Just nu i M3-nätverket
Gå till innehåll

Popup i IE.


charlesjj

Rekommendera Poster

Hej

 

Jag brukar var förskonad ifrån virus och skit men nu var det min tur. Helt plötsligt startade datorn om och sen började problemen.

 

Explorer startar upp av sig självt och det kommer upp helsidor med reklam av diverse sort... 

Jag har scannat med diverse program. Adwcleaner etc och fick träff på "Conduit" tog bort detta och trodde att problemet var löst men icke för det fortsätter. Virusprogrammet hittar inget och adwcleaner hittar inget mer.

 

Här är loggen från Hijack men jag kan inte se något uppenbart...

 

Hoppas på assistans :-)

 

 

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 22:31:46, on 2014-05-16
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17041)
Boot mode: Normal
 
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\ProgramData\DatacardService\DCSHelper.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe
C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe
C:\Windows\PLFSetI.exe
C:\Program Files\Telia\Supportassistenten\bin\sprtcmd.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Common Files\McAfee\Platform\mcuicnt.exe
C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehmsas.exe
D:\Program Files\Spotify\Data\SpotifyWebHelper.exe
C:\Windows\system32\wuauclt.exe
C:\Users\Kalle\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files\OpenOffice.org 2.4\program\soffice.exe
D:\Program Files\OnecomCloudDrive\Dlls\OnecomCloudDrive.exe
C:\Program Files\OpenOffice.org 2.4\program\soffice.BIN
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\Kalle\Downloads\HijackThis.exe
 
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=041d&s=2&o=vp32&d=0809&m=aspire_6930g
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=041d&s=2&o=vp32&d=0809&m=aspire_6930g
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O1 - Hosts: ::1 localhost
O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\progra~1\mcafee\msk\mskapbho.dll (file missing)
O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ArcadeDeluxeAgent] "C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe"
O4 - HKLM\..\Run: [eAudio] "C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe"
O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe"
O4 - HKLM\..\Run: [PLFSetI] C:\Windows\PLFSetI.exe
O4 - HKLM\..\Run: [Telia] "C:\Program Files\Telia\Supportassistenten\bin\sprtcmd.exe" /P TeliaDA
O4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [LManager] C:\Program Files\Launch Manager\LManager.EXE
O4 - HKLM\..\Run: [ePower_DMC] C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [KeePass 2 PreLoad] "D:\Program Files\KeePass Password Safe 2\KeePass.exe" --preload
O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [spotify Web Helper] "D:\Program Files\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Kalle\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [One.com] D:\Program Files\OnecomCloudDrive\Dlls\AppLauncher.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
O4 - HKUS\S-1-5-18\..\RunOnce: [spUninstallDeleteDir] rmdir /s /q "\SearchProtect" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [spUninstallDeleteDir] rmdir /s /q "\SearchProtect" (User 'Default user')
O4 - Startup: OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe
O4 - Startup: Skärmurklipp och start för OneNote 2007.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: E&xportera till Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skicka till OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Ski&cka till OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~1\mcafee\msc\mcsniepl.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GO36F4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: CLHNService - Unknown owner - C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
O23 - Service: DiinoService - Unknown owner - C:\Users\Kalle\AppData\Roaming\Diino\DiinoService_win7_i386.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: Google Desktop-hanteraren 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Tjänsten Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Tjänsten Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: HWDeviceService.exe - Unknown owner - C:\ProgramData\DatacardService\HWDeviceService.exe
O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe
O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe
O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
O23 - Service: McAfee Anti-Malware Core (mfecore) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
O23 - Service: Mobile Broadband. OUC (Mobile Broadband. RunOuc) - Unknown owner - C:\Program Files\Mobile Broadband\UpdateDog\ouc.exe
O23 - Service: MobilityService - Acer Incorporated - C:\Acer\Mobility Center\MobilityService.exe
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel® Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SupportSoft Sprocket Service (teliada) (sprtsvc_teliada) - SupportSoft, Inc. - C:\Program Files\Telia\Supportassistenten\bin\sprtsvc.exe
O23 - Service: SpyHunter 4 Service - Enigma Software Group USA, LLC. - C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: SupportSoft RemoteAssist - SupportSoft, Inc. - C:\Program Files\Common Files\SupportSoft\bin\ssrc.exe
O23 - Service: TeamViewer 7 (TeamViewer7) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
O23 - Service: SupportSoft Repair Service (teliada) (tgsrvc_teliada) - SupportSoft, Inc. - C:\Program Files\Telia\Supportassistenten\bin\tgsrvc.exe
O23 - Service: Wifi Man Service (wifimansvc) - Unknown owner - C:\Program Files\Mobile Broadband\eap\wifimansvc.exe
 
--
End of file - 14992 bytes

 

Länk till kommentar
Dela på andra webbplatser

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:15-05-2014

 

Ran by Kalle (administrator) on KALLE-DATOR on 17-05-2014 00:17:40
Running from C:\Users\Kalle\Downloads
Platform: Microsoft Windows 7 Home Premium  Service Pack 1 (X86) OS Language: Swedish
Internet Explorer Version 11
Boot Mode: Normal
 

==================== Processes (Whitelisted) =================
 

 
(Enigma Software Group USA, LLC.) C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
(AMD) C:\Windows\System32\atiesrxx.exe
() C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
() C:\Users\Kalle\AppData\Roaming\Diino\DiinoService_win7_i386.exe
(Egis Incorporated) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
() C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
() C:\ProgramData\DatacardService\HWDeviceService.exe
(McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
() C:\ProgramData\Mobile Broadband\OnlineUpdate\ouc.exe
(Acer Incorporated) C:\ACER\Mobility Center\MobilityService.exe
(NewTech Infosystems, Inc.) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files\Cyberlink\Shared files\RichVideo.exe
(Microsoft Corporation) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
(SupportSoft, Inc.) C:\Program Files\Telia\Supportassistenten\bin\sprtsvc.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
(SupportSoft, Inc.) C:\Program Files\Telia\Supportassistenten\bin\tgsrvc.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(CyberLink Corp.) C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe
(Acer Incorporated) C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe
(Egis Incorporated) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe
(Google) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Acer Corp.) C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe
() C:\Windows\PLFSetI.exe
(Google) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
(SupportSoft, Inc.) C:\Program Files\Telia\Supportassistenten\bin\sprtcmd.exe
(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Dritek System Inc.) C:\Program Files\Launch Manager\LManager.EXE
(Acer Inc.) C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(CyberLink) C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe
(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe
(Spotify Ltd) D:\Program Files\Spotify\Data\SpotifyWebHelper.exe
(One.com) D:\Program Files\OnecomCloudDrive\Dlls\OnecomCloudDrive.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 2.4\program\soffice.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 2.4\program\soffice.bin
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\McChHost.exe
(McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\saUI.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Mail\wlmail.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Contacts\wlcomm.exe
(Emsisoft GmbH) C:\EEK\start.exe
(Emsisoft GmbH) C:\EEK\Run\a2emergencykit.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
 
 
==================== Registry (Whitelisted) ==================
 
HKLM\...\Run: [synTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1049896 2008-04-25] (Synaptics, Inc.)
HKLM\...\Run: [ArcadeDeluxeAgent] => C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [152872 2009-07-02] (CyberLink Corp.)
HKLM\...\Run: [eAudio] => C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe [544768 2008-09-11] (Acer Incorporated)
HKLM\...\Run: [eDataSecurity Loader] => C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe [526896 2008-07-29] (Egis Incorporated)
HKLM\...\Run: [Google Desktop Search] => C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-08-10] (Google)
HKLM\...\Run: [iAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation)
HKLM\...\Run: [PlayMovie] => C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe [173288 2009-05-21] (Acer Corp.)
HKLM\...\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [200704 2007-10-23] ()
HKLM\...\Run: [Telia] => C:\Program Files\Telia\Supportassistenten\bin\sprtcmd.exe [206120 2010-05-10] (SupportSoft, Inc.)
HKLM\...\Run: [startCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-07-07] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [LManager] => C:\Program Files\Launch Manager\LManager.EXE [842248 2009-09-15] (Dritek System Inc.)
HKLM\...\Run: [ePower_DMC] => C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [421888 2009-07-20] (Acer Inc.)
HKLM\...\Run: [mcui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [517392 2014-04-25] (McAfee, Inc.)
HKLM\...\Run: [CLMLServer] => C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe [206120 2009-07-02] (CyberLink)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [11930696 2013-03-29] (Realtek Semiconductor)
HKLM\...\Run: [KeePass 2 PreLoad] => D:\Program Files\KeePass Password Safe 2\KeePass.exe [1960448 2013-04-05] (Dominik Reichl)
HKLM\...\Run: [mcpltui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [517392 2014-04-25] (McAfee, Inc.)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKLM\...\Policies\Explorer: [NoFolderOptions] 0
HKU\.DEFAULT\...\RunOnce: [spUninstallDeleteDir] - rmdir /s /q "\SearchProtect"
HKU\S-1-5-21-54249351-516280376-2711681529-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [144384 2010-11-20] (Microsoft Corporation)
HKU\S-1-5-21-54249351-516280376-2711681529-1000\...\Run: [spotify Web Helper] => D:\Program Files\Spotify\Data\SpotifyWebHelper.exe [1171000 2014-04-13] (Spotify Ltd)
HKU\S-1-5-21-54249351-516280376-2711681529-1000\...\Run: [Google Update] => C:\Users\Kalle\AppData\Local\Google\Update\GoogleUpdate.exe [116648 2012-07-16] (Google Inc.)
HKU\S-1-5-21-54249351-516280376-2711681529-1000\...\Run: [One.com] => D:\Program Files\OnecomCloudDrive\Dlls\AppLauncher.exe [23464 2013-02-10] ()
HKU\S-1-5-21-54249351-516280376-2711681529-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [68856 2009-08-17] (Google Inc.)
HKU\S-1-5-21-54249351-516280376-2711681529-1000\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [21822128 2014-01-30] (Google)
HKU\S-1-5-21-54249351-516280376-2711681529-1000\...\MountPoints2: E - E:\AutoRun.exe
HKU\S-1-5-21-54249351-516280376-2711681529-1000\...\MountPoints2: {6beaee16-ed5f-11e1-876f-806e6f6e6963} - E:\AutoRun.exe
HKU\S-1-5-21-54249351-516280376-2711681529-1000\...\MountPoints2: {6beaee68-ed5f-11e1-876f-00238b850bc1} - E:\AutoRun.exe
HKU\S-1-5-21-54249351-516280376-2711681529-1000\...\MountPoints2: {ca0bb3a7-8b81-11de-b758-806e6f6e6963} - F:\setup.exe /autorun
AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GO36F4~1.DLL => C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll [123392 2010-08-10] (Google)
Startup: C:\Users\Kalle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.4.lnk
ShortcutTarget: OpenOffice.org 2.4.lnk -> C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe ()
Startup: C:\Users\Kalle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Skärmurklipp och start för OneNote 2007.lnk
ShortcutTarget: Skärmurklipp och start för OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
 
==================== Internet (Whitelisted) ====================
 
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACAW&l=041d&s=2&o=vp32&d=0809&m=aspire_6930g
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://global.acer.com
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: HKCU - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - DefaultScope {20704024-BF39-41E7-811B-785FBFC3B0CF} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT3281675&CUI=UN27003951877550270&UM=2
BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\progra~1\mcafee\msk\mskapbho.dll No File
BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll (Egis)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Toolbar: HKLM - Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_04-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll No File
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll No File
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
 
FireFox:
========
FF Plugin: @bankid.com/BankID säkerhetsprogram,version=5.1.2.21 - C:\Program Files\BankID\npBispBrowser.dll (Finansiell ID-Teknik BID AB)
FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=1.6.0_37 - C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.3 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Kalle\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Kalle\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\SiteAdvisor
FF Extension: McAfee SiteAdvisor - C:\Program Files\McAfee\SiteAdvisor [2009-01-22]
FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2009-01-22]
 
Chrome: 
=======
CHR HomePage: hxxp://www.google.com
CHR StartupUrls: "hxxp://www.google.com"
CHR Extension: (Google Dokument) - C:\Users\Kalle\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-06]
CHR Extension: (Google Drive) - C:\Users\Kalle\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-06]
CHR Extension: (YouTube) - C:\Users\Kalle\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-06]
CHR Extension: (Sök på Google) - C:\Users\Kalle\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-06]
CHR Extension: (SiteAdvisor) - C:\Users\Kalle\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2013-12-06]
CHR Extension: (Google Wallet) - C:\Users\Kalle\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-18]
CHR Extension: (Gmail) - C:\Users\Kalle\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-06]
 
========================== Services (Whitelisted) =================
 
R2 CLHNService; C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [75048 2009-04-16] ()
R2 DiinoService; C:\Users\Kalle\AppData\Roaming\Diino\DiinoService_win7_i386.exe [46704 2012-10-19] ()
R2 ETService; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [24576 2009-08-13] ()
S3 GoogleDesktopManager-051210-111108; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-08-10] (Google)
R2 HomeNetSvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
R2 HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [271712 2011-03-14] ()
R2 McAfee SiteAdvisor Service; C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [118264 2014-03-24] (McAfee, Inc.)
R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [145568 2014-04-25] (McAfee, Inc.)
R2 McMPFSvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
S3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [471592 2013-08-02] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [644088 2014-01-21] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [169800 2014-03-17] (McAfee, Inc.)
R2 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe [175480 2014-03-17] (McAfee, Inc.)
S2 Mobile Broadband. RunOuc; C:\Program Files\Mobile Broadband\UpdateDog\ouc.exe [246112 2012-08-23] ()
R2 MobilityService; C:\Acer\Mobility Center\MobilityService.exe [122880 2009-06-16] (Acer Incorporated)
R2 MSK80Service; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)
R2 NTISchedulerSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [144632 2008-09-23] (NewTech Infosystems, Inc.)
R2 RichVideo; C:\Program Files\Cyberlink\Shared files\RichVideo.exe [272024 2007-01-09] ()
R2 sprtsvc_teliada; C:\Program Files\Telia\Supportassistenten\bin\sprtsvc.exe [206120 2010-05-10] (SupportSoft, Inc.)
R2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [770432 2014-01-09] (Enigma Software Group USA, LLC.)
S2 SupportSoft RemoteAssist; C:\Program Files\Common Files\SupportSoft\bin\ssrc.exe [382320 2009-06-16] (SupportSoft, Inc.)
R2 tgsrvc_teliada; C:\Program Files\Telia\Supportassistenten\bin\tgsrvc.exe [185640 2010-05-10] (SupportSoft, Inc.)
S3 wifimansvc; C:\Program Files\Mobile Broadband\eap\wifimansvc.exe [598528 2012-08-23] ()
 
==================== Drivers (Whitelisted) ====================
 
R1 A2DDA; C:\EEK\RUN\a2ddax86.sys [22056 2014-05-16] (Emsisoft GmbH)
S3 A310; C:\Windows\System32\DRIVERS\AVerA310USB.sys [26752 2008-07-03] (AVerMedia TECHNOLOGIES, Inc.)
S3 BDASwCap; C:\Windows\System32\drivers\AVerA310Cap.sys [47104 2008-07-03] (AVerMedia TECHNOLOGIES, Inc.)
R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [61400 2014-03-17] (McAfee, Inc.)
R3 cleanhlp; C:\EEK\Run\cleanhlp32.sys [50200 2014-05-16] (Emsisoft GmbH)
R2 cpuz132; C:\Windows\system32\drivers\cpuz132_x32.sys [12672 2009-03-27] (Windows ® Codename Longhorn DDK provider)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [19984 2012-06-22] ()
S3 GTUHSBUS; C:\Windows\System32\DRIVERS\gtuhsbus.sys [63360 2009-02-04] (Option N.V.)
S3 GTUHSNDISIPXP; C:\Windows\System32\DRIVERS\gtuhs51.sys [105856 2009-02-04] (Option N.V.)
S3 GTUHSSER; C:\Windows\System32\DRIVERS\gtuhsser.sys [8064 2009-02-04] (Option N.V.)
R3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [147912 2013-09-23] (McAfee, Inc.)
R3 L1E; C:\Windows\System32\DRIVERS\L1E62x86.sys [48640 2009-08-23] (Atheros Communications, Inc.)
R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [134600 2014-03-17] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [236480 2014-03-17] (McAfee, Inc.)
S3 mfebopk; C:\Windows\System32\drivers\mfebopk.sys [66408 2014-03-17] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [367776 2014-03-17] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [573968 2014-03-17] (McAfee, Inc.)
R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [330248 2014-01-21] (McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [81264 2014-01-21] (McAfee, Inc.)
S3 mferkdk; C:\Windows\System32\drivers\mferkdk.sys [34248 2009-09-16] (McAfee, Inc.)
S3 mfesmfk; C:\Windows\System32\drivers\mfesmfk.sys [40552 2009-09-16] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [214856 2014-03-17] (McAfee, Inc.)
R3 nuvotoncir; C:\Windows\System32\DRIVERS\nuvotoncir.sys [44544 2009-08-31] (Nuvoton Technology Corporation)
S3 papycpu; C:\Windows\system32\Drivers\papycpu.sys [1984 1998-09-04] ()
R0x01000000 papycpu2; C:\Windows\system32\drivers\papycpu2.sys [2016 2001-04-20] ()
R3 RTHDMIAzAudService; C:\Windows\System32\drivers\RtHDMIV.sys [159776 2009-06-24] (Realtek Semiconductor Corp.)
S3 TdsNordecr; C:\Windows\System32\DRIVERS\nordecr.sys [24064 2007-10-30] (Todos Data System AB)
S3 winbondcir; C:\Windows\System32\DRIVERS\winbondcir.sys [43008 2007-03-28] (Winbond Electronics Corporation)
U5 ew_hwusbdev; C:\Windows\System32\Drivers\ew_hwusbdev.sys [102784 2012-08-23] (Huawei Technologies Co., Ltd.)
U5 papyjoy; C:\Windows\System32\Drivers\papyjoy.sys [1888 1998-09-04] ()
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [48128 2009-07-14] (Microsoft Corporation)
 
==================== NetSvcs (Whitelisted) ===================
 
 
==================== One Month Created Files and Folders ========
 
2014-05-17 00:17 - 2014-05-17 00:18 - 00025962 _____ () C:\Users\Kalle\Downloads\FRST.txt
2014-05-17 00:17 - 2014-05-17 00:17 - 00000000 ____D () C:\FRST
2014-05-17 00:15 - 2014-05-17 00:15 - 01056768 _____ (Farbar) C:\Users\Kalle\Downloads\FRST.exe
2014-05-16 23:59 - 2014-05-16 23:59 - 00000550 _____ () C:\Users\Kalle\Desktop\Emsisoft Emergency Kit.lnk
2014-05-16 23:58 - 2014-05-16 23:59 - 00000000 ____D () C:\EEK
2014-05-16 23:57 - 2014-05-16 23:58 - 227750472 _____ () C:\Users\Kalle\Downloads\EmsisoftEmergencyKit.exe
2014-05-16 23:52 - 2014-05-16 23:52 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{4F2377A9-2B63-4CCB-8B82-2D6D33AADDFA}
2014-05-16 23:24 - 2014-05-16 23:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2014-05-16 23:13 - 2014-05-16 23:13 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-16 22:34 - 2014-05-16 22:34 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-05-16 22:29 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-16 22:29 - 2014-05-06 05:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-16 22:29 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-16 03:03 - 2014-05-16 03:04 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{CF6C5AE9-AA43-4B9D-B8A5-E107A50B0464}
2014-05-16 02:49 - 2014-05-16 02:55 - 00002248 _____ () C:\Users\Kalle\Desktop\Rkill.txt
2014-05-16 02:09 - 2014-05-16 02:09 - 00002242 _____ () C:\Users\Kalle\Desktop\SpyHunter.lnk
2014-05-16 02:09 - 2014-05-16 02:09 - 00000000 ____D () C:\Users\Kalle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2014-05-16 02:09 - 2014-05-16 02:09 - 00000000 ____D () C:\sh4ldr
2014-05-16 02:09 - 2014-05-16 02:09 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-05-16 02:07 - 2014-05-16 02:09 - 00000000 ____D () C:\Windows\455F074C814E4520B69B5584BD90400C.TMP
2014-05-16 02:07 - 2014-05-16 02:07 - 00000000 ____D () C:\Program Files\Common Files\Wise Installation Wizard
2014-05-16 02:06 - 2014-05-16 02:06 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Kalle\Downloads\SpyHunter-Installer.exe
2014-05-16 01:50 - 2014-05-16 01:50 - 01016261 _____ (Thisisu) C:\Users\Kalle\Downloads\JRT (1).exe
2014-05-16 01:50 - 2014-05-16 01:50 - 00000000 ____D () C:\Windows\ERUNT
2014-05-16 01:49 - 2014-05-16 01:50 - 01016261 _____ (Thisisu) C:\Users\Kalle\Downloads\JRT.exe
2014-05-16 01:11 - 2014-05-16 01:11 - 17352880 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2014-05-16 00:52 - 2014-05-16 00:52 - 00001159 _____ () C:\Users\Kalle\Desktop\HijackThis - genväg.lnk
2014-05-16 00:37 - 2014-05-09 09:06 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-16 00:37 - 2014-05-09 09:04 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-16 00:37 - 2014-04-12 04:11 - 01059840 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-16 00:37 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2014-05-16 00:37 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-16 00:37 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-16 00:37 - 2014-03-04 11:17 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-16 00:37 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-16 00:36 - 2014-04-12 04:15 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-16 00:36 - 2014-04-12 04:15 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-16 00:36 - 2014-04-12 04:12 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-16 00:36 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-16 00:36 - 2014-04-12 04:12 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-16 00:36 - 2014-04-12 04:11 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-16 00:36 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-16 00:36 - 2014-03-04 11:17 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-16 00:36 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-16 00:36 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-16 00:36 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-16 00:36 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-16 00:36 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-16 00:36 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-16 00:36 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-16 00:36 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-16 00:18 - 2014-05-16 22:31 - 00014994 _____ () C:\Users\Kalle\Downloads\hijackthis.log
2014-05-16 00:17 - 2014-05-16 00:17 - 00388608 _____ (Trend Micro Inc.) C:\Users\Kalle\Downloads\HijackThis.exe
2014-05-16 00:01 - 2014-05-16 00:01 - 01325827 _____ () C:\Users\Kalle\Downloads\adwcleaner_3.208 (1).exe
2014-05-15 23:53 - 2014-05-16 23:13 - 00000000 ____D () C:\AdwCleaner
2014-05-15 23:52 - 2014-05-15 23:52 - 01325827 _____ () C:\Users\Kalle\Downloads\adwcleaner_3.208.exe
2014-05-15 03:07 - 2014-05-15 03:07 - 00126815 _____ () C:\Users\Kalle\Downloads\D4D8.tmp
2014-05-15 02:44 - 2014-05-15 03:12 - 00003882 _____ () C:\Users\Kalle\Desktop\Nmc_2014-05-15_02-44-21.log
2014-05-14 22:30 - 2014-05-14 22:30 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{40010532-1854-4D6E-8CEE-234E4219B21E}
2014-05-13 22:24 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-13 22:24 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-13 19:54 - 2014-05-13 19:54 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{7405D89E-AB85-44DB-AA93-DA0A5542386F}
2014-05-12 22:19 - 2014-05-12 22:20 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{3E2D9C3D-875F-480E-99C4-A0645095B518}
2014-05-11 22:26 - 2014-05-11 22:26 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{42A12A95-3014-47FB-A378-691BC3F4F5AE}
2014-05-10 14:16 - 2014-05-10 14:16 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{399FDCAF-B66D-4BE6-A802-BF86FD90A694}
2014-05-09 18:07 - 2014-05-09 18:08 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{61A9B6FE-60F1-48AF-8E2F-A3D380C0D472}
2014-05-09 17:08 - 2014-05-09 17:08 - 00000000 ____D () C:\Users\Default\AppData\Local\Google
2014-05-09 17:08 - 2014-05-09 17:08 - 00000000 ____D () C:\Users\Default User\AppData\Local\Google
2014-05-08 19:11 - 2014-05-08 19:11 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{4ADAF39C-67A3-4A6A-944C-D60398ED56EF}
2014-05-07 22:27 - 2014-05-07 22:27 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{0BEB3E68-047C-4C9A-B041-01E98539CCAF}
2014-05-06 21:15 - 2014-05-06 21:15 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{52FC652A-E3C4-4CF8-8492-79EA390266BC}
2014-05-05 22:59 - 2014-05-05 22:59 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{C2EC7FF7-8E86-486A-89CC-DE97B62C15FB}
2014-05-02 19:46 - 2014-05-02 19:46 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{19251336-4939-40CE-A673-E996699CCCBA}
2014-05-01 22:47 - 2014-05-01 22:48 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{3369846B-7B8E-4E93-A3EC-914423E50C97}
2014-05-01 09:56 - 2014-05-01 09:57 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{28F3F11A-8F38-4E7F-8776-C8C747E141A8}
2014-04-30 16:41 - 2014-04-30 16:41 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{2CFD7E70-DFA8-416F-8CAC-6A0D44A8D4ED}
2014-04-29 22:34 - 2014-04-29 22:34 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{2D5A9D6E-26B9-4345-B300-BE97971E6E20}
2014-04-28 18:13 - 2014-04-28 18:13 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{5BAF61CD-265F-42AC-9C18-0BA9920045C8}
2014-04-27 20:47 - 2014-04-27 20:48 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{2170483A-8851-4B71-91E7-9B42282D605F}
2014-04-26 13:39 - 2014-04-26 13:39 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{D461CF70-126B-4778-AB18-8D1F69400FD1}
2014-04-26 09:42 - 2014-04-26 09:42 - 00140368 _____ () C:\Windows\Minidump\042614-29655-01.dmp
2014-04-25 17:10 - 2014-04-25 17:10 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{3C072CB7-E22B-4171-9952-863EA19A9255}
2014-04-24 17:00 - 2014-04-24 17:01 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{4FD5CEB9-AFA3-430A-984E-6BF0609462B7}
2014-04-23 19:49 - 2013-09-23 13:48 - 00147912 _____ (McAfee, Inc.) C:\Windows\system32\Drivers\HipShieldK.sys
2014-04-23 17:37 - 2014-04-23 17:37 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{461A33DD-9C56-4903-89DA-3FBDB601BBE7}
2014-04-22 16:55 - 2014-04-22 16:55 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{CFE3FD2B-C68F-4D9D-9FAB-56BF615C4A5D}
2014-04-21 16:51 - 2014-04-21 16:51 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{3968F5E6-EE80-42DD-AD31-92113878817B}
2014-04-19 00:05 - 2014-04-19 00:05 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{776C0837-8E0D-43E0-813C-11BF2086984A}
2014-04-18 09:26 - 2014-04-18 09:27 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{A354B4C5-711C-4B50-AED5-693383E46F1A}
2014-04-17 19:08 - 2014-04-17 19:09 - 00000000 ____D () C:\Users\Kalle\Documents\My Digital Editions
2014-04-17 19:08 - 2014-04-17 19:08 - 00001001 _____ () C:\Users\Public\Desktop\Adobe Digital Editions 3.0.lnk
2014-04-17 19:08 - 2014-04-17 19:08 - 00001001 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Digital Editions 3.0.lnk
2014-04-17 19:08 - 2014-04-17 19:08 - 00000000 ____D () C:\Users\Kalle\AppData\Local\Adobe_Systems_Incorporate
2014-04-17 19:08 - 2014-04-17 19:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
2014-04-17 18:25 - 2014-04-17 18:25 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{FDA74730-E5E9-4169-A86B-D89DABD01B53}
 
==================== One Month Modified Files and Folders =======
 
2014-05-17 00:18 - 2014-05-17 00:17 - 00025962 _____ () C:\Users\Kalle\Downloads\FRST.txt
2014-05-17 00:17 - 2014-05-17 00:17 - 00000000 ____D () C:\FRST
2014-05-17 00:15 - 2014-05-17 00:15 - 01056768 _____ (Farbar) C:\Users\Kalle\Downloads\FRST.exe
2014-05-17 00:13 - 2009-11-10 20:12 - 01290489 _____ () C:\Windows\WindowsUpdate.log
2014-05-17 00:13 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\NDF
2014-05-17 00:11 - 2012-04-09 09:19 - 00000868 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-17 00:03 - 2010-02-01 18:42 - 00000982 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-16 23:59 - 2014-05-16 23:59 - 00000550 _____ () C:\Users\Kalle\Desktop\Emsisoft Emergency Kit.lnk
2014-05-16 23:59 - 2014-05-16 23:58 - 00000000 ____D () C:\EEK
2014-05-16 23:58 - 2014-05-16 23:57 - 227750472 _____ () C:\Users\Kalle\Downloads\EmsisoftEmergencyKit.exe
2014-05-16 23:52 - 2014-05-16 23:52 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{4F2377A9-2B63-4CCB-8B82-2D6D33AADDFA}
2014-05-16 23:51 - 2010-03-13 19:02 - 00000000 ____D () C:\Users\Kalle\Documents\Min Mailfolder
2014-05-16 23:28 - 2009-11-10 19:42 - 00011104 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-16 23:28 - 2009-11-10 19:42 - 00011104 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-16 23:24 - 2014-05-16 23:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee
2014-05-16 23:24 - 2010-08-01 11:44 - 00001848 _____ () C:\Users\Public\Desktop\McAfee Internet Security Suite.lnk
2014-05-16 23:23 - 2012-08-25 20:26 - 00001004 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-54249351-516280376-2711681529-1000UA.job
2014-05-16 23:21 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-05-16 23:20 - 2013-05-06 22:35 - 00000000 ____D () C:\Users\Kalle\AppData\Roaming\OnecomCloudDrive
2014-05-16 23:19 - 2009-09-17 22:30 - 00000000 ____D () C:\Users\Kalle\AppData\Roaming\OpenOffice.org2
2014-05-16 23:17 - 2010-02-01 18:42 - 00000978 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-16 23:16 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-16 23:15 - 2009-07-14 06:39 - 25602308 _____ () C:\Windows\setupact.log
2014-05-16 23:14 - 2009-11-10 20:02 - 09504422 _____ () C:\Windows\PFRO.log
2014-05-16 23:13 - 2014-05-16 23:13 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-16 23:13 - 2014-05-15 23:53 - 00000000 ____D () C:\AdwCleaner
2014-05-16 23:13 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\sv-SE
2014-05-16 22:41 - 2013-07-22 09:28 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-16 22:35 - 2009-11-10 22:43 - 90547776 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-16 22:34 - 2014-05-16 22:34 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-05-16 22:34 - 2009-01-22 22:52 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-05-16 22:31 - 2014-05-16 00:18 - 00014994 _____ () C:\Users\Kalle\Downloads\hijackthis.log
2014-05-16 03:04 - 2014-05-16 03:03 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{CF6C5AE9-AA43-4B9D-B8A5-E107A50B0464}
2014-05-16 02:55 - 2014-05-16 02:49 - 00002248 _____ () C:\Users\Kalle\Desktop\Rkill.txt
2014-05-16 02:09 - 2014-05-16 02:09 - 00002242 _____ () C:\Users\Kalle\Desktop\SpyHunter.lnk
2014-05-16 02:09 - 2014-05-16 02:09 - 00000000 ____D () C:\Users\Kalle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
2014-05-16 02:09 - 2014-05-16 02:09 - 00000000 ____D () C:\sh4ldr
2014-05-16 02:09 - 2014-05-16 02:09 - 00000000 ____D () C:\Program Files\Enigma Software Group
2014-05-16 02:09 - 2014-05-16 02:07 - 00000000 ____D () C:\Windows\455F074C814E4520B69B5584BD90400C.TMP
2014-05-16 02:07 - 2014-05-16 02:07 - 00000000 ____D () C:\Program Files\Common Files\Wise Installation Wizard
2014-05-16 02:06 - 2014-05-16 02:06 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Kalle\Downloads\SpyHunter-Installer.exe
2014-05-16 01:50 - 2014-05-16 01:50 - 01016261 _____ (Thisisu) C:\Users\Kalle\Downloads\JRT (1).exe
2014-05-16 01:50 - 2014-05-16 01:50 - 00000000 ____D () C:\Windows\ERUNT
2014-05-16 01:50 - 2014-05-16 01:49 - 01016261 _____ (Thisisu) C:\Users\Kalle\Downloads\JRT.exe
2014-05-16 01:26 - 2013-04-09 22:45 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-05-16 01:23 - 2013-07-11 00:46 - 00000000 ____D () C:\Users\Kalle\Documents\vandring
2014-05-16 01:23 - 2012-08-25 20:26 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-54249351-516280376-2711681529-1000Core.job
2014-05-16 01:11 - 2014-05-16 01:11 - 17352880 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe
2014-05-16 01:11 - 2012-04-09 09:19 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-05-16 01:11 - 2011-05-22 18:06 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-05-16 00:52 - 2014-05-16 00:52 - 00001159 _____ () C:\Users\Kalle\Desktop\HijackThis - genväg.lnk
2014-05-16 00:17 - 2014-05-16 00:17 - 00388608 _____ (Trend Micro Inc.) C:\Users\Kalle\Downloads\HijackThis.exe
2014-05-16 00:01 - 2014-05-16 00:01 - 01325827 _____ () C:\Users\Kalle\Downloads\adwcleaner_3.208 (1).exe
2014-05-15 23:52 - 2014-05-15 23:52 - 01325827 _____ () C:\Users\Kalle\Downloads\adwcleaner_3.208.exe
2014-05-15 23:32 - 2009-11-10 19:44 - 00000000 ____D () C:\Users\Kalle
2014-05-15 23:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\wfp
2014-05-15 23:26 - 2014-03-29 00:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2014-05-15 23:25 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\Windows Defender
2014-05-15 23:24 - 2014-03-29 00:18 - 00000000 ___RD () C:\Users\Kalle\Google Drive
2014-05-15 23:24 - 2012-10-19 16:48 - 00000000 ____D () C:\Users\Kalle\AppData\Roaming\Diino
2014-05-15 23:24 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\Windows Sidebar
2014-05-15 23:24 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system
2014-05-15 23:24 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\AppCompat
2014-05-15 23:24 - 2009-01-22 22:56 - 00000000 ____D () C:\Windows\system32\Macromed
2014-05-15 23:23 - 2013-12-06 23:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-05-15 23:23 - 2012-08-23 21:31 - 00000000 ____D () C:\Program Files\Mobile Broadband
2014-05-15 23:23 - 2012-08-23 21:30 - 00000000 ____D () C:\ProgramData\DatacardService
2014-05-15 23:23 - 2012-07-10 23:04 - 00000000 ____D () C:\Program Files\Common Files\Steam
2014-05-15 23:23 - 2010-04-21 18:19 - 00000000 ____D () C:\Program Files\Equipe 4
2014-05-15 23:23 - 2009-08-17 21:50 - 00000000 ____D () C:\Program Files\Launch Manager
2014-05-15 23:23 - 2009-01-22 23:19 - 00000000 ____D () C:\Program Files\Common Files\McAfee
2014-05-15 23:23 - 2009-01-22 22:52 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-05-15 23:21 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\registration
2014-05-15 03:12 - 2014-05-15 02:44 - 00003882 _____ () C:\Users\Kalle\Desktop\Nmc_2014-05-15_02-44-21.log
2014-05-15 03:07 - 2014-05-15 03:07 - 00126815 _____ () C:\Users\Kalle\Downloads\D4D8.tmp
2014-05-15 01:38 - 2009-10-08 22:21 - 00000000 ____D () C:\Users\Kalle\Documents\Ekonomi - Dokument
2014-05-14 22:30 - 2014-05-14 22:30 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{40010532-1854-4D6E-8CEE-234E4219B21E}
2014-05-13 19:54 - 2014-05-13 19:54 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{7405D89E-AB85-44DB-AA93-DA0A5542386F}
2014-05-12 22:20 - 2014-05-12 22:19 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{3E2D9C3D-875F-480E-99C4-A0645095B518}
2014-05-11 22:26 - 2014-05-11 22:26 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{42A12A95-3014-47FB-A378-691BC3F4F5AE}
2014-05-10 14:16 - 2014-05-10 14:16 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{399FDCAF-B66D-4BE6-A802-BF86FD90A694}
2014-05-09 18:08 - 2014-05-09 18:07 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{61A9B6FE-60F1-48AF-8E2F-A3D380C0D472}
2014-05-09 17:08 - 2014-05-09 17:08 - 00000000 ____D () C:\Users\Default\AppData\Local\Google
2014-05-09 17:08 - 2014-05-09 17:08 - 00000000 ____D () C:\Users\Default User\AppData\Local\Google
2014-05-09 09:06 - 2014-05-16 00:37 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-09 09:04 - 2014-05-16 00:37 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-08 19:11 - 2014-05-08 19:11 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{4ADAF39C-67A3-4A6A-944C-D60398ED56EF}
2014-05-07 22:27 - 2014-05-07 22:27 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{0BEB3E68-047C-4C9A-B041-01E98539CCAF}
2014-05-06 21:39 - 2009-09-17 22:39 - 00000000 ____D () C:\Users\Kalle\AppData\Local\CutePDF Writer
2014-05-06 21:15 - 2014-05-06 21:15 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{52FC652A-E3C4-4CF8-8492-79EA390266BC}
2014-05-06 05:25 - 2014-05-16 22:29 - 17382912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-06 05:07 - 2014-05-16 22:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-06 04:10 - 2014-05-16 22:29 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-05 23:00 - 2009-11-10 20:23 - 01580554 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-05 23:00 - 2009-07-14 10:15 - 00664068 _____ () C:\Windows\system32\perfh01D.dat
2014-05-05 23:00 - 2009-07-14 10:15 - 00142836 _____ () C:\Windows\system32\perfc01D.dat
2014-05-05 22:59 - 2014-05-05 22:59 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{C2EC7FF7-8E86-486A-89CC-DE97B62C15FB}
2014-05-02 19:46 - 2014-05-02 19:46 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{19251336-4939-40CE-A673-E996699CCCBA}
2014-05-01 22:48 - 2014-05-01 22:47 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{3369846B-7B8E-4E93-A3EC-914423E50C97}
2014-05-01 09:57 - 2014-05-01 09:56 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{28F3F11A-8F38-4E7F-8776-C8C747E141A8}
2014-04-30 16:41 - 2014-04-30 16:41 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{2CFD7E70-DFA8-416F-8CAC-6A0D44A8D4ED}
2014-04-29 22:34 - 2014-04-29 22:34 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{2D5A9D6E-26B9-4345-B300-BE97971E6E20}
2014-04-28 22:40 - 2013-12-06 23:14 - 00002129 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-04-28 18:13 - 2014-04-28 18:13 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{5BAF61CD-265F-42AC-9C18-0BA9920045C8}
2014-04-27 20:48 - 2014-04-27 20:47 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{2170483A-8851-4B71-91E7-9B42282D605F}
2014-04-26 13:39 - 2014-04-26 13:39 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{D461CF70-126B-4778-AB18-8D1F69400FD1}
2014-04-26 09:42 - 2014-04-26 09:42 - 00140368 _____ () C:\Windows\Minidump\042614-29655-01.dmp
2014-04-26 09:42 - 2010-02-22 23:28 - 00000000 ____D () C:\Windows\Minidump
2014-04-26 09:42 - 2010-02-22 23:27 - 233935953 _____ () C:\Windows\MEMORY.DMP
2014-04-25 17:10 - 2014-04-25 17:10 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{3C072CB7-E22B-4171-9952-863EA19A9255}
2014-04-24 17:01 - 2014-04-24 17:00 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{4FD5CEB9-AFA3-430A-984E-6BF0609462B7}
2014-04-23 17:37 - 2014-04-23 17:37 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{461A33DD-9C56-4903-89DA-3FBDB601BBE7}
2014-04-22 21:17 - 2013-05-08 19:59 - 00000000 ____D () C:\Users\Kalle\AppData\Roaming\KeePass
2014-04-22 16:55 - 2014-04-22 16:55 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{CFE3FD2B-C68F-4D9D-9FAB-56BF615C4A5D}
2014-04-21 23:07 - 2009-09-14 20:45 - 00000000 ____D () C:\Users\Kalle\Documents\Mina tävlingar
2014-04-21 16:51 - 2014-04-21 16:51 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{3968F5E6-EE80-42DD-AD31-92113878817B}
2014-04-19 00:05 - 2014-04-19 00:05 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{776C0837-8E0D-43E0-813C-11BF2086984A}
2014-04-19 00:04 - 2010-05-23 16:20 - 00000000 ____D () C:\Users\Kalle\AppData\Roaming\Spotify
2014-04-18 19:10 - 2010-05-23 16:20 - 00000000 ____D () C:\Users\Kalle\AppData\Local\Spotify
2014-04-18 09:27 - 2014-04-18 09:26 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{A354B4C5-711C-4B50-AED5-693383E46F1A}
2014-04-17 19:09 - 2014-04-17 19:08 - 00000000 ____D () C:\Users\Kalle\Documents\My Digital Editions
2014-04-17 19:08 - 2014-04-17 19:08 - 00001001 _____ () C:\Users\Public\Desktop\Adobe Digital Editions 3.0.lnk
2014-04-17 19:08 - 2014-04-17 19:08 - 00001001 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Digital Editions 3.0.lnk
2014-04-17 19:08 - 2014-04-17 19:08 - 00000000 ____D () C:\Users\Kalle\AppData\Local\Adobe_Systems_Incorporate
2014-04-17 19:08 - 2014-04-17 19:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
2014-04-17 18:25 - 2014-04-17 18:25 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{FDA74730-E5E9-4169-A86B-D89DABD01B53}
 
