Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Computer much slower than usual, almost unusable

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Computer much slower than usual, almost unusable

Unread postby Ratagin » May 19th, 2015, 8:31 pm

Hello,

My computer has been slowing down lately and I am not sure why. I had this same problem a couple years ago, and people on this forum helped me tremendously, so here I am again. :)

Here is the dds file:

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 9.0.8112.16644 BrowserJavaVersion: 11.31.2
Run by Matt at 4:19:23 on 2015-05-20
Microsoft® Windows Vista™ Home Basic 6.0.6002.2.1252.1.1033.18.3545.1893 [GMT 4:00]
.
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_ae0b52e0\STacSV.exe
C:\Program Files\Creative\Shared Files\CTAudSvc.exe
C:\Windows\system32\SLsvc.exe
C:\Program Files\Dell\DellDock\DockLogin.exe
C:\Windows\System32\WLTRYSVC.EXE
C:\Windows\System32\bcmwltry.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_ae0b52e0\aestsrv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files\iolo\Common\Lib\ioloServiceManager.exe
C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
C:\Program Files\Microsoft\BingBar\SeaPort.EXE
C:\Windows\sminst\sftservice.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\system32\rundll32.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Dell Support Center\bin\sprtsvc.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\System32\WLTRAY.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Users\Matt\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Users\Matt\AppData\Local\Google\Update\1.3.27.5\GoogleCrashHandler.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe
c:\program files\windows defender\MpCmdRun.exe
C:\Windows\system32\taskeng.exe
C:\Users\Matt\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Matt\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Matt\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Matt\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Matt\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\McAfee\SiteAdvisor\McChHost.exe
c:\PROGRA~1\mcafee\SITEAD~1\saui.exe
C:\Users\Matt\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\igfxsrvc.exe
C:\Users\Matt\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Matt\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\svchost.exe -k yksvcs
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
.
============== Pseudo HJT Report ===============
.
uSearchURL,(Default) = hxxp://search.yahoo.com/search?fr=mcafee&p=%s
uURLSearchHooks: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\program files\mcafee\siteadvisor\McIEPlg.dll
BHO: {27B4851A-3207-45A2-B947-BE8AFE6163AB} - <orphaned>
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre1.8.0_31\bin\ssv.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: McAfee SiteAdvisor BHO: {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\program files\mcafee\siteadvisor\McIEPlg.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre1.8.0_31\bin\jp2ssv.dll
BHO: {EA5CA8B6-9B9C-4994-A7A1-947B6C631BE7} - <orphaned>
TB: McAfee SiteAdvisor Toolbar: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\program files\mcafee\siteadvisor\McIEPlg.dll
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [Google Update] "c:\users\matt\appdata\local\google\update\GoogleUpdate.exe" /c
uRun: [Xvid] c:\program files\xvid\CheckUpdate.exe
mRun: [Apoint] c:\program files\delltpad\Apoint.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [Broadcom Wireless Manager UI] c:\windows\system32\WLTRAY.exe
mRun: [IAAnotif] c:\program files\intel\intel matrix storage manager\iaanotif.exe
mRun: [Dell PC TuneUp Startup] "c:\program files\iolo\common\lib\ioloLManager.exe"
mRun: [RunDLLEntry] c:\windows\system32\rundll32.exe c:\windows\system32\AmbRunE.dll,RunDLLEntry
mRun: [PDVDDXSrv] "c:\program files\cyberlink\powerdvd dx\PDVDDXSrv.exe"
mRun: [dellsupportcenter] "c:\program files\dell support center\bin\sprtcmd.exe" /P dellsupportcenter
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
mRun: [Microsoft Default Manager] "c:\program files\microsoft\search enhancement pack\default manager\DefMgr.exe" -resume
mRun: [iolo Startup] "c:\program files\iolo\common\lib\ioloLManager.exe"
mRun: [QuickSet] c:\program files\dell\quickset\QuickSet.exe
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [SysTrayApp] c:\program files\idt\wdm\sttray.exe
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [AvastUI.exe] "c:\program files\avast software\avast\AvastUI.exe" /nogui
mRunOnce: [DSUpdateLauncher] "c:\program files\dell datasafe local backup\components\dsupdate\runhstart.bat"
StartupFolder: c:\users\matt\appdata\roaming\micros~1\windows\startm~1\programs\startup\dropbox.lnk - c:\users\matt\appdata\roaming\dropbox\bin\Dropbox.exe
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: SoftwareSASGeneration = dword:1
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
TCP: NameServer = 75.75.75.75 75.75.76.76
TCP: Interfaces\{2A414F2D-7DF2-4AE0-A070-24B0B179E9CB} : DHCPNameServer = 75.75.75.75 75.75.76.76
TCP: Interfaces\{A07D3217-8717-4CCB-9A0A-20CC1ED7A59E} : DHCPNameServer = 192.168.0.1
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\program files\mcafee\siteadvisor\McIEPlg.dll
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\program files\mcafee\siteadvisor\McIEPlg.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
Notify: igfxcui - igfxdev.dll
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\matt\appdata\roaming\mozilla\firefox\profiles\9pfopnr9.default\
FF - prefs.js: browser.search.selectedEngine - hxxps://search.yahoo.com/search?fr=mcaf ... 0150111&p=
FF - prefs.js: keyword.URL - hxxps://search.yahoo.com/search?fr=mcaf ... 0150111&p=
FF - prefs.js: network.proxy.type - 4
FF - component: c:\program files\mcafee\siteadvisor\components\McFFPlg.dll
FF - component: c:\users\matt\appdata\roaming\mozilla\firefox\profiles\9pfopnr9.default\extensions\zoterowinwordintegration@zotero.org\components\zoteroWinWordIntegration.dll
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\foxit software\foxit reader\plugins\npFoxitReaderPlugin.dll
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.3.26.9\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre1.8.0_31\bin\dtplugin\npdeployJava1.dll
FF - plugin: c:\program files\java\jre1.8.0_31\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.30514.0\npctrlui.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
FF - plugin: c:\users\matt\appdata\local\google\update\1.3.26.9\npGoogleUpdate3.dll
FF - plugin: c:\users\matt\appdata\roaming\move networks\plugins\npqmp071505000010.dll
FF - plugin: c:\users\matt\appdata\roaming\move networks\plugins\npqmp071505000011.dll
FF - plugin: c:\windows\system32\adobe\director\np32dsw_1213153.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_17_0_0_169.dll
FF - ExtSQL: !HIDDEN! 2009-07-15 09:59; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\DotNetAssistantExtension
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [2015-2-9 49904]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [2015-2-9 208024]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2015-2-9 788272]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2015-2-9 427736]
R1 ElRawDisk;ElRawDisk;c:\windows\system32\drivers\elrawdsk.sys [2009-5-20 27080]
R2 AESTFilters;Andrea ST Filters Service;c:\windows\system32\driverstore\filerepository\stwrt.inf_ae0b52e0\AEstSrv.exe [2009-5-21 81920]
R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [2015-2-9 24144]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2015-2-9 73440]
R2 avast! Antivirus;Avast Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2015-2-9 343336]
R2 DockLoginService;Dock Login Service;c:\program files\dell\delldock\DockLogin.exe [2008-12-18 155648]
R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-21 21504]
R2 ioloSystemService;iolo System Service;c:\program files\iolo\common\lib\ioloServiceManager.exe [2009-5-20 1047336]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\mcafee\siteadvisor\McSACore.exe [2009-6-1 132160]
R2 SftService;SoftThinks Agent Service;c:\windows\sminst\SftService.exe [2009-5-20 632048]
R2 VBoxAswDrv;VBoxAsw Support Driver;c:\program files\avast software\avast\ng\vbox\VBoxAswDrv.sys [2015-4-9 220240]
R2 yksvc;Marvell Yukon Service;c:\windows\system32\svchost.exe -k yksvcs [2008-1-21 21504]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\drivers\CtClsFlt.sys [2009-5-20 144128]
R3 OA009Ufd;Creative Camera OA009 Upper Filter Driver;c:\windows\system32\drivers\OA009Ufd.sys [2009-3-6 133632]
R3 OA009Vid;Creative Camera OA009 Function Driver;c:\windows\system32\drivers\OA009Vid.sys [2009-3-20 271552]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 dsl-db;Remote Access DB;"c:\program files\common files\dell\mysql\bin\mysqld.exe" "--defaults-file=c:\program files\common files\dell\mysql\my.ini" dsl-db --> c:\program files\common files\dell\mysql\bin\mysqld.exe [?]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2015-2-18 315488]
S3 aswTap;avast! SecureLine TAP Adapter v3;c:\windows\system32\drivers\aswTap.sys [2015-2-9 35144]
S3 AvastVBoxSvc;AvastVBox COM Service;c:\program files\avast software\avast\ng\vbox\AvastVBoxSVC.exe [2015-4-9 3205216]
S3 BBSvc;Bing Bar Update Service;c:\program files\microsoft\bingbar\BBSvc.EXE [2011-3-1 183560]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;c:\program files\common files\creative labs shared\service\AL6Licensing.exe [2009-5-20 79360]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files\common files\creative labs shared\service\CTAELicensing.exe [2009-5-20 79360]
S3 PCD5SRVC{3F6A8B78-EC003E00-05040104};PCD5SRVC{3F6A8B78-EC003E00-05040104} - PCDR Kernel Mode Service Helper Driver;c:\progra~1\dellsu~1\hwdiag\bin\PCD5SRVC.pkms [2008-11-5 22904]
S3 Sound Blaster X-Fi MB Licensing Service;Sound Blaster X-Fi MB Licensing Service;c:\program files\common files\creative labs shared\service\XMBLicensing.exe [2009-5-20 79360]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2013-9-11 770168]
.
=============== File Associations ===============
.
FileExt: .scr: scrfile=NOTEPAD.EXE %1
FileExt: .reg: regfile=NOTEPAD.EXE %1
FileExt: .vbe: VBEFile=NOTEPAD.EXE %1
FileExt: .vbs: VBSFile=NOTEPAD.EXE %1
FileExt: .js: JSFile=NOTEPAD.EXE %1
FileExt: .jse: JSEFile=NOTEPAD.EXE %1
FileExt: .wsf: WSFFile=NOTEPAD.EXE %1
.
=============== Created Last 30 ================
.
2015-05-19 23:09:24 9265072 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{51d2e659-c260-48c6-a28d-7500c88e3d19}\mpengine.dll
2015-05-19 03:51:55 62576 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{875e3447-12b4-4586-9921-af91caff172a}\offreg.dll
2015-05-15 22:28:57 9201616 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{875e3447-12b4-4586-9921-af91caff172a}\mpengine.dll
2015-05-15 00:16:48 279040 ----a-w- c:\windows\system32\schannel.dll
2015-05-15 00:12:17 682496 ----a-w- c:\windows\system32\d2d1.dll
2015-05-15 00:12:17 486400 ----a-w- c:\windows\system32\d3d10level9.dll
2015-05-15 00:12:17 219648 ----a-w- c:\windows\system32\d3d10_1core.dll
2015-05-15 00:12:17 189952 ----a-w- c:\windows\system32\d3d10core.dll
2015-05-15 00:12:17 160768 ----a-w- c:\windows\system32\d3d10_1.dll
2015-05-15 00:12:17 1172480 ----a-w- c:\windows\system32\d3d10warp.dll
2015-05-15 00:12:16 801792 ----a-w- c:\windows\system32\FntCache.dll
2015-05-15 00:12:16 2065408 ----a-w- c:\windows\system32\win32k.sys
2015-05-15 00:12:16 1072640 ----a-w- c:\windows\system32\DWrite.dll
2015-05-15 00:12:16 1029120 ----a-w- c:\windows\system32\d3d10.dll
2015-05-15 00:08:52 102608 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-15 00:08:23 939008 ----a-w- c:\program files\common files\microsoft shared\ink\journal.dll
2015-05-14 23:08:27 279552 ----a-w- c:\windows\system32\services.exe
2015-05-03 21:16:42 -------- d-----w- c:\users\matt\appdata\roaming\TS3Client
2015-05-03 21:16:22 -------- d-----w- c:\program files\TeamSpeak 3 Client
.
==================== Find3M ====================
.
2015-04-15 15:50:26 778416 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2015-04-15 15:50:26 142512 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2015-04-13 22:35:06 875720 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
2015-04-13 22:35:06 536776 ----a-w- c:\windows\system32\msvcp120_clr0400.dll
2015-04-10 15:25:46 367616 ----a-w- c:\windows\system32\html.iec
2015-04-10 15:25:45 1810944 ----a-w- c:\windows\system32\jscript9.dll
2015-04-10 15:20:33 1129472 ----a-w- c:\windows\system32\wininet.dll
2015-04-10 15:20:01 1427968 ----a-w- c:\windows\system32\inetcpl.cpl
2015-04-10 15:19:31 421888 ----a-w- c:\windows\system32\vbscript.dll
2015-04-10 15:19:16 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2015-04-10 15:18:44 11776 ----a-w- c:\windows\system32\mshta.exe
2015-04-10 15:18:42 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2015-04-09 15:16:48 208024 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2015-04-09 15:16:47 73440 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2015-04-09 15:16:47 49904 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2015-04-09 15:16:47 24144 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2015-04-09 15:16:27 43112 ----a-w- c:\windows\avastSS.scr
2015-04-09 15:16:11 788272 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2015-03-14 02:21:11 1205168 ----a-w- c:\windows\system32\ntdll.dll
2015-03-13 01:51:44 3604920 ----a-w- c:\windows\system32\ntkrnlpa.exe
2015-03-13 01:51:44 3552184 ----a-w- c:\windows\system32\ntoskrnl.exe
2015-03-09 01:01:02 1249280 ----a-w- c:\windows\system32\msxml3.dll
2015-03-05 02:32:11 244152 ----a-w- c:\windows\system32\clfs.sys
2015-03-05 02:24:07 297984 ----a-w- c:\windows\system32\gdi32.dll
2015-03-05 02:23:54 57344 ----a-w- c:\windows\system32\clfsw32.dll
2015-02-24 00:23:36 246920 ------w- c:\windows\system32\MpSigStub.exe
2015-02-20 02:03:22 34304 ----a-w- c:\windows\system32\atmlib.dll
2015-02-20 00:28:27 296960 ----a-w- c:\windows\system32\atmfd.dll
.
============= FINISH: 4:21:24.64 ===============


Here is the attach file:

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft® Windows Vista™ Home Basic
Boot Device: \Device\HarddiskVolume3
Install Date: 5/20/2009 5:33:35 PM
System Uptime: 5/19/2015 7:03:20 AM (21 hours ago)
.
Motherboard: Dell Inc. | | 0G848F
Processor: Intel(R) Core(TM)2 Duo CPU P8700 @ 2.53GHz | Microprocessor | 800/266mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 218 GiB total, 8.302 GiB free.
D: is FIXED (NTFS) - 15 GiB total, 6.537 GiB free.
E: is CDROM ()
F: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: Microsoft 6to4 Adapter
Device ID: ROOT\*6TO4MP\0003
Manufacturer: Microsoft
Name: 6TO4 Adapter
PNP Device ID: ROOT\*6TO4MP\0003
Service: tunnel
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: Microsoft 6to4 Adapter
Device ID: ROOT\*6TO4MP\0010
Manufacturer: Microsoft
Name: 6TO4 Adapter
PNP Device ID: ROOT\*6TO4MP\0010
Service: tunnel
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: Microsoft 6to4 Adapter
Device ID: ROOT\*6TO4MP\0033
Manufacturer: Microsoft
Name: 6TO4 Adapter
PNP Device ID: ROOT\*6TO4MP\0033
Service: tunnel
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: Microsoft 6to4 Adapter
Device ID: ROOT\*6TO4MP\0034
Manufacturer: Microsoft
Name: 6TO4 Adapter
PNP Device ID: ROOT\*6TO4MP\0034
Service: tunnel
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: Microsoft 6to4 Adapter
Device ID: ROOT\*6TO4MP\0035
Manufacturer: Microsoft
Name: 6TO4 Adapter
PNP Device ID: ROOT\*6TO4MP\0035
Service: tunnel
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: Microsoft ISATAP Adapter
Device ID: ROOT\*ISATAP\0001
Manufacturer: Microsoft
Name: Microsoft ISATAP Adapter #2
PNP Device ID: ROOT\*ISATAP\0001
Service: tunnel
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: Microsoft ISATAP Adapter
Device ID: ROOT\*ISATAP\0005
Manufacturer: Microsoft
Name: isatap.hsd1.md.comcast.net.
PNP Device ID: ROOT\*ISATAP\0005
Service: tunnel
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: Microsoft ISATAP Adapter
Device ID: ROOT\*ISATAP\0007
Manufacturer: Microsoft
Name: isatap.hsd1.md.comcast.net.
PNP Device ID: ROOT\*ISATAP\0007
Service: tunnel
.
Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318}
Description: avast! SecureLine TAP Adapter v3
Device ID: ROOT\NET\0000
Manufacturer: TAP-Windows Provider V9
Name: avast! SecureLine TAP Adapter v3
PNP Device ID: ROOT\NET\0000
Service: aswTap
.
==== System Restore Points ===================
.
.
==== Installed Programs ======================
.
Update for Microsoft Office 2007 (KB2508958)
Acrobat.com
ACS ChemWorx Dependencies
ACS ChemWorx Desktop
ACS ChemWorx Library
ACS ChemWorx Word Plugin
Adobe AIR
Adobe Flash Player 17 ActiveX
Adobe Flash Player 17 NPAPI
Adobe Reader X (10.1.13)
Adobe Shockwave Player 12.1
Advanced Audio FX Engine
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Avast Free Antivirus
Bing Bar
Bonjour
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
Compatibility Pack for the 2007 Office system
CutePDF Writer 2.8
D3DX10
Dell-eBay
Dell DataSafe Local Backup
Dell DataSafe Local Backup - Support Software
Dell DataSafe Online
Dell Dock
Dell Driver Download Manager
Dell Edoc Viewer
Dell Getting Started Guide
Dell Support Center (Support Software)
Dell Touchpad
Dell Video Chat
Dell Webcam Central
Dell Wireless WLAN Card Utility
DELL0703
Diablo
Diablo II
Dropbox
EPSON NX210 Series Printer Uninstall
EverQuest Titanium
Foxit Reader
GIMP 2.8.2
Google Chrome
Google Earth Plug-in
Google Update Helper
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Igor Pro
Inkscape 0.48.2
Integrated Webcam Driver (1.02.01.0320)
Intel(R) Rapid Storage Technology
Intel® Matrix Storage Manager
iolo technologies' System Mechanic
ISI ResearchSoft - Export Helper
iTunes
Japanese Fonts Support For Adobe Reader 9
Java 8 Update 31
Java Auto Updater
Junk Mail filter update
KaleidaGraph 4.1
Live! Cam Avatar Creator
Marvell Miniport Driver
McAfee SiteAdvisor
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4.5.1
Microsoft Application Error Reporting
Microsoft Default Manager
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office File Validation Add-In
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Ultimate 2007
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
Microsoft Works
MiKTeX 2.8
mIRC
Move Media Player
Mozilla Firefox 33.0.2 (x86 en-US)
Mozilla Maintenance Service
MSVCRT
Notepad++
OGA Notifier 2.0.0048.0
Origin 7.5
PowerDVD DX
QuickSet32
QuickTime 7
Roxio Creator Audio
Roxio Creator Copy
Roxio Creator Data
Roxio Creator DE
Roxio Creator Tools
Roxio Express Labeler 3
Roxio Update Manager
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697)
Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2)
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972107)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972216)
Security Update for Microsoft .NET Framework 4.5.1 (KB2978128)
Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2)
Security Update for Microsoft .NET Framework 4.5.1 (KB3023224)
Security Update for Microsoft .NET Framework 4.5.1 (KB3035490)
Security Update for Microsoft .NET Framework 4.5.1 (KB3037581)
Security Update for Microsoft .NET Framework 4.5.1 (KB3048077)
Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596754) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596825) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2597973) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2687439) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760415) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760585) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2760591) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2817330) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2850022) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2880507) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2880508) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2881069) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2883029) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2920795) 32-Bit Edition
Security Update for Microsoft Office 2007 suites (KB2965282) 32-Bit Edition
Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB2956106) 32-Bit Edition
Security Update for Microsoft Office Compatibility Pack Service Pack 3 (KB2965210) 32-Bit Edition
Security Update for Microsoft Office Excel 2007 (KB2956103) 32-Bit Edition
Security Update for Microsoft Office InfoPath 2007 (KB2687440) 32-Bit Edition
Security Update for Microsoft Office OneNote 2007 (KB2596857) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
Security Update for Microsoft Office PowerPoint 2007 (KB2899580) 32-Bit Edition
Security Update for Microsoft Office Publisher 2007 (KB2817565) 32-Bit Edition
Security Update for Microsoft Office Word 2007 (KB2965284) 32-Bit Edition
Segoe UI
Shared C Run-time for x86
Skype™ 7.3
Sound Blaster X-Fi MB
Spelling Dictionaries Support For Adobe Reader 9
swMSM
TeamSpeak 3 Client
TortoiseSVN 1.8.2.24708 (32 bit)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596787) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2920794) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 (KB2863811) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2986252) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Ventrilo Client
WildTangent Games
Windows Live Communications Platform
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Mail
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
WinEdt 6
WinRAR archiver
Xvid Video Codec
Zetasizer Software 7.03
.
==== End Of File ===========================


Many thanks,
Matt
Ratagin
Regular Member
 
Posts: 28
Joined: September 21st, 2011, 8:53 pm
Advertisement
Register to Remove

Re: Computer much slower than usual, almost unusable

Unread postby pgmigg » May 20th, 2015, 3:31 pm

Hello Ratagin,

Welcome back to the forum! :)

I am pgmigg and I'll be helping you with any malware problems.

Before we begin, please read and follow these important guidelines, so things will proceed smoothly.
  1. The instructions being given are for YOUR computer and system only!
    Using these instructions on a different computer can cause damage to that computer and possibly render it inoperable!
  2. You must have Administrator rights, permissions for this computer.
  3. DO NOT run any other fix or removal tools unless instructed to do so!
  4. DO NOT install any other software (or hardware) during the cleaning process until we are done as well as
    DO NOT Remove, or Scan with anything on your system unless I ask. This adds more items to be researched.
    Extra Additions and Removals of files make the analysis more difficult.
  5. Only post your problem at (1) one help site. Applying fixes from multiple help sites can cause problems.
  6. Print each set of instructions if possible - your Internet connection will not be available during some fix processes.
  7. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
  8. Only reply to this thread, do not start another one. Please, continue responding, until I give you the "All Clean!" :cheers:
    Absence of symptoms does not mean that everything is clear.

I am currently reviewing your logs and will return, as soon as possible, with additional instructions. In the meantime...

Note: If you haven't done so already, please read this topic ALL USERS OF THIS FORUM MUST READ THIS FIRST where the conditions for receiving help here are explained.

Please read all instructions carefully before executing and perform the steps, in the order given.
lf you have any questions or problems executing these instructions, <<STOP>> do not proceed, post back with the question or problem.

Please be aware that removing Malware is a potentially hazardous undertaking. I will take care not to knowingly suggest courses of action that might damage your computer. However it is impossible for me to foresee all interactions that may happen between the software on your computer and those we'll use to clear you of infection, and I cannot guarantee the safety of your system. It is possible that we might encounter situations where the only recourse is to re-format and re-install your operating system, or to necessitate you taking your computer to a repair shop.

Because of this, I advise you to backup any personal files and folders before you start


Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
MRU Teacher
MRU Teacher
 
Posts: 3180
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: Computer much slower than usual, almost unusable

Unread postby pgmigg » May 20th, 2015, 4:01 pm

Hello Ratagin,

Step 1.
Create a System Restore Point
Because we are going to be making changes to your computer, it is advisable to create a new System Restore Point.
  1. Right-click on Computer and select Properties.
  2. In the left pane under Tasks please click System protection.
    If UAC prompts for an administrator password or approval, type the password or give your "permission to continue".
  3. Select System Protection, then choose Create.
  4. In the System Restore dialog box, type a description for the restore point and then click Create again.
    A window will pop up with "The Restore Point was created successfully" confirmation message.
  5. Click OK, then close the System Restore dialog.

If you have successfully created a System Restore Point, we can proceed.
If you have NOT successfully created a System Restore Point, do not go any further!
Please post back so we can determine why it was unsuccessful.


Step 2.
Remove Program(s)
  1. Click on Start, then click the Start Search box on the Start Menu.
  2. Copy and paste the value below without into the open text entry box:
    (Do not include the words Code: Select all - instead of it please click the Select all button next to Code: to select the entire script.)
    Code: Select all
     appwiz.cpl 
    and press Enter - the Unistall or change a program list will be opened.
  3. Click each Entry, as follows, one by one, if it exists, choose Uninstall, and give permission to Continue:
    Bing Bar
    iolo technologies' System Mechanic
    Java 8 Update 31
    Java Auto Updater
    McAfee SiteAdvisor
  4. Take extra care in answering questions posed by any Uninstaller.
  5. When the program(s) have been uninstalled, please close Control Panel.
  6. Reboot (restart) your computer.

Step 3.
AdwCleaner
Please download AdwCleaner by Xplode onto your desktop.
  1. Close all open programs and internet browsers.
  2. Right click on adwcleaner.exe, select "Run As Administrator..." to run it. If prompted by UAC, please allow it.
  3. Click on Scan. When the scan finishes, you'll see a message on the product window: "Pending. Please uncheck elements you don't want to remove."
  4. Press the Clean button. The AdwCleaner may reboot your computer - please allow it...
  5. A log file C:\AdwCleaner[Sn].txt will automatically open. ([Sn] n = number of run)
  6. Please post the content of the C:\AdwCleaner[Sn].txt log file in your next reply.

Step 4.
Image Junkware Removal Tool
  1. Please download Junkware Removal Tool and save JRT.exe to your Desktop.
  2. Shut down your protection software as shown in This topic now to avoid potential conflicts.
  3. Right click on JRT.exe, select "Run As Administrator..." to run it. If prompted by UAC, please allow it.
  4. Please be patient as this can take a while to complete depending on your system's specifications.
  5. On completion, a log file JRT.txt is saved to your desktop and will automatically open.
  6. Please post the contents of JRT.txt into your next reply.

Step 5.
TDSSKiller - Rootkit Removal Tool Image
Please download the TDSSKiller.exe by Kaspersky... save it to your Desktop. <-Important!!!
  1. Right-click on TDSSKiller.exe and select "Run As Administrator...".
    If TDSSKiller does not run... rename it. Right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. ektfhtw.com).
    If you don't see file extensions, please see: How to change the file extension.
  2. Click the Start Scan button. Do not use the computer during the scan!
  3. Click Change parameters
  4. Under Additional Options CHECK Verify file digital signatures
  5. IMPORTANT: Ensure Detect TDLFS file system remains UNCHECKED.
  6. Click OK if changes were made.
  7. Click Start scan and allow it to scan for Malicious objects.
    • If Malicious objects are detected, the default action will be Cure, ensure SKIP is selected... then click Continue
    • If suspicious objects are detected, the default action will be Skip, ensure Skip is selected... then click Continue
    • If Unsigned files are detected, the default action will be Skip, ensure Skip is selected... then click Continue
    DO NOT change the default actions, other than CURE to SKIP.
  8. You may be asked to reboot the computer to complete the process. Click on Reboot Now and allow the computer to reboot.
  9. A log will be created on your root drive (usually C:) drive. The log will have a name like Name.Version_Date_Time_log.txt.
    for example, C:\TDSSKiller.2.4.1.2_20.04.2010_15.31.43_log.txt.
  10. If no reboot is required, click on Report. A log file should appear.
  11. Please post the contents of the log file in your next reply

Step 6.
OTL - Download
Please download OTL.exe by Old Timer and save it to your Desktop.

OTL Scan
Important! Close all applications and windows so that you have nothing open and are at your Desktop.
  1. Right click on OTL.exe, select "Run As Administrator..." to run it. If prompted by UAC, please allow it.
  2. Under Output, ensure that Standard Output is selected.
  3. Check the boxes labeled:
    • Scan All Users
    • LOP check
    • Purity check
    • Extra Registry > Use SafeList
  4. Click on Run Scan at the top left hand corner.
  5. When done, two Notepad files will open.
    • OTL.txt <-- Will be opened, maximized
    • Extras.txt <-- Will be minimized on task bar.
  6. Please post the contents of both OTL.txt and Extras.txt files in your next reply.

Please post each log separately to prevent it being cut off by the forum post size limiter.
Check each after you've posted it to make sure it's all present, if any log is cut off you'll have to post it in sections....

Please include in your next reply:
  1. Do you have any problems executing the instructions?
  2. Contents of the AdwCleaner[Sn].txt log file
  3. Contents of the JRT.txt log file
  4. Contents of the TDSSKiller_version_dd.mm.yyyy_hh.mm.ss_log.txt log file
  5. Contents of a OTL.txt log file
  6. Contents of a Extras.txt log file
  7. Do you see any changes in computer behavior?

Thanks,
pgmigg

Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
MRU Teacher
MRU Teacher
 
Posts: 3180
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: Computer much slower than usual, almost unusable

Unread postby Ratagin » May 21st, 2015, 11:29 pm

I uninstalled all programs you asked, but Java Auto Updater was not even listed... so I couldn't uninstall it.

The link: general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner did not work, even if I added http:// before it. I got a 404 error, so I downloaded from bleepingcomputer.

The next several posts contain everything you asked me to insall/report:

# AdwCleaner v4.205 - Logfile created 21/05/2015 at 21:58:07
# Updated 21/05/2015 by Xplode
# Database : 2015-05-21.2 [Local]
# Operating system : Windows Vista (TM) Home Basic Service Pack 2 (x86)
# Username : Matt - MATT-PC
# Running from : C:\Users\Matt\Downloads\AdwCleaner.exe
# Option : Cleaning

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Driver Mender
Folder Deleted : C:\Users\Matt\AppData\Local\PackageAware
Folder Deleted : C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
[/!\] Not Deleted ( Junction ) : C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
File Deleted : C:\Program Files\Mozilla Firefox\defaults\pref\itms.js

***** [ Scheduled tasks ] *****

Task Deleted : RegistryBooster

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Key Deleted : HKCU\Software\Headlight
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\SOFTWARE\Uniblue

***** [ Web browsers ] *****

-\\ Internet Explorer v9.0.8112.16644


-\\ Mozilla Firefox v33.0.2 (x86 en-US)


-\\ Google Chrome v

[C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Deleted [Extension] : eofcbnmajmjmplflapaojjnihcjkigck
[C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Deleted [Extension] : eofcbnmajmjmplflapaojjnihcjkigck

*************************

AdwCleaner[R0].txt - [1788 bytes] - [21/05/2015 21:41:45]
AdwCleaner[S0].txt - [1668 bytes] - [21/05/2015 21:58:07]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1727 bytes] ##########
Ratagin
Regular Member
 
Posts: 28
Joined: September 21st, 2011, 8:53 pm

Re: Computer much slower than usual, almost unusable

Unread postby Ratagin » May 21st, 2015, 11:30 pm

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.7.6 (05.21.2015:1)
OS: Windows Vista (TM) Home Basic x86
Ran by Matt on Thu 05/21/2015 at 22:16:06.91
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Tasks



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{EA5CA8B6-9B9C-4994-A7A1-947B6C631BE7}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{B2FF4056-06AE-4490-86BC-CF3B31A3447D}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA5CA8B6-9B9C-4994-A7A1-947B6C631BE7}



~~~ Files



~~~ Folders

Successfully deleted: [Empty Folder] C:\Users\Matt\appdata\local\{301528B7-DF38-4FC3-9819-4D45F5D6C976}
Successfully deleted: [Empty Folder] C:\Users\Matt\appdata\local\{507923BA-A124-4131-95C3-3F8FD3FD35D4}
Successfully deleted: [Empty Folder] C:\Users\Matt\appdata\local\{FA7EF724-DE8C-4464-93C8-B4E1B406462B}
Successfully deleted: [Folder] C:\ProgramData\pcdr
Successfully deleted: [Folder] C:\Users\Matt\AppData\Roaming\getrighttogo



~~~ FireFox

Successfully deleted: [Folder] C:\Users\Matt\AppData\Roaming\mozilla\firefox\profiles\9pfopnr9.default\extensions\staged
Emptied folder: C:\Users\Matt\AppData\Roaming\mozilla\firefox\profiles\9pfopnr9.default\minidumps [19 files]



~~~ Chrome

Successfully deleted: [Folder] C:\Users\Matt\appdata\local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 05/21/2015 at 22:23:30.85
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Ratagin
Regular Member
 
