x110c  C: <-> \Device\Harddisk0\DR0\Partition2
09:39:36.0809 0x110c  D: <-> \Device\Harddisk0\DR0\Partition3
09:39:36.0825 0x110c  E: <-> \Device\Harddisk0\DR0\Partition4
09:39:36.0825 0x110c  ============================================================
09:39:36.0825 0x110c  Initialize success
09:39:36.0825 0x110c  ============================================================
09:39:41.0224 0x1290  ============================================================
09:39:41.0224 0x1290  Scan started
09:39:41.0224 0x1290  Mode: Manual;
09:39:41.0224 0x1290  ============================================================
09:39:41.0224 0x1290  KSN ping started
09:39:44.0251 0x1290  KSN ping finished: true
09:39:46.0700 0x1290  ================ Scan system memory ========================
09:39:46.0700 0x1290  System memory - ok
09:39:46.0700 0x1290  ================ Scan services =============================
09:39:48.0650 0x1290  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\windows\system32\drivers\1394ohci.sys
09:39:48.0697 0x1290  1394ohci - ok
09:39:48.0743 0x1290  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\windows\system32\drivers\ACPI.sys
09:39:48.0743 0x1290  ACPI - ok
09:39:48.0775 0x1290  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\windows\system32\drivers\acpipmi.sys
09:39:48.0790 0x1290  AcpiPmi - ok
09:39:48.0868 0x1290  [ C5679E5186B2FC95BC76A8A9870D5456, 70AC61850B811A0A902532F098AE1D5DF4622455E56C78B89D4ABDBE4A061A48 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
09:39:48.0884 0x1290  AdobeARMservice - ok
09:39:48.0993 0x1290  [ 4ECFCAAE5CB380F58934F0DCF5F64E7F, D82B37E57D93484D7A3CB65470BCD54A578A695F0203A8DD441B1348C1EEA751 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
09:39:49.0024 0x1290  AdobeFlashPlayerUpdateSvc - ok
09:39:49.0055 0x1290  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\windows\system32\drivers\adp94xx.sys
09:39:49.0071 0x1290  adp94xx - ok
09:39:49.0087 0x1290  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\windows\system32\drivers\adpahci.sys
09:39:49.0087 0x1290  adpahci - ok
09:39:49.0118 0x1290  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\windows\system32\drivers\adpu320.sys
09:39:49.0118 0x1290  adpu320 - ok
09:39:49.0133 0x1290  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
09:39:49.0133 0x1290  AeLookupSvc - ok
09:39:49.0243 0x1290  [ D1E343BC00136CE03C4D403194D06A80, 94F2543164A2CEA179EDE53E1294EE24391A59CAEFF83BA5CE9385E8E686E89C ] AERTFilters     C:\Program Files\Realtek\Audio\HDA\AERTSr64.EXE
09:39:49.0258 0x1290  AERTFilters - ok
09:39:49.0289 0x1290  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\windows\system32\drivers\afd.sys
09:39:49.0305 0x1290  AFD - ok
09:39:49.0336 0x1290  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\windows\system32\drivers\agp440.sys
09:39:49.0383 0x1290  agp440 - ok
09:39:49.0430 0x1290  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\windows\System32\alg.exe
09:39:49.0445 0x1290  ALG - ok
09:39:49.0461 0x1290  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\windows\system32\drivers\aliide.sys
09:39:49.0492 0x1290  aliide - ok
09:39:49.0523 0x1290  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\windows\system32\drivers\amdide.sys
09:39:49.0523 0x1290  amdide - ok
09:39:49.0555 0x1290  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\windows\system32\drivers\amdk8.sys
09:39:49.0617 0x1290  AmdK8 - ok
09:39:49.0648 0x1290  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\windows\system32\drivers\amdppm.sys
09:39:49.0711 0x1290  AmdPPM - ok
09:39:49.0742 0x1290  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\windows\system32\drivers\amdsata.sys
09:39:49.0742 0x1290  amdsata - ok
09:39:49.0773 0x1290  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\windows\system32\drivers\amdsbs.sys
09:39:49.0773 0x1290  amdsbs - ok
09:39:49.0789 0x1290  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\windows\system32\drivers\amdxata.sys
09:39:49.0789 0x1290  amdxata - ok
09:39:49.0835 0x1290  [ 80B9412C4DE09147581FC935FB4C97AB, 0C9661F7B5EF7F9D61981790B7AB64E3375BD117962166619D0CC546A2D014D3 ] AppID           C:\windows\system32\drivers\appid.sys
09:39:49.0913 0x1290  AppID - ok
09:39:49.0929 0x1290  [ F71CA01C24FC3798A717B5A6F682F9AD, 8CF1C209E7BBBAD02D6D087293C0B681CDA3170AF119CA2916C2708D8801E749 ] AppIDSvc        C:\windows\System32\appidsvc.dll
09:39:49.0945 0x1290  AppIDSvc - ok
09:39:49.0976 0x1290  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\windows\System32\appinfo.dll
09:39:49.0991 0x1290  Appinfo - ok
09:39:50.0038 0x1290  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\windows\System32\appmgmts.dll
09:39:50.0069 0x1290  AppMgmt - ok
09:39:50.0116 0x1290  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\windows\system32\drivers\arc.sys
09:39:50.0116 0x1290  arc - ok
09:39:50.0147 0x1290  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\windows\system32\drivers\arcsas.sys
09:39:50.0163 0x1290  arcsas - ok
09:39:50.0225 0x1290  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
09:39:50.0319 0x1290  aspnet_state - ok
09:39:50.0366 0x1290  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys
09:39:50.0381 0x1290  AsyncMac - ok
09:39:50.0428 0x1290  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\windows\system32\drivers\atapi.sys
09:39:50.0428 0x1290  atapi - ok
09:39:50.0506 0x1290  [ 2C1B6A64294F2182DC4999F923873974, 6D611636D849631BB1F852DC03A98BBFEC4D797A2707CA63427E187F0725A796 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
09:39:50.0537 0x1290  AudioEndpointBuilder - ok
09:39:50.0569 0x1290  [ 2C1B6A64294F2182DC4999F923873974, 6D611636D849631BB1F852DC03A98BBFEC4D797A2707CA63427E187F0725A796 ] AudioSrv        C:\windows\System32\Audiosrv.dll
09:39:50.0584 0x1290  AudioSrv - ok
09:39:50.0631 0x1290  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\windows\System32\AxInstSV.dll
09:39:50.0647 0x1290  AxInstSV - ok
09:39:50.0678 0x1290  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\windows\system32\drivers\bxvbda.sys
09:39:50.0709 0x1290  b06bdrv - ok
09:39:50.0756 0x1290  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\windows\system32\DRIVERS\b57nd60a.sys
09:39:50.0787 0x1290  b57nd60a - ok
09:39:50.0849 0x1290  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\windows\System32\bdesvc.dll
09:39:50.0865 0x1290  BDESVC - ok
09:39:50.0896 0x1290  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\windows\system32\drivers\Beep.sys
09:39:50.0927 0x1290  Beep - ok
09:39:51.0005 0x1290  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\windows\System32\bfe.dll
09:39:51.0037 0x1290  BFE - ok
09:39:51.0083 0x1290  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\windows\System32\qmgr.dll
09:39:51.0099 0x1290  BITS - ok
09:39:51.0130 0x1290  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\windows\system32\drivers\blbdrive.sys
09:39:51.0130 0x1290  blbdrive - ok
09:39:51.0193 0x1290  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
09:39:51.0208 0x1290  Bonjour Service - ok
09:39:51.0224 0x1290  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\windows\system32\DRIVERS\bowser.sys
09:39:51.0255 0x1290  bowser - ok
09:39:51.0271 0x1290  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\windows\system32\drivers\BrFiltLo.sys
09:39:51.0286 0x1290  BrFiltLo - ok
09:39:51.0302 0x1290  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\windows\system32\drivers\BrFiltUp.sys
09:39:51.0364 0x1290  BrFiltUp - ok
09:39:51.0395 0x1290  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\windows\System32\browser.dll
09:39:51.0427 0x1290  Browser - ok
09:39:51.0473 0x1290  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\windows\System32\Drivers\Brserid.sys
09:39:51.0505 0x1290  Brserid - ok
09:39:51.0536 0x1290  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\windows\System32\Drivers\BrSerWdm.sys
09:39:51.0551 0x1290  BrSerWdm - ok
09:39:51.0583 0x1290  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\windows\System32\Drivers\BrUsbMdm.sys
09:39:51.0598 0x1290  BrUsbMdm - ok
09:39:51.0629 0x1290  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\windows\System32\Drivers\BrUsbSer.sys
09:39:51.0645 0x1290  BrUsbSer - ok
09:39:51.0692 0x1290  [ DB109DA005B6FE2A350C5DD7CA768DFD, 241A0BFAEFB1B165C00EE75E8CA382B5935F5DF447DAD5AE9022B2B78317668E ] BrYNSvc         C:\Program Files (x86)\Browny02\BrYNSvc.exe
09:39:51.0707 0x1290  BrYNSvc - ok
09:39:51.0739 0x1290  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\windows\system32\drivers\bthmodem.sys
09:39:51.0754 0x1290  BTHMODEM - ok
09:39:51.0832 0x1290  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\windows\system32\bthserv.dll
09:39:51.0863 0x1290  bthserv - ok
09:39:51.0895 0x1290  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
09:39:51.0910 0x1290  cdfs - ok
09:39:51.0941 0x1290  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\windows\system32\drivers\cdrom.sys
09:39:51.0973 0x1290  cdrom - ok
09:39:52.0004 0x1290  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\windows\System32\certprop.dll
09:39:52.0019 0x1290  CertPropSvc - ok
09:39:52.0051 0x1290  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\windows\system32\drivers\circlass.sys
09:39:52.0082 0x1290  circlass - ok
09:39:52.0113 0x1290  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\windows\system32\CLFS.sys
09:39:52.0144 0x1290  CLFS - ok
09:39:52.0191 0x1290  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
09:39:52.0222 0x1290  clr_optimization_v2.0.50727_32 - ok
09:39:52.0253 0x1290  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
09:39:52.0285 0x1290  clr_optimization_v2.0.50727_64 - ok
09:39:52.0363 0x1290  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
09:39:52.0581 0x1290  clr_optimization_v4.0.30319_32 - ok
09:39:52.0612 0x1290  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
09:39:52.0706 0x1290  clr_optimization_v4.0.30319_64 - ok
09:39:52.0737 0x1290  [ 7E34B0BC915D7260F0A2D50D7B2FD717, 0A64BD7031614280FA7395B7865BEE12016B83BE4812E92F956DA8A6CC9644C3 ] CLVirtualDrive  C:\windows\system32\DRIVERS\CLVirtualDrive.sys