Some content of TEMP:
====================
C:\Users\Kalle\AppData\Local\Temp\0xdj1v2d.dll
C:\Users\Kalle\AppData\Local\Temp\AskSLib.dll
C:\Users\Kalle\AppData\Local\Temp\AutostoreTelia.exe
C:\Users\Kalle\AppData\Local\Temp\CmdLineExt03.dll
C:\Users\Kalle\AppData\Local\Temp\fs_health_check.exe
C:\Users\Kalle\AppData\Local\Temp\jna4878300416044946101.dll
C:\Users\Kalle\AppData\Local\Temp\jna4933576830684836869.dll
C:\Users\Kalle\AppData\Local\Temp\jre-6u26-windows-i586-iftw-rv.exe
C:\Users\Kalle\AppData\Local\Temp\jre-6u29-windows-i586-iftw-rv.exe
C:\Users\Kalle\AppData\Local\Temp\jre-6u31-windows-i586-iftw-rv.exe
C:\Users\Kalle\AppData\Local\Temp\jre-6u33-windows-i586-iftw.exe
C:\Users\Kalle\AppData\Local\Temp\jre-6u35-windows-i586-iftw.exe
C:\Users\Kalle\AppData\Local\Temp\jre-6u37-windows-i586-iftw.exe
C:\Users\Kalle\AppData\Local\Temp\jre-7u15-windows-i586-iftw.exe
C:\Users\Kalle\AppData\Local\Temp\nsb1093.exe
C:\Users\Kalle\AppData\Local\Temp\nsg8E9C.exe
C:\Users\Kalle\AppData\Local\Temp\nswD46B.exe
C:\Users\Kalle\AppData\Local\Temp\o2teynk2.dll
C:\Users\Kalle\AppData\Local\Temp\Quarantine.exe
C:\Users\Kalle\AppData\Local\Temp\redist86.exe
C:\Users\Kalle\AppData\Local\Temp\RtkBtMnt.exe
C:\Users\Kalle\AppData\Local\Temp\SecondStepInstaller.exe
C:\Users\Kalle\AppData\Local\Temp\SHSetup.exe
C:\Users\Kalle\AppData\Local\Temp\SIntf16.dll
C:\Users\Kalle\AppData\Local\Temp\SIntf32.dll
C:\Users\Kalle\AppData\Local\Temp\SIntfNT.dll
C:\Users\Kalle\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Kalle\AppData\Local\Temp\SpotifyUpgrader.exe
C:\Users\Kalle\AppData\Local\Temp\SPSetup.exe
C:\Users\Kalle\AppData\Local\Temp\SPStub.exe
C:\Users\Kalle\AppData\Local\Temp\tbentr.dll
C:\Users\Kalle\AppData\Local\Temp\{1B857B35-06DA-44E5-9725-AE49D69F6D14}-GoogleUpdateSetup.exe
C:\Users\Kalle\AppData\Local\Temp\{49220C01-E449-46B3-A6D7-B38BEE2CA10A}-GoogleUpdateSetup.exe
 
 
==================== Bamital & volsnap Check =================
 
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe
[2014-05-16 00:37] - [2014-03-04 11:17] - 0304128 ____A (Microsoft Corporation) 998507B046BA314CE8245364C686FA67
 
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
 
 
LastRegBack: 2014-05-09 17:30
 
==================== End Of Log ============================
Länk till kommentar
Dela på andra webbplatser

Additional scan result of Farbar Recovery Scan Tool (x86) Version:15-05-2014


 

Ran by Kalle at 2014-05-17 00:19:42
Running from C:\Users\Kalle\Downloads
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
AV: McAfee Antivirus och antispionprogram (Enabled - Up to date) {ADA629C7-7F48-5689-624A-3B76997E0892}
AS: McAfee Antivirus och antispionprogram (Enabled - Up to date) {16C7C823-5972-5907-58FA-0004E2F9422F}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: McAfee Firewall (Enabled) {959DA8E2-3527-57D1-4915-924367AD4FE9}
 
==================== Installed Programs ======================
 
 Update for Microsoft Office 2007 (KB2508958) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version:  - Microsoft)
3D RealityMaps Viewer 1.3.3.0 (HKLM\...\AlpenOnlineViewer_is1) (Version: 1.3.3.0 - 3D RealityMaps GmbH)
Acer Arcade Deluxe (HKLM\...\InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}) (Version: 2.0.5817 - CyberLink Corp.)
Acer Arcade Deluxe (Version: 2.0.5817 - CyberLink Corp.) Hidden
Acer Crystal Eye Webcam 2.0.8 (HKLM\...\{A77255C4-AFCB-44A3-BF0F-2091A71FFD9E}) (Version: 2.0.8 - SuYin)
Acer eAudio Management (HKLM\...\{57265292-228A-41FA-9AEC-4620CBCC2739}) (Version: 3.0.3009 - CyberLink Corp.)
Acer eDataSecurity Management (HKLM\...\{A5633652-3795-4829-BB0B-644F0279E279}) (Version: 3.0.3065 - Egis Inc.)
Acer Empowering Technology (HKLM\...\{8F1B6239-FEA0-450A-A950-B05276CE177C}) (Version: 3.0.3016 - Acer Incorporated)
Acer ePower Management (HKLM\...\{58E5844B-7CE2-413D-83D1-99294BF6C74F}) (Version: 3.0.3019 - Acer Incorporated)
Acer eSettings Management (HKLM\...\{13D85C14-2B85-419F-AC41-C7F21E68B25D}) (Version: 3.0.3011 - Acer Incorporated)
Acer GridVista (HKLM\...\GridVista) (Version: 2.72.317 - )
Acer Mobility Center Plug-In (HKLM\...\{11316260-6666-467B-AC34-183FCB5D4335}) (Version: 3.0.3002 - Acer Incorporated)
Acer Product Registration (HKLM\...\{DA20E1A8-07CB-4EE7-9B72-A7E28C953F0E}) (Version: 3.0.0.10 - Acer Incorporated)
Acer ScreenSaver (HKLM\...\{79DD56FC-DB8B-47F5-9C80-78B62E05F9BC}) (Version: 1.11.0701 - Acer Incorporated)
ActiveX-kontroll för fjärranslutningar för Windows Live Mesh (HKLM\...\{376D59B1-42D9-4FA2-B6CC-E346B6BE14F5}) (Version: 15.4.5722.2 - Microsoft Corporation)
Adobe Digital Editions 3.0 (HKLM\...\Adobe Digital Editions 3.0) (Version: 3.0 - Adobe Systems Incorporated)
Adobe Flash Player 13 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 13.0.0.214 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) - Svenska (HKLM\...\{AC76BA86-7AD7-1053-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Agatha Christie Peril at End House (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113848220}) (Version:  - Oberon Media)
Age of Empires III (HKLM\...\InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}) (Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III (Version: 1.00.0000 - Microsoft Game Studios) Hidden
Alice Greenfingers (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112920767}) (Version:  - Oberon Media)
Alien Shooter (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110082360}) (Version:  - Oberon Media)
Atheros Communications Inc.® AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.30 - Atheros Communications Inc.)
ATI Catalyst Install Manager (HKLM\...\{2DEEAFDD-46A9-577A-9EB7-A0B3896A6F77}) (Version: 3.0.732.0 - ATI Technologies, Inc.)
Audacity 2.0.3 (HKLM\...\Audacity_is1) (Version: 2.0.3 - Audacity Team)
BankID säkerhetsprogram (HKLM\...\{2D6973ED-BBF2-434E-993C-37E05087B8C8}) (Version: 5.1.2.21 - Finansiell ID-Teknik BID AB)
Bing Bar (HKLM\...\{77F8A71E-3515-4832-B8B2-2F1EDBD2E0F1}) (Version: 7.0.609.0 - Microsoft Corporation)
Bookworm Adventures (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111940693}) (Version:  - Oberon Media)
C:\Program Files\Acer GameZone\GameConsole (HKLM\...\{71C2828F-2678-4675-BDEC-895424861262}_is1) (Version: 2.0.1.4 - Oberon Media, Inc.)
Cake Mania (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111199750}) (Version:  - Oberon Media)
Catalyst Control Center - Branding (Version: 1.00.0000 - ATI) Hidden
Catalyst Control Center Core Implementation (Version: 2009.0707.2224.38408 - ATI) Hidden
Catalyst Control Center Graphics Full Existing (Version: 2009.0707.2224.38408 - ATI) Hidden
Catalyst Control Center Graphics Full New (Version: 2009.0707.2224.38408 - ATI) Hidden
Catalyst Control Center Graphics Light (Version: 2009.0707.2224.38408 - ATI) Hidden
Catalyst Control Center Graphics Previews Vista (Version: 2009.0707.2224.38408 - ATI) Hidden
Catalyst Control Center InstallProxy (Version: 2008.1210.1623.29379 - ATI Technologies, Inc.) Hidden
Catalyst Control Center InstallProxy (Version: 2009.0707.2224.38408 - ATI Technologies, Inc.) Hidden
Catalyst Control Center Localization All (Version: 2009.0707.2224.38408 - ATI) Hidden
CCC Help Chinese Standard (Version: 2009.0707.2223.38408 - ATI) Hidden
CCC Help Chinese Traditional (Version: 2009.0707.2223.38408 - ATI) Hidden
CCC Help Czech (Version: 2009.0707.2223.38408 - ATI) Hidden
CCC Help Danish (Version: 2009.0707.2223.38408 - ATI) Hidden
CCC Help Dutch (Version: 2009.0707.2223.38408 - ATI) Hidden
CCC Help English (Version: 2009.0707.2223.38408 - ATI) Hidden
CCC Help Finnish (Version: 2009.0707.2223.38408 - ATI) Hidden
CCC Help French (Version: 2009.0707.2223.38408 - ATI) Hidden
CCC Help German (Version: 2009.0707.2223.38408 - ATI) Hidden
CCC Help Greek (Version: 2009.0707.2223.38408 - ATI) Hidden
CCC Help Hungarian (Version: 2009.0707.2223.38408 - ATI) Hidden
CCC Help Italian (Version: 2009.0707.2223.38408 - ATI) Hidden
CCC Help Japanese (Version: 2009.0707.2223.38408 - ATI) Hidden
CCC Help Korean (Version: 2009.0707.2223.38408 - ATI) Hidden
CCC Help Norwegian (Version: 2009.0707.2223.38408 - ATI) Hidden
CCC Help Polish (Version: 2009.0707.2223.38408 - ATI) Hidden
CCC Help Portuguese (Version: 2009.0707.2223.38408 - ATI) Hidden
CCC Help Russian (Version: 2009.0707.2223.38408 - ATI) Hidden
CCC Help Spanish (Version: 2009.0707.2223.38408 - ATI) Hidden
CCC Help Swedish (Version: 2009.0707.2223.38408 - ATI) Hidden
CCC Help Thai (Version: 2009.0707.2223.38408 - ATI) Hidden
CCC Help Turkish (Version: 2009.0707.2223.38408 - ATI) Hidden
ccc-core-static (Version: 2009.0707.2224.38408 - Ditt företagsnamn) Hidden
ccc-utility (Version: 2009.0707.2224.38408 - ATI) Hidden
Chicken Invaders 2 (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110209593}) (Version:  - Oberon Media)
Counter-Strike: Source (HKLM\...\Steam App 240) (Version:  - Valve)
CPUID HWMonitor 1.15 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
CutePDF Writer 2.7 (HKLM\...\CutePDF Writer Installation) (Version:  - )
CyberLink PowerDirector (HKLM\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 6.5.3524 - CyberLink Corp.)
CyberLink PowerDirector (Version: 6.5.3524 - CyberLink Corp.) Hidden
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Dream Day First Home (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113832110}) (Version:  - Oberon Media)
EasyDuplicateFinder v4.1 (HKLM\...\EasyDuplicateFinder_is1) (Version:  - WebMinds, Inc.)
Equipe 4.2.0.2151 (HKLM\...\Equipe) (Version: 4.2.0.2151 - ${PRODUCT_PUBLISHER})
FIFA 2004 (HKLM\...\{782DDB70-3DF4-4366-00BF-E3767BCD173B}) (Version:  - )
Free Hide Folder (HKLM\...\Free Hide Folder) (Version:  - )
Galapago (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111307457}) (Version:  - Oberon Media)
GEM+/iGOR & Lee's GPL Setup Manager 2.5.0.32 (HKLM\...\GEM+/iGOR & Lee's GPL Setup Manager_is1) (Version:  - GPLSecrets Group)
Genie Timeline (HKLM\...\Genie Timeline) (Version: 4.0 - Genie9)
GIMP 2.4.5 (HKLM\...\WinGimp-2.0_is1) (Version:  - )
Go-Go Gourmet (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-114072167}) (Version:  - Oberon Media)
Google Chrome (HKLM\...\Google Chrome) (Version: 34.0.1847.131 - Google Inc.)
Google Desktop (HKLM\...\Google Desktop) (Version: 5.9.1005.12335 - Google)
Google Drive (HKLM\...\{E87022D3-C8C9-4C76-8E27-BC7F18F9B8FB}) (Version: 1.14.6059.644 - Google, Inc.)
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.23.9 - Google Inc.) Hidden
Half-Life 2 (HKLM\...\Steam App 220) (Version:  - Valve)
HDAUDIO Soft Data Fax Modem with SmartCP (HKLM\...\CNXT_MODEM_HDA_HSF) (Version: 7.80.4.55 - Conexant Systems)
Heroes of Hellas (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113786380}) (Version:  - Oberon Media)
ImageStore ClientDeploy (HKLM\...\{06337E41-D7CD-4529-B15F-D306F2780C73}) (Version: 1.0.0 - Meridium Kalmar)
inSSIDer (HKLM\...\{45642795-567E-4B46-85E7-5CDBC8B2F697}) (Version: 2.1.3 - MetaGeek)
Intel PROSet Wireless (Version:  - ) Hidden
Intel® PROSet för trådlösa WiFi-anslutningar (HKLM\...\{35C0A1E4-D02A-412C-841F-266DBB116ABB}) (Version: 12.02.0000 - Intel® Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version:  - Intel Corporation)
Java 6 Update 37 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216033FF}) (Version: 6.0.370 - Oracle)
Java 6 Update 4 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0160040}) (Version: 1.6.0.40 - Sun Microsystems, Inc.)
Junk Mail filter update (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
KeePass Password Safe 2.22 (HKLM\...\KeePassPasswordSafe2_is1) (Version:  - Dominik Reichl)
Launch Manager (HKLM\...\LManager) (Version: 3.0.04 - Acer Inc.)
Logitech Gaming Software (HKLM\...\{93EC14D5-7AAA-4EAD-BB75-013817A96598}) (Version: 4.30 - )
Magic Farm (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-114717227}) (Version:  - Oberon Media)
Magic Match Adventures (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11408540}) (Version:  - Oberon Media)
McAfee Internet Security Suite (HKLM\...\MSC) (Version: 12.8.957 - McAfee, Inc.)
Mesh Runtime (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (SVE) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (svenska) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1053) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Excel 2007 Help Uppdatering (KB963678) (HKLM\...\{90120000-0016-041D-0000-0000000FF1CE}_HOMESTUDENTR_{6696EB50-EC8B-4D01-8061-04A6DE3D590C}) (Version:  - Microsoft)
Microsoft Office Excel MUI (Swedish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office OneNote MUI (Swedish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Powerpoint 2007 Help Uppdatering (KB963669) (HKLM\...\{90120000-0018-041D-0000-0000000FF1CE}_HOMESTUDENTR_{18E9F644-2552-4544-AABB-C1838964DDEE}) (Version:  - Microsoft)
Microsoft Office PowerPoint MUI (Swedish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Finnish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Swedish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (Swedish) 2007 (Version: 12.0.4518.1018 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (Version:  - Microsoft) Hidden
Microsoft Office Shared MUI (Swedish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Suite Activation Assistant (HKLM\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Office Word 2007 Help Uppdatering (KB963665) (HKLM\...\{90120000-001B-041D-0000-0000000FF1CE}_HOMESTUDENTR_{5DF6817C-E3C0-4226-9565-5C10A0AF4BF5}) (Version:  - Microsoft)
Microsoft Office Word MUI (Swedish) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft RalliSport Challenge (HKLM\...\RalliSport Challenge 1.0) (Version:  - )
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Works (HKLM\...\{8BA42EAE-19AD-4bf2-88C0-0232B1FBFDE2}) (Version: 08.05.0822 - Microsoft Corporation)
Mobile Broadband (HKLM\...\Mobile Broadband) (Version: 22.001.18.02.07 - Huawei Technologies Co.,Ltd)
Move Networks Media Player for Internet Explorer (HKCU\...\Move Networks Player - IE) (Version:  - )
MSVCRT (Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Mystery Solitaire - Secret Island (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111796363}) (Version:  - Oberon Media)
Mythic Mahjong (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113919217}) (Version:  - Oberon Media)
Nordea NCR1 Installationspaket (HKLM\...\{CD9A35D4-8A81-4188-98AF-14D759083FB4}) (Version: 1.00.000 - Todos Data System AB)
NTI Backup Now 5 (HKLM\...\InstallShield_{12EFA1A4-AC3B-443C-8143-237EDE760403}) (Version: 5.1.2.616 - NewTech Infosystems)
NTI Backup Now Standard (Version: 5.1.2.616 - NewTech Infosystems) Hidden
NTI Media Maker 8 (HKLM\...\InstallShield_{2413930C-8309-47A6-BC61-5EF27A4222BC}) (Version: 8.0.2.6509 - Ditt företagsnamn)
NTI Media Maker 8 (Version: 8.0.2.6509 - Ditt företagsnamn) Hidden
Nuvoton CIR Device Driver (HKLM\...\{2D3858B1-226A-420D-9C9D-B51864E85429}) (Version: 8.60.1000 - Nuvoton Technology Corporation)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0 - Microsoft Corporation) Hidden
One.com Cloud Drive 0.3.21.19698 (HKCU\...\OnecomCloudDrive) (Version: 0.3.21.19698 - one.com, Inc.)
OpenOffice.org 2.4 (HKLM\...\{F54561AA-BA7D-475B-B8A8-2A8DE3BE6C0C}) (Version: 2.4.9286 - OpenOffice.org)
Orion (HKLM\...\{5B63A470-9334-44D1-AF61-6CE2DB565AE9}) (Version: 2.0.1 - Convesoft)
PhotoNow! (HKLM\...\{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.5203 - CyberLink Corp.)
Putt Mania (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112028410}) (Version:  - Oberon Media)
Railroad Tycoon 3 (HKLM\...\{DE29025A-091F-4998-AD2D-24C84421190F}) (Version: 1.0 - )
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6873 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30102 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM\...\{DC24971E-1946-445D-8A82-CE685433FA7D}) (Version:  - Realtek Semiconductor Corp.)
Shared C Run-time for x86 (Version: 10.0.0 - McAfee) Hidden
Sid Meier's Civilization V (HKLM\...\Civilization V) (Version:  - 2K Games, Inc.)
Sid Meier's Civilization V (HKLM\...\Steam App 8930) (Version:  - 2K Games, Inc.)
Sid Meier's Civilization V SDK (HKLM\...\Steam App 16830) (Version:  - Firaxis Games)
Skype™ 6.5 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.5.158 - Skype Technologies S.A.)
Spotify (HKCU\...\Spotify) (Version: 0.8.3.222.g317ab79d - Spotify AB)
Spotify (HKLM\...\Spotify) (Version: 0.4.3 - )
Språkpaket för Microsoft .NET Framework 3.5 SP 1 - sve (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - sve) (Version:  - Microsoft Corporation)
SpyHunter (HKLM\...\{455F074C-814E-4520-B69B-5584BD90400C}) (Version: 4.17.6.4336 - Enigma Software Group USA, LLC)
Steam (HKLM\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Supportassistenten (HKLM\...\Supportassistenten_is1) (Version: 4.1.0 - TeliaSonera Sverige AB)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 11.1.4.0 - Synaptics)
TeamViewer 7 (HKLM\...\TeamViewer 7) (Version: 7.0.12799 - TeamViewer)
Telia_Mobilt_bredband (HKLM\...\{884BB5CC-108E-41a9-936D-955C999C06A1}_x) (Version: 3.1.0.1092 - Option NV)
Telia_Mobilt_bredband (Version: 3.1.0.1092 - Option NV) Hidden
The Rise of Atlantis (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112548397}) (Version:  - Oberon Media)
Tiger Woods PGA TOUR 06 (HKLM\...\{1CE59656-4104-44AA-00BF-D2546C7EA497}) (Version:  - )
Tiks Texas Hold em (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110422467}) (Version:  - Oberon Media)
TweakNow PowerPack 2012 (HKLM\...\TweakNow PowerPack 2012_is1) (Version: 4.0.0 - TweakNow.com)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version:  - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version:  - Microsoft)
Widevine Media Optimizer IE 6.0.0 (HKCU\...\optimizer_ie) (Version: 6.0.0.12442 - Widevine Technologies)
Winbond CIR Device Drivers (HKLM\...\{10F498FF-5392-4DF3-8F73-FE172A9F3800}) (Version: 7.60.1012 - Winbond Electronics Corporation)
Windows Live Communications Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Essentials (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Family Safety (Version: 15.4.3555.0308 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0 - Microsoft Corporation) Hidden
Windows Live Installer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mail (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Messenger (Version: 15.4.3538.0513 - Microsoft Corporation) Hidden
Windows Live Messenger Companion Core (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Sync (HKLM\...\{08A247F5-E34F-4D17-8731-0906DF56947E}) (Version: 14.0.8089.726 - Microsoft Corporation)
Windows Live UX Platform (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Womens Murder Club (HKLM\...\{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-114086870}) (Version:  - Oberon Media)
 
==================== Restore Points  =========================
 
29-04-2014 19:10:46 Windows Update
02-05-2014 19:08:18 Windows Update
06-05-2014 18:44:01 Windows Update
06-05-2014 19:15:59 Windows Update
13-05-2014 20:15:52 Windows Update
13-05-2014 21:00:33 Windows Update
15-05-2014 21:04:36 Återställningsåtgärd
16-05-2014 00:07:37 Installed SpyHunter
16-05-2014 20:23:31 Windows Update
 
==================== Hosts content: ==========================
 
2006-11-02 12:23 - 2006-09-18 23:41 - 00000761 ____N C:\Windows\system32\Drivers\etc\hosts
127.0.0.1       localhost
::1             localhost
 
==================== Scheduled Tasks (whitelisted) =============
 
Task: {05A934C3-CE6A-48B6-9CE3-FECCDE59A1FF} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-01] (Google Inc.)
Task: {0B25CDA6-4B71-4AF5-A7CF-F5E328BC90B2} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-54249351-516280376-2711681529-1000Core => C:\Users\Kalle\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-16] (Google Inc.)
Task: {1CC81347-6204-4B83-900C-01E02F50F067} - System32\Tasks\Microsoft\Windows\MobilePC\TMM
Task: {2DFC1E6A-45EC-4616-9A84-DA5E5189A9EB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2010-02-01] (Google Inc.)
Task: {2ED72666-B3BA-4A26-92B5-CDE644A2FFE2} - System32\Tasks\Microsoft\Windows\Tcpip\WSHReset => C:\Windows\system32\netsh.exe [2009-07-14] (Microsoft Corporation)
Task: {398089CC-EE1A-4DE0-A3D8-6BDAC4569C82} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - Kalle => C:\Program Files\Windows Calendar\WinCal.exe
Task: {42904613-643D-4BEE-8C13-E6805B23F1CF} - System32\Tasks\{F4CFA5C7-E588-41E4-8459-A2E96AFA0CA4} => D:\Program Files\EA SPORTS\Tiger Woods PGA TOUR 06\bin\TW2006.exe [2005-09-07] (EA SPORTS)
Task: {4A31222A-CCA1-4F22-AD05-53EDF9B25E82} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-54249351-516280376-2711681529-1000UA => C:\Users\Kalle\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-16] (Google Inc.)
Task: {561375CB-FF5A-417B-B297-BA73DE149581} - System32\Tasks\Microsoft\Windows\Wired\GatherWiredInfo => C:\Windows\system32\gatherWiredInfo.vbs
Task: {AE840BE5-14A9-4691-8E03-CABC910C6DA0} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-05-16] (Adobe Systems Incorporated)
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs
Task: {F59EA675-1DBD-4950-98A4-04B239A59C16} - System32\Tasks\SpyHunter4Startup => C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe [2014-01-09] (Enigma Software Group USA, LLC.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-54249351-516280376-2711681529-1000Core.job => C:\Users\Kalle\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-54249351-516280376-2711681529-1000UA.job => C:\Users\Kalle\AppData\Local\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (whitelisted) =============
 
2009-09-17 22:22 - 2007-07-12 22:33 - 00087552 _____ () C:\Windows\System32\cpwmon2k.dll
2010-08-26 19:30 - 2009-04-16 16:56 - 00075048 _____ () C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
2012-10-19 16:48 - 2012-10-19 16:48 - 00046704 _____ () C:\Users\Kalle\AppData\Roaming\Diino\DiinoService_win7_i386.exe
2009-01-22 23:04 - 2009-08-13 16:54 - 00024576 _____ () C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
2009-11-10 19:53 - 2009-11-10 19:53 - 00032768 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Model.Controller\3.0.3016.0__14bcaafdb44b5951\Framework.Model.Controller.dll
2009-11-10 19:53 - 2009-11-10 19:53 - 00020480 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Model.ControllerInterface\3.0.3016.0__d842b71b4d6ed079\Framework.Model.ControllerInterface.dll
2009-11-10 19:53 - 2009-11-10 19:53 - 00061440 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Library\3.0.3016.0__3036420f80dd6947\Framework.Library.dll
2009-11-10 19:53 - 2009-11-10 19:53 - 00028672 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Host\3.0.3016.0__672b450de5a7e94a\Framework.Host.dll
2009-11-10 19:53 - 2009-11-10 19:53 - 00016384 _____ () C:\Windows\assembly\GAC_MSIL\Framework.PluginInterface\3.0.3016.0__9ecdf03bb2054f94\Framework.PluginInterface.dll
2009-01-22 23:12 - 2008-09-11 22:20 - 00016384 _____ () C:\Program Files\Acer\Empowering Technology\eAudio\eAudioSrvPlugin.dll
2009-01-22 23:11 - 2008-10-27 15:01 - 00016384 _____ () C:\Program Files\Acer\Empowering Technology\eSettings\eSettings.ServicePlugin.dll
2009-01-22 23:11 - 2008-10-27 15:00 - 00016384 _____ () C:\Program Files\Acer\Empowering Technology\eSettings\eSettings.Logger.dll
2009-01-22 23:11 - 2008-10-27 15:01 - 00143360 _____ () C:\Program Files\Acer\Empowering Technology\eSettings\eSettings.Model.Computer.dll
2009-01-22 23:11 - 2008-10-27 15:00 - 00036864 _____ () C:\Program Files\Acer\Empowering Technology\Service\eSettings.Model.ComputerInterface.dll
2011-03-14 17:27 - 2011-03-14 17:27 - 00271712 _____ () C:\ProgramData\DatacardService\HWDeviceService.exe
2009-01-22 23:21 - 2009-02-13 12:44 - 00117264 _____ () C:\Program Files\McAfee\SiteAdvisor\apengine.dll
2009-01-22 23:21 - 2009-02-13 12:44 - 00071696 _____ () C:\Program Files\McAfee\SiteAdvisor\mcfrmwk.dll
2009-01-22 23:21 - 2009-02-13 12:44 - 00207376 _____ () C:\Program Files\McAfee\SiteAdvisor\cntscan.dll
2012-08-23 22:33 - 2012-08-23 22:30 - 00246112 _____ () C:\ProgramData\Mobile Broadband\OnlineUpdate\ouc.exe
2012-08-23 22:33 - 2012-08-23 22:30 - 00011362 _____ () C:\ProgramData\Mobile Broadband\OnlineUpdate\mingwm10.dll
2012-08-23 22:33 - 2012-08-23 22:30 - 00043008 _____ () C:\ProgramData\Mobile Broadband\OnlineUpdate\libgcc_s_dw2-1.dll
2012-08-23 22:33 - 2012-08-23 22:30 - 02415104 _____ () C:\ProgramData\Mobile Broadband\OnlineUpdate\QtCore4.dll
2012-08-23 22:33 - 2012-08-23 22:30 - 01148416 _____ () C:\ProgramData\Mobile Broadband\OnlineUpdate\QtNetwork4.dll
2012-08-23 22:33 - 2012-08-23 22:30 - 00384512 _____ () C:\ProgramData\Mobile Broadband\OnlineUpdate\QueryStrategy.dll
2012-08-23 22:33 - 2012-08-23 22:30 - 00398336 _____ () C:\ProgramData\Mobile Broadband\OnlineUpdate\QtXml4.dll
2009-01-22 23:43 - 2009-06-16 12:06 - 00032768 _____ () C:\Acer\Mobility Center\MobilityInterface.dll
2009-01-22 23:42 - 2007-01-09 04:25 - 00272024 _____ () C:\Program Files\Cyberlink\Shared files\RichVideo.exe
2013-02-10 15:44 - 2014-02-06 19:12 - 00863232 _____ () D:\Program Files\OnecomCloudDrive\Extensions\OneComCloudDrive.dll
2008-07-29 18:52 - 2008-07-29 18:52 - 00227888 _____ () C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ShowErrMsg.dll
2009-08-17 21:47 - 2007-10-23 10:56 - 00200704 _____ () C:\Windows\PLFSetI.exe
2009-11-10 19:53 - 2009-11-10 19:53 - 00036864 _____ () C:\Windows\assembly\GAC_MSIL\Framework.Utility\3.0.3016.0__4df5dcab8860d239\Framework.Utility.dll
2009-07-02 01:56 - 2009-07-02 01:56 - 00873768 _____ () C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMediaLibrary.dll
2009-07-02 01:56 - 2009-07-02 01:56 - 00013096 _____ () C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvcPS.dll
2009-06-19 11:49 - 2009-06-19 11:49 - 00016384 ____R () C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
2009-11-10 22:23 - 2009-11-10 22:23 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2012-06-13 17:55 - 2014-02-06 19:12 - 00047616 _____ () D:\Program Files\OnecomCloudDrive\Dlls\INETConnection.dll
2013-02-10 15:43 - 2014-02-06 19:12 - 01066496 _____ () D:\Program Files\OnecomCloudDrive\Dlls\libcurl.dll
2013-02-10 15:43 - 2014-02-06 19:12 - 00012288 _____ () D:\Program Files\OnecomCloudDrive\Dlls\LibCurlShim.dll
2012-12-27 12:32 - 2014-02-06 19:12 - 00541184 _____ () D:\Program Files\OnecomCloudDrive\Dlls\OneComGracenoteImpl.dll
2012-08-12 11:48 - 2014-02-06 19:12 - 00039424 _____ () D:\Program Files\OnecomCloudDrive\Dlls\OneComAudioFileUtility.dll
2007-12-19 14:04 - 2007-12-19 14:04 - 00828416 _____ () C:\Program Files\OpenOffice.org 2.4\program\libxml2.dll
2014-04-28 22:39 - 2014-04-24 02:33 - 00065352 _____ () C:\Program Files\Google\Chrome\Application\34.0.1847.131\chrome_elf.dll
2014-04-28 22:40 - 2014-04-24 02:33 - 00674632 _____ () C:\Program Files\Google\Chrome\Application\34.0.1847.131\libglesv2.dll
2014-04-28 22:39 - 2014-04-24 02:33 - 00093000 _____ () C:\Program Files\Google\Chrome\Application\34.0.1847.131\libegl.dll
2014-04-28 22:40 - 2014-04-24 02:33 - 04081480 _____ () C:\Program Files\Google\Chrome\Application\34.0.1847.131\pdf.dll
2014-04-28 22:40 - 2014-04-24 02:33 - 00390472 _____ () C:\Program Files\Google\Chrome\Application\34.0.1847.131\ppGoogleNaClPluginChrome.dll
2014-04-28 22:39 - 2014-04-24 02:33 - 01647432 _____ () C:\Program Files\Google\Chrome\Application\34.0.1847.131\ffmpegsumo.dll
2008-10-16 16:57 - 2008-10-16 16:57 - 00200704 _____ () C:\Program Files\Intel\WiFi\bin\IWMSPROV.DLL
2009-01-22 23:06 - 2010-08-10 23:10 - 00034816 _____ () C:\Program Files\Google\Google Desktop Search\gzlib.dll
2014-04-28 22:40 - 2014-04-24 02:33 - 13692232 _____ () C:\Program Files\Google\Chrome\Application\34.0.1847.131\PepperFlash\pepflashplayer.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
 
==================== Safe Mode (whitelisted) ===================
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\CleanHlp.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MCODS => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SupportSoft RemoteAssist => ""="Service"
 
==================== EXE Association (whitelisted) =============
 
 
==================== Disabled items from MSCONFIG ==============
 
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (05/17/2014 00:02:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Felet uppstod i programmet med namn: iexplore.exe, version 11.0.9600.17041, tidsstämpel 0x531807e4
, felet uppstod i modulen med namn: Flash32_13_0_0_214.ocx, version 13.0.0.214, tidsstämpel 0x5359c422
Undantagskod: 0xc0000005
Felförskjutning: 0x001b783c
Process-ID: 0x22e8
Programmets starttid: 0xiexplore.exe0
Sökväg till program: iexplore.exe1
Sökväg till modul: iexplore.exe2
Rapport-ID: iexplore.exe3
 
Error: (05/16/2014 11:55:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Felet uppstod i programmet med namn: iexplore.exe, version 11.0.9600.17041, tidsstämpel 0x531807e4
, felet uppstod i modulen med namn: unknown, version 0.0.0.0, tidsstämpel 0x00000000
Undantagskod: 0xc0000005
Felförskjutning: 0x0007e907
Process-ID: 0x2584
Programmets starttid: 0xiexplore.exe0
Sökväg till program: iexplore.exe1
Sökväg till modul: iexplore.exe2
Rapport-ID: iexplore.exe3
 
Error: (05/16/2014 11:25:28 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programmet Spyhunter4.exe, version 4.17.6.4336, avslutades eftersom det slutade att samverka med Windows. Ytterligare information kan finnas i problemhistoriken på kontrollpanelen för Åtgärdscentret och lösningar.
 