Posts: 28
Joined: September 21st, 2011, 8:53 pm

Re: Computer much slower than usual, almost unusable

Unread postby Ratagin » May 21st, 2015, 11:37 pm

22:27:15.0411 0x0e04 TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
22:27:21.0562 0x0e04 ============================================================
22:27:21.0562 0x0e04 Current date / time: 2015/05/21 22:27:21.0562
22:27:21.0562 0x0e04 SystemInfo:
22:27:21.0562 0x0e04
22:27:21.0562 0x0e04 OS Version: 6.0.6002 ServicePack: 2.0
22:27:21.0562 0x0e04 Product type: Workstation
22:27:21.0562 0x0e04 ComputerName: MATT-PC
22:27:21.0562 0x0e04 UserName: Matt
22:27:21.0562 0x0e04 Windows directory: C:\Windows
22:27:21.0562 0x0e04 System windows directory: C:\Windows
22:27:21.0578 0x0e04 Processor architecture: Intel x86
22:27:21.0578 0x0e04 Number of processors: 2
22:27:21.0578 0x0e04 Page size: 0x1000
22:27:21.0578 0x0e04 Boot type: Normal boot
22:27:21.0578 0x0e04 ============================================================
22:27:21.0937 0x0e04 KLMD registered as C:\Windows\system32\drivers\21191901.sys
22:27:22.0358 0x0e04 System UUID: {DF3B172F-95BC-755C-386D-0C870082D9EA}
22:27:23.0540 0x0e04 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:27:23.0555 0x0e04 ============================================================
22:27:23.0555 0x0e04 \Device\Harddisk0\DR0:
22:27:23.0555 0x0e04 MBR partitions:
22:27:23.0555 0x0e04 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1D4C000
22:27:23.0555 0x0e04 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D60000, BlocksNum 0x1B465170
22:27:23.0555 0x0e04 ============================================================
22:27:23.0575 0x0e04 C: <-> \Device\Harddisk0\DR0\Partition2
22:27:23.0638 0x0e04 D: <-> \Device\Harddisk0\DR0\Partition1
22:27:23.0638 0x0e04 ============================================================
22:27:23.0638 0x0e04 Initialize success
22:27:23.0638 0x0e04 ============================================================
22:28:10.0069 0x1360 ============================================================
22:28:10.0069 0x1360 Scan started
22:28:10.0069 0x1360 Mode: Manual;
22:28:10.0069 0x1360 ============================================================
22:28:10.0069 0x1360 KSN ping started
22:28:10.0621 0x1360 KSN ping finished: true
22:28:11.0569 0x1360 ================ Scan system memory ========================
22:28:11.0569 0x1360 System memory - ok
22:28:11.0569 0x1360 ================ Scan services =============================
22:28:11.0944 0x1360 [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys
22:28:11.0975 0x1360 ACPI - ok
22:28:12.0168 0x1360 [ 4C72FDD915D62EAEF149BD9C73AB9CF4, 8EA45A1B88DFD819F0ADA3AF36D464E1BF52574269592370E0CC8D0490680E1F ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
22:28:12.0184 0x1360 AdobeARMservice - ok
22:28:12.0324 0x1360 [ B04A4810C6CC205F9DC72DC22E4AB236, 547321F5C28C80D4818372D65E2A33D4BAC593015DD6613B24586FE4B4A95D5D ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
22:28:12.0355 0x1360 AdobeFlashPlayerUpdateSvc - ok
22:28:12.0433 0x1360 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
22:28:12.0464 0x1360 adp94xx - ok
22:28:12.0496 0x1360 [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci C:\Windows\system32\drivers\adpahci.sys
22:28:12.0511 0x1360 adpahci - ok
22:28:12.0542 0x1360 [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
22:28:12.0542 0x1360 adpu160m - ok
22:28:12.0589 0x1360 [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
22:28:12.0589 0x1360 adpu320 - ok
22:28:12.0667 0x1360 [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:28:12.0667 0x1360 AeLookupSvc - ok
22:28:12.0837 0x1360 [ 087B04CA45E2F059A55709B0B8F95EA9, 0B90163B9E2ECF9C840AA4AFEFC4D1E7392F91E27ED533D560550702F7C6C886 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_ae0b52e0\aestsrv.exe
22:28:12.0853 0x1360 AESTFilters - ok
22:28:12.0936 0x1360 [ F5272A105F59A7B3B345D9D6D87DA7AD, 9E84776994D04240BF2537330DBB555EDE16DFCFC59DEDCBA05A44ED7F70BEFA ] AFD C:\Windows\system32\drivers\afd.sys
22:28:12.0967 0x1360 AFD - ok
22:28:13.0035 0x1360 [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440 C:\Windows\system32\drivers\agp440.sys
22:28:13.0035 0x1360 agp440 - ok
22:28:13.0136 0x1360 [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
22:28:13.0136 0x1360 aic78xx - ok
22:28:13.0204 0x1360 [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe
22:28:13.0220 0x1360 ALG - ok
22:28:13.0220 0x1360 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide C:\Windows\system32\drivers\aliide.sys
22:28:13.0220 0x1360 aliide - ok
22:28:13.0236 0x1360 [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp C:\Windows\system32\drivers\amdagp.sys
22:28:13.0251 0x1360 amdagp - ok
22:28:13.0251 0x1360 [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide C:\Windows\system32\drivers\amdide.sys
22:28:13.0267 0x1360 amdide - ok
22:28:13.0267 0x1360 [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
22:28:13.0268 0x1360 AmdK7 - ok
22:28:13.0268 0x1360 [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
22:28:13.0273 0x1360 AmdK8 - ok
22:28:13.0367 0x1360 [ 448DA519F3B6FFA158C513156053181E, AA37D1F9CAE0D92A381F2F95E980C5ABD688DB115DD79F9B3DBBCCF9715BEF7A ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
22:28:13.0369 0x1360 ApfiltrService - ok
22:28:13.0451 0x1360 [ 8F7D200717A58E9800D391F4C2101577, F07CF0F5636F46D8F3D5133284943E991E8739E5A644BCA5F18BB896B374620D ] Appinfo C:\Windows\System32\appinfo.dll
22:28:13.0451 0x1360 Appinfo - ok
22:28:13.0636 0x1360 [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:28:13.0636 0x1360 Apple Mobile Device - ok
22:28:13.0668 0x1360 [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc C:\Windows\system32\drivers\arc.sys
22:28:13.0668 0x1360 arc - ok
22:28:13.0720 0x1360 [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas C:\Windows\system32\drivers\arcsas.sys
22:28:13.0736 0x1360 arcsas - ok
22:28:13.0896 0x1360 [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
22:28:13.0901 0x1360 aspnet_state - ok
22:28:13.0986 0x1360 [ FE99FCB91E93BC4A7E222928A06411DE, C0F9A2A6324B17D435A7C62EB133E3E529D5622ED83C65E48F092CAB79D9A787 ] aswHwid C:\Windows\system32\drivers\aswHwid.sys
22:28:13.0986 0x1360 aswHwid - ok
22:28:14.0042 0x1360 [ 5D70C1C6C61C5A034BD086AD219A0237, 318C3CC5AF2A4B99C6C3938B36C95ECA63EABC5E93A2A3D7C729BA0BF191CDF1 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
22:28:14.0048 0x1360 aswMonFlt - ok
22:28:14.0061 0x1360 [ 794B69DB528D35FB8F0BA5D0BB8736AF, 1AB85734DDE2C5F8FD31F9D9184C4E17768AFE12215A6D1F9D745E7CD1608783 ] aswRdr C:\Windows\system32\drivers\aswRdr.sys
22:28:14.0065 0x1360 aswRdr - ok
22:28:14.0178 0x1360 [ 74E84C8CEB52042E8A1EA3104D151843, B9D1ADC6A0FF31EE18E2EECCCC3D98C41FAE9E37295A0F555DAB59D0B6028A6E ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
22:28:14.0178 0x1360 aswRvrt - ok
22:28:14.0367 0x1360 [ 48FA0C8E04A37A619C894A1C02D5AB96, F79C7252D0C578F827EED28630D97F2B5E3B361F920AF626343D8A71CDD86288 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
22:28:14.0414 0x1360 aswSnx - ok
22:28:14.0508 0x1360 [ 2AB454C9C10C427738426C06D3749361, BC604BC9006CF52520FA962055F391A806B7452639640F13516B151E34517643 ] aswSP C:\Windows\system32\drivers\aswSP.sys
22:28:14.0539 0x1360 aswSP - ok
22:28:14.0648 0x1360 [ C62E0261EC93B66151E5BAE83B61EE30, 502304CC323F17A85679F12A52E5B0AF8062652A9BBD9C4C1C62DE7C5C62556B ] aswTap C:\Windows\system32\DRIVERS\aswTap.sys
22:28:14.0664 0x1360 aswTap - ok
22:28:14.0726 0x1360 [ F6AB3DD747DA3505B3E8F0532905A21F, 52828A956B16B2491E805A78C6D2B03E6E72AD482ED3A3A47C1E1321196B8A8F ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
22:28:14.0742 0x1360 aswTdi - ok
22:28:14.0835 0x1360 [ 0AE22EAD6B30E448160338E708BCB71D, 4657A7C60635B916FFBC0A731D52E944FDDE6B052AD0DBD0848C3C7A5C15DD0D ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
22:28:14.0851 0x1360 aswVmm - ok
22:28:14.0882 0x1360 [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:28:14.0882 0x1360 AsyncMac - ok
22:28:14.0960 0x1360 [ 0D83C87A801A3DFCD1BF73893FE7518C, 0EEB3DFFC73B370CEBB6C5115ADC769C38B2993F0EAC0EA19E273773390DA82F ] atapi C:\Windows\system32\drivers\atapi.sys
22:28:14.0960 0x1360 atapi - ok
22:28:15.0054 0x1360 [ 8E98A99187FF17FC1D48E6FAFFD870BE, 7C935191A0A2BA95CA9A9E450F7C8802E6184F73BC297E91908B59F34C22AB06 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:28:15.0069 0x1360 AudioEndpointBuilder - ok
22:28:15.0101 0x1360 [ 8E98A99187FF17FC1D48E6FAFFD870BE, 7C935191A0A2BA95CA9A9E450F7C8802E6184F73BC297E91908B59F34C22AB06 ] Audiosrv C:\Windows\System32\Audiosrv.dll
22:28:15.0116 0x1360 Audiosrv - ok
22:28:15.0267 0x1360 [ 210A326658D72D7F2EE2267F3D9C44D4, 25BC620209B5F4BCF5C3F323290E41255F68660F3DFF901FA5A78423A7293D73 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
22:28:15.0298 0x1360 avast! Antivirus - ok
22:28:15.0688 0x1360 [ 5019A83BE87FD8B60F7333901BFD35E5, 674DF51CAA1B6C0BC9CA9755B3BC5A9A71C583BD7C7A2826BD280E107B855092 ] AvastVBoxSvc C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
22:28:16.0079 0x1360 AvastVBoxSvc - ok
22:28:16.0175 0x1360 [ 423C7B87E886AC93D22936EA82665F83, 98B807D855A746E68525AEEBB6D45AF418861C2111D7F8493A8A6FB59F6C6F8E ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
22:28:16.0178 0x1360 BCM42RLY - ok
22:28:16.0315 0x1360 [ 41A70777E892C3DEA606758366566A77, 8304837FE38415EB8E4C0749E25FAC9D090E32E6526368AF6970B7721DBF3FB6 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys
22:28:16.0385 0x1360 BCM43XX - ok
22:28:16.0466 0x1360 [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys
22:28:16.0468 0x1360 Beep - ok
22:28:16.0583 0x1360 [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE C:\Windows\System32\bfe.dll
22:28:16.0584 0x1360 BFE - ok
22:28:16.0820 0x1360 [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS C:\Windows\system32\qmgr.dll
22:28:16.0883 0x1360 BITS - ok
22:28:16.0965 0x1360 [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
22:28:16.0965 0x1360 blbdrive - ok
22:28:17.0153 0x1360 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:28:17.0169 0x1360 Bonjour Service - ok
22:28:17.0253 0x1360 [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:28:17.0268 0x1360 bowser - ok
22:28:17.0268 0x1360 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
22:28:17.0284 0x1360 BrFiltLo - ok
22:28:17.0284 0x1360 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
22:28:17.0284 0x1360 BrFiltUp - ok
22:28:17.0362 0x1360 [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll
22:28:17.0377 0x1360 Browser - ok
22:28:17.0393 0x1360 [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys
22:28:17.0393 0x1360 Brserid - ok
22:28:17.0409 0x1360 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
22:28:17.0409 0x1360 BrSerWdm - ok
22:28:17.0424 0x1360 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
22:28:17.0424 0x1360 BrUsbMdm - ok
22:28:17.0440 0x1360 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
22:28:17.0440 0x1360 BrUsbSer - ok
22:28:17.0455 0x1360 [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
22:28:17.0455 0x1360 BTHMODEM - ok
22:28:17.0502 0x1360 [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:28:17.0518 0x1360 cdfs - ok
22:28:17.0580 0x1360 [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:28:17.0580 0x1360 cdrom - ok
22:28:17.0674 0x1360 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll
22:28:17.0689 0x1360 CertPropSvc - ok
22:28:17.0799 0x1360 [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass C:\Windows\system32\drivers\circlass.sys
22:28:17.0877 0x1360 circlass - ok
22:28:18.0126 0x1360 [ 5D9311526801643000D7032A83B18B12, C5A98868A41446617B3A27C6C4AAFA4E7C093E253E8C1DD5DBFE6FAE21991209 ] CLFS C:\Windows\system32\CLFS.sys
22:28:18.0338 0x1360 CLFS - ok
22:28:18.0431 0x1360 [ 6B6943A0CA56B47D6FB2EE476890854F, 6DA779879487F4A187DF54B0362642643D7871AA8F7E30992D781F558C50F052 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:28:18.0447 0x1360 clr_optimization_v2.0.50727_32 - ok
22:28:18.0525 0x1360 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:28:18.0525 0x1360 clr_optimization_v4.0.30319_32 - ok
22:28:18.0572 0x1360 [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
22:28:18.0572 0x1360 CmBatt - ok
22:28:18.0618 0x1360 [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:28:18.0696 0x1360 cmdide - ok
22:28:18.0852 0x1360 [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
22:28:18.0852 0x1360 Compbatt - ok
22:28:18.0868 0x1360 COMSysApp - ok
22:28:19.0368 0x1360 cpuz132 - ok
22:28:19.0467 0x1360 [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
22:28:19.0467 0x1360 crcdisk - ok
22:28:19.0604 0x1360 [ C8BD651E13895B93ED9EC5B4F1DF42BC, D86D6BF0BA3C09B49B3A52C86A7F3B3856A27F79EDD86A8FFA469D9A5F196E8D ] Creative ALchemy AL6 Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
22:28:19.0620 0x1360 Creative ALchemy AL6 Licensing Service - ok
22:28:19.0709 0x1360 [ C0EAD9F8AB83D41FF07303C75589C2B8, C89CAC39BCD2FA2DCC56D7EE84FF66127BCECCAE400E119FE41BF4C4D769504B ] Creative Audio Engine Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
22:28:19.0772 0x1360 Creative Audio Engine Licensing Service - ok
22:28:19.0871 0x1360 [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe C:\Windows\system32\drivers\crusoe.sys
22:28:19.0967 0x1360 Crusoe - ok
22:28:20.0152 0x1360 [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:28:20.0167 0x1360 CryptSvc - ok
22:28:20.0268 0x1360 [ 24B0B8D3CBB46ED5F16551974AE8D222, E58A214E54C49F01BF860FE6DC075209DFD8D81C0BC2EB95239374AB4F41CC7B ] CTAudSvcService C:\Program Files\Creative\Shared Files\CTAudSvc.exe
22:28:20.0283 0x1360 CTAudSvcService - ok
22:28:20.0377 0x1360 [ 281B2B60B5CB449BCF0474EECF73EBEC, B49D2F11426E6E28E1E5F8CA7DF213067A20A5AB6F0177F31A75162DB07CAE16 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
22:28:20.0393 0x1360 CtClsFlt - ok
22:28:20.0487 0x1360 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:28:20.0533 0x1360 DcomLaunch - ok
22:28:20.0596 0x1360 [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:28:20.0596 0x1360 DfsC - ok
22:28:20.0814 0x1360 [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe
22:28:20.0955 0x1360 DFSR - ok
22:28:21.0079 0x1360 [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
22:28:21.0095 0x1360 Dhcp - ok
22:28:21.0173 0x1360 [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys
22:28:21.0173 0x1360 disk - ok
22:28:21.0251 0x1360 [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:28:21.0251 0x1360 Dnscache - ok
22:28:21.0436 0x1360 [ 0840ABBBDF438691EE65A20040635CBE, F83597ECECFADBA45242B683A19A01ADF84203B016301B64530C7BE8234175E8 ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
22:28:21.0436 0x1360 DockLoginService - ok
22:28:21.0514 0x1360 [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll
22:28:21.0529 0x1360 dot3svc - ok
22:28:21.0592 0x1360 [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll
22:28:21.0607 0x1360 DPS - ok
22:28:21.0670 0x1360 [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:28:21.0685 0x1360 drmkaud - ok
22:28:21.0701 0x1360 dsl-db - ok
22:28:21.0841 0x1360 [ 5C2C209CDEFBC51D83D66E8A53B2BE89, 7AE68672A6BEEF601017BE28AA0BF3673318EFE97AA08E70F58A9391C54DF71F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:28:22.0044 0x1360 DXGKrnl - ok
22:28:22.0153 0x1360 [ 908ED85B7806E8AF3AF5E9B74F7809D4, 9A763D247035578A946094D2C1CE8204E6EDFFD7237C7BF2058B5F4ECC0306E0 ] e1express C:\Windows\system32\DRIVERS\e1e6032.sys
22:28:22.0168 0x1360 e1express - ok
22:28:22.0169 0x1360 [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
22:28:22.0176 0x1360 E1G60 - ok
22:28:22.0270 0x1360 [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll
22:28:22.0271 0x1360 EapHost - ok
22:28:22.0368 0x1360 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache C:\Windows\system32\drivers\ecache.sys
22:28:22.0369 0x1360 Ecache - ok
22:28:22.0453 0x1360 [ E00CDAED2C0DBDC60C6E5D000DEE01E9, ED8A9F9363178AE2BA73367DCD3643C7B82A3BA9CCBA28B6408F9444B9DD8459 ] ElRawDisk C:\Windows\system32\drivers\elrawdsk.sys
22:28:22.0453 0x1360 ElRawDisk - ok
22:28:22.0505 0x1360 [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor C:\Windows\system32\drivers\elxstor.sys
22:28:22.0520 0x1360 elxstor - ok
22:28:22.0651 0x1360 [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
22:28:22.0682 0x1360 EMDMgmt - ok
22:28:22.0754 0x1360 [ F2A80DE2D1B7116052C09CB4D4CA1416, C21E5C078D93AE605E04D251F71B617343C908DF7EF74F96BB5B810052957572 ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:28:22.0770 0x1360 ErrDev - ok
22:28:22.0868 0x1360 [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll
22:28:22.0869 0x1360 EventSystem - ok
22:28:22.0944 0x1360 [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys
22:28:22.0944 0x1360 exfat - ok
22:28:22.0984 0x1360 [ 4E404505B3F62ECFBDBCBBCF0A72DBC5, 9F446ED06A31BFE52C4F1E8ACC400B8E3F47A3CC02FFC950DB861B2B3BA4C5B9 ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:28:22.0995 0x1360 fastfat - ok
22:28:23.0028 0x1360 [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc C:\Windows\system32\DRIVERS\fdc.sys
22:28:23.0028 0x1360 fdc - ok
22:28:23.0082 0x1360 [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll
22:28:23.0087 0x1360 fdPHost - ok
22:28:23.0123 0x1360 [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll
22:28:23.0138 0x1360 FDResPub - ok
22:28:23.0178 0x1360 [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:28:23.0184 0x1360 FileInfo - ok
22:28:23.0227 0x1360 [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:28:23.0242 0x1360 Filetrace - ok
22:28:23.0242 0x1360 [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
22:28:23.0258 0x1360 flpydisk - ok
22:28:23.0322 0x1360 [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:28:23.0337 0x1360 FltMgr - ok
22:28:23.0467 0x1360 [ 7417E869AE5AAC3026329E7749698110, 14545202D90C23EE6A2ADC5627791A3B43B5EEA6F78F44021C9AE2B5B8A351DD ] FontCache C:\Windows\system32\FntCache.dll
22:28:23.0529 0x1360 FontCache - ok
22:28:23.0639 0x1360 [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
22:28:23.0654 0x1360 FontCache3.0.0.0 - ok
22:28:23.0748 0x1360 [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:28:23.0748 0x1360 Fs_Rec - ok
22:28:23.0841 0x1360 [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
22:28:23.0841 0x1360 gagp30kx - ok
22:28:23.0997 0x1360 [ 37331304E89A773B1A86FE681FCA150D, A4A43DB320A10245309EAAA47761624DB8034D74198091480DB78ED39C28F610 ] GameConsoleService C:\Program Files\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
22:28:24.0013 0x1360 GameConsoleService - ok
22:28:24.0075 0x1360 [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:28:24.0091 0x1360 GEARAspiWDM - ok
22:28:24.0185 0x1360 [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll
22:28:24.0216 0x1360 gpsvc - ok
22:28:24.0356 0x1360 [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
22:28:24.0356 0x1360 gupdate - ok
22:28:24.0372 0x1360 [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
22:28:24.0373 0x1360 gupdatem - ok
22:28:24.0474 0x1360 [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
22:28:24.0537 0x1360 HDAudBus - ok
22:28:24.0600 0x1360 [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys
22:28:24.0615 0x1360 HidBth - ok
22:28:24.0615 0x1360 [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr C:\Windows\system32\drivers\hidir.sys
22:28:24.0631 0x1360 HidIr - ok
22:28:24.0725 0x1360 [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\System32\hidserv.dll
22:28:24.0725 0x1360 hidserv - ok
22:28:24.0818 0x1360 [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:28:24.0818 0x1360 HidUsb - ok
22:28:24.0896 0x1360 [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll
22:28:24.0896 0x1360 hkmsvc - ok
22:28:24.0990 0x1360 [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
22:28:24.0990 0x1360 HpCISSs - ok
22:28:25.0099 0x1360 [ 0EEECA26C8D4BDE2A4664DB058A81937, 6F88567A116B1420BE1C9C8888F34D05F51378092C805EF4E489635CF92D416B ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:28:25.0130 0x1360 HTTP - ok
22:28:25.0177 0x1360 [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
22:28:25.0177 0x1360 i2omp - ok
22:28:25.0191 0x1360 [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
22:28:25.0196 0x1360 i8042prt - ok
22:28:25.0353 0x1360 [ 7B96206E4BDD2FE582F0DBC46F5F410E, D27BB43E7EE0C2905FF23C48DBF6F492873F65CAD467F13A2731EB7D3A0CE5DC ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
22:28:25.0368 0x1360 IAANTMON - ok
22:28:25.0467 0x1360 [ 4B80B97CBF0782B3BB3057F88D42C367, 2FD85468F2458710377182EDEB5C668BB2A6C5E86449EB3843C338BD29B4E635 ] iaStor C:\Windows\system32\drivers\iastor.sys
22:28:25.0469 0x1360 iaStor - ok
22:28:25.0570 0x1360 [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
22:28:25.0573 0x1360 iaStorV - ok
22:28:25.0867 0x1360 [ DD386C45D2B5863740166783448A2E7A, 10B912BA70306644BE73A53AF4DCDFF63880C4C5860FF6DBA92B0914EB566718 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:28:25.0905 0x1360 idsvc - ok
22:28:26.0167 0x1360 [ 8DAD27DD28A4274866767C89C0BF154F, E2E285DE595E2DC0E3A38AD79AF2605759B211BA06AE2904A3F0062F7F5ACB5E ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
22:28:26.0338 0x1360 igfx - ok
22:28:26.0436 0x1360 [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys
22:28:26.0436 0x1360 iirsp - ok
22:28:26.0536 0x1360 [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT C:\Windows\System32\ikeext.dll
22:28:26.0567 0x1360 IKEEXT - ok
22:28:26.0583 0x1360 [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide C:\Windows\system32\drivers\intelide.sys
22:28:26.0583 0x1360 intelide - ok
22:28:26.0614 0x1360 [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:28:26.0614 0x1360 intelppm - ok
22:28:26.0676 0x1360 [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:28:26.0707 0x1360 IPBusEnum - ok
22:28:26.0739 0x1360 [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:28:26.0739 0x1360 IpFilterDriver - ok
22:28:26.0817 0x1360 [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:28:26.0832 0x1360 iphlpsvc - ok
22:28:26.0848 0x1360 IpInIp - ok
22:28:26.0879 0x1360 [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
22:28:26.0895 0x1360 IPMIDRV - ok
22:28:26.0910 0x1360 [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
22:28:26.0910 0x1360 IPNAT - ok
22:28:27.0035 0x1360 [ 463790AEF94D8EAB674631257F53252E, A02972457F45AD6816CB5F60DE4CD15D68256695FA0F3E4EAD6F9E36CBE54576 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
22:28:27.0082 0x1360 iPod Service - ok
22:28:27.0097 0x1360 [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:28:27.0097 0x1360 IRENUM - ok
22:28:27.0113 0x1360 [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:28:27.0113 0x1360 isapnp - ok
22:28:27.0191 0x1360 [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
22:28:27.0207 0x1360 iScsiPrt - ok
22:28:27.0222 0x1360 [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
22:28:27.0222 0x1360 iteatapi - ok
22:28:27.0269 0x1360 [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys
22:28:27.0269 0x1360 iteraid - ok
22:28:27.0300 0x1360 [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:28:27.0316 0x1360 kbdclass - ok
22:28:27.0378 0x1360 [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
22:28:27.0378 0x1360 kbdhid - ok
22:28:27.0425 0x1360 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe
22:28:27.0441 0x1360 KeyIso - ok
22:28:27.0509 0x1360 [ 5035EDF1F2E72F78BB1EC5BD9B97463F, 8AFAD580A96F002FFB22761B65D4B414917895C45B11B53089BB3E0331995EF7 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:28:27.0570 0x1360 KSecDD - ok
22:28:27.0652 0x1360 [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll
22:28:27.0683 0x1360 KtmRm - ok
22:28:27.0777 0x1360 [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\System32\srvsvc.dll
22:28:27.0792 0x1360 LanmanServer - ok
22:28:27.0855 0x1360 [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:28:27.0886 0x1360 LanmanWorkstation - ok
22:28:27.0948 0x1360 [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:28:27.0964 0x1360 lltdio - ok
22:28:28.0058 0x1360 [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:28:28.0073 0x1360 lltdsvc - ok
22:28:28.0120 0x1360 [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:28:28.0120 0x1360 lmhosts - ok
22:28:28.0167 0x1360 [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
22:28:28.0182 0x1360 LSI_FC - ok
22:28:28.0214 0x1360 [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
22:28:28.0214 0x1360 LSI_SAS - ok
22:28:28.0245 0x1360 [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
22:28:28.0245 0x1360 LSI_SCSI - ok
22:28:28.0277 0x1360 [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys
22:28:28.0277 0x1360 luafv - ok
22:28:28.0367 0x1360 McAfee SiteAdvisor Service - ok
22:28:28.0404 0x1360 [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas C:\Windows\system32\drivers\megasas.sys
22:28:28.0404 0x1360 megasas - ok
22:28:28.0451 0x1360 [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR C:\Windows\system32\drivers\megasr.sys
22:28:28.0467 0x1360 MegaSR - ok
22:28:28.0604 0x1360 [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
22:28:28.0604 0x1360 Microsoft Office Groove Audit Service - ok
22:28:28.0651 0x1360 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll
22:28:28.0667 0x1360 MMCSS - ok
22:28:28.0668 0x1360 [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys
22:28:28.0688 0x1360 Modem - ok
22:28:28.0720 0x1360 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:28:28.0720 0x1360 monitor - ok
22:28:28.0751 0x1360 [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:28:28.0766 0x1360 mouclass - ok
22:28:28.0820 0x1360 [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:28:28.0836 0x1360 mouhid - ok
22:28:28.0851 0x1360 [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
22:28:28.0851 0x1360 MountMgr - ok
22:28:28.0936 0x1360 [ A5F6ADC56FA516594E99C328A7E7FD54, 6FB011B00B8AB085F3083E967B89BBFCA1AC7677407E9E72AD582CCC8212D136 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
22:28:28.0952 0x1360 MozillaMaintenance - ok
22:28:28.0969 0x1360 [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio C:\Windows\system32\drivers\mpio.sys
22:28:28.0974 0x1360 mpio - ok
22:28:29.0020 0x1360 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:28:29.0020 0x1360 mpsdrv - ok
22:28:29.0120 0x1360 [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc C:\Windows\system32\mpssvc.dll
22:28:29.0152 0x1360 MpsSvc - ok
22:28:29.0174 0x1360 [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
22:28:29.0207 0x1360 Mraid35x - ok
22:28:29.0254 0x1360 [ B0584CA7DEF55929FDB5169BD28B2484, AF6A7E404FEB29F7F3428D0AF6682195E5E8ED106996A04E6947DBD575696546 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:28:29.0254 0x1360 MRxDAV - ok
22:28:29.0336 0x1360 [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:28:29.0351 0x1360 mrxsmb - ok
22:28:29.0420 0x1360 [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:28:29.0421 0x1360 mrxsmb10 - ok
22:28:29.0467 0x1360 [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:28:29.0467 0x1360 mrxsmb20 - ok
22:28:29.0472 0x1360 [ F70590424EEFBF5C27A40C67AFDB8383, 1F2AC1DA12F7E6F09D8F6622EF1366ABD4B86EBE51DD1915E803D56A568A3412 ] msahci C:\Windows\system32\drivers\msahci.sys
22:28:29.0505 0x1360 msahci - ok
22:28:29.0520 0x1360 [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:28:29.0520 0x1360 msdsm - ok
22:28:29.0569 0x1360 [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe
22:28:29.0584 0x1360 MSDTC - ok
22:28:29.0638 0x1360 [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:28:29.0638 0x1360 Msfs - ok
22:28:29.0703 0x1360 [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:28:29.0708 0x1360 msisadrv - ok
22:28:29.0773 0x1360 [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:28:29.0787 0x1360 MSiSCSI - ok
22:28:29.0796 0x1360 msiserver - ok
22:28:29.0807 0x1360 [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:28:29.0824 0x1360 MSKSSRV - ok
22:28:29.0840 0x1360 [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:28:29.0840 0x1360 MSPCLOCK - ok
22:28:29.0856 0x1360 [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:28:29.0856 0x1360 MSPQM - ok
22:28:29.0918 0x1360 [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:28:29.0934 0x1360 MsRPC - ok
22:28:29.0965 0x1360 [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
22:28:29.0965 0x1360 mssmbios - ok
22:28:29.0996 0x1360 [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:28:29.0996 0x1360 MSTEE - ok
22:28:30.0027 0x1360 [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys
22:28:30.0043 0x1360 Mup - ok
22:28:30.0121 0x1360 [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll
22:28:30.0152 0x1360 napagent - ok
22:28:30.0214 0x1360 [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:28:30.0230 0x1360 NativeWifiP - ok
22:28:30.0339 0x1360 [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS C:\Windows\system32\drivers\ndis.sys
22:28:30.0370 0x1360 NDIS - ok
22:28:30.0433 0x1360 [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:28:30.0448 0x1360 NdisTapi - ok
22:28:30.0448 0x1360 [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:28:30.0448 0x1360 Ndisuio - ok
22:28:30.0526 0x1360 [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:28:30.0526 0x1360 NdisWan - ok
22:28:30.0558 0x1360 [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:28:30.0558 0x1360 NDProxy - ok
22:28:30.0574 0x1360 [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:28:30.0574 0x1360 NetBIOS - ok