09:39:52.0768 0x1290  CLVirtualDrive - ok
09:39:52.0799 0x1290  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\windows\system32\drivers\CmBatt.sys
09:39:52.0831 0x1290  CmBatt - ok
09:39:52.0862 0x1290  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\windows\system32\drivers\cmdide.sys
09:39:52.0893 0x1290  cmdide - ok
09:39:52.0940 0x1290  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\windows\system32\Drivers\cng.sys
09:39:52.0971 0x1290  CNG - ok
09:39:53.0002 0x1290  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\windows\system32\drivers\compbatt.sys
09:39:53.0049 0x1290  Compbatt - ok
09:39:53.0096 0x1290  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\windows\system32\drivers\CompositeBus.sys
09:39:53.0111 0x1290  CompositeBus - ok
09:39:53.0127 0x1290  COMSysApp - ok
09:39:53.0174 0x1290  [ E6C6CAD49C58F5F2BEB1923BAFB95427, A586790D3176BB3296F96F21C4F6CFE5F68CD33FED1986BD395F9B5384A8AB6E ] cphs            C:\windows\SysWow64\IntelCpHeciSvc.exe
09:39:53.0205 0x1290  cphs - ok
09:39:53.0236 0x1290  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\windows\system32\drivers\crcdisk.sys
09:39:53.0267 0x1290  crcdisk - ok
09:39:53.0314 0x1290  [ 19D511CC455C19DE1ADF60E6C39C85B6, 2A05DD5EF3D0BEC2C9F4EA186E0E2D0F7BE0BF6A473D51194B09D33773AC7FAA ] CryptSvc        C:\windows\system32\cryptsvc.dll
09:39:53.0345 0x1290  CryptSvc - ok
09:39:53.0392 0x1290  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\windows\system32\drivers\csc.sys
09:39:53.0423 0x1290  CSC - ok
09:39:53.0470 0x1290  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\windows\System32\cscsvc.dll
09:39:53.0486 0x1290  CscService - ok
09:39:53.0548 0x1290  [ A423F5B5310EB31E4321A688D534DDCD, 14CCEBD4733444EAFC945A7A7A7F1C850164D2FB86D6C03815962AA0244BC0FC ] CyberLink PowerDVD 12 Media Server Monitor Service c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
09:39:53.0548 0x1290  CyberLink PowerDVD 12 Media Server Monitor Service - ok
09:39:53.0595 0x1290  [ 2361959EEA70D8A71A56FFAEE6EA1A6D, D6426CF1412E0B150E084CAB1CCEF4C9981718C77917EBC56716BAFA30D575D7 ] CyberLink PowerDVD 12 Media Server Service c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
09:39:53.0611 0x1290  CyberLink PowerDVD 12 Media Server Service - ok
09:39:53.0642 0x1290  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\windows\system32\rpcss.dll
09:39:53.0657 0x1290  DcomLaunch - ok
09:39:53.0673 0x1290  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\windows\System32\defragsvc.dll
09:39:53.0704 0x1290  defragsvc - ok
09:39:53.0720 0x1290  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\windows\system32\Drivers\dfsc.sys
09:39:53.0751 0x1290  DfsC - ok
09:39:53.0798 0x1290  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\windows\system32\dhcpcore.dll
09:39:53.0845 0x1290  Dhcp - ok
09:39:53.0860 0x1290  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\windows\system32\drivers\discache.sys
09:39:53.0876 0x1290  discache - ok
09:39:53.0923 0x1290  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\windows\system32\drivers\disk.sys
09:39:53.0938 0x1290  Disk - ok
09:39:53.0954 0x1290  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\windows\system32\drivers\dmvsc.sys
09:39:53.0969 0x1290  dmvsc - ok
09:39:54.0016 0x1290  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\windows\System32\dnsrslvr.dll
09:39:54.0047 0x1290  Dnscache - ok
09:39:54.0079 0x1290  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\windows\System32\dot3svc.dll
09:39:54.0110 0x1290  dot3svc - ok
09:39:54.0157 0x1290  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\windows\system32\dps.dll
09:39:54.0172 0x1290  DPS - ok
09:39:54.0188 0x1290  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
09:39:54.0235 0x1290  drmkaud - ok
09:39:54.0297 0x1290  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
09:39:54.0344 0x1290  DXGKrnl - ok
09:39:54.0375 0x1290  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\windows\System32\eapsvc.dll
09:39:54.0391 0x1290  EapHost - ok
09:39:54.0484 0x1290  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\windows\system32\drivers\evbda.sys
09:39:54.0578 0x1290  ebdrv - ok
09:39:54.0609 0x1290  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\windows\System32\lsass.exe
09:39:54.0609 0x1290  EFS - ok
09:39:54.0671 0x1290  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\windows\ehome\ehRecvr.exe
09:39:54.0718 0x1290  ehRecvr - ok
09:39:54.0734 0x1290  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\windows\ehome\ehsched.exe
09:39:54.0749 0x1290  ehSched - ok
09:39:54.0812 0x1290  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\windows\system32\drivers\elxstor.sys
09:39:54.0827 0x1290  elxstor - ok
09:39:54.0843 0x1290  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\windows\system32\drivers\errdev.sys
09:39:54.0859 0x1290  ErrDev - ok
09:39:54.0921 0x1290  esgiguard - ok
09:39:54.0968 0x1290  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\windows\system32\es.dll
09:39:54.0999 0x1290  EventSystem - ok
09:39:55.0015 0x1290  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\windows\system32\drivers\exfat.sys
09:39:55.0030 0x1290  exfat - ok
09:39:55.0139 0x1290  [ AC8786936481ED2142D9AF383C7F7EC7, 8EF4AD91B10A60863F96917FAFDEBCD36EECC1C6D11E29A59FEBF194EFEBD11B ] F-Secure Gatekeeper C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\ComputerSecurity\Anti-Virus\minifilter\fsgk.sys
09:39:55.0171 0x1290  F-Secure Gatekeeper - ok
09:39:55.0233 0x1290  [ 5BD34B7056EDA4C4EEA0A690384DD4B9, F03A12C3C1C74753ACAEE9E638C4E52BB3EAFE1F4BB60B0A98BE959B1F7C1103 ] F-Secure HIPS   C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\ComputerSecurity\HIPS\drivers\fshs.sys
09:39:55.0249 0x1290  F-Secure HIPS - ok
09:39:55.0295 0x1290  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\windows\system32\drivers\fastfat.sys
09:39:55.0327 0x1290  fastfat - ok
09:39:55.0389 0x1290  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\windows\system32\fxssvc.exe
09:39:55.0420 0x1290  Fax - ok
09:39:55.0436 0x1290  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\windows\system32\drivers\fdc.sys
09:39:55.0467 0x1290  fdc - ok
09:39:55.0483 0x1290  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\windows\system32\fdPHost.dll
09:39:55.0483 0x1290  fdPHost - ok
09:39:55.0498 0x1290  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\windows\system32\fdrespub.dll
09:39:55.0529 0x1290  FDResPub - ok
09:39:55.0561 0x1290  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
09:39:55.0576 0x1290  FileInfo - ok
09:39:55.0592 0x1290  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
09:39:55.0623 0x1290  Filetrace - ok
09:39:55.0654 0x1290  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\windows\system32\drivers\flpydisk.sys
09:39:55.0670 0x1290  flpydisk - ok
09:39:55.0717 0x1290  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
09:39:55.0763 0x1290  FltMgr - ok
09:39:55.0841 0x1290  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\windows\system32\FntCache.dll
09:39:55.0935 0x1290  FontCache - ok
09:39:55.0966 0x1290  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:39:55.0966 0x1290  FontCache3.0.0.0 - ok
09:39:56.0013 0x1290  [ F59F2C574AA5D84477EB89F87C938F16, 0F3905D56440F9216911F7338061CFB8BEF243DDF9DC1E5D57254874EBBFA629 ] fsbts           C:\windows\system32\Drivers\fsbts.sys
09:39:56.0091 0x1290  fsbts - ok
09:39:56.0107 0x1290  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
09:39:56.0138 0x1290  FsDepends - ok
09:39:56.0200 0x1290  [ A0F2C92F410EBAE832DFE507C7E4D6FA, C513C15003613A73CC762AD9AF3DF87A08469C9D66F46394D9C963E6DE2B6209 ] fshoster        C:\Program Files (x86)\Telia\Telias sakerhetstjanster\fshoster32.exe
09:39:56.0216 0x1290  fshoster - ok
09:39:56.0278 0x1290  [ 480F368D8AD18D57A0A9F4B562A00A84, B9C19D83EAA35D03DD789A931A584BEE32F0E8834762F54894AA3BA8BA631A12 ] FSMA            C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\ComputerSecurity\Common\FSMA32.EXE
09:39:56.0294 0x1290  FSMA - ok
09:39:56.0356 0x1290  [ A9B71020E6275088459F9053BDFB34CD, 27EC5BEFFC97F43226F35476C79A8F1A9D3568770A582C11DE735AEC64ACB610 ] fsni            C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\CCF_Scanning\fsni64.sys
09:39:56.0450 0x1290  fsni - ok
09:39:56.0497 0x1290  [ 45303CDBC1FD8F8D371E726BF126F771, AEBAD185AD6DA8648900C840DE64C2D83E94515EC0E08586C52BF64C8C2E4B6F ] FSORSPClient    C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\CCF_Reputation\fsorsp.exe
09:39:56.0512 0x1290  FSORSPClient - ok
09:39:56.0512 0x1290  [ 8CCCF24208A20B29FBA4A783BB5872DC, 5895FDA4EDD364C0681C2E3BD8F96585BDE653F0BF8D256596FDDBC926920B61 ] fsvista         C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys
09:39:56.0543 0x1290  fsvista - ok
09:39:56.0575 0x1290  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
09:39:56.0606 0x1290  Fs_Rec - ok
09:39:56.0653 0x1290  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
09:39:56.0668 0x1290  fvevol - ok
09:39:56.0699 0x1290  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\windows\system32\drivers\gagp30kx.sys
09:39:56.0731 0x1290  gagp30kx - ok
09:39:56.0777 0x1290  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\windows\System32\gpsvc.dll
09:39:56.0793 0x1290  gpsvc - ok
09:39:56.0840 0x1290  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
09:39:56.0840 0x1290  gupdate - ok
09:39:56.0871 0x1290  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
09:39:56.0871 0x1290  gupdatem - ok
09:39:56.0902 0x1290  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
09:39:56.0980 0x1290  gusvc - ok
09:39:57.0011 0x1290  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\windows\system32\drivers\hcw85cir.sys
09:39:57.0058 0x1290  hcw85cir - ok
09:39:57.0121 0x1290  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
09:39:57.0152 0x1290  HdAudAddService - ok
09:39:57.0183 0x1290  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\windows\system32\drivers\HDAudBus.sys
09:39:57.0199 0x1290  HDAudBus - ok
09:39:57.0214 0x1290  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\windows\system32\drivers\HidBatt.sys