Process-ID: 12fc
 
Starttid: 01cf714c481196ad
 
Avslutningstid: 211
 
Programsökväg: C:\Program Files\Enigma Software Group\SpyHunter\Spyhunter4.exe
 
Rapport-ID: 8839a625-dd40-11e3-8c08-00238b850bc1
 
Error: (05/16/2014 11:17:04 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (05/16/2014 10:19:00 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (05/16/2014 03:01:18 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (05/16/2014 02:27:41 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Felet uppstod i programmet med namn: iexplore.exe, version 11.0.9600.17041, tidsstämpel 0x531807e4
, felet uppstod i modulen med namn: unknown, version 0.0.0.0, tidsstämpel 0x00000000
Undantagskod: 0xc0000005
Felförskjutning: 0x0007e907
Process-ID: 0x1448
Programmets starttid: 0xiexplore.exe0
Sökväg till program: iexplore.exe1
Sökväg till modul: iexplore.exe2
Rapport-ID: iexplore.exe3
 
Error: (05/16/2014 02:06:43 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Felet uppstod i programmet med namn: Explorer.EXE, version 6.1.7601.17567, tidsstämpel 0x4d6727a7
, felet uppstod i modulen med namn: ntdll.dll, version 6.1.7601.18247, tidsstämpel 0x521ea91c
Undantagskod: 0xc0000024
Felförskjutning: 0x00081e77
Process-ID: 0x102c
Programmets starttid: 0xExplorer.EXE0
Sökväg till program: Explorer.EXE1
Sökväg till modul: Explorer.EXE2
Rapport-ID: Explorer.EXE3
 
Error: (05/16/2014 02:06:42 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Tillämpningsprogram: Explorer.EXE
Framework-version: v4.0.30319
Beskrivning: Processen avslutades på grund av ett ohanterat undantag.
Undantagsinformation: undantagskod c0000024, undantagsadress 77B71E77
Stack:
 
Error: (05/16/2014 02:02:16 AM) (Source: AVLogEvent) (EventID: 5004) (User: NT instans)
Description: McShield crashed.
Error Code:c0000005
 
 
System errors:
=============
Error: (05/16/2014 11:21:39 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Tjänsten McAfee Home Network stannade under start.
 
Error: (05/16/2014 11:16:52 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Tjänsten Mobile Broadband. OUC kunde inte startas på grund av följande fel: 
%%1053
 
Error: (05/16/2014 11:16:52 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: En timeout (30000 ms) inträffade vid väntan på att tjänsten Mobile Broadband. OUC skulle ansluta.
 
Error: (05/16/2014 11:14:49 PM) (Source: Disk) (EventID: 11) (User: )
Description: Drivrutinen hittade ett styrenhetsfel på \Device\Harddisk0\DR0.
 
Error: (05/16/2014 11:14:49 PM) (Source: Disk) (EventID: 11) (User: )
Description: Drivrutinen hittade ett styrenhetsfel på \Device\Harddisk0\DR0.
 
Error: (05/16/2014 11:14:49 PM) (Source: Disk) (EventID: 11) (User: )
Description: Drivrutinen hittade ett styrenhetsfel på \Device\Harddisk0\DR0.
 
Error: (05/16/2014 11:14:49 PM) (Source: Disk) (EventID: 11) (User: )
Description: Drivrutinen hittade ett styrenhetsfel på \Device\Harddisk0\DR0.
 
Error: (05/16/2014 11:14:49 PM) (Source: Disk) (EventID: 11) (User: )
Description: Drivrutinen hittade ett styrenhetsfel på \Device\Harddisk0\DR0.
 
Error: (05/16/2014 11:14:49 PM) (Source: Disk) (EventID: 11) (User: )
Description: Drivrutinen hittade ett styrenhetsfel på \Device\Harddisk0\DR0.
 
Error: (05/16/2014 11:14:49 PM) (Source: Disk) (EventID: 11) (User: )
Description: Drivrutinen hittade ett styrenhetsfel på \Device\Harddisk0\DR0.
 
 
Microsoft Office Sessions:
=========================
Error: (11/16/2012 00:18:18 AM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6662.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 16106 seconds with 180 seconds of active time.  This session ended with a crash.
 
 
CodeIntegrity Errors:
===================================
  Date: 2013-07-02 19:06:06.815
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-07-01 19:23:24.113
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-06-30 22:43:05.281
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-06-30 18:30:36.632
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-06-29 19:22:08.067
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-06-28 23:10:32.170
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-06-28 19:45:52.850
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-06-28 19:45:13.726
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-06-28 19:44:09.341
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-06-28 19:44:07.620
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\dsound.dll because the set of per-page image hashes could not be found on the system.
 
 
==================== Memory info =========================== 
 
Percentage of memory in use: 60%
Total physical RAM: 3036.77 MB
Available physical RAM: 1189.82 MB
Total Pagefile: 6071.82 MB
Available Pagefile: 3298.57 MB
Total Virtual: 2047.88 MB
Available Virtual: 1914.04 MB
 
==================== Drives ================================
 
Drive c: (ACER) (Fixed) (Total:226.88 GB) (Free:115.35 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (DATA) (Fixed) (Total:223.4 GB) (Free:193.62 GB) NTFS
Drive f: (RALLI1) (CDROM) (Total:0.62 GB) (Free:0 GB) CDFS
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (Size: 466 GB) (Disk ID: 767E32CA)
Partition 1: (Not Active) - (Size=12 GB) - (Type=27)
Partition 2: (Active) - (Size=227 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=223 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=3 GB) - (Type=12)
Länk till kommentar
Dela på andra webbplatser

Lennart Aspenryd

Är det ett modernt sätt att förstöra ett forum genom att citera stora loggar!

 

Fy skäms ;-)

Länk till kommentar
Dela på andra webbplatser

1. Avinstallera:
Java™ 6 Update 37 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216033FF}) (Version: 6.0.370 - Oracle)
Java™ 6 Update 4 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0160040}) (Version: 1.6.0.40 - Sun Microsystems, Inc.)
eftersom det är mycket gamla versioner med många kända säkerhetshål som gör det lätt att infektera datorn från en webbsida.
 
2. Om du inte har någon nytta av SpyHunter, avinstallera det.
 
3. Starta Anteckningar.
Kopiera alla rader i rutan:
SearchScopes: HKCU - DefaultScope {20704024-BF39-41E7-811B-785FBFC3B0CF} URL = http://search.condui...1877550270&UM=2
SearchScopes: HKCU - {20704024-BF39-41E7-811B-785FBFC3B0CF} URL = http://search.condui...1877550270&UM=2
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab
DPF: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab
DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab
och klistra in i Anteckningar. Kontrollera att inga filer har delats upp på två rader.
Spara filen på skrivbordet med namnet fixlist.txt.

Starta FRST som finns på skrivbordet.
Klicka på knappen Fix.
Vänta tills programmet är klart.

Starta om datorn.

Programmet skapar en logg Fixlog.txt på skrivbordet.
Klistra in innehållet i den i ditt svar.

Länk till kommentar
Dela på andra webbplatser

Har avinstallerat programmen och kört fixen. Här är loggen

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version:15-05-2014

Ran by Kalle at 2014-05-17 09:42:12 Run:1

Running from C:\Users\Kalle\Desktop

Boot Mode: Normal

 

==============================================

 

Content of fixlist:

*****************

SearchScopes: HKCU - DefaultScope {20704024-BF39-41E7-811B-785FBFC3B0CF} URL = http://search.condui...1877550270&UM=2'>http://search.condui...1877550270&UM=2

SearchScopes: HKCU - {20704024-BF39-41E7-811B-785FBFC3B0CF} URL = http://search.condui...1877550270&UM=2

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab

DPF: {CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab

DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab

*****************

 

HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value deleted successfully.

HKCU\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{20704024-BF39-41E7-811B-785FBFC3B0CF} => Key deleted successfully.

HKCR\Wow6432Node\CLSID\{20704024-BF39-41E7-811B-785FBFC3B0CF} => Key not found.

HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93} => Key not found.

HKCR\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93} => Key not found.

HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} => Key not found.

HKCR\CLSID\{CAFEEFAC-0016-0000-0004-ABCDEFFEDCBA} => Key not found.

HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} => Key not found.

HKCR\CLSID\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} => Key not found.

HKLM\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} => Key not found.

HKCR\CLSID\{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} => Key not found.

 

==== End of Fixlog ====

Länk till kommentar
Dela på andra webbplatser

1. Skanna datorn online på http://www.eset.com/onlinescan/
För att inte skannern ska ta för lång tid på sig stäng av ditt antivirusprogram under tiden.

Avbocka alternativet Remove found threats
Bocka för Scan Archives

Klicka på Advanced Settings
Bocka för:
Scan for potentially unwanted applications
Scan for potentially unsafe applications
Enable Anti-Stealth Technology

Klicka på Start

När skanningen är klar klicka på List of found threats, följt av Export to a text file. Spara till en fil på skrivbordet, öppna filen, kopiera resultatet och klistra sedan in det i ditt svar.

 

2. Installera Malwarebytes Anti-Malware Free: http://www.malwarebytes.org/free/

Låt programmet ta bort det som det hittar.

Klistra in loggen med resultatet.

 

3. Spara RougueKiller på Skrivbordet.
För 32-bitars Windows: http://www.adlice.com/softs/roguekiller/RogueKiller.exe
För 64-bitars Windows: http://www.adlice.com/softs/roguekiller/RogueKillerX64.exe
Stäng av alla program.
Ta bort alla externa enheter, t ex USB-minnen och externa hårddiskar, utom tangentbord och mus. Låt dem vara bortkopplade medan rensningen pågår.

Kör RogueKiller (i Vista och Windows 7 högerklicka på programmet och välj "Kör som administratör). Om det inte går att köra så pröva flera gång, men om det fortfarande inte går så pröva med att döpa om programmet till winlogon.exe.

Vänta tills "Prescan" har avslutats.
Klicka på "Scan"-knappen uppe till höger.
Vänta tills skanningen är klar.
En rapport "RKreport.txt" ska då ha skapats på Skrivbordet. Klistra in innehållet i den i ditt svar.
 

4. Kör FRST igen och klistra in FRST.txt (Addition.txt behövs inte).

Länk till kommentar
Dela på andra webbplatser

Ok, började köra eset online men det tog tid. Efter två timmar var jag på hälften och jag hade stängt av virusprogramet så gott jag kunde. Får göra ett nytt försök imorgon kväll.

 

Problemet är väl att datorn blir överbelastad i och med att det öppnas massa reklamfönster med jämna mellanrum

 

 

Det jag såg när jag hade kört halvägs var bla det här:

win32/OpenCandy, Win32/bundled.toolbar.Ask.... Java exploit CVE-2013-2645.HM Trojan

Win32/toolbar.Conduit (i ett antal varianter)

 

Tack så länge, jag återkommer

 

Länk till kommentar
Dela på andra webbplatser

Logfilen för esat.

 

 

C:\AdwCleaner\Quarantine\C\Program Files\Conduit\Community Alerts\Alert.dll.vir Win32/Toolbar.Conduit.Y potentially unwanted application

C:\AdwCleaner\Quarantine\C\Users\Kalle\AppData\Roaming\OpenCandy\93FF88F26C0B4594B7FFAAC985500333\mconduitinstaller.exe.vir Win32/Toolbar.Conduit.S potentially unwanted application

C:\Users\Kalle\AppData\Local\Temp\AskSLib.dll a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application

C:\Users\Kalle\AppData\Local\Temp\SecondStepInstaller.exe Win32/Conduit.SearchProtect.A potentially unwanted application

C:\Users\Kalle\AppData\Local\Temp\SPSetup.exe a variant of Win32/Conduit.SearchProtect.H potentially unwanted application

C:\Users\Kalle\AppData\Local\Temp\SPStub.exe Win32/Conduit.SearchProtect.J potentially unwanted application

C:\Users\Kalle\AppData\Local\Temp\tbentr.dll a variant of Win32/Toolbar.Conduit.X potentially unwanted application

C:\Users\Kalle\AppData\Local\Temp\AU\SPSetup.exe a variant of Win32/Conduit.SearchProtect.H potentially unwanted application

C:\Users\Kalle\AppData\Local\Temp\ct3281675\ctbe.exe Win32/Toolbar.Conduit.AF potentially unwanted application

C:\Users\Kalle\AppData\Local\Temp\ct3281675\ieLogic.exe Win32/Toolbar.Conduit potentially unwanted application

C:\Users\Kalle\AppData\Local\Temp\ct3281675\statisticsStub.exe Win32/Toolbar.Conduit potentially unwanted application

C:\Users\Kalle\AppData\Local\Temp\ct3281675\stub.exe Win32/Toolbar.Conduit.S potentially unwanted application

C:\Users\Kalle\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\4e04068-4ed8f07e Java/Exploit.CVE-2013-2465.HM trojan

C:\Users\Kalle\Downloads\easy_duplicate_setup.exe a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application

C:\Users\Kalle\Downloads\GenieTimeline4Free.exe Win32/OpenCandy potentially unsafe application

C:\Windows\Temp\ACC8.tmp\bin\SPHook32.dll probably a variant of Win32/Conduit.SearchProtect.C potentially unwanted application

C:\Windows\Temp\ACC8.tmp\bin\SPRunner.exe Win32/Conduit.SearchProtect.D potentially unwanted application

C:\Windows\Temp\ACC8.tmp\ffprotect\application.js Win32/Conduit.SearchProtect.A potentially unwanted application

C:\Windows\Temp\ACC8.tmp\ffprotect\nsprotector.js Win32/Conduit.SearchProtect.A potentially unwanted application

Länk till kommentar
Dela på andra webbplatser

log malware

 

När jag hade kört detta och tagit bort filerna så startade datorn om av sig självt... efter omstart så fortsatte reklamen att poppa upp som tidigare.

 

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 2014-05-20
Scan Time: 00:07:15
Logfile: log malware.txt
Administrator: Yes
 
Version: 2.00.1.1004
Malware Database: v2014.05.19.12
Rootkit Database: v2014.03.27.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Chameleon: Disabled
 
OS: Windows 7 Service Pack 1
CPU: x86
File System: NTFS
User: Kalle
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 267939
Time Elapsed: 30 min, 2 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 1
PUP.Optional.Conduit.A, C:\Users\Kalle\AppData\Local\Temp\ct3281675, Quarantined, [d27689ca0972db5b689d383bd32f1ce4], 
 
Files: 36
PUP.Optional.Conduit.A, C:\Users\Kalle\AppData\Local\Temp\nsb1093.exe, Quarantined, [1e2a4e05b6c5023451cf879710f10df3], 
PUP.Optional.SearchProtect.A, C:\Users\Kalle\AppData\Local\Temp\nsg8E9C.exe, Quarantined, [81c73221e6953402d15f32f72ad75ba5], 
PUP.Optional.Conduit.A, C:\Users\Kalle\AppData\Local\Temp\nswD46B.exe, Quarantined, [b692d47fe398280ebf6150ce679aa957], 
PUP.Optional.Conduit.A, C:\Users\Kalle\AppData\Local\Temp\SecondStepInstaller.exe, Quarantined, [202883d0403b3402e43c809e2cd5936d], 
PUP.Optional.Conduit.A, C:\Users\Kalle\AppData\Local\Temp\SPSetup.exe, Quarantined, [4cfc8dc672092511051b33eb12ef6997], 
PUP.Optional.Conduit.A, C:\Users\Kalle\AppData\Local\Temp\SPStub.exe, Quarantined, [5cec1d3682f942f4c498d64649b8748c], 
PUP.Optional.Conduit.A, C:\Users\Kalle\AppData\Local\Temp\AU\SPSetup.exe, Quarantined, [a5a371e2f388c4724dd357c7946d47b9], 
PUP.Optional.Conduit.A, C:\Users\Kalle\AppData\Local\Temp\ct3281675\ctbe.exe, Quarantined, [c97f4b08205b51e5f293e43a80807f81], 
PUP.Optional.Conduit.A, C:\Users\Kalle\AppData\Local\Temp\ct3281675\ieLogic.exe, Quarantined, [90b8e46feb903cfa322af82458a91fe1], 
PUP.Optional.Conduit.A, C:\Users\Kalle\AppData\Local\Temp\ct3281675\statisticsStub.exe, Quarantined, [f2562231ccafa294f1f0838303fe45bb], 
PUP.Optional.Conduit.A, C:\Users\Kalle\AppData\Local\Temp\ct3281675\stub.exe, Quarantined, [3d0be3706813bb7b25b75cc26799d22e], 
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsn29D3.exe, Quarantined, [0246d2812952191d48e81d0c19e89a66], 
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nso8E22.exe, Quarantined, [53f571e2a3d83df9c66acd5c4bb61be5], 
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsoD695.exe, Quarantined, [ae9a88cbd7a4b284f93780a91ee33cc4], 
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nss2ADC.exe, Quarantined, [e3653c17cfac2b0b5fd10623d42da15f], 
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nssE3AE.exe, Quarantined, [c583f95a6b109c9a5ad6b0797a8741bf], 
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nssF4C1.exe, Quarantined, [ac9c7bd8512a50e668c8d05945bc08f8], 
PUP.Optional.Conduit.A, C:\Windows\Temp\nsx60C8.exe, Quarantined, [ff4998bb2c4f8ea8f32dad7171904ab6], 
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nscF0C8.exe, Quarantined, [de6a94bfdaa195a11c14b970768bb54b], 
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsdCE2E.exe, Quarantined, [31172c27f784072f062ae148cf320af6], 
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsdDB84.exe, Quarantined, [05434013611a41f51818ce5ba45dc739], 
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsh3602.exe, Quarantined, [084059fac4b7ec4a33fd5fca788951af], 
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsh391E.exe, Quarantined, [6bdd92c163180e28929e2cfd669b08f8], 
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsi97FE.exe, Quarantined, [b8900152e29966d080b09792ac55837d], 
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsiD06F.exe, Quarantined, [054354ff413a2c0af43cc465d22f7b85], 
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsm54A9.exe, Quarantined, [92b64e05d9a20036c070d653c63bfb05], 
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsmE2F2.exe, Quarantined, [3e0a98bba3d879bd62cecc5d837e07f9], 
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsx7026.exe, Quarantined, [0048f95ad9a2b28458d861c840c1ea16], 
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsx746A.exe, Quarantined, [ff4913400774ea4c70c041e8fc05b64a], 
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsy8CDA.exe, Quarantined, [1434a4af8bf069cd40f0171201006c94], 
PUP.Optional.SearchProtect.A, C:\Windows\Temp\nsy98AA.exe, Quarantined, [0543391ab9c2c76ff83861c8de23837d], 
PUP.Optional.Conduit.A, C:\Windows\Temp\ACC8.tmp\bin\SPHook32.dll, Quarantined, [58f057fca4d7b383aa762cf2847d5ca4], 
PUP.Optional.Conduit.A, C:\Windows\Temp\ACC8.tmp\bin\SPRunner.exe, Quarantined, [57f198bbf586fc3a69b73ce238c95ea2], 
PUP.Optional.OpenCandy, C:\Users\Kalle\Downloads\GenieTimeline4Free.exe, Quarantined, [054398bb2a510432bba7274b947039c7], 
PUP.Optional.Conduit.A, C:\Users\Kalle\AppData\Local\Temp\ct3281675\chromeid.txt, Quarantined, [d27689ca0972db5b689d383bd32f1ce4], 
PUP.Optional.Conduit.A, C:\Users\Kalle\AppData\Local\Temp\ct3281675\setup.ini.txt, Quarantined, [d27689ca0972db5b689d383bd32f1ce4], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)
Länk till kommentar
Dela på andra webbplatser

Log roughkiller

 

RogueKiller V8.8.15 [Mar 27 2014] by Adlice Software
 
Operating System : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Started in : Normal mode
User : Kalle [Admin rights]
Mode : Scan -- Date : 05/20/2014 00:26:29
| ARK || FAK || MBR |
 
¤¤¤ Bad processes : 1 ¤¤¤
[sUSP PATH] DiinoService_win7_i386.exe -- C:\Users\Kalle\AppData\Roaming\Diino\DiinoService_win7_i386.exe [7] -> KILLED [TermProc]
 
¤¤¤ Registry Entries : 2 ¤¤¤
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
 
¤¤¤ Scheduled tasks : 0 ¤¤¤
 
¤¤¤ Startup Entries : 0 ¤¤¤
 
¤¤¤ Web browsers : 0 ¤¤¤
 
¤¤¤ Browser Addons : 0 ¤¤¤
 
¤¤¤ Particular Files / Folders: ¤¤¤
 
¤¤¤ Driver : [LOADED] ¤¤¤
[Address] EAT @explorer.exe (BeginBufferedAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E509AE)
[Address] EAT @explorer.exe (BeginBufferedPaint) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E449A1)
[Address] EAT @explorer.exe (BeginPanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E70731)
[Address] EAT @explorer.exe (BufferedPaintClear) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E46395)
[Address] EAT @explorer.exe (BufferedPaintInit) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E4940E)
[Address] EAT @explorer.exe (BufferedPaintRenderAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E508ED)
[Address] EAT @explorer.exe (BufferedPaintSetAlpha) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E5E6B3)
[Address] EAT @explorer.exe (BufferedPaintStopAllAnimations) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E5D395)
[Address] EAT @explorer.exe (BufferedPaintUnInit) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E494AB)
[Address] EAT @explorer.exe (CloseThemeData) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E46A18)
[Address] EAT @explorer.exe (DrawThemeBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E43982)
[Address] EAT @explorer.exe (DrawThemeBackgroundEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E5D9DA)
[Address] EAT @explorer.exe (DrawThemeEdge) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E63B52)
[Address] EAT @explorer.exe (DrawThemeIcon) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E735E7)
[Address] EAT @explorer.exe (DrawThemeParentBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E453E5)
[Address] EAT @explorer.exe (DrawThemeParentBackgroundEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E451BF)
[Address] EAT @explorer.exe (DrawThemeText) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E44EA1)
[Address] EAT @explorer.exe (DrawThemeTextEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E463E6)
[Address] EAT @explorer.exe (EnableThemeDialogTexture) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E4FCAF)
[Address] EAT @explorer.exe (EnableTheming) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E72FEB)
[Address] EAT @explorer.exe (EndBufferedAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E43F9A)
[Address] EAT @explorer.exe (EndBufferedPaint) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E43F9A)
[Address] EAT @explorer.exe (EndPanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E706CC)
[Address] EAT @explorer.exe (GetBufferedPaintBits) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E44BAF)
[Address] EAT @explorer.exe (GetBufferedPaintDC) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E504BC)
[Address] EAT @explorer.exe (GetBufferedPaintTargetDC) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E50473)
[Address] EAT @explorer.exe (GetBufferedPaintTargetRect) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E72E7F)
[Address] EAT @explorer.exe (GetCurrentThemeName) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E505DD)
[Address] EAT @explorer.exe (GetThemeAppProperties) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E50FB1)
[Address] EAT @explorer.exe (GetThemeBackgroundContentRect) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E4CD2E)
[Address] EAT @explorer.exe (GetThemeBackgroundExtent) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E4F8BF)
[Address] EAT @explorer.exe (GetThemeBackgroundRegion) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E5165D)
[Address] EAT @explorer.exe (GetThemeBitmap) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E4BF93)
[Address] EAT @explorer.exe (GetThemeBool) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E47C1F)
[Address] EAT @explorer.exe (GetThemeColor) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E4616C)
[Address] EAT @explorer.exe (GetThemeDocumentationProperty) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E72932)
[Address] EAT @explorer.exe (GetThemeEnumValue) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E4616C)
[Address] EAT @explorer.exe (GetThemeFilename) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E72412)
[Address] EAT @explorer.exe (GetThemeFont) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E4FF21)
[Address] EAT @explorer.exe (GetThemeInt) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E4616C)
[Address] EAT @explorer.exe (GetThemeIntList) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E723B1)
[Address] EAT @explorer.exe (GetThemeMargins) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E486E9)
[Address] EAT @explorer.exe (GetThemeMetric) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E506E2)
[Address] EAT @explorer.exe (GetThemePartSize) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E4CDB1)
[Address] EAT @explorer.exe (GetThemePosition) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E72350)
[Address] EAT @explorer.exe (GetThemePropertyOrigin) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E63FBB)
[Address] EAT @explorer.exe (GetThemeRect) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E53611)
[Address] EAT @explorer.exe (GetThemeStream) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E539D9)
[Address] EAT @explorer.exe (GetThemeString) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E722E4)
[Address] EAT @explorer.exe (GetThemeSysBool) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E73172)
[Address] EAT @explorer.exe (GetThemeSysColor) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E63274)
[Address] EAT @explorer.exe (GetThemeSysColorBrush) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E7301E)
[Address] EAT @explorer.exe (GetThemeSysFont) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E729C4)
[Address] EAT @explorer.exe (GetThemeSysInt) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E72BD3)
[Address] EAT @explorer.exe (GetThemeSysSize) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E7320B)
[Address] EAT @explorer.exe (GetThemeSysString) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E72B3F)
[Address] EAT @explorer.exe (GetThemeTextExtent) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E42D57)
[Address] EAT @explorer.exe (GetThemeTextMetrics) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E4F992)
[Address] EAT @explorer.exe (GetThemeTransitionDuration) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E51081)
[Address] EAT @explorer.exe (GetWindowTheme) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E4DF46)
[Address] EAT @explorer.exe (HitTestThemeBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E53CE3)
[Address] EAT @explorer.exe (IsAppThemed) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E4F869)
[Address] EAT @explorer.exe (IsCompositionActive) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E42E9A)
[Address] EAT @explorer.exe (IsThemeActive) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E4F785)
[Address] EAT @explorer.exe (IsThemeBackgroundPartiallyTransparent) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E460AB)
[Address] EAT @explorer.exe (IsThemeDialogTextureEnabled) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E7312B)
[Address] EAT @explorer.exe (IsThemePartDefined) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E485B4)
[Address] EAT @explorer.exe (OpenThemeData) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E473D2)
[Address] EAT @explorer.exe (OpenThemeDataEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E63D43)
[Address] EAT @explorer.exe (SetThemeAppProperties) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E73296)
[Address] EAT @explorer.exe (SetWindowTheme) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E50134)
[Address] EAT @explorer.exe (SetWindowThemeAttribute) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E5CFE6)
[Address] EAT @explorer.exe (ThemeInitApiHook) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E4B176)
[Address] EAT @explorer.exe (UpdatePanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\UxTheme.dll @ 0x73E7068D)
[Address] IAT @iexplore.exe (GetProcAddress) : KERNEL32.dll -> HOOKED (C:\Program Files\Internet Explorer\IEShims.dll @ 0x0FC12888)
[Address] IAT @iexplore.exe (StrStrIW) : api-ms-win-downlevel-shlwapi-l1-1-0.dll -> HOOKED (C:\Windows\system32\shlwapi.DLL @ 0x772846E9)
[Address] EAT @iexplore.exe (BeginBufferedAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E509AE)
[Address] EAT @iexplore.exe (BeginBufferedPaint) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E449A1)
[Address] EAT @iexplore.exe (BeginPanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E70731)
[Address] EAT @iexplore.exe (BufferedPaintClear) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E46395)
[Address] EAT @iexplore.exe (BufferedPaintInit) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4940E)
[Address] EAT @iexplore.exe (BufferedPaintRenderAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E508ED)
[Address] EAT @iexplore.exe (BufferedPaintSetAlpha) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E5E6B3)
[Address] EAT @iexplore.exe (BufferedPaintStopAllAnimations) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E5D395)
[Address] EAT @iexplore.exe (BufferedPaintUnInit) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E494AB)
[Address] EAT @iexplore.exe (CloseThemeData) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E46A18)
[Address] EAT @iexplore.exe (DrawThemeBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E43982)
[Address] EAT @iexplore.exe (DrawThemeBackgroundEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E5D9DA)
[Address] EAT @iexplore.exe (DrawThemeEdge) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E63B52)
[Address] EAT @iexplore.exe (DrawThemeIcon) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E735E7)
[Address] EAT @iexplore.exe (DrawThemeParentBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E453E5)
[Address] EAT @iexplore.exe (DrawThemeParentBackgroundEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E451BF)
[Address] EAT @iexplore.exe (DrawThemeText) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E44EA1)
[Address] EAT @iexplore.exe (DrawThemeTextEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E463E6)
[Address] EAT @iexplore.exe (EnableThemeDialogTexture) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4FCAF)
[Address] EAT @iexplore.exe (EnableTheming) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E72FEB)
[Address] EAT @iexplore.exe (EndBufferedAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E43F9A)
[Address] EAT @iexplore.exe (EndBufferedPaint) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E43F9A)
[Address] EAT @iexplore.exe (EndPanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E706CC)
[Address] EAT @iexplore.exe (GetBufferedPaintBits) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E44BAF)
[Address] EAT @iexplore.exe (GetBufferedPaintDC) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E504BC)
[Address] EAT @iexplore.exe (GetBufferedPaintTargetDC) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E50473)
[Address] EAT @iexplore.exe (GetBufferedPaintTargetRect) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E72E7F)
[Address] EAT @iexplore.exe (GetCurrentThemeName) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E505DD)
[Address] EAT @iexplore.exe (GetThemeAppProperties) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E50FB1)
[Address] EAT @iexplore.exe (GetThemeBackgroundContentRect) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4CD2E)
[Address] EAT @iexplore.exe (GetThemeBackgroundExtent) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4F8BF)
[Address] EAT @iexplore.exe (GetThemeBackgroundRegion) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E5165D)
[Address] EAT @iexplore.exe (GetThemeBitmap) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4BF93)
[Address] EAT @iexplore.exe (GetThemeBool) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E47C1F)
[Address] EAT @iexplore.exe (GetThemeColor) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4616C)
[Address] EAT @iexplore.exe (GetThemeDocumentationProperty) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E72932)
[Address] EAT @iexplore.exe (GetThemeEnumValue) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4616C)
[Address] EAT @iexplore.exe (GetThemeFilename) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E72412)
[Address] EAT @iexplore.exe (GetThemeFont) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4FF21)
[Address] EAT @iexplore.exe (GetThemeInt) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4616C)
[Address] EAT @iexplore.exe (GetThemeIntList) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E723B1)
[Address] EAT @iexplore.exe (GetThemeMargins) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E486E9)
[Address] EAT @iexplore.exe (GetThemeMetric) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E506E2)
[Address] EAT @iexplore.exe (GetThemePartSize) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4CDB1)
[Address] EAT @iexplore.exe (GetThemePosition) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E72350)
[Address] EAT @iexplore.exe (GetThemePropertyOrigin) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E63FBB)
[Address] EAT @iexplore.exe (GetThemeRect) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E53611)
[Address] EAT @iexplore.exe (GetThemeStream) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E539D9)
[Address] EAT @iexplore.exe (GetThemeString) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E722E4)
[Address] EAT @iexplore.exe (GetThemeSysBool) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E73172)
[Address] EAT @iexplore.exe (GetThemeSysColor) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E63274)
[Address] EAT @iexplore.exe (GetThemeSysColorBrush) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E7301E)
[Address] EAT @iexplore.exe (GetThemeSysFont) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E729C4)
[Address] EAT @iexplore.exe (GetThemeSysInt) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E72BD3)
[Address] EAT @iexplore.exe (GetThemeSysSize) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E7320B)
[Address] EAT @iexplore.exe (GetThemeSysString) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E72B3F)
[Address] EAT @iexplore.exe (GetThemeTextExtent) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E42D57)
[Address] EAT @iexplore.exe (GetThemeTextMetrics) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4F992)
[Address] EAT @iexplore.exe (GetThemeTransitionDuration) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E51081)
[Address] EAT @iexplore.exe (GetWindowTheme) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4DF46)
[Address] EAT @iexplore.exe (HitTestThemeBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E53CE3)
[Address] EAT @iexplore.exe (IsAppThemed) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4F869)
[Address] EAT @iexplore.exe (IsCompositionActive) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E42E9A)
[Address] EAT @iexplore.exe (IsThemeActive) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4F785)
[Address] EAT @iexplore.exe (IsThemeBackgroundPartiallyTransparent) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E460AB)
[Address] EAT @iexplore.exe (IsThemeDialogTextureEnabled) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E7312B)
[Address] EAT @iexplore.exe (IsThemePartDefined) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E485B4)
[Address] EAT @iexplore.exe (OpenThemeData) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E473D2)
[Address] EAT @iexplore.exe (OpenThemeDataEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E63D43)
[Address] EAT @iexplore.exe (SetThemeAppProperties) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E73296)
[Address] EAT @iexplore.exe (SetWindowTheme) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E50134)
[Address] EAT @iexplore.exe (SetWindowThemeAttribute) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E5CFE6)
[Address] EAT @iexplore.exe (ThemeInitApiHook) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4B176)
[Address] EAT @iexplore.exe (UpdatePanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E7068D)
[Address] IAT @iexplore.exe (GetProcAddress) : KERNEL32.dll -> HOOKED (C:\Program Files\Internet Explorer\IEShims.dll @ 0x0FC12888)
[Address] IAT @iexplore.exe (StrStrIW) : api-ms-win-downlevel-shlwapi-l1-1-0.dll -> HOOKED (C:\Windows\system32\shlwapi.DLL @ 0x772846E9)
[Address] EAT @iexplore.exe (BeginBufferedAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E509AE)
[Address] EAT @iexplore.exe (BeginBufferedPaint) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E449A1)
[Address] EAT @iexplore.exe (BeginPanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E70731)
[Address] EAT @iexplore.exe (BufferedPaintClear) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E46395)
[Address] EAT @iexplore.exe (BufferedPaintInit) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4940E)
[Address] EAT @iexplore.exe (BufferedPaintRenderAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E508ED)
[Address] EAT @iexplore.exe (BufferedPaintSetAlpha) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E5E6B3)
[Address] EAT @iexplore.exe (BufferedPaintStopAllAnimations) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E5D395)
[Address] EAT @iexplore.exe (BufferedPaintUnInit) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E494AB)
[Address] EAT @iexplore.exe (CloseThemeData) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E46A18)
[Address] EAT @iexplore.exe (DrawThemeBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E43982)
[Address] EAT @iexplore.exe (DrawThemeBackgroundEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E5D9DA)
[Address] EAT @iexplore.exe (DrawThemeEdge) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E63B52)
[Address] EAT @iexplore.exe (DrawThemeIcon) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E735E7)
[Address] EAT @iexplore.exe (DrawThemeParentBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E453E5)
[Address] EAT @iexplore.exe (DrawThemeParentBackgroundEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E451BF)
[Address] EAT @iexplore.exe (DrawThemeText) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E44EA1)
[Address] EAT @iexplore.exe (DrawThemeTextEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E463E6)
[Address] EAT @iexplore.exe (EnableThemeDialogTexture) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4FCAF)
[Address] EAT @iexplore.exe (EnableTheming) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E72FEB)
[Address] EAT @iexplore.exe (EndBufferedAnimation) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E43F9A)
[Address] EAT @iexplore.exe (EndBufferedPaint) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E43F9A)
[Address] EAT @iexplore.exe (EndPanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E706CC)
[Address] EAT @iexplore.exe (GetBufferedPaintBits) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E44BAF)
[Address] EAT @iexplore.exe (GetBufferedPaintDC) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E504BC)
[Address] EAT @iexplore.exe (GetBufferedPaintTargetDC) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E50473)
[Address] EAT @iexplore.exe (GetBufferedPaintTargetRect) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E72E7F)
[Address] EAT @iexplore.exe (GetCurrentThemeName) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E505DD)
[Address] EAT @iexplore.exe (GetThemeAppProperties) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E50FB1)
[Address] EAT @iexplore.exe (GetThemeBackgroundContentRect) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4CD2E)
[Address] EAT @iexplore.exe (GetThemeBackgroundExtent) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4F8BF)
[Address] EAT @iexplore.exe (GetThemeBackgroundRegion) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E5165D)
[Address] EAT @iexplore.exe (GetThemeBitmap) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4BF93)
[Address] EAT @iexplore.exe (GetThemeBool) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E47C1F)
[Address] EAT @iexplore.exe (GetThemeColor) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4616C)
[Address] EAT @iexplore.exe (GetThemeDocumentationProperty) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E72932)
[Address] EAT @iexplore.exe (GetThemeEnumValue) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4616C)
[Address] EAT @iexplore.exe (GetThemeFilename) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E72412)
[Address] EAT @iexplore.exe (GetThemeFont) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4FF21)
[Address] EAT @iexplore.exe (GetThemeInt) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4616C)
[Address] EAT @iexplore.exe (GetThemeIntList) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E723B1)
[Address] EAT @iexplore.exe (GetThemeMargins) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E486E9)
[Address] EAT @iexplore.exe (GetThemeMetric) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E506E2)
[Address] EAT @iexplore.exe (GetThemePartSize) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4CDB1)
[Address] EAT @iexplore.exe (GetThemePosition) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E72350)
[Address] EAT @iexplore.exe (GetThemePropertyOrigin) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E63FBB)
[Address] EAT @iexplore.exe (GetThemeRect) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E53611)
[Address] EAT @iexplore.exe (GetThemeStream) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E539D9)
[Address] EAT @iexplore.exe (GetThemeString) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E722E4)
[Address] EAT @iexplore.exe (GetThemeSysBool) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E73172)
[Address] EAT @iexplore.exe (GetThemeSysColor) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E63274)
[Address] EAT @iexplore.exe (GetThemeSysColorBrush) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E7301E)
[Address] EAT @iexplore.exe (GetThemeSysFont) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E729C4)
[Address] EAT @iexplore.exe (GetThemeSysInt) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E72BD3)
[Address] EAT @iexplore.exe (GetThemeSysSize) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E7320B)
[Address] EAT @iexplore.exe (GetThemeSysString) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E72B3F)
[Address] EAT @iexplore.exe (GetThemeTextExtent) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E42D57)
[Address] EAT @iexplore.exe (GetThemeTextMetrics) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4F992)
[Address] EAT @iexplore.exe (GetThemeTransitionDuration) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E51081)
[Address] EAT @iexplore.exe (GetWindowTheme) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4DF46)
[Address] EAT @iexplore.exe (HitTestThemeBackground) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E53CE3)
[Address] EAT @iexplore.exe (IsAppThemed) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4F869)
[Address] EAT @iexplore.exe (IsCompositionActive) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E42E9A)
[Address] EAT @iexplore.exe (IsThemeActive) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4F785)
[Address] EAT @iexplore.exe (IsThemeBackgroundPartiallyTransparent) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E460AB)
[Address] EAT @iexplore.exe (IsThemeDialogTextureEnabled) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E7312B)
[Address] EAT @iexplore.exe (IsThemePartDefined) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E485B4)
[Address] EAT @iexplore.exe (OpenThemeData) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E473D2)
[Address] EAT @iexplore.exe (OpenThemeDataEx) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E63D43)
[Address] EAT @iexplore.exe (SetThemeAppProperties) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E73296)
[Address] EAT @iexplore.exe (SetWindowTheme) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E50134)
[Address] EAT @iexplore.exe (SetWindowThemeAttribute) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E5CFE6)
[Address] EAT @iexplore.exe (ThemeInitApiHook) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E4B176)
[Address] EAT @iexplore.exe (UpdatePanningFeedback) : PROPSYS.dll -> HOOKED (C:\Windows\system32\uxtheme.dll @ 0x73E7068D)
 