22:28:30.0648 0x1360 [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys
22:28:30.0661 0x1360 netbt - ok
22:28:30.0752 0x1360 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe
22:28:30.0752 0x1360 Netlogon - ok
22:28:30.0845 0x1360 [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll
22:28:30.0876 0x1360 Netman - ok
22:28:31.0032 0x1360 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:28:31.0048 0x1360 NetMsmqActivator - ok
22:28:31.0064 0x1360 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:28:31.0064 0x1360 NetPipeActivator - ok
22:28:31.0110 0x1360 [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll
22:28:31.0142 0x1360 netprofm - ok
22:28:31.0173 0x1360 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:28:31.0188 0x1360 NetTcpActivator - ok
22:28:31.0204 0x1360 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:28:31.0220 0x1360 NetTcpPortSharing - ok
22:28:31.0266 0x1360 [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
22:28:31.0282 0x1360 nfrd960 - ok
22:28:31.0360 0x1360 [ C96411DD46AABC0D6F3CF06D0E0E7E14, 0D36F322AF1B923D96735BFFCAC3FDB0B282E59220BADAB8B49AC178A6765380 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:28:31.0376 0x1360 NlaSvc - ok
22:28:31.0436 0x1360 [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:28:31.0452 0x1360 Npfs - ok
22:28:31.0505 0x1360 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi C:\Windows\system32\nsisvc.dll
22:28:31.0520 0x1360 nsi - ok
22:28:31.0536 0x1360 [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:28:31.0536 0x1360 nsiproxy - ok
22:28:31.0668 0x1360 [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:28:31.0751 0x1360 Ntfs - ok
22:28:31.0820 0x1360 [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
22:28:31.0836 0x1360 ntrigdigi - ok
22:28:31.0851 0x1360 [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null C:\Windows\system32\drivers\Null.sys
22:28:31.0851 0x1360 Null - ok
22:28:31.0868 0x1360 [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:28:31.0871 0x1360 nvraid - ok
22:28:31.0907 0x1360 [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:28:31.0907 0x1360 nvstor - ok
22:28:31.0938 0x1360 [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:28:31.0954 0x1360 nv_agp - ok
22:28:31.0954 0x1360 NwlnkFlt - ok
22:28:31.0970 0x1360 NwlnkFwd - ok
22:28:32.0036 0x1360 [ 2CF21D5F8F1B74BB1922135AC2B12DDB, A6D6296A5477CB2AF7252CB1A0C4B5C384D0BFAE9F4860CAB466209BDC72C747 ] OA009Ufd C:\Windows\system32\DRIVERS\OA009Ufd.sys
22:28:32.0052 0x1360 OA009Ufd - ok
22:28:32.0076 0x1360 [ 636C6EE8BB6EC473B8FE221EFF77E0CC, 5996BE7E14645ACDE3F7D91C8854C930D75173F5B579EC5D0705253EF1A226AC ] OA009Vid C:\Windows\system32\DRIVERS\OA009Vid.sys
22:28:32.0116 0x1360 OA009Vid - ok
22:28:32.0236 0x1360 [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:28:32.0268 0x1360 odserv - ok
22:28:32.0336 0x1360 [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:28:32.0336 0x1360 ohci1394 - ok
22:28:32.0404 0x1360 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:28:32.0420 0x1360 ose - ok
22:28:32.0519 0x1360 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc C:\Windows\system32\p2psvc.dll
22:28:32.0566 0x1360 p2pimsvc - ok
22:28:32.0606 0x1360 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc C:\Windows\system32\p2psvc.dll
22:28:32.0653 0x1360 p2psvc - ok
22:28:32.0736 0x1360 [ 9D80E0BE979C3EDAF2863F23B88F4DE6, F257ED0D25E3F60ADEEF6F8BDFB46BA30779F066F20B69ACA3D2C79E8AEABB70 ] Packet C:\Windows\system32\DRIVERS\packet.sys
22:28:32.0736 0x1360 Packet - ok
22:28:32.0798 0x1360 [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport C:\Windows\system32\drivers\parport.sys
22:28:32.0814 0x1360 Parport - ok
22:28:32.0876 0x1360 [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:28:32.0876 0x1360 partmgr - ok
22:28:32.0892 0x1360 [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
22:28:32.0892 0x1360 Parvdm - ok
22:28:32.0970 0x1360 [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc C:\Windows\System32\pcasvc.dll
22:28:32.0985 0x1360 PcaSvc - ok
22:28:33.0250 0x1360 [ 42EDE7D217325FF56CB8A9983CD7F73B, 5594ADBD2447FCE166E2FBFBE38AA249B9C53D7D949F5D99DA43A52CDF3E939A ] PCD5SRVC{3F6A8B78-EC003E00-05040104} C:\PROGRA~1\DELLSU~1\HWDiag\bin\PCD5SRVC.pkms
22:28:33.0282 0x1360 PCD5SRVC{3F6A8B78-EC003E00-05040104} - ok
22:28:33.0360 0x1360 [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci C:\Windows\system32\drivers\pci.sys
22:28:33.0375 0x1360 pci - ok
22:28:33.0422 0x1360 [ FC175F5DDAB666D7F4D17449A547626F, 7D6108213D1AD3F97A3B83E491BCCC7D6F5BC72C32A182BDDE8736851A26C8D2 ] pciide C:\Windows\system32\drivers\pciide.sys
22:28:33.0422 0x1360 pciide - ok
22:28:33.0484 0x1360 [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
22:28:33.0500 0x1360 pcmcia - ok
22:28:33.0594 0x1360 [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:28:33.0656 0x1360 PEAUTH - ok
22:28:33.0836 0x1360 [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla C:\Windows\system32\pla.dll
22:28:33.0946 0x1360 pla - ok
22:28:34.0024 0x1360 [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:28:34.0055 0x1360 PlugPlay - ok
22:28:34.0117 0x1360 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
22:28:34.0180 0x1360 PNRPAutoReg - ok
22:28:34.0226 0x1360 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc C:\Windows\system32\p2psvc.dll
22:28:34.0273 0x1360 PNRPsvc - ok
22:28:34.0367 0x1360 [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:28:34.0398 0x1360 PolicyAgent - ok
22:28:34.0476 0x1360 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:28:34.0476 0x1360 PptpMiniport - ok
22:28:34.0479 0x1360 [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor C:\Windows\system32\drivers\processr.sys
22:28:34.0485 0x1360 Processor - ok
22:28:34.0569 0x1360 [ 0D5DAD610D7EA1627581ED06FB2BAA9A, 6E27CF3A1624AE10EECB8B5F38E03D76A6AABE4E75DD66DEDD67E0773935A396 ] ProfSvc C:\Windows\system32\profsvc.dll
22:28:34.0570 0x1360 ProfSvc - ok
22:28:34.0585 0x1360 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
22:28:34.0592 0x1360 ProtectedStorage - ok
22:28:34.0671 0x1360 [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
22:28:34.0671 0x1360 PSched - ok
22:28:34.0751 0x1360 [ 03E0FE281823BA64B3782F5B38950E73, D47E5536AD28D02B7D784846CFB2F4FD96187BFD64FC07BACDE9DC7B75D1D2E2 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
22:28:34.0751 0x1360 PxHelp20 - ok
22:28:34.0856 0x1360 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300 C:\Windows\system32\drivers\ql2300.sys
22:28:34.0936 0x1360 ql2300 - ok
22:28:34.0970 0x1360 [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
22:28:34.0979 0x1360 ql40xx - ok
22:28:35.0057 0x1360 [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE C:\Windows\system32\qwave.dll
22:28:35.0073 0x1360 QWAVE - ok
22:28:35.0075 0x1360 [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:28:35.0079 0x1360 QWAVEdrv - ok
22:28:35.0271 0x1360 [ E642B131FB74CAF4BB8A014F31113142, 18A81B27FB2DA556AC51DBA8956203A6E821D75B2B09F11049250E732318F573 ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys
22:28:35.0420 0x1360 R300 - ok
22:28:35.0535 0x1360 [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:28:35.0535 0x1360 RasAcd - ok
22:28:35.0619 0x1360 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto C:\Windows\System32\rasauto.dll
22:28:35.0635 0x1360 RasAuto - ok
22:28:35.0703 0x1360 [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:28:35.0703 0x1360 Rasl2tp - ok
22:28:35.0767 0x1360 [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan C:\Windows\System32\rasmans.dll
22:28:35.0821 0x1360 RasMan - ok
22:28:35.0883 0x1360 [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:28:35.0883 0x1360 RasPppoe - ok
22:28:35.0946 0x1360 [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:28:35.0961 0x1360 RasSstp - ok
22:28:36.0039 0x1360 [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:28:36.0055 0x1360 rdbss - ok
22:28:36.0117 0x1360 [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:28:36.0117 0x1360 RDPCDD - ok
22:28:36.0149 0x1360 [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
22:28:36.0164 0x1360 rdpdr - ok
22:28:36.0180 0x1360 [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:28:36.0180 0x1360 RDPENCDD - ok
22:28:36.0258 0x1360 [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:28:36.0273 0x1360 RDPWD - ok
22:28:36.0367 0x1360 [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess C:\Windows\System32\mprdim.dll
22:28:36.0383 0x1360 RemoteAccess - ok
22:28:36.0445 0x1360 [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:28:36.0461 0x1360 RemoteRegistry - ok
22:28:36.0523 0x1360 [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe
22:28:36.0523 0x1360 RpcLocator - ok
22:28:36.0632 0x1360 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs C:\Windows\system32\rpcss.dll
22:28:36.0663 0x1360 RpcSs - ok
22:28:36.0741 0x1360 [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:28:36.0741 0x1360 rspndr - ok
22:28:36.0791 0x1360 [ D1FB9A678BD6C2B1129FCB09D5FEB6DD, 61E74F62B2599EAC2322EB7B448E85026B43CF9760582BD95A4B326D3ADEBAE3 ] RTSTOR C:\Windows\system32\drivers\RTSTOR.SYS
22:28:36.0798 0x1360 RTSTOR - ok
22:28:36.0818 0x1360 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs C:\Windows\system32\lsass.exe
22:28:36.0826 0x1360 SamSs - ok
22:28:36.0872 0x1360 [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:28:36.0873 0x1360 sbp2port - ok
22:28:36.0952 0x1360 [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:28:36.0967 0x1360 SCardSvr - ok
22:28:37.0077 0x1360 [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule C:\Windows\system32\schedsvc.dll
22:28:37.0123 0x1360 Schedule - ok
22:28:37.0186 0x1360 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc C:\Windows\System32\certprop.dll
22:28:37.0186 0x1360 SCPolicySvc - ok
22:28:37.0264 0x1360 [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:28:37.0279 0x1360 SDRSVC - ok
22:28:37.0295 0x1360 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:28:37.0295 0x1360 secdrv - ok
22:28:37.0311 0x1360 [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon C:\Windows\system32\seclogon.dll
22:28:37.0326 0x1360 seclogon - ok
22:28:37.0357 0x1360 [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS C:\Windows\system32\sens.dll
22:28:37.0357 0x1360 SENS - ok
22:28:37.0420 0x1360 [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum C:\Windows\system32\drivers\serenum.sys
22:28:37.0420 0x1360 Serenum - ok
22:28:37.0435 0x1360 [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial C:\Windows\system32\drivers\serial.sys
22:28:37.0451 0x1360 Serial - ok
22:28:37.0451 0x1360 [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse C:\Windows\system32\drivers\sermouse.sys
22:28:37.0467 0x1360 sermouse - ok
22:28:37.0498 0x1360 [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv C:\Windows\system32\sessenv.dll
22:28:37.0513 0x1360 SessionEnv - ok
22:28:37.0529 0x1360 [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:28:37.0529 0x1360 sffdisk - ok
22:28:37.0545 0x1360 [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:28:37.0545 0x1360 sffp_mmc - ok
22:28:37.0560 0x1360 [ 3D0EA348784B7AC9EA9BD9F317980979, 2500CE188C9B71C50E966FA575303AEFE50934E376C530AECEC7C7533C15EF08 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:28:37.0560 0x1360 sffp_sd - ok
22:28:37.0576 0x1360 [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
22:28:37.0576 0x1360 sfloppy - ok
22:28:37.0672 0x1360 [ 89C8CE6971A3E571176348E237018C0A, A37C56F75E1D35FA2DCD8700E6FBFAA9746852F41940CA300197239D4D49E7CD ] SftService C:\Windows\sminst\sftservice.EXE
22:28:37.0737 0x1360 SftService - ok
22:28:37.0836 0x1360 [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:28:37.0867 0x1360 SharedAccess - ok
22:28:37.0950 0x1360 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:28:37.0967 0x1360 ShellHWDetection - ok
22:28:38.0050 0x1360 [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp C:\Windows\system32\drivers\sisagp.sys
22:28:38.0050 0x1360 sisagp - ok
22:28:38.0070 0x1360 [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
22:28:38.0089 0x1360 SiSRaid2 - ok
22:28:38.0105 0x1360 [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
22:28:38.0120 0x1360 SiSRaid4 - ok
22:28:38.0268 0x1360 [ 704B4F81729F676BBF034529FC334D82, 1E50DAF97836807A500284385D99272780A8B69CA88761250451060B207824F8 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
22:28:38.0312 0x1360 SkypeUpdate - ok
22:28:38.0590 0x1360 [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc C:\Windows\system32\SLsvc.exe
22:28:38.0866 0x1360 slsvc - ok
22:28:38.0952 0x1360 [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify C:\Windows\system32\SLUINotify.dll
22:28:38.0967 0x1360 SLUINotify - ok
22:28:39.0045 0x1360 [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:28:39.0045 0x1360 Smb - ok
22:28:39.0123 0x1360 [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:28:39.0139 0x1360 SNMPTRAP - ok
22:28:39.0217 0x1360 [ 9B24DCA429F819DB314F30EE4C6C80FD, 0B06FB847637EB0EB8766C2BDE6E3F47AEC21E9D88F42EC707B9C93D49AAB7CB ] Sound Blaster X-Fi MB Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\XMBLicensing.exe
22:28:39.0217 0x1360 Sound Blaster X-Fi MB Licensing Service - ok
22:28:39.0279 0x1360 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr C:\Windows\system32\drivers\spldr.sys
22:28:39.0279 0x1360 spldr - ok
22:28:39.0357 0x1360 [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler C:\Windows\System32\spoolsv.exe
22:28:39.0373 0x1360 Spooler - ok
22:28:39.0451 0x1360 [ 777115C9CC675BD98127660712D2F784, F9873482BEB148E6798643820DF1ECDEE2642C3793EE27E94FF2D6B9E4CEB2D4 ] sprtsvc_DellSupportCenter C:\Program Files\Dell Support Center\bin\sprtsvc.exe
22:28:39.0467 0x1360 sprtsvc_DellSupportCenter - ok
22:28:39.0560 0x1360 [ C4BB8A12843D9CBB65F5FF617F389BBD, 4BE4347E8BFC18E97B7910BF26F8845CCC917E4727EBD6617466615F2E0192B8 ] sptd C:\Windows\system32\Drivers\sptd.sys
22:28:39.0560 0x1360 Suspicious file ( NoAccess ): C:\Windows\system32\Drivers\sptd.sys. md5: C4BB8A12843D9CBB65F5FF617F389BBD, sha256: 4BE4347E8BFC18E97B7910BF26F8845CCC917E4727EBD6617466615F2E0192B8
22:28:39.0576 0x1360 sptd - detected LockedFile.Multi.Generic ( 1 )
22:28:42.0347 0x1360 Detect skipped due to KSN trusted
22:28:42.0347 0x1360 sptd - ok
22:28:42.0441 0x1360 [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv C:\Windows\system32\DRIVERS\srv.sys
22:28:42.0456 0x1360 srv - ok
22:28:42.0551 0x1360 [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:28:42.0566 0x1360 srv2 - ok
22:28:42.0598 0x1360 [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:28:42.0598 0x1360 srvnet - ok
22:28:42.0676 0x1360 [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:28:42.0691 0x1360 SSDPSRV - ok
22:28:42.0722 0x1360 [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:28:42.0754 0x1360 SstpSvc - ok
22:28:42.0943 0x1360 [ CB2449150A5EA17CAA0B94363D9440CC, 7D852C5EB84738B9D1A5A096E54279DAFA1BC0407D8A6F66A79F38CB269D2E1F ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_ae0b52e0\STacSV.exe
22:28:42.0958 0x1360 STacSV - ok
22:28:42.0984 0x1360 [ 14A9AD287FDA70A06463E09C4328C1F2, 5CEFDC454C31F78BF4C8F8A7EAFBADB7683125B9A89B90F2AA2F36C0F810FCEE ] STHDA C:\Windows\system32\DRIVERS\stwrt.sys
22:28:43.0012 0x1360 STHDA - ok
22:28:43.0125 0x1360 [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc C:\Windows\System32\wiaservc.dll
22:28:43.0172 0x1360 stisvc - ok
22:28:43.0234 0x1360 [ 1D0063597C3666404FCF97698ABEB019, 352A63C97F930499BC598C2A398663377D7CCD4A42770E35635C90EDC4DA530A ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
22:28:43.0250 0x1360 stllssvr - ok
22:28:43.0312 0x1360 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum C:\Windows\system32\DRIVERS\swenum.sys
22:28:43.0312 0x1360 swenum - ok
22:28:43.0406 0x1360 [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv C:\Windows\System32\swprv.dll
22:28:43.0437 0x1360 swprv - ok
22:28:43.0468 0x1360 [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
22:28:43.0468 0x1360 Symc8xx - ok
22:28:43.0484 0x1360 [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
22:28:43.0484 0x1360 Sym_hi - ok
22:28:43.0499 0x1360 [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
22:28:43.0499 0x1360 Sym_u3 - ok
22:28:43.0594 0x1360 [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain C:\Windows\system32\sysmain.dll
22:28:43.0641 0x1360 SysMain - ok
22:28:43.0703 0x1360 [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:28:43.0734 0x1360 TabletInputService - ok
22:28:43.0805 0x1360 [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv C:\Windows\System32\tapisrv.dll
22:28:43.0836 0x1360 TapiSrv - ok
22:28:43.0899 0x1360 [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS C:\Windows\System32\tbssvc.dll
22:28:43.0914 0x1360 TBS - ok
22:28:44.0067 0x1360 [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:28:44.0152 0x1360 Tcpip - ok
22:28:44.0320 0x1360 [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
22:28:44.0368 0x1360 Tcpip6 - ok
22:28:44.0465 0x1360 [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:28:44.0465 0x1360 tcpipreg - ok
22:28:44.0535 0x1360 [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:28:44.0535 0x1360 TDPIPE - ok
22:28:44.0550 0x1360 [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:28:44.0550 0x1360 TDTCP - ok
22:28:44.0619 0x1360 [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:28:44.0619 0x1360 tdx - ok
22:28:44.0667 0x1360 [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
22:28:44.0672 0x1360 TermDD - ok
22:28:44.0767 0x1360 [ DBD84E59D631569EC3E756EF144E8431, 9E58629EC762584A2D294A619593620626F7CBE467045AD0F920B6CF1D4B4724 ] TermService C:\Windows\System32\termsrv.dll
22:28:44.0850 0x1360 TermService - ok
22:28:44.0868 0x1360 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes C:\Windows\system32\shsvcs.dll
22:28:44.0919 0x1360 Themes - ok
22:28:44.0966 0x1360 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER C:\Windows\system32\mmcss.dll
22:28:44.0967 0x1360 THREADORDER - ok
22:28:45.0050 0x1360 [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks C:\Windows\System32\trkwks.dll
22:28:45.0065 0x1360 TrkWks - ok
22:28:45.0183 0x1360 [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:28:45.0183 0x1360 TrustedInstaller - ok
22:28:45.0261 0x1360 [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:28:45.0276 0x1360 tssecsrv - ok
22:28:45.0339 0x1360 [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
22:28:45.0339 0x1360 tunmp - ok
22:28:45.0417 0x1360 [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:28:45.0432 0x1360 tunnel - ok
22:28:45.0432 0x1360 [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
22:28:45.0448 0x1360 uagp35 - ok
22:28:45.0495 0x1360 [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:28:45.0510 0x1360 udfs - ok
22:28:45.0557 0x1360 [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:28:45.0573 0x1360 UI0Detect - ok
22:28:45.0619 0x1360 [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:28:45.0619 0x1360 uliagpkx - ok
22:28:45.0682 0x1360 [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci C:\Windows\system32\drivers\uliahci.sys
22:28:45.0697 0x1360 uliahci - ok
22:28:45.0713 0x1360 [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys
22:28:45.0729 0x1360 UlSata - ok
22:28:45.0744 0x1360 [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
22:28:45.0744 0x1360 ulsata2 - ok
22:28:45.0791 0x1360 [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
22:28:45.0791 0x1360 umbus - ok
22:28:45.0838 0x1360 [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost C:\Windows\System32\upnphost.dll
22:28:45.0869 0x1360 upnphost - ok
22:28:45.0978 0x1360 [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
22:28:45.0978 0x1360 USBAAPL - ok
22:28:46.0056 0x1360 [ 1114579556DB85E9FAF9590DBC64CD62, 10479A3C12BBBB9B5759082358FE11AC20BAEFA6B4977C8AE6E60AA17BE6C7FA ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
22:28:46.0072 0x1360 usbaudio - ok
22:28:46.0115 0x1360 [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:28:46.0123 0x1360 usbccgp - ok
22:28:46.0171 0x1360 [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:28:46.0171 0x1360 usbcir - ok
22:28:46.0236 0x1360 [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
22:28:46.0236 0x1360 usbehci - ok
22:28:46.0268 0x1360 [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:28:46.0283 0x1360 usbhub - ok
22:28:46.0299 0x1360 [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci C:\Windows\system32\drivers\usbohci.sys
22:28:46.0314 0x1360 usbohci - ok
22:28:46.0361 0x1360 [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:28:46.0361 0x1360 usbprint - ok
22:28:46.0377 0x1360 [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
22:28:46.0392 0x1360 usbscan - ok
22:28:46.0439 0x1360 [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:28:46.0455 0x1360 USBSTOR - ok
22:28:46.0486 0x1360 [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
22:28:46.0486 0x1360 usbuhci - ok
22:28:46.0548 0x1360 [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms C:\Windows\System32\uxsms.dll
22:28:46.0564 0x1360 UxSms - ok
22:28:46.0798 0x1360 [ EA9ADB96A31020D4D3E5167FE31427DE, 5635513F58CF89AF87B7A5CE570B348A932C5C74D3FBAF575D708198B174D641 ] VBoxAswDrv C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys
22:28:46.0814 0x1360 VBoxAswDrv - ok
22:28:46.0877 0x1360 [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds C:\Windows\System32\vds.exe
22:28:46.0936 0x1360 vds - ok
22:28:46.0968 0x1360 [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:28:46.0971 0x1360 vga - ok
22:28:47.0019 0x1360 [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave C:\Windows\System32\drivers\vga.sys
22:28:47.0019 0x1360 VgaSave - ok
22:28:47.0034 0x1360 [ 5D7159DEF58A800D5781BA3A879627BC, 499A8E51FDE61AE0D7C1812D1E5B331211A36BD095A4992C629B93DE6D80F4E6 ] viaagp C:\Windows\system32\drivers\viaagp.sys
22:28:47.0050 0x1360 viaagp - ok
22:28:47.0050 0x1360 [ C4F3A691B5BAD343E6249BD8C2D45DEE, 19DE07AD6CD51036FA8A6B8EE82F34D7F5264FF3A12CBE6E52BD036D0303E319 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
22:28:47.0066 0x1360 ViaC7 - ok
22:28:47.0067 0x1360 [ AADF5587A4063F52C2C3FED7887426FC, 0A74791A236FDAFCD045CFB79A159245B94F7C2033E0CD830C1B76F0F994E06D ] viaide C:\Windows\system32\drivers\viaide.sys
22:28:47.0067 0x1360 viaide - ok
22:28:47.0104 0x1360 [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:28:47.0104 0x1360 volmgr - ok
22:28:47.0167 0x1360 [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:28:47.0203 0x1360 volmgrx - ok
22:28:47.0267 0x1360 [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:28:47.0303 0x1360 volsnap - ok
22:28:47.0365 0x1360 [ 587253E09325E6BF226B299774B728A9, C9F46197819C2A095456393C518A9B00B59ECDC54F464D038AA7F8DCCDB93CCF ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
22:28:47.0366 0x1360 vsmraid - ok
22:28:47.0498 0x1360 [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS C:\Windows\system32\vssvc.exe
22:28:47.0570 0x1360 VSS - ok
22:28:47.0667 0x1360 [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time C:\Windows\system32\w32time.dll
22:28:47.0703 0x1360 W32Time - ok
22:28:47.0734 0x1360 [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
22:28:47.0734 0x1360 WacomPen - ok
22:28:47.0767 0x1360 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
22:28:47.0767 0x1360 Wanarp - ok
22:28:47.0773 0x1360 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:28:47.0806 0x1360 Wanarpv6 - ok
22:28:47.0876 0x1360 [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:28:47.0936 0x1360 wcncsvc - ok
22:28:48.0003 0x1360 [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:28:48.0019 0x1360 WcsPlugInService - ok
22:28:48.0050 0x1360 [ 78FE9542363F297B18C027B2D7E7C07F, 6BC3ED2A48EF41E1EE597FD58271DB12256EC013518663331CD0FBCB3FC415EE ] Wd C:\Windows\system32\drivers\wd.sys
22:28:48.0066 0x1360 Wd - ok
22:28:48.0150 0x1360 [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:28:48.0166 0x1360 Wdf01000 - ok
22:28:48.0267 0x1360 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:28:48.0283 0x1360 WdiServiceHost - ok
22:28:48.0299 0x1360 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:28:48.0314 0x1360 WdiSystemHost - ok
22:28:48.0408 0x1360 [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient C:\Windows\System32\webclnt.dll
22:28:48.0439 0x1360 WebClient - ok
22:28:48.0517 0x1360 [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:28:48.0533 0x1360 Wecsvc - ok
22:28:48.0564 0x1360 [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:28:48.0579 0x1360 wercplsupport - ok
22:28:48.0657 0x1360 [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc C:\Windows\System32\WerSvc.dll
22:28:48.0673 0x1360 WerSvc - ok
22:28:48.0829 0x1360 [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
22:28:48.0845 0x1360 WinDefend - ok
22:28:48.0860 0x1360 WinHttpAutoProxySvc - ok
22:28:49.0001 0x1360 [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:28:49.0016 0x1360 Winmgmt - ok
22:28:49.0157 0x1360 [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM C:\Windows\system32\WsmSvc.dll
22:28:49.0219 0x1360 WinRM - ok
22:28:49.0380 0x1360 [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc C:\Windows\System32\wlansvc.dll
22:28:49.0458 0x1360 Wlansvc - ok
22:28:49.0658 0x1360 [ 0A70F4022EC2E14C159EFC4F69AA2477, FF248136576F9803762C54DE5439D3411B52DCBC95B93176A5DAB857967D9AC4 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:28:49.0752 0x1360 wlidsvc - ok
22:28:49.0783 0x1360 wltrysvc - ok
22:28:49.0845 0x1360 [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
22:28:49.0845 0x1360 WmiAcpi - ok
22:28:49.0923 0x1360 [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:28:49.0923 0x1360 wmiApSrv - ok
22:28:50.0102 0x1360 [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
22:28:50.0148 0x1360 WMPNetworkSvc - ok
22:28:50.0234 0x1360 [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:28:50.0250 0x1360 WPCSvc - ok
22:28:50.0318 0x1360 [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:28:50.0334 0x1360 WPDBusEnum - ok
22:28:50.0366 0x1360 [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
22:28:50.0367 0x1360 WpdUsb - ok
22:28:50.0697 0x1360 [ F8D3544ACBCE9110362119F7C10D848E, 31C49201A931751A36286874AC0B929D886F490D7CE48CCC9283850A56AD9FD9 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:28:50.0738 0x1360 WPFFontCache_v0400 - ok
22:28:50.0782 0x1360 [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:28:50.0787 0x1360 ws2ifsl - ok
22:28:50.0871 0x1360 [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc C:\Windows\system32\wscsvc.dll
22:28:50.0872 0x1360 wscsvc - ok
22:28:50.0881 0x1360 WSearch - ok
22:28:51.0104 0x1360 [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
22:28:51.0235 0x1360 wuauserv - ok
22:28:51.0334 0x1360 [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:28:51.0350 0x1360 WudfPf - ok
22:28:51.0381 0x1360 [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:28:51.0381 0x1360 WUDFRd - ok
22:28:51.0412 0x1360 [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:28:51.0428 0x1360 wudfsvc - ok
22:28:51.0474 0x1360 [ 3202CBB8F6EDF243E2F4AF72D5248EE3, 308DF2C5BBFD89A27F99EA96249294A3D1C4783EFE97A29FC4B1670EE5FF7A7C ] yksvc C:\Windows\System32\yk60x86.dll
22:28:51.0506 0x1360 yksvc - ok
22:28:51.0599 0x1360 [ 6E5CA74E7C3A5392D169A91FFA48A297, EBF9FFE9C6DC02892E6F9B0B50120CA8553D935577523ACE2970D0DCD4C8B172 ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
22:28:51.0630 0x1360 yukonwlh - ok
22:28:51.0646 0x1360 ================ Scan global ===============================
22:28:51.0740 0x1360 [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
22:28:51.0833 0x1360 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
22:28:51.0896 0x1360 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
22:28:52.0005 0x1360 [ 4F0A7910FC7D8A66433FA9961EEF8BB5, 2086EDEE8CF9CC9BDBDC03018F7C28BB56172F941CB4D6F3D857BCF82B32FB6B ] C:\Windows\system32\services.exe
22:28:52.0020 0x1360 [ Global ] - ok
22:28:52.0020 0x1360 ================ Scan MBR ==================================
22:28:52.0036 0x1360 [ CDB4DE4BBD714F152979DA2DCBEF57EB ] \Device\Harddisk0\DR0
22:28:52.0497 0x1360 \Device\Harddisk0\DR0 - ok
22:28:52.0497 0x1360 ================ Scan VBR ==================================
22:28:52.0512 0x1360 [ 05FDC1787582D2D0FBA3A56C37E378A0 ] \Device\Harddisk0\DR0\Partition1
22:28:52.0543 0x1360 \Device\Harddisk0\DR0\Partition1 - ok
22:28:52.0543 0x1360 [ 4C012AE52B4B04F44F896F487A237A87 ] \Device\Harddisk0\DR0\Partition2
22:28:52.0590 0x1360 \Device\Harddisk0\DR0\Partition2 - ok
22:28:52.0590 0x1360 ================ Scan generic autorun ======================
22:28:52.0699 0x1360 [ 689C95B325C3118CE09E3F3FBCEB5D44, CEB954C2CBFD94066BB8CE550423A2544E8A5C466398A9B269E11DC653A7549D ] C:\Program Files\DellTPad\Apoint.exe
22:28:52.0715 0x1360 Apoint - ok
22:28:52.0746 0x1360 [ 43E3F9C0F3BC940F2D6DA1A72B177E42, DA910F256A762045136DD271B399620EBD45B72D316788E83A37BEA600D186E1 ] C:\Windows\system32\igfxtray.exe
22:28:52.0762 0x1360 IgfxTray - ok
22:28:52.0793 0x1360 [ 2413EC683C216B8A96E1BBC9CD1E01A2, ECD770B15F2F55A72DECA4DAA398EC881CD572B71FB6CA625F45EECD09A7421B ] C:\Windows\system32\hkcmd.exe
22:28:52.0809 0x1360 HotKeysCmds - ok
22:28:52.0855 0x1360 [ 953E9E1A9A2D0E862BB75FBFDEDB58F4, 79ACD5F8B444AA1C0C627253859E4D569C2A7980EB5FA81634339A5903777171 ] C:\Windows\system32\igfxpers.exe
22:28:52.0871 0x1360 Persistence - ok
Ratagin
Regular Member
 