09:39:57.0261 0x1290  HidBatt - ok
09:39:57.0277 0x1290  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\windows\system32\drivers\hidbth.sys
09:39:57.0308 0x1290  HidBth - ok
09:39:57.0339 0x1290  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\windows\system32\drivers\hidir.sys
09:39:57.0355 0x1290  HidIr - ok
09:39:57.0386 0x1290  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\windows\system32\hidserv.dll
09:39:57.0433 0x1290  hidserv - ok
09:39:57.0479 0x1290  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\windows\system32\DRIVERS\hidusb.sys
09:39:57.0511 0x1290  HidUsb - ok
09:39:57.0542 0x1290  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\windows\system32\kmsvc.dll
09:39:57.0573 0x1290  hkmsvc - ok
09:39:57.0604 0x1290  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\windows\system32\ListSvc.dll
09:39:57.0635 0x1290  HomeGroupListener - ok
09:39:57.0682 0x1290  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\windows\system32\provsvc.dll
09:39:57.0713 0x1290  HomeGroupProvider - ok
09:39:57.0791 0x1290  [ 2A8B93A01621E100A578E83C768AFA2C, 6637D260AF180D1F200D219796FCE6D524FC6BF57C0CEEF9E1B3616E85865AD1 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
09:39:57.0807 0x1290  HP Support Assistant Service - ok
09:39:57.0963 0x1290  [ 2F7B27143C966D68697BC69CFEEBD785, CDFADADE9BB4D1B772A56A6327EC0807EA350F8468EA0C4D0E01CF7C9C2C53F7 ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
09:39:58.0010 0x1290  hpqwmiex - ok
09:39:58.0025 0x1290  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
09:39:58.0025 0x1290  HpSAMD - ok
09:39:58.0103 0x1290  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\windows\system32\drivers\HTTP.sys
09:39:58.0150 0x1290  HTTP - ok
09:39:58.0166 0x1290  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
09:39:58.0197 0x1290  hwpolicy - ok
09:39:58.0228 0x1290  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\windows\system32\drivers\i8042prt.sys
09:39:58.0259 0x1290  i8042prt - ok
09:39:58.0306 0x1290  [ F2D38604D556095DA3D629C31CF5C69E, D87994A568C428C717EF61A0E1D47DCBD3257A032AFC22A026B563AD54992690 ] iaStorA         C:\windows\system32\drivers\iaStorA.sys
09:39:58.0337 0x1290  iaStorA - ok
09:39:58.0415 0x1290  [ 437400BC4430216A8E2A48D3F3E2397A, CF570FBED210ABE1EEA5DECFD90F2A001AA0CDEA7541DB2703B98E625EA6A181 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
09:39:58.0415 0x1290  IAStorDataMgrSvc - ok
09:39:58.0447 0x1290  [ 2838483BCA2B21F5CDEB6FC35E3623D6, B4C64F3A7500D74A6C7CFAF131591559A1EB3B6319B59B721EA993F6AE23B0EE ] iaStorF         C:\windows\system32\drivers\iaStorF.sys
09:39:58.0493 0x1290  iaStorF - ok
09:39:58.0540 0x1290  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
09:39:58.0556 0x1290  iaStorV - ok
09:39:58.0603 0x1290  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
09:39:58.0665 0x1290  idsvc - ok
09:39:58.0665 0x1290  IEEtwCollectorService - ok
09:39:58.0946 0x1290  [ 13AD8E01E974926E09D053DB370F2E41, 2D2EC184D02742001B65B92B2A4E044AAAC64794D5C230257FD3C2BAD3AD4E87 ] igfx            C:\windows\system32\DRIVERS\igdkmd64.sys
09:39:59.0071 0x1290  igfx - ok
09:39:59.0102 0x1290  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\windows\system32\drivers\iirsp.sys
09:39:59.0102 0x1290  iirsp - ok
09:39:59.0133 0x1290  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\windows\System32\ikeext.dll
09:39:59.0164 0x1290  IKEEXT - ok
09:39:59.0305 0x1290  [ 5B301323F69E653CEFE6C14C86627FCA, 2B462CA6C3E1AFB21C41A4C46E4853B0C1DBBF481654C08C1E540001FC0839CC ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
09:39:59.0383 0x1290  IntcAzAudAddService - ok
09:39:59.0476 0x1290  [ 0DB1E3F6189C628675F855C0EB510419, 989F539E82105019D2D81255369B96DC65826CD2A421DA09809155B26F69C555 ] Intel® Capability Licensing Service Interface c:\Program Files\Intel\iCLS Client\HeciServer.exe
09:39:59.0492 0x1290  Intel® Capability Licensing Service Interface - ok
09:39:59.0539 0x1290  [ 492AAF2FF66F437F0E796574B116EFC3, 6BF21C61ED05705DD58203952A750D1AB4D4B62F3A2B640BBBD9B85D1ECC3E5C ] Intel® Capability Licensing Service TCP IP Interface c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
09:39:59.0570 0x1290  Intel® Capability Licensing Service TCP IP Interface - ok
09:39:59.0601 0x1290  [ 57739E742ABC085C2A4340D4404B4A8B, B4B85C35AC96D11F5940AFCB15A2B2A41D70E3C392E1D4D9353899FA140FF281 ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
09:39:59.0601 0x1290  Intel® ME Service - ok
09:39:59.0617 0x1290  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\windows\system32\drivers\intelide.sys
09:39:59.0632 0x1290  intelide - ok
09:39:59.0663 0x1290  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\windows\system32\drivers\intelppm.sys
09:39:59.0679 0x1290  intelppm - ok
09:39:59.0695 0x1290  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\windows\system32\ipbusenum.dll
09:39:59.0726 0x1290  IPBusEnum - ok
09:39:59.0757 0x1290  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
09:39:59.0773 0x1290  IpFilterDriver - ok
09:39:59.0897 0x1290  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
09:39:59.0929 0x1290  iphlpsvc - ok
09:39:59.0944 0x1290  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\windows\system32\drivers\IPMIDrv.sys
09:39:59.0960 0x1290  IPMIDRV - ok
09:39:59.0991 0x1290  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\windows\system32\drivers\ipnat.sys
09:40:00.0022 0x1290  IPNAT - ok
09:40:00.0038 0x1290  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\windows\system32\drivers\irenum.sys
09:40:00.0069 0x1290  IRENUM - ok
09:40:00.0100 0x1290  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\windows\system32\drivers\isapnp.sys
09:40:00.0116 0x1290  isapnp - ok
09:40:00.0163 0x1290  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\windows\system32\drivers\msiscsi.sys
09:40:00.0194 0x1290  iScsiPrt - ok
09:40:00.0225 0x1290  [ E29F7442C20B179FA440BA95F5EEF921, DBDB7BC18C86643D589542F251C403043F84E6A4A3FBEDA88E812F813434AB1E ] iusb3hcs        C:\windows\system32\drivers\iusb3hcs.sys
09:40:00.0256 0x1290  iusb3hcs - ok
09:40:00.0303 0x1290  [ 7FA5B403137665EB244C701757DABC38, 7E744EA81D7AF8EE68545B35927B3C5BC519F7EE27527F267B0FD0B50652F49F ] iusb3hub        C:\windows\system32\DRIVERS\iusb3hub.sys
09:40:00.0334 0x1290  iusb3hub - ok
09:40:00.0397 0x1290  [ D0C84B2D35D396694BF5C93CAE989E59, F12FDDA5B1F04270D5D5E84B5142F6C3FDFE0F96E1C399FEA26740F09AABCC0B ] iusb3xhc        C:\windows\system32\DRIVERS\iusb3xhc.sys
09:40:00.0428 0x1290  iusb3xhc - ok
09:40:00.0475 0x1290  [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
09:40:00.0475 0x1290  jhi_service - ok
09:40:00.0506 0x1290  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\windows\system32\DRIVERS\kbdclass.sys
09:40:00.0537 0x1290  kbdclass - ok
09:40:00.0568 0x1290  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\windows\system32\DRIVERS\kbdhid.sys
09:40:00.0599 0x1290  kbdhid - ok
09:40:00.0615 0x1290  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\windows\system32\lsass.exe
09:40:00.0615 0x1290  KeyIso - ok
09:40:00.0646 0x1290  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
09:40:00.0677 0x1290  KSecDD - ok
09:40:00.0693 0x1290  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
09:40:00.0709 0x1290  KSecPkg - ok
09:40:00.0740 0x1290  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
09:40:00.0755 0x1290  ksthunk - ok
09:40:00.0802 0x1290  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\windows\system32\msdtckrm.dll
09:40:00.0833 0x1290  KtmRm - ok
09:40:00.0865 0x1290  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\windows\system32\srvsvc.dll
09:40:00.0896 0x1290  LanmanServer - ok
09:40:00.0943 0x1290  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
09:40:00.0974 0x1290  LanmanWorkstation - ok
09:40:00.0989 0x1290  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
09:40:01.0005 0x1290  lltdio - ok
09:40:01.0036 0x1290  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\windows\System32\lltdsvc.dll
09:40:01.0067 0x1290  lltdsvc - ok
09:40:01.0099 0x1290  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\windows\System32\lmhsvc.dll
09:40:01.0114 0x1290  lmhosts - ok
09:40:01.0192 0x1290  [ B16F2A40E738277AB75515D4B024305E, 38F48CCD72FA2B32DFD3123C0864AB724AC673414EEE09C6F582754177CD4B98 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
09:40:01.0208 0x1290  LMS - ok
09:40:01.0239 0x1290  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\windows\system32\drivers\lsi_fc.sys
09:40:01.0239 0x1290  LSI_FC - ok
09:40:01.0270 0x1290  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\windows\system32\drivers\lsi_sas.sys
09:40:01.0270 0x1290  LSI_SAS - ok
09:40:01.0301 0x1290  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\windows\system32\drivers\lsi_sas2.sys
09:40:01.0301 0x1290  LSI_SAS2 - ok
09:40:01.0333 0x1290  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\windows\system32\drivers\lsi_scsi.sys
09:40:01.0333 0x1290  LSI_SCSI - ok
09:40:01.0364 0x1290  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\windows\system32\drivers\luafv.sys
09:40:01.0379 0x1290  luafv - ok
09:40:01.0411 0x1290  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\windows\system32\Mcx2Svc.dll
09:40:01.0411 0x1290  Mcx2Svc - ok
09:40:01.0426 0x1290  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\windows\system32\drivers\megasas.sys
09:40:01.0442 0x1290  megasas - ok
09:40:01.0489 0x1290  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\windows\system32\drivers\MegaSR.sys
09:40:01.0504 0x1290  MegaSR - ok
09:40:01.0520 0x1290  [ 18B9AD128EC84E8D16A83F70CF36594F, 199DF15D68E2A079794E5DD325162C1A68A65EF26EEF5A6C6154281DDE57279A ] MEIx64          C:\windows\system32\drivers\TeeDriverx64.sys
09:40:01.0551 0x1290  MEIx64 - ok
09:40:01.0582 0x1290  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\windows\system32\mmcss.dll
09:40:01.0582 0x1290  MMCSS - ok
09:40:01.0613 0x1290  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\windows\system32\drivers\modem.sys
09:40:01.0629 0x1290  Modem - ok