¤¤¤ External Hives: ¤¤¤
 
¤¤¤ Infection :  ¤¤¤
 
¤¤¤ HOSTS File: ¤¤¤
--> %SystemRoot%\System32\drivers\etc\hosts
 
 
127.0.0.1       localhost
::1             localhost
 
 
¤¤¤ MBR Check: ¤¤¤
 
+++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST9500325AS +++++
--- User ---
[MBR] 877f8e10964c2bd20ec7de97167f3edf
[bSP] 0a3dbe199a98ed72a848fda2903dcfb4 : Acer MBR Code
Partition table:
0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 12288 MB
1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 25167872 | Size: 232324 MB
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 500967424 | Size: 228761 MB
3 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 969469952 | Size: 3565 MB
User = LL1 ... OK!
User = LL2 ... OK!
 
Finished : << RKreport[0]_S_05202014_002629.txt >>
Länk till kommentar
Dela på andra webbplatser

1. Spara SystemLook på Skrivbordet från en av dessa länkar:
http://jpshortstuff.247fixes.com/SystemLook.exe
http://images.malwareremoval.com/jpshortstuff/SystemLook.exe

Dubbelklicka på SystemLook-filen för att köra den.

Kopiera alla rader i rutan

:dir
C:\Program Files\Common Files\DESIGNER
och klistra in i det stora textfältet i SýstemLook.
Tryck på knappen Look för att starta sökningen.
När det är klart så kommer Anteckningar upp med en logg, och den klistrar du in här. Om loggen inte kommer upp så finns den som SystemLook.txt på Skrivbordet.

 

2. Gör en skanning med MBAM igen så får vi se om något där här återuppstått.

 

3. Visas reklamen i webbläsarfönster eller på något annat sätt?

Kommer reklamen även om en webbläsare inte är igång?

Länk till kommentar
Dela på andra webbplatser

Hej!

 

Nedan är loggen. När det gäller fråga 3 så är det så att så fort man har loggat in i datorn så börjar detta automatiskt att starta upp explorer fönster, 5-10 st och då måste jag köra ctrl-alt delete för att komma tillbaka och kunna stänga explorer. Sen kan det var lugnt i några minuter för att sätta igång igen. Så för att kunna göra gå hit måste jag gå via Chrome... där uppstår inte detta. Men jag får med jämna mellanrum döda explorer fönster som sinkar datorn.

 

En reflektion, jag gjorde ingen rensning efter Roughkiller. Skulle jag det?

 

 

 

SystemLook 30.07.11 by jpshortstuff

Log created at 20:09 on 20/05/2014 by Kalle

Administrator - Elevation successful

 

========== dir ==========

 

C:\Program Files\Common Files\DESIGNER - Parameters: "(none)"

 

---Files---

MSADDNDR.DLL --a---- 99992 bytes [20:46 31/03/2014] [20:46 31/03/2014]

 

---Folders---

None found.

 

-= EOF =-

Länk till kommentar
Dela på andra webbplatser

 

 

Och här är loggen från malware. Positivt då den inte hittade något men problem kvartstår...

 

Scan Type: Threat Scan

Result: Completed

Objects Scanned: 268057

Time Elapsed: 39 min, 1 sec

 

Memory: Enabled

Startup: Enabled

Filesystem: Enabled

Archives: Enabled

Rootkits: Disabled

Shuriken: Enabled

PUP: Enabled

PUM: Enabled

 

Processes: 0

(No malicious items detected)

 

Modules: 0

(No malicious items detected)

 

Registry Keys: 0

(No malicious items detected)

 

Registry Values: 0

(No malicious items detected)

 

Registry Data: 0

(No malicious items detected)

 

Folders: 0

(No malicious items detected)

 

Files: 0

(No malicious items detected)

 

Physical Sectors: 0

(No malicious items detected)

 

 

(end)

Länk till kommentar
Dela på andra webbplatser

Så vitt jag kunde se hittade inte RogueKiller något som bör åtgärdas.

 

Skanna datorn online på http://www.eset.com/onlinescan/
För att inte skannern ska ta för lång tid på sig stäng av ditt antivirusprogram under tiden.

Avbocka alternativet Remove found threats
Bocka för Scan Archives

Klicka på Advanced Settings
Bocka för:
Scan for potentially unwanted applications
Scan for potentially unsafe applications
Enable Anti-Stealth Technology

Klicka på Start

När skanningen är klar klicka på List of found threats, följt av Export to a text file. Spara till en fil på skrivbordet, öppna filen, kopiera resultatet och klistra sedan in det i ditt svar.

Länk till kommentar
Dela på andra webbplatser

Hej

 

Här var det tydligen kvar lite problem. Observera att jag inte har tagit bort något mha av detta program.

 

 

C:\AdwCleaner\Quarantine\C\Program Files\Conduit\Community Alerts\Alert.dll.vir Win32/Toolbar.Conduit.Y potentially unwanted application

C:\AdwCleaner\Quarantine\C\Users\Kalle\AppData\Roaming\OpenCandy\93FF88F26C0B4594B7FFAAC985500333\mconduitinstaller.exe.vir Win32/Toolbar.Conduit.S potentially unwanted application

C:\Users\Kalle\AppData\Local\Temp\tbentr.dll a variant of Win32/Toolbar.Conduit.X potentially unwanted application

C:\Users\Kalle\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\4e04068-4ed8f07e Java/Exploit.CVE-2013-2465.HM trojan

C:\Users\Kalle\Downloads\easy_duplicate_setup.exe a variant of Win32/Bundled.Toolbar.Ask potentially unsafe application

C:\Windows\Temp\ACC8.tmp\ffprotect\application.js Win32/Conduit.SearchProtect.A potentially unwanted application

C:\Windows\Temp\ACC8.tmp\ffprotect\nsprotector.js Win32/Conduit.SearchProtect.A potentially unwanted application
Länk till kommentar
Dela på andra webbplatser

De två första ligger i AdwCleaners karantän och är alltså redan oskadliggjorda. De tas bort när AdwCleaner avinstalleras.

 

C:\Users\Kalle\Downloads\easy_duplicate_setup.exe

Den ligger i mappen "Hämtade filer" och innebär att den installationsfilen kommer att vilja installera Ask Toolbar samtidigt som det ordinarie programmet installeras. Du får välja själv om du vill ta bort den filen.

 

Övriga tas bort nedan men inget av det som hittades orsakar ditt problem med Internet Explorer.

 

1. Starta Anteckningar.
Kopiera alla rader i rutan:

C:\Users\Kalle\AppData\Local\Temp\tbentr.dll
C:\Users\Kalle\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\4e04068-4ed8f07e
C:\Windows\Temp\ACC8.tmp
och klistra in i Anteckningar. Kontrollera att inga filer har delats upp på två rader.
Spara filen på skrivbordet med namnet fixlist.txt.

Starta FRST som finns på skrivbordet.
Klicka på knappen Fix.
Vänta tills programmet är klart.

Programmet skapar en logg Fixlog.txt på skrivbordet.
Klistra in innehållet i den i ditt svar.

 

2. Dubbelklicka på SystemLook-filen för att köra den.

Kopiera alla rader i rutan

:filefind
PROPSYS.dll
:file
C:\Windows\system32\uxtheme.dll
och klistra in i det stora textfältet i SýstemLook.
Tryck på knappen Look för att starta sökningen.
När det är klart så kommer Anteckningar upp med en logg, och den klistrar du in här. Om loggen inte kommer upp så finns den som SystemLook.txt på Skrivbordet.

 

3. Spara ComboFix på Skrivbordet: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Stäng av alla program du ser inklusive antivirusprogram och antispionprogram, men lämna brandväggen på.
Hur? Se http://www.bleepingcomputer.com/forums/topic114351.html
Kör ComboFix och följ anvisningarna som visas.
Om det kommer upp en fråga om du vill installera återställningskonsolen så svara Ja.
Mer detaljerad vägledning finns på http://www.bleepingcomputer.com/combofix/se/hur-combofix-ska-anvandas

Om det kommer upp något meddelande, t ex att ett rootkit har hittats, från ComboFix skriv ner det och skriv det sedan i ditt svar.

VIKTIGT! Klicka inte på ComboFix-fönstret med musen när det körs eftersom så det kan hänga upp sig då.

När ComboFix är färdig ska en logg komma upp, klistra in den i ditt svar. Kontrollera att antivirusprogram mm är igång innan du ansluter till internet.

Om du får problem med att komma ut på internet:
Kontrollpanelen - Nätverksanslutningar
högerklicka på din internetanslutning och välj Reparera och/eller starta om datorn.

Länk till kommentar
Dela på andra webbplatser

SystemLook 30.07.11 by jpshortstuff

Log created at 21:44 on 22/05/2014 by Kalle

Administrator - Elevation successful

 

========== filefind ==========

 

Searching for "PROPSYS.dll"

C:\Windows\System32\propsys.dll --a---- 988160 bytes [15:36 23/06/2011] [12:20 20/11/2010] 12C45E3CB6D65F73209549E2D02ECA7A

C:\Windows\winsxs\x86_microsoft-windows-propsys_31bf3856ad364e35_7.0.7600.16385_none_2b756be17bdd9d85\propsys.dll --a---- 988160 bytes [23:40 13/07/2009] [01:16 14/07/2009] 26EAEE08CAF82AA7F03C5020F51DA541

C:\Windows\winsxs\x86_microsoft-windows-propsys_31bf3856ad364e35_7.0.7601.17514_none_2da67fa978cc211f\propsys.dll --a---- 988160 bytes [15:36 23/06/2011] [12:20 20/11/2010] 12C45E3CB6D65F73209549E2D02ECA7A

 

========== file ==========

 

C:\Windows\system32\uxtheme.dll - File found and opened.

MD5: 63BFDF555DA2075A77D677829C3CCCD0

Created at 23:40 on 13/07/2009

Modified at 01:16 on 14/07/2009

Size: 249856 bytes

Attributes: --a----

FileDescription: Bibliotek för Microsoft UxTheme

FileVersion: 6.1.7600.16385 (win7_rtm.090713-1255)

ProductVersion: 6.1.7600.16385

OriginalFilename: UxTheme.dll.mui

InternalName: UxTheme.dll

ProductName: Operativsystemet Microsoft® Windows®

CompanyName: Microsoft Corporation

LegalCopyright: © Microsoft Corporation. Med ensamrätt.

 

-= EOF =-

 


Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version:15-05-2014

Ran by Kalle at 2014-05-22 21:43:16 Run:2

Running from C:\Users\Kalle\Desktop

Boot Mode: Normal

 

==============================================

 

Content of fixlist:

*****************

C:\Users\Kalle\AppData\Local\Temp\tbentr.dll

C:\Users\Kalle\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\4e04068-4ed8f07e

C:\Windows\Temp\ACC8.tmp

*****************

 

C:\Users\Kalle\AppData\Local\Temp\tbentr.dll => Moved successfully.

C:\Users\Kalle\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\40\4e04068-4ed8f07e => Moved successfully.

 

==== End of Fixlog ====

Länk till kommentar
Dela på andra webbplatser

nu har jag kört combofix

 

ComboFix 14-05-19.01 - Kalle 2014-05-22  22:43:52.1.2 - x86
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.46.1053.18.3037.1278 [GMT 2:00]
Körs från: c:\users\Kalle\Desktop\ComboFix.exe
AV: McAfee Antivirus och antispionprogram *Disabled/Updated* {ADA629C7-7F48-5689-624A-3B76997E0892}
FW: McAfee Firewall *Disabled* {959DA8E2-3527-57D1-4915-924367AD4FE9}
SP: McAfee Antivirus och antispionprogram *Disabled/Updated* {16C7C823-5972-5907-58FA-0004E2F9422F}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Andra raderingar ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Roaming
c:\users\Kalle\AppData\Local\Temp\_MEI60762\_ctypes.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\_elementtree.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\_hashlib.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\_multiprocessing.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\_socket.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\_ssl.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\pyexpat.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\pysqlite2._sqlite.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\python27.dll
c:\users\Kalle\AppData\Local\Temp\_MEI60762\pythoncom27.dll
c:\users\Kalle\AppData\Local\Temp\_MEI60762\PyWinTypes27.dll
c:\users\Kalle\AppData\Local\Temp\_MEI60762\select.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\unicodedata.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\win32api.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\win32com.shell.shell.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\win32crypt.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\win32event.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\win32file.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\win32gui.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\win32inet.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\win32pdh.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\win32pipe.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\win32process.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\win32profile.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\win32security.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\win32ts.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\windows._lib_cacheinvalidation.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\wx._animate.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\wx._controls_.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\wx._core_.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\wx._gdi_.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\wx._html2.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\wx._misc_.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\wx._windows_.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\wx._wizard.pyd
c:\users\Kalle\AppData\Local\Temp\_MEI60762\wxbase294u_net_vc90.dll
c:\users\Kalle\AppData\Local\Temp\_MEI60762\wxbase294u_vc90.dll
c:\users\Kalle\AppData\Local\Temp\_MEI60762\wxmsw294u_adv_vc90.dll
c:\users\Kalle\AppData\Local\Temp\_MEI60762\wxmsw294u_core_vc90.dll
c:\users\Kalle\AppData\Local\Temp\_MEI60762\wxmsw294u_html_vc90.dll
c:\users\Kalle\AppData\Local\Temp\_MEI60762\wxmsw294u_webview_vc90.dll
c:\users\Kalle\AppData\Roaming\.#
c:\windows\patch
c:\windows\patch\audio.reg
c:\windows\patch\MOD01SET0U00860021.enc
c:\windows\patch\RtDefLvl.ini
c:\windows\patch\setup.cmd
c:\windows\system32\drivers\npf.sys
c:\windows\system32\SET253C.tmp
c:\windows\system32\SET2B5E.tmp
c:\windows\system32\SET9569.tmp
c:\windows\system32\SET9A12.tmp
c:\windows\system32\SET9C65.tmp
c:\windows\wininit.ini
.
.
((((((((((((((((((((((((   Filer skapade från 2014-04-22 till 2014-05-22  ))))))))))))))))))))))))))))))
.
.
2014-05-22 21:01 . 2014-05-22 21:01 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-05-20 18:08 . 2014-05-22 20:45 -------- d-----w- c:\users\Kalle\AppData\Local\CrashDumps
2014-05-19 17:19 . 2014-05-20 18:19 107736 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-05-19 17:17 . 2014-04-03 07:51 51416 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-05-19 17:17 . 2014-04-03 07:51 73432 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-05-19 17:17 . 2014-04-03 07:50 23256 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-05-19 17:17 . 2014-05-19 17:17 -------- d-----w- c:\programdata\Malwarebytes
2014-05-16 22:54 . 2014-05-16 22:54 -------- d-----w- c:\program files\ESET
2014-05-16 22:17 . 2014-05-22 20:00 -------- d-----w- C:\FRST
2014-05-16 21:58 . 2014-05-16 21:59 -------- d-----w- C:\EEK
2014-05-16 21:13 . 2014-05-16 21:13 -------- d-s---w- c:\windows\system32\CompatTel
2014-05-16 20:29 . 2014-05-06 03:07 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2014-05-16 00:09 . 2014-05-16 00:09 -------- d-----w- c:\program files\Enigma Software Group
2014-05-16 00:07 . 2014-05-17 07:32 -------- d-----w- c:\windows\455F074C814E4520B69B5584BD90400C.TMP
2014-05-16 00:07 . 2014-05-16 00:07 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2014-05-15 23:50 . 2014-05-15 23:50 -------- d-----w- c:\windows\ERUNT
2014-05-15 23:11 . 2014-05-15 23:11 17352880 ----a-w- c:\windows\system32\FlashPlayerInstaller.exe
2014-05-15 22:37 . 2014-05-09 07:06 369664 ----a-w- c:\windows\system32\aepdu.dll
2014-05-15 22:37 . 2014-05-09 07:04 302592 ----a-w- c:\windows\system32\aeinv.dll
2014-05-15 22:37 . 2014-03-04 09:20 3969984 ----a-w- c:\windows\system32\ntkrnlpa.exe
2014-05-15 22:37 . 2014-03-04 09:20 3914176 ----a-w- c:\windows\system32\ntoskrnl.exe
2014-05-15 22:37 . 2014-03-04 09:17 550912 ----a-w- c:\windows\system32\kerberos.dll
2014-05-15 22:37 . 2014-04-12 02:11 1059840 ----a-w- c:\windows\system32\lsasrv.dll
2014-05-15 22:37 . 2014-03-04 09:17 259584 ----a-w- c:\windows\system32\msv1_0.dll
2014-05-15 22:37 . 2014-03-04 09:17 304128 ----a-w- c:\windows\system32\winlogon.exe
2014-05-15 21:53 . 2014-05-16 21:13 -------- d-----w- C:\AdwCleaner
2014-05-13 20:24 . 2014-03-04 09:17 247808 ----a-w- c:\windows\system32\schannel.dll
2014-05-13 20:24 . 2014-03-04 09:17 35328 ----a-w- c:\windows\system32\wincredprovider.dll
2014-05-09 15:08 . 2014-05-09 15:08 -------- d-----w- c:\users\Default\AppData\Local\Google
2014-04-23 17:49 . 2013-09-23 11:48 147912 ----a-w- c:\windows\system32\drivers\HipShieldK.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-05-22 19:46 . 2014-05-22 19:46 62576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{1B8737AB-2833-48F5-A37C-02B679ADBA9E}\offreg.dll
2014-05-15 23:11 . 2012-04-09 07:19 692400 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-05-15 23:11 . 2011-05-22 16:06 70832 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-04-30 23:37 . 2014-05-22 19:42 8073384 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{1B8737AB-2833-48F5-A37C-02B679ADBA9E}\mpengine.dll
2014-03-31 20:46 . 2014-03-31 20:46 130712 ----a-w- c:\windows\system32\MSSTDFMT.DLL
2014-03-31 20:46 . 2014-03-31 20:46 1070232 ----a-w- c:\windows\system32\MSCOMCTL.OCX
2014-03-31 07:35 . 2009-10-02 21:52 231584 ------w- c:\windows\system32\MpSigStub.exe
2014-03-17 17:45 . 2010-08-01 01:15 61400 ----a-w- c:\windows\system32\drivers\cfwids.sys
2014-03-17 17:38 . 2010-08-01 01:15 214856 ----a-w- c:\windows\system32\drivers\mfewfpk.sys
2014-03-17 17:31 . 2009-01-22 21:20 573968 ----a-w- c:\windows\system32\drivers\mfehidk.sys
2014-03-17 17:29 . 2010-08-01 01:15 367776 ----a-w- c:\windows\system32\drivers\mfefirek.sys
2014-03-17 17:28 . 2009-01-22 21:20 66408 ----a-w- c:\windows\system32\drivers\mfebopk.sys
2014-03-17 17:27 . 2009-01-22 21:20 236480 ----a-w- c:\windows\system32\drivers\mfeavfk.sys
2014-03-17 17:26 . 2010-08-01 01:15 134600 ----a-w- c:\windows\system32\drivers\mfeapfk.sys
2014-03-06 08:31 . 2014-04-14 18:43 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2014-03-06 08:02 . 2014-04-14 18:43 61952 ----a-w- c:\windows\system32\iesetup.dll
2014-03-06 08:02 . 2014-04-14 18:43 455168 ----a-w- c:\windows\system32\vbscript.dll
2014-03-06 08:01 . 2014-04-14 18:43 51200 ----a-w- c:\windows\system32\ieetwproxystub.dll
2014-03-06 07:46 . 2014-04-14 18:43 4254720 ----a-w- c:\windows\system32\jscript9.dll
2014-03-06 07:38 . 2014-04-14 18:43 112128 ----a-w- c:\windows\system32\ieUnatt.exe
2014-03-06 07:38 . 2014-04-14 18:43 108032 ----a-w- c:\windows\system32\ieetwcollector.exe
2014-03-06 07:36 . 2014-04-14 18:43 592896 ----a-w- c:\windows\system32\jscript9diag.dll
2014-03-06 07:28 . 2014-04-14 18:43 646144 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2014-03-06 07:13 . 2014-04-14 18:43 32256 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2014-03-06 06:40 . 2014-04-14 18:43 1967104 ----a-w- c:\windows\system32\inetcpl.cpl
2014-03-06 05:41 . 2014-04-14 18:43 1789440 ----a-w- c:\windows\system32\wininet.dll
.
.
(((((((((((((((((((((((((((((((((( Startpunkter i registret )))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Not* tomma poster & legitima standardposter visas inte. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\0_OneComOverlayIcon1]
@="{8EB87237-AF50-46D3-B170-435F51B6E158}"
[HKEY_CLASSES_ROOT\CLSID\{8EB87237-AF50-46D3-B170-435F51B6E158}]
2014-02-06 17:12 152576 ----a-w- d:\program files\OnecomCloudDrive\Extensions\OneComOverlayIcons.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\0_OneComOverlayIcon2]
@="{50C3B26A-0BAC-48A9-BA48-3E0FBE1E5275}"
[HKEY_CLASSES_ROOT\CLSID\{50C3B26A-0BAC-48A9-BA48-3E0FBE1E5275}]
2014-02-06 17:12 152576 ----a-w- d:\program files\OnecomCloudDrive\Extensions\OneComOverlayIcons.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\0_OneComOverlayIcon3]
@="{680C2705-E060-4AED-846C-40F1B1F253BD}"
[HKEY_CLASSES_ROOT\CLSID\{680C2705-E060-4AED-846C-40F1B1F253BD}]
2014-02-06 17:12 152576 ----a-w- d:\program files\OnecomCloudDrive\Extensions\OneComOverlayIcons.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2008-07-29 16:52 121392 ----a-w- c:\program files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2014-04-25 08:03 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2014-04-25 08:03 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2014-04-25 08:03 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2014-04-25 08:03 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2014-04-25 08:03 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2010-11-20 144384]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"Spotify Web Helper"="d:\program files\Spotify\Data\SpotifyWebHelper.exe" [2014-04-13 1171000]
"One.com"="d:\program files\OnecomCloudDrive\Dlls\AppLauncher.exe" [2013-02-10 23464]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-08-17 68856]
"GoogleDriveSync"="c:\program files\Google\Drive\googledrivesync.exe" [2014-04-25 22415552]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-04-25 1049896]
"ArcadeDeluxeAgent"="c:\program files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe" [2009-07-01 152872]
"eAudio"="c:\program files\Acer\Empowering Technology\eAudio\eAudio.exe" [2008-09-11 544768]
"eDataSecurity Loader"="c:\program files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe" [2008-07-29 526896]
"Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2010-08-10 30192]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-04 186904]
"PlayMovie"="c:\program files\Acer Arcade Deluxe\PlayMovie\PMVService.exe" [2009-05-21 173288]
"PLFSetI"="c:\windows\PLFSetI.exe" [2007-10-23 200704]
"Telia"="c:\program files\Telia\Supportassistenten\bin\sprtcmd.exe" [2010-05-10 206120]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-07-07 98304]
"LManager"="c:\program files\Launch Manager\LManager.EXE" [2009-09-15 842248]
"ePower_DMC"="c:\program files\Acer\Empowering Technology\ePower\ePower_DMC.exe" [2009-07-20 421888]
"mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2014-04-25 517392]
"CLMLServer"="c:\program files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe" [2009-07-01 206120]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2013-03-29 11930696]
"KeePass 2 PreLoad"="d:\program files\KeePass Password Safe 2\KeePass.exe" [2013-04-05 1960448]
"mcpltui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2014-04-25 517392]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SpUninstallDeleteDir"="rmdir" [X]
.
c:\users\Kalle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 2.4.lnk - c:\program files\OpenOffice.org 2.4\program\quickstart.exe [2008-1-21 393216]
Skärmurklipp och start för OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE /tsr [2009-2-26 97680]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
@=""
.
R2 Mobile Broadband. RunOuc;Mobile Broadband. OUC;c:\program files\Mobile Broadband\UpdateDog\ouc.exe [2012-08-23 246112]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-06-03 162408]
R3 A310;AVerMedia A310 DVB-T;c:\windows\system32\DRIVERS\AVerA310USB.sys [2008-07-03 26752]
R3 BBSvc;Bing Bar Update Service;c:\program files\Microsoft\BingBar\BBSvc.EXE [2011-02-28 183560]
R3 BDASwCap;AVerMedia A310 BDA DVBT Capture Device;c:\windows\system32\drivers\AVerA310Cap.sys [2008-07-03 47104]
R3 cleanhlp;cleanhlp;c:\eek\Run\cleanhlp32.sys [2014-05-15 50200]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [2014-01-22 88576]
R3 ewusbmbb;HUAWEI USB-WWAN miniport;c:\windows\system32\DRIVERS\ewusbwwan.sys [2012-08-23 353280]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2010-05-02 13224]
R3 GoogleDesktopManager-051210-111108;Google Desktop-hanteraren 5.9.1005.12335;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [2010-08-10 30192]
R3 GTUHSBUS;GT UHS BUS;c:\windows\system32\DRIVERS\gtuhsbus.sys [2009-02-04 63360]
R3 GTUHSNDISIPXP;GT UHS IP NDIS;c:\windows\system32\DRIVERS\gtuhs51.sys [2009-02-04 105856]
R3 GTUHSSER;GT UHS SER;c:\windows\system32\DRIVERS\gtuhsser.sys [2009-02-04 8064]
R3 HipShieldK;McAfee Inc. HipShieldK;c:\windows\system32\drivers\HipShieldK.sys [2013-09-23 147912]
R3 hwdatacard;Huawei DataCard USB Modem and USB Serial;c:\windows\system32\DRIVERS\ewusbmdm.sys [2012-08-23 193792]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-03-06 108032]
R3 mfencrk;McAfee Inc. mfencrk;c:\windows\system32\DRIVERS\mfencrk.sys [2014-01-21 81264]
R3 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2008-09-23 50424]
R3 papycpu;papycpu; [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 14848]
R3 ssudmdm;SAMSUNG  Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [2014-01-22 184192]
R3 TdsNordecr;Nordea NCR1 SmartCard Reader;c:\windows\system32\DRIVERS\nordecr.sys [2007-10-30 24064]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 49664]
R3 WatAdminSvc;Aktiveringsteknologier för Windows-tjänst;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-27 1343400]
R3 wifimansvc;Wifi Man Service;c:\program files\Mobile Broadband\eap\wifimansvc.exe [2012-08-23 598528]
R3 winbondcir;Winbond IR Transceiver;c:\windows\system32\DRIVERS\winbondcir.sys [2007-03-28 43008]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2014-03-17 214856]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-07-07 176128]
S2 CLHNService;CLHNService;c:\program files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [2009-04-16 75048]
S2 DiinoService;DiinoService;c:\users\Kalle\AppData\Roaming\Diino\DiinoService_win7_i386.exe [2012-10-19 46704]
S2 ETService;Empowering Technology Service;c:\program files\Acer\Empowering Technology\Service\ETService.exe [2009-08-13 24576]
S2 HomeNetSvc;McAfee Home Network;c:\program files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
S2 HsfXAudioService;HsfXAudioService;c:\windows\system32\svchost.exe [2009-07-14 20992]
S2 HWDeviceService.exe;HWDeviceService.exe;c:\programdata\DatacardService\HWDeviceService.exe [2011-03-14 271712]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\McAfee\SiteAdvisor\McSACore.exe [2014-04-23 118264]
S2 McAPExe;McAfee AP Service;c:\program files\McAfee\MSC\McAPExe.exe [2014-04-25 145568]
S2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
S2 mcpltsvc;McAfee Platform Services;c:\program files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [2013-07-30 281560]
S2 mfecore;McAfee Anti-Malware Core;c:\program files\Common Files\McAfee\AMCore\mcshield.exe [2014-01-21 644088]
S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [2014-03-17 169800]
S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2008-09-23 144632]
S2 sprtsvc_teliada;SupportSoft Sprocket Service (teliada);c:\program files\Telia\Supportassistenten\bin\sprtsvc.exe [2010-05-10 206120]
S2 TeamViewer7;TeamViewer 7;c:\program files\TeamViewer\Version7\TeamViewer_Service.exe [2012-02-23 2886528]
S2 tgsrvc_teliada;SupportSoft Repair Service (teliada);c:\program files\Telia\Supportassistenten\bin\tgsrvc.exe [2010-05-10 185640]
S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2014-03-17 61400]
S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [2012-08-23 73216]
S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2014-03-17 367776]
S3 mfencbdc;McAfee Inc. mfencbdc;c:\windows\system32\DRIVERS\mfencbdc.sys [2014-01-21 330248]
S3 netw5v32;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
S3 nuvotoncir;Nuvoton IR Transceiver;c:\windows\system32\DRIVERS\nuvotoncir.sys [2009-08-31 44544]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-08-10 171520]
S3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\DRIVERS\seehcri.sys [2008-01-09 27632]
.
.
--- Övriga tjänster/drivrutiner i minnet ---
.
*NewlyCreated* - WS2IFSL
*Deregistered* - MPFP
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HsfXAudioService REG_MULTI_SZ   HsfXAudioService
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-05-19 17:12 1077576 ----a-w- c:\program files\Google\Chrome\Application\34.0.1847.137\Installer\chrmstp.exe
.
Innehåll i mappen 'Schemalagda aktiviteter':
.
2014-05-22 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-09 23:11]
.
2014-05-22 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-01 16:42]
.
2014-05-22 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-02-01 16:42]
.
2014-05-16 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-54249351-516280376-2711681529-1000Core.job
- c:\users\Kalle\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-25 20:53]
.
2014-05-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-54249351-516280376-2711681529-1000UA.job
- c:\users\Kalle\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-25 20:53]
.
.
------- Extra genomsökning -------
.
uStart Page = hxxp://www.google.com
mStart Page = about:blank
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
IE: E&xportera till Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
.
- - - - FÖRÄLDRALÖSA POSTER SOM TAGITS BORT - - - -
.
HKLM-Run-SunJavaUpdateSched - c:\program files\Java\jre6\bin\jusched.exe
SafeBoot-CleanHlp
SafeBoot-CleanHlp.sys
AddRemove-Genie Timeline - d:\program files\Genie9\Genie Timeline\uninstall.exe
.
.
.
--------------------- LÅSTA REGISTERNYCKLAR ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_13_0_0_214_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_13_0_0_214_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000001
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- DLL'er som "laddats" under processer som körs ---------------------
.
- - - - - - - > 'Explorer.exe'(1984)
c:\program files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll
c:\program files\Acer\Empowering Technology\eDataSecurity\x86\sysenv.dll
c:\windows\System32\SysHook.dll
c:\windows\System32\SyncCenter.dll
.
------------------------ Andra processer som körs ------------------------
.
c:\windows\system32\atieclxx.exe
c:\windows\system32\WLANExt.exe
c:\windows\system32\conhost.exe
c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
c:\program files\Intel\WiFi\bin\EvtEng.exe
c:\windows\system32\taskhost.exe
c:\program files\Common Files\McAfee\SystemCore\mfevtps.exe
c:\windows\system32\rundll32.exe
c:\programdata\Mobile Broadband\OnlineUpdate\ouc.exe
c:\acer\Mobility Center\MobilityService.exe
c:\program files\Common Files\Intel\WirelessCommon\RegSrvc.exe
c:\program files\Cyberlink\Shared files\RichVideo.exe
c:\program files\Microsoft\BingBar\SeaPort.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\program files\Common Files\McAfee\SystemCore\mfefire.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\conhost.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\Synaptics\SynTP\SynTPHelper.exe
c:\program files\Common Files\McAfee\Platform\mcuicnt.exe
c:\windows\ehome\ehmsas.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\OpenOffice.org 2.4\program\soffice.exe
c:\program files\OpenOffice.org 2.4\program\soffice.BIN
d:\program files\OnecomCloudDrive\Dlls\OnecomCloudDrive.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\Internet Explorer\iexplore.exe
c:\program files\Internet Explorer\iexplore.exe
.
**************************************************************************
.
Sluttid: 2014-05-22  23:33:22 - datorn startades om.
ComboFix-quarantined-files.txt  2014-05-22 21:33
.
Före genomsökningen: 123 666 931 712 byte ledigt
Efter genomsökningen: 130 896 351 232 byte ledigt
.
- - End Of File - - 35BAA8277DC6C9A68EF7FBB6784A7B9B
BB9D3A6A13C5010348DA7C900BB6AF50
Länk till kommentar
Dela på andra webbplatser