Posts: 28
Joined: September 21st, 2011, 8:53 pm

Re: Computer much slower than usual, almost unusable

Unread postby Ratagin » May 21st, 2015, 11:41 pm

22:28:52.0871 0x1360 Persistence - ok
22:28:53.0168 0x1360 [ 4B36C7D9710C60EA7725685753BBFA5C, 818AECC62445090CC336E06736B9B803CB96CFDB2E680F1AA1ED1CD25911D7EC ] C:\Windows\system32\WLTRAY.exe
22:28:53.0404 0x1360 Broadcom Wireless Manager UI - ok
22:28:53.0467 0x1360 [ 2521D0C1B65ACB7752CA365F538949E4, D8A07743222A03AC23B2D58AE0C8FB634B2FA17262CC01A8E4DC88AABB6799B5 ] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
22:28:53.0477 0x1360 IAAnotif - ok
22:28:53.0494 0x1360 Dell PC TuneUp Startup - ok
22:28:53.0572 0x1360 [ 4B555106290BD117334E9A08761C035A, 8A3808FBC197040BF0C65084514E8441E35FFFF8E31980F9CE1F41ED65E08437 ] C:\Windows\system32\RunDLL32.exe
22:28:53.0573 0x1360 RunDLLEntry - ok
22:28:53.0683 0x1360 [ BE4C00E9BF06C136A1F63856BB7AAC5E, C91FA32559BC84C0190DEBC2D12F390555535EBEC0D10A371B33D5FA67D280A5 ] C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
22:28:53.0690 0x1360 PDVDDXSrv - ok
22:28:53.0769 0x1360 [ 00D1FB0073B4A8BD2989EA8FF4CC792B, 001A26FF51BF6BABF6325983F512CF8D84CADEE1CA36F166A41702D94C1B0841 ] C:\Program Files\Dell Support Center\bin\sprtcmd.exe
22:28:53.0770 0x1360 dellsupportcenter - ok
22:28:53.0867 0x1360 [ 0E34B7BB1FCF22BCC1E394D16F9E992B, 382CA8E6BAC301E2F277F8EDA03D263FF71272796A8EED582C36294EEE9191F9 ] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
22:28:53.0871 0x1360 GrooveMonitor - ok
22:28:54.0066 0x1360 [ F8B91C91225E5CAA2B2F0370201021C0, 5EF4546D723EFAA97921CFF273FECD78AF9B7740359A5F80375A4272C3D2E7C5 ] C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe
22:28:54.0081 0x1360 Microsoft Default Manager - ok
22:28:54.0419 0x1360 [ 7697B83C440CA941D469D04D01DD3F33, D40C840342FE0BC4D0D6C23C26CF570CB061D92177874D22F488B18E329474C0 ] C:\Program Files\Dell\QuickSet\QuickSet.exe
22:28:54.0559 0x1360 QuickSet - ok
22:28:54.0684 0x1360 [ 94A4D6915D4F572309DF6137E1846528, E46BDF83CAA6683AA655DBA3D2C8DC7AC06251E952466A20CFDA3A16B1840455 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
22:28:54.0684 0x1360 APSDaemon - ok
22:28:54.0747 0x1360 [ B6E8EF7E1ED1EA0FC37B9710B3196DCE, E36E8A3394905DFEAD8D46B277E1A84BE0A8E67CBD635F594D7C4D22AC4E12D1 ] C:\Program Files\IDT\WDM\sttray.exe
22:28:54.0778 0x1360 SysTrayApp - ok
22:28:54.0965 0x1360 [ 3E04F1E482357B1FC8B088197C3D9FF8, 85524ADDC27ADC831EBBD24E079B412CFDC69E5F594BD153319087665A28D546 ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
22:28:55.0027 0x1360 Adobe ARM - ok
22:28:55.0168 0x1360 [ 08E7173D1B74095335052459200CB1EA, 5B6EB8A65B5F451BF6115EB7CD1355E5870E6D764F22D767D13216BF17C5668F ] C:\Program Files\QuickTime\QTTask.exe
22:28:55.0183 0x1360 QuickTime Task - ok
22:28:55.0308 0x1360 [ 79C28DDF889C26FDD6162F796FD49BC4, C1E2468B4F0F52BD707D16656F33CC438AF8E18A38BB6CFB64D11F23993F72F0 ] C:\Program Files\iTunes\iTunesHelper.exe
22:28:55.0308 0x1360 iTunesHelper - ok
22:28:55.0754 0x1360 [ 06964B7DE858BB6317164BF184E9C766, ADE3D2A7256A8F3F11B6E35979413850EB22B9BBADCE3EC73BE04A1622512126 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
22:28:56.0159 0x1360 AvastUI.exe - ok
22:28:56.0250 0x1360 [ 57F850AE2FEEB81A10BC278C385BD040, A8B4659B9CA32A1BF02A40CBA0EA8B9CFCD27418210FAA8F9BFEC8D62A9C03A8 ] C:\Program Files\Dell DataSafe Local Backup\Components\DSUpdate\runhstart.bat
22:28:56.0250 0x1360 DSUpdateLauncher - ok
22:28:56.0427 0x1360 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\sidebar.exe
22:28:56.0481 0x1360 Sidebar - ok
22:28:56.0703 0x1360 [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] C:\Users\Matt\AppData\Local\Google\Update\GoogleUpdate.exe
22:28:56.0718 0x1360 Google Update - ok
22:28:56.0819 0x1360 [ 6D9E1356A9C1B5F36698FAFF9205E34A, A7E37C2C0F1F35F5434144D5F1D282858D6B3CE995BE6612BA22FB7E83793F77 ] C:\Program Files\Xvid\CheckUpdate.exe
22:28:56.0819 0x1360 Xvid - ok
22:28:56.0915 0x1360 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe
22:28:56.0979 0x1360 Sidebar - ok
22:28:56.0979 0x1360 Waiting for KSN requests completion. In queue: 120
22:28:58.0081 0x1360 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.2.2215.880 ), 0x42000 ( disabled : updated )
22:28:58.0097 0x1360 Win FW state via NFP2: enabled
22:28:58.0331 0x1360 ============================================================
22:28:58.0331 0x1360 Scan finished
22:28:58.0331 0x1360 ============================================================
22:28:58.0346 0x1304 Detected object count: 0
22:28:58.0346 0x1304 Actual detected object count: 0
22:31:56.0506 0x0e34 ============================================================
22:31:56.0506 0x0e34 Scan started
22:31:56.0506 0x0e34 Mode: Manual; SigCheck;
22:31:56.0506 0x0e34 ============================================================
22:31:56.0506 0x0e34 KSN ping started
22:31:56.0896 0x0e34 KSN ping finished: true
22:31:57.0741 0x0e34 ================ Scan system memory ========================
22:31:57.0741 0x0e34 System memory - ok
22:31:57.0741 0x0e34 ================ Scan services =============================
22:31:58.0084 0x0e34 [ 82B296AE1892FE3DBEE00C9CF92F8AC7, 54B22BA63E1DA616B546992141B0C3117BA057283B8F60CB9BECE203661FEBF3 ] ACPI C:\Windows\system32\drivers\acpi.sys
22:31:58.0350 0x0e34 ACPI - ok
22:31:58.0474 0x0e34 [ 4C72FDD915D62EAEF149BD9C73AB9CF4, 8EA45A1B88DFD819F0ADA3AF36D464E1BF52574269592370E0CC8D0490680E1F ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
22:31:58.0506 0x0e34 AdobeARMservice - ok
22:31:58.0599 0x0e34 [ B04A4810C6CC205F9DC72DC22E4AB236, 547321F5C28C80D4818372D65E2A33D4BAC593015DD6613B24586FE4B4A95D5D ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
22:31:58.0630 0x0e34 AdobeFlashPlayerUpdateSvc - ok
22:31:58.0724 0x0e34 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303, FBBDD38574A1F66A5AA12B82E34FDE60B870180C4B7100C15757539DC869ED4B ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
22:31:58.0786 0x0e34 adp94xx - ok
22:31:58.0818 0x0e34 [ 60505E0041F7751BDBB80F88BF45C2CE, 1DE16042B8ABD7B643189E836DE273832EE743FD66AFBB641E8049C4E0CD04D8 ] adpahci C:\Windows\system32\drivers\adpahci.sys
22:31:58.0864 0x0e34 adpahci - ok
22:31:58.0911 0x0e34 [ 8A42779B02AEC986EAB64ECFC98F8BD7, B89938EFF4E81FA44197D2D839EBD3340DDE01FBC79605049C088621784C1B91 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys
22:31:58.0958 0x0e34 adpu160m - ok
22:31:59.0005 0x0e34 [ 241C9E37F8CE45EF51C3DE27515CA4E5, 1A03E93DD8C1F3640C96124A14A3D0F4E349B06CCA2118CE40B8AE201A4030A7 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
22:31:59.0052 0x0e34 adpu320 - ok
22:31:59.0130 0x0e34 [ 9D1FDA9E086BA64E3C93C9DE32461BCF, 200FD0BFC811EC8993AF9FC78F58823ECC717063F438B627FBCDD6BD7790CAA8 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
22:31:59.0270 0x0e34 AeLookupSvc - ok
22:31:59.0426 0x0e34 [ 087B04CA45E2F059A55709B0B8F95EA9, 0B90163B9E2ECF9C840AA4AFEFC4D1E7392F91E27ED533D560550702F7C6C886 ] AESTFilters C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_ae0b52e0\aestsrv.exe
22:31:59.0488 0x0e34 AESTFilters - ok
22:31:59.0566 0x0e34 [ F5272A105F59A7B3B345D9D6D87DA7AD, 9E84776994D04240BF2537330DBB555EDE16DFCFC59DEDCBA05A44ED7F70BEFA ] AFD C:\Windows\system32\drivers\afd.sys
22:31:59.0660 0x0e34 AFD - ok
22:31:59.0722 0x0e34 [ 13F9E33747E6B41A3FF305C37DB0D360, 066DD6060B1CF93F85BBAAA52848C801128CD294E8B7EACD912E0EF219DBFBC2 ] agp440 C:\Windows\system32\drivers\agp440.sys
22:31:59.0754 0x0e34 agp440 - ok
22:31:59.0832 0x0e34 [ AE1FDF7BF7BB6C6A70F67699D880592A, B831BF156FC49287A19FC149383D437B1034EA6F42CE9D761EB90ABD0F8D96B1 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
22:31:59.0863 0x0e34 aic78xx - ok
22:31:59.0925 0x0e34 [ A1545B731579895D8CC44FC0481C1192, 6B0EE833BA39C142D625A03586CCD8F6C9C3136C603CE5DF5BAC1AA3423E3E7F ] ALG C:\Windows\System32\alg.exe
22:32:00.0034 0x0e34 ALG - ok
22:32:00.0034 0x0e34 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91, 0EADB6AE21FEDAB55D41F41B638198B556CC2BE2EE57F6C8B40EB044A318319F ] aliide C:\Windows\system32\drivers\aliide.sys
22:32:00.0081 0x0e34 aliide - ok
22:32:00.0081 0x0e34 [ C47344BC706E5F0B9DCE369516661578, 689C9CDAF6F38227F1C34359CAEB3C7798F318EDFD4B7FE532FBE3C8E4EE3DC8 ] amdagp C:\Windows\system32\drivers\amdagp.sys
22:32:00.0128 0x0e34 amdagp - ok
22:32:00.0128 0x0e34 [ 9B78A39A4C173FDBC1321E0DD659B34C, 2CA66EB68AD7A317D91C13B8CFD4E8CA985926A610D19595B613F5553B145C7B ] amdide C:\Windows\system32\drivers\amdide.sys
22:32:00.0159 0x0e34 amdide - ok
22:32:00.0175 0x0e34 [ 18F29B49AD23ECEE3D2A826C725C8D48, 0FA08882301D218E367E63E1966B6406220EE94BAE7E7DAD6E55EB70BF6FED7F ] AmdK7 C:\Windows\system32\drivers\amdk7.sys
22:32:00.0268 0x0e34 AmdK7 - ok
22:32:00.0284 0x0e34 [ 93AE7F7DD54AB986A6F1A1B37BE7442D, ECE0ABA2DECEED94AC678240A4B604F04022F0740F2295CBD07D25F5917E878A ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
22:32:00.0378 0x0e34 AmdK8 - ok
22:32:00.0456 0x0e34 [ 448DA519F3B6FFA158C513156053181E, AA37D1F9CAE0D92A381F2F95E980C5ABD688DB115DD79F9B3DBBCCF9715BEF7A ] ApfiltrService C:\Windows\system32\DRIVERS\Apfiltr.sys
22:32:00.0518 0x0e34 ApfiltrService - ok
22:32:00.0580 0x0e34 [ 8F7D200717A58E9800D391F4C2101577, F07CF0F5636F46D8F3D5133284943E991E8739E5A644BCA5F18BB896B374620D ] Appinfo C:\Windows\System32\appinfo.dll
22:32:00.0627 0x0e34 Appinfo - ok
22:32:00.0799 0x0e34 [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:32:00.0830 0x0e34 Apple Mobile Device - ok
22:32:00.0861 0x0e34 [ 5D2888182FB46632511ACEE92FDAD522, 2E53231ACAF9B2FB7993DBC1CD15C06D7B0CCE0D08DAFF7B0CC13A2040028A75 ] arc C:\Windows\system32\drivers\arc.sys
22:32:00.0892 0x0e34 arc - ok
22:32:00.0939 0x0e34 [ 5E2A321BD7C8B3624E41FDEC3E244945, 9D47FF6C823868F2267FEFAB5851D3CD2BC3F619A2D6EFF803EA22DB0509C450 ] arcsas C:\Windows\system32\drivers\arcsas.sys
22:32:00.0986 0x0e34 arcsas - ok
22:32:01.0142 0x0e34 [ 9D768C43FEF254DD50B1DBF8AD5C4C0B, A50854EA5C08605133B8BB4DFDC6090357C5665314AA72E0BFA1E07D4E451F09 ] aspnet_state C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
22:32:01.0189 0x0e34 aspnet_state - ok
22:32:01.0251 0x0e34 [ FE99FCB91E93BC4A7E222928A06411DE, C0F9A2A6324B17D435A7C62EB133E3E529D5622ED83C65E48F092CAB79D9A787 ] aswHwid C:\Windows\system32\drivers\aswHwid.sys
22:32:01.0298 0x0e34 aswHwid - ok
22:32:01.0314 0x0e34 [ 5D70C1C6C61C5A034BD086AD219A0237, 318C3CC5AF2A4B99C6C3938B36C95ECA63EABC5E93A2A3D7C729BA0BF191CDF1 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
22:32:01.0345 0x0e34 aswMonFlt - ok
22:32:01.0360 0x0e34 [ 794B69DB528D35FB8F0BA5D0BB8736AF, 1AB85734DDE2C5F8FD31F9D9184C4E17768AFE12215A6D1F9D745E7CD1608783 ] aswRdr C:\Windows\system32\drivers\aswRdr.sys
22:32:01.0392 0x0e34 aswRdr - ok
22:32:01.0454 0x0e34 [ 74E84C8CEB52042E8A1EA3104D151843, B9D1ADC6A0FF31EE18E2EECCCC3D98C41FAE9E37295A0F555DAB59D0B6028A6E ] aswRvrt C:\Windows\system32\drivers\aswRvrt.sys
22:32:01.0485 0x0e34 aswRvrt - ok
22:32:01.0594 0x0e34 [ 48FA0C8E04A37A619C894A1C02D5AB96, F79C7252D0C578F827EED28630D97F2B5E3B361F920AF626343D8A71CDD86288 ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
22:32:01.0750 0x0e34 aswSnx - ok
22:32:01.0860 0x0e34 [ 2AB454C9C10C427738426C06D3749361, BC604BC9006CF52520FA962055F391A806B7452639640F13516B151E34517643 ] aswSP C:\Windows\system32\drivers\aswSP.sys
22:32:01.0984 0x0e34 aswSP - ok
22:32:02.0062 0x0e34 [ C62E0261EC93B66151E5BAE83B61EE30, 502304CC323F17A85679F12A52E5B0AF8062652A9BBD9C4C1C62DE7C5C62556B ] aswTap C:\Windows\system32\DRIVERS\aswTap.sys
22:32:02.0094 0x0e34 aswTap - ok
22:32:02.0172 0x0e34 [ F6AB3DD747DA3505B3E8F0532905A21F, 52828A956B16B2491E805A78C6D2B03E6E72AD482ED3A3A47C1E1321196B8A8F ] aswTdi C:\Windows\system32\drivers\aswTdi.sys
22:32:02.0203 0x0e34 aswTdi - ok
22:32:02.0234 0x0e34 [ 0AE22EAD6B30E448160338E708BCB71D, 4657A7C60635B916FFBC0A731D52E944FDDE6B052AD0DBD0848C3C7A5C15DD0D ] aswVmm C:\Windows\system32\drivers\aswVmm.sys
22:32:02.0281 0x0e34 aswVmm - ok
22:32:02.0296 0x0e34 [ 53B202ABEE6455406254444303E87BE1, 4C91CA8DD345FEDD74A6AF2C07580717703F979B7DE2532B1D00B9F6896DDE70 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
22:32:02.0390 0x0e34 AsyncMac - ok
22:32:02.0437 0x0e34 [ 0D83C87A801A3DFCD1BF73893FE7518C, 0EEB3DFFC73B370CEBB6C5115ADC769C38B2993F0EAC0EA19E273773390DA82F ] atapi C:\Windows\system32\drivers\atapi.sys
22:32:02.0468 0x0e34 atapi - ok
22:32:02.0562 0x0e34 [ 8E98A99187FF17FC1D48E6FAFFD870BE, 7C935191A0A2BA95CA9A9E450F7C8802E6184F73BC297E91908B59F34C22AB06 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:32:02.0624 0x0e34 AudioEndpointBuilder - ok
22:32:02.0640 0x0e34 [ 8E98A99187FF17FC1D48E6FAFFD870BE, 7C935191A0A2BA95CA9A9E450F7C8802E6184F73BC297E91908B59F34C22AB06 ] Audiosrv C:\Windows\System32\Audiosrv.dll
22:32:02.0702 0x0e34 Audiosrv - ok
22:32:02.0858 0x0e34 [ 210A326658D72D7F2EE2267F3D9C44D4, 25BC620209B5F4BCF5C3F323290E41255F68660F3DFF901FA5A78423A7293D73 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
22:32:02.0905 0x0e34 avast! Antivirus - ok
22:32:03.0248 0x0e34 [ 5019A83BE87FD8B60F7333901BFD35E5, 674DF51CAA1B6C0BC9CA9755B3BC5A9A71C583BD7C7A2826BD280E107B855092 ] AvastVBoxSvc C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
22:32:03.0794 0x0e34 AvastVBoxSvc - ok
22:32:03.0872 0x0e34 [ 423C7B87E886AC93D22936EA82665F83, 98B807D855A746E68525AEEBB6D45AF418861C2111D7F8493A8A6FB59F6C6F8E ] BCM42RLY C:\Windows\system32\drivers\BCM42RLY.sys
22:32:03.0903 0x0e34 BCM42RLY - ok
22:32:04.0014 0x0e34 [ 41A70777E892C3DEA606758366566A77, 8304837FE38415EB8E4C0749E25FAC9D090E32E6526368AF6970B7721DBF3FB6 ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys
22:32:04.0186 0x0e34 BCM43XX - ok
22:32:04.0264 0x0e34 [ 67E506B75BD5326A3EC7B70BD014DFB6, 3B07243970CAB4E93A858BEA6E31F56AD0157C42D624F3FEB469E68EEEF65669 ] Beep C:\Windows\system32\drivers\Beep.sys
22:32:04.0373 0x0e34 Beep - ok
22:32:04.0451 0x0e34 [ C789AF0F724FDA5852FB9A7D3A432381, 4B0F7A3A8F2D45E49630D24F2630B8014BCDB793B9C6E83FD2B2863A54F62BF5 ] BFE C:\Windows\System32\bfe.dll
22:32:04.0560 0x0e34 BFE - ok
22:32:04.0670 0x0e34 [ 93952506C6D67330367F7E7934B6A02F, 1D9A6B10B9489C1A32F730E22CC399BFF0796E3FCB3BA52BE45ED487CAC59EBD ] BITS C:\Windows\system32\qmgr.dll
22:32:04.0904 0x0e34 BITS - ok
22:32:04.0966 0x0e34 [ D4DF28447741FD3D953526E33A617397, E7239BA432090F8AC7DF453DB876507CD4419ECA964D289408A1B2B353618693 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
22:32:05.0044 0x0e34 blbdrive - ok
22:32:05.0184 0x0e34 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A, 10F21999FF6B1D410EBF280F7F27DEACA5289739CF12F4293B614B8FC6C88DCC ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:32:05.0247 0x0e34 Bonjour Service - ok
22:32:05.0309 0x0e34 [ 35F376253F687BDE63976CCB3F2108CA, C5EF6301D7BC067050038DB75D961681D1CBE418285AD60167C1334B0B54DFE9 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
22:32:05.0372 0x0e34 bowser - ok
22:32:05.0434 0x0e34 [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys
22:32:05.0481 0x0e34 BrFiltLo - ok
22:32:05.0496 0x0e34 [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys
22:32:05.0574 0x0e34 BrFiltUp - ok
22:32:05.0637 0x0e34 [ A3629A0C4226F9E9C72FAAEEBC3AD33C, FB4D2738B64AADA52B95A6CF7ED4CDBFE4DD4BEBCAF1AE9CE64317F97DB38DDF ] Browser C:\Windows\System32\browser.dll
22:32:05.0730 0x0e34 Browser - ok
22:32:05.0746 0x0e34 [ B304E75CFF293029EDDF094246747113, CB6B219B186C3511A0DE3CDE7F7B8966A9E32D808A952CA8C5B42B3A3A17BFB0 ] Brserid C:\Windows\system32\drivers\brserid.sys
22:32:05.0871 0x0e34 Brserid - ok
22:32:05.0886 0x0e34 [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys
22:32:06.0011 0x0e34 BrSerWdm - ok
22:32:06.0027 0x0e34 [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys
22:32:06.0167 0x0e34 BrUsbMdm - ok
22:32:06.0214 0x0e34 [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys
22:32:06.0354 0x0e34 BrUsbSer - ok
22:32:06.0370 0x0e34 [ AD07C1EC6665B8B35741AB91200C6B68, DCE1305A30D6713222A01C1F1D03ED0ADABE23C742CE1E82BB142531B82A3FF7 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
22:32:06.0510 0x0e34 BTHMODEM - ok
22:32:06.0542 0x0e34 [ 7ADD03E75BEB9E6DD102C3081D29840A, 0CA14A77CE990B5AA32C0725C22CA190ECBC73B75064DD959CABAD79B8846F1D ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
22:32:06.0651 0x0e34 cdfs - ok
22:32:06.0713 0x0e34 [ 6B4BFFB9BECD728097024276430DB314, 4451EFEAD37B05C8A3CB610B6D72E73B55D3D1E1CC1B17405598C1EDAA93C2D5 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
22:32:06.0791 0x0e34 cdrom - ok
22:32:06.0854 0x0e34 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] CertPropSvc C:\Windows\System32\certprop.dll
22:32:06.0947 0x0e34 CertPropSvc - ok
22:32:07.0010 0x0e34 [ E5D4133F37219DBCFE102BC61072589D, 74C7F8C53D9C71CE3C8B33BC0331948571318402B0A8E1AC4552360504092A46 ] circlass C:\Windows\system32\drivers\circlass.sys
22:32:07.0088 0x0e34 circlass - ok
22:32:07.0151 0x0e34 [ 5D9311526801643000D7032A83B18B12, C5A98868A41446617B3A27C6C4AAFA4E7C093E253E8C1DD5DBFE6FAE21991209 ] CLFS C:\Windows\system32\CLFS.sys
22:32:07.0193 0x0e34 CLFS - ok
22:32:07.0299 0x0e34 [ 6B6943A0CA56B47D6FB2EE476890854F, 6DA779879487F4A187DF54B0362642643D7871AA8F7E30992D781F558C50F052 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:32:07.0345 0x0e34 clr_optimization_v2.0.50727_32 - ok
22:32:07.0408 0x0e34 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:32:07.0457 0x0e34 clr_optimization_v4.0.30319_32 - ok
22:32:07.0472 0x0e34 [ 99AFC3795B58CC478FBBBCDC658FCB56, 0D1B27C42A058C5D56A0157B5ECA9A054254F6B9C8015D0321021A7EFCE10CE2 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
22:32:07.0550 0x0e34 CmBatt - ok
22:32:07.0611 0x0e34 [ 0CA25E686A4928484E9FDABD168AB629, C2CB2333CAB40CDF93219870E66700F957188C86A1B1A004BC4652953091E5C5 ] cmdide C:\Windows\system32\drivers\cmdide.sys
22:32:07.0642 0x0e34 cmdide - ok
22:32:07.0643 0x0e34 [ 6AFEF0B60FA25DE07C0968983EE4F60A, E4037EF9EDE57A1039AB814EBCE9A8B12C9A084E7FAC6296212ACF2394DD37B6 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
22:32:07.0674 0x0e34 Compbatt - ok
22:32:07.0683 0x0e34 COMSysApp - ok
22:32:07.0836 0x0e34 cpuz132 - ok
22:32:07.0849 0x0e34 [ 741E9DFF4F42D2D8477D0FC1DC0DF871, 06EA43D771E3455F943AB624CC00C2259FE5E561164908630755E933EF44A522 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
22:32:07.0884 0x0e34 crcdisk - ok
22:32:08.0027 0x0e34 [ C8BD651E13895B93ED9EC5B4F1DF42BC, D86D6BF0BA3C09B49B3A52C86A7F3B3856A27F79EDD86A8FFA469D9A5F196E8D ] Creative ALchemy AL6 Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
22:32:08.0090 0x0e34 Creative ALchemy AL6 Licensing Service - detected UnsignedFile.Multi.Generic ( 1 )
22:32:08.0090 0x0e34 Detect skipped due to KSN trusted
22:32:08.0090 0x0e34 Creative ALchemy AL6 Licensing Service - ok
22:32:08.0121 0x0e34 [ C0EAD9F8AB83D41FF07303C75589C2B8, C89CAC39BCD2FA2DCC56D7EE84FF66127BCECCAE400E119FE41BF4C4D769504B ] Creative Audio Engine Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
22:32:08.0151 0x0e34 Creative Audio Engine Licensing Service - detected UnsignedFile.Multi.Generic ( 1 )
22:32:08.0151 0x0e34 Detect skipped due to KSN trusted
22:32:08.0152 0x0e34 Creative Audio Engine Licensing Service - ok
22:32:08.0230 0x0e34 [ 1F07BECDCA750766A96CDA811BA86410, F4E36F0003184BCB36D59B23AC903421AD8C0A1FD2D6315E06375235ABC9A0AD ] Crusoe C:\Windows\system32\drivers\crusoe.sys
22:32:08.0323 0x0e34 Crusoe - ok
22:32:08.0371 0x0e34 [ 684C130BBC6DB681BAD4920A4C944AA5, DDE434B206984808351C98500824A33E6740B4326C455066027F8D549D4C3B92 ] CryptSvc C:\Windows\system32\cryptsvc.dll
22:32:08.0458 0x0e34 CryptSvc - ok
22:32:08.0574 0x0e34 [ 24B0B8D3CBB46ED5F16551974AE8D222, E58A214E54C49F01BF860FE6DC075209DFD8D81C0BC2EB95239374AB4F41CC7B ] CTAudSvcService C:\Program Files\Creative\Shared Files\CTAudSvc.exe
22:32:08.0646 0x0e34 CTAudSvcService - detected UnsignedFile.Multi.Generic ( 1 )
22:32:08.0646 0x0e34 Detect skipped due to KSN trusted
22:32:08.0646 0x0e34 CTAudSvcService - ok
22:32:08.0695 0x0e34 [ 281B2B60B5CB449BCF0474EECF73EBEC, B49D2F11426E6E28E1E5F8CA7DF213067A20A5AB6F0177F31A75162DB07CAE16 ] CtClsFlt C:\Windows\system32\DRIVERS\CtClsFlt.sys
22:32:08.0774 0x0e34 CtClsFlt - ok
22:32:08.0873 0x0e34 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] DcomLaunch C:\Windows\system32\rpcss.dll
22:32:08.0977 0x0e34 DcomLaunch - ok
22:32:09.0043 0x0e34 [ 622C41A07CA7E6DD91770F50D532CB6C, 2A9040949CB45F9970FDE930278F30D2F08E957290CB3D4DC4F2CA94F3D444D2 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
22:32:09.0075 0x0e34 DfsC - ok
22:32:09.0280 0x0e34 [ 2CC3DCFB533A1035B13DCAB6160AB38B, C88C91F662ADE248EEE3B568E70C2BC2D5075B7D9B7D3C63E83D011C5F7812B0 ] DFSR C:\Windows\system32\DFSR.exe
22:32:09.0743 0x0e34 DFSR - ok
22:32:09.0821 0x0e34 [ 9028559C132146FB75EB7ACF384B086A, 35159D86706441ED94895B4629411B4445FCB4526AFD1F7036EE647931B7A94D ] Dhcp C:\Windows\System32\dhcpcsvc.dll
22:32:09.0915 0x0e34 Dhcp - ok
22:32:09.0977 0x0e34 [ 5D4AEFC3386920236A548271F8F1AF6A, 11B74D6800EC6F7AAEFB0B6A9F2E8376C7C3B8DB677F03AC3743CB004CA96B08 ] disk C:\Windows\system32\drivers\disk.sys
22:32:10.0008 0x0e34 disk - ok
22:32:10.0071 0x0e34 [ 57D762F6F5974AF0DA2BE88A3349BAAA, D9E7DC8F9FB7837F88BBB95B52147AA80E688FB9762EEA99B8046D9C6AD48F3C ] Dnscache C:\Windows\System32\dnsrslvr.dll
22:32:10.0149 0x0e34 Dnscache - ok
22:32:10.0321 0x0e34 [ 0840ABBBDF438691EE65A20040635CBE, F83597ECECFADBA45242B683A19A01ADF84203B016301B64530C7BE8234175E8 ] DockLoginService C:\Program Files\Dell\DellDock\DockLogin.exe
22:32:10.0368 0x0e34 DockLoginService - detected UnsignedFile.Multi.Generic ( 1 )
22:32:10.0384 0x0e34 Detect skipped due to KSN trusted
22:32:10.0384 0x0e34 DockLoginService - ok
22:32:10.0446 0x0e34 [ 324FD74686B1EF5E7C19A8AF49E748F6, DC6EB4304555B60DD17E04D20DFE4E279718E4041A9310DE29E678834BB22C5B ] dot3svc C:\Windows\System32\dot3svc.dll
22:32:10.0540 0x0e34 dot3svc - ok
22:32:10.0602 0x0e34 [ A622E888F8AA2F6B49E9BC466F0E5DEF, 3DED7F22A29AD2F8C927DFA0FD87FDE5ED0BDCAC7260BD9F71D8EA34328C772A ] DPS C:\Windows\system32\dps.dll
22:32:10.0680 0x0e34 DPS - ok
22:32:10.0733 0x0e34 [ 97FEF831AB90BEE128C9AF390E243F80, A7F4118603E2D5DDDB117EF7C058684EA5B37690EFAB2BEBA570EEF9C36281BE ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
22:32:10.0843 0x0e34 drmkaud - ok
22:32:10.0843 0x0e34 dsl-db - ok
22:32:10.0952 0x0e34 [ 5C2C209CDEFBC51D83D66E8A53B2BE89, 7AE68672A6BEEF601017BE28AA0BF3673318EFE97AA08E70F58A9391C54DF71F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
22:32:11.0030 0x0e34 DXGKrnl - ok
22:32:11.0124 0x0e34 [ 908ED85B7806E8AF3AF5E9B74F7809D4, 9A763D247035578A946094D2C1CE8204E6EDFFD7237C7BF2058B5F4ECC0306E0 ] e1express C:\Windows\system32\DRIVERS\e1e6032.sys
22:32:11.0217 0x0e34 e1express - ok
22:32:11.0233 0x0e34 [ 5425F74AC0C1DBD96A1E04F17D63F94C, AD133CEDCDEA75420C75A91BB4CF7152475D46ED7B7703E3BAE5F9946D610292 ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys
22:32:11.0326 0x0e34 E1G60 - ok
22:32:11.0404 0x0e34 [ C0B95E40D85CD807D614E264248A45B9, 30421DAF1722A225222268CB8BA4FE60CB76C6FD0C9157B0F53FC1368F806A4E ] EapHost C:\Windows\System32\eapsvc.dll
22:32:11.0468 0x0e34 EapHost - ok
22:32:11.0542 0x0e34 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371, F3E9CF5D8E9124CB06F08454C5F0E510DE19A92780151FB2F8A58A0905D59B8F ] Ecache C:\Windows\system32\drivers\ecache.sys
22:32:11.0574 0x0e34 Ecache - ok
22:32:11.0643 0x0e34 [ E00CDAED2C0DBDC60C6E5D000DEE01E9, ED8A9F9363178AE2BA73367DCD3643C7B82A3BA9CCBA28B6408F9444B9DD8459 ] ElRawDisk C:\Windows\system32\drivers\elrawdsk.sys
22:32:11.0675 0x0e34 ElRawDisk - ok
22:32:11.0758 0x0e34 [ 23B62471681A124889978F6295B3F4C6, A90C521F06125B86A26EA625B0E7F811AF7D328E1313165E7AD4A83596A23819 ] elxstor C:\Windows\system32\drivers\elxstor.sys
22:32:11.0820 0x0e34 elxstor - ok
22:32:11.0914 0x0e34 [ 4E6B23DFC917EA39306B529B773950F4, C4BA77632B4BD46C4C1797F7F57399DB506D3EB6E5A0A36C269A793DAA3445C2 ] EMDMgmt C:\Windows\system32\emdmgmt.dll
22:32:12.0070 0x0e34 EMDMgmt - ok
22:32:12.0117 0x0e34 [ F2A80DE2D1B7116052C09CB4D4CA1416, C21E5C078D93AE605E04D251F71B617343C908DF7EF74F96BB5B810052957572 ] ErrDev C:\Windows\system32\drivers\errdev.sys
22:32:12.0179 0x0e34 ErrDev - ok
22:32:12.0273 0x0e34 [ 67058C46504BC12D821F38CF99B7B28F, E8D19F305F78BCA1DA8425315F2C77A377CD51E3CC54323DC2FF355120EA097D ] EventSystem C:\Windows\system32\es.dll
22:32:12.0366 0x0e34 EventSystem - ok
22:32:12.0429 0x0e34 [ 22B408651F9123527BCEE54B4F6C5CAE, 31AF9649333A9496A9224001266D1B68CE2A31B9FB182A755D127FC5492AA6B2 ] exfat C:\Windows\system32\drivers\exfat.sys
22:32:12.0476 0x0e34 exfat - ok
22:32:12.0554 0x0e34 [ 4E404505B3F62ECFBDBCBBCF0A72DBC5, 9F446ED06A31BFE52C4F1E8ACC400B8E3F47A3CC02FFC950DB861B2B3BA4C5B9 ] fastfat C:\Windows\system32\drivers\fastfat.sys
22:32:12.0616 0x0e34 fastfat - ok
22:32:12.0647 0x0e34 [ AFE1E8B9782A0DD7FB46BBD88E43F89A, B4CBE1DC3430F2F3485F49007C71293D5B86E9C405741EA00A67B00A38BE1F8D ] fdc C:\Windows\system32\DRIVERS\fdc.sys
22:32:12.0710 0x0e34 fdc - ok
22:32:12.0756 0x0e34 [ 6629B5F0E98151F4AFDD87567EA32BA3, 8CC02D5E0639CDF74B2F85DB56D6199E1858F1A58465ED1D8B25C968E986132C ] fdPHost C:\Windows\system32\fdPHost.dll
22:32:12.0850 0x0e34 fdPHost - ok
22:32:12.0881 0x0e34 [ 89ED56DCE8E47AF40892778A5BD31FD2, 924360875796C3DDDDA8097FDF53F6846B227F7413766F00AEDD981EFD691BF9 ] FDResPub C:\Windows\system32\fdrespub.dll
22:32:13.0006 0x0e34 FDResPub - ok
22:32:13.0037 0x0e34 [ A8C0139A884861E3AAE9CFE73B208A9F, 3B021D148A2989AAA46AE58E5FED8A2DCA25E9212C2FA7F922880EF5A077E49B ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
22:32:13.0084 0x0e34 FileInfo - ok
22:32:13.0100 0x0e34 [ 0AE429A696AECBC5970E3CF2C62635AE, 1ECC315C099D17835788B68F0DE00EC98DC5AEE8F329D739E0DB90A898F22244 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
22:32:13.0178 0x0e34 Filetrace - ok
22:32:13.0193 0x0e34 [ 85B7CF99D532820495D68D747FDA9EBD, 682D35D219D1AFBE51CF0AB03F2D3E15C940F5AF291C1A611A19F4D279143F3C ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
22:32:13.0271 0x0e34 flpydisk - ok
22:32:13.0349 0x0e34 [ 01334F9EA68E6877C4EF05D3EA8ABB05, 82F8AA6AD2B5077898773D4A5814819EAF0E872FFD95894E06FEDAB6EE92CF99 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
22:32:13.0396 0x0e34 FltMgr - ok
22:32:13.0505 0x0e34 [ 7417E869AE5AAC3026329E7749698110, 14545202D90C23EE6A2ADC5627791A3B43B5EEA6F78F44021C9AE2B5B8A351DD ] FontCache C:\Windows\system32\FntCache.dll
22:32:13.0661 0x0e34 FontCache - ok
22:32:13.0755 0x0e34 [ C7FBDD1ED42F82BFA35167A5C9803EA3, 372FF71070D5ECE17342466A690737A0622E93C98DBED8172C49B0854F0012B7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
22:32:13.0786 0x0e34 FontCache3.0.0.0 - ok
22:32:13.0833 0x0e34 [ B972A66758577E0BFD1DE0F91AAA27B5, E934034F3F740A83D4E7ABCD2C581845AC2945B0BCCAACF65CC3F99A1DBDE455 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
22:32:13.0895 0x0e34 Fs_Rec - ok
22:32:13.0942 0x0e34 [ 34582A6E6573D54A07ECE5FE24A126B5, 5F45DC38F8015AD90616EAD3B57820CCD284938A96B2C4E1FF5FC7BDEE8A848D ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
22:32:13.0989 0x0e34 gagp30kx - ok
22:32:14.0114 0x0e34 [ 37331304E89A773B1A86FE681FCA150D, A4A43DB320A10245309EAAA47761624DB8034D74198091480DB78ED39C28F610 ] GameConsoleService C:\Program Files\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe
22:32:14.0160 0x0e34 GameConsoleService - ok
22:32:14.0223 0x0e34 [ 185ADA973B5020655CEE342059A86CBB, D3E352DFAF30761505480A4C557D980083F65EC5BD46E2656B2114D47B272A89 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:32:14.0254 0x0e34 GEARAspiWDM - ok
22:32:14.0348 0x0e34 [ CD5D0AEEE35DFD4E986A5AA1500A6E66, DCED5126837292593F1C1B35DF18E3B631D6C0C6D0742B77C7B7742C55A7825F ] gpsvc C:\Windows\System32\gpsvc.dll
22:32:14.0457 0x0e34 gpsvc - ok
22:32:14.0582 0x0e34 [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
22:32:14.0613 0x0e34 gupdate - ok
22:32:14.0628 0x0e34 [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
22:32:14.0660 0x0e34 gupdatem - ok
22:32:14.0769 0x0e34 [ 062452B7FFD68C8C042A6261FE8DFF4A, DD9873502456D3C058C6177AC223B28C71370E624FA0814C17EA3D93201F2B56 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys
22:32:14.0895 0x0e34 HDAudBus - ok
22:32:14.0973 0x0e34 [ 1338520E78D90154ED6BE8F84DE5FCEB, 8531F1C5856983EBDA4C2B70162645ECE72FFFBA9FE7A28BCEDDF2169B7ECF9D ] HidBth C:\Windows\system32\drivers\hidbth.sys
22:32:15.0082 0x0e34 HidBth - ok
22:32:15.0083 0x0e34 [ FF3160C3A2445128C5A6D9B076DA519E, DC1A70C80CD55F33B3AD5A21E86AF7C3086D8CC2DC6148C058E74A871E0BAD4A ] HidIr C:\Windows\system32\drivers\hidir.sys
22:32:15.0223 0x0e34 HidIr - ok
22:32:15.0268 0x0e34 [ 84067081F3318162797385E11A8F0582, 11E32E3800CFCA37354388243F88D0239D622891BAC5483518A2BE5D1CA19015 ] hidserv C:\Windows\System32\hidserv.dll
22:32:15.0354 0x0e34 hidserv - ok
22:32:15.0417 0x0e34 [ CCA4B519B17E23A00B826C55716809CC, 91AD0758A6185B0FBBE383BDB1B457FFB850477AFF8DE040DE9527A97D28EF62 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
22:32:15.0495 0x0e34 HidUsb - ok
22:32:15.0560 0x0e34 [ D8AD255B37DA92434C26E4876DB7D418, C901EADDD93FC90C8F29F4B6DE808F8E4F486C877FC0AA27DA4ACDE17E28899D ] hkmsvc C:\Windows\system32\kmsvc.dll
22:32:15.0622 0x0e34 hkmsvc - ok
22:32:15.0669 0x0e34 [ 16EE7B23A009E00D835CDB79574A91A6, 964AFE7D2F7E48C7DE7FDAB48F57ADC4AD44A0B2A9A03071E0E8D334007E5572 ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys
22:32:15.0700 0x0e34 HpCISSs - ok
22:32:15.0809 0x0e34 [ 0EEECA26C8D4BDE2A4664DB058A81937, 6F88567A116B1420BE1C9C8888F34D05F51378092C805EF4E489635CF92D416B ] HTTP C:\Windows\system32\drivers\HTTP.sys
22:32:15.0906 0x0e34 HTTP - ok
22:32:15.0956 0x0e34 [ C6B032D69650985468160FC9937CF5B4, 4D5A944C70037F35A9DBA4F49F174455FA80ED7EAEDAA143F0A2C0E05AE585D8 ] i2omp C:\Windows\system32\drivers\i2omp.sys
22:32:15.0991 0x0e34 i2omp - ok
22:32:16.0009 0x0e34 [ 22D56C8184586B7A1F6FA60BE5F5A2BD, D96A2962848C1F59B143BFEC22EC48BD1C5A75D0EBCFD7FB965E66B85FF7D8CA ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys
22:32:16.0080 0x0e34 i8042prt - ok
22:32:16.0205 0x0e34 [ 7B96206E4BDD2FE582F0DBC46F5F410E, D27BB43E7EE0C2905FF23C48DBF6F492873F65CAD467F13A2731EB7D3A0CE5DC ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
22:32:16.0267 0x0e34 IAANTMON - ok
22:32:16.0361 0x0e34 [ 4B80B97CBF0782B3BB3057F88D42C367, 2FD85468F2458710377182EDEB5C668BB2A6C5E86449EB3843C338BD29B4E635 ] iaStor C:\Windows\system32\drivers\iastor.sys
22:32:16.0439 0x0e34 iaStor - ok
22:32:16.0517 0x0e34 [ 54155EA1B0DF185878E0FC9EC3AC3A14, 344A0793499261D2E4FF2FCCC70501329485F8E299EBC68953D07BA86F0D4729 ] iaStorV C:\Windows\system32\drivers\iastorv.sys
22:32:16.0564 0x0e34 iaStorV - ok
22:32:16.0720 0x0e34 [ DD386C45D2B5863740166783448A2E7A, 10B912BA70306644BE73A53AF4DCDFF63880C4C5860FF6DBA92B0914EB566718 ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:32:16.0891 0x0e34 idsvc - ok
22:32:17.0125 0x0e34 [ 8DAD27DD28A4274866767C89C0BF154F, E2E285DE595E2DC0E3A38AD79AF2605759B211BA06AE2904A3F0062F7F5ACB5E ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
22:32:17.0593 0x0e34 igfx - ok
22:32:17.0671 0x0e34 [ 2D077BF86E843F901D8DB709C95B49A5, 78FF558A881F307858F5C7C74A748B8B2562AF3CAC7EA8639945609001D790CE ] iirsp C:\Windows\system32\drivers\iirsp.sys
22:32:17.0703 0x0e34 iirsp - ok
22:32:17.0796 0x0e34 [ 4687EE0C0DD2CE5F7AAA9C2E33C1DC78, FA8EBED2778D9F7560ADC1B563954EEF98AAE651C0553F2803372B37B122AEB3 ] IKEEXT C:\Windows\System32\ikeext.dll
22:32:17.0890 0x0e34 IKEEXT - ok
22:32:17.0937 0x0e34 [ 83AA759F3189E6370C30DE5DC5590718, 7406FE41EA8FB80052517318CB72E2641E92E579FAFAF5E8DDDFF0BF8DAE773A ] intelide C:\Windows\system32\drivers\intelide.sys
22:32:17.0968 0x0e34 intelide - ok
22:32:18.0030 0x0e34 [ 224191001E78C89DFA78924C3EA595FF, E4EC9CAAEEEAEB30E13F4A8023AF687F29514667380DDFD638BBFFF1D5FC2563 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
22:32:18.0108 0x0e34 intelppm - ok
22:32:18.0186 0x0e34 [ 9AC218C6E6105477484C6FDBE7D409A4, FF30D09CD2A0F5BBEC309E953370F194B6F26BF4227E627B594AAA48B0F5D3C2 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
22:32:18.0249 0x0e34 IPBusEnum - ok
22:32:18.0264 0x0e34 [ 62C265C38769B864CB25B4BCF62DF6C3, CAF6BCE967104233E216464E4729B0275C3BD426D812F404AB0EE83A7F2063D8 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:32:18.0358 0x0e34 IpFilterDriver - ok
22:32:18.0420 0x0e34 [ 1998BD97F950680BB55F55A7244679C2, A4E8BB4C6B2AF4800BD5E0BA8725FD0927F8FB6751AEBF6DD16B59C414CCB9D8 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
22:32:18.0498 0x0e34 iphlpsvc - ok
22:32:18.0514 0x0e34 IpInIp - ok
22:32:18.0545 0x0e34 [ B25AAF203552B7B3491139D582B39AD1, EA9C38F512F40FF12975A6719E6FE4D7EA93A4B2497103E0FDA5A4CD6033C0A6 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys
22:32:18.0639 0x0e34 IPMIDRV - ok
22:32:18.0654 0x0e34 [ 8793643A67B42CEC66490B2A0CF92D68, 8B1ED1314E4C6623824DD6B9C15A0F7F996F4D243BF0B305421251BE40850907 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys
22:32:18.0732 0x0e34 IPNAT - ok
22:32:18.0841 0x0e34 [ 463790AEF94D8EAB674631257F53252E, A02972457F45AD6816CB5F60DE4CD15D68256695FA0F3E4EAD6F9E36CBE54576 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
22:32:18.0904 0x0e34 iPod Service - ok
22:32:18.0966 0x0e34 [ 109C0DFB82C3632FBD11949B73AEEAC9, 73B01426100256B7110DF0B74483AF1B62FC209612EEC29A7BF6DC31A7FBEFB6 ] IRENUM C:\Windows\system32\drivers\irenum.sys
22:32:19.0044 0x0e34 IRENUM - ok
22:32:19.0060 0x0e34 [ 6C70698A3E5C4376C6AB5C7C17FB0614, 10FBCBA5A74AF5D136B152FD4D3DFA2A1F2CEBC3F979D5BA6DB98B3DCB2F7A07 ] isapnp C:\Windows\system32\drivers\isapnp.sys
22:32:19.0107 0x0e34 isapnp - ok
22:32:19.0169 0x0e34 [ 232FA340531D940AAC623B121A595034, 90C93F04D8A0094EEBD118F10223605B8169DA5F24C466F503CED5C014BD17B1 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys
22:32:19.0216 0x0e34 iScsiPrt - ok
22:32:19.0231 0x0e34 [ BCED60D16156E428F8DF8CF27B0DF150, 4934E9AB8A8A548548F0C63517F2BF4DE84B05E5C9C7C2AA6C1517B8F9C340D4 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys
22:32:19.0263 0x0e34 iteatapi - ok
22:32:19.0278 0x0e34 [ 06FA654504A498C30ADCA8BEC4E87E7E, 651BC35A0A3D504573BBAB40DE81929BB18C9FC0CD7944FEAE0E99CD7658EA88 ] iteraid C:\Windows\system32\drivers\iteraid.sys
22:32:19.0309 0x0e34 iteraid - ok
22:32:19.0325 0x0e34 [ 37605E0A8CF00CBBA538E753E4344C6E, B9A9FFDCE45B0830E277CF322C28ACB49372C16144B0F676B283BE5DAE9A7F30 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys
22:32:19.0356 0x0e34 kbdclass - ok
22:32:19.0419 0x0e34 [ EDE59EC70E25C24581ADD1FBEC7325F7, 41B37778E9A12675FC0DF74606AAF18C652EB88513B3C4889C5C512E14587CEE ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys
22:32:19.0497 0x0e34 kbdhid - ok
22:32:19.0543 0x0e34 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] KeyIso C:\Windows\system32\lsass.exe
22:32:19.0590 0x0e34 KeyIso - ok
22:32:19.0668 0x0e34 [ 5035EDF1F2E72F78BB1EC5BD9B97463F, 8AFAD580A96F002FFB22761B65D4B414917895C45B11B53089BB3E0331995EF7 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
22:32:19.0731 0x0e34 KSecDD - ok
22:32:19.0824 0x0e34 [ 8078F8F8F7A79E2E6B494523A828C585, BB399993166853F0C01B7508649ECD7E7473238267BA8333D0441128FE656347 ] KtmRm C:\Windows\system32\msdtckrm.dll
22:32:19.0983 0x0e34 KtmRm - ok
22:32:20.0045 0x0e34 [ 1BF5EEBFD518DD7298434D8C862F825D, F41C79410345C40B346EB5EDEA397ECD29ECB9B921AC3E19F9453E52A7B9288A ] LanmanServer C:\Windows\System32\srvsvc.dll
22:32:20.0107 0x0e34 LanmanServer - ok
22:32:20.0187 0x0e34 [ 1DB69705B695B987082C8BAEC0C6B34F, D395B272F6B69D4A9FC3CDEFD812EF0DBFECF3C1B1C787C7CC1E1A1B091B8DB3 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:32:20.0250 0x0e34 LanmanWorkstation - ok
22:32:20.0328 0x0e34 [ D1C5883087A0C3F1344D9D55A44901F6, 608D67357AFDDD538D2C12C93EB0793ECA4EB3AF2BAB779E881C41F50E4AB911 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
22:32:20.0395 0x0e34 lltdio - ok
22:32:20.0468 0x0e34 [ 2D5A428872F1442631D0959A34ABFF63, E532C6ECFFB936EFF744CA57BDC6394C89E797B6B0822D04F1F3F35D9BDDD4F0 ] lltdsvc C:\Windows\System32\lltdsvc.dll
22:32:20.0584 0x0e34 lltdsvc - ok
22:32:20.0611 0x0e34 [ 35D40113E4A5B961B6CE5C5857702518, 453097AEF46ED48107395D9A1696AAC259FD6CEA8A655D38C5E246FDDAB81664 ] lmhosts C:\Windows\System32\lmhsvc.dll
22:32:20.0790 0x0e34 lmhosts - ok
22:32:20.0821 0x0e34 [ C7E15E82879BF3235B559563D4185365, 98C9268ADF6BAEB0522BB84BE6C98D0D6D5EB4BD27BB61412D208232164C8435 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
22:32:20.0868 0x0e34 LSI_FC - ok
22:32:20.0899 0x0e34 [ EE01EBAE8C9BF0FA072E0FF68718920A, 655924440E611278998226299645BC72B3627A8A057286DC8D65A162CFBBE484 ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
22:32:20.0931 0x0e34 LSI_SAS - ok
22:32:20.0965 0x0e34 [ 912A04696E9CA30146A62AFA1463DD5C, 1D336D47B9D1C8449F29CDB776C092235E3D70CE53D9440970533E376EB004D3 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
22:32:20.0996 0x0e34 LSI_SCSI - ok
22:32:21.0043 0x0e34 [ 8F5C7426567798E62A3B3614965D62CC, 659810257D942C5F4168E1247868CDA990F2324AC9ACAA9A6211F64B7AC9EC6E ] luafv C:\Windows\system32\drivers\luafv.sys
Ratagin
Regular Member
 