09:40:01.0645 0x1290  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\windows\system32\DRIVERS\monitor.sys
09:40:01.0660 0x1290  monitor - ok
09:40:01.0676 0x1290  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\windows\system32\DRIVERS\mouclass.sys
09:40:01.0691 0x1290  mouclass - ok
09:40:01.0723 0x1290  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\windows\system32\DRIVERS\mouhid.sys
09:40:01.0754 0x1290  mouhid - ok
09:40:01.0785 0x1290  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
09:40:01.0816 0x1290  mountmgr - ok
09:40:01.0863 0x1290  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\windows\system32\drivers\mpio.sys
09:40:01.0894 0x1290  mpio - ok
09:40:01.0925 0x1290  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
09:40:01.0941 0x1290  mpsdrv - ok
09:40:02.0019 0x1290  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\windows\system32\mpssvc.dll
09:40:02.0050 0x1290  MpsSvc - ok
09:40:02.0081 0x1290  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
09:40:02.0097 0x1290  MRxDAV - ok
09:40:02.0113 0x1290  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
09:40:02.0128 0x1290  mrxsmb - ok
09:40:02.0144 0x1290  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
09:40:02.0175 0x1290  mrxsmb10 - ok
09:40:02.0191 0x1290  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
09:40:02.0206 0x1290  mrxsmb20 - ok
09:40:02.0237 0x1290  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\windows\system32\drivers\msahci.sys
09:40:02.0237 0x1290  msahci - ok
09:40:02.0269 0x1290  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\windows\system32\drivers\msdsm.sys
09:40:02.0300 0x1290  msdsm - ok
09:40:02.0331 0x1290  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\windows\System32\msdtc.exe
09:40:02.0347 0x1290  MSDTC - ok
09:40:02.0378 0x1290  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\windows\system32\drivers\Msfs.sys
09:40:02.0393 0x1290  Msfs - ok
09:40:02.0409 0x1290  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
09:40:02.0425 0x1290  mshidkmdf - ok
09:40:02.0456 0x1290  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
09:40:02.0471 0x1290  msisadrv - ok
09:40:02.0487 0x1290  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
09:40:02.0534 0x1290  MSiSCSI - ok
09:40:02.0534 0x1290  msiserver - ok
09:40:02.0565 0x1290  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
09:40:02.0596 0x1290  MSKSSRV - ok
09:40:02.0627 0x1290  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
09:40:02.0643 0x1290  MSPCLOCK - ok
09:40:02.0674 0x1290  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
09:40:02.0690 0x1290  MSPQM - ok
09:40:02.0721 0x1290  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
09:40:02.0768 0x1290  MsRPC - ok
09:40:02.0783 0x1290  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\windows\system32\drivers\mssmbios.sys
09:40:02.0783 0x1290  mssmbios - ok
09:40:02.0815 0x1290  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
09:40:02.0830 0x1290  MSTEE - ok
09:40:02.0861 0x1290  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\windows\system32\drivers\MTConfig.sys
09:40:02.0861 0x1290  MTConfig - ok
09:40:02.0877 0x1290  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\windows\system32\Drivers\mup.sys
09:40:02.0908 0x1290  Mup - ok
09:40:02.0971 0x1290  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\windows\system32\qagentRT.dll
09:40:02.0986 0x1290  napagent - ok
09:40:03.0017 0x1290  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
09:40:03.0049 0x1290  NativeWifiP - ok
09:40:03.0127 0x1290  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\windows\system32\drivers\ndis.sys
09:40:03.0142 0x1290  NDIS - ok
09:40:03.0158 0x1290  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
09:40:03.0173 0x1290  NdisCap - ok
09:40:03.0189 0x1290  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
09:40:03.0236 0x1290  NdisTapi - ok
09:40:03.0251 0x1290  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
09:40:03.0298 0x1290  Ndisuio - ok
09:40:03.0345 0x1290  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
09:40:03.0376 0x1290  NdisWan - ok
09:40:03.0392 0x1290  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
09:40:03.0407 0x1290  NDProxy - ok
09:40:03.0423 0x1290  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
09:40:03.0454 0x1290  NetBIOS - ok
09:40:03.0485 0x1290  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
09:40:03.0517 0x1290  NetBT - ok
09:40:03.0532 0x1290  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\windows\system32\lsass.exe
09:40:03.0548 0x1290  Netlogon - ok
09:40:03.0579 0x1290  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\windows\System32\netman.dll
09:40:03.0610 0x1290  Netman - ok
09:40:03.0657 0x1290  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:40:03.0704 0x1290  NetMsmqActivator - ok
09:40:03.0751 0x1290  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:40:03.0751 0x1290  NetPipeActivator - ok
09:40:03.0782 0x1290  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\windows\System32\netprofm.dll
09:40:03.0813 0x1290  netprofm - ok
09:40:03.0813 0x1290  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:40:03.0813 0x1290  NetTcpActivator - ok
09:40:03.0813 0x1290  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:40:03.0829 0x1290  NetTcpPortSharing - ok
09:40:03.0860 0x1290  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\windows\system32\drivers\nfrd960.sys
09:40:03.0860 0x1290  nfrd960 - ok
09:40:03.0891 0x1290  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\windows\System32\nlasvc.dll
09:40:03.0907 0x1290  NlaSvc - ok
09:40:03.0938 0x1290  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\windows\system32\drivers\Npfs.sys
09:40:03.0938 0x1290  Npfs - ok
09:40:03.0953 0x1290  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\windows\system32\nsisvc.dll
09:40:03.0985 0x1290  nsi - ok
09:40:04.0000 0x1290  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
09:40:04.0000 0x1290  nsiproxy - ok
09:40:04.0094 0x1290  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
09:40:04.0125 0x1290  Ntfs - ok
09:40:04.0156 0x1290  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\windows\system32\drivers\Null.sys
09:40:04.0172 0x1290  Null - ok
09:40:04.0187 0x1290  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\windows\system32\drivers\nvraid.sys
09:40:04.0219 0x1290  nvraid - ok
09:40:04.0250 0x1290  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\windows\system32\drivers\nvstor.sys
09:40:04.0250 0x1290  nvstor - ok
09:40:04.0297 0x1290  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
09:40:04.0328 0x1290  nv_agp - ok
09:40:04.0343 0x1290  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\windows\system32\drivers\ohci1394.sys
09:40:04.0375 0x1290  ohci1394 - ok
09:40:04.0437 0x1290  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:40:04.0468 0x1290  ose - ok
09:40:04.0655 0x1290  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
09:40:04.0765 0x1290  osppsvc - ok
09:40:04.0796 0x1290  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
09:40:04.0796 0x1290  p2pimsvc - ok
09:40:04.0827 0x1290  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\windows\system32\p2psvc.dll
09:40:04.0858 0x1290  p2psvc - ok
09:40:04.0889 0x1290  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\windows\system32\drivers\parport.sys
09:40:04.0905 0x1290  Parport - ok
09:40:04.0936 0x1290  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\windows\system32\drivers\partmgr.sys
09:40:04.0952 0x1290  partmgr - ok
09:40:04.0983 0x1290  [ 256390425414F90FCBC12F525A84EB11, A4992020BF6A239AD8A77125426E2C39980C9ABC971C4DBCB24B358F946AD7F9 ] PcaSvc          C:\windows\System32\pcasvc.dll
09:40:05.0030 0x1290  PcaSvc - ok
09:40:05.0061 0x1290  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\windows\system32\drivers\pci.sys
09:40:05.0092 0x1290  pci - ok
09:40:05.0108 0x1290  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\windows\system32\drivers\pciide.sys
09:40:05.0123 0x1290  pciide - ok
09:40:05.0170 0x1290  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\windows\system32\drivers\pcmcia.sys
09:40:05.0201 0x1290  pcmcia - ok
09:40:05.0217 0x1290  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\windows\system32\drivers\pcw.sys
09:40:05.0248 0x1290  pcw - ok
09:40:05.0264 0x1290  pdfcDispatcher - ok
09:40:05.0326 0x1290  [ C1C3BAF078BE5A14384A4BA2D730817D, 6E4D2F73A1CB250B3EE270CCE806A37EB2140E34EAF9F48C45CC12D2A451AA16 ] PDFProFiltSrvPP C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
09:40:05.0342 0x1290  PDFProFiltSrvPP - ok
09:40:05.0404 0x1290  [ 946010CDFA91469351B22E2620CEBCD8, F099C92706D42ADC289B72724F7932E5D4F62A427AEC967DDB0A1D728AE59A63 ] PEAUTH          C:\windows\system32\drivers\peauth.sys
09:40:05.0435 0x1290  PEAUTH - ok
09:40:05.0498 0x1290  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\windows\system32\peerdistsvc.dll
09:40:05.0529 0x1290  PeerDistSvc - ok
09:40:05.0576 0x1290  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\windows\SysWow64\perfhost.exe
09:40:05.0591 0x1290  PerfHost - ok
09:40:05.0685 0x1290  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\windows\system32\pla.dll
09:40:05.0763 0x1290  pla - ok
09:40:05.0779 0x1290  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
09:40:05.0779 0x1290  PlugPlay - ok
09:40:05.0810 0x1290  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
09:40:05.0841 0x1290  PNRPAutoReg - ok
09:40:05.0872 0x1290  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
09:40:05.0872 0x1290  PNRPsvc - ok
09:40:05.0981 0x1290  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
09:40:06.0044 0x1290  PolicyAgent - ok
09:40:06.0059 0x1290  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\windows\system32\umpo.dll
09:40:06.0075 0x1290  Power - ok
09:40:06.0106 0x1290  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
09:40:06.0122 0x1290  PptpMiniport - ok
09:40:06.0137 0x1290  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\windows\system32\drivers\processr.sys
09:40:06.0169 0x1290  Processor - ok