1. Någon förbättring efter rensningen med ComboFix?

 

2. På sidan http://www.virustotal.com klickar du på Choose File -knappen och klistrar in ett av följande filnamn i fältet "Filnamn", klicka på Öppna och sedan på Scan it!. Om det kommer upp en fråga om filen ska analyseras om så välj det alternativet. Vänta tills resultatet är klart. Klistra in länken (webbadressen) till resultatet här.

C:\Windows\system32\winlogon.exe

 

3. Spara TDSSKiller på Skrivbordet:

http://support.kaspersky.com/downloads/utils/tdsskiller.exe

 

Stäng av dina vanliga program, men du kan lämna antivirusprogram och liknande igång.

Kör programmet TDSSKiller.exe.

 

Klicka på Start Scan.

 

Om några malicious hittas så välj Cure och klicka på Continue. Om inte Cure finns så välj Skip. Om några suspicious hittas så välj Skip och klicka på Continue. Välj INTE Quarantine eller Delete. Eventuellt behöver datorn startas om.

 

Klistra in innehållet i loggen som du hittar i C:\ med namnet TDSSKiller följt av version och tidpunkt.

Länk till kommentar
Dela på andra webbplatser

Nu vart det skillnad!!! Har ännu inte poppat upp något, vilket det gjorde direkt vid uppstart.

 

Körde virus total och sen TDS.. TDS hittade någon skit som jag körde Cure på och datorn startade om. Efter en stund kom en fråga om  jag skull köra en fil. Såg lite suspekt ut så jag nekade men det kanske jag inte skulle ha gjort ( det stog Kaspersky..) Kan väl köra igen i så fall.

 

Nu verkar ju Explorer funka igen men det går inte att använda google??? Är det något som har blivit stoppat? Funkar i Chrome.

 

https://www.virustotal.com/sv/file/b104293542dc76a41147cc00dbf29402a5005986f4133fea143895ae34f5ef4a/analysis/

 

17:33:41.0978 0x11c8  TDSS rootkit removing tool 3.0.0.35 May 23 2014 07:32:03
17:33:50.0083 0x11c8  ============================================================
17:33:50.0083 0x11c8  Current date / time: 2014/05/23 17:33:50.0083
17:33:50.0083 0x11c8  SystemInfo:
17:33:50.0083 0x11c8  
17:33:50.0083 0x11c8  OS Version: 6.1.7601 ServicePack: 1.0
17:33:50.0083 0x11c8  Product type: Workstation
17:33:50.0084 0x11c8  ComputerName: KALLE-DATOR
17:33:50.0084 0x11c8  UserName: Kalle
17:33:50.0084 0x11c8  Windows directory: C:\Windows
17:33:50.0084 0x11c8  System windows directory: C:\Windows
17:33:50.0084 0x11c8  Processor architecture: Intel x86
17:33:50.0084 0x11c8  Number of processors: 2
17:33:50.0084 0x11c8  Page size: 0x1000
17:33:50.0084 0x11c8  Boot type: Normal boot
17:33:50.0084 0x11c8  ============================================================
17:33:51.0395 0x11c8  KLMD registered as C:\Windows\system32\drivers\70321263.sys
17:33:51.0694 0x11c8  System UUID: {EF10E447-E531-D7C1-389E-B7950169F5EF}
17:33:53.0514 0x11c8  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
17:33:53.0519 0x11c8  ============================================================
17:33:53.0519 0x11c8  \Device\Harddisk0\DR0:
17:33:53.0520 0x11c8  MBR partitions:
17:33:53.0520 0x11c8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1800800, BlocksNum 0x1C5C2000
17:33:53.0520 0x11c8  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1DDC2800, BlocksNum 0x1BECC800
17:33:53.0520 0x11c8  ============================================================
17:33:53.0566 0x11c8  C: <-> \Device\Harddisk0\DR0\Partition1
17:33:53.0613 0x11c8  D: <-> \Device\Harddisk0\DR0\Partition2
17:33:53.0670 0x11c8  ============================================================
17:33:53.0670 0x11c8  Initialize success
17:33:53.0670 0x11c8  ============================================================
17:34:19.0070 0x0fe4  ============================================================
17:34:19.0070 0x0fe4  Scan started
17:34:19.0070 0x0fe4  Mode: Manual; 
17:34:19.0070 0x0fe4  ============================================================
17:34:19.0070 0x0fe4  KSN ping started
17:34:22.0787 0x0fe4  KSN ping finished: true
17:34:25.0904 0x0fe4  ================ Scan system memory ========================
17:34:25.0905 0x0fe4  System memory - ok
17:34:25.0972 0x0fe4  ================ Scan services =============================
17:34:26.0567 0x0fe4  [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
17:34:26.0574 0x0fe4  1394ohci - ok
17:34:26.0638 0x0fe4  [ C80CA966DDEE3924D5B31A31C84808DB, 3CF7E2237B0EB4344E51337CF0634B3C097D4F97F3B9D92D14D91ABF8A68B232 ] A310            C:\Windows\system32\DRIVERS\AVerA310USB.sys
17:34:26.0642 0x0fe4  A310 - ok
17:34:26.0695 0x0fe4  [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI            C:\Windows\system32\drivers\ACPI.sys
17:34:26.0705 0x0fe4  ACPI - ok
17:34:26.0738 0x0fe4  [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
17:34:26.0742 0x0fe4  AcpiPmi - ok
17:34:26.0939 0x0fe4  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
17:34:26.0950 0x0fe4  AdobeARMservice - ok
17:34:27.0080 0x0fe4  [ 09E7C37DF4A911C8A9AA8BF88ACD10AA, E881E0BBDCED58F28E0BA8DC27372EDFFFF2C57EE31CD13A032FDC9F7C831B5A ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
17:34:27.0090 0x0fe4  AdobeFlashPlayerUpdateSvc - ok
17:34:27.0163 0x0fe4  [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
17:34:27.0193 0x0fe4  adp94xx - ok
17:34:27.0227 0x0fe4  [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
17:34:27.0239 0x0fe4  adpahci - ok
17:34:27.0272 0x0fe4  [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
17:34:27.0280 0x0fe4  adpu320 - ok
17:34:27.0329 0x0fe4  [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
17:34:27.0334 0x0fe4  AeLookupSvc - ok
17:34:27.0388 0x0fe4  [ F81BB7E487EDCEAB630A7EE66CF23913, 7D1638FD7E388EF670FA0A421762E0413351058A20DDF0F9988A383F05395A68 ] AFD             C:\Windows\system32\drivers\afd.sys
17:34:27.0413 0x0fe4  AFD - ok
17:34:27.0441 0x0fe4  [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440          C:\Windows\system32\drivers\agp440.sys
17:34:27.0445 0x0fe4  agp440 - ok
17:34:27.0526 0x0fe4  [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx         C:\Windows\system32\DRIVERS\djsvs.sys
17:34:27.0533 0x0fe4  aic78xx - ok
17:34:27.0601 0x0fe4  [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG             C:\Windows\System32\alg.exe
17:34:27.0607 0x0fe4  ALG - ok
17:34:27.0653 0x0fe4  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide          C:\Windows\system32\drivers\aliide.sys
17:34:27.0656 0x0fe4  aliide - ok
17:34:27.0721 0x0fe4  [ EBE2D697884A1FFF96505CDBE954EDCF, 23ED79F6E8810E1C899B857DA62E4CBE55637C4238C36DB7E7186D774648BE97 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:34:27.0729 0x0fe4  AMD External Events Utility - ok
17:34:27.0752 0x0fe4  [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
17:34:27.0758 0x0fe4  amdagp - ok
17:34:27.0796 0x0fe4  [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide          C:\Windows\system32\drivers\amdide.sys
17:34:27.0800 0x0fe4  amdide - ok
17:34:27.0838 0x0fe4  [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
17:34:27.0842 0x0fe4  AmdK8 - ok
17:34:27.0877 0x0fe4  [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
17:34:27.0882 0x0fe4  AmdPPM - ok
17:34:27.0955 0x0fe4  [ D320BF87125326F996D4904FE24300FC, F767D8C5C58D57202905D829F7AE1B1FF33937F407FDCE4C90E32A6638F27416 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
17:34:27.0959 0x0fe4  amdsata - ok
17:34:28.0005 0x0fe4  [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
17:34:28.0015 0x0fe4  amdsbs - ok
17:34:28.0038 0x0fe4  [ 46387FB17B086D16DEA267D5BE23A2F2, 8B8AC61B91F154B4EB5CC6DECB5FCCEBA8B42EFE94859947136AD06681EA8ED0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
17:34:28.0041 0x0fe4  amdxata - ok
17:34:28.0084 0x0fe4  [ AEA177F783E20150ACE5383EE368DA19, 8FA9EE27AA1F22E8B8FE33A21028CA1E0062BAA95CB132C20D55B98C03B4254F ] AppID           C:\Windows\system32\drivers\appid.sys
17:34:28.0089 0x0fe4  AppID - ok
17:34:28.0156 0x0fe4  [ 62A9C86CB6085E20DB4823E4E97826F5, E0F840B49710022C4FB437002AD06F64B0F6B5D628B32D00F2B66765E6B97E4B ] AppIDSvc        C:\Windows\System32\appidsvc.dll
17:34:28.0159 0x0fe4  AppIDSvc - ok
17:34:28.0202 0x0fe4  [ EACFDF31921F51C097629F1F3C9129B4, 24138755D823E69760579ECBD672421192457CDC9941B2BC499C2D34D83E86C3 ] Appinfo         C:\Windows\System32\appinfo.dll
17:34:28.0206 0x0fe4  Appinfo - ok
17:34:28.0352 0x0fe4  [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc             C:\Windows\system32\DRIVERS\arc.sys
17:34:28.0356 0x0fe4  arc - ok
17:34:28.0378 0x0fe4  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
17:34:28.0384 0x0fe4  arcsas - ok
17:34:28.0699 0x0fe4  [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
17:34:28.0756 0x0fe4  aspnet_state - ok
17:34:28.0804 0x0fe4  [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
17:34:28.0806 0x0fe4  AsyncMac - ok
17:34:28.0843 0x0fe4  [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi           C:\Windows\system32\drivers\atapi.sys
17:34:28.0846 0x0fe4  atapi - ok
17:34:29.0203 0x0fe4  [ EE6A111E33CC13913AC620F5AD3F1E75, A0E878A66BAC22E0FF59D87D13D59E8D528CE0AFC438F0E6E078CC0739A893AE ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
17:34:29.0422 0x0fe4  atikmdag - ok
17:34:29.0526 0x0fe4  [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:34:29.0545 0x0fe4  AudioEndpointBuilder - ok
17:34:29.0575 0x0fe4  [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] Audiosrv        C:\Windows\System32\Audiosrv.dll
17:34:29.0589 0x0fe4  Audiosrv - ok
17:34:29.0694 0x0fe4  [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV        C:\Windows\System32\AxInstSV.dll
17:34:29.0698 0x0fe4  AxInstSV - ok
17:34:29.0765 0x0fe4  [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbdx.sys
17:34:29.0780 0x0fe4  b06bdrv - ok
17:34:29.0841 0x0fe4  [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
17:34:29.0852 0x0fe4  b57nd60x - ok
17:34:29.0965 0x0fe4  [ 825F81A6F7DD073509DB101F0BA6DC59, 25555D1DDB223DD10C328E4FC4A55698607004A9FA6C55DA3317AC2400897E94 ] BBSvc           C:\Program Files\Microsoft\BingBar\BBSvc.EXE
17:34:29.0973 0x0fe4  BBSvc - ok
17:34:30.0010 0x0fe4  [ 20BE361D9B33DD5B36C91C9711434396, 235E46F0D9E7058FC207BEF0619FF71C860E5A26A10D20FFE872461DF196D13C ] BDASwCap        C:\Windows\system32\drivers\AVerA310Cap.sys
17:34:30.0015 0x0fe4  BDASwCap - ok
17:34:30.0059 0x0fe4  [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC          C:\Windows\System32\bdesvc.dll
17:34:30.0064 0x0fe4  BDESVC - ok
17:34:30.0104 0x0fe4  [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep            C:\Windows\system32\drivers\Beep.sys
17:34:30.0107 0x0fe4  Beep - ok
17:34:30.0174 0x0fe4  [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE             C:\Windows\System32\bfe.dll
17:34:30.0192 0x0fe4  BFE - ok
17:34:30.0310 0x0fe4  [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS            C:\Windows\system32\qmgr.dll
17:34:30.0371 0x0fe4  BITS - ok
17:34:30.0420 0x0fe4  [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
17:34:30.0423 0x0fe4  blbdrive - ok
17:34:30.0447 0x0fe4  [ 8F2DA3028D5FCBD1A060A3DE64CD6506, E234672E9CFE1A95AD2E78E306E41E010B870221E6EBBC0E2B0BE2FA5CE0CD76 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
17:34:30.0452 0x0fe4  bowser - ok
17:34:30.0517 0x0fe4  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:34:30.0520 0x0fe4  BrFiltLo - ok
17:34:30.0547 0x0fe4  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:34:30.0550 0x0fe4  BrFiltUp - ok
17:34:30.0618 0x0fe4  [ 77361D72A04F18809D0EFB6CCEB74D4B, 55E7DB65BB29FF421F138CDFF05E5ECFFC7C8862FAA68F6179A3BA9D6B69AE64 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
17:34:30.0623 0x0fe4  BridgeMP - ok
17:34:30.0686 0x0fe4  [ 3DAA727B5B0A45039B0E1C9A211B8400, 903B51E75F0C503A0E255120F53BF51B047B219FEC1E15F2F1D02DDD562FC73B ] Browser         C:\Windows\System32\browser.dll
17:34:30.0691 0x0fe4  Browser - ok
17:34:30.0754 0x0fe4  [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
17:34:30.0766 0x0fe4  Brserid - ok
17:34:30.0795 0x0fe4  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
17:34:30.0801 0x0fe4  BrSerWdm - ok
17:34:30.0830 0x0fe4  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
17:34:30.0835 0x0fe4  BrUsbMdm - ok
17:34:30.0853 0x0fe4  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
17:34:30.0856 0x0fe4  BrUsbSer - ok
17:34:30.0884 0x0fe4  [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
17:34:30.0889 0x0fe4  BTHMODEM - ok
17:34:30.0953 0x0fe4  [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv         C:\Windows\system32\bthserv.dll
17:34:30.0959 0x0fe4  bthserv - ok
17:34:31.0369 0x0fe4  catchme - ok
17:34:31.0885 0x0fe4  [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
17:34:31.0890 0x0fe4  cdfs - ok
17:34:31.0943 0x0fe4  [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
17:34:31.0949 0x0fe4  cdrom - ok
17:34:32.0004 0x0fe4  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc     C:\Windows\System32\certprop.dll
17:34:32.0009 0x0fe4  CertPropSvc - ok
17:34:32.0070 0x0fe4  [ FB32F04C4AB320CA84F7DD75D3990DC8, F6F044EAA00A1D0BD7B61B61368BEAAE97A6911FCE283530E80C02B2C7FD470D ] cfwids          C:\Windows\system32\drivers\cfwids.sys
17:34:32.0073 0x0fe4  cfwids - ok
17:34:32.0124 0x0fe4  [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
17:34:32.0128 0x0fe4  circlass - ok
17:34:32.0308 0x0fe4  [ DBC8CDAFC84E96E894C3BAAED9B30F47, A25CDF4BBF8227878D3CBB8E74904A43751EC4E98DFEBFE4CBD3953890A170F9 ] cleanhlp        C:\EEK\Run\cleanhlp32.sys
17:34:32.0314 0x0fe4  cleanhlp - ok
17:34:32.0359 0x0fe4  [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS            C:\Windows\system32\CLFS.sys
17:34:32.0370 0x0fe4  CLFS - ok
17:34:32.0563 0x0fe4  [ 1A05E1AF359D8E961279F1EEA30A91EE, B4AE36C6B9C479EC0008417DFC882FDD462ED576658D074D0E06B8196DC48DAA ] CLHNService     C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
17:34:32.0567 0x0fe4  CLHNService - ok
17:34:32.0680 0x0fe4  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:34:32.0686 0x0fe4  clr_optimization_v2.0.50727_32 - ok
17:34:32.0790 0x0fe4  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:34:32.0874 0x0fe4  clr_optimization_v4.0.30319_32 - ok
17:34:32.0926 0x0fe4  [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
17:34:32.0929 0x0fe4  CmBatt - ok
17:34:32.0945 0x0fe4  [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
17:34:32.0948 0x0fe4  cmdide - ok
17:34:32.0984 0x0fe4  [ 85449EEBE8F8EBD6481EFBF0F352B4EB, E6FF04970C5A5BFDE7297A86C1C7B9BFE2E0F976A1A1AFB874CEB488DC6151CC ] CNG             C:\Windows\system32\Drivers\cng.sys
17:34:33.0007 0x0fe4  CNG - ok
17:34:33.0068 0x0fe4  [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
17:34:33.0082 0x0fe4  Compbatt - ok
17:34:33.0130 0x0fe4  [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
17:34:33.0134 0x0fe4  CompositeBus - ok
17:34:33.0149 0x0fe4  COMSysApp - ok
17:34:33.0196 0x0fe4  [ 097A0A4899B759A4F032BD464963B4BE, 648EC619562FFD1005063D7622991F6A09A09BFC637B3B492347936E03C25DA9 ] cpuz132         C:\Windows\system32\drivers\cpuz132_x32.sys
17:34:33.0199 0x0fe4  cpuz132 - ok
17:34:33.0254 0x0fe4  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
17:34:33.0258 0x0fe4  crcdisk - ok
17:34:33.0304 0x0fe4  [ 7CA1BECEA5DE2643ADDAD32670E7A4C9, E3AB4CC52A97E3855D7EAB87363F807FDD2162ED8C76A036CD71549ED64E7797 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
17:34:33.0311 0x0fe4  CryptSvc - ok
17:34:33.0364 0x0fe4  [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] DcomLaunch      C:\Windows\system32\rpcss.dll
17:34:33.0405 0x0fe4  DcomLaunch - ok
17:34:33.0458 0x0fe4  [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc       C:\Windows\System32\defragsvc.dll
17:34:33.0467 0x0fe4  defragsvc - ok
17:34:33.0535 0x0fe4  [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
17:34:33.0540 0x0fe4  DfsC - ok
17:34:33.0612 0x0fe4  [ 560B0DCE52DFED6623B27C9BAFA6F236, BB4156BB1CCA64CCDE065870DAE56CD58BF05CEBF7C3B17C7A821FDF02A8B157 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
17:34:33.0632 0x0fe4  dg_ssudbus - ok
17:34:33.0714 0x0fe4  [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp            C:\Windows\system32\dhcpcore.dll
17:34:33.0723 0x0fe4  Dhcp - ok
17:34:33.0913 0x0fe4  [ 8046B45C3B77004FB47796B9FDCF721E, 954FF1D2B1E93E679B5EED1215DCEA3878B83E157B46963D30148AE5321E2592 ] DiinoService    C:\Users\Kalle\AppData\Roaming\Diino\DiinoService_win7_i386.exe
17:34:33.0916 0x0fe4  DiinoService - ok
17:34:33.0992 0x0fe4  [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache        C:\Windows\system32\drivers\discache.sys
17:34:33.0995 0x0fe4  discache - ok
17:34:34.0076 0x0fe4  [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
17:34:34.0080 0x0fe4  Disk - ok
17:34:34.0236 0x0fe4  [ C701324C9E0C25DD9D60311BD87FBC84, 86BE238FCC60A55C92D303452A9D5DFA838AE560BDC03A5C6F0F9ABE92062B5A ] DKbFltr         C:\Windows\system32\DRIVERS\DKbFltr.sys
17:34:34.0239 0x0fe4  DKbFltr - ok
17:34:34.0280 0x0fe4  [ 33EF4861F19A0736B11314AAD9AE28D0, 4C4B84365D85758E3263B88F157D8B086B392C6F1EA5F0F3DB6BF87EF90248EC ] Dnscache        C:\Windows\System32\dnsrslvr.dll
17:34:34.0288 0x0fe4  Dnscache - ok
17:34:34.0388 0x0fe4  [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc         C:\Windows\System32\dot3svc.dll
17:34:34.0397 0x0fe4  dot3svc - ok
17:34:34.0579 0x0fe4  [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS             C:\Windows\system32\dps.dll
17:34:34.0587 0x0fe4  DPS - ok
17:34:34.0644 0x0fe4  [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
17:34:34.0646 0x0fe4  drmkaud - ok
17:34:34.0715 0x0fe4  [ 71BC35067CABC02C9453AEAA42B2E43E, 713B19F2C08EA5E4C087F7A74A8856932CF33E19D63384823DD4E02ED8798619 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
17:34:34.0749 0x0fe4  DXGKrnl - ok
17:34:34.0910 0x0fe4  [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost         C:\Windows\System32\eapsvc.dll
17:34:34.0915 0x0fe4  EapHost - ok
17:34:35.0257 0x0fe4  [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv           C:\Windows\system32\DRIVERS\evbdx.sys
17:34:35.0464 0x0fe4  ebdrv - ok
17:34:35.0610 0x0fe4  [ B1F2503E23425B386DF0F3413B2596F3, 02FB1FA57679DBFF2E13641AB7C24CC28D5A4CFB0C51B7A617D3A3A406B8DF0C ] eDataSecurity Service C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
17:34:35.0640 0x0fe4  eDataSecurity Service - ok
17:34:35.0682 0x0fe4  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] EFS             C:\Windows\System32\lsass.exe
17:34:35.0687 0x0fe4  EFS - ok
17:34:35.0765 0x0fe4  [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
17:34:35.0804 0x0fe4  ehRecvr - ok
17:34:35.0831 0x0fe4  [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched         C:\Windows\ehome\ehsched.exe
17:34:35.0836 0x0fe4  ehSched - ok
17:34:35.0912 0x0fe4  [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
17:34:35.0941 0x0fe4  elxstor - ok
17:34:35.0967 0x0fe4  [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
17:34:35.0970 0x0fe4  ErrDev - ok
17:34:36.0051 0x0fe4  [ E23ACF6CB61079AFD90A09519C8C6189, 2482B8855ABC5F1F10F3C338B88E4FC0F8292468B4B16517E7F0281B3D85DBAC ] ETService       C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
17:34:36.0054 0x0fe4  ETService - ok
17:34:36.0121 0x0fe4  [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem     C:\Windows\system32\es.dll
17:34:36.0133 0x0fe4  EventSystem - ok
17:34:36.0252 0x0fe4  [ 54B6E150BFF4A47EB0D204119D262E46, 0D6215AE7B29859C2301AADD4260534CD47C94E680E649C8CBBEDBE8713BC39D ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
17:34:36.0297 0x0fe4  EvtEng - ok
17:34:36.0401 0x0fe4  [ 026F6D48CC5293C7B8A696376618B9D2, 850B95FB6A8C8FD7B7F0B5BCE20DDD737CAC31E2A69D8CE7CBA287494492505D ] ewusbmbb        C:\Windows\system32\DRIVERS\ewusbwwan.sys
17:34:36.0424 0x0fe4  ewusbmbb - ok
17:34:36.0454 0x0fe4  [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat           C:\Windows\system32\drivers\exfat.sys
17:34:36.0462 0x0fe4  exfat - ok
17:34:36.0487 0x0fe4  [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
17:34:36.0494 0x0fe4  fastfat - ok
17:34:36.0703 0x0fe4  [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax             C:\Windows\system32\fxssvc.exe
17:34:36.0748 0x0fe4  Fax - ok
17:34:36.0777 0x0fe4  [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
17:34:36.0781 0x0fe4  fdc - ok
17:34:36.0817 0x0fe4  [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost         C:\Windows\system32\fdPHost.dll
17:34:36.0821 0x0fe4  fdPHost - ok
17:34:36.0850 0x0fe4  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub        C:\Windows\system32\fdrespub.dll
17:34:36.0855 0x0fe4  FDResPub - ok
17:34:36.0890 0x0fe4  [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
17:34:36.0896 0x0fe4  FileInfo - ok
17:34:36.0933 0x0fe4  [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
17:34:36.0937 0x0fe4  Filetrace - ok
17:34:36.0990 0x0fe4  [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
17:34:36.0993 0x0fe4  flpydisk - ok
17:34:37.0018 0x0fe4  [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
17:34:37.0027 0x0fe4  FltMgr - ok
17:34:37.0145 0x0fe4  [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] FontCache       C:\Windows\system32\FntCache.dll
17:34:37.0213 0x0fe4  FontCache - ok
17:34:37.0315 0x0fe4  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
17:34:37.0321 0x0fe4  FontCache3.0.0.0 - ok
17:34:37.0348 0x0fe4  [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
17:34:37.0352 0x0fe4  FsDepends - ok
17:34:37.0378 0x0fe4  [ B0082808A6856A252F7CDD939892CE50, 3A069239629C4F54049A2CFC6642AC5102ECEAA74470BAA9DDB1AB108D1060EE ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
17:34:37.0381 0x0fe4  fssfltr - ok
17:34:37.0574 0x0fe4  [ 28DDEEEC44E988657B732CF404D504CB, 47F83018E5449CDCED3DD447991788EBAAC92C418D4513FBA9408C45E9AB8E7E ] fsssvc          C:\Program Files\Windows Live\Family Safety\fsssvc.exe
17:34:37.0698 0x0fe4  fsssvc - ok
17:34:37.0755 0x0fe4  [ 7DAE5EBCC80E45D3253F4923DC424D05, 8A2C4D5591509B0B0A44583520617A9AE34F32BB6E68A012A7D7870ED24F703A ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
17:34:37.0757 0x0fe4  Fs_Rec - ok
17:34:37.0827 0x0fe4  [ E306A24D9694C724FA2491278BF50FDB, 1D246B9C28550640EACBF8CF9DC980FD75106B92832D392FEBEF0C7012353091 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
17:34:37.0835 0x0fe4  fvevol - ok
17:34:37.0882 0x0fe4  [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
17:34:37.0888 0x0fe4  gagp30kx - ok
17:34:37.0970 0x0fe4  [ 007AEA2E06E7CEF7372E40C277163959, 805906ADC7C5473B767932A552FEC7500D0F3F7CB45D8DEFE6A1567F2038EF88 ] ggflt           C:\Windows\system32\DRIVERS\ggflt.sys
17:34:37.0973 0x0fe4  ggflt - ok
17:34:37.0999 0x0fe4  [ C73DE35960CA75C5AB4AE636B127C64E, 0C22EECD64CC06AB820ED6A2E76FBC7AB072379FD14837CF95BA3EF105ABB745 ] ggsemc          C:\Windows\system32\DRIVERS\ggsemc.sys
17:34:38.0003 0x0fe4  ggsemc - ok
17:34:38.0095 0x0fe4  [ 9F5F2F0FB0A7F5AA9F16B9A7B6DAD89F, 6D2B301E77839FFF1C74425B37D02C3F3837CE50E856C21AE4CF7ABABB04ADDC ] GoogleDesktopManager-051210-111108 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
17:34:38.0098 0x0fe4  GoogleDesktopManager-051210-111108 - ok
17:34:38.0163 0x0fe4  [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] gpsvc           C:\Windows\System32\gpsvc.dll
17:34:38.0194 0x0fe4  gpsvc - ok
17:34:38.0255 0x0fe4  [ 78BB41B705D65681479BCADF44404670, 08EFA2BB4AA5016879087F493C3D2BE1368D40777E590DEE052CA38B8B9E6E86 ] GTUHSBUS        C:\Windows\system32\DRIVERS\gtuhsbus.sys
17:34:38.0260 0x0fe4  GTUHSBUS - ok
17:34:38.0314 0x0fe4  [ 1CC5454AFBDEF74C077A16E907478936, 428F4467B99C1C294554D8DBF682BE55B67CD746B05B7C9FEA8FCC50BEE96EF4 ] GTUHSNDISIPXP   C:\Windows\system32\DRIVERS\gtuhs51.sys
17:34:38.0321 0x0fe4  GTUHSNDISIPXP - ok
17:34:38.0361 0x0fe4  [ 7A5CD583652B2D52A3270A2575C09C19, 018CFDEAB5DF152E724D7DB680DFC0D2946B42DC5BEB6D247E7BE1A49C1425E7 ] GTUHSSER        C:\Windows\system32\DRIVERS\gtuhsser.sys
17:34:38.0365 0x0fe4  GTUHSSER - ok
17:34:38.0612 0x0fe4  [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
17:34:38.0621 0x0fe4  gupdate - ok
17:34:38.0665 0x0fe4  [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
17:34:38.0669 0x0fe4  gupdatem - ok
17:34:38.0714 0x0fe4  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
17:34:38.0723 0x0fe4  gusvc - ok
17:34:38.0759 0x0fe4  [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
17:34:38.0762 0x0fe4  hcw85cir - ok
17:34:38.0812 0x0fe4  [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:34:38.0837 0x0fe4  HdAudAddService - ok
17:34:38.0896 0x0fe4  [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
17:34:38.0904 0x0fe4  HDAudBus - ok
17:34:38.0955 0x0fe4  [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
17:34:38.0959 0x0fe4  HidBatt - ok
17:34:38.0985 0x0fe4  [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
17:34:38.0992 0x0fe4  HidBth - ok
17:34:39.0035 0x0fe4  [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
17:34:39.0039 0x0fe4  HidIr - ok
17:34:39.0071 0x0fe4  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv         C:\Windows\System32\hidserv.dll
17:34:39.0076 0x0fe4  hidserv - ok
17:34:39.0108 0x0fe4  [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
17:34:39.0111 0x0fe4  HidUsb - ok
17:34:39.0166 0x0fe4  [ 156765F692192EA9039A6C4A809312FD, 73400BC5E5C92A2E7834CB8EB33B3D78BF73C875C98B1AD91B0112FBB8DB19E3 ] HipShieldK      C:\Windows\system32\drivers\HipShieldK.sys
17:34:39.0174 0x0fe4  HipShieldK - ok
17:34:39.0220 0x0fe4  [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc          C:\Windows\system32\kmsvc.dll
17:34:39.0226 0x0fe4  hkmsvc - ok
17:34:39.0309 0x0fe4  [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:34:39.0321 0x0fe4  HomeGroupListener - ok
17:34:39.0368 0x0fe4  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:34:39.0378 0x0fe4  HomeGroupProvider - ok
17:34:39.0704 0x0fe4  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] HomeNetSvc      C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
17:34:39.0715 0x0fe4  HomeNetSvc - ok
17:34:39.0773 0x0fe4  [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
17:34:39.0778 0x0fe4  HpSAMD - ok
17:34:39.0871 0x0fe4  [ 210388FD8225B02BD83D77628AAE64A9, EFB755244CDF8344E14528CF46A6D43C1E8266A307603A63023D8955925FE0C3 ] HsfXAudioService C:\Windows\system32\XAudio32.dll
17:34:39.0983 0x0fe4  HsfXAudioService - ok
17:34:40.0097 0x0fe4  [ 227C3BA25012752BB7450235392C719F, 95C57347FDCD44D06325778EA2B451A26FF9F2BAB3092244102026E8FF20B03F ] HSF_DPV         C:\Windows\system32\DRIVERS\HSX_DPV.sys
17:34:40.0155 0x0fe4  HSF_DPV - ok
17:34:40.0205 0x0fe4  [ 4DF5C76302DC2F8F3465966C8426A292, D5A7C1DB3E282A11936EEE75E3ACEF07599962E0EEC5726233B3A741B783550E ] HSXHWAZL        C:\Windows\system32\DRIVERS\HSXHWAZL.sys
17:34:40.0214 0x0fe4  HSXHWAZL - ok
17:34:40.0252 0x0fe4  [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
17:34:40.0352 0x0fe4  HTTP - ok
17:34:40.0511 0x0fe4  [ F44461E66F1B7DD267957FE9BAA63ED0, 5B51692F1670A43A8C1B9E2EECB4042AB04BA92AAA347405A61D3EA8C478BC5A ] huawei_enumerator C:\Windows\system32\DRIVERS\ew_jubusenum.sys
17:34:40.0514 0x0fe4  huawei_enumerator - ok
17:34:40.0581 0x0fe4  [ F547F862B8907F1BCBD9B72A72A6449E, 18045A85AF0060E599A386D2F50E333D0ADEBECD2987CB4EE6377D1537197285 ] hwdatacard      C:\Windows\system32\DRIVERS\ewusbmdm.sys
17:34:40.0590 0x0fe4  hwdatacard - ok
17:34:40.0736 0x0fe4  [ 5EF3427AE503B5C03A48F7C9FF458B69, C75D6E860AA9A1EA0351388B137FE39CE47E96471841BDCA96FF63C87CE99132 ] HWDeviceService.exe C:\ProgramData\DatacardService\HWDeviceService.exe
17:34:40.0747 0x0fe4  HWDeviceService.exe - ok
17:34:40.0785 0x0fe4  [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
17:34:40.0787 0x0fe4  hwpolicy - ok
17:34:40.0886 0x0fe4  [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
17:34:40.0891 0x0fe4  i8042prt - ok
17:34:40.0961 0x0fe4  [ 7548066DF68A8A1A56B043359F915F37, 6225DDE554E45858374CBD284A85A00F773089A667C08492187A637232B8BD9A ] IAANTMON        C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
17:34:40.0990 0x0fe4  IAANTMON - ok
17:34:41.0044 0x0fe4  [ D483687EACE0C065EE772481A96E05F5, A22200E90C78DFE73FE0FBEED5331AB43CD7133651FD125595C4DB604AD71B29 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
17:34:41.0052 0x0fe4  iaStor - ok
17:34:41.0109 0x0fe4  [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E, 72870092A80C6DAE0105025B0ED8B607E98BA81E59298364A7FE4C9C56C68FF0 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
17:34:41.0121 0x0fe4  iaStorV - ok
17:34:41.0207 0x0fe4  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
17:34:41.0217 0x0fe4  IDriverT - ok
17:34:41.0327 0x0fe4  [ C521D7EB6497BB1AF6AFA89E322FB43C, BDDCFCBB5B76A9295669B5AC9F732D6127199ED5C300770B554C4E4794F66BB7 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:34:41.0376 0x0fe4  idsvc - ok
17:34:41.0488 0x0fe4  IEEtwCollectorService - ok
17:34:41.0534 0x0fe4  [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
17:34:41.0540 0x0fe4  iirsp - ok
17:34:41.0626 0x0fe4  [ B9C54120F46392100478F58F374E5709, A28EE8B0988F580D5984E815FC78DF41B169260814234AA0E453375542D0957B ] IKEEXT          C:\Windows\System32\ikeext.dll
17:34:41.0666 0x0fe4  IKEEXT - ok
17:34:41.0719 0x0fe4  [ 58FF11C95C3681C9250914521CB9F036, 21249A7F85FCCC5DF56F67C92D3964CFBD3E9855EABDD2148075200A86868372 ] int15           C:\Windows\system32\drivers\int15.sys
17:34:41.0721 0x0fe4  int15 - ok
17:34:41.0887 0x0fe4  [ 82EE5914B6AB27BFD23ECA29AEB34DA4, 4EEB9AA8D278C24C87F18AC803B0DEB27339CAEC40433C179A14459A19AD3244 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
17:34:42.0018 0x0fe4  IntcAzAudAddService - ok
17:34:42.0071 0x0fe4  [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide        C:\Windows\system32\drivers\intelide.sys
17:34:42.0074 0x0fe4  intelide - ok
17:34:42.0121 0x0fe4  [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
17:34:42.0125 0x0fe4  intelppm - ok
17:34:42.0167 0x0fe4  [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
17:34:42.0172 0x0fe4  IPBusEnum - ok
17:34:42.0221 0x0fe4  [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:34:42.0225 0x0fe4  IpFilterDriver - ok
17:34:42.0266 0x0fe4  [ 58F67245D041FBE7AF88F4EAF79DF0FA, 67468D6A46FF4D87AD321BFEA42F2FC843D09AA292A119C76D4D795D06028F96 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
17:34:42.0322 0x0fe4  iphlpsvc - ok
17:34:42.0375 0x0fe4  [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
17:34:42.0381 0x0fe4  IPMIDRV - ok
17:34:42.0645 0x0fe4  [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
17:34:42.0696 0x0fe4  IPNAT - ok
17:34:42.0737 0x0fe4  [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM          C:\Windows\system32\drivers\irenum.sys
17:34:42.0741 0x0fe4  IRENUM - ok
17:34:42.0768 0x0fe4  [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp          C:\Windows\system32\drivers\isapnp.sys
17:34:42.0777 0x0fe4  isapnp - ok
17:34:42.0835 0x0fe4  [ EB34CE31FABD4DC4343FD2AD16D2CAF9, D21C91227A15DA89ECF522345D0AB80B3B7FC24A230596DABDB8BD3B7554CE8C ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
17:34:42.0845 0x0fe4  iScsiPrt - ok
17:34:42.0877 0x0fe4  [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
17:34:42.0880 0x0fe4  kbdclass - ok
17:34:42.0947 0x0fe4  [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
17:34:42.0950 0x0fe4  kbdhid - ok
17:34:43.0011 0x0fe4  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] KeyIso          C:\Windows\system32\lsass.exe
17:34:43.0014 0x0fe4  KeyIso - ok
17:34:43.0066 0x0fe4  [ 4120DA10AA42A9996F4575DB9E3E6E6E, 1C6E790772EA327ACB885D731A030408160534997DD56FEE4D6CEE6929873BB8 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
17:34:43.0070 0x0fe4  KSecDD - ok
17:34:43.0108 0x0fe4  [ D3964885F0A11ACF51DA3AAA776973B2, 417ED5A3201FC50FBC0D646F8F2114A1E8A91E7919A62508DCBC156C0BFB2FBA ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
17:34:43.0117 0x0fe4  KSecPkg - ok
17:34:43.0181 0x0fe4  [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm           C:\Windows\system32\msdtckrm.dll
17:34:43.0205 0x0fe4  KtmRm - ok
17:34:43.0255 0x0fe4  [ F7CDABA15C7E853F0A11AF6D77FCA990, 14486B8C9535D62AD8FA98A21DA76E793B3FB275D82FAF4423526D340ABCD785 ] L1E             C:\Windows\system32\DRIVERS\L1E62x86.sys
17:34:43.0259 0x0fe4  L1E - ok
17:34:43.0313 0x0fe4  [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer    C:\Windows\System32\srvsvc.dll
17:34:43.0324 0x0fe4  LanmanServer - ok
17:34:43.0373 0x0fe4  [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:34:43.0380 0x0fe4  LanmanWorkstation - ok
17:34:43.0412 0x0fe4  [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
17:34:43.0415 0x0fe4  lltdio - ok
17:34:43.0472 0x0fe4  [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
17:34:43.0482 0x0fe4  lltdsvc - ok
17:34:43.0491 0x0fe4  [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts         C:\Windows\System32\lmhsvc.dll
17:34:43.0494 0x0fe4  lmhosts - ok
17:34:43.0548 0x0fe4  [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
17:34:43.0553 0x0fe4  LSI_FC - ok
17:34:43.0567 0x0fe4  [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
17:34:43.0573 0x0fe4  LSI_SAS - ok
17:34:43.0602 0x0fe4  [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:34:43.0607 0x0fe4  LSI_SAS2 - ok
17:34:43.0711 0x0fe4  [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:34:43.0716 0x0fe4  LSI_SCSI - ok
17:34:43.0755 0x0fe4  [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv           C:\Windows\system32\drivers\luafv.sys
17:34:43.0759 0x0fe4  luafv - ok
17:34:43.0880 0x0fe4  [ E8900D6AFBE707CF0D61ABAA7ADC4925, CB881FA0C37CCE3359766334E7B1B81855E3C990CF01E6061C1487B3A5AA26EA ] McAfee SiteAdvisor Service C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
17:34:43.0886 0x0fe4  McAfee SiteAdvisor Service - ok
17:34:43.0952 0x0fe4  [ 16B115E3706F493BE99FCA5D75EE54CF, CAEC1D17894EBBE303A23BD33B6E9DB9EFB670E31C7393812BCFB8B418FCD816 ] McAPExe         C:\Program Files\McAfee\MSC\McAPExe.exe
17:34:43.0959 0x0fe4  McAPExe - ok
17:34:44.0084 0x0fe4  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] McMPFSvc        C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe
17:34:44.0091 0x0fe4  McMPFSvc - ok
17:34:44.0216 0x0fe4  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] McNaiAnn        C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
17:34:44.0224 0x0fe4  McNaiAnn - ok
17:34:44.0424 0x0fe4  [ 3A01047FFF666D33EBDE3513D20DA1F5, 360A1D6C2CBDF9C25E72B872ACE36E69D43218E532248A08753490ED6C266CBE ] McODS           C:\Program Files\McAfee\VirusScan\mcods.exe
17:34:44.0442 0x0fe4  McODS - ok
17:34:44.0546 0x0fe4  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] mcpltsvc        C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
17:34:44.0553 0x0fe4  mcpltsvc - ok
17:34:44.0625 0x0fe4  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] McProxy         C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
17:34:44.0632 0x0fe4  McProxy - ok
17:34:44.0701 0x0fe4  [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
17:34:44.0707 0x0fe4  Mcx2Svc - ok
17:34:44.0798 0x0fe4  [ 0CEA2D0D3FA284B85ED5B68365114F76, E6FF0EC98FDC3F628438B613C356C237E68686E3B5B17A58A60C16F4B9A2B968 ] mdmxsdk         C:\Windows\system32\DRIVERS\mdmxsdk.sys
17:34:44.0801 0x0fe4  mdmxsdk - ok
17:34:44.0829 0x0fe4  [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
17:34:44.0833 0x0fe4  megasas - ok
17:34:44.0895 0x0fe4  [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
17:34:44.0905 0x0fe4  MegaSR - ok
17:34:45.0124 0x0fe4  [ 95F8873FBB60FA58D4FA7A557240077E, 4A09C4DB6ED0B3EF33A3BDDDACC4F71D1EF251CAECFC61F3829FA1383B4A76B1 ] mfeapfk         C:\Windows\system32\drivers\mfeapfk.sys
17:34:45.0133 0x0fe4  mfeapfk - ok
17:34:45.0192 0x0fe4  [ 532EA503BA4A370F57C992E34CD27FB7, A1DDCAE9E95E611964A1F50924C032B4F29EC0FDF7DF66E155D6601D96962306 ] mfeavfk         C:\Windows\system32\drivers\mfeavfk.sys
17:34:45.0201 0x0fe4  mfeavfk - ok
17:34:45.0229 0x0fe4  [ 5E5BAE7867B6FB5CECB9952846947250, 0BCEBFC49E1CC03EC6F7D852BD9192BE7959E1B227C4FC8C7D5403F60B546D14 ] mfebopk         C:\Windows\system32\drivers\mfebopk.sys
17:34:45.0239 0x0fe4  mfebopk - ok
17:34:45.0382 0x0fe4  [ 84CA6B123F0C8250215C5544DD0C7B8F, BF7BD5300A7C4DC65848E8CCD8B8700921D2652FF3AACFE5843326DC5D1F61EB ] mfecore         C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
17:34:45.0417 0x0fe4  mfecore - ok
17:34:45.0516 0x0fe4  [ 509596F101D6DAD38B68075705A02BCC, A2977853752529F24FB4EF7C804AADE978D7DB8FAEE09153EDF4C14D53DA77E4 ] mfefire         C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
17:34:45.0524 0x0fe4  mfefire - ok
17:34:45.0657 0x0fe4  [ F67007F704DB45490E57BE160643007B, AC9C33498B2DFB44FB828B26021410FA1944751ADBB1939F7F49D141037DB3D0 ] mfefirek        C:\Windows\system32\drivers\mfefirek.sys
17:34:45.0704 0x0fe4  mfefirek - ok
17:34:45.0784 0x0fe4  [ 138B45C23E8F57985408B766D02DC0E1, A0FEFBF8F151CA1B462B98B55722F38DE95CC1712F2A30323BDEE7C8DE6B7D9C ] mfehidk         C:\Windows\system32\drivers\mfehidk.sys
17:34:45.0818 0x0fe4  mfehidk - ok
17:34:45.0899 0x0fe4  [ 212B005AAAE1FF719D7E7E04C238401D, 455905C930199786DCF87C7DFDEBBF55D669015736ADF5AD3ED55FA69911D406 ] mfencbdc        C:\Windows\system32\DRIVERS\mfencbdc.sys
17:34:45.0912 0x0fe4  mfencbdc - ok
17:34:45.0972 0x0fe4  [ 7E81F476A0B94C66AFDCC32FB9E2C543, 811426024946250AA85B9BD0315207F33BC4700356843975D645B747022229C1 ] mfencrk         C:\Windows\system32\DRIVERS\mfencrk.sys
17:34:45.0977 0x0fe4  mfencrk - ok
17:34:46.0009 0x0fe4  [ 41FE2F288E05A6C8AB85DD56770FFBAD, 75AB2C2882DEDB85DFCB313C0F469723AD252CA8D0D4C73D5CA72D7DDCA1B0E7 ] mferkdk         C:\Windows\system32\drivers\mferkdk.sys
17:34:46.0013 0x0fe4  mferkdk - ok
17:34:46.0028 0x0fe4  [ 096B52EA918AA909BA5903D79E129005, A34B7E5DA4053B0C9A01EEAA1538B2950287DD56BC602D2E35365ABA6E7AA4DC ] mfesmfk         C:\Windows\system32\drivers\mfesmfk.sys
17:34:46.0031 0x0fe4  mfesmfk - ok
17:34:46.0111 0x0fe4  [ 2A0B548D4AF669BC4D410FF8CD24E17F, 67C62DED2E801910A22EAD92F002C0FA09E5E39C621B7AE1F27711D0E55567DA ] mfevtp          C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe
17:34:46.0118 0x0fe4  mfevtp - ok
17:34:46.0151 0x0fe4  [ 3554F83B62A66B0388793C979C6F9555, E2FEFD6EE519A02F64470F5EA17BF274965EA05F84A8D0945B7D129EC083CF9C ] mfewfpk         C:\Windows\system32\drivers\mfewfpk.sys
17:34:46.0159 0x0fe4  mfewfpk - ok
17:34:46.0223 0x0fe4  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS           C:\Windows\system32\mmcss.dll
17:34:46.0228 0x0fe4  MMCSS - ok
17:34:46.0424 0x0fe4  [ 1CE0621B591913C12BECAA5B50E88BB2, 115068C57570140C9389BD923A4E68236ACEBB4F733DA09D05AEEDAD7317AB46 ] Mobile Broadband. RunOuc C:\Program Files\Mobile Broadband\UpdateDog\ouc.exe
17:34:46.0435 0x0fe4  Mobile Broadband. RunOuc - ok
17:34:46.0726 0x0fe4  MobilityService - ok
17:34:46.0800 0x0fe4  [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem           C:\Windows\system32\drivers\modem.sys
17:34:46.0803 0x0fe4  Modem - ok
17:34:46.0836 0x0fe4  [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
17:34:46.0839 0x0fe4  monitor - ok
17:34:46.0880 0x0fe4  [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass        C:\Windows\system32\drivers\mouclass.sys
17:34:46.0883 0x0fe4  mouclass - ok
17:34:46.0969 0x0fe4  [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
17:34:46.0973 0x0fe4  mouhid - ok
17:34:47.0008 0x0fe4  [ FC8771F45ECCCFD89684E38842539B9B, 806DDF2B4830CA866582FE74A521BB7DF26CA0E19013DAF584D3677FB48CC77A ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
17:34:47.0012 0x0fe4  mountmgr - ok
17:34:47.0052 0x0fe4  [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio            C:\Windows\system32\drivers\mpio.sys
17:34:47.0061 0x0fe4  mpio - ok
17:34:47.0107 0x0fe4  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
17:34:47.0112 0x0fe4  mpsdrv - ok
17:34:47.0254 0x0fe4  [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc          C:\Windows\system32\mpssvc.dll
17:34:47.0309 0x0fe4  MpsSvc - ok
17:34:47.0400 0x0fe4  [ 21F4B24ACFC79A483515BD986DD9043F, 22681907E02E0B723ABE2CEF0602D36C8EF862E7E2B62A9B40A5EF582E58D7BA ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
17:34:47.0406 0x0fe4  MRxDAV - ok
17:34:47.0446 0x0fe4  [ 5D16C921E3671636C0EBA3BBAAC5FD25, 5BC107B95CAFC88F51FBB9F657B99944B20627A2B618F263093D7045E4FFD65C ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
17:34:47.0451 0x0fe4  mrxsmb - ok
17:34:47.0484 0x0fe4  [ 6D17A4791ACA19328C685D256349FEFC, 012AA3D84EEAAF53780D06D2D11B9727DFC3441F3FAD75BC9E751FB814403668 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:34:47.0493 0x0fe4  mrxsmb10 - ok
17:34:47.0516 0x0fe4  [ B81F204D146000BE76651A50670A5E9E, 78193D0F967BE9829E53F9B500342934B4B1E1F4CEFC444382959E2061BC3B17 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:34:47.0521 0x0fe4  mrxsmb20 - ok
17:34:47.0600 0x0fe4  [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci          C:\Windows\system32\drivers\msahci.sys
17:34:47.0604 0x0fe4  msahci - ok
17:34:47.0698 0x0fe4  [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm
 