Posts: 28
Joined: September 21st, 2011, 8:53 pm

Re: Computer much slower than usual, almost unusable

Unread postby Ratagin » May 21st, 2015, 11:42 pm

22:32:21.0121 0x0e34 luafv - ok
22:32:21.0184 0x0e34 McAfee SiteAdvisor Service - ok
22:32:21.0184 0x0e34 [ 0001CE609D66632FA17B84705F658879, D5F9758BDC2B733307B565A74B33F5581FB425A5A9F32CCFA307DA1569EBD6CD ] megasas C:\Windows\system32\drivers\megasas.sys
22:32:21.0215 0x0e34 megasas - ok
22:32:21.0262 0x0e34 [ C252F32CD9A49DBFC25ECF26EBD51A99, 47EC8F475AB62A00FAF989CD2C3ABDF2922588F75CC15C83CD99A62EF6400FB0 ] MegaSR C:\Windows\system32\drivers\megasr.sys
22:32:21.0355 0x0e34 MegaSR - ok
22:32:21.0449 0x0e34 [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
22:32:21.0480 0x0e34 Microsoft Office Groove Audit Service - ok
22:32:21.0542 0x0e34 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] MMCSS C:\Windows\system32\mmcss.dll
22:32:21.0636 0x0e34 MMCSS - ok
22:32:21.0652 0x0e34 [ E13B5EA0F51BA5B1512EC671393D09BA, 5B380D1B435D809CA201FD5ED075D42F3C6BA1A4EEDBC4040F7E3329F05A334A ] Modem C:\Windows\system32\drivers\modem.sys
22:32:21.0745 0x0e34 Modem - ok
22:32:21.0792 0x0e34 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8, 1E8031D51E074FDFB53E98E26DABF313B901C028D01196BFD402EED5D0A89595 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
22:32:21.0886 0x0e34 monitor - ok
22:32:21.0901 0x0e34 [ 5BF6A1326A335C5298477754A506D263, CC7F58E5955A448F6CE28D6D8EB98C7479E11F931B5C733CFE71A29B2E95923D ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
22:32:21.0948 0x0e34 mouclass - ok
22:32:21.0964 0x0e34 [ 93B8D4869E12CFBE663915502900876F, 7464DE60FAAD8793D855F1F86C3C865B3A3EE41C19A3E926D1BE4426E67F5EC2 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
22:32:22.0026 0x0e34 mouhid - ok
22:32:22.0042 0x0e34 [ BDAFC88AA6B92F7842416EA6A48E1600, 2CA8A7BB260016D6B7953980A94C45A3C5D41F7DC7E73EEFB1C18EA144749503 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys
22:32:22.0088 0x0e34 MountMgr - ok
22:32:22.0135 0x0e34 [ A5F6ADC56FA516594E99C328A7E7FD54, 6FB011B00B8AB085F3083E967B89BBFCA1AC7677407E9E72AD582CCC8212D136 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
22:32:22.0182 0x0e34 MozillaMaintenance - ok
22:32:22.0213 0x0e34 [ 511D011289755DD9F9A7579FB0B064E6, 1FD0D0D5B6E08FE06F7A5D0821BCD859B0F98A6DEA58AAB7FB6C95B64212FFC8 ] mpio C:\Windows\system32\drivers\mpio.sys
22:32:22.0260 0x0e34 mpio - ok
22:32:22.0276 0x0e34 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E, 62055C0DCEB69873B8961AB17DBD002F44319A44CB05EC3A61421A0C6D4736CD ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
22:32:22.0369 0x0e34 mpsdrv - ok
22:32:22.0447 0x0e34 [ 5DE62C6E9108F14F6794060A9BDECAEC, 655E6645CC4A1EDBE5F51F5F80C7B504DD956851E788A6E4E4E08CDCDCE160D9 ] MpsSvc C:\Windows\system32\mpssvc.dll
22:32:22.0588 0x0e34 MpsSvc - ok
22:32:22.0650 0x0e34 [ 4FBBB70D30FD20EC51F80061703B001E, 72907A0CA5CFF82F40C02A65CD8EFD51D7CFC33BE67DE572D1ACF4FD3B248F0A ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys
22:32:22.0681 0x0e34 Mraid35x - ok
22:32:22.0744 0x0e34 [ B0584CA7DEF55929FDB5169BD28B2484, AF6A7E404FEB29F7F3428D0AF6682195E5E8ED106996A04E6947DBD575696546 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
22:32:22.0806 0x0e34 MRxDAV - ok
22:32:22.0884 0x0e34 [ 1E94971C4B446AB2290DEB71D01CF0C2, 4701AA1B419AEF735CB2DA34532B0F1844433272C36D79F4EB55807E39B923D1 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
22:32:22.0946 0x0e34 mrxsmb - ok
22:32:23.0024 0x0e34 [ 4FCCB34D793B116423209C0F8B7A3B03, 7A483AEB691ADBE82779F12F0BB1CCCBFFD7E92902EC1ADC99AB7D129F887143 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:32:23.0102 0x0e34 mrxsmb10 - ok
22:32:23.0134 0x0e34 [ C3CB1B40AD4A0124D617A1199B0B9D7C, B975A39DE6D324C6274B6E3B883F36082A958F028335CEB3A37F44481EB284B3 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:32:23.0180 0x0e34 mrxsmb20 - ok
22:32:23.0227 0x0e34 [ F70590424EEFBF5C27A40C67AFDB8383, 1F2AC1DA12F7E6F09D8F6622EF1366ABD4B86EBE51DD1915E803D56A568A3412 ] msahci C:\Windows\system32\drivers\msahci.sys
22:32:23.0274 0x0e34 msahci - ok
22:32:23.0290 0x0e34 [ 4468B0F385A86ECDDAF8D3CA662EC0E7, EAEDC9CDD2EEC5000AF8190A4BE7729282576C3F88E64FDF57F455F5CECC81C9 ] msdsm C:\Windows\system32\drivers\msdsm.sys
22:32:23.0321 0x0e34 msdsm - ok
22:32:23.0399 0x0e34 [ FD7520CC3A80C5FC8C48852BB24C6DED, C3F3D7A07FAB9AF38A2A00BF0DF6EEE18CA8FE26277BEC9D8ADB793F2CD5EC1F ] MSDTC C:\Windows\System32\msdtc.exe
22:32:23.0492 0x0e34 MSDTC - ok
22:32:23.0524 0x0e34 [ A9927F4A46B816C92F461ACB90CF8515, 753284F726F9B4D3E7322C75532244CA43714F00717C2019391FB36DEE0738C0 ] Msfs C:\Windows\system32\drivers\Msfs.sys
22:32:23.0602 0x0e34 Msfs - ok
22:32:23.0633 0x0e34 [ 0F400E306F385C56317357D6DEA56F62, C48FA8193787359902D20D869F5F602CD66D3C5D061A58DDB72F51EED433C4BC ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
22:32:23.0664 0x0e34 msisadrv - ok
22:32:23.0726 0x0e34 [ 85466C0757A23D9A9AECDC0755203CB2, 79141B8DF9D7470466872AF03A85C3D3976512BFDBDB8B92A22225DC8EFD70A6 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
22:32:23.0836 0x0e34 MSiSCSI - ok
22:32:23.0836 0x0e34 msiserver - ok
22:32:23.0914 0x0e34 [ D8C63D34D9C9E56C059E24EC7185CC07, D0CBFB8D57E6D908679DC0488ED659CA35B92626DEA890873E165F051A1AD2AE ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
22:32:23.0992 0x0e34 MSKSSRV - ok
22:32:24.0007 0x0e34 [ 1D373C90D62DDB641D50E55B9E78D65E, 1D4897A96EA54D6FAC7916D69B4E88CAE1397C38CC8FAE08554772808476357B ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
22:32:24.0101 0x0e34 MSPCLOCK - ok
22:32:24.0101 0x0e34 [ B572DA05BF4E098D4BBA3A4734FB505B, B7923F204CEADD0F62C2FE4B7CF8C56DAB70F88093B15C5692D0E61490CF4BAA ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
22:32:24.0179 0x0e34 MSPQM - ok
22:32:24.0241 0x0e34 [ B49456D70555DE905C311BCDA6EC6ADB, 8E40586B3A1FAE9996459E0261726C9DD6A8D5F575604868C45604613385C92F ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
22:32:24.0288 0x0e34 MsRPC - ok
22:32:24.0304 0x0e34 [ E384487CB84BE41D09711C30CA79646C, 520391DEE14D4D6C1EA99C7D31DD95D56B44D54CA3CD8E5C9855E9C0A04F026C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys
22:32:24.0350 0x0e34 mssmbios - ok
22:32:24.0350 0x0e34 [ 7199C1EEC1E4993CAF96B8C0A26BD58A, DD02DF8ED7AF5BB88BD2A91F38CE4C52432CB8044BDCBC41C320CD22B10B8A3B ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
22:32:24.0428 0x0e34 MSTEE - ok
22:32:24.0491 0x0e34 [ 6A57B5733D4CB702C8EA4542E836B96C, 080FB0B01E949D24CDD6876125B3A72DA9F88845D8B9A1A425BCA99E7ACF6821 ] Mup C:\Windows\system32\Drivers\mup.sys
22:32:24.0522 0x0e34 Mup - ok
22:32:24.0600 0x0e34 [ E4EAF0C5C1B41B5C83386CF212CA9584, 5946C3DCE65A0DB164169A1775DFCA544AF4E1895ADF6916BB1653F373F8D9AF ] napagent C:\Windows\system32\qagentRT.dll
22:32:24.0709 0x0e34 napagent - ok
22:32:24.0772 0x0e34 [ 85C44FDFF9CF7E72A40DCB7EC06A4416, DC37C99C458CA69B33BFD3894187089E947F4F9C01EC2ED024FA8614989E0956 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
22:32:24.0850 0x0e34 NativeWifiP - ok
22:32:24.0943 0x0e34 [ 1357274D1883F68300AEADD15D7BBB42, EE6352CBF0D9D633816F338159CDA27F1A805C3DDC3402D8605B50D8F3CD3300 ] NDIS C:\Windows\system32\drivers\ndis.sys
22:32:25.0037 0x0e34 NDIS - ok
22:32:25.0099 0x0e34 [ 0E186E90404980569FB449BA7519AE61, DE41791D9D3074007D6DD1D3933E7A2A13E3789D0AD4F029105B58279622FC1B ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
22:32:25.0193 0x0e34 NdisTapi - ok
22:32:25.0224 0x0e34 [ D6973AA34C4D5D76C0430B181C3CD389, 7C303F3D6BFF8B82E39998135B444837091AB1F9EB8F28D013E5EF45DB237EFC ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
22:32:25.0302 0x0e34 Ndisuio - ok
22:32:25.0380 0x0e34 [ 818F648618AE34F729FDB47EC68345C3, 5FC8F9237BD7FCE3C62D5BDDD49DC104BE2BECDC2FA8CDC1DB8F1891CBAA9140 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
22:32:25.0458 0x0e34 NdisWan - ok
22:32:25.0489 0x0e34 [ 71DAB552B41936358F3B541AE5997FB3, 30A8B3E33CBF04FC047254E404C0321F9028F2640036AA8AC1EA0A5E64551684 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
22:32:25.0583 0x0e34 NDProxy - ok
22:32:25.0661 0x0e34 [ BCD093A5A6777CF626434568DC7DBA78, 2A283DD93230361204EA0897864EAF0224CB8C02E025AE2E4237B07A598B3EBD ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
22:32:25.0754 0x0e34 NetBIOS - ok
22:32:25.0817 0x0e34 [ ECD64230A59CBD93C85F1CD1CAB9F3F6, 83650D756C1F2768A2AAAFC7924F2A4316ABAEB1708F4B05803CDDD699B5AB6F ] netbt C:\Windows\system32\DRIVERS\netbt.sys
22:32:25.0895 0x0e34 netbt - ok
22:32:25.0910 0x0e34 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] Netlogon C:\Windows\system32\lsass.exe
22:32:25.0957 0x0e34 Netlogon - ok
22:32:26.0035 0x0e34 [ C8052711DAECC48B982434C5116CA401, 417DEB86D157DD3F0B4678410FE27FDD3E8FA04AB03AF398F6C02BF207070B35 ] Netman C:\Windows\System32\netman.dll
22:32:26.0129 0x0e34 Netman - ok
22:32:26.0254 0x0e34 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:32:26.0300 0x0e34 NetMsmqActivator - ok
22:32:26.0316 0x0e34 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:32:26.0363 0x0e34 NetPipeActivator - ok
22:32:26.0394 0x0e34 [ 2EF3BBE22E5A5ACD1428EE387A0D0172, 55DB91EDD0339D2434C06445F8A716A48EA90925B0FF7EBF45BB79D4B54B80BF ] netprofm C:\Windows\System32\netprofm.dll
22:32:26.0503 0x0e34 netprofm - ok
22:32:26.0519 0x0e34 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:32:26.0566 0x0e34 NetTcpActivator - ok
22:32:26.0581 0x0e34 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:32:26.0628 0x0e34 NetTcpPortSharing - ok
22:32:26.0706 0x0e34 [ 2E7FB731D4790A1BC6270ACCEFACB36E, EE9A00B694E8A3A5842CDC56C7BA1364317AC8134E046A0059661D057094B1A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
22:32:26.0737 0x0e34 nfrd960 - ok
22:32:26.0800 0x0e34 [ C96411DD46AABC0D6F3CF06D0E0E7E14, 0D36F322AF1B923D96735BFFCAC3FDB0B282E59220BADAB8B49AC178A6765380 ] NlaSvc C:\Windows\System32\nlasvc.dll
22:32:26.0878 0x0e34 NlaSvc - ok
22:32:26.0940 0x0e34 [ D36F239D7CCE1931598E8FB90A0DBC26, DF9397411D0CE5A87E3346D4E6E25BEC537A21BCE196CC55FD999CD08FC4A637 ] Npfs C:\Windows\system32\drivers\Npfs.sys
22:32:27.0018 0x0e34 Npfs - ok
22:32:27.0065 0x0e34 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD, 15CA178518EB3D457AA4C109D97A8490821590842AE4E9841703B5A55870C8F6 ] nsi C:\Windows\system32\nsisvc.dll
22:32:27.0158 0x0e34 nsi - ok
22:32:27.0221 0x0e34 [ 609773E344A97410CE4EBF74A8914FCF, 90B9CBD2B62854DD503DE4A910CB987D402368EB99882FE20FFB6DEACD70F2BD ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
22:32:27.0314 0x0e34 nsiproxy - ok
22:32:27.0439 0x0e34 [ 2C1121F2B87E9A6B12485DF53CD848C7, E580428F3BA7B201C6C7CFADF1F44A6ECA4F589EDB034DA14260136236195936 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
22:32:27.0611 0x0e34 Ntfs - ok
22:32:27.0689 0x0e34 [ E875C093AEC0C978A90F30C9E0DFBB72, D3A480CD7EF374EFBC1BB831B33B81534774DDDBB0FB338BEE1D444949FD8DE7 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys
22:32:27.0829 0x0e34 ntrigdigi - ok
22:32:27.0845 0x0e34 [ C5DBBCDA07D780BDA9B685DF333BB41E, 3652893DFF05469A273C3073D8D0A9D6D6BBDEC7855FEA8EAB768F95BA674108 ] Null C:\Windows\system32\drivers\Null.sys
22:32:27.0938 0x0e34 Null - ok
22:32:28.0001 0x0e34 [ 2EDF9E7751554B42CBB60116DE727101, 37A0AA78E83DBB5A788F7F067EB71DDF6CCC72A66BB41B209E1A5E2F68F8AF9B ] nvraid C:\Windows\system32\drivers\nvraid.sys
22:32:28.0048 0x0e34 nvraid - ok
22:32:28.0048 0x0e34 [ ABED0C09758D1D97DB0042DBB2688177, 84B9BF886EF9181915E8AB6D971446BC681E6DE4485DBECD62838EAFA10E7F46 ] nvstor C:\Windows\system32\drivers\nvstor.sys
22:32:28.0094 0x0e34 nvstor - ok
22:32:28.0110 0x0e34 [ 18BBDF913916B71BD54575BDB6EEAC0B, 5FBA165149AB09E869DCE35622E91CFC964BDD22B31A5E76CF12F1565402B207 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
22:32:28.0157 0x0e34 nv_agp - ok
22:32:28.0157 0x0e34 NwlnkFlt - ok
22:32:28.0172 0x0e34 NwlnkFwd - ok
22:32:28.0235 0x0e34 [ 2CF21D5F8F1B74BB1922135AC2B12DDB, A6D6296A5477CB2AF7252CB1A0C4B5C384D0BFAE9F4860CAB466209BDC72C747 ] OA009Ufd C:\Windows\system32\DRIVERS\OA009Ufd.sys
22:32:28.0282 0x0e34 OA009Ufd - ok
22:32:28.0313 0x0e34 [ 636C6EE8BB6EC473B8FE221EFF77E0CC, 5996BE7E14645ACDE3F7D91C8854C930D75173F5B579EC5D0705253EF1A226AC ] OA009Vid C:\Windows\system32\DRIVERS\OA009Vid.sys
22:32:28.0391 0x0e34 OA009Vid - ok
22:32:28.0516 0x0e34 [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
22:32:28.0578 0x0e34 odserv - ok
22:32:28.0640 0x0e34 [ BE32DA025A0BE1878F0EE8D6D9386CD5, B9D6CB4626FC67D108D713467C9ED8D0E2A071D98621B5531AD9D0C172FE7B89 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
22:32:28.0781 0x0e34 ohci1394 - ok
22:32:28.0843 0x0e34 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
22:32:28.0874 0x0e34 ose - ok
22:32:28.0984 0x0e34 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2pimsvc C:\Windows\system32\p2psvc.dll
22:32:29.0202 0x0e34 p2pimsvc - ok
22:32:29.0280 0x0e34 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] p2psvc C:\Windows\system32\p2psvc.dll
22:32:29.0452 0x0e34 p2psvc - ok
22:32:29.0514 0x0e34 [ 9D80E0BE979C3EDAF2863F23B88F4DE6, F257ED0D25E3F60ADEEF6F8BDFB46BA30779F066F20B69ACA3D2C79E8AEABB70 ] Packet C:\Windows\system32\DRIVERS\packet.sys
22:32:29.0561 0x0e34 Packet - ok
22:32:29.0639 0x0e34 [ 0FA9B5055484649D63C303FE404E5F4D, ABF357001A5E7B21621560E74FA538E2D899C5111A6AAC784B5B12D9D819C6CD ] Parport C:\Windows\system32\drivers\parport.sys
22:32:29.0764 0x0e34 Parport - ok
22:32:29.0826 0x0e34 [ B9C2B89F08670E159F7181891E449CD9, BD48CE95CF4B75D1FD5FD379B2A8727BC000F2B6748B77636C6BDB0B37B0344A ] partmgr C:\Windows\system32\drivers\partmgr.sys
22:32:29.0857 0x0e34 partmgr - ok
22:32:29.0873 0x0e34 [ 4F9A6A8A31413180D0FCB279AD5D8112, DCE48BC6E3447403521BB9FBF727E629DEE45B69B8AE8CFEE1A67FECAE3CB9D3 ] Parvdm C:\Windows\system32\drivers\parvdm.sys
22:32:30.0013 0x0e34 Parvdm - ok
22:32:30.0076 0x0e34 [ C6276AD11F4BB49B58AA1ED88537F14A, 409E956AF994640DF8D062E5E41F87A6EE7EEE0335C191B582722A49322357CE ] PcaSvc C:\Windows\System32\pcasvc.dll
22:32:30.0122 0x0e34 PcaSvc - ok
22:32:30.0372 0x0e34 [ 42EDE7D217325FF56CB8A9983CD7F73B, 5594ADBD2447FCE166E2FBFBE38AA249B9C53D7D949F5D99DA43A52CDF3E939A ] PCD5SRVC{3F6A8B78-EC003E00-05040104} C:\PROGRA~1\DELLSU~1\HWDiag\bin\PCD5SRVC.pkms
22:32:30.0403 0x0e34 PCD5SRVC{3F6A8B78-EC003E00-05040104} - ok
22:32:30.0481 0x0e34 [ 941DC1D19E7E8620F40BBC206981EFDB, 156142A8B587131D2D47074CBFD0A31F69B3C27A8C74C8C4F29DFE7B53BBA802 ] pci C:\Windows\system32\drivers\pci.sys
22:32:30.0512 0x0e34 pci - ok
22:32:30.0575 0x0e34 [ FC175F5DDAB666D7F4D17449A547626F, 7D6108213D1AD3F97A3B83E491BCCC7D6F5BC72C32A182BDDE8736851A26C8D2 ] pciide C:\Windows\system32\drivers\pciide.sys
22:32:30.0622 0x0e34 pciide - ok
22:32:30.0637 0x0e34 [ E6F3FB1B86AA519E7698AD05E58B04E5, 2C4B45DDD3B980C9DAA6F039CAEFCD6E84A4D5BB43AFBA73C0C42B5556C1303C ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
22:32:30.0684 0x0e34 pcmcia - ok
22:32:30.0778 0x0e34 [ 6349F6ED9C623B44B52EA3C63C831A92, 9EAA3ABD396870123107D6E1B758F56FDA378BD28B28DB8415AA470D24294F92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys
22:32:30.0965 0x0e34 PEAUTH - ok
22:32:31.0152 0x0e34 [ B1689DF169143F57053F795390C99DB3, 887B8C76B34CABC68067C0F27CC4EEF02457A53634C96FE5B0FE9B99453BDBEF ] pla C:\Windows\system32\pla.dll
22:32:31.0448 0x0e34 pla - ok
22:32:31.0526 0x0e34 [ C5E7F8A996EC0A82D508FD9064A5569E, 416A93816CDF12DD42DEA796D37E6E2000D3172AAAB20D3EAD3B715DACD4B61F ] PlugPlay C:\Windows\system32\umpnpmgr.dll
22:32:31.0620 0x0e34 PlugPlay - ok
22:32:31.0698 0x0e34 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll
22:32:31.0792 0x0e34 PNRPAutoReg - ok
22:32:31.0838 0x0e34 [ 0C8E8E61AD1EB0B250B846712C917506, 8F23657B90BFFCD7273B93EDA2D3768F35C1C5A313F22AE33452BE3B2A550649 ] PNRPsvc C:\Windows\system32\p2psvc.dll
22:32:32.0026 0x0e34 PNRPsvc - ok
22:32:32.0119 0x0e34 [ D0494460421A03CD5225CCA0059AA146, FC30E90522C63F2A66D89381705712D2CDF07B2E029DF40C2DEBB2353E763E90 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
22:32:32.0244 0x0e34 PolicyAgent - ok
22:32:32.0322 0x0e34 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1, 6E4B188A4BFDBBCA51347BCCE2873F2D0F858398851B9B5129CB9F36A02E4354 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
22:32:32.0384 0x0e34 PptpMiniport - ok
22:32:32.0400 0x0e34 [ 2027293619DD0F047C584CF2E7DF4FFD, B7C172CCD08D8A30483D27536355ED1E5009B33629355B426470AFBA8542B394 ] Processor C:\Windows\system32\drivers\processr.sys
22:32:32.0509 0x0e34 Processor - ok
22:32:32.0572 0x0e34 [ 0D5DAD610D7EA1627581ED06FB2BAA9A, 6E27CF3A1624AE10EECB8B5F38E03D76A6AABE4E75DD66DEDD67E0773935A396 ] ProfSvc C:\Windows\system32\profsvc.dll
22:32:32.0618 0x0e34 ProfSvc - ok
22:32:32.0650 0x0e34 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] ProtectedStorage C:\Windows\system32\lsass.exe
22:32:32.0696 0x0e34 ProtectedStorage - ok
22:32:32.0759 0x0e34 [ 99514FAA8DF93D34B5589187DB3AA0BA, 4DDE5EC0C721B22E1D7D55ED3514B60EA07435C232A3A931BB49C7F486B52C18 ] PSched C:\Windows\system32\DRIVERS\pacer.sys
22:32:32.0837 0x0e34 PSched - ok
22:32:32.0899 0x0e34 [ 03E0FE281823BA64B3782F5B38950E73, D47E5536AD28D02B7D784846CFB2F4FD96187BFD64FC07BACDE9DC7B75D1D2E2 ] PxHelp20 C:\Windows\system32\Drivers\PxHelp20.sys
22:32:32.0930 0x0e34 PxHelp20 - ok
22:32:33.0024 0x0e34 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6, 8B7D44A7698B95FE34CBBE4FAB2F01EC1F5BA86C2B19672F99767E650E99BF1C ] ql2300 C:\Windows\system32\drivers\ql2300.sys
22:32:33.0227 0x0e34 ql2300 - ok
22:32:33.0305 0x0e34 [ 81A7E5C076E59995D54BC1ED3A16E60B, A2988F065F93C41B3B389BFF3BB3FD69F768C2AF249C2356F315CC92E5C9E128 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
22:32:33.0352 0x0e34 ql40xx - ok
22:32:33.0414 0x0e34 [ E9ECAE663F47E6CB43962D18AB18890F, F1A05320CAED9E745AA36A6DA9B64C48AAEDE888B42B249840CEB31448F7F432 ] QWAVE C:\Windows\system32\qwave.dll
22:32:33.0476 0x0e34 QWAVE - ok
22:32:33.0508 0x0e34 [ 9F5E0E1926014D17486901C88ECA2DB7, 67CDFB99AB546DCEEF20507EAC07DD52FFB51BFDFE9416ABEDDC1201B60D720E ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
22:32:33.0570 0x0e34 QWAVEdrv - ok
22:32:33.0757 0x0e34 [ E642B131FB74CAF4BB8A014F31113142, 18A81B27FB2DA556AC51DBA8956203A6E821D75B2B09F11049250E732318F573 ] R300 C:\Windows\system32\DRIVERS\atikmdag.sys
22:32:34.0256 0x0e34 R300 - ok
22:32:34.0303 0x0e34 [ 147D7F9C556D259924351FEB0DE606C3, E41EBA5F3098C6CF2BE4C0060A5F4BF161C3677D983B7A0D70ACC12FC3CFEFD7 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
22:32:34.0381 0x0e34 RasAcd - ok
22:32:34.0444 0x0e34 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F, 6A410ABCCD2211EFF511CDBF22E4152B57D2996336EBE711DFF71904AF232DB2 ] RasAuto C:\Windows\System32\rasauto.dll
22:32:34.0553 0x0e34 RasAuto - ok
22:32:34.0615 0x0e34 [ A214ADBAF4CB47DD2728859EF31F26B0, A24F37F55E2C018B1B4FA2C568A01AAAAEA1220833ED24A93378386174A70A32 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
22:32:34.0709 0x0e34 Rasl2tp - ok
22:32:34.0787 0x0e34 [ 75D47445D70CA6F9F894B032FBC64FCF, 9112EA5D25F867136858524C7965ACCEDC02675D1E2985B950598D89CCF25E14 ] RasMan C:\Windows\System32\rasmans.dll
22:32:34.0880 0x0e34 RasMan - ok
22:32:34.0943 0x0e34 [ 509A98DD18AF4375E1FC40BC175F1DEF, CC7C278CA298CE102D871E34C176E73F903D6687D1E8B5AFAB8772C7DE1A60B1 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
22:32:35.0036 0x0e34 RasPppoe - ok
22:32:35.0099 0x0e34 [ 2005F4A1E05FA09389AC85840F0A9E4D, D8A664073FDE82F9AB324347024CDB7043635C84EB11C24C59AB384C52F0FD94 ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
22:32:35.0146 0x0e34 RasSstp - ok
22:32:35.0224 0x0e34 [ B14C9D5B9ADD2F84F70570BBBFAA7935, 3D533767A50554B86C769DF4D8841B3EA680B3807E85EA3533BDA9B649548269 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
22:32:35.0317 0x0e34 rdbss - ok
22:32:35.0380 0x0e34 [ 89E59BE9A564262A3FB6C4F4F1CD9899, 6F948FB0E73495CA60B7B19E758268495EC8A084C475EC59AD7940AA619570BB ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
22:32:35.0458 0x0e34 RDPCDD - ok
22:32:35.0504 0x0e34 [ FBC0BACD9C3D7F6956853F64A66E252D, 7672B10C7039295B152C02C96903E869FF2C0A88A2C3FA89BAE9F1D593B43569 ] rdpdr C:\Windows\system32\drivers\rdpdr.sys
22:32:35.0582 0x0e34 rdpdr - ok
22:32:35.0598 0x0e34 [ 9D91FE5286F748862ECFFA05F8A0710C, 33F37F1B207151A5564BF051BBF16F35D8C5A0F426CCA078A51F125BF09E487B ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
22:32:35.0707 0x0e34 RDPENCDD - ok
22:32:35.0801 0x0e34 [ C127EBD5AFAB31524662C48DFCEB773A, 40A6B88FEAFF02D1B5C0CA32F290CF3D9B48B85D248C7532F30CC5C09BAA4D89 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
22:32:35.0863 0x0e34 RDPWD - ok
22:32:35.0941 0x0e34 [ BCDD6B4804D06B1F7EBF29E53A57ECE9, 8A961CCD0A0265E03D9952C733B593B02B5CF64E308D6B420276D2D6B20F86FC ] RemoteAccess C:\Windows\System32\mprdim.dll
22:32:36.0035 0x0e34 RemoteAccess - ok
22:32:36.0113 0x0e34 [ 9E6894EA18DAFF37B63E1005F83AE4AB, 5D6DF994D297C875D547C7B111A571AA90D582DAECADE18A53F65AD988819E67 ] RemoteRegistry C:\Windows\system32\regsvc.dll
22:32:36.0175 0x0e34 RemoteRegistry - ok
22:32:36.0191 0x0e34 [ 5123F83CBC4349D065534EEB6BBDC42B, 92A3F38EA924D83D601BB93E3750F9DBC2DD963FB7ACF2A0E776297E21815225 ] RpcLocator C:\Windows\system32\locator.exe
22:32:36.0253 0x0e34 RpcLocator - ok
22:32:36.0347 0x0e34 [ 3B5B4D53FEC14F7476CA29A20CC31AC9, EC02A412DA5FDE2C759A4A2C5904579E1CE7C4999CE87145812F354FC8F5E183 ] RpcSs C:\Windows\system32\rpcss.dll
22:32:36.0487 0x0e34 RpcSs - ok
22:32:36.0550 0x0e34 [ 9C508F4074A39E8B4B31D27198146FAD, 84913471E5A6C297B1EDABE45EF3FE7D2C4410EF04370F615109FD9E2690FFDB ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
22:32:36.0628 0x0e34 rspndr - ok
22:32:36.0706 0x0e34 [ D1FB9A678BD6C2B1129FCB09D5FEB6DD, 61E74F62B2599EAC2322EB7B448E85026B43CF9760582BD95A4B326D3ADEBAE3 ] RTSTOR C:\Windows\system32\drivers\RTSTOR.SYS
22:32:36.0737 0x0e34 RTSTOR - ok
22:32:36.0752 0x0e34 [ A3E186B4B935905B829219502557314E, 7F58EAC6C12208D792C77014AC9D37AD1A7B2E73863C914F5DA831A72E1D52BB ] SamSs C:\Windows\system32\lsass.exe
22:32:36.0799 0x0e34 SamSs - ok
22:32:36.0830 0x0e34 [ 3CE8F073A557E172B330109436984E30, CEC281C6076FAA1E34372CF419C6308E73811316606B8D0D9055B7D8952BDC88 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
22:32:36.0862 0x0e34 sbp2port - ok
22:32:36.0940 0x0e34 [ 77B7A11A0C3D78D3386398FBBEA1B632, A3D290AB793BDC2F84C7B963300DFCE81CFE082A0FFF7489E8E5B14714892C00 ] SCardSvr C:\Windows\System32\SCardSvr.dll
22:32:37.0018 0x0e34 SCardSvr - ok
22:32:37.0127 0x0e34 [ 1A58069DB21D05EB2AB58EE5753EBE8D, EED8111EB613F4C93D1638C74FDB0A6DC6694E1B108DCD0D794B5B5F9B8C6EE4 ] Schedule C:\Windows\system32\schedsvc.dll
22:32:37.0236 0x0e34 Schedule - ok
22:32:37.0298 0x0e34 [ 312EC3E37A0A1F2006534913E37B4423, 81B8F462336791D162DAFA8092C1F437638DA3022CA24A2458B9FE183FC18C5D ] SCPolicySvc C:\Windows\System32\certprop.dll
22:32:37.0361 0x0e34 SCPolicySvc - ok
22:32:37.0439 0x0e34 [ 716313D9F6B0529D03F726D5AAF6F191, 44FE994A11631C1D99C73026340BACE39973C65A1281D87A61B481C9B5FAB251 ] SDRSVC C:\Windows\System32\SDRSVC.dll
22:32:37.0501 0x0e34 SDRSVC - ok
22:32:37.0532 0x0e34 [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv C:\Windows\system32\drivers\secdrv.sys
22:32:37.0657 0x0e34 secdrv - ok
22:32:37.0720 0x0e34 [ FD5199D4D8A521005E4B5EE7FE00FA9B, 0FB7A1D300C72B1ADC423CC57343C17853E5F8ACFE3EA2C42FAC2FF72E502FBE ] seclogon C:\Windows\system32\seclogon.dll
22:32:37.0813 0x0e34 seclogon - ok
22:32:37.0876 0x0e34 [ A9BBAB5759771E523F55563D6CBE140F, 415BF6F6A1E4C5F98DABF9C2EEAF8CA49730693046E5F94C7655683717EDAD75 ] SENS C:\Windows\system32\sens.dll
22:32:37.0954 0x0e34 SENS - ok
22:32:38.0016 0x0e34 [ 68E44E331D46F0FB38F0863A84CD1A31, 0778D85B6869CE2610820DC9724360538BFE832426E898AEBC34E53D2AB4322B ] Serenum C:\Windows\system32\drivers\serenum.sys
22:32:38.0125 0x0e34 Serenum - ok
22:32:38.0141 0x0e34 [ C70D69A918B178D3C3B06339B40C2E1B, 40BEEECA4C797A3355F4B01C57C2763C33028F27826315062320789A496D0810 ] Serial C:\Windows\system32\drivers\serial.sys
22:32:38.0281 0x0e34 Serial - ok
22:32:38.0297 0x0e34 [ 8AF3D28A879BF75DB53A0EE7A4289624, C870BEBB969DCD9170E64584D1CD329A193D9FC812A45EF3574891110CA68B45 ] sermouse C:\Windows\system32\drivers\sermouse.sys
22:32:38.0363 0x0e34 sermouse - ok
22:32:38.0441 0x0e34 [ D2193326F729B163125610DBF3E17D57, 82C894E24E2C139C884246A693AD37BBF0A4E9375B7F7A288EF1DB22F89434B9 ] SessionEnv C:\Windows\system32\sessenv.dll
22:32:38.0502 0x0e34 SessionEnv - ok
22:32:38.0526 0x0e34 [ 3EFA810BDCA87F6ECC24F9832243FE86, E50FEA94DB9851A46A8A71A8C061AC953A9D5B14585382B3F0FFC84931A0A68F ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
22:32:38.0606 0x0e34 sffdisk - ok
22:32:38.0606 0x0e34 [ E95D451F7EA3E583AEC75F3B3EE42DC5, B014BE4F9B0C79ECCE2537D1CF4AAD48ACB4C5AD3DACAC4444F0F465B9689921 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
22:32:38.0684 0x0e34 sffp_mmc - ok
22:32:38.0684 0x0e34 [ 3D0EA348784B7AC9EA9BD9F317980979, 2500CE188C9B71C50E966FA575303AEFE50934E376C530AECEC7C7533C15EF08 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
22:32:38.0780 0x0e34 sffp_sd - ok
22:32:38.0795 0x0e34 [ 46ED8E91793B2E6F848015445A0AC188, 34A97304F23EA153422848F6F1CAF8ADF0944EA781E12F027B6DEAF751A04B5D ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
22:32:38.0936 0x0e34 sfloppy - ok
22:32:39.0025 0x0e34 [ 89C8CE6971A3E571176348E237018C0A, A37C56F75E1D35FA2DCD8700E6FBFAA9746852F41940CA300197239D4D49E7CD ] SftService C:\Windows\sminst\sftservice.EXE
22:32:39.0175 0x0e34 SftService - ok
22:32:39.0278 0x0e34 [ E1499BD0FF76B1B2FBBF1AF339D91165, 9A8F0403467E75880D3070C4D862489A75134383BAF8E7C45F8C5E7DFB0605A5 ] SharedAccess C:\Windows\System32\ipnathlp.dll
22:32:39.0405 0x0e34 SharedAccess - ok
22:32:39.0483 0x0e34 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:32:39.0577 0x0e34 ShellHWDetection - ok
22:32:39.0639 0x0e34 [ 1D76624A09A054F682D746B924E2DBC3, DC903DD466AB8899883253F09477B02E4E93A31C8B279F9F02BD555F1AA083B7 ] sisagp C:\Windows\system32\drivers\sisagp.sys
22:32:39.0670 0x0e34 sisagp - ok
22:32:39.0686 0x0e34 [ 43CB7AA756C7DB280D01DA9B676CFDE2, 08484CAEA0518C0A4CCCD292D8C803B27FEC453537EE1E4CEE74A7208356A474 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys
22:32:39.0717 0x0e34 SiSRaid2 - ok
22:32:39.0733 0x0e34 [ A99C6C8B0BAA970D8AA59DDC50B57F94, 97AC9DD6DC4F58AC60E819B999BB157663EE7C1739521D16768AA9AC00DAD012 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
22:32:39.0764 0x0e34 SiSRaid4 - ok
22:32:39.0920 0x0e34 [ 704B4F81729F676BBF034529FC334D82, 1E50DAF97836807A500284385D99272780A8B69CA88761250451060B207824F8 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe
22:32:39.0982 0x0e34 SkypeUpdate - ok
22:32:40.0310 0x0e34 [ 862BB4CBC05D80C5B45BE430E5EF872F, F4961B22C93E472C8C862421AA231CDDA9E40D3958741A1D666357F22CC3143D ] slsvc C:\Windows\system32\SLsvc.exe
22:32:41.0043 0x0e34 slsvc - ok
22:32:41.0121 0x0e34 [ 6EDC422215CD78AA8A9CDE6B30ABBD35, D8342BC3152859F4F7512E85ABEC61147DBCAB515458644728874E42F639D6CA ] SLUINotify C:\Windows\system32\SLUINotify.dll
22:32:41.0215 0x0e34 SLUINotify - ok
22:32:41.0293 0x0e34 [ 7B75299A4D201D6A6533603D6914AB04, 172BE3951F06B1991EF70B71EB91786D1EFC4E381C22BCA3A5F622CD59F3227E ] Smb C:\Windows\system32\DRIVERS\smb.sys
22:32:41.0386 0x0e34 Smb - ok
22:32:41.0464 0x0e34 [ 2A146A055B4401C16EE62D18B8E2A032, D0930FFA53951C92F56E1ECB41374F4C0AA01ECBF99F474513A21EAD579CFE47 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
22:32:41.0511 0x0e34 SNMPTRAP - ok
22:32:41.0589 0x0e34 [ 9B24DCA429F819DB314F30EE4C6C80FD, 0B06FB847637EB0EB8766C2BDE6E3F47AEC21E9D88F42EC707B9C93D49AAB7CB ] Sound Blaster X-Fi MB Licensing Service C:\Program Files\Common Files\Creative Labs Shared\Service\XMBLicensing.exe
22:32:41.0605 0x0e34 Sound Blaster X-Fi MB Licensing Service - detected UnsignedFile.Multi.Generic ( 1 )
22:32:41.0605 0x0e34 Detect skipped due to KSN trusted
22:32:41.0605 0x0e34 Sound Blaster X-Fi MB Licensing Service - ok
22:32:41.0667 0x0e34 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF, E03BEE733F4C2A5F39946D4955679A290E22758DFCE4222EE69ABF64FC54EDF7 ] spldr C:\Windows\system32\drivers\spldr.sys
22:32:41.0698 0x0e34 spldr - ok
22:32:41.0776 0x0e34 [ 8554097E5136C3BF9F69FE578A1B35F4, 2578545CFD647FB18F217B33C8CB4F0184A35F548659494056E455020CC15FB0 ] Spooler C:\Windows\System32\spoolsv.exe
22:32:41.0839 0x0e34 Spooler - ok
22:32:41.0917 0x0e34 [ 777115C9CC675BD98127660712D2F784, F9873482BEB148E6798643820DF1ECDEE2642C3793EE27E94FF2D6B9E4CEB2D4 ] sprtsvc_DellSupportCenter C:\Program Files\Dell Support Center\bin\sprtsvc.exe
22:32:41.0948 0x0e34 sprtsvc_DellSupportCenter - ok