09:40:06.0215 0x1290  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\windows\system32\profsvc.dll
09:40:06.0231 0x1290  ProfSvc - ok
09:40:06.0247 0x1290  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\windows\system32\lsass.exe
09:40:06.0247 0x1290  ProtectedStorage - ok
09:40:06.0262 0x1290  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\windows\system32\DRIVERS\pacer.sys
09:40:06.0262 0x1290  Psched - ok
09:40:06.0340 0x1290  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\windows\system32\drivers\ql2300.sys
09:40:06.0371 0x1290  ql2300 - ok
09:40:06.0387 0x1290  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\windows\system32\drivers\ql40xx.sys
09:40:06.0403 0x1290  ql40xx - ok
09:40:06.0434 0x1290  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\windows\system32\qwave.dll
09:40:06.0449 0x1290  QWAVE - ok
09:40:06.0465 0x1290  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
09:40:06.0481 0x1290  QWAVEdrv - ok
09:40:06.0496 0x1290  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
09:40:06.0512 0x1290  RasAcd - ok
09:40:06.0543 0x1290  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
09:40:06.0559 0x1290  RasAgileVpn - ok
09:40:06.0590 0x1290  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\windows\System32\rasauto.dll
09:40:06.0605 0x1290  RasAuto - ok
09:40:06.0637 0x1290  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys
09:40:06.0652 0x1290  Rasl2tp - ok
09:40:06.0683 0x1290  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\windows\System32\rasmans.dll
09:40:06.0715 0x1290  RasMan - ok
09:40:06.0730 0x1290  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
09:40:06.0746 0x1290  RasPppoe - ok
09:40:06.0761 0x1290  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys
09:40:06.0777 0x1290  RasSstp - ok
09:40:06.0808 0x1290  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
09:40:06.0839 0x1290  rdbss - ok
09:40:06.0871 0x1290  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\windows\system32\drivers\rdpbus.sys
09:40:06.0902 0x1290  rdpbus - ok
09:40:06.0917 0x1290  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\windows\system32\DRIVERS\RDPCDD.sys
09:40:07.0229 0x1290  RDPCDD - ok
09:40:07.0276 0x1290  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\windows\system32\drivers\rdpdr.sys
09:40:07.0292 0x1290  RDPDR - ok
09:40:07.0307 0x1290  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\windows\system32\drivers\rdpencdd.sys
09:40:07.0339 0x1290  RDPENCDD - ok
09:40:07.0370 0x1290  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\windows\system32\drivers\rdprefmp.sys
09:40:07.0385 0x1290  RDPREFMP - ok
09:40:07.0448 0x1290  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
09:40:07.0495 0x1290  RdpVideoMiniport - ok
09:40:07.0541 0x1290  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\windows\system32\drivers\RDPWD.sys
09:40:07.0573 0x1290  RDPWD - ok
09:40:07.0619 0x1290  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
09:40:07.0651 0x1290  rdyboost - ok
09:40:07.0682 0x1290  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\windows\System32\mprdim.dll
09:40:07.0697 0x1290  RemoteAccess - ok
09:40:07.0744 0x1290  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\windows\system32\regsvc.dll
09:40:07.0775 0x1290  RemoteRegistry - ok
09:40:07.0838 0x1290  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
09:40:07.0869 0x1290  RpcEptMapper - ok
09:40:07.0916 0x1290  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\windows\system32\locator.exe
09:40:07.0931 0x1290  RpcLocator - ok
09:40:08.0009 0x1290  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\windows\system32\rpcss.dll
09:40:08.0041 0x1290  RpcSs - ok
09:40:08.0072 0x1290  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
09:40:08.0087 0x1290  rspndr - ok
09:40:08.0134 0x1290  [ F1D20C2B36F78863530B251DF504CC51, A3C71BDB45B1DB321BC2D9889CB25CF7840E145DFB769882748B7D507A605A42 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
09:40:08.0150 0x1290  RtkAudioService - ok
09:40:08.0197 0x1290  [ 5FE87322B5940BE0E367C4D54343A3F4, 31D8EEF0C20E1080F2ADE6D889DC8EC134127CE0951586B3D65ADFB9FCB7129B ] RTL8167         C:\windows\system32\DRIVERS\Rt64win7.sys
09:40:08.0228 0x1290  RTL8167 - ok
09:40:08.0243 0x1290  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\windows\system32\drivers\vms3cap.sys
09:40:08.0259 0x1290  s3cap - ok
09:40:08.0275 0x1290  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\windows\system32\lsass.exe
09:40:08.0275 0x1290  SamSs - ok
09:40:08.0306 0x1290  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
09:40:08.0337 0x1290  sbp2port - ok
09:40:08.0368 0x1290  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\windows\System32\SCardSvr.dll
09:40:08.0399 0x1290  SCardSvr - ok
09:40:08.0415 0x1290  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
09:40:08.0431 0x1290  scfilter - ok
09:40:08.0493 0x1290  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\windows\system32\schedsvc.dll
09:40:08.0555 0x1290  Schedule - ok
09:40:08.0571 0x1290  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\windows\System32\certprop.dll
09:40:08.0571 0x1290  SCPolicySvc - ok
09:40:08.0602 0x1290  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\windows\System32\SDRSVC.dll
09:40:08.0618 0x1290  SDRSVC - ok
09:40:08.0649 0x1290  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\windows\system32\drivers\secdrv.sys
09:40:08.0665 0x1290  secdrv - ok
09:40:08.0696 0x1290  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\windows\system32\seclogon.dll
09:40:08.0711 0x1290  seclogon - ok
09:40:08.0743 0x1290  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\windows\System32\sens.dll
09:40:08.0743 0x1290  SENS - ok
09:40:08.0774 0x1290  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\windows\system32\sensrsvc.dll
09:40:08.0789 0x1290  SensrSvc - ok
09:40:08.0821 0x1290  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\windows\system32\drivers\serenum.sys
09:40:08.0836 0x1290  Serenum - ok
09:40:08.0867 0x1290  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\windows\system32\drivers\serial.sys
09:40:08.0883 0x1290  Serial - ok
09:40:08.0883 0x1290  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\windows\system32\drivers\sermouse.sys
09:40:08.0930 0x1290  sermouse - ok
09:40:08.0977 0x1290  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\windows\system32\sessenv.dll
09:40:08.0992 0x1290  SessionEnv - ok
09:40:09.0023 0x1290  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\windows\system32\drivers\sffdisk.sys
09:40:09.0055 0x1290  sffdisk - ok
09:40:09.0086 0x1290  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\windows\system32\drivers\sffp_mmc.sys
09:40:09.0101 0x1290  sffp_mmc - ok
09:40:09.0117 0x1290  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\windows\system32\drivers\sffp_sd.sys
09:40:09.0148 0x1290  sffp_sd - ok
09:40:09.0179 0x1290  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\windows\system32\drivers\sfloppy.sys
09:40:09.0195 0x1290  sfloppy - ok
09:40:09.0242 0x1290  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\windows\System32\ipnathlp.dll
09:40:09.0273 0x1290  SharedAccess - ok
09:40:09.0320 0x1290  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\windows\System32\shsvcs.dll
09:40:09.0351 0x1290  ShellHWDetection - ok
09:40:09.0382 0x1290  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\windows\system32\drivers\SiSRaid2.sys
09:40:09.0398 0x1290  SiSRaid2 - ok
09:40:09.0413 0x1290  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\windows\system32\drivers\sisraid4.sys
09:40:09.0429 0x1290  SiSRaid4 - ok
09:40:09.0476 0x1290  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
09:40:09.0523 0x1290  SkypeUpdate - ok
09:40:09.0538 0x1290  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\windows\system32\DRIVERS\smb.sys
09:40:09.0569 0x1290  Smb - ok
09:40:09.0616 0x1290  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\windows\System32\snmptrap.exe
09:40:09.0632 0x1290  SNMPTRAP - ok
09:40:09.0647 0x1290  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\windows\system32\drivers\spldr.sys
09:40:09.0679 0x1290  spldr - ok
09:40:09.0725 0x1290  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\windows\System32\spoolsv.exe
09:40:09.0757 0x1290  Spooler - ok
09:40:10.0100 0x1290  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\windows\system32\sppsvc.exe
09:40:10.0131 0x1290  sppsvc - ok
09:40:10.0147 0x1290  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\windows\system32\sppuinotify.dll
09:40:10.0162 0x1290  sppuinotify - ok
09:40:10.0225 0x1290  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\windows\system32\DRIVERS\srv.sys
09:40:10.0256 0x1290  srv - ok
09:40:10.0287 0x1290  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
09:40:10.0318 0x1290  srv2 - ok
09:40:10.0349 0x1290  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
09:40:10.0381 0x1290  srvnet - ok
09:40:10.0412 0x1290  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
09:40:10.0443 0x1290  SSDPSRV - ok
09:40:10.0459 0x1290  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\windows\system32\sstpsvc.dll
09:40:10.0474 0x1290  SstpSvc - ok
09:40:10.0568 0x1290  [ AFE32AFD30464FC59CB8E88DC72F66FA, 24644F8AA47E61B98EF867BE18A9BE383822D64F3AADF2ED35E42FBFBA7B340F ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
09:40:10.0693 0x1290  Steam Client Service - ok
09:40:10.0724 0x1290  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\windows\system32\drivers\stexstor.sys
09:40:10.0724 0x1290  stexstor - ok
09:40:10.0739 0x1290  [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam        C:\windows\system32\DRIVERS\serscan.sys
09:40:10.0739 0x1290  StillCam - ok
09:40:10.0771 0x1290  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\windows\System32\wiaservc.dll
09:40:10.0802 0x1290  stisvc - ok
09:40:10.0833 0x1290  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\windows\system32\drivers\vmstorfl.sys
09:40:10.0849 0x1290  storflt - ok
09:40:10.0880 0x1290  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\windows\system32\storsvc.dll
09:40:10.0895 0x1290  StorSvc - ok