 
 
Länk till kommentar
Dela på andra webbplatser

          C:\Windows\system32\drivers\msdsm.sys

17:34:47.0703 0x0fe4  msdsm - ok

17:34:47.0773 0x0fe4  [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC           C:\Windows\System32\msdtc.exe

17:34:47.0783 0x0fe4  MSDTC - ok

17:34:47.0893 0x0fe4  [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs            C:\Windows\system32\drivers\Msfs.sys

17:34:47.0896 0x0fe4  Msfs - ok

17:34:47.0952 0x0fe4  [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys

17:34:47.0955 0x0fe4  mshidkmdf - ok

17:34:48.0040 0x0fe4  [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys

17:34:48.0044 0x0fe4  msisadrv - ok

17:34:48.0086 0x0fe4  [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI         C:\Windows\system32\iscsiexe.dll

17:34:48.0093 0x0fe4  MSiSCSI - ok

17:34:48.0110 0x0fe4  msiserver - ok

17:34:48.0183 0x0fe4  [ 5007E21208DA68F60EBF43352BDFE6D0, 698B6AB8260E05D6A2D168939E8D7F9F1CC1C78FDEC4F6B9D1A7289FD83C841B ] MSK80Service    C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe

17:34:48.0193 0x0fe4  MSK80Service - ok

17:34:48.0424 0x0fe4  [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys

17:34:48.0428 0x0fe4  MSKSSRV - ok

17:34:48.0668 0x0fe4  [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys

17:34:48.0671 0x0fe4  MSPCLOCK - ok

17:34:48.0753 0x0fe4  [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys

17:34:48.0757 0x0fe4  MSPQM - ok

17:34:48.0782 0x0fe4  [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys

17:34:48.0790 0x0fe4  MsRPC - ok

17:34:48.0820 0x0fe4  [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys

17:34:48.0823 0x0fe4  mssmbios - ok

17:34:48.0881 0x0fe4  [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys

17:34:48.0891 0x0fe4  MSTEE - ok

17:34:49.0030 0x0fe4  [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys

17:34:49.0038 0x0fe4  MTConfig - ok

17:34:49.0078 0x0fe4  [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup             C:\Windows\system32\Drivers\mup.sys

17:34:49.0102 0x0fe4  Mup - ok

17:34:49.0153 0x0fe4  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent        C:\Windows\system32\qagentRT.dll

17:34:49.0311 0x0fe4  napagent - ok

17:34:49.0398 0x0fe4  [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys

17:34:49.0408 0x0fe4  NativeWifiP - ok

17:34:49.0498 0x0fe4  [ 8C9C922D71F1CD4DEF73F186416B7896, 15FF43CD90C7913F83B35F2E7986561584588E8A45196EBD965C3A355836A9C7 ] NDIS            C:\Windows\system32\drivers\ndis.sys

17:34:49.0533 0x0fe4  NDIS - ok

17:34:49.0669 0x0fe4  [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys

17:34:49.0672 0x0fe4  NdisCap - ok

17:34:49.0688 0x0fe4  [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys

17:34:49.0690 0x0fe4  NdisTapi - ok

17:34:49.0725 0x0fe4  [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys

17:34:49.0729 0x0fe4  Ndisuio - ok

17:34:49.0819 0x0fe4  [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys

17:34:49.0824 0x0fe4  NdisWan - ok

17:34:49.0864 0x0fe4  [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys

17:34:49.0867 0x0fe4  NDProxy - ok

17:34:49.0922 0x0fe4  [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys

17:34:49.0925 0x0fe4  NetBIOS - ok

17:34:49.0955 0x0fe4  [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys

17:34:49.0963 0x0fe4  NetBT - ok

17:34:49.0989 0x0fe4  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] Netlogon        C:\Windows\system32\lsass.exe

17:34:49.0993 0x0fe4  Netlogon - ok

17:34:50.0033 0x0fe4  [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman          C:\Windows\System32\netman.dll

17:34:50.0056 0x0fe4  Netman - ok

17:34:50.0288 0x0fe4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

17:34:50.0325 0x0fe4  NetMsmqActivator - ok

17:34:50.0794 0x0fe4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

17:34:50.0800 0x0fe4  NetPipeActivator - ok

17:34:50.0898 0x0fe4  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm        C:\Windows\System32\netprofm.dll

17:34:50.0960 0x0fe4  netprofm - ok

17:34:51.0169 0x0fe4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

17:34:51.0173 0x0fe4  NetTcpActivator - ok

17:34:51.0184 0x0fe4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe

17:34:51.0190 0x0fe4  NetTcpPortSharing - ok

17:34:51.0581 0x0fe4  [ 58218EC6B61B1169CF54AAB0D00F5FE2, B76ABB2AD78CE68D30F0F08563B0593D658298CDCF1B138B6E9FB0D64CBCC3C2 ] netw5v32        C:\Windows\system32\DRIVERS\netw5v32.sys

17:34:51.0803 0x0fe4  netw5v32 - ok

17:34:52.0000 0x0fe4  [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys

17:34:52.0023 0x0fe4  nfrd960 - ok

17:34:52.0688 0x0fe4  [ 374071043F9E4231EE43BE2BB48DD36D, C4FA3FC40CC49DBBB91901D14210A55D3831FAC9F9B3FF45FCA7F5CF242C9E92 ] NlaSvc          C:\Windows\System32\nlasvc.dll

17:34:52.0697 0x0fe4  NlaSvc - ok

17:34:52.0723 0x0fe4  [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs            C:\Windows\system32\drivers\Npfs.sys

17:34:52.0757 0x0fe4  Npfs - ok

17:34:52.0839 0x0fe4  [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi             C:\Windows\system32\nsisvc.dll

17:34:52.0843 0x0fe4  nsi - ok

17:34:52.0862 0x0fe4  [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys

17:34:52.0864 0x0fe4  nsiproxy - ok

17:34:52.0940 0x0fe4  [ C8DFF8D07755A66C7A4A738930F0FEAC, A2CC58312CE57988ABD976155BE91F558DCEC4C23481C6FBE64B361D511A36EA ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys

17:34:53.0046 0x0fe4  Ntfs - ok

17:34:53.0222 0x0fe4  [ 973DCB15731339FCA176E534055CF115, AB27B6B248436BDAC9E2E314FE195FEFEA63E147E558C6B72019015CAB7CA02A ] NTIBackupSvc    C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe

17:34:53.0226 0x0fe4  NTIBackupSvc - ok

17:34:53.0275 0x0fe4  [ 2757D2BA59AEE155209E24942AB127C9, 60C8571D548901A68591F1C7C548B40FA1086D21D23B8CB1083A8AE50760FE87 ] NTIDrvr         C:\Windows\system32\DRIVERS\NTIDrvr.sys

17:34:53.0288 0x0fe4  NTIDrvr - ok

17:34:53.0337 0x0fe4  [ 58751F9248D50BCE1053976C9E2F0859, E4E831C5B706149907F3ED82C9A3277E5C59EACDC33FB2A8F94CEE6C13128929 ] NTISchedulerSvc C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe

17:34:53.0343 0x0fe4  NTISchedulerSvc - ok

17:34:53.0417 0x0fe4  [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null            C:\Windows\system32\drivers\Null.sys

17:34:53.0419 0x0fe4  Null - ok

17:34:53.0467 0x0fe4  [ 97564839DC47131BB5E1EAFD1F884415, 96DA889AE004DBB7F79AE7435E9863A649175634133B4B55AB6B66E8B64CC9ED ] nuvotoncir      C:\Windows\system32\DRIVERS\nuvotoncir.sys

17:34:53.0471 0x0fe4  nuvotoncir - ok

17:34:53.0512 0x0fe4  [ B3E25EE28883877076E0E1FF877D02E0, 402B6FED6FBBF645190396DC141141EF52DD059DABD01F8AC9CF01D23664070C ] nvraid          C:\Windows\system32\drivers\nvraid.sys

17:34:53.0520 0x0fe4  nvraid - ok

17:34:53.0563 0x0fe4  [ 4380E59A170D88C4F1022EFF6719A8A4, 93EDB3F4CDBF53C9C1970DD29AB146E390695C568180847BA8903F5FBEABCFF2 ] nvstor          C:\Windows\system32\drivers\nvstor.sys

17:34:53.0570 0x0fe4  nvstor - ok

17:34:53.0648 0x0fe4  [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys

17:34:53.0653 0x0fe4  nv_agp - ok

17:34:53.0756 0x0fe4  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE

17:34:53.0975 0x0fe4  odserv - ok

17:34:54.0000 0x0fe4  [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys

17:34:54.0005 0x0fe4  ohci1394 - ok

17:34:54.0055 0x0fe4  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE

17:34:54.0062 0x0fe4  ose - ok

17:34:54.0111 0x0fe4  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll

17:34:54.0133 0x0fe4  p2pimsvc - ok

17:34:54.0194 0x0fe4  [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc          C:\Windows\system32\p2psvc.dll

17:34:54.0217 0x0fe4  p2psvc - ok

17:34:54.0309 0x0fe4  [ 2F886A56D520F872E7E4BA9423A9B07B, 8A3604EDBA04AACED3C6F961E559E5769197DED59F2B0A10AF4BEC0BBEEF239A ] papycpu         C:\Windows\system32\drivers\papycpu.sys

17:34:54.0311 0x0fe4  papycpu - ok

17:34:54.0327 0x0fe4  [ B2FCE3DF242EAAA317FA2E4946D26A03, 3EDA95C66530969B1E547B1511C8CB5800B3C5E4088E49DADA96C5A7B15671C5 ] papycpu2        C:\Windows\system32\drivers\papycpu2.sys

17:34:54.0330 0x0fe4  papycpu2 - ok

17:34:54.0351 0x0fe4  [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport         C:\Windows\system32\DRIVERS\parport.sys

17:34:54.0355 0x0fe4  Parport - ok

17:34:54.0374 0x0fe4  [ 3F34A1B4C5F6475F320C275E63AFCE9B, 31295D5121C0C3F2085E0EEBA260EEE4CA003993C026E2F81986D19158036E6B ] partmgr         C:\Windows\system32\drivers\partmgr.sys

17:34:54.0381 0x0fe4  partmgr - ok

17:34:54.0581 0x0fe4  [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys

17:34:54.0585 0x0fe4  Parvdm - ok

17:34:54.0652 0x0fe4  [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] PcaSvc          C:\Windows\System32\pcasvc.dll

17:34:54.0662 0x0fe4  PcaSvc - ok

17:34:54.0693 0x0fe4  [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci             C:\Windows\system32\drivers\pci.sys

17:34:54.0700 0x0fe4  pci - ok

17:34:54.0716 0x0fe4  [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide          C:\Windows\system32\drivers\pciide.sys

17:34:54.0718 0x0fe4  pciide - ok

17:34:54.0772 0x0fe4  [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys

17:34:54.0780 0x0fe4  pcmcia - ok

17:34:54.0811 0x0fe4  [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw             C:\Windows\system32\drivers\pcw.sys

17:34:54.0815 0x0fe4  pcw - ok

17:34:54.0891 0x0fe4  [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys

17:34:54.0922 0x0fe4  PEAUTH - ok

17:34:55.0040 0x0fe4  [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla             C:\Windows\system32\pla.dll

17:34:55.0144 0x0fe4  pla - ok

17:34:55.0225 0x0fe4  [ EC7BC28D207DA09E79B3E9FAF8B232CA, A42F8F69C3CD753D787A5D558659DEA2CC306C896D75B8C82549219CF654504F ] PlugPlay        C:\Windows\system32\umpnpmgr.dll

17:34:55.0247 0x0fe4  PlugPlay - ok

17:34:55.0277 0x0fe4  [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll

17:34:55.0282 0x0fe4  PNRPAutoReg - ok

17:34:55.0334 0x0fe4  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll

17:34:55.0349 0x0fe4  PNRPsvc - ok

17:34:55.0449 0x0fe4  [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll

17:34:55.0473 0x0fe4  PolicyAgent - ok

17:34:55.0514 0x0fe4  [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power           C:\Windows\system32\umpo.dll

17:34:55.0522 0x0fe4  Power - ok

17:34:55.0665 0x0fe4  [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys

17:34:55.0669 0x0fe4  PptpMiniport - ok

17:34:55.0712 0x0fe4  [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor       C:\Windows\system32\DRIVERS\processr.sys

17:34:55.0720 0x0fe4  Processor - ok

17:34:55.0767 0x0fe4  [ CADEFAC453040E370A1BDFF3973BE00D, 2E3DD8DA702468D8AB0F3CE27188B1991D4CB015FB36BAE4C6E7996B61CF49B8 ] ProfSvc         C:\Windows\system32\profsvc.dll

17:34:55.0776 0x0fe4  ProfSvc - ok

17:34:55.0822 0x0fe4  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] ProtectedStorage C:\Windows\system32\lsass.exe

17:34:55.0826 0x0fe4  ProtectedStorage - ok

17:34:55.0877 0x0fe4  [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys

17:34:55.0886 0x0fe4  Psched - ok

17:34:55.0924 0x0fe4  [ 628321C8DD76AD369B362B202E655A68, 751756AB21D5C1885EF74C3878C5625860AF2934920DA015237D614399976C5A ] PSDFilter       C:\Windows\system32\DRIVERS\psdfilter.sys

17:34:55.0927 0x0fe4  PSDFilter - ok

17:34:55.0955 0x0fe4  [ 79D7117E62709C7690CF3DD55ACEAD37, BB05CD9B7B966AD5B26DA8647CCB0FD0786CDD3C7BB22FCEE5005CD4A253FBD9 ] PSDNServ        C:\Windows\system32\DRIVERS\PSDNServ.sys

17:34:55.0958 0x0fe4  PSDNServ - ok

17:34:55.0996 0x0fe4  [ CAE5E82827990CF4BD4A49576BDE3A43, 3A8B9CF9A8F50337F164F4996AB05602EEA403054577253FFFFEBB0B70F77208 ] psdvdisk        C:\Windows\system32\DRIVERS\PSDVdisk.sys

17:34:56.0000 0x0fe4  psdvdisk - ok

17:34:56.0162 0x0fe4  [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys

17:34:56.0218 0x0fe4  ql2300 - ok

17:34:56.0662 0x0fe4  [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys

17:34:56.0667 0x0fe4  ql40xx - ok

17:34:56.0907 0x0fe4  [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE           C:\Windows\system32\qwave.dll

17:34:56.0929 0x0fe4  QWAVE - ok

17:34:56.0960 0x0fe4  [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys

17:34:56.0963 0x0fe4  QWAVEdrv - ok

17:34:56.0983 0x0fe4  [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys

17:34:56.0986 0x0fe4  RasAcd - ok

17:34:57.0044 0x0fe4  [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys

17:34:57.0047 0x0fe4  RasAgileVpn - ok

17:34:57.0123 0x0fe4  [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto         C:\Windows\System32\rasauto.dll

17:34:57.0131 0x0fe4  RasAuto - ok

17:34:57.0170 0x0fe4  [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys

17:34:57.0175 0x0fe4  Rasl2tp - ok

17:34:57.0263 0x0fe4  [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan          C:\Windows\System32\rasmans.dll