22:32:42.0057 0x0e34 [ C4BB8A12843D9CBB65F5FF617F389BBD, 4BE4347E8BFC18E97B7910BF26F8845CCC917E4727EBD6617466615F2E0192B8 ] sptd C:\Windows\system32\Drivers\sptd.sys
22:32:42.0057 0x0e34 Suspicious file ( NoAccess ): C:\Windows\system32\Drivers\sptd.sys. md5: C4BB8A12843D9CBB65F5FF617F389BBD, sha256: 4BE4347E8BFC18E97B7910BF26F8845CCC917E4727EBD6617466615F2E0192B8
22:32:42.0104 0x0e34 sptd - detected LockedFile.Multi.Generic ( 1 )
22:32:42.0104 0x0e34 Detect skipped due to KSN trusted
22:32:42.0104 0x0e34 sptd - ok
22:32:42.0182 0x0e34 [ 41987F9FC0E61ADF54F581E15029AD91, A46E718648C2DD3B43FC3798932C966315893A59442A0686CE46C605B9E4641E ] srv C:\Windows\system32\DRIVERS\srv.sys
22:32:42.0244 0x0e34 srv - ok
22:32:42.0307 0x0e34 [ FF33AFF99564B1AA534F58868CBE41EF, EFBB005DA19E5B320009CBF93E686D8BFA6A50A23B5A5001C7C84C7D85EF7D49 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
22:32:42.0385 0x0e34 srv2 - ok
22:32:42.0416 0x0e34 [ 7605C0E1D01A08F3ECD743F38B834A44, 83A77E31004BCF83443F30EFC290E04BB1A2F332E8DFD614AB6E25B527C92299 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
22:32:42.0494 0x0e34 srvnet - ok
22:32:42.0556 0x0e34 [ 03D50B37234967433A5EA5BA72BC0B62, 7B61D6A4BF5D446A9473D058BC207FB6DA7C2FEFB8083F3B66CAC8907DBD8327 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
22:32:42.0650 0x0e34 SSDPSRV - ok
22:32:42.0681 0x0e34 [ 6F1A32E7B7B30F004D9A20AFADB14944, AA9D874A14CA4779E76701D2B02F4CCA92CD5917435FB4CACA149FCB2D1D4C4C ] SstpSvc C:\Windows\system32\sstpsvc.dll
22:32:42.0759 0x0e34 SstpSvc - ok
22:32:42.0931 0x0e34 [ CB2449150A5EA17CAA0B94363D9440CC, 7D852C5EB84738B9D1A5A096E54279DAFA1BC0407D8A6F66A79F38CB269D2E1F ] STacSV C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_ae0b52e0\STacSV.exe
22:32:42.0993 0x0e34 STacSV - ok
22:32:43.0056 0x0e34 [ 14A9AD287FDA70A06463E09C4328C1F2, 5CEFDC454C31F78BF4C8F8A7EAFBADB7683125B9A89B90F2AA2F36C0F810FCEE ] STHDA C:\Windows\system32\DRIVERS\stwrt.sys
22:32:43.0134 0x0e34 STHDA - ok
22:32:43.0227 0x0e34 [ 5DE7D67E49B88F5F07F3E53C4B92A352, 6930A598C35646646ED0E91633797EFE139AE6CDD0012335BD1340754A22F997 ] stisvc C:\Windows\System32\wiaservc.dll
22:32:43.0321 0x0e34 stisvc - ok
22:32:43.0399 0x0e34 [ 1D0063597C3666404FCF97698ABEB019, 352A63C97F930499BC598C2A398663377D7CCD4A42770E35635C90EDC4DA530A ] stllssvr C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
22:32:43.0414 0x0e34 stllssvr - ok
22:32:43.0462 0x0e34 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56, 23CC47FA2D6E183D69DB0D3D3F3081A830D94A58FBC0A9A295B3A56C51E9486A ] swenum C:\Windows\system32\DRIVERS\swenum.sys
22:32:43.0493 0x0e34 swenum - ok
22:32:43.0578 0x0e34 [ F21FD248040681CCA1FB6C9A03AAA93D, 32FE765841A183A1F2C1ACACBBF8CDB11E7D4D4396F9C9F6CFF1B51C9B620ED3 ] swprv C:\Windows\System32\swprv.dll
22:32:43.0693 0x0e34 swprv - ok
22:32:43.0725 0x0e34 [ 192AA3AC01DF071B541094F251DEED10, 5C6EB56D1C39F3717EB754A1B37C8A618BA4F2107F64048E985D71FA04D1AD05 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys
22:32:43.0738 0x0e34 Symc8xx - ok
22:32:43.0750 0x0e34 [ 8C8EB8C76736EBAF3B13B633B2E64125, A6C4845DDED81CCF4947612A4D6E42035136025BCD80812D2FF396927CAADEC5 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys
22:32:43.0809 0x0e34 Sym_hi - ok
22:32:43.0809 0x0e34 [ 8072AF52B5FD103BBBA387A1E49F62CB, D336A7D008D145619E79043EBF5D0D455086BA1FEF89612BC2EA11CC363D82B0 ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys
22:32:43.0840 0x0e34 Sym_u3 - ok
22:32:43.0934 0x0e34 [ 9A51B04E9886AA4EE90093586B0BA88D, 1666C29FBFA34174B506678C920636519051D03456A6DDCCD6FF708CAE5D9962 ] SysMain C:\Windows\system32\sysmain.dll
22:32:44.0103 0x0e34 SysMain - ok
22:32:44.0159 0x0e34 [ 2DCA225EAE15F42C0933E998EE0231C3, 67C7913E41854DFA3043426B7D59AA1FBBB9DE01A6E6904E40A696A7C61A5F98 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:32:44.0240 0x0e34 TabletInputService - ok
22:32:44.0342 0x0e34 [ D7673E4B38CE21EE54C59EEEB65E2483, 330D0AD13F5008D8569CE8E5EA0BBD69F54F59FEB54FD903FA18D2849CEC6AF0 ] TapiSrv C:\Windows\System32\tapisrv.dll
22:32:44.0420 0x0e34 TapiSrv - ok
22:32:44.0482 0x0e34 [ CB05822CD9CC6C688168E113C603DBE7, 9DB8945BDC702BB13E9DE477F2D3CCA4CE0E9E8CE9B54CE1A25375F2A2C93F0E ] TBS C:\Windows\System32\tbssvc.dll
22:32:44.0560 0x0e34 TBS - ok
22:32:44.0700 0x0e34 [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
22:32:44.0858 0x0e34 Tcpip - ok
22:32:44.0971 0x0e34 [ C7B0746FCD576D7EEBA6A2530B0B2966, F8ADAED40AA12BF8427482A00CCF8374458FEA95C3C381AEF59EC057A2791550 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys
22:32:45.0174 0x0e34 Tcpip6 - ok
22:32:45.0236 0x0e34 [ 608C345A255D82A6289C2D468EB41FD7, 74ECFDD45DC3EB3AFAEF9C42B546241AA1D6ACB2F6591A76DDB8BB1768545889 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
22:32:45.0332 0x0e34 tcpipreg - ok
22:32:45.0394 0x0e34 [ 5DCF5E267BE67A1AE926F2DF77FBCC56, E00C0A03AEE579B51B39930A72F39F4EFFE7CDA37187B0AE90F4E001AD15473B ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
22:32:45.0472 0x0e34 TDPIPE - ok
22:32:45.0488 0x0e34 [ 389C63E32B3CEFED425B61ED92D3F021, E4718E290678F00995E754AE66F1027D227BFAB9E1A1D2AC8E4EAD27DC50CB17 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
22:32:45.0567 0x0e34 TDTCP - ok
22:32:45.0640 0x0e34 [ 76B06EB8A01FC8624D699E7045303E54, EC30F244B48A35622ED3EE91792F6A1517C5A50770FAB3945E7A945EB7AF28A8 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
22:32:45.0726 0x0e34 tdx - ok
22:32:45.0774 0x0e34 [ 3CAD38910468EAB9A6479E2F01DB43C7, 9D18C71EDF39743A0A592BC0873909D2B75B5B177B2672A865D1EEC0BFD2F61C ] TermDD C:\Windows\system32\DRIVERS\termdd.sys
22:32:45.0824 0x0e34 TermDD - ok
22:32:45.0909 0x0e34 [ DBD84E59D631569EC3E756EF144E8431, 9E58629EC762584A2D294A619593620626F7CBE467045AD0F920B6CF1D4B4724 ] TermService C:\Windows\System32\termsrv.dll
22:32:46.0040 0x0e34 TermService - ok
22:32:46.0072 0x0e34 [ C7230FBEE14437716701C15BE02C27B8, 8221DE73D77CF71C2857D78829E807D015D9CB8BDEE4BAFD6950BF0C718CC774 ] Themes C:\Windows\system32\shsvcs.dll
22:32:46.0155 0x0e34 Themes - ok
22:32:46.0225 0x0e34 [ 1076FFCFFAAE8385FD62DFCB25AC4708, 8C5C106FCB018E019DEBA8E1A6AA170CD7A93293F27994F724EBC486238DA0AA ] THREADORDER C:\Windows\system32\mmcss.dll
22:32:46.0277 0x0e34 THREADORDER - ok
22:32:46.0371 0x0e34 [ EC74E77D0EB004BD3A809B5F8FB8C2CE, 1E4BBC58D0E35D79C764CF1BA73602C5E29A5A2393D40332801D533E445C6667 ] TrkWks C:\Windows\System32\trkwks.dll
22:32:46.0472 0x0e34 TrkWks - ok
22:32:46.0609 0x0e34 [ 97D9D6A04E3AD9B6C626B9931DB78DBA, 8E42133ED5EE5EEC414A8B11C1035385C6141E445EA9677F947D20768F25A877 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:32:46.0671 0x0e34 TrustedInstaller - ok
22:32:46.0740 0x0e34 [ F4EAA7ECBCB25DE901C9B7F2CDCDA0B3, 1CBB5106A32362ABDEE73BF170E205FE64DDBF826C5F6DFFCCD229F220B9C85E ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
22:32:46.0772 0x0e34 tssecsrv - ok
22:32:46.0840 0x0e34 [ CAECC0120AC49E3D2F758B9169872D38, 80DB15ADF5F4FF78D0C7D5081B6C0E8F1E5125872B60D23C19DA8E62C9DAC9A8 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys
22:32:46.0909 0x0e34 tunmp - ok
22:32:46.0972 0x0e34 [ 300DB877AC094FEAB0BE7688C3454A9C, 3B36AA191FBE25B1A61150EAA2BDF8BA286DC4C052F6E98B0ED8202135553D8C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
22:32:47.0019 0x0e34 tunnel - ok
22:32:47.0019 0x0e34 [ 7D33C4DB2CE363C8518D2DFCF533941F, C6A539AD31B0BD9F895E0A537783AA75D5760C8590D83BA832D59A9B090CA0E9 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
22:32:47.0065 0x0e34 uagp35 - ok
22:32:47.0112 0x0e34 [ D9728AF68C4C7693CB100B8441CBDEC6, A2CEE1EE4EF17106349F4E6967F504354801934179FBB3F10B9A4E3C30BC28CE ] udfs C:\Windows\system32\DRIVERS\udfs.sys
22:32:47.0175 0x0e34 udfs - ok
22:32:47.0221 0x0e34 [ ECEF404F62863755951E09C802C94AD5, 5D92062B3E371F196774EBFE840C78501E55A244DB2A49703C7AC0141C7DABF1 ] UI0Detect C:\Windows\system32\UI0Detect.exe
22:32:47.0299 0x0e34 UI0Detect - ok
22:32:47.0315 0x0e34 [ B0ACFDC9E4AF279E9116C03E014B2B27, 455D30859E381361FF6EE8B01EDC22A2E66CD5EC22CA9F314E88009DB77A8BAF ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
22:32:47.0362 0x0e34 uliagpkx - ok
22:32:47.0393 0x0e34 [ 9224BB254F591DE4CA8D572A5F0D635C, C5E7B24587AC5A28ECA63300307AD95B8A846833340126AE378840A40E53C056 ] uliahci C:\Windows\system32\drivers\uliahci.sys
22:32:47.0440 0x0e34 uliahci - ok
22:32:47.0455 0x0e34 [ 8514D0E5CD0534467C5FC61BE94A569F, A6EFB967044F88335469DB3351587E31CEC659BB6A7D8ED45C68329232C31BB9 ] UlSata C:\Windows\system32\drivers\ulsata.sys
22:32:47.0502 0x0e34 UlSata - ok
22:32:47.0518 0x0e34 [ 38C3C6E62B157A6BC46594FADA45C62B, 44F87DC955CB4E35E0EB4C8B4E931472B33D97FE000C22370A06AD5EDCEFD0BA ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys
22:32:47.0549 0x0e34 ulsata2 - ok
22:32:47.0580 0x0e34 [ 32CFF9F809AE9AED85464492BF3E32D2, 91AAA47AEF17F373276B01AC8FA823592A0C854541A7A9A3B78F2350DB964EBC ] umbus C:\Windows\system32\DRIVERS\umbus.sys
22:32:47.0658 0x0e34 umbus - ok
22:32:47.0705 0x0e34 [ 68308183F4AE0BE7BF8ECD07CB297999, 4444233CA3C42BEE50ED47553D4AE5A7C12D8F288D2FA4B2DAE1D9B9FEC1A72D ] upnphost C:\Windows\System32\upnphost.dll
22:32:47.0814 0x0e34 upnphost - ok
22:32:47.0877 0x0e34 [ 6E421CCC57059B0186C6259CA3B6DFC9, E348BF23CCD6C14FD10C1689BBDC77E125245331F97BFE60D4C8FD9A8711CB59 ] USBAAPL C:\Windows\system32\Drivers\usbaapl.sys
22:32:47.0924 0x0e34 USBAAPL - ok
22:32:47.0963 0x0e34 [ 1114579556DB85E9FAF9590DBC64CD62, 10479A3C12BBBB9B5759082358FE11AC20BAEFA6B4977C8AE6E60AA17BE6C7FA ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
22:32:48.0056 0x0e34 usbaudio - ok
22:32:48.0071 0x0e34 [ AAB0B5F72D2D726FBFDC895A2902DE1D, 7824AF6E2ADEA23F208526F3A62AD1BACDBBDB23E58EB5806890B0761529C50F ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
22:32:48.0118 0x0e34 usbccgp - ok
22:32:48.0196 0x0e34 [ E9476E6C486E76BC4898074768FB7131, D14B8F69A511DC1F990A9C123C18689AFE59659BA8130D248D8D03E9BD2143B6 ] usbcir C:\Windows\system32\drivers\usbcir.sys
22:32:48.0305 0x0e34 usbcir - ok
22:32:48.0383 0x0e34 [ 153E8515CB86F8BB5D1A8B478EBF4BB2, 0F1F79BA7C32ACAAE69184A56E67D6E18E2E2F07E0BE23F266401431169DAE14 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys
22:32:48.0430 0x0e34 usbehci - ok
22:32:48.0461 0x0e34 [ 2AE6BCEBD85D31317E433733DAF25888, 7B2C0E8703D0275A620160E479166EB7AA31B0F146507603535CEBF0BA4684A4 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
22:32:48.0494 0x0e34 usbhub - ok
22:32:48.0525 0x0e34 [ 38DBC7DD6CC5A72011F187425384388B, 456CFCD190035C3033709C8DC0F6DC4352BBF751D57C0C52DD04F8C301FEBACD ] usbohci C:\Windows\system32\drivers\usbohci.sys
22:32:48.0665 0x0e34 usbohci - ok
22:32:48.0696 0x0e34 [ E75C4B5269091D15A2E7DC0B6D35F2F5, B0A4141B69B66276890836DE98EB8BC790D35CE59FA503060593E8CC12AA106B ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
22:32:48.0759 0x0e34 usbprint - ok
22:32:48.0774 0x0e34 [ 1D714B8497CD68307806D5D3F60A5169, 1914D92ECE39995168E3C8F5A7694B7A94954DB299410A2781D1321C8E60C3D9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
22:32:48.0821 0x0e34 usbscan - ok
22:32:48.0868 0x0e34 [ BE3DA31C191BC222D9AD503C5224F2AD, 201FB0FDBF423342202686DC0D8A3221B7798AE04C04A649D3441C257C733CE8 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:32:48.0946 0x0e34 USBSTOR - ok
22:32:48.0962 0x0e34 [ 44056325428A8E4C755830426E29878F, 95F182047746D352B7DC2B22298D5E58738E1B787C110D1DE841C026FB8A67EB ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys
22:32:49.0008 0x0e34 usbuhci - ok
22:32:49.0071 0x0e34 [ 1509E705F3AC1D474C92454A5C2DD81F, 7F525921A3513224F8B093A16E19B4235B300349A14B0B86EE11B7473BA53337 ] UxSms C:\Windows\System32\uxsms.dll
22:32:49.0164 0x0e34 UxSms - ok
22:32:49.0398 0x0e34 [ EA9ADB96A31020D4D3E5167FE31427DE, 5635513F58CF89AF87B7A5CE570B348A932C5C74D3FBAF575D708198B174D641 ] VBoxAswDrv C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys
22:32:49.0430 0x0e34 VBoxAswDrv - ok
22:32:49.0523 0x0e34 [ CD88D1B7776DC17A119049742EC07EB4, 6B68B9EDB8C6BCB2644F1F004D5743E928509D12107D996F390A24A72E0AA528 ] vds C:\Windows\System32\vds.exe
22:32:49.0632 0x0e34 vds - ok
22:32:49.0695 0x0e34 [ 87B06E1F30B749A114F74622D013F8D4, 06C06EF87F7DC668D23B50AA5F419F62474ACF90E325E167491BF290286D6594 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
22:32:49.0788 0x0e34 vga - ok
22:32:49.0804 0x0e34 [ 2E93AC0A1D8C79D019DB6C51F036636C, 8B6F3B4EE90691A22788915AD0F99D8EE617750430A34E7CEB9AB4FB4E581755 ] VgaSave C:\Windows\System32\drivers\vga.sys
22:32:49.0898 0x0e34 VgaSave - ok
22:32:49.0913 0x0e34 [ 5D7159DEF58A800D5781BA3A879627BC, 499A8E51FDE61AE0D7C1812D1E5B331211A36BD095A4992C629B93DE6D80F4E6 ] viaagp C:\Windows\system32\drivers\viaagp.sys
22:32:49.0944 0x0e34 viaagp - ok
22:32:49.0960 0x0e34 [ C4F3A691B5BAD343E6249BD8C2D45DEE, 19DE07AD6CD51036FA8A6B8EE82F34D7F5264FF3A12CBE6E52BD036D0303E319 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
22:32:50.0022 0x0e34 ViaC7 - ok
22:32:50.0038 0x0e34 [ AADF5587A4063F52C2C3FED7887426FC, 0A74791A236FDAFCD045CFB79A159245B94F7C2033E0CD830C1B76F0F994E06D ] viaide C:\Windows\system32\drivers\viaide.sys
22:32:50.0069 0x0e34 viaide - ok
22:32:50.0100 0x0e34 [ 69503668AC66C77C6CD7AF86FBDF8C43, 2CE407674A58313737073F02B9A617460BBA84B36C3A16D98AE5ED45279F5006 ] volmgr C:\Windows\system32\drivers\volmgr.sys
22:32:50.0147 0x0e34 volmgr - ok
22:32:50.0210 0x0e34 [ 23E41B834759917BFD6B9A0D625D0C28, 9F60992805262F936E8DA33610FDF60A191ECAFC08BBF657C8F9A21833C8EFC5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
22:32:50.0272 0x0e34 volmgrx - ok
22:32:50.0350 0x0e34 [ 786DB5771F05EF300390399F626BF30A, 4A07BE5AEDBA4C15C2F9A91250F0488A0B0305C67BB7A037508D5CBF86D4E1B7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
22:32:50.0397 0x0e34 volsnap - ok
22:32:50.0475 0x0e34 [ 587253E09325E6BF226B299774B728A9, C9F46197819C2A095456393C518A9B00B59ECDC54F464D038AA7F8DCCDB93CCF ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
22:32:50.0506 0x0e34 vsmraid - ok
22:32:50.0662 0x0e34 [ DB3D19F850C6EB32BDCB9BC0836ACDDB, D81FF1CDA87A2FE83EFD5B3FE01EFF940952F8BAEE70BEA3B2F6EF30E2121704 ] VSS C:\Windows\system32\vssvc.exe
22:32:50.0834 0x0e34 VSS - ok
22:32:50.0896 0x0e34 [ 96EA68B9EB310A69C25EBB0282B2B9DE, C76D3427F8A2953CB4D96BBA1523679CBE1BBF7FA821A35D2FBEB3E67AC6A10B ] W32Time C:\Windows\system32\w32time.dll
22:32:51.0005 0x0e34 W32Time - ok
22:32:51.0036 0x0e34 [ 48DFEE8F1AF7C8235D4E626F0C4FE031, A41D05BC0DA3C476C32E0A4DAF015DF7BADF28A03CE236D5596885FF1772F148 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
22:32:51.0161 0x0e34 WacomPen - ok
22:32:51.0177 0x0e34 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys
22:32:51.0256 0x0e34 Wanarp - ok
22:32:51.0256 0x0e34 [ 55201897378CCA7AF8B5EFD874374A26, 350ADDCEFAA33E301027CFEA8DDE703F6FBD6E53624598CB2E7B671B9E48F7CC ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
22:32:51.0335 0x0e34 Wanarpv6 - ok
22:32:51.0444 0x0e34 [ A3CD60FD826381B49F03832590E069AF, 213C5DB5E5D828264286FD7548527566D6160CCA780BC6853B7B28CECF329674 ] wcncsvc C:\Windows\System32\wcncsvc.dll
22:32:51.0523 0x0e34 wcncsvc - ok
22:32:51.0601 0x0e34 [ 11BCB7AFCDD7AADACB5746F544D3A9C7, 0370E20FD12ED713F94E5CD76F068F7A7A5E7F42416DD2A8A41249020DA7DA31 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:32:51.0695 0x0e34 WcsPlugInService - ok
22:32:51.0757 0x0e34 [ 78FE9542363F297B18C027B2D7E7C07F, 6BC3ED2A48EF41E1EE597FD58271DB12256EC013518663331CD0FBCB3FC415EE ] Wd C:\Windows\system32\drivers\wd.sys
22:32:51.0788 0x0e34 Wd - ok
22:32:51.0897 0x0e34 [ 25944D2CC49E0A6C581D02A74B7D6645, AF8FFAFEC07F1A6A3D4008E609E8E1D705A8DFCC7995C766E3946887203F7BEE ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
22:32:51.0975 0x0e34 Wdf01000 - ok
22:32:52.0007 0x0e34 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiServiceHost C:\Windows\system32\wdi.dll
22:32:52.0100 0x0e34 WdiServiceHost - ok
22:32:52.0116 0x0e34 [ ABFC76B48BB6C96E3338D8943C5D93B5, B5B22D445724D58641A53276063A4AA2A98F07B93865C86E94661EB31BD63511 ] WdiSystemHost C:\Windows\system32\wdi.dll
22:32:52.0194 0x0e34 WdiSystemHost - ok
22:32:52.0272 0x0e34 [ 04C37D8107320312FBAE09926103D5E2, 1C6726A9871CBACB240AFA93E57781515F01758D43693DDA395EA683D97234F0 ] WebClient C:\Windows\System32\webclnt.dll
22:32:52.0334 0x0e34 WebClient - ok
22:32:52.0412 0x0e34 [ AE3736E7E8892241C23E4EBBB7453B60, 0F998116CC07CD719CB237EAE53BB16B2EDD6973828B9C1055EB981AEA0453D1 ] Wecsvc C:\Windows\system32\wecsvc.dll
22:32:52.0490 0x0e34 Wecsvc - ok
22:32:52.0537 0x0e34 [ 670FF720071ED741206D69BD995EA453, 4B96F5E3545F69AE9EBC75DC4AB27B87306D656EE526AE39E7EC7E2B6F83F7FD ] wercplsupport C:\Windows\System32\wercplsupport.dll
22:32:52.0615 0x0e34 wercplsupport - ok
22:32:52.0693 0x0e34 [ 32B88481D3B326DA6DEB07B1D03481E7, 821FBAF147E525ED15EB9391B16A96C6D5464841258B11F277EFB57A3BD50E37 ] WerSvc C:\Windows\System32\WerSvc.dll
22:32:52.0787 0x0e34 WerSvc - ok
22:32:52.0927 0x0e34 [ 4575AA12561C5648483403541D0D7F2B, 2DBB7904285F16E879E1662C4CC4DFAA420D5EB24DDFC4BAC0B7616F5F44649A ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
22:32:52.0974 0x0e34 WinDefend - ok
22:32:52.0989 0x0e34 WinHttpAutoProxySvc - ok
22:32:53.0130 0x0e34 [ 6B2A1D0E80110E3D04E6863C6E62FD8A, EE8BC7C378993EFE90273764C83119EBF331768CD7B24DE949233C74A51306C2 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
22:32:53.0192 0x0e34 Winmgmt - ok
22:32:53.0333 0x0e34 [ 7CFE68BDC065E55AA5E8421607037511, C2CE76D52AD4E31FC4216E94457DC16ABF65A5F3E883F0BD97AD387FB7574533 ] WinRM C:\Windows\system32\WsmSvc.dll
22:32:53.0629 0x0e34 WinRM - ok
22:32:53.0738 0x0e34 [ C008405E4FEEB069E30DA1D823910234, C392A7B5FEACB7D11A3A231C1AD65D533984E6E7429ECD3BFBF90A27E8DEB157 ] Wlansvc C:\Windows\System32\wlansvc.dll
22:32:53.0863 0x0e34 Wlansvc - ok
22:32:54.0081 0x0e34 [ 0A70F4022EC2E14C159EFC4F69AA2477, FF248136576F9803762C54DE5439D3411B52DCBC95B93176A5DAB857967D9AC4 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:32:54.0222 0x0e34 wlidsvc - ok
22:32:54.0237 0x0e34 wltrysvc - ok
22:32:54.0300 0x0e34 [ 2E7255D172DF0B8283CDFB7B433B864E, 60C786CF0EA4A29B309B9457F0496D5A0AF1F093FC2C5D88078865814B7DBBA3 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys
22:32:54.0362 0x0e34 WmiAcpi - ok
22:32:54.0440 0x0e34 [ 43BE3875207DCB62A85C8C49970B66CC, 27169F2E8A30807794407DA8F80611E4287F940AAE2A1F00F547901872FB9703 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
22:32:54.0503 0x0e34 wmiApSrv - ok
22:32:54.0690 0x0e34 [ 3978704576A121A9204F8CC49A301A9B, 936CC13B90A183613BDA4081556C96D48CA415B5F65D61E18CB5F2E51EEBE59F ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
22:32:54.0815 0x0e34 WMPNetworkSvc - ok
22:32:54.0877 0x0e34 [ CFC5A04558F5070CEE3E3A7809F3FF52, 45899E04000E21C4E009BE8B6149F199A5B2E0512C657A525770BF9DBFED7D2B ] WPCSvc C:\Windows\System32\wpcsvc.dll
22:32:54.0971 0x0e34 WPCSvc - ok
22:32:55.0017 0x0e34 [ 801FBDB89D472B3C467EB112A0FC9246, C24053FA12732089384D3AF06C676FF201D282FC5AD56A42B6EE8BAED4379CB2 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
22:32:55.0111 0x0e34 WPDBusEnum - ok
22:32:55.0173 0x0e34 [ DE9D36F91A4DF3D911626643DEBF11EA, 8029ECE76E29276BFB6ED3387AC560A9A779AAF683A4416E96334FAF7BDBADA0 ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys
22:32:55.0251 0x0e34 WpdUsb - ok
22:32:55.0532 0x0e34 [ F8D3544ACBCE9110362119F7C10D848E, 31C49201A931751A36286874AC0B929D886F490D7CE48CCC9283850A56AD9FD9 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:32:55.0719 0x0e34 WPFFontCache_v0400 - ok
22:32:55.0782 0x0e34 [ E3A3CB253C0EC2494D4A61F5E43A389C, 10BA8B102E31B961819E524FCA5FA817B588EC77FB26B4E176D0A5CFF11EDF79 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
22:32:55.0860 0x0e34 ws2ifsl - ok
22:32:55.0922 0x0e34 [ 1CA6C40261DDC0425987980D0CD2AAAB, 727C1E3A170316641F832A8D197EDA6D6EE1206E4ED7B741E5A4017B7F2F7B88 ] wscsvc C:\Windows\system32\wscsvc.dll
22:32:56.0000 0x0e34 wscsvc - ok
22:32:56.0000 0x0e34 WSearch - ok
22:32:56.0203 0x0e34 [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv C:\Windows\system32\wuaueng.dll
22:32:56.0531 0x0e34 wuauserv - ok
22:32:56.0609 0x0e34 [ 06E6F32C8D0A3F66D956F57B43A2E070, 9A6BD96A28294B0372F16E13D652FD603308F64B74A56E41E0C68C5E8011F943 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
22:32:56.0687 0x0e34 WudfPf - ok
22:32:56.0733 0x0e34 [ 867C301E8B790040AE9CF6486E8041DF, D867D6498C987944D99508B2FAD6D6B749FA1EDFE8124B0863D4A642352F0855 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
22:32:56.0796 0x0e34 WUDFRd - ok
22:32:56.0827 0x0e34 [ FE47B7BC8EA320C2D9B5E5BF6E303765, 34518DBD1E9EA6E5DA62273B18613761E1D9C6B4E074A93C6D639FBAF02222EA ] wudfsvc C:\Windows\System32\WUDFSvc.dll
22:32:56.0889 0x0e34 wudfsvc - ok
22:32:56.0936 0x0e34 [ 3202CBB8F6EDF243E2F4AF72D5248EE3, 308DF2C5BBFD89A27F99EA96249294A3D1C4783EFE97A29FC4B1670EE5FF7A7C ] yksvc C:\Windows\System32\yk60x86.dll
22:32:57.0014 0x0e34 yksvc - ok
22:32:57.0123 0x0e34 [ 6E5CA74E7C3A5392D169A91FFA48A297, EBF9FFE9C6DC02892E6F9B0B50120CA8553D935577523ACE2970D0DCD4C8B172 ] yukonwlh C:\Windows\system32\DRIVERS\yk60x86.sys
22:32:57.0186 0x0e34 yukonwlh - ok
22:32:57.0233 0x0e34 ================ Scan global ===============================
22:32:57.0295 0x0e34 [ F31EEBC1A1C81FD04005489CC3DCDFE7, 098C35ACFCCE1686C5A6DB6057001CBF8B06A863A0802CB2E9D793F4795F8CEE ] C:\Windows\system32\basesrv.dll
22:32:57.0373 0x0e34 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
22:32:57.0435 0x0e34 [ A508314231C49AEE86987CEA3EAECAD1, D29BCFA967C23C7264592576D62D95FA8C687E8662D19DCCC73653A9EFB6340D ] C:\Windows\system32\winsrv.dll
22:32:57.0545 0x0e34 [ 4F0A7910FC7D8A66433FA9961EEF8BB5, 2086EDEE8CF9CC9BDBDC03018F7C28BB56172F941CB4D6F3D857BCF82B32FB6B ] C:\Windows\system32\services.exe
22:32:57.0576 0x0e34 [ Global ] - ok
22:32:57.0576 0x0e34 ================ Scan MBR ==================================
22:32:57.0591 0x0e34 [ CDB4DE4BBD714F152979DA2DCBEF57EB ] \Device\Harddisk0\DR0
22:32:58.0075 0x0e34 \Device\Harddisk0\DR0 - ok
22:32:58.0075 0x0e34 ================ Scan VBR ==================================
22:32:58.0075 0x0e34 [ 05FDC1787582D2D0FBA3A56C37E378A0 ] \Device\Harddisk0\DR0\Partition1
22:32:58.0106 0x0e34 \Device\Harddisk0\DR0\Partition1 - ok
22:32:58.0122 0x0e34 [ 4C012AE52B4B04F44F896F487A237A87 ] \Device\Harddisk0\DR0\Partition2
22:32:58.0169 0x0e34 \Device\Harddisk0\DR0\Partition2 - ok
22:32:58.0169 0x0e34 ================ Scan generic autorun ======================
22:32:58.0278 0x0e34 [ 689C95B325C3118CE09E3F3FBCEB5D44, CEB954C2CBFD94066BB8CE550423A2544E8A5C466398A9B269E11DC653A7549D ] C:\Program Files\DellTPad\Apoint.exe
22:32:58.0325 0x0e34 Apoint - ok
22:32:58.0340 0x0e34 [ 43E3F9C0F3BC940F2D6DA1A72B177E42, DA910F256A762045136DD271B399620EBD45B72D316788E83A37BEA600D186E1 ] C:\Windows\system32\igfxtray.exe
22:32:58.0387 0x0e34 IgfxTray - ok
22:32:58.0403 0x0e34 [ 2413EC683C216B8A96E1BBC9CD1E01A2, ECD770B15F2F55A72DECA4DAA398EC881CD572B71FB6CA625F45EECD09A7421B ] C:\Windows\system32\hkcmd.exe
22:32:58.0449 0x0e34 HotKeysCmds - ok
22:32:58.0481 0x0e34 [ 953E9E1A9A2D0E862BB75FBFDEDB58F4, 79ACD5F8B444AA1C0C627253859E4D569C2A7980EB5FA81634339A5903777171 ] C:\Windows\system32\igfxpers.exe
22:32:58.0527 0x0e34 Persistence - ok
22:32:58.0855 0x0e34 [ 4B36C7D9710C60EA7725685753BBFA5C, 818AECC62445090CC336E06736B9B803CB96CFDB2E680F1AA1ED1CD25911D7EC ] C:\Windows\system32\WLTRAY.exe
22:32:59.0495 0x0e34 Broadcom Wireless Manager UI - detected UnsignedFile.Multi.Generic ( 1 )
22:32:59.0495 0x0e34 Detect skipped due to KSN trusted
22:32:59.0495 0x0e34 Broadcom Wireless Manager UI - ok
22:32:59.0635 0x0e34 [ 2521D0C1B65ACB7752CA365F538949E4, D8A07743222A03AC23B2D58AE0C8FB634B2FA17262CC01A8E4DC88AABB6799B5 ] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
22:32:59.0651 0x0e34 IAAnotif - ok
22:32:59.0653 0x0e34 Dell PC TuneUp Startup - ok
22:32:59.0726 0x0e34 [ 4B555106290BD117334E9A08761C035A, 8A3808FBC197040BF0C65084514E8441E35FFFF8E31980F9CE1F41ED65E08437 ] C:\Windows\system32\RunDLL32.exe
22:32:59.0774 0x0e34 RunDLLEntry - ok
22:32:59.0890 0x0e34 [ BE4C00E9BF06C136A1F63856BB7AAC5E, C91FA32559BC84C0190DEBC2D12F390555535EBEC0D10A371B33D5FA67D280A5 ] C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe
22:32:59.0923 0x0e34 PDVDDXSrv - ok
22:32:59.0994 0x0e34 [ 00D1FB0073B4A8BD2989EA8FF4CC792B, 001A26FF51BF6BABF6325983F512CF8D84CADEE1CA36F166A41702D94C1B0841 ] C:\Program Files\Dell Support Center\bin\sprtcmd.exe
22:33:00.0059 0x0e34 dellsupportcenter - ok
22:33:00.0153 0x0e34 [ 0E34B7BB1FCF22BCC1E394D16F9E992B, 382CA8E6BAC301E2F277F8EDA03D263FF71272796A8EED582C36294EEE9191F9 ] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
22:33:00.0184 0x0e34 GrooveMonitor - ok
22:33:00.0356 0x0e34 [ F8B91C91225E5CAA2B2F0370201021C0, 5EF4546D723EFAA97921CFF273FECD78AF9B7740359A5F80375A4272C3D2E7C5 ] C:\Program Files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe
22:33:00.0387 0x0e34 Microsoft Default Manager - ok
22:33:00.0731 0x0e34 [ 7697B83C440CA941D469D04D01DD3F33, D40C840342FE0BC4D0D6C23C26CF570CB061D92177874D22F488B18E329474C0 ] C:\Program Files\Dell\QuickSet\QuickSet.exe
22:33:01.0043 0x0e34 QuickSet - detected UnsignedFile.Multi.Generic ( 1 )
22:33:01.0043 0x0e34 Detect skipped due to KSN trusted
22:33:01.0043 0x0e34 QuickSet - ok
22:33:01.0152 0x0e34 [ 94A4D6915D4F572309DF6137E1846528, E46BDF83CAA6683AA655DBA3D2C8DC7AC06251E952466A20CFDA3A16B1840455 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
22:33:01.0183 0x0e34 APSDaemon - ok
22:33:01.0246 0x0e34 [ B6E8EF7E1ED1EA0FC37B9710B3196DCE, E36E8A3394905DFEAD8D46B277E1A84BE0A8E67CBD635F594D7C4D22AC4E12D1 ] C:\Program Files\IDT\WDM\sttray.exe
22:33:01.0368 0x0e34 SysTrayApp - ok
22:33:01.0576 0x0e34 [ 3E04F1E482357B1FC8B088197C3D9FF8, 85524ADDC27ADC831EBBD24E079B412CFDC69E5F594BD153319087665A28D546 ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
22:33:01.0747 0x0e34 Adobe ARM - ok
22:33:01.0888 0x0e34 [ 08E7173D1B74095335052459200CB1EA, 5B6EB8A65B5F451BF6115EB7CD1355E5870E6D764F22D767D13216BF17C5668F ] C:\Program Files\QuickTime\QTTask.exe
22:33:01.0934 0x0e34 QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
22:33:01.0934 0x0e34 Detect skipped due to KSN trusted
22:33:01.0934 0x0e34 QuickTime Task - ok
22:33:02.0044 0x0e34 [ 79C28DDF889C26FDD6162F796FD49BC4, C1E2468B4F0F52BD707D16656F33CC438AF8E18A38BB6CFB64D11F23993F72F0 ] C:\Program Files\iTunes\iTunesHelper.exe
22:33:02.0090 0x0e34 iTunesHelper - ok
22:33:02.0543 0x0e34 [ 06964B7DE858BB6317164BF184E9C766, ADE3D2A7256A8F3F11B6E35979413850EB22B9BBADCE3EC73BE04A1622512126 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
22:33:03.0401 0x0e34 AvastUI.exe - ok
22:33:03.0510 0x0e34 [ 57F850AE2FEEB81A10BC278C385BD040, A8B4659B9CA32A1BF02A40CBA0EA8B9CFCD27418210FAA8F9BFEC8D62A9C03A8 ] C:\Program Files\Dell DataSafe Local Backup\Components\DSUpdate\runhstart.bat
22:33:03.0572 0x0e34 DSUpdateLauncher - detected UnsignedFile.Multi.Generic ( 1 )
22:33:03.0786 0x0e34 DSUpdateLauncher ( UnsignedFile.Multi.Generic ) - warning
22:33:04.0269 0x0e34 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\sidebar.exe
22:33:04.0534 0x0e34 Sidebar - ok
22:33:04.0722 0x0e34 [ 51508F0C2476177E50C31B0BBFBF1BDB, 3F62A05181D54711180C8727AC66D624AFA7FC816A4ACC4DC0CFCF2D2DBE7F87 ] C:\Users\Matt\AppData\Local\Google\Update\GoogleUpdate.exe
22:33:04.0753 0x0e34 Google Update - ok
22:33:04.0862 0x0e34 [ 6D9E1356A9C1B5F36698FAFF9205E34A, A7E37C2C0F1F35F5434144D5F1D282858D6B3CE995BE6612BA22FB7E83793F77 ] C:\Program Files\Xvid\CheckUpdate.exe
22:33:04.0878 0x0e34 Xvid - detected UnsignedFile.Multi.Generic ( 1 )
22:33:04.0878 0x0e34 Detect skipped due to KSN trusted
22:33:04.0878 0x0e34 Xvid - ok
22:33:04.0987 0x0e34 [ 9E35FF7F943AE0FB89192BFE058B7FD4, 54712A4FA296AE28CF834F90B77B2EEB69020E3D5B5CF24674BD8DACA25195B9 ] C:\Program Files\Windows Sidebar\Sidebar.exe
22:33:05.0190 0x0e34 Sidebar - ok
22:33:05.0221 0x0e34 AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.2.2215.880 ), 0x42000 ( disabled : updated )
22:33:05.0236 0x0e34 Win FW state via NFP2: enabled
22:33:05.0470 0x0e34 ============================================================
22:33:05.0470 0x0e34 Scan finished
22:33:05.0470 0x0e34 ============================================================
22:33:05.0486 0x0ca4 Detected object count: 1
22:33:05.0486 0x0ca4 Actual detected object count: 1
22:34:21.0616 0x0ca4 DSUpdateLauncher ( UnsignedFile.Multi.Generic ) - skipped by user
22:34:21.0616 0x0ca4 DSUpdateLauncher ( UnsignedFile.Multi.Generic ) - User select action: Skip
Ratagin
Regular Member
 