09:40:10.0942 0x1290  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\windows\system32\drivers\storvsc.sys
09:40:10.0958 0x1290  storvsc - ok
09:40:10.0973 0x1290  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\windows\system32\drivers\swenum.sys
09:40:11.0005 0x1290  swenum - ok
09:40:11.0036 0x1290  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\windows\System32\swprv.dll
09:40:11.0067 0x1290  swprv - ok
09:40:11.0161 0x1290  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\windows\system32\sysmain.dll
09:40:11.0207 0x1290  SysMain - ok
09:40:11.0223 0x1290  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\windows\System32\TabSvc.dll
09:40:11.0239 0x1290  TabletInputService - ok
09:40:11.0285 0x1290  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\windows\System32\tapisrv.dll
09:40:11.0285 0x1290  TapiSrv - ok
09:40:11.0301 0x1290  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\windows\System32\tbssvc.dll
09:40:11.0317 0x1290  TBS - ok
09:40:11.0395 0x1290  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\windows\system32\drivers\tcpip.sys
09:40:11.0441 0x1290  Tcpip - ok
09:40:11.0504 0x1290  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
09:40:11.0535 0x1290  TCPIP6 - ok
09:40:11.0551 0x1290  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
09:40:11.0582 0x1290  tcpipreg - ok
09:40:11.0597 0x1290  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\windows\system32\drivers\tdpipe.sys
09:40:11.0629 0x1290  TDPIPE - ok
09:40:11.0644 0x1290  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\windows\system32\drivers\tdtcp.sys
09:40:11.0675 0x1290  TDTCP - ok
09:40:11.0707 0x1290  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\windows\system32\DRIVERS\tdx.sys
09:40:11.0722 0x1290  tdx - ok
09:40:11.0753 0x1290  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\windows\system32\drivers\termdd.sys
09:40:11.0785 0x1290  TermDD - ok
09:40:11.0941 0x1290  [ 4FC4C50985E5B840F4D72E57286887B8, 0BCBB4A938803AE3A3532B6D8FFC85594AA9AEF5D8F9792684841BEA8780AE9E ] TermService     C:\windows\System32\termsrv.dll
09:40:12.0050 0x1290  TermService - ok
09:40:12.0065 0x1290  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\windows\system32\themeservice.dll
09:40:12.0081 0x1290  Themes - ok
09:40:12.0112 0x1290  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\windows\system32\mmcss.dll
09:40:12.0128 0x1290  THREADORDER - ok
09:40:12.0159 0x1290  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\windows\System32\trkwks.dll
09:40:12.0190 0x1290  TrkWks - ok
09:40:12.0268 0x1290  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
09:40:12.0315 0x1290  TrustedInstaller - ok
09:40:12.0346 0x1290  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\windows\system32\DRIVERS\tssecsrv.sys
09:40:12.0393 0x1290  tssecsrv - ok
09:40:12.0424 0x1290  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
09:40:12.0424 0x1290  TsUsbFlt - ok
09:40:12.0440 0x1290  [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\windows\system32\drivers\TsUsbGD.sys
09:40:12.0471 0x1290  TsUsbGD - ok
09:40:12.0518 0x1290  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
09:40:12.0518 0x1290  tunnel - ok
09:40:12.0549 0x1290  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\windows\system32\drivers\uagp35.sys
09:40:12.0580 0x1290  uagp35 - ok
09:40:12.0643 0x1290  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\windows\system32\DRIVERS\udfs.sys
09:40:12.0674 0x1290  udfs - ok
09:40:12.0705 0x1290  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\windows\system32\UI0Detect.exe
09:40:12.0736 0x1290  UI0Detect - ok
09:40:12.0767 0x1290  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
09:40:12.0799 0x1290  uliagpkx - ok
09:40:12.0845 0x1290  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\windows\system32\DRIVERS\umbus.sys
09:40:12.0877 0x1290  umbus - ok
09:40:12.0892 0x1290  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\windows\system32\drivers\umpass.sys
09:40:12.0923 0x1290  UmPass - ok
09:40:12.0939 0x1290  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\windows\System32\umrdp.dll
09:40:12.0986 0x1290  UmRdpService - ok
09:40:13.0033 0x1290  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\windows\System32\upnphost.dll
09:40:13.0048 0x1290  upnphost - ok
09:40:13.0079 0x1290  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\windows\system32\DRIVERS\usbccgp.sys
09:40:13.0095 0x1290  usbccgp - ok
09:40:13.0126 0x1290  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\windows\system32\drivers\usbcir.sys
09:40:13.0142 0x1290  usbcir - ok
09:40:13.0173 0x1290  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\windows\system32\drivers\usbehci.sys
09:40:13.0204 0x1290  usbehci - ok
09:40:13.0251 0x1290  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\windows\system32\DRIVERS\usbhub.sys
09:40:13.0282 0x1290  usbhub - ok
09:40:13.0298 0x1290  [ 9406D801042FAF859CF81B2C886413DC, D16536EC05260D7A2902314E1AA5E5F73533483B9967739C381FD41B6192B92F ] usbohci         C:\windows\system32\drivers\usbohci.sys
09:40:13.0313 0x1290  usbohci - ok
09:40:13.0345 0x1290  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\windows\system32\drivers\usbprint.sys
09:40:13.0360 0x1290  usbprint - ok
09:40:13.0391 0x1290  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\windows\system32\DRIVERS\USBSTOR.SYS
09:40:13.0423 0x1290  USBSTOR - ok
09:40:13.0438 0x1290  [ A83D0EC9AE4C31704442099D40BA2471, A29D714FCDF10DF7A2A17D54B131AEFDA61AED988CF8B99C7B30728C50130DCE ] usbuhci         C:\windows\system32\drivers\usbuhci.sys
09:40:13.0454 0x1290  usbuhci - ok
09:40:13.0485 0x1290  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\windows\System32\uxsms.dll
09:40:13.0516 0x1290  UxSms - ok
09:40:13.0532 0x1290  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\windows\system32\lsass.exe
09:40:13.0532 0x1290  VaultSvc - ok
09:40:13.0547 0x1290  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
09:40:13.0579 0x1290  vdrvroot - ok
09:40:13.0625 0x1290  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\windows\System32\vds.exe
09:40:13.0657 0x1290  vds - ok
09:40:13.0688 0x1290  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\windows\system32\DRIVERS\vgapnp.sys
09:40:13.0703 0x1290  vga - ok
09:40:13.0719 0x1290  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\windows\System32\drivers\vga.sys
09:40:13.0750 0x1290  VgaSave - ok
09:40:13.0781 0x1290  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\windows\system32\drivers\vhdmp.sys
09:40:13.0813 0x1290  vhdmp - ok
09:40:13.0844 0x1290  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\windows\system32\drivers\viaide.sys
09:40:13.0859 0x1290  viaide - ok
09:40:13.0906 0x1290  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\windows\system32\drivers\vmbus.sys
09:40:13.0969 0x1290  vmbus - ok
09:40:14.0031 0x1290  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\windows\system32\drivers\VMBusHID.sys
09:40:14.0062 0x1290  VMBusHID - ok
09:40:14.0078 0x1290  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\windows\system32\drivers\volmgr.sys
09:40:14.0109 0x1290  volmgr - ok
09:40:14.0171 0x1290  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
09:40:14.0218 0x1290  volmgrx - ok
09:40:14.0249 0x1290  [ DF8126BD41180351A093A3AD2FC8903B, AEFF4AA89CDDAAAD43CDE17C6B6EB2A397A0AC1651CBD51B889161EC2BC6527A ] volsnap         C:\windows\system32\drivers\volsnap.sys
09:40:14.0281 0x1290  volsnap - ok
09:40:14.0312 0x1290  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\windows\system32\drivers\vsmraid.sys
09:40:14.0327 0x1290  vsmraid - ok
09:40:14.0421 0x1290  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\windows\system32\vssvc.exe
09:40:14.0530 0x1290  VSS - ok
09:40:14.0546 0x1290  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\windows\System32\drivers\vwifibus.sys
09:40:14.0561 0x1290  vwifibus - ok
09:40:14.0593 0x1290  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\windows\system32\w32time.dll
09:40:14.0608 0x1290  W32Time - ok
09:40:14.0624 0x1290  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\windows\system32\drivers\wacompen.sys
09:40:14.0639 0x1290  WacomPen - ok
09:40:14.0671 0x1290  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\windows\system32\DRIVERS\wanarp.sys
09:40:14.0686 0x1290  WANARP - ok
09:40:14.0702 0x1290  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
09:40:14.0717 0x1290  Wanarpv6 - ok
09:40:14.0764 0x1290  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\windows\system32\Wat\WatAdminSvc.exe
09:40:14.0827 0x1290  WatAdminSvc - ok
09:40:14.0889 0x1290  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\windows\system32\wbengine.exe
09:40:14.0936 0x1290  wbengine - ok
09:40:14.0967 0x1290  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
09:40:14.0998 0x1290  WbioSrvc - ok
09:40:15.0029 0x1290  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\windows\System32\wcncsvc.dll
09:40:15.0061 0x1290  wcncsvc - ok
09:40:15.0092 0x1290  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
09:40:15.0123 0x1290  WcsPlugInService - ok
09:40:15.0139 0x1290  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\windows\system32\drivers\wd.sys
09:40:15.0170 0x1290  Wd - ok
09:40:15.0248 0x1290  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
09:40:15.0279 0x1290  Wdf01000 - ok
09:40:15.0295 0x1290  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\windows\system32\wdi.dll
09:40:15.0310 0x1290  WdiServiceHost - ok
09:40:15.0310 0x1290  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\windows\system32\wdi.dll
09:40:15.0310 0x1290  WdiSystemHost - ok
09:40:15.0357 0x1290  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\windows\System32\webclnt.dll
09:40:15.0388 0x1290  WebClient - ok
09:40:15.0419 0x1290  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\windows\system32\wecsvc.dll
09:40:15.0466 0x1290  Wecsvc - ok
09:40:15.0497 0x1290  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\windows\System32\wercplsupport.dll
09:40:15.0497 0x1290  wercplsupport - ok