17:34:57.0284 0x0fe4  RasMan - ok

17:34:57.0327 0x0fe4  [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys

17:34:57.0333 0x0fe4  RasPppoe - ok

17:34:57.0357 0x0fe4  [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys

17:34:57.0362 0x0fe4  RasSstp - ok

17:34:57.0407 0x0fe4  [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys

17:34:57.0418 0x0fe4  rdbss - ok

17:34:57.0439 0x0fe4  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys

17:34:57.0448 0x0fe4  rdpbus - ok

17:34:57.0498 0x0fe4  [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys

17:34:57.0501 0x0fe4  RDPCDD - ok

17:34:57.0565 0x0fe4  [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys

17:34:57.0568 0x0fe4  RDPENCDD - ok

17:34:57.0622 0x0fe4  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys

17:34:57.0626 0x0fe4  RDPREFMP - ok

17:34:57.0717 0x0fe4  [ 65375DF758CA1872AB7EBBBA457FD5E6, 8AC7681F51277E799C22FF95FA0B833E9E260D37C0416319FF05B66FB3948005 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys

17:34:57.0720 0x0fe4  RdpVideoMiniport - ok

17:34:57.0753 0x0fe4  [ F031683E6D1FEA157ABB2FF260B51E61, 83B552819A5964152882C527E1421DBCEAACC74DEB897E3C4B53F52F1467FED3 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys

17:34:57.0763 0x0fe4  RDPWD - ok

17:34:57.0866 0x0fe4  [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys

17:34:57.0874 0x0fe4  rdyboost - ok

17:34:57.0965 0x0fe4  [ 3FF45B7F17D5837216ABAE652CC61540, 33AF3C99247DD5779CF02AC7C2E170C31CCFAB0282D68AAB606CD6A3279B99E7 ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

17:34:58.0058 0x0fe4  RegSrvc - ok

17:34:58.0112 0x0fe4  [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess    C:\Windows\System32\mprdim.dll

17:34:58.0118 0x0fe4  RemoteAccess - ok

17:34:58.0213 0x0fe4  [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry  C:\Windows\system32\regsvc.dll

17:34:58.0259 0x0fe4  RemoteRegistry - ok

17:34:58.0352 0x0fe4  [ 17E0BEF5CA5C9CE52CC8082AC6EBC449, F05A32DA0A62144AAE78A3A9173F21F52FAED4E39F9250B3E1B11066760B2576 ] RichVideo       C:\Program Files\Cyberlink\Shared files\RichVideo.exe

17:34:58.0364 0x0fe4  RichVideo - ok

17:34:58.0435 0x0fe4  [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll

17:34:58.0452 0x0fe4  RpcEptMapper - ok

17:34:58.0798 0x0fe4  [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator      C:\Windows\system32\locator.exe

17:34:58.0803 0x0fe4  RpcLocator - ok

17:34:58.0865 0x0fe4  [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] RpcSs           C:\Windows\system32\rpcss.dll

17:34:58.0877 0x0fe4  RpcSs - ok

17:34:58.0976 0x0fe4  [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys

17:34:58.0980 0x0fe4  rspndr - ok

17:34:59.0045 0x0fe4  [ 31D45ECA63884FF5F7AECC50F7D1BAE0, A485B602F1210902AD5505F1B846667A6EAE9AF8BB661DAF3C0272442CC840FF ] RSUSBSTOR       C:\Windows\system32\Drivers\RtsUStor.sys

17:34:59.0054 0x0fe4  RSUSBSTOR - ok

17:34:59.0252 0x0fe4  [ 87407B31EA6FF0DC4765258164B98BEA, 44C606DB6A404B06417762CB60F2B6ED5EC662F0F4312F54A4FF5BC3D5AEF3F8 ] RTHDMIAzAudService C:\Windows\system32\drivers\RtHDMIV.sys

17:34:59.0275 0x0fe4  RTHDMIAzAudService - ok

17:34:59.0314 0x0fe4  [ D1FB9A678BD6C2B1129FCB09D5FEB6DD, 61E74F62B2599EAC2322EB7B448E85026B43CF9760582BD95A4B326D3ADEBAE3 ] RTSTOR          C:\Windows\system32\drivers\RTSTOR.SYS

17:34:59.0319 0x0fe4  RTSTOR - ok

17:34:59.0344 0x0fe4  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] SamSs           C:\Windows\system32\lsass.exe

17:34:59.0347 0x0fe4  SamSs - ok

17:34:59.0421 0x0fe4  [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys

17:34:59.0427 0x0fe4  sbp2port - ok

17:34:59.0469 0x0fe4  [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr        C:\Windows\System32\SCardSvr.dll

17:34:59.0479 0x0fe4  SCardSvr - ok

17:34:59.0510 0x0fe4  [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys

17:34:59.0513 0x0fe4  scfilter - ok

17:34:59.0652 0x0fe4  [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] Schedule        C:\Windows\system32\schedsvc.dll

17:34:59.0699 0x0fe4  Schedule - ok

17:34:59.0728 0x0fe4  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc     C:\Windows\System32\certprop.dll

17:34:59.0731 0x0fe4  SCPolicySvc - ok

17:34:59.0794 0x0fe4  [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC          C:\Windows\System32\SDRSVC.dll

17:34:59.0802 0x0fe4  SDRSVC - ok

17:34:59.0911 0x0fe4  [ CC781378E7EDA615D2CDCA3B17829FA4, 137BF83A2A3D69335AD031B8D73473526F782CB8917A34B3CD92F923E7660F2A ] SeaPort         C:\Program Files\Microsoft\BingBar\SeaPort.EXE

17:34:59.0920 0x0fe4  SeaPort - ok

17:34:59.0960 0x0fe4  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys

17:34:59.0963 0x0fe4  secdrv - ok

17:35:00.0082 0x0fe4  [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon        C:\Windows\system32\seclogon.dll

17:35:00.0087 0x0fe4  seclogon - ok

17:35:00.0196 0x0fe4  [ E5B56569A9F79B70314FEDE6C953641E, 41B088CD3AE5A342D44F2FDCB63975E15D79155F56DFC75631663D9C31D98634 ] seehcri         C:\Windows\system32\DRIVERS\seehcri.sys

17:35:00.0199 0x0fe4  seehcri - ok

17:35:00.0237 0x0fe4  [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS            C:\Windows\system32\sens.dll

17:35:00.0244 0x0fe4  SENS - ok

17:35:00.0269 0x0fe4  [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc        C:\Windows\system32\sensrsvc.dll

17:35:00.0274 0x0fe4  SensrSvc - ok

17:35:00.0297 0x0fe4  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys

17:35:00.0301 0x0fe4  Serenum - ok

17:35:00.0328 0x0fe4  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial          C:\Windows\system32\DRIVERS\serial.sys

17:35:00.0336 0x0fe4  Serial - ok

17:35:00.0369 0x0fe4  [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys

17:35:00.0380 0x0fe4  sermouse - ok

17:35:00.0425 0x0fe4  [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv      C:\Windows\system32\sessenv.dll

17:35:00.0433 0x0fe4  SessionEnv - ok

17:35:00.0511 0x0fe4  [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys

17:35:00.0514 0x0fe4  sffdisk - ok

17:35:00.0528 0x0fe4  [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys

17:35:00.0532 0x0fe4  sffp_mmc - ok

17:35:00.0553 0x0fe4  [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys

17:35:00.0556 0x0fe4  sffp_sd - ok

17:35:00.0574 0x0fe4  [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys

17:35:00.0577 0x0fe4  sfloppy - ok

17:35:00.0634 0x0fe4  [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess    C:\Windows\System32\ipnathlp.dll

17:35:00.0659 0x0fe4  SharedAccess - ok

17:35:00.0738 0x0fe4  [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll

17:35:00.0761 0x0fe4  ShellHWDetection - ok

17:35:00.0818 0x0fe4  [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp          C:\Windows\system32\drivers\sisagp.sys

17:35:00.0822 0x0fe4  sisagp - ok

17:35:00.0877 0x0fe4  [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys

17:35:00.0880 0x0fe4  SiSRaid2 - ok

17:35:00.0911 0x0fe4  [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys

17:35:00.0920 0x0fe4  SiSRaid4 - ok

17:35:01.0082 0x0fe4  [ E0211E7E0D9CF5672174014BC6524E79, AAA1C138956D53AA6C21CBCC0C8D19C5654BCC9A06C7D35A2E13AA4E95F415DB ] SkypeUpdate     C:\Program Files\Skype\Updater\Updater.exe

17:35:01.0089 0x0fe4  SkypeUpdate - ok

17:35:01.0138 0x0fe4  [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb             C:\Windows\system32\DRIVERS\smb.sys

17:35:01.0142 0x0fe4  Smb - ok

17:35:01.0212 0x0fe4  [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe

17:35:01.0218 0x0fe4  SNMPTRAP - ok

17:35:01.0262 0x0fe4  [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr           C:\Windows\system32\drivers\spldr.sys

17:35:01.0265 0x0fe4  spldr - ok

17:35:01.0301 0x0fe4  [ 9AEA093B8F9C37CF45538382CABA2475, CC63239C412067AA72318ADB8BB80BCDF2CA60DA05D814D32753C92508BC16A8 ] Spooler         C:\Windows\System32\spoolsv.exe

17:35:01.0324 0x0fe4  Spooler - ok

17:35:01.0472 0x0fe4  [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc          C:\Windows\system32\sppsvc.exe

17:35:01.0696 0x0fe4  sppsvc - ok

17:35:01.0792 0x0fe4  [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify     C:\Windows\system32\sppuinotify.dll

17:35:01.0799 0x0fe4  sppuinotify - ok

17:35:01.0890 0x0fe4  sprtsvc_teliada - ok

17:35:01.0945 0x0fe4  [ E4C2764065D66EA1D2D3EBC28FE99C46, 043AEF06A23069DD17675955C834690A5FD8F1948A05B3969F977E823C4E25F5 ] srv             C:\Windows\system32\DRIVERS\srv.sys

17:35:02.0000 0x0fe4  srv - ok

17:35:02.0029 0x0fe4  [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB, 4DF31206DF8F33C2975E23C7257ED930C4EDA8BC4E246D8FDA130BB583083ED0 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys

17:35:02.0051 0x0fe4  srv2 - ok

17:35:02.0079 0x0fe4  [ BE6BD660CAA6F291AE06A718A4FA8ABC, CD38939CFBA80B882D38099194FC1EBAE15A9D27A4D941DD03C55EC745E52E59 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys

17:35:02.0085 0x0fe4  srvnet - ok

17:35:02.0162 0x0fe4  [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll

17:35:02.0171 0x0fe4  SSDPSRV - ok

17:35:02.0185 0x0fe4  [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc         C:\Windows\system32\sstpsvc.dll

17:35:02.0191 0x0fe4  SstpSvc - ok

17:35:02.0262 0x0fe4  [ 585FDB94DB04AC1C56298D1FD1F1389E, 5CEBAAF3B649E580B3EF2B9B38426D6EE13B244BE1274BA0C0A468EC4CFB680C ] ssudmdm         C:\Windows\system32\DRIVERS\ssudmdm.sys

17:35:02.0269 0x0fe4  ssudmdm - ok

17:35:02.0390 0x0fe4  [ 3B273794CDC563C92314D01B9BFD40F7, 870A7F9AA2AD03B4DD7FCEDF7AAA74ABBCBE82CBA0407C92A14877D13449CAF1 ] Steam Client Service C:\Program Files\Common Files\Steam\SteamService.exe

17:35:02.0421 0x0fe4  Steam Client Service - ok

17:35:02.0457 0x0fe4  [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys

17:35:02.0461 0x0fe4  stexstor - ok

17:35:02.0595 0x0fe4  [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc          C:\Windows\System32\wiaservc.dll

17:35:02.0625 0x0fe4  StiSvc - ok

17:35:02.0757 0x0fe4  [ 9A97B7024E2CA4D42046BF272997E14C, DB724A4A1B28F8C4D63937D749590475FB0D9E2045D66F086D14BC5499B58045 ] SupportSoft RemoteAssist C:\Program Files\Common Files\SupportSoft\bin\ssrc.exe

17:35:02.0781 0x0fe4  SupportSoft RemoteAssist - ok

17:35:02.0819 0x0fe4  [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum          C:\Windows\system32\drivers\swenum.sys

17:35:02.0821 0x0fe4  swenum - ok

17:35:02.0948 0x0fe4  [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv           C:\Windows\System32\swprv.dll

17:35:02.0970 0x0fe4  swprv - ok

17:35:03.0016 0x0fe4  [ 4C9BB4B3B9EAC26211484C30B914C6DC, 2F90146A72E666B5D990B8B7C66F56EAC540565AC7C57F6905714AE65B597C40 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys

17:35:03.0025 0x0fe4  SynTP - ok

17:35:03.0129 0x0fe4  [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] SysMain         C:\Windows\system32\sysmain.dll

17:35:03.0188 0x0fe4  SysMain - ok

17:35:03.0225 0x0fe4  [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll

17:35:03.0233 0x0fe4  TabletInputService - ok

17:35:03.0272 0x0fe4  [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv         C:\Windows\System32\tapisrv.dll

17:35:03.0293 0x0fe4  TapiSrv - ok

17:35:03.0325 0x0fe4  [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS             C:\Windows\System32\tbssvc.dll

17:35:03.0333 0x0fe4  TBS - ok

17:35:03.0471 0x0fe4  [ CA59F7C570AF70BC174F477CFE2D9EE3, F09E4E14207A2AC6957D2C0AC8707D0E356A9087FA6DC703373242D8EEB026BD ] Tcpip           C:\Windows\system32\drivers\tcpip.sys

17:35:03.0534 0x0fe4  Tcpip - ok

17:35:03.0700 0x0fe4  [ CA59F7C570AF70BC174F477CFE2D9EE3, F09E4E14207A2AC6957D2C0AC8707D0E356A9087FA6DC703373242D8EEB026BD ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys

17:35:03.0764 0x0fe4  TCPIP6 - ok

17:35:03.0812 0x0fe4  [ 3EEBD3BD93DA46A26E89893C7AB2FF3B, 2C7204DCD2BCBC6A250FF0F6477616F327AF41FDB7CABE69E5C357361009FB4E ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys

17:35:03.0815 0x0fe4  tcpipreg - ok

17:35:03.0862 0x0fe4  [ 72B9E77565DA5FA564581976E000D29B, 91D5C19CAE300E2DD88A0AAB2C5E1654DCAA1FAA5C5FE52DAEE407EF5C485C30 ] TcUsb           C:\Windows\system32\Drivers\tcusb.sys

17:35:03.0867 0x0fe4  TcUsb - ok

17:35:03.0891 0x0fe4  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys

17:35:03.0895 0x0fe4  TDPIPE - ok

17:35:03.0950 0x0fe4  [ BBE81DBD2F4A095C16E2927DA7EB0D1B, 1ABC75CA1D3F480F5841DDDB96EB2A03FD14046278A56A2C2ADA3191894C11C6 ] TdsNordecr      C:\Windows\system32\DRIVERS\nordecr.sys

17:35:03.0954 0x0fe4  TdsNordecr - ok

17:35:03.0981 0x0fe4  [ 2C2C5AFE7EE4F620D69C23C0617651A8, E828D974C3F9D7004A030C3AD448096C736FDB4C4C1707D043E567D08C845103 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys

17:35:03.0985 0x0fe4  TDTCP - ok

17:35:04.0048 0x0fe4  [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys

17:35:04.0052 0x0fe4  tdx - ok

17:35:04.0404 0x0fe4  [ 74FC70AE64A7B7DABEC9697CE0A1F4FA, 7F538BA773AE12D9BCF3F7976E3620DD353DA9B17FE8AF7946FD3850103E8B74 ] TeamViewer7     C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe

17:35:04.0547 0x0fe4  TeamViewer7 - ok

17:35:04.0758 0x0fe4  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD          C:\Windows\system32\drivers\termdd.sys

17:35:04.0762 0x0fe4  TermDD - ok

17:35:04.0811 0x0fe4  [ 382C804C92811BE57829D8E550A900E2, 5F52C2E7902024CF1C9CC0069F411C3F19CCA3DB209F437FA0F3932D4898EB50 ] TermService     C:\Windows\System32\termsrv.dll

17:35:04.0867 0x0fe4  TermService - ok

17:35:04.0882 0x0fe4  tgsrvc_teliada - ok

17:35:04.0936 0x0fe4  [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes          C:\Windows\system32\themeservice.dll

17:35:04.0942 0x0fe4  Themes - ok

17:35:04.0977 0x0fe4  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER     C:\Windows\system32\mmcss.dll

17:35:04.0982 0x0fe4  THREADORDER - ok

17:35:05.0010 0x0fe4  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks          C:\Windows\System32\trkwks.dll

17:35:05.0018 0x0fe4  TrkWks - ok

17:35:05.0125 0x0fe4  [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

17:35:05.0134 0x0fe4  TrustedInstaller - ok

17:35:05.0216 0x0fe4  [ B37B08F2E5EEB1A37E448E09BACE1101, 32CC9E06B88BAB6FAB4696B744548DFCE9199A7FD2BA8B019F269CA75895852C ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys

17:35:05.0220 0x0fe4  tssecsrv - ok

17:35:05.0336 0x0fe4  [ 9CE253214ACAA5A7D323327D2055EFAA, 15E7DB578EDF36DD2FD5BA960C3941B2353037323B6B96702CDCDC07588EA724 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys

17:35:05.0342 0x0fe4  TsUsbFlt - ok

17:35:05.0391 0x0fe4  [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys

17:35:05.0396 0x0fe4  tunnel - ok

17:35:05.0419 0x0fe4  [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys

17:35:05.0425 0x0fe4  uagp35 - ok

17:35:05.0546 0x0fe4  [ F763E070843EE2803DE1395002B42938, 0060F5D7AD091D7F0CC25C98AB9DD8258A9837958AFE845971CD04E29A6A8658 ] UBHelper        C:\Windows\system32\drivers\UBHelper.sys

17:35:05.0549 0x0fe4  UBHelper - ok

17:35:05.0606 0x0fe4  [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys

17:35:05.0616 0x0fe4  udfs - ok

17:35:05.0662 0x0fe4  [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect       C:\Windows\system32\UI0Detect.exe

17:35:05.0668 0x0fe4  UI0Detect - ok

17:35:05.0717 0x0fe4  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys

17:35:05.0722 0x0fe4  uliagpkx - ok

17:35:05.0741 0x0fe4  [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys

17:35:05.0746 0x0fe4  umbus - ok

17:35:05.0798 0x0fe4  [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys

17:35:05.0801 0x0fe4  UmPass - ok

17:35:05.0842 0x0fe4  [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost        C:\Windows\System32\upnphost.dll

17:35:05.0866 0x0fe4  upnphost - ok

17:35:05.0926 0x0fe4  [ 0803FBA9FE829D61AE26EC0BCC910C46, 30D00E2C7DFC630C99C1599587D4F9C272BC30D444E07C961AA05BF84587806B ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys

17:35:05.0932 0x0fe4  usbccgp - ok

17:35:05.0941 0x0fe4  [ 2352AB5F9F8F097BF9D41D5A4718A041, 25BC7828C625B9B2A5110C25B230C5828CEC18EC97ECF9EC4745E8930CBF472C ] usbcir          C:\Windows\system32\drivers\usbcir.sys

17:35:05.0946 0x0fe4  usbcir - ok

17:35:05.0985 0x0fe4  [ D40855F89B69305140BBD7E9A3BA2DA6, 745DC6D770666F6B19C2B6AA89C21D1A314732E291453BFA2367F9AF86F97C3C ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys

17:35:05.0989 0x0fe4  usbehci - ok

17:35:06.0119 0x0fe4  [ EDF2DF71C4F1E13A6AC75F5224DE655A, 1764D155C6B99201774B57195349304259232A12868ECFC2069CA49443EBDC2C ] usbhub          C:\Windows\system32\drivers\usbhub.sys

17:35:06.0141 0x0fe4  usbhub - ok

17:35:06.0232 0x0fe4  [ 9828C8D14CC2676421778F0DE638CF97, 479A28211FFB85190A01FAB0283B927588805D2C0CDB03F85F8F814B88E4F453 ] usbohci         C:\Windows\system32\drivers\usbohci.sys

17:35:06.0235 0x0fe4  usbohci - ok

17:35:06.0303 0x0fe4  [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys

17:35:06.0318 0x0fe4  usbprint - ok

17:35:06.0344 0x0fe4  [ F991AB9CC6B908DB552166768176896A, AD8E7A16B23B244B7F834622D4E38B5844193C6E31EF96F61E0E2EA16C945026 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS

17:35:06.0387 0x0fe4  USBSTOR - ok

17:35:06.0736 0x0fe4  [ 800AABFD625EEFF899F7E5496BDE37AB, 3EB7ED07760CB348FCA9A06C2B838EF79B51A83C5F70A9C9EAAEAE54480067E2 ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys

17:35:06.0741 0x0fe4  usbuhci - ok

17:35:06.0873 0x0fe4  [ DE014425522610BEDCA3821BB8C0F1D5, D6FEA0DF07F89834AEEE8C02CC7FD41068D758B6CCECE2EEE5CF4B9DB646FA1E ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys

17:35:06.0883 0x0fe4  usbvideo - ok

17:35:06.0921 0x0fe4  [ AF77716205C97E902E6C5B78DECE2CCA, ED99EABED1C7F323EE2A76413E2B260F8EE1D76FDF1E60EE35136D060E756735 ] usb_rndisx      C:\Windows\system32\DRIVERS\usb8023x.sys

17:35:06.0924 0x0fe4  usb_rndisx - ok

17:35:06.0959 0x0fe4  [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms           C:\Windows\System32\uxsms.dll

17:35:06.0965 0x0fe4  UxSms - ok

17:35:06.0982 0x0fe4  [ DD17E1573651293D4ED31053795B3471, 94F7D1BB1C3B0C1FAAEED07375DB0F3BC995394FB5C26983548D946C8D229D54 ] VaultSvc        C:\Windows\system32\lsass.exe

17:35:06.0985 0x0fe4  VaultSvc - ok

17:35:07.0029 0x0fe4  [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys

17:35:07.0032 0x0fe4  vdrvroot - ok

17:35:07.0073 0x0fe4  [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds             C:\Windows\System32\vds.exe

17:35:07.0152 0x0fe4  vds - ok

17:35:07.0188 0x0fe4  [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys

17:35:07.0192 0x0fe4  vga - ok

17:35:07.0239 0x0fe4  [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave         C:\Windows\System32\drivers\vga.sys

17:35:07.0242 0x0fe4  VgaSave - ok

17:35:07.0274 0x0fe4  [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys

17:35:07.0283 0x0fe4  vhdmp - ok

17:35:07.0422 0x0fe4  [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp          C:\Windows\system32\drivers\viaagp.sys

17:35:07.0427 0x0fe4  viaagp - ok

17:35:07.0483 0x0fe4  [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7           C:\Windows\system32\DRIVERS\viac7.sys

17:35:07.0486 0x0fe4  ViaC7 - ok

17:35:07.0497 0x0fe4  [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide         
Länk till kommentar
Dela på andra webbplatser

TDSSKiller är Kasperskys program så det är mycket trovärdigt. Slutet av loggen saknas så försök hitta igen den biten.

 

Utmärkt att datorn nu mår bättre.

 

Kör FRST igen och klistra in den nya FRST.txt.

Länk till kommentar
Dela på andra webbplatser

Här är FRST loggen

 

TDS loggen var för lång så jag hade lite problem att klistra in den.

 

Resten av den loggen kommer i nästa post

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:25-05-2014 02

Ran by Kalle (administrator) on KALLE-DATOR on 25-05-2014 22:04:57

Running from C:\Users\Kalle\Desktop

Platform: Microsoft Windows 7 Home Premium  Service Pack 1 (X86) OS Language: Swedish

Internet Explorer Version 11

Boot Mode: Normal

 

==================== Processes (Whitelisted) =================

 

(AMD) C:\Windows\System32\atiesrxx.exe

(AMD) C:\Windows\System32\atieclxx.exe

(Microsoft Corporation) C:\Windows\System32\wlanext.exe

() C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe

() C:\Users\Kalle\AppData\Roaming\Diino\DiinoService_win7_i386.exe

(Egis Incorporated) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe

() C:\Program Files\Acer\Empowering Technology\Service\ETService.exe

(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe

() C:\ProgramData\DatacardService\HWDeviceService.exe

(McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\McSACore.exe

(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe

() C:\ProgramData\Mobile Broadband\OnlineUpdate\ouc.exe

(Acer Incorporated) C:\ACER\Mobility Center\MobilityService.exe

(NewTech Infosystems, Inc.) C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe

(Intel® Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

() C:\Program Files\Cyberlink\Shared files\RichVideo.exe

(Microsoft Corporation) C:\Program Files\Microsoft\BingBar\SeaPort.EXE

(SupportSoft, Inc.) C:\Program Files\Telia\Supportassistenten\bin\sprtsvc.exe

(TeamViewer GmbH) C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe

(SupportSoft, Inc.) C:\Program Files\Telia\Supportassistenten\bin\tgsrvc.exe

(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE

(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe

(McAfee, Inc.) C:\Program Files\McAfee\MSC\McAPExe.exe

(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE

(McAfee, Inc.) C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe

(McAfee, Inc.) C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe

(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe

(McAfee, Inc.) C:\Program Files\McAfee\VirusScan\mcods.exe

(Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe

(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

(CyberLink Corp.) C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe

(Acer Incorporated) C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe

(Egis Incorporated) C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe

(Google) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe

(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe

(Acer Corp.) C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe

() C:\Windows\PLFSetI.exe

(Google) C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe

(SupportSoft, Inc.) C:\Program Files\Telia\Supportassistenten\bin\sprtcmd.exe

(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

(Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

(Dritek System Inc.) C:\Program Files\Launch Manager\LManager.EXE

(Acer Inc.) C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe

(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe

(CyberLink) C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe

(McAfee, Inc.) C:\Program Files\Common Files\McAfee\Platform\McUICnt.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe

(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe

(Spotify Ltd) D:\Program Files\Spotify\Data\SpotifyWebHelper.exe

(Microsoft Corporation) C:\Windows\ehome\ehmsas.exe

(Google) C:\Program Files\Google\Drive\googledrivesync.exe

(One.com) D:\Program Files\OnecomCloudDrive\Dlls\OnecomCloudDrive.exe

(Google) C:\Program Files\Google\Drive\googledrivesync.exe

(OpenOffice.org) C:\Program Files\OpenOffice.org 2.4\program\soffice.exe

(OpenOffice.org) C:\Program Files\OpenOffice.org 2.4\program\soffice.bin

(Microsoft Corporation) C:\Program Files\Windows Live\Mail\wlmail.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Program Files\Windows Live\Contacts\wlcomm.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Microsoft Corporation) C:\Windows\System32\cmd.exe

(McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\McChHost.exe

(McAfee, Inc.) C:\Program Files\McAfee\SiteAdvisor\saUI.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

 

 

==================== Registry (Whitelisted) ==================

 

HKLM\...\Run: [synTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1049896 2008-04-25] (Synaptics, Inc.)

HKLM\...\Run: [ArcadeDeluxeAgent] => C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe [152872 2009-07-02] (CyberLink Corp.)

HKLM\...\Run: [eAudio] => C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe [544768 2008-09-11] (Acer Incorporated)

HKLM\...\Run: [eDataSecurity Loader] => C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe [526896 2008-07-29] (Egis Incorporated)

HKLM\...\Run: [Google Desktop Search] => C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-08-10] (Google)

HKLM\...\Run: [iAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-04] (Intel Corporation)

HKLM\...\Run: [PlayMovie] => C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe [173288 2009-05-21] (Acer Corp.)

HKLM\...\Run: [PLFSetI] => C:\Windows\PLFSetI.exe [200704 2007-10-23] ()

HKLM\...\Run: [Telia] => C:\Program Files\Telia\Supportassistenten\bin\sprtcmd.exe [206120 2010-05-10] (SupportSoft, Inc.)

HKLM\...\Run: [startCCC] => C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2009-07-07] (Advanced Micro Devices, Inc.)

HKLM\...\Run: [LManager] => C:\Program Files\Launch Manager\LManager.EXE [842248 2009-09-15] (Dritek System Inc.)

HKLM\...\Run: [ePower_DMC] => C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [421888 2009-07-20] (Acer Inc.)

HKLM\...\Run: [mcui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [517392 2014-04-25] (McAfee, Inc.)

HKLM\...\Run: [CLMLServer] => C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe [206120 2009-07-02] (CyberLink)

HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [11930696 2013-03-29] (Realtek Semiconductor)

HKLM\...\Run: [KeePass 2 PreLoad] => D:\Program Files\KeePass Password Safe 2\KeePass.exe [1960448 2013-04-05] (Dominik Reichl)

HKLM\...\Run: [mcpltui_exe] => C:\Program Files\McAfee.com\Agent\mcagent.exe [517392 2014-04-25] (McAfee, Inc.)

HKU\.DEFAULT\...\RunOnce: [spUninstallDeleteDir] - rmdir /s /q "\SearchProtect"

HKU\S-1-5-21-54249351-516280376-2711681529-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [144384 2010-11-20] (Microsoft Corporation)

HKU\S-1-5-21-54249351-516280376-2711681529-1000\...\Run: [spotify Web Helper] => D:\Program Files\Spotify\Data\SpotifyWebHelper.exe [1171000 2014-04-13] (Spotify Ltd)

HKU\S-1-5-21-54249351-516280376-2711681529-1000\...\Run: [One.com] => D:\Program Files\OnecomCloudDrive\Dlls\AppLauncher.exe [23464 2013-02-10] ()

HKU\S-1-5-21-54249351-516280376-2711681529-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [68856 2009-08-17] (Google Inc.)

HKU\S-1-5-21-54249351-516280376-2711681529-1000\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [22415552 2014-04-25] (Google)

AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll => C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll [123392 2010-08-10] (Google)

Startup: C:\Users\Kalle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.4.lnk

ShortcutTarget: OpenOffice.org 2.4.lnk -> C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe ()

Startup: C:\Users\Kalle\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Skärmurklipp och start för OneNote 2007.lnk

ShortcutTarget: Skärmurklipp och start för OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

 

==================== Internet (Whitelisted) ====================

 

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = http://global.acer.com

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

URLSearchHook: HKCU - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)

SearchScopes: HKLM - DefaultScope value is missing.



BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\progra~1\mcafee\msk\mskapbho.dll No File

BHO: No Name - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -  No File

BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll (Egis)

BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)

BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll (Microsoft Corporation)

BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)

BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)

BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll No File

Toolbar: HKLM - McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)

Toolbar: HKLM - Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.)

Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)

Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)

Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File


Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)

Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll No File

Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.dll No File

Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - C:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - C:\Program Files\McAfee\MSC\McSnIePl.dll (McAfee, Inc.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

 

FireFox:

========

FF Plugin: @bankid.com/BankID säkerhetsprogram,version=5.1.2.21 - C:\Program Files\BankID\npBispBrowser.dll (Finansiell ID-Teknik BID AB)

FF Plugin: @Google.com/GoogleEarthPlugin - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)

FF Plugin: @java.com/DTPlugin,version=1.6.0_37 - C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.)

FF Plugin: @mcafee.com/MSC,version=10 - c:\PROGRA~1\mcafee\msc\NPMCSN~1.DLL ()

FF Plugin: @microsoft.com/GENUINE - disabled No File

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)

FF Plugin: @microsoft.com/OfficeLive,version=1.3 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)

FF Plugin: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)

FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin: @microsoft.com/WPF,version=3.5 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)

FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)

FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF Plugin HKCU: @tools.google.com/Google Update;version=3 - C:\Users\Kalle\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)

FF Plugin HKCU: @tools.google.com/Google Update;version=9 - C:\Users\Kalle\AppData\Local\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)

FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

FF Extension: Microsoft .NET Framework Assistant - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []

FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\SiteAdvisor

FF Extension: McAfee SiteAdvisor - C:\Program Files\McAfee\SiteAdvisor [2009-01-22]

FF HKLM\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK

FF Extension: McAfee Anti-Spam Thunderbird Extension - C:\Program Files\McAfee\MSK [2009-01-22]

 

Chrome: 

=======

CHR HomePage: hxxp://www.google.com

CHR StartupUrls: "hxxp://www.google.com"

CHR Extension: (Google Dokument) - C:\Users\Kalle\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-12-06]

CHR Extension: (Google Drive) - C:\Users\Kalle\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-12-06]

CHR Extension: (YouTube) - C:\Users\Kalle\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-12-06]

CHR Extension: (Sök på Google) - C:\Users\Kalle\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-12-06]

CHR Extension: (SiteAdvisor) - C:\Users\Kalle\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho [2013-12-06]

CHR Extension: (Google Wallet) - C:\Users\Kalle\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-02-18]

CHR Extension: (Gmail) - C:\Users\Kalle\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-12-06]

 

========================== Services (Whitelisted) =================

 

R2 CLHNService; C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [75048 2009-04-16] ()

R2 DiinoService; C:\Users\Kalle\AppData\Roaming\Diino\DiinoService_win7_i386.exe [46704 2012-10-19] ()

R2 ETService; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [24576 2009-08-13] ()

S3 GoogleDesktopManager-051210-111108; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [30192 2010-08-10] (Google)

R2 HomeNetSvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)

R2 HWDeviceService.exe; C:\ProgramData\DatacardService\HWDeviceService.exe [271712 2011-03-14] ()

R2 McAfee SiteAdvisor Service; C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [118264 2014-04-23] (McAfee, Inc.)

R2 McAPExe; C:\Program Files\McAfee\MSC\McAPExe.exe [145568 2014-04-25] (McAfee, Inc.)

R2 McMPFSvc; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)

R2 McNaiAnn; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)

R3 McODS; C:\Program Files\McAfee\VirusScan\mcods.exe [471592 2013-08-02] (McAfee, Inc.)

R2 mcpltsvc; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)

R2 McProxy; C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)

R2 mfecore; C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe [644088 2014-01-21] (McAfee, Inc.)

R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [169800 2014-03-17] (McAfee, Inc.)

R2 mfevtp; C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe [175480 2014-03-17] (McAfee, Inc.)

S2 Mobile Broadband. RunOuc; C:\Program Files\Mobile Broadband\UpdateDog\ouc.exe [246112 2012-08-23] ()

R2 MobilityService; C:\Acer\Mobility Center\MobilityService.exe [122880 2009-06-16] (Acer Incorporated)

R2 MSK80Service; C:\Program Files\Common Files\Mcafee\Platform\McSvcHost\McSvHost.exe [281560 2013-07-30] (McAfee, Inc.)

R2 NTISchedulerSvc; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [144632 2008-09-23] (NewTech Infosystems, Inc.)

R2 RichVideo; C:\Program Files\Cyberlink\Shared files\RichVideo.exe [272024 2007-01-09] ()

R2 sprtsvc_teliada; C:\Program Files\Telia\Supportassistenten\bin\sprtsvc.exe [206120 2010-05-10] (SupportSoft, Inc.)

S2 SupportSoft RemoteAssist; C:\Program Files\Common Files\SupportSoft\bin\ssrc.exe [382320 2009-06-16] (SupportSoft, Inc.)

R2 tgsrvc_teliada; C:\Program Files\Telia\Supportassistenten\bin\tgsrvc.exe [185640 2010-05-10] (SupportSoft, Inc.)