Posts: 28
Joined: September 21st, 2011, 8:53 pm

Re: Computer much slower than usual, almost unusable

Unread postby Ratagin » May 21st, 2015, 11:43 pm

OTL logfile created on: 5/21/2015 10:38:52 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Matt\Desktop
Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.46 Gb Total Physical Memory | 2.35 Gb Available Physical Memory | 68.00% Memory free
7.12 Gb Paging File | 6.03 Gb Available in Paging File | 84.68% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 218.20 Gb Total Space | 5.20 Gb Free Space | 2.38% Space Free | Partition Type: NTFS
Drive D: | 14.65 Gb Total Space | 0.01 Gb Free Space | 0.05% Space Free | Partition Type: NTFS

Computer Name: MATT-PC | User Name: Matt | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2015/05/21 22:36:24 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Matt\Desktop\OTL.exe
PRC - [2015/04/09 11:16:29 | 005,512,912 | ---- | M] (Avast Software s.r.o.) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2015/04/09 11:16:21 | 000,343,336 | ---- | M] (Avast Software s.r.o.) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2013/08/27 14:05:00 | 000,285,424 | ---- | M] (http://tortoisesvn.net) -- C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
PRC - [2009/06/03 14:46:38 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtcmd.exe
PRC - [2009/04/11 02:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe


========== Modules (No Company Name) ==========

MOD - [2015/05/16 04:57:55 | 011,909,120 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\9ae8787cf9c9340184207c108026aceb\System.Web.ni.dll
MOD - [2015/04/15 19:14:13 | 000,774,656 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\9ed54bd36f7a81d4731bb89a68d2331d\System.Runtime.Remoting.ni.dll
MOD - [2015/04/09 11:16:41 | 040,540,672 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\libcef.dll
MOD - [2015/04/09 11:16:26 | 000,104,400 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\log.dll
MOD - [2015/04/09 11:16:23 | 000,081,728 | ---- | M] () -- C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
MOD - [2014/10/15 23:30:23 | 005,465,088 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\a224433c0fb9281862f36823e86822fc\System.Xml.ni.dll
MOD - [2014/10/15 23:24:31 | 007,977,984 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\cf2c94955471d68d3708b1fbf613ae46\System.ni.dll
MOD - [2014/09/10 20:12:22 | 011,496,960 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\3444fbefcbd532181c499150ace644a4\mscorlib.ni.dll
MOD - [2013/08/27 14:05:00 | 000,065,264 | ---- | M] () -- C:\Program Files\TortoiseSVN\bin\TortoiseStub32.dll
MOD - [2013/08/27 14:04:42 | 000,070,896 | ---- | M] () -- C:\Program Files\TortoiseSVN\bin\libsasl32.dll
MOD - [2012/06/18 11:24:30 | 000,260,096 | ---- | M] () -- C:\Program Files\Notepad++\NppShell_05.dll
MOD - [2010/03/15 11:28:22 | 000,141,824 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2008/12/22 06:32:38 | 000,054,784 | ---- | M] () -- C:\Windows\System32\bcmwlrmt.dll


========== Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe -- (McAfee SiteAdvisor Service)
SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\Dell\MySQL\bin\mysqld.exe -- (dsl-db)
SRV - [2015/04/15 11:50:26 | 000,268,464 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2015/04/09 11:16:21 | 000,343,336 | ---- | M] (Avast Software s.r.o.) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2015/04/09 11:16:01 | 003,205,216 | ---- | M] (Avast Software) [On_Demand | Stopped] -- C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe -- (AvastVBoxSvc)
SRV - [2015/02/18 11:11:32 | 000,315,488 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2015/02/14 10:41:26 | 000,114,288 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2014/12/03 14:06:08 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) [Auto | Stopped] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2009/05/20 15:14:21 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe -- (Creative ALchemy AL6 Licensing Service)
SRV - [2009/05/20 15:13:34 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2009/05/20 15:13:03 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files\Common Files\Creative Labs Shared\Service\XMBLicensing.exe -- (Sound Blaster X-Fi MB Licensing Service)
SRV - [2009/04/21 04:09:00 | 000,282,624 | ---- | M] (Marvell) [Auto | Running] -- C:\Windows\System32\yk60x86.dll -- (yksvc)
SRV - [2009/02/23 10:48:06 | 000,632,048 | ---- | M] (SoftThinks) [Auto | Stopped] -- C:\Windows\sminst\SftService.exe -- (SftService)
SRV - [2009/02/05 01:57:14 | 000,307,200 | ---- | M] (Creative Technology Ltd) [Auto | Stopped] -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)
SRV - [2009/01/30 01:50:06 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Auto | Stopped] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_DellSupportCenter)
SRV - [2008/12/18 14:05:28 | 000,155,648 | ---- | M] (Stardock Corporation) [Auto | Stopped] -- C:\Program Files\Dell\DellDock\DockLogin.exe -- (DockLoginService)
SRV - [2008/12/15 00:13:46 | 000,241,746 | ---- | M] (IDT, Inc.) [Auto | Stopped] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_ae0b52e0\stacsv.exe -- (STacSV)
SRV - [2008/12/15 00:13:30 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) [Auto | Stopped] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_ae0b52e0\AEstSrv.exe -- (AESTFilters)
SRV - [2008/11/03 19:15:32 | 000,242,424 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files\WildTangent\Dell Games\Dell Game Console\GameConsoleService.exe -- (GameConsoleService)
SRV - [2008/05/07 18:41:14 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Stopped] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON)
SRV - [2008/01/20 22:33:00 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Matt\AppData\Local\Temp\cpuz132\cpuz132_x32.sys -- (cpuz132)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (aoblxomk)
DRV - [2015/04/09 11:16:48 | 000,208,024 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswVmm.sys -- (aswVmm)
DRV - [2015/04/09 11:16:48 | 000,057,888 | ---- | M] (Avast Software s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2015/04/09 11:16:47 | 000,427,736 | ---- | M] (Avast Software s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2015/04/09 11:16:47 | 000,073,440 | ---- | M] (Avast Software s.r.o.) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2015/04/09 11:16:47 | 000,049,904 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\aswRvrt.sys -- (aswRvrt)
DRV - [2015/04/09 11:16:47 | 000,024,144 | ---- | M] () [Kernel | Auto | Running] -- C:\Windows\System32\drivers\aswHwid.sys -- (aswHwid)
DRV - [2015/04/09 11:16:46 | 000,055,200 | ---- | M] (Avast Software s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2015/04/09 11:16:11 | 000,788,272 | ---- | M] (Avast Software s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2015/04/09 11:16:01 | 000,220,240 | ---- | M] (Avast Software) [Kernel | Auto | Running] -- C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys -- (VBoxAswDrv)
DRV - [2015/02/09 02:40:42 | 000,035,144 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\aswTap.sys -- (aswTap)
DRV - [2012/04/17 08:25:02 | 000,027,080 | ---- | M] (EldoS Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\elrawdsk.sys -- (ElRawDisk)
DRV - [2010/07/02 17:22:15 | 000,697,328 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2010/04/15 13:36:40 | 000,252,536 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2009/03/19 17:02:00 | 000,271,552 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\OA009Vid.sys -- (OA009Vid)
DRV - [2009/03/06 07:30:08 | 000,133,632 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\OA009Ufd.sys -- (OA009Ufd)
DRV - [2008/12/30 22:00:04 | 000,144,128 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CtClsFlt.sys -- (CtClsFlt)
DRV - [2008/12/22 06:32:18 | 000,018,424 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\bcm42rly.sys -- (BCM42RLY)
DRV - [2008/12/15 00:13:54 | 000,393,216 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA)
DRV - [2008/11/04 19:16:40 | 000,022,904 | ---- | M] (PC-Doctor, Inc.) [Kernel | On_Demand | Stopped] -- C:\Program Files\Dell Support Center\HWDiag\bin\pcd5srvc.pkms -- (PCD5SRVC{3F6A8B78-EC003E00-05040104})
DRV - [2008/06/17 12:01:06 | 000,022,016 | ---- | M] (SingleClick Systems) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\packet.sys -- (Packet)
DRV - [2008/01/20 22:32:51 | 000,220,672 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\e1e6032.sys -- (e1express)
DRV - [2006/11/02 03:36:43 | 002,028,032 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKU\S-1-5-21-245273635-629929200-1524352486-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://g.msn.com/USCON/1
IE - HKU\S-1-5-21-245273635-629929200-1524352486-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-245273635-629929200-1524352486-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-245273635-629929200-1524352486-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-245273635-629929200-1524352486-1000\..\SearchScopes\{410B8D53-D376-4F25-B51F-D2F2853C231A}: "URL" = https://search.yahoo.com/search?fr=mcaf ... 0150111&p={searchTerms}
IE - HKU\S-1-5-21-245273635-629929200-1524352486-1000\..\SearchScopes\{B2FF4056-06AE-4490-86BC-CF3B31A3447D}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=DLCDF7&pc=MDDC&src=IE-SearchBox
IE - HKU\S-1-5-21-245273635-629929200-1524352486-1000\..\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4}: "URL" = http://search.yahoo.com/search?fr=mcafee&p={searchTerms}
IE - HKU\S-1-5-21-245273635-629929200-1524352486-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "https://search.yahoo.com/search?fr=mcafee&type=B114US105D20150111&p="
FF - prefs.js..browser.search.order.1: "https://search.yahoo.com/search?fr=mcafee&type=B114US105D20150111&p="
FF - prefs.js..browser.search.selectedEngine: "https://search.yahoo.com/search?fr=mcafee&type=B114US105D20150111&p="
FF - prefs.js..extensions.enabledAddons: zoteroWinWordIntegration%40zotero.org:3.1.19
FF - prefs.js..extensions.enabledAddons: zotero%40chnm.gmu.edu:4.0.26.2
FF - prefs.js..extensions.enabledAddons: %7B4ED1F68A-5463-4931-9384-8FFF5ED91D92%7D:3.7.2
FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:33.0.2
FF - prefs.js..extensions.enabledItems: moveplayer@movenetworks.com:7
FF - prefs.js..extensions.enabledItems: zotero@chnm.gmu.edu:3.0.8
FF - prefs.js..extensions.enabledItems: zoteroWinWordIntegration@zotero.org:3.1.11
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA}:7.0
FF - prefs.js..extensions.enabledItems: {4ED1F68A-5463-4931-9384-8FFF5ED91D92}:3.6.0
FF - prefs.js..keyword.URL: "https://search.yahoo.com/search?fr=mcafee&type=B114US105D20150111&p="
FF - prefs.js..network.proxy.type: 4
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw_1213153.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf: C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: C:\Users\Matt\AppData\Roaming\Move Networks\plugins\npqmp071505000011.dll (Move Networks)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Matt\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Matt\AppData\Local\Google\Update\1.3.27.5\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2015/04/09 11:16:51 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 33.0.2\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2015/02/08 11:58:32 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 33.0.2\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2015/01/03 18:24:24 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\moveplayer@movenetworks.com: C:\Users\Matt\AppData\Roaming\Move Networks [2009/11/08 20:40:43 | 000,000,000 | ---D | M]