09:40:15.0529 0x1290  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\windows\System32\WerSvc.dll
09:40:15.0544 0x1290  WerSvc - ok
09:40:15.0591 0x1290  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\windows\system32\DRIVERS\wfplwf.sys
09:40:15.0591 0x1290  WfpLwf - ok
09:40:15.0622 0x1290  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\windows\system32\drivers\wimmount.sys
09:40:15.0638 0x1290  WIMMount - ok
09:40:15.0653 0x1290  WinDefend - ok
09:40:15.0653 0x1290  WinHttpAutoProxySvc - ok
09:40:15.0716 0x1290  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
09:40:15.0747 0x1290  Winmgmt - ok
09:40:15.0841 0x1290  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\windows\system32\WsmSvc.dll
09:40:15.0965 0x1290  WinRM - ok
09:40:16.0028 0x1290  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
09:40:16.0137 0x1290  WinUsb - ok
09:40:16.0231 0x1290  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\windows\System32\wlansvc.dll
09:40:16.0293 0x1290  Wlansvc - ok
09:40:16.0293 0x1290  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\windows\system32\drivers\wmiacpi.sys
09:40:16.0293 0x1290  WmiAcpi - ok
09:40:16.0324 0x1290  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
09:40:16.0340 0x1290  wmiApSrv - ok
09:40:16.0355 0x1290  WMPNetworkSvc - ok
09:40:16.0371 0x1290  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\windows\System32\wpcsvc.dll
09:40:16.0387 0x1290  WPCSvc - ok
09:40:16.0402 0x1290  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
09:40:16.0433 0x1290  WPDBusEnum - ok
09:40:16.0449 0x1290  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
09:40:16.0480 0x1290  ws2ifsl - ok
09:40:16.0511 0x1290  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\windows\System32\wscsvc.dll
09:40:16.0511 0x1290  wscsvc - ok
09:40:16.0511 0x1290  WSearch - ok
09:40:16.0605 0x1290  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\windows\system32\wuaueng.dll
09:40:16.0652 0x1290  wuauserv - ok
09:40:16.0667 0x1290  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
09:40:16.0699 0x1290  WudfPf - ok
09:40:16.0730 0x1290  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\windows\system32\DRIVERS\WUDFRd.sys
09:40:16.0761 0x1290  WUDFRd - ok
09:40:16.0777 0x1290  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
09:40:16.0777 0x1290  wudfsvc - ok
09:40:16.0808 0x1290  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\windows\System32\wwansvc.dll
09:40:16.0839 0x1290  WwanSvc - ok
09:40:16.0855 0x1290  ================ Scan global ===============================
09:40:16.0870 0x1290  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\windows\system32\basesrv.dll
09:40:16.0933 0x1290  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll
09:40:16.0995 0x1290  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll
09:40:17.0026 0x1290  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\windows\system32\sxssrv.dll
09:40:17.0089 0x1290  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\windows\system32\services.exe
09:40:17.0120 0x1290  [ Global ] - ok
09:40:17.0120 0x1290  ================ Scan MBR ==================================
09:40:17.0135 0x1290  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
09:40:17.0479 0x1290  \Device\Harddisk0\DR0 - ok
09:40:17.0479 0x1290  [ DDAE9D649DB12F6AFF24483F2C298989 ] \Device\Harddisk1\DR1
09:40:17.0494 0x1290  \Device\Harddisk1\DR1 - ok
09:40:17.0494 0x1290  ================ Scan VBR ==================================
09:40:17.0494 0x1290  [ D92C53770B5EBC31366BB08650D077C8 ] \Device\Harddisk0\DR0\Partition1
09:40:17.0510 0x1290  \Device\Harddisk0\DR0\Partition1 - ok
09:40:17.0510 0x1290  [ CEA9893A058238049165E3F4BB695316 ] \Device\Harddisk0\DR0\Partition2
09:40:17.0525 0x1290  \Device\Harddisk0\DR0\Partition2 - ok
09:40:17.0541 0x1290  [ B72C0BC1F0DF10065F57863320FC326E ] \Device\Harddisk0\DR0\Partition3
09:40:17.0541 0x1290  \Device\Harddisk0\DR0\Partition3 - ok
09:40:17.0541 0x1290  [ 8C5E7537D435C31CDE89515A363D566A ] \Device\Harddisk0\DR0\Partition4
09:40:17.0541 0x1290  \Device\Harddisk0\DR0\Partition4 - ok
09:40:17.0541 0x1290  [ 61D67B4656BED397DDF5AABBD686BA13 ] \Device\Harddisk1\DR1\Partition1
09:40:17.0557 0x1290  \Device\Harddisk1\DR1\Partition1 - ok
09:40:17.0557 0x1290  ================ Scan generic autorun ======================
09:40:17.0619 0x1290  [ DDB29AD90AD53E001E0A170C30227CA5, 340402C6CE3BB488F84E5A1D404BBDFEBF39299F959CA3BE08E789F913EFBAAA ] C:\windows\system32\igfxtray.exe
09:40:17.0635 0x1290  IgfxTray - ok
09:40:17.0650 0x1290  [ 49B5EAAB76A53692F81541163EF5D8B3, A6E6189CAB616F571F4F32047FEF42530C6A750E04257DC5FF4486A98D833139 ] C:\windows\system32\hkcmd.exe
09:40:17.0666 0x1290  HotKeysCmds - ok
09:40:17.0681 0x1290  [ 828BD20E5B970FC2504D770E70DA23C8, 1C0E4AC456E296EF4493595CAC6551BF61F34DA3AE644854CDBDC311945C7111 ] C:\windows\system32\igfxpers.exe
09:40:17.0697 0x1290  Persistence - ok
09:40:17.0884 0x1290  [ 1446A63306CEC57C8EFE6F4B079D2AF2, 6C9E9539D19DF20474D563637786B6B457DE92A951CFF767797386C9B8285233 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
09:40:17.0962 0x1290  RTHDVCPL - ok
09:40:18.0056 0x1290  [ 591ACEF12398291DC8074CB3CB209D11, F9F3AABC52A76283A9F20F89366005B22D156EF4C11CAE873A02DD866AAEAFC0 ] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe
09:40:18.0134 0x1290  IAStorIcon - ok
09:40:18.0212 0x1290  [ BD2C0CDD525902E3033DAA8D08D0F015, F6B9F5356FA4264BCC708A41B7CECE92B1439598CB719F6CA25397E6C717B886 ] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
09:40:18.0227 0x1290  USB3MON - ok
09:40:18.0290 0x1290  [ 4E9AF25BA5E8219310E384AEA5B0EED8, 743062F755E7A88BA394E96CA26A988CCFDF73B441B779B3149D54A769CBC411 ] c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
09:40:18.0290 0x1290  CLMLServer_For_P2G8 - ok
09:40:18.0337 0x1290  [ 83FA40808C8B593FB89C4CDE0A564587, D608CD4B725F40993ED6DB406504E88DF73FEA67BCA1A53A1DCA3DDD55D77B86 ] c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe
09:40:18.0430 0x1290  CLVirtualDrive - ok
09:40:18.0493 0x1290  [ 3F60007F5DD0BA5FDA0E197ED7DDC6FF, 1C7B8063AAB30883895A31B1581219B816BE1D106E959C9C019C7D7CBF475DD1 ] C:\Program Files (x86)\PDF Complete\pdfsty.exe
09:40:18.0539 0x1290  PDF Complete - ok
09:40:18.0586 0x1290  [ 07C4EBD3107799774FA3103956CD1C40, BB798DE0F18D2A28B18467D958B68C23DBA0A802512C36E708D9EBD9352492F6 ] C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe
09:40:18.0617 0x1290  IndexSearch - ok
09:40:18.0633 0x1290  [ E5F1D2C7D51C816437BBE2306828BC4B, BBBEB3294EF02F3E4C73A3A2FAE83C261A095602D86E1FF272C6FDFCE0C05E1B ] C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
09:40:18.0633 0x1290  PaperPort PTD - ok
09:40:18.0649 0x1290  [ 0D1D2FBAE112BDDB9F77B7BC7A956D3A, BD833CF275B4EC4EC12E868EB2EE049A6F9F0792A326BEAEB1433586257C098F ] C:\Program Files (x86)\Nuance\PaperPort\Ereg\Ereg.exe
09:40:18.0680 0x1290  PPort12reminder - ok
09:40:18.0711 0x1290  [ 9F0ACAA725CF5A391AF7E2067AE45746, CA7F3C2C9D4DCB135ECBFFEB3448D272552B5DB720E0A526B4AC07B1F5E8BC9E ] C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe
09:40:18.0742 0x1290  PDFHook - ok
09:40:18.0742 0x1290  [ 154420A93E4F676AA33A055A116255D9, DF76577C22EBB439DF2B72D1B6B7A465F067CCEC886FC7A7FB337865DA1DB914 ] C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe
09:40:18.0758 0x1290  PDF5 Registry Controller - ok
09:40:18.0789 0x1290  [ 5D666FC778E7754CC7103402D814809B, 7E9B205B74440D455155014EE8D6FD0D1C647B016D72A28F16709F50BC005D3F ] C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe
09:40:18.0836 0x1290  ControlCenter4 - ok
09:40:18.0945 0x1290  [ 63E9C23A386FFFA84B5E03BFF9B628F0, A370962791EFC4B10548AAD31F89A2B288FBD5BDBF5749323C2D98C14DFB8B49 ] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
09:40:18.0992 0x1290  BrStsMon00 - ok
09:40:19.0054 0x1290  [ A0F2C92F410EBAE832DFE507C7E4D6FA, C513C15003613A73CC762AD9AF3DF87A08469C9D66F46394D9C963E6DE2B6209 ] C:\Program Files (x86)\Telia\Telias sakerhetstjanster\fshoster32.exe
09:40:19.0070 0x1290  F-Secure Hoster (28332) - ok
09:40:19.0148 0x1290  [ 5DF9D84032F52FBD736DA2AC6ABE860D, 15FCCCC351FEF351F369BCE8E96E7A0AE2797AF7B2D9B54700707D5F59C981AF ] C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\ComputerSecurity\Common\FSM32.EXE
09:40:19.0163 0x1290  F-Secure Manager - ok
09:40:19.0210 0x1290  [ 47EA5F76FAB723C61AB4A0D79BAD512C, A7A38EB0A7068B160E6949945EF639F999A06AE35746F6E79C7350745798E5C9 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
09:40:19.0335 0x1290  Adobe ARM - ok
09:40:19.0413 0x1290  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
09:40:19.0460 0x1290  Sidebar - ok
09:40:19.0475 0x1290  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
09:40:19.0507 0x1290  mctadmin - ok
09:40:19.0569 0x1290  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
09:40:19.0600 0x1290  Sidebar - ok
09:40:19.0600 0x1290  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
09:40:19.0600 0x1290  mctadmin - ok
09:40:19.0631 0x1290  [ 6BF7676296D5359AFC135A5397000053, D31B9BCB856D6EFDEA27E4D4D341FF939BCBF0E8C97786B447C2074B3C68298E ] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
09:40:19.0647 0x1290  ISUSPM - ok
09:40:19.0787 0x1290  [ B66E0842FCF485F3E2D41BF0BA10966F, 966B8386B2D060167E8EAAE478509013A8729FE2CF11F890D3F9DCDA90768F34 ] C:\Users\Mikael\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
09:40:19.0803 0x1290  Spotify Web Helper - ok
09:40:19.0819 0x1290  Waiting for KSN requests completion. In queue: 84
09:40:20.0833 0x1290  Waiting for KSN requests completion. In queue: 84
09:40:21.0847 0x1290  Waiting for KSN requests completion. In queue: 84
09:40:22.0923 0x1290  AV detected via SS2: Datorskydd, C:\Program Files (x86)\Telia\Telias sakerhetstjanster\apps\ComputerSecurity\Anti-Virus\fsavwsch.exe ( 9.10.15260.0 ), 0x41000 ( enabled : updated )
09:40:22.0923 0x1290  Win FW state via NFP2: enabled
09:40:25.0622 0x1290  ============================================================
09:40:25.0622 0x1290  Scan finished
09:40:25.0622 0x1290  ============================================================
09:40:25.0622 0x10d4  Detected object count: 0
09:40:25.0622 0x10d4  Actual detected object count: 0
 