S3 wifimansvc; C:\Program Files\Mobile Broadband\eap\wifimansvc.exe [598528 2012-08-23] ()

 

==================== Drivers (Whitelisted) ====================

 

S3 A310; C:\Windows\System32\DRIVERS\AVerA310USB.sys [26752 2008-07-03] (AVerMedia TECHNOLOGIES, Inc.)

S3 BDASwCap; C:\Windows\System32\drivers\AVerA310Cap.sys [47104 2008-07-03] (AVerMedia TECHNOLOGIES, Inc.)

R3 cfwids; C:\Windows\System32\drivers\cfwids.sys [61400 2014-03-17] (McAfee, Inc.)

S3 cleanhlp; C:\EEK\Run\cleanhlp32.sys [50200 2014-05-16] (Emsisoft GmbH)

R2 cpuz132; C:\Windows\system32\drivers\cpuz132_x32.sys [12672 2009-03-27] (Windows ® Codename Longhorn DDK provider)

S3 GTUHSBUS; C:\Windows\System32\DRIVERS\gtuhsbus.sys [63360 2009-02-04] (Option N.V.)

S3 GTUHSNDISIPXP; C:\Windows\System32\DRIVERS\gtuhs51.sys [105856 2009-02-04] (Option N.V.)

S3 GTUHSSER; C:\Windows\System32\DRIVERS\gtuhsser.sys [8064 2009-02-04] (Option N.V.)

R3 HipShieldK; C:\Windows\System32\drivers\HipShieldK.sys [147912 2013-09-23] (McAfee, Inc.)

R3 L1E; C:\Windows\System32\DRIVERS\L1E62x86.sys [48640 2009-08-23] (Atheros Communications, Inc.)

R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [134600 2014-03-17] (McAfee, Inc.)

R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [236480 2014-03-17] (McAfee, Inc.)

S3 mfebopk; C:\Windows\System32\drivers\mfebopk.sys [66408 2014-03-17] (McAfee, Inc.)

R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [367776 2014-03-17] (McAfee, Inc.)

R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [573968 2014-03-17] (McAfee, Inc.)

R3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [330248 2014-01-21] (McAfee, Inc.)

S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [81264 2014-01-21] (McAfee, Inc.)

S3 mferkdk; C:\Windows\System32\drivers\mferkdk.sys [34248 2009-09-16] (McAfee, Inc.)

S3 mfesmfk; C:\Windows\System32\drivers\mfesmfk.sys [40552 2009-09-16] (McAfee, Inc.)

R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [214856 2014-03-17] (McAfee, Inc.)

R3 nuvotoncir; C:\Windows\System32\DRIVERS\nuvotoncir.sys [44544 2009-08-31] (Nuvoton Technology Corporation)

S3 papycpu; C:\Windows\system32\Drivers\papycpu.sys [1984 1998-09-04] ()

R0x01000000 papycpu2; C:\Windows\system32\drivers\papycpu2.sys [2016 2001-04-20] ()

R3 RTHDMIAzAudService; C:\Windows\System32\drivers\RtHDMIV.sys [159776 2009-06-24] (Realtek Semiconductor Corp.)

S3 TdsNordecr; C:\Windows\System32\DRIVERS\nordecr.sys [24064 2007-10-30] (Todos Data System AB)

S3 winbondcir; C:\Windows\System32\DRIVERS\winbondcir.sys [43008 2007-03-28] (Winbond Electronics Corporation)

U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)

S3 catchme; \??\C:\Users\Kalle\AppData\Local\Temp\catchme.sys [X]

U5 ew_hwusbdev; C:\Windows\System32\Drivers\ew_hwusbdev.sys [102784 2012-08-23] (Huawei Technologies Co., Ltd.)

U5 papyjoy; C:\Windows\System32\Drivers\papyjoy.sys [1888 1998-09-04] ()

U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [48128 2009-07-14] (Microsoft Corporation)

 

==================== NetSvcs (Whitelisted) ===================

 

 

==================== One Month Created Files and Folders ========

 

2014-05-25 22:04 - 2014-05-25 22:04 - 00023413 _____ () C:\Users\Kalle\Desktop\FRST.txt

2014-05-25 22:04 - 2014-05-25 22:04 - 00000000 ____D () C:\Users\Kalle\Desktop\FRST-OlderVersion

2014-05-25 21:58 - 2014-05-25 21:58 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{7B7DC468-57EF-4B62-93F1-465351CF38EB}

2014-05-25 21:54 - 2014-05-25 21:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee

2014-05-23 18:35 - 2014-05-23 18:35 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{F702837E-A394-4A6B-A578-B93A4FB73E2F}

2014-05-23 17:44 - 2014-05-23 17:44 - 00000000 ____D () C:\TDSSKiller_Quarantine

2014-05-23 17:32 - 2014-05-23 17:33 - 04165472 _____ (Kaspersky Lab ZAO) C:\Users\Kalle\Desktop\tdsskiller.exe

2014-05-22 23:33 - 2014-05-22 23:33 - 00028338 _____ () C:\Users\Kalle\Desktop\ComboFix.txt

2014-05-22 22:40 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe

2014-05-22 22:40 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe

2014-05-22 22:40 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe

2014-05-22 22:40 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe

2014-05-22 22:40 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe

2014-05-22 22:40 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe

2014-05-22 22:40 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe

2014-05-22 22:40 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe

2014-05-22 22:39 - 2014-05-22 23:33 - 00000000 ____D () C:\Qoobox

2014-05-22 22:38 - 2014-05-22 23:26 - 00000000 ____D () C:\Windows\erdnt

2014-05-22 22:03 - 2014-05-22 22:04 - 05200426 ____R (Swearware) C:\Users\Kalle\Desktop\ComboFix.exe

2014-05-22 21:51 - 2014-05-22 21:51 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{46BA82E1-AC9F-428A-B93F-19573F84F9B5}

2014-05-21 18:29 - 2014-05-21 18:29 - 00000000 _____ () C:\Users\Kalle\Desktop\Ny bitmappsbild.bmp

2014-05-21 18:18 - 2014-05-21 18:18 - 02347384 _____ (ESET) C:\Users\Kalle\Downloads\esetsmartinstaller_enu (3).exe

2014-05-21 18:13 - 2014-05-21 18:13 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{803B59F6-5E33-412A-8577-B697E120556F}

2014-05-20 23:04 - 2014-05-20 23:04 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{60AAE529-1542-40A4-9566-5BCCE778CE18}

2014-05-20 20:09 - 2014-05-22 21:57 - 00002620 _____ () C:\Users\Kalle\Desktop\SystemLook.txt

2014-05-20 20:08 - 2014-05-23 17:42 - 00000000 ____D () C:\Users\Kalle\AppData\Local\CrashDumps

2014-05-20 20:06 - 2014-05-20 20:06 - 00139264 _____ () C:\Users\Kalle\Desktop\SystemLook.exe

2014-05-20 00:26 - 2014-05-20 00:26 - 00029401 _____ () C:\Users\Kalle\Desktop\RKreport[0]_S_05202014_002629.txt

2014-05-20 00:15 - 2014-05-20 00:34 - 00000000 ____D () C:\Users\Kalle\Desktop\RK_Quarantine

2014-05-19 21:51 - 2014-05-19 21:52 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{2B3035C4-1024-4F60-8AD6-A0D390276977}

2014-05-19 19:28 - 2014-05-19 19:28 - 03972608 _____ () C:\Users\Kalle\Desktop\RogueKiller.exe

2014-05-19 19:19 - 2014-05-20 20:19 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys

2014-05-19 19:17 - 2014-05-19 19:17 - 00000755 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-05-19 19:17 - 2014-05-19 19:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2014-05-19 19:17 - 2014-05-19 19:17 - 00000000 ____D () C:\ProgramData\Malwarebytes

2014-05-19 19:17 - 2014-04-03 09:51 - 00073432 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys

2014-05-19 19:17 - 2014-04-03 09:51 - 00051416 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys

2014-05-19 19:17 - 2014-04-03 09:50 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys

2014-05-19 19:16 - 2014-05-19 19:17 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\Kalle\Downloads\mbam-setup-2.0.1.1004.exe

2014-05-19 19:12 - 2014-05-19 19:12 - 02347384 _____ (ESET) C:\Users\Kalle\Downloads\esetsmartinstaller_enu (2).exe

2014-05-18 21:41 - 2014-05-18 21:42 - 02347384 _____ (ESET) C:\Users\Kalle\Downloads\esetsmartinstaller_enu (1).exe

2014-05-17 09:42 - 2014-05-25 22:04 - 01056256 _____ (Farbar) C:\Users\Kalle\Desktop\FRST.exe

2014-05-17 00:54 - 2014-05-17 00:54 - 00000000 ____D () C:\Program Files\ESET

2014-05-17 00:53 - 2014-05-17 00:53 - 02347384 _____ (ESET) C:\Users\Kalle\Downloads\esetsmartinstaller_enu.exe

2014-05-17 00:19 - 2014-05-17 00:22 - 00043564 _____ () C:\Users\Kalle\Downloads\Addition.txt

2014-05-17 00:17 - 2014-05-25 22:04 - 00000000 ____D () C:\FRST

2014-05-17 00:17 - 2014-05-17 00:22 - 00052572 _____ () C:\Users\Kalle\Downloads\FRST.txt

2014-05-17 00:15 - 2014-05-17 00:15 - 01056768 _____ (Farbar) C:\Users\Kalle\Downloads\FRST.exe

2014-05-16 23:59 - 2014-05-16 23:59 - 00000550 _____ () C:\Users\Kalle\Desktop\Emsisoft Emergency Kit.lnk

2014-05-16 23:58 - 2014-05-16 23:59 - 00000000 ____D () C:\EEK

2014-05-16 23:52 - 2014-05-16 23:52 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{4F2377A9-2B63-4CCB-8B82-2D6D33AADDFA}

2014-05-16 23:13 - 2014-05-16 23:13 - 00000000 ___SD () C:\Windows\system32\CompatTel

2014-05-16 22:34 - 2014-05-16 22:34 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER

2014-05-16 22:29 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2014-05-16 22:29 - 2014-05-06 05:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2014-05-16 22:29 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2014-05-16 03:03 - 2014-05-16 03:04 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{CF6C5AE9-AA43-4B9D-B8A5-E107A50B0464}

2014-05-16 02:49 - 2014-05-16 02:55 - 00002248 _____ () C:\Users\Kalle\Desktop\Rkill.txt

2014-05-16 02:09 - 2014-05-16 02:09 - 00000000 ____D () C:\Program Files\Enigma Software Group

2014-05-16 02:07 - 2014-05-17 09:32 - 00000000 ____D () C:\Windows\455F074C814E4520B69B5584BD90400C.TMP

2014-05-16 02:07 - 2014-05-16 02:07 - 00000000 ____D () C:\Program Files\Common Files\Wise Installation Wizard

2014-05-16 02:06 - 2014-05-16 02:06 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Kalle\Downloads\SpyHunter-Installer.exe

2014-05-16 01:50 - 2014-05-16 01:50 - 01016261 _____ (Thisisu) C:\Users\Kalle\Downloads\JRT (1).exe

2014-05-16 01:50 - 2014-05-16 01:50 - 00000000 ____D () C:\Windows\ERUNT

2014-05-16 01:49 - 2014-05-16 01:50 - 01016261 _____ (Thisisu) C:\Users\Kalle\Downloads\JRT.exe

2014-05-16 01:11 - 2014-05-16 01:11 - 17352880 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe

2014-05-16 00:52 - 2014-05-16 00:52 - 00001159 _____ () C:\Users\Kalle\Desktop\HijackThis - genväg.lnk

2014-05-16 00:37 - 2014-05-09 09:06 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll

2014-05-16 00:37 - 2014-05-09 09:04 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

2014-05-16 00:37 - 2014-04-12 04:11 - 01059840 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll

2014-05-16 00:37 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe

2014-05-16 00:37 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe

2014-05-16 00:37 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll

2014-05-16 00:37 - 2014-03-04 11:17 - 00304128 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe

2014-05-16 00:37 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll

2014-05-16 00:36 - 2014-04-12 04:15 - 00136640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys

2014-05-16 00:36 - 2014-04-12 04:15 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys

2014-05-16 00:36 - 2014-04-12 04:12 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll

2014-05-16 00:36 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll

2014-05-16 00:36 - 2014-04-12 04:12 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll

2014-05-16 00:36 - 2014-04-12 04:11 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe

2014-05-16 00:36 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll

2014-05-16 00:36 - 2014-03-04 11:17 - 00293376 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll

2014-05-16 00:36 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll

2014-05-16 00:36 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll

2014-05-16 00:36 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll

2014-05-16 00:36 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll

2014-05-16 00:36 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll

2014-05-16 00:36 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll

2014-05-16 00:36 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll

2014-05-16 00:36 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll

2014-05-16 00:18 - 2014-05-16 22:31 - 00014994 _____ () C:\Users\Kalle\Downloads\hijackthis.log

2014-05-16 00:17 - 2014-05-16 00:17 - 00388608 _____ (Trend Micro Inc.) C:\Users\Kalle\Downloads\HijackThis.exe

2014-05-16 00:01 - 2014-05-16 00:01 - 01325827 _____ () C:\Users\Kalle\Downloads\adwcleaner_3.208 (1).exe

2014-05-15 23:53 - 2014-05-16 23:13 - 00000000 ____D () C:\AdwCleaner

2014-05-15 23:52 - 2014-05-15 23:52 - 01325827 _____ () C:\Users\Kalle\Downloads\adwcleaner_3.208.exe

2014-05-15 03:07 - 2014-05-15 03:07 - 00126815 _____ () C:\Users\Kalle\Downloads\D4D8.tmp

2014-05-15 02:44 - 2014-05-15 03:12 - 00003882 _____ () C:\Users\Kalle\Desktop\Nmc_2014-05-15_02-44-21.log

2014-05-14 22:30 - 2014-05-14 22:30 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{40010532-1854-4D6E-8CEE-234E4219B21E}

2014-05-13 22:24 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll

2014-05-13 22:24 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll

2014-05-13 22:23 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll

2014-05-13 19:54 - 2014-05-13 19:54 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{7405D89E-AB85-44DB-AA93-DA0A5542386F}

2014-05-12 22:19 - 2014-05-12 22:20 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{3E2D9C3D-875F-480E-99C4-A0645095B518}

2014-05-11 22:26 - 2014-05-11 22:26 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{42A12A95-3014-47FB-A378-691BC3F4F5AE}

2014-05-10 14:16 - 2014-05-10 14:16 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{399FDCAF-B66D-4BE6-A802-BF86FD90A694}

2014-05-09 18:07 - 2014-05-09 18:08 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{61A9B6FE-60F1-48AF-8E2F-A3D380C0D472}

2014-05-09 17:08 - 2014-05-09 17:08 - 00000000 ____D () C:\Users\Default\AppData\Local\Google

2014-05-09 17:08 - 2014-05-09 17:08 - 00000000 ____D () C:\Users\Default User\AppData\Local\Google

2014-05-08 19:11 - 2014-05-08 19:11 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{4ADAF39C-67A3-4A6A-944C-D60398ED56EF}

2014-05-07 22:27 - 2014-05-07 22:27 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{0BEB3E68-047C-4C9A-B041-01E98539CCAF}

2014-05-06 21:15 - 2014-05-06 21:15 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{52FC652A-E3C4-4CF8-8492-79EA390266BC}

2014-05-05 22:59 - 2014-05-05 22:59 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{C2EC7FF7-8E86-486A-89CC-DE97B62C15FB}

2014-05-02 19:46 - 2014-05-02 19:46 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{19251336-4939-40CE-A673-E996699CCCBA}

2014-05-01 22:47 - 2014-05-01 22:48 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{3369846B-7B8E-4E93-A3EC-914423E50C97}

2014-05-01 09:56 - 2014-05-01 09:57 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{28F3F11A-8F38-4E7F-8776-C8C747E141A8}

2014-04-30 16:41 - 2014-04-30 16:41 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{2CFD7E70-DFA8-416F-8CAC-6A0D44A8D4ED}

2014-04-29 22:34 - 2014-04-29 22:34 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{2D5A9D6E-26B9-4345-B300-BE97971E6E20}

2014-04-28 18:13 - 2014-04-28 18:13 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{5BAF61CD-265F-42AC-9C18-0BA9920045C8}

2014-04-27 20:47 - 2014-04-27 20:48 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{2170483A-8851-4B71-91E7-9B42282D605F}

2014-04-26 13:39 - 2014-04-26 13:39 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{D461CF70-126B-4778-AB18-8D1F69400FD1}

2014-04-26 09:42 - 2014-04-26 09:42 - 00140368 _____ () C:\Windows\Minidump\042614-29655-01.dmp

2014-04-25 17:10 - 2014-04-25 17:10 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{3C072CB7-E22B-4171-9952-863EA19A9255}

 

==================== One Month Modified Files and Folders =======

 

2014-05-25 22:06 - 2014-05-25 22:04 - 00023413 _____ () C:\Users\Kalle\Desktop\FRST.txt

2014-05-25 22:04 - 2014-05-25 22:04 - 00000000 ____D () C:\Users\Kalle\Desktop\FRST-OlderVersion

2014-05-25 22:04 - 2014-05-17 09:42 - 01056256 _____ (Farbar) C:\Users\Kalle\Desktop\FRST.exe

2014-05-25 22:04 - 2014-05-17 00:17 - 00000000 ____D () C:\FRST

2014-05-25 21:58 - 2014-05-25 21:58 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{7B7DC468-57EF-4B62-93F1-465351CF38EB}

2014-05-25 21:57 - 2010-03-13 19:02 - 00000000 ____D () C:\Users\Kalle\Documents\Min Mailfolder

2014-05-25 21:54 - 2014-05-25 21:54 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\McAfee

2014-05-25 21:54 - 2010-08-01 11:44 - 00001848 _____ () C:\Users\Public\Desktop\McAfee Internet Security Suite.lnk

2014-05-25 21:52 - 2013-05-06 22:35 - 00000000 ____D () C:\Users\Kalle\AppData\Roaming\OnecomCloudDrive

2014-05-25 21:51 - 2014-03-29 00:18 - 00000000 ___RD () C:\Users\Kalle\Google Drive

2014-05-25 21:51 - 2010-02-01 18:42 - 00000978 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2014-05-25 21:51 - 2009-09-17 22:30 - 00000000 ____D () C:\Users\Kalle\AppData\Roaming\OpenOffice.org2

2014-05-25 21:50 - 2009-11-10 19:42 - 00011104 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2014-05-25 21:50 - 2009-11-10 19:42 - 00011104 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2014-05-25 21:47 - 2009-11-10 20:12 - 01483108 _____ () C:\Windows\WindowsUpdate.log

2014-05-25 21:39 - 2009-11-10 20:02 - 09681390 _____ () C:\Windows\PFRO.log

2014-05-25 21:39 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT

2014-05-25 21:39 - 2009-07-14 06:39 - 25819525 _____ () C:\Windows\setupact.log

2014-05-23 20:53 - 2012-08-25 20:26 - 00001004 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-54249351-516280376-2711681529-1000UA.job

2014-05-23 20:53 - 2012-04-09 09:19 - 00000868 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job

2014-05-23 20:53 - 2010-02-01 18:42 - 00000982 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2014-05-23 18:52 - 2013-05-08 19:59 - 00000000 ____D () C:\Users\Kalle\AppData\Roaming\KeePass

2014-05-23 18:50 - 2013-12-06 23:14 - 00002129 _____ () C:\Users\Public\Desktop\Google Chrome.lnk

2014-05-23 18:35 - 2014-05-23 18:35 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{F702837E-A394-4A6B-A578-B93A4FB73E2F}

2014-05-23 18:11 - 2009-10-08 22:21 - 00000000 ____D () C:\Users\Kalle\Documents\Ekonomi - Dokument

2014-05-23 17:44 - 2014-05-23 17:44 - 00000000 ____D () C:\TDSSKiller_Quarantine

2014-05-23 17:42 - 2014-05-20 20:08 - 00000000 ____D () C:\Users\Kalle\AppData\Local\CrashDumps

2014-05-23 17:33 - 2014-05-23 17:32 - 04165472 _____ (Kaspersky Lab ZAO) C:\Users\Kalle\Desktop\tdsskiller.exe

2014-05-22 23:33 - 2014-05-22 23:33 - 00028338 _____ () C:\Users\Kalle\Desktop\ComboFix.txt

2014-05-22 23:33 - 2014-05-22 22:39 - 00000000 ____D () C:\Qoobox

2014-05-22 23:33 - 2009-07-14 04:37 - 00000000 __RHD () C:\Users\Default

2014-05-22 23:33 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Public

2014-05-22 23:26 - 2014-05-22 22:38 - 00000000 ____D () C:\Windows\erdnt

2014-05-22 23:18 - 2009-07-14 04:04 - 00000215 _____ () C:\Windows\system.ini

2014-05-22 22:04 - 2014-05-22 22:03 - 05200426 ____R (Swearware) C:\Users\Kalle\Desktop\ComboFix.exe

2014-05-22 21:57 - 2014-05-20 20:09 - 00002620 _____ () C:\Users\Kalle\Desktop\SystemLook.txt

2014-05-22 21:51 - 2014-05-22 21:51 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{46BA82E1-AC9F-428A-B93F-19573F84F9B5}

2014-05-21 18:29 - 2014-05-21 18:29 - 00000000 _____ () C:\Users\Kalle\Desktop\Ny bitmappsbild.bmp

2014-05-21 18:18 - 2014-05-21 18:18 - 02347384 _____ (ESET) C:\Users\Kalle\Downloads\esetsmartinstaller_enu (3).exe

2014-05-21 18:13 - 2014-05-21 18:13 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{803B59F6-5E33-412A-8577-B697E120556F}

2014-05-20 23:04 - 2014-05-20 23:04 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{60AAE529-1542-40A4-9566-5BCCE778CE18}

2014-05-20 20:19 - 2014-05-19 19:19 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys

2014-05-20 20:06 - 2014-05-20 20:06 - 00139264 _____ () C:\Users\Kalle\Desktop\SystemLook.exe

2014-05-20 00:34 - 2014-05-20 00:15 - 00000000 ____D () C:\Users\Kalle\Desktop\RK_Quarantine

2014-05-20 00:26 - 2014-05-20 00:26 - 00029401 _____ () C:\Users\Kalle\Desktop\RKreport[0]_S_05202014_002629.txt

2014-05-19 22:48 - 2009-11-10 20:23 - 01580554 _____ () C:\Windows\system32\PerfStringBackup.INI

2014-05-19 22:48 - 2009-07-14 10:15 - 00664068 _____ () C:\Windows\system32\perfh01D.dat

2014-05-19 22:48 - 2009-07-14 10:15 - 00142836 _____ () C:\Windows\system32\perfc01D.dat

2014-05-19 22:45 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\NDF

2014-05-19 21:52 - 2014-05-19 21:51 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{2B3035C4-1024-4F60-8AD6-A0D390276977}

2014-05-19 19:28 - 2014-05-19 19:28 - 03972608 _____ () C:\Users\Kalle\Desktop\RogueKiller.exe

2014-05-19 19:17 - 2014-05-19 19:17 - 00000755 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-05-19 19:17 - 2014-05-19 19:17 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware

2014-05-19 19:17 - 2014-05-19 19:17 - 00000000 ____D () C:\ProgramData\Malwarebytes

2014-05-19 19:17 - 2014-05-19 19:16 - 17305616 _____ (Malwarebytes Corporation ) C:\Users\Kalle\Downloads\mbam-setup-2.0.1.1004.exe

2014-05-19 19:12 - 2014-05-19 19:12 - 02347384 _____ (ESET) C:\Users\Kalle\Downloads\esetsmartinstaller_enu (2).exe

2014-05-18 21:42 - 2014-05-18 21:41 - 02347384 _____ (ESET) C:\Users\Kalle\Downloads\esetsmartinstaller_enu (1).exe

2014-05-17 10:11 - 2014-03-29 00:16 - 00002004 _____ () C:\Users\Public\Desktop\Google Slides.lnk

2014-05-17 10:11 - 2014-03-29 00:16 - 00002002 _____ () C:\Users\Public\Desktop\Google Sheets.lnk

2014-05-17 10:11 - 2014-03-29 00:16 - 00001992 _____ () C:\Users\Public\Desktop\Google Docs.lnk

2014-05-17 10:11 - 2014-03-29 00:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive

2014-05-17 09:32 - 2014-05-16 02:07 - 00000000 ____D () C:\Windows\455F074C814E4520B69B5584BD90400C.TMP

2014-05-17 02:19 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET

2014-05-17 01:23 - 2012-08-25 20:26 - 00000952 _____ () C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-54249351-516280376-2711681529-1000Core.job

2014-05-17 00:54 - 2014-05-17 00:54 - 00000000 ____D () C:\Program Files\ESET

2014-05-17 00:53 - 2014-05-17 00:53 - 02347384 _____ (ESET) C:\Users\Kalle\Downloads\esetsmartinstaller_enu.exe

2014-05-17 00:22 - 2014-05-17 00:19 - 00043564 _____ () C:\Users\Kalle\Downloads\Addition.txt

2014-05-17 00:22 - 2014-05-17 00:17 - 00052572 _____ () C:\Users\Kalle\Downloads\FRST.txt

2014-05-17 00:15 - 2014-05-17 00:15 - 01056768 _____ (Farbar) C:\Users\Kalle\Downloads\FRST.exe

2014-05-16 23:59 - 2014-05-16 23:59 - 00000550 _____ () C:\Users\Kalle\Desktop\Emsisoft Emergency Kit.lnk

2014-05-16 23:59 - 2014-05-16 23:58 - 00000000 ____D () C:\EEK

2014-05-16 23:52 - 2014-05-16 23:52 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{4F2377A9-2B63-4CCB-8B82-2D6D33AADDFA}

2014-05-16 23:13 - 2014-05-16 23:13 - 00000000 ___SD () C:\Windows\system32\CompatTel

2014-05-16 23:13 - 2014-05-15 23:53 - 00000000 ____D () C:\AdwCleaner

2014-05-16 23:13 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\sv-SE

2014-05-16 22:41 - 2013-07-22 09:28 - 00000000 ____D () C:\Windows\system32\MRT

2014-05-16 22:35 - 2009-11-10 22:43 - 90547776 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2014-05-16 22:34 - 2014-05-16 22:34 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER

2014-05-16 22:34 - 2009-01-22 22:52 - 00000000 ____D () C:\ProgramData\Microsoft Help

2014-05-16 22:31 - 2014-05-16 00:18 - 00014994 _____ () C:\Users\Kalle\Downloads\hijackthis.log

2014-05-16 03:04 - 2014-05-16 03:03 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{CF6C5AE9-AA43-4B9D-B8A5-E107A50B0464}

2014-05-16 02:55 - 2014-05-16 02:49 - 00002248 _____ () C:\Users\Kalle\Desktop\Rkill.txt

2014-05-16 02:09 - 2014-05-16 02:09 - 00000000 ____D () C:\Program Files\Enigma Software Group

2014-05-16 02:07 - 2014-05-16 02:07 - 00000000 ____D () C:\Program Files\Common Files\Wise Installation Wizard

2014-05-16 02:06 - 2014-05-16 02:06 - 00728960 _____ (Enigma Software Group USA, LLC.) C:\Users\Kalle\Downloads\SpyHunter-Installer.exe

2014-05-16 01:50 - 2014-05-16 01:50 - 01016261 _____ (Thisisu) C:\Users\Kalle\Downloads\JRT (1).exe

2014-05-16 01:50 - 2014-05-16 01:50 - 00000000 ____D () C:\Windows\ERUNT

2014-05-16 01:50 - 2014-05-16 01:49 - 01016261 _____ (Thisisu) C:\Users\Kalle\Downloads\JRT.exe

2014-05-16 01:26 - 2013-04-09 22:45 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk

2014-05-16 01:23 - 2013-07-11 00:46 - 00000000 ____D () C:\Users\Kalle\Documents\vandring

2014-05-16 01:11 - 2014-05-16 01:11 - 17352880 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerInstaller.exe

2014-05-16 01:11 - 2012-04-09 09:19 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe

2014-05-16 01:11 - 2011-05-22 18:06 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl

2014-05-16 00:52 - 2014-05-16 00:52 - 00001159 _____ () C:\Users\Kalle\Desktop\HijackThis - genväg.lnk

2014-05-16 00:17 - 2014-05-16 00:17 - 00388608 _____ (Trend Micro Inc.) C:\Users\Kalle\Downloads\HijackThis.exe

2014-05-16 00:01 - 2014-05-16 00:01 - 01325827 _____ () C:\Users\Kalle\Downloads\adwcleaner_3.208 (1).exe

2014-05-15 23:52 - 2014-05-15 23:52 - 01325827 _____ () C:\Users\Kalle\Downloads\adwcleaner_3.208.exe

2014-05-15 23:32 - 2009-11-10 19:44 - 00000000 ____D () C:\Users\Kalle

2014-05-15 23:27 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\wfp

2014-05-15 23:25 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\Windows Defender

2014-05-15 23:24 - 2012-10-19 16:48 - 00000000 ____D () C:\Users\Kalle\AppData\Roaming\Diino

2014-05-15 23:24 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\Windows Sidebar

2014-05-15 23:24 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system

2014-05-15 23:24 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\AppCompat

2014-05-15 23:24 - 2009-01-22 22:56 - 00000000 ____D () C:\Windows\system32\Macromed

2014-05-15 23:23 - 2013-12-06 23:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome

2014-05-15 23:23 - 2012-08-23 21:31 - 00000000 ____D () C:\Program Files\Mobile Broadband

2014-05-15 23:23 - 2012-08-23 21:30 - 00000000 ____D () C:\ProgramData\DatacardService

2014-05-15 23:23 - 2012-07-10 23:04 - 00000000 ____D () C:\Program Files\Common Files\Steam

2014-05-15 23:23 - 2010-04-21 18:19 - 00000000 ____D () C:\Program Files\Equipe 4

2014-05-15 23:23 - 2009-08-17 21:50 - 00000000 ____D () C:\Program Files\Launch Manager

2014-05-15 23:23 - 2009-01-22 23:19 - 00000000 ____D () C:\Program Files\Common Files\McAfee

2014-05-15 23:23 - 2009-01-22 22:52 - 00000000 ____D () C:\Program Files\Microsoft Office

2014-05-15 23:21 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\registration

2014-05-15 03:12 - 2014-05-15 02:44 - 00003882 _____ () C:\Users\Kalle\Desktop\Nmc_2014-05-15_02-44-21.log

2014-05-15 03:07 - 2014-05-15 03:07 - 00126815 _____ () C:\Users\Kalle\Downloads\D4D8.tmp

2014-05-14 22:30 - 2014-05-14 22:30 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{40010532-1854-4D6E-8CEE-234E4219B21E}

2014-05-13 19:54 - 2014-05-13 19:54 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{7405D89E-AB85-44DB-AA93-DA0A5542386F}

2014-05-12 22:20 - 2014-05-12 22:19 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{3E2D9C3D-875F-480E-99C4-A0645095B518}

2014-05-11 22:26 - 2014-05-11 22:26 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{42A12A95-3014-47FB-A378-691BC3F4F5AE}

2014-05-10 14:16 - 2014-05-10 14:16 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{399FDCAF-B66D-4BE6-A802-BF86FD90A694}

2014-05-09 18:08 - 2014-05-09 18:07 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{61A9B6FE-60F1-48AF-8E2F-A3D380C0D472}

2014-05-09 17:08 - 2014-05-09 17:08 - 00000000 ____D () C:\Users\Default\AppData\Local\Google

2014-05-09 17:08 - 2014-05-09 17:08 - 00000000 ____D () C:\Users\Default User\AppData\Local\Google

2014-05-09 09:06 - 2014-05-16 00:37 - 00369664 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll

2014-05-09 09:04 - 2014-05-16 00:37 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

2014-05-08 19:11 - 2014-05-08 19:11 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{4ADAF39C-67A3-4A6A-944C-D60398ED56EF}

2014-05-07 22:27 - 2014-05-07 22:27 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{0BEB3E68-047C-4C9A-B041-01E98539CCAF}

2014-05-06 21:39 - 2009-09-17 22:39 - 00000000 ____D () C:\Users\Kalle\AppData\Local\CutePDF Writer

2014-05-06 21:15 - 2014-05-06 21:15 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{52FC652A-E3C4-4CF8-8492-79EA390266BC}

2014-05-06 05:25 - 2014-05-16 22:29 - 17382912 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll

2014-05-06 05:07 - 2014-05-16 22:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb

2014-05-06 04:10 - 2014-05-16 22:29 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll

2014-05-05 22:59 - 2014-05-05 22:59 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{C2EC7FF7-8E86-486A-89CC-DE97B62C15FB}

2014-05-02 19:46 - 2014-05-02 19:46 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{19251336-4939-40CE-A673-E996699CCCBA}

2014-05-01 22:48 - 2014-05-01 22:47 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{3369846B-7B8E-4E93-A3EC-914423E50C97}

2014-05-01 09:57 - 2014-05-01 09:56 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{28F3F11A-8F38-4E7F-8776-C8C747E141A8}

2014-04-30 16:41 - 2014-04-30 16:41 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{2CFD7E70-DFA8-416F-8CAC-6A0D44A8D4ED}

2014-04-29 22:34 - 2014-04-29 22:34 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{2D5A9D6E-26B9-4345-B300-BE97971E6E20}

2014-04-28 18:13 - 2014-04-28 18:13 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{5BAF61CD-265F-42AC-9C18-0BA9920045C8}

2014-04-27 20:48 - 2014-04-27 20:47 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{2170483A-8851-4B71-91E7-9B42282D605F}

2014-04-26 13:39 - 2014-04-26 13:39 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{D461CF70-126B-4778-AB18-8D1F69400FD1}

2014-04-26 09:42 - 2014-04-26 09:42 - 00140368 _____ () C:\Windows\Minidump\042614-29655-01.dmp

2014-04-26 09:42 - 2010-02-22 23:28 - 00000000 ____D () C:\Windows\Minidump

2014-04-26 09:42 - 2010-02-22 23:27 - 233935953 _____ () C:\Windows\MEMORY.DMP

2014-04-25 17:10 - 2014-04-25 17:10 - 00000000 ____D () C:\Users\Kalle\AppData\Local\{3C072CB7-E22B-4171-9952-863EA19A9255}

 

Some content of TEMP:

====================

C:\Users\Kalle\AppData\Local\Temp\{4371F68F-1473-488D-B859-AD65CECCAD99}.exe

 

 

==================== Bamital & volsnap Check =================

 

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\system32\winlogon.exe

[2014-05-16 00:37] - [2014-03-04 11:17] - 0304128 ____A (Microsoft Corporation) 998507B046BA314CE8245364C686FA67

 

C:\Windows\system32\wininit.exe => MD5 is legit

C:\Windows\system32\svchost.exe => MD5 is legit

C:\Windows\system32\services.exe => MD5 is legit

C:\Windows\system32\User32.dll => MD5 is legit

C:\Windows\system32\userinit.exe => MD5 is legit

C:\Windows\system32\rpcss.dll => MD5 is legit

C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit

 

 

LastRegBack: 2014-05-09 17:30

 

==================== End Of Log ============================

Länk till kommentar
Dela på andra webbplatser

Arkiverat

Det här ämnet är nu arkiverat och är stängt för ytterligare svar.



×
×
  • Skapa nytt...