#11 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:09:16 PM

Posted 06 November 2014 - 06:46 PM

Lets reset Internet Explorer to it factory settings.

http://support.microsoft.com/kb/923737

 

 

Download 51a5f31352b88-icon_MBAR.pngMalwarebytes Anti-Rootkit to your desktop.

  • Extract the ZIP archive and double-click "mbar.exe" to start the tool.
  • Warning! Malwarebytes Anti-Rootkit needs to be run from an account with administrator rights.
  • Click in the introduction screen "next" to continue.
  • Click in the following screen "Update" to obtain the latest malware definitions.
  • Once the update is complete select "Next" and click "Scan".
  • When the scan is finished and no malware has been found select "Exit".
  • If malware was detected, make sure to check all the items and click "Cleanup". Reboot your computer.
  • Open the MBAR folder and paste the content of the following files in your next reply:
  • "mbar-log-{date} (xx-xx-xx).txt"
  • "system-log.txt"

[/*]


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#12 jovson

jovson
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sweden
  • Local time:03:16 AM

Posted 06 November 2014 - 07:14 PM

Okej

 

Didn´t find any threats. I Test to start iexplorer again and the extra ad.helpertrack.com started again.

 

Malwarebytes Anti-Rootkit BETA 1.07.0.1012
www.malwarebytes.org

Database version: v2014.11.06.10

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.17358
Mikael :: MIKAEL-HP [administrator]

2014-11-07 00:54:34
mbar-log-2014-11-07 (00-54-34).txt

Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 313977
Time elapsed: 13 minute(s), 47 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

Physical Sectors Detected: 0
(No malicious items detected)

(end)



#13 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:09:16 PM

Posted 08 November 2014 - 07:45 PM

Lets reset Internet Explorer and see if that helps.

http://support.microsoft.com/kb/923737


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#14 jovson

jovson
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sweden
  • Local time:03:16 AM

Posted 09 November 2014 - 05:13 AM

Hi.

 

I have run that one and reset it alot of times Before this, so that is  done.



#15 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,512 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:09:16 PM

Posted 09 November 2014 - 07:04 PM

Install Recovery Console and Run ComboFix

This tool is not a toy. If used the wrong way you could trash your computer. Please use only under direction of a Helper. If you decide to do so anyway, please do not blame me or ComboFix.

Download Combofix from any of the links below, and save it to your desktop

Link 1
Link 2

  • Close/disable all anti-virus and anti-malware programs so they do not interfere with the running of ComboFix. Refer to this page if you are not sure how.
  • Close any open windows, including this one.
  • Double click on ComboFix.exe & follow the prompts.
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal.  It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • If you did not have it installed, you will see the prompt below. Choose YES.
  • RcAuto1.gif
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.

**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Note:The Windows Recovery Console will allow you to boot up into a special recovery (repair) mode. This allows us to more easily help you
should your computer have a problem after an attempted removal of malware. It is a simple procedure that will only take a few moments of your time.

  • Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

    whatnext.png
  • Click on Yes, to continue scanning for malware.
  • When finished, it will produce a report for you. Please post the contents of the log (C:\ComboFix.txt).
Leave your computer alone while ComboFix is running.
ComboFix will restart your computer if malware is found; allow it to do so.


Note: Please Do NOT mouseclick combofix's window while its running because it may cause it to stall.
 


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users