[2010/01/29 17:21:24 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Matt\AppData\Roaming\Mozilla\Extensions
[2015/05/21 22:21:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\9pfopnr9.default\extensions
[2010/05/01 04:06:04 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\9pfopnr9.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2015/04/21 06:42:15 | 000,000,000 | ---D | M] (Zotero Word for Windows Integration) -- C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\9pfopnr9.default\extensions\zoteroWinWordIntegration@zotero.org
[2015/04/21 06:42:15 | 005,741,057 | ---- | M] () (No name found) -- C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\9pfopnr9.default\extensions\zotero@chnm.gmu.edu.xpi
[2013/08/09 18:36:12 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions
[2015/02/14 10:41:30 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2014/10/31 18:05:30 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions
[2014/10/31 18:05:30 | 000,000,000 | ---D | M] (Default) -- C:\Program Files\Mozilla Firefox\updated\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
File not found (No name found) -- C:\PROGRAM FILES\MCAFEE\SITEADVISOR

========== Chrome ==========

CHR - default_search_provider: (Enabled)
CHR - default_search_provider: search_url =
CHR - default_search_provider: suggest_url =
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Matt\AppData\Local\Google\Chrome\Application\42.0.2311.152\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Matt\AppData\Local\Google\Chrome\Application\42.0.2311.152\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Matt\AppData\Local\Google\Chrome\Application\42.0.2311.152\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: McAfee SiteAdvisor (Enabled) = C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.41.123.2_0\McChPlg.dll
CHR - plugin: McAfee SiteAdvisor (Enabled) = C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll
CHR - plugin: Java Deployment Toolkit 7.0.0.147 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
CHR - plugin: Java(TM) Platform SE 7 (Enabled) = C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll
CHR - plugin: Foxit Reader Plugin for Mozilla (Enabled) = C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
CHR - plugin: Google Earth Plugin (Enabled) = C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Windows Live™ Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Move Streaming Media Player (Enabled) = C:\Users\Matt\AppData\Roaming\Move Networks\plugins\npqmp071505000011.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: McAfee SecurityCenter (Enabled) = c:\progra~1\mcafee\msc\npmcsn~1.dll
CHR - Extension: No name found = C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Extensions\aciahcmjmecflokailenpkdchphgkefd\3.4.9_0\
CHR - Extension: No name found = C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik\2.2015.506.11355_0\
CHR - Extension: No name found = C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki\10.2.0.190_0\
CHR - Extension: No name found = C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg\0.3.0.2_1\
CHR - Extension: No name found = C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcbkbpnkkkipelfledbfocopglifcfmi\3.1_0\

O1 HOSTS File: ([2011/09/20 23:50:27 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - No CLSID value found.
O2 - BHO: (avast! Online Security) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (Avast Software s.r.o.)
O3 - HKU\S-1-5-21-245273635-629929200-1524352486-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
O4 - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [AvastUI.exe] C:\Program Files\AVAST Software\Avast\AvastUI.exe (Avast Software s.r.o.)
O4 - HKLM..\Run: [Dell PC TuneUp Startup] "C:\Program Files\iolo\Common\Lib\ioloLManager.exe" File not found
O4 - HKLM..\Run: [dellsupportcenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation)
O4 - HKLM..\Run: [PDVDDXSrv] C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe (CyberLink Corp.)
O4 - HKLM..\Run: [QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe (Dell Inc.)
O4 - HKLM..\Run: [RunDLLEntry] C:\Windows\System32\AmbRunE.DLL (Creative Technology Ltd.)
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKU\S-1-5-21-245273635-629929200-1524352486-1000..\Run: [Xvid] C:\Program Files\Xvid\CheckUpdate.exe ()
O4 - HKLM..\RunOnce: [DSUpdateLauncher] C:\Program Files\Dell DataSafe Local Backup\Components\DSUpdate\runhstart.bat ()
O4 - Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
O4 - Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
O4 - Startup: C:\Users\Matt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Matt\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O4 - Startup: C:\Users\RA Media Server\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (Stardock Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 1
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-245273635-629929200-1524352486-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-245273635-629929200-1524352486-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 75.75.75.75 75.75.76.76
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{2A414F2D-7DF2-4AE0-A070-24B0B179E9CB}: DhcpNameServer = 75.75.75.75 75.75.76.76
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A07D3217-8717-4CCB-9A0A-20CC1ED7A59E}: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Matt\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\Matt\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 17:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: ("autocheck autochk *")
O34 - HKLM BootExecute: ("ﲀ׬Ұ")
O34 - HKLM BootExecute: (@)
O34 - HKLM BootExecute: ("SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\inkscape.exe")
O34 - HKLM BootExecute: (\)
O34 - HKLM BootExecute: ("ጔ楉׭Ұ")
O34 - HKLM BootExecute: (B)
O34 - HKLM BootExecute: ("C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Cache\")
O34 - HKLM BootExecute: ("槡׭Ұ")
O34 - HKLM BootExecute: (B)
O34 - HKLM BootExecute: ("C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Cache\")
O34 - HKLM BootExecute: ("ጭ橹׭Ұ")
O34 - HKLM BootExecute: (B)
O34 - HKLM BootExecute: ("C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Cache\")
O34 - HKLM BootExecute: ("欑׭Ұ")
O34 - HKLM BootExecute: (B)
O34 - HKLM BootExecute: ("C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Cache\")
O34 - HKLM BootExecute: ("殩׭Ұ")
O34 - HKLM BootExecute: (B)
O34 - HKLM BootExecute: ("C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Cache\")
O34 - HKLM BootExecute: ("፷汁׭Ұ")
O34 - HKLM BootExecute: (B)
O34 - HKLM BootExecute: ("C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Cache\")
O34 - HKLM BootExecute: ("泙׭Ұ")
O34 - HKLM BootExecute: (B)
O34 - HKLM BootExecute: ("C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Cache\")
O34 - HKLM BootExecute: ("浱׭Ұ")
O34 - HKLM BootExecute: (B)
O34 - HKLM BootExecute: ("C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Cache\")
O34 - HKLM BootExecute: ("ጬ渉׭Ұ")
O34 - HKLM BootExecute: (B)
O34 - HKLM BootExecute: ("C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Cache\")
O34 - HKLM BootExecute: ("溡׭Ұ")
O34 - HKLM BootExecute: (B)
O34 - HKLM BootExecute: ("C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Cache\")
O34 - HKLM BootExecute: ("")
O34 - HKLM BootExecute: ("Ұ")
O34 - HKLM BootExecute: (B)
O34 - HKLM BootExecute: ("C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Cache\")
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2015/05/21 22:36:22 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Matt\Desktop\OTL.exe
[2015/05/21 22:25:40 | 004,197,016 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\Matt\Desktop\tdsskiller.exe
[2015/05/21 22:16:11 | 000,000,000 | ---D | C] -- C:\RegBackup
[2015/05/21 22:12:54 | 002,720,009 | ---- | C] (Thisisu) -- C:\Users\Matt\Desktop\JRT.exe
[2015/05/21 21:41:42 | 000,000,000 | ---D | C] -- C:\AdwCleaner
[2015/05/19 20:13:56 | 000,688,992 | R--- | C] (Swearware) -- C:\Users\Matt\Desktop\dds.com
[2015/05/14 20:12:17 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2015/05/14 20:12:17 | 000,682,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2015/05/14 20:12:17 | 000,486,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10level9.dll
[2015/05/14 20:12:17 | 000,219,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2015/05/14 20:12:17 | 000,189,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10core.dll
[2015/05/14 20:12:17 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2015/05/14 20:12:16 | 002,065,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2015/05/14 20:12:16 | 001,072,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2015/05/14 20:12:16 | 001,029,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10.dll
[2015/05/14 20:08:52 | 000,102,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
[2015/05/14 00:41:45 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedsbs.dll
[2015/05/14 00:41:45 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeedssync.exe
[2015/05/14 00:41:44 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2015/05/14 00:41:44 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2015/05/14 00:41:44 | 000,607,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2015/05/14 00:41:44 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2015/05/14 00:41:44 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2015/05/14 00:41:43 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2015/05/14 00:41:43 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2015/05/14 00:41:43 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2015/05/14 00:41:42 | 001,810,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll
[2015/05/14 00:41:41 | 000,367,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2015/05/14 00:41:41 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2015/05/03 17:16:42 | 000,000,000 | ---D | C] -- C:\Users\Matt\AppData\Roaming\TS3Client
[2015/05/03 17:16:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
[2015/05/03 17:16:22 | 000,000,000 | ---D | C] -- C:\Program Files\TeamSpeak 3 Client
[2009/07/23 22:56:24 | 008,653,312 | ---- | C] (Dell, Inc. ) -- C:\Users\Matt\AppData\Roaming\DataSafeDotNet.exe

========== Files - Modified Within 30 Days ==========

[2015/05/21 22:50:01 | 000,000,904 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-245273635-629929200-1524352486-1000UA.job
[2015/05/21 22:50:01 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2015/05/21 22:46:00 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2015/05/21 22:36:24 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Matt\Desktop\OTL.exe
[2015/05/21 22:25:52 | 004,197,016 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\Matt\Desktop\tdsskiller.exe
[2015/05/21 22:19:12 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2015/05/21 22:19:12 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2015/05/21 22:16:38 | 000,000,207 | ---- | M] () -- C:\Windows\tweaking.com-regbackup-MATT-PC-Windows-Vista-(TM)-Home-Basic-(32-bit).dat
[2015/05/21 22:13:06 | 002,720,009 | ---- | M] (Thisisu) -- C:\Users\Matt\Desktop\JRT.exe
[2015/05/21 22:09:20 | 000,642,218 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2015/05/21 22:09:20 | 000,119,378 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2015/05/21 22:03:25 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2015/05/21 22:01:09 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2015/05/21 21:39:52 | 002,223,104 | ---- | M] () -- C:\Users\Matt\Desktop\AdwCleaner.exe
[2015/05/21 11:50:11 | 000,000,852 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-245273635-629929200-1524352486-1000Core.job
[2015/05/21 08:45:23 | 002,241,291 | ---- | M] () -- C:\Users\Matt\Desktop\Malware removal.pdf
[2015/05/19 20:13:59 | 000,688,992 | R--- | M] (Swearware) -- C:\Users\Matt\Desktop\dds.com
[2015/05/16 04:46:47 | 000,382,016 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2015/05/15 17:25:28 | 000,002,041 | ---- | M] () -- C:\Users\Matt\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2015/05/09 07:20:26 | 000,247,296 | ---- | M] () -- C:\Users\Matt\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2015/05/08 09:27:44 | 000,001,036 | ---- | M] () -- C:\Users\Matt\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2015/05/03 17:16:29 | 000,000,961 | ---- | M] () -- C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
[2015/04/30 09:14:01 | 000,102,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll

========== Files Created - No Company Name ==========

[2015/05/21 22:16:38 | 000,000,207 | ---- | C] () -- C:\Windows\tweaking.com-regbackup-MATT-PC-Windows-Vista-(TM)-Home-Basic-(32-bit).dat
[2015/05/21 21:39:34 | 002,223,104 | ---- | C] () -- C:\Users\Matt\Desktop\AdwCleaner.exe
[2015/05/21 08:45:38 | 002,241,291 | ---- | C] () -- C:\Users\Matt\Desktop\Malware removal.pdf
[2015/05/03 17:16:29 | 000,000,961 | ---- | C] () -- C:\Users\Public\Desktop\TeamSpeak 3 Client.lnk
[2015/02/09 02:41:03 | 000,208,024 | ---- | C] () -- C:\Windows\System32\drivers\aswVmm.sys
[2015/02/09 02:41:02 | 000,049,904 | ---- | C] () -- C:\Windows\System32\drivers\aswRvrt.sys
[2015/02/09 02:41:02 | 000,024,144 | ---- | C] () -- C:\Windows\System32\drivers\aswHwid.sys
[2014/09/19 11:18:56 | 000,632,320 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2014/09/19 11:18:56 | 000,235,520 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2014/05/04 16:47:45 | 000,021,482 | ---- | C] () -- C:\Users\Matt\AppData\Local\recently-used.xbel
[2014/01/14 08:43:10 | 000,000,372 | ---- | C] () -- C:\Users\Matt\Documents - Shortcut.lnk
[2012/08/29 21:47:57 | 000,000,258 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2011/06/06 01:12:32 | 000,000,656 | ---- | C] () -- C:\Users\Matt\EQTimerSettings.ini
[2011/06/06 01:08:49 | 000,184,320 | ---- | C] () -- C:\Users\Matt\EQTimer.exe
[2011/06/06 01:08:49 | 000,027,539 | ---- | C] () -- C:\Users\Matt\EQTimerHelp.rtf
[2009/08/08 23:15:37 | 000,000,056 | -H-- | C] () -- C:\ProgramData\ezsidmv.dat
[2009/06/10 17:40:01 | 000,029,239 | ---- | C] () -- C:\Users\Matt\AppData\Roaming\UserTile.png
[2009/06/01 18:08:08 | 000,247,296 | ---- | C] () -- C:\Users\Matt\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/06/01 14:35:19 | 000,006,756 | ---- | C] () -- C:\Users\Matt\AppData\Local\d3d9caps.dat

========== ZeroAccess Check ==========

[2006/11/02 08:51:16 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2015/02/17 22:02:58 | 011,587,584 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/11 02:28:19 | 000,614,912 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/04/11 02:28:25 | 000,347,648 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2010/01/06 13:11:08 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\Accelrys
[2014/08/25 06:35:09 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\ACSChemWorxLibrary
[2015/02/09 02:42:01 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\AVAST Software
[2009/07/08 04:07:02 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
[2010/07/02 17:34:42 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\DAEMON Tools Pro
[2015/05/21 22:06:40 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\Dropbox
[2009/11/12 17:12:17 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\EndNote
[2011/05/20 22:09:54 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\Foxit Software
[2012/09/21 14:51:37 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\inkscape
[2009/07/03 12:02:38 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\Nortel
[2013/09/06 07:46:53 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\Notepad++
[2010/04/08 16:06:54 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\OriginLab
[2013/09/06 02:04:15 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\Subversion
[2010/11/22 23:08:35 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\Synergy Software
[2015/05/03 17:36:04 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\TS3Client
[2010/12/10 23:06:00 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\WaveMetrics
[2009/08/10 00:30:46 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\Windows Live Writer

========== Purity Check ==========



========== Files - Unicode (All) ==========
[2014/01/21 11:08:12 | 000,000,073 | ---- | M] ()(C:\Users\Matt\Desktop\??? (Matto).txt) -- C:\Users\Matt\Desktop\マット (Matto).txt
[2014/01/21 11:08:12 | 000,000,073 | ---- | C] ()(C:\Users\Matt\Desktop\??? (Matto).txt) -- C:\Users\Matt\Desktop\マット (Matto).txt
[2014/01/21 11:06:22 | 000,000,117 | ---- | M] ()(C:\Users\Matt\Desktop\??? (Matto) ???? - Japanese for Nano(??)particle(??).txt) -- C:\Users\Matt\Desktop\マット (Matto) ナノ粒子 - Japanese for Nano(ナノ)particle(粒子).txt
[2009/07/05 22:15:34 | 000,000,117 | ---- | C] ()(C:\Users\Matt\Desktop\??? (Matto) ???? - Japanese for Nano(??)particle(??).txt) -- C:\Users\Matt\Desktop\マット (Matto) ナノ粒子 - Japanese for Nano(ナノ)particle(粒子).txt

========== Alternate Data Streams ==========

@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:5D432CE3
@Alternate Data Stream - 127 bytes -> C:\ProgramData\TEMP:430C6D84
@Alternate Data Stream - 109 bytes -> C:\ProgramData\TEMP:DFC5A2B2

< End of report >
Ratagin
Regular Member
 
Posts: 28
Joined: September 21st, 2011, 8:53 pm

Re: Computer much slower than usual, almost unusable

Unread postby Ratagin » May 21st, 2015, 11:44 pm

OTL Extras logfile created on: 5/21/2015 10:38:52 PM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Matt\Desktop
Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.46 Gb Total Physical Memory | 2.35 Gb Available Physical Memory | 68.00% Memory free
7.12 Gb Paging File | 6.03 Gb Available in Paging File | 84.68% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 218.20 Gb Total Space | 5.20 Gb Free Space | 2.38% Space Free | Partition Type: NTFS
Drive D: | 14.65 Gb Total Space | 0.01 Gb Free Space | 0.05% Space Free | Partition Type: NTFS

Computer Name: MATT-PC | User Name: Matt | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{068EA105-B56E-4F7C-A182-08DFC7735BA2}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{11D2BEF6-131D-4EB2-B51C-53D027994CE4}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{1B47BE13-EB62-4106-8268-34EB189E1569}" = lport=2869 | protocol=6 | dir=in | app=system |
"{22E94344-014F-4608-A02B-9DAAC2147D0E}" = lport=58565 | protocol=17 | dir=in | name=canon capt port |
"{3CE299B6-CE25-44E6-986B-D361CEF027A6}" = lport=40080 | protocol=6 | dir=in | name=remote access media server |
"{50CF6DAA-C7E5-45AC-9FF0-08BD62355069}" = lport=40090 | protocol=6 | dir=in | name=streaming web cam |
"{64A913E9-E139-4EFF-B1FC-B2622374F332}" = lport=49160 | protocol=17 | dir=in | name=canon capt port |
"{70A3FD56-BADA-4AB3-A87D-9632B8FED874}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{8812A0A9-F552-4BBC-A975-325515AF66FB}" = lport=40093 | protocol=6 | dir=in | name=streaming web cam |
"{97A6E656-0D58-42AB-B6DB-A1321D88FD34}" = lport=40092 | protocol=6 | dir=in | name=streaming web cam |
"{B9050E24-A9D2-4B7D-AE8F-36DE7C36BFEC}" = lport=5900 | protocol=6 | dir=in | name=ultravnc server |
"{C18B1C7C-66F1-4571-A4F0-751C56F7F45E}" = lport=40094 | protocol=6 | dir=in | name=streaming web cam |
"{C9A3F225-3AB7-458F-950C-3F0F394B7D52}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{E9FC5C4A-B16C-4169-B247-39CCD7290D6D}" = lport=52339 | protocol=17 | dir=in | name=canon capt port |
"{FD2480A3-BD0E-42DD-A035-8EBDF6B0F006}" = lport=40091 | protocol=6 | dir=in | name=streaming web cam |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{07887844-5C6C-40E8-B4B1-9FB9548D5F1D}" = protocol=17 | dir=in | app=c:\programdata\ultravnc\winvnc.exe |
"{0AC7A56D-3C77-4020-B5F0-B1E7A0B4DA33}" = protocol=6 | dir=in | app=c:\program files\common files\dell\remote access file sync service\dsl_fs_sync.exe |
"{0D0BC997-8255-472B-9F17-5232BF57785C}" = protocol=17 | dir=in | app=c:\program files\common files\dell\remote access file sync service\dsl_fs_sync.exe |
"{129BAE4D-F6EC-4F39-9E9F-8CF3463A0BAB}" = dir=in | app=c:\program files\common files\mcafee\mna\mcnasvc.exe |
"{13F3B811-BEC4-4EB8-8D9B-C3B3D8FA8725}" = protocol=17 | dir=in | app=c:\program files\common files\dell\mysql\bin\mysql.exe |
"{1424C164-0E40-4EBD-A591-9B77BBCB7241}" = protocol=17 | dir=in | app=c:\users\matt\appdata\roaming\dropbox\bin\dropbox.exe |
"{14B132E3-5358-4C10-9110-34A0E996EBCC}" = protocol=17 | dir=in | app=c:\program files\dell video chat\dellvideochat.exe |
"{15F9DD84-BF66-4156-B381-37689B73D925}" = protocol=6 | dir=in | app=c:\program files\common files\dell\mysql\bin\mysql.exe |
"{213C9E28-0819-48CA-BA4A-B8CC91C46558}" = protocol=17 | dir=in | app=c:\program files\common files\dell\mysql\bin\mysqld.exe |
"{22E57129-2984-471E-BCE5-8C1C5B433902}" = protocol=6 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
"{2D7B13B9-EEB4-4779-983E-84A3C9BD5EA1}" = protocol=6 | dir=in | app=c:\program files\dell video chat\dellvideochat.exe |
"{3630442B-F613-45C5-9CB1-A26E6AA1E1A3}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{36C60429-8ED8-47B0-B72A-AFCB4C44F125}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{3907092C-7228-40CF-97C3-79D6EFC4D1BA}" = protocol=6 | dir=in | app=c:\program files\common files\dell\mysql\bin\mysqld.exe |
"{3DE44E95-1A7A-4B45-A29F-E313589C28CE}" = protocol=17 | dir=in | app=c:\program files\common files\dell\apache\bin\httpd.exe |
"{3F59981A-7145-48F4-A0B8-51AAA525E04F}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{4DBE7C61-A4FE-4B07-88A7-D4BFFF1352BA}" = protocol=6 | dir=in | app=c:\program files\common files\dell\vlc\vlc.exe |
"{51E1B345-5194-4448-A8E6-FE9353AE0588}" = protocol=17 | dir=in | app=c:\program files\common files\dell\apache\php.exe |
"{562842F6-9066-4B78-A86B-85DB5DD990D0}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{57552F43-CDAA-49DC-BC98-42E232A4EF00}" = protocol=6 | dir=in | app=c:\users\matt\appdata\local\google\google talk plugin\googletalkplugin.dll |
"{584E3461-7202-4798-B8F3-5A42018EF7B1}" = dir=in | app=c:\program files\cyberlink\powerdvd dx\pdvddxsrv.exe |
"{5B1765D5-C249-4567-9708-550EDE1498F7}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{5D376CB6-5861-4659-A621-7ABB3438F1D8}" = protocol=6 | dir=in | app=c:\users\matt\appdata\roaming\dropbox\bin\dropbox.exe |
"{67F17879-425D-4FDF-BBD8-05B98FC2CE9D}" = protocol=6 | dir=in | app=c:\program files\common files\dell\apache\bin\httpd.exe |
"{6DC3080E-02E6-4291-B97A-6614000D64E3}" = protocol=6 | dir=in | app=c:\programdata\ultravnc\winvnc.exe |
"{73A9A0B8-8206-460E-95A8-FA84EBDC08BE}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{74001A1B-0537-42CA-AF64-D9A681C6857E}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{75C15470-5E12-415D-BF04-5F244BA4E581}" = protocol=17 | dir=in | app=c:\program files\common files\dell\vlc\vlc.exe |
"{806AFAEE-3372-4E52-BE20-AF998B557317}" = protocol=17 | dir=in | app=c:\program files\ventrilo\ventrilo.exe |
"{8ECB84BE-58B3-43D5-90FE-4D8E4A47B9EF}" = protocol=6 | dir=in | app=c:\program files\common files\dell\advanced networking service\hnm_svc.exe |
"{92C2D048-7B11-4C64-9903-1451CD00BC61}" = protocol=17 | dir=in | app=c:\program files\avast software\avast\ng\vbox\aswfe.exe |
"{92C7F264-1628-4954-A2A2-A8890AF10BB7}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{9BC2A029-7B5C-442B-A416-5F950EA50268}" = protocol=6 | dir=in | app=c:\program files\common files\dell\apache\php.exe |
"{A50AD050-28DB-4761-84E8-ED1BA821A64A}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{A66AE372-7232-401B-A196-8A7660A8165E}" = protocol=6 | dir=in | app=c:\program files\avast software\avast\ng\vbox\aswfe.exe |
"{A94E3432-DAAF-4FCA-8D6E-406D662B565C}" = dir=in | app=c:\program files\skype\phone\skype.exe |
"{A9EED8AD-5B06-4DC3-9195-AAA76FF78F20}" = dir=in | app=c:\program files\cyberlink\powerdvd dx\powerdvd.exe |
"{AB16218E-C17B-423B-8313-C75C93AF4855}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{AC916221-4911-47B3-A5EC-EC0C0FEE8454}" = protocol=6 | dir=in | app=c:\program files\dell remote access\ezi_ra.exe |
"{C79F729A-A21E-447F-86D2-0147852ADB1D}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{D244390B-A572-40CF-87BE-473A62F7396A}" = protocol=17 | dir=in | app=c:\users\matt\appdata\local\google\google talk plugin\googletalkplugin.dll |
"{D7FDC1DD-91E2-48C5-8B60-527FA92FB816}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{DC1644E0-8E1B-48E6-9B69-0F1AC8E22590}" = dir=in | app=c:\program files\windows live\sync\windowslivesync.exe |
"{E6D3576D-DABF-4277-A610-431E9E05B9C3}" = protocol=17 | dir=in | app=c:\program files\common files\dell\advanced networking service\hnm_svc.exe |
"{E7154F4B-4AA3-4F16-A476-83B585341BE7}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{E87AACEA-53C6-4EFA-97F7-31A3F820BB8A}" = protocol=6 | dir=in | app=c:\users\matt\appdata\local\google\google talk plugin\googletalkplugin.exe |
"{F902292A-069D-4085-9EF7-8AB77899CE32}" = protocol=17 | dir=in | app=c:\users\matt\appdata\local\google\google talk plugin\googletalkplugin.exe |
"{FC72825A-33F6-40D5-A030-9C180C20BF21}" = protocol=17 | dir=in | app=c:\program files\dell remote access\ezi_ra.exe |
"{FFE34703-2915-4B4E-91FF-8B4130AAFBE0}" = dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"TCP Query User{0BDD3E01-1207-44E3-95F5-08AE4F430B9F}C:\program files\google\google earth\plugin\geplugin.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\plugin\geplugin.exe |
"TCP Query User{4BF6660D-CABE-497B-B93D-7601DFD9E428}C:\users\matt\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=6 | dir=in | app=c:\users\matt\appdata\roaming\dropbox\bin\dropbox.exe |
"UDP Query User{74737357-2064-4BBD-8BE3-CD9D9AB27162}C:\program files\google\google earth\plugin\geplugin.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\plugin\geplugin.exe |
"UDP Query User{F833AE35-B135-46A0-9C88-B0155E7DB608}C:\users\matt\appdata\roaming\dropbox\bin\dropbox.exe" = protocol=17 | dir=in | app=c:\users\matt\appdata\roaming\dropbox\bin\dropbox.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{03678E32-77F5-4A5E-8103-0A3786FDB962}_is1" = Zetasizer Software 7.03
"{053C30EA-D4C6-47A0-8537-8D231D9BE873}" = DELL0703
"{07bc42f2-cc7d-4fd5-8fae-93b7ab4bf10b}" = ACS ChemWorx Dependencies
"{08E81ABD-79F7-49C2-881F-FD6CB0975693}" = Roxio Creator Data
"{09760D42-E223-42AD-8C3E-55B47D0DDAC3}" = Roxio Creator DE
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0ED7EE95-6A97-47AA-AD73-152C08A15B04}" = Dell DataSafe Local Backup
"{1087656C-8853-4881-8533-1E2D74FC215C}" = ACS ChemWorx Library
"{111EE7DF-FC45-40C7-98A7-753AC46B12FB}" = QuickTime 7
"{13766F76-6C8C-4E57-A9F3-3212D1C6E0D1}" = Dell DataSafe Online
"{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}" = Microsoft Works
"{18D47FA1-0440-48D3-A7E0-DA09537FF471}" = Apple Mobile Device Support
"{1945A4B5-73B6-4DE9-99A3-05261B7FDED0}" = Shared C Run-time for x86
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}" = Roxio Creator Tools
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}" = Skype™ 7.3
"{27F00C63-449B-2FAB-CBE8-24AB80E17449}" = Acrobat.com
"{2F21564D-DE05-4C6D-B21E-08B9D313FAB3}" = iTunes
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Roxio Update Manager
"{3138EAD3-700B-4A10-B617-B3F8096EE30D}" = Dell Edoc Viewer
"{32714287-4234-412A-877B-D33AFABFDE2B}" = EverQuest Titanium
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030
"{34927EBC-98D4-4D53-98BE-510DF5999F50}" = Adobe AIR
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel(R) Rapid Storage Technology
"{415B2719-AD3A-4944-B404-C472DB6085B3}" = Cisco EAP-FAST Module
"{4903D172-DCCB-392F-93A3-34CA9D47FE3D}" = Microsoft .NET Framework 4.5.1
"{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}" = Google Earth Plug-in
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{575C65F5-CF47-4ED9-AAC4-10E5B52A39E2}" = TortoiseSVN 1.8.2.24708 (32 bit)
"{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}" = Segoe UI
"{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}" = Google Update Helper
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{61AD15B2-50DB-4686-A739-14FE180D4429}" = Windows Live ID Sign-in Assistant
"{61BEA823-ECAF-49F1-8378-A59B3B8AD247}" = Microsoft Default Manager
"{65D0C510-D7B6-4438-9FC8-E6B91115AB0D}" = Live! Cam Avatar Creator
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{669C7BD8-DAA2-49B6-966C-F1E2AAE6B17E}" = Cisco PEAP Module
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD DX
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{6A05FEDF-662E-46BF-8A25-010E3F1C9C69}" = Windows Live UX Platform Language Pack
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}" = Roxio Creator Audio
"{75CE8AF5-0A5E-4A42-BC67-F83591DA9A7D}" = Sound Blaster X-Fi MB
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo Client
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{80956555-A512-4190-9CAD-B000C36D6B6B}" = Windows Live Messenger
"{83770D14-21B9-44B3-8689-F7B523F94560}" = Cisco LEAP Module
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ULTIMATER_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ULTIMATER_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_ULTIMATER_{2314F9A1-126F-45CC-8A5E-DFAF866F3FBC}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_ULTIMATER_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_ULTIMATER_{98333358-268C-4164-B6D4-C96DF5153727}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_ULTIMATER_{AAA19365-932B-49BD-8138-BE28CEE9C4B4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{91120000-002E-0000-0000-0000000FF1CE}" = Microsoft Office Ultimate 2007
"{91120000-002E-0000-0000-0000000FF1CE}_ULTIMATER_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1
"{95120000-00AF-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint Viewer 2007 (English)
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = Dell Touchpad
"{A5F5D659-EFCB-4AC5-9DB2-69A10BC1B6EF}" = ACS ChemWorx Word Plugin
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9668246-FB70-4103-A1E3-66C9BC2EFB49}" = Dell DataSafe Local Backup - Support Software
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}" = Apple Application Support
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.13)
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{AC76BA86-7AD7-5760-0000-900000000003}" = Japanese Fonts Support For Adobe Reader 9
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B175520C-86A2-35A7-8619-86DC379688B9}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}" = Roxio Creator Copy
"{B935C985-A17F-484B-8470-09E4FC27DC26}" = Dell-eBay
"{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030
"{C4972073-2BFE-475D-8441-564EA97DA161}" = QuickSet32
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E3BFEE55-39E2-4BE0-B966-89FE583822C1}" = Dell Support Center (Support Software)
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{ECE12161-B445-48FA-9056-FD54D8A72459}" = Origin 7.5
"{ED439A64-F018-4DD4-8BA5-328D85AB09AB}" = Roxio Creator DE
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F6CB42B9-F033-4152-8813-FF11DA8E6A78}" = Dell Dock
"{FDD810CA-D5E3-40E9-AB7B-36440B0D41EF}" = Windows Live Sync
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 17 ActiveX
"Adobe Flash Player NPAPI" = Adobe Flash Player 17 NPAPI
"Adobe Shockwave Player" = Adobe Shockwave Player 12.1
"Advanced Audio FX Engine" = Advanced Audio FX Engine
"Avast" = Avast Free Antivirus
"Broadcom 802.11 Application" = Dell Wireless WLAN Card Utility
"Creative OA009" = Integrated Webcam Driver (1.02.01.0320)
"CutePDF Writer Installation" = CutePDF Writer 2.8
"Dell Video Chat" = Dell Video Chat
"Dell Webcam Central" = Dell Webcam Central
"Diablo" = Diablo
"Diablo II" = Diablo II
"EPSON NX210 Series" = EPSON NX210 Series Printer Uninstall
"Foxit Reader" = Foxit Reader
"GIMP-2_is1" = GIMP 2.8.2
"Igor Pro" = Igor Pro
"Inkscape" = Inkscape 0.48.2
"ISI ResearchSoft - Export Helper" = ISI ResearchSoft - Export Helper
"KaleidaGraph 4.1" = KaleidaGraph 4.1
"Marvell Miniport Driver" = Marvell Miniport Driver
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"mIRC" = mIRC
"Mozilla Firefox 33.0.2 (x86 en-US)" = Mozilla Firefox 33.0.2 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Notepad++" = Notepad++
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"ULTIMATER" = Microsoft Office Ultimate 2007
"WildTangent dell Master Uninstall" = WildTangent Games
"WinEdt 6" = WinEdt 6
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"Xvid Video Codec 1.3.3" = Xvid Video Codec

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-245273635-629929200-1524352486-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{32ce5a97-0c38-481f-8b25-cfc2ba0bf16c}" = ACS ChemWorx Desktop
"{56b06a06-bf60-47ac-bb74-3abf820bc4b3}" = ACS ChemWorx Word Plugin
"Dropbox" = Dropbox
"f031ef6ac137efc5" = Dell Driver Download Manager
"Google Chrome" = Google Chrome
"MiKTeX 2.8" = MiKTeX 2.8
"Move Media Player" = Move Media Player

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 5/21/2015 1:02:05 PM | Computer Name = Matt-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 5/21/2015 1:02:05 PM | Computer Name = Matt-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 3135

Error - 5/21/2015 1:02:05 PM | Computer Name = Matt-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 3135

Error - 5/21/2015 8:50:54 PM | Computer Name = Matt-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 5/21/2015 8:50:54 PM | Computer Name = Matt-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 28132487

Error - 5/21/2015 8:50:54 PM | Computer Name = Matt-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 28132487

Error - 5/21/2015 9:23:58 PM | Computer Name = Matt-PC | Source = EventSystem | ID = 4621
Description =

Error - 5/21/2015 9:29:38 PM | Computer Name = Matt-PC | Source = WinMgmt | ID = 10
Description =

Error - 5/21/2015 9:58:33 PM | Computer Name = Matt-PC | Source = EventSystem | ID = 4621
Description =

Error - 5/21/2015 10:02:35 PM | Computer Name = Matt-PC | Source = WinMgmt | ID = 10
Description =

[ OSession Events ]
Error - 3/2/2014 8:23:11 PM | Computer Name = Matt-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 44502
seconds with 9960 seconds of active time. This session ended with a crash.

Error - 3/4/2014 3:14:49 AM | Computer Name = Matt-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 130
seconds with 120 seconds of active time. This session ended with a crash.

Error - 3/4/2014 3:42:48 AM | Computer Name = Matt-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 1585
seconds with 1260 seconds of active time. This session ended with a crash.

Error - 3/4/2014 8:07:00 AM | Computer Name = Matt-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 14999
seconds with 3000 seconds of active time. This session ended with a crash.

Error - 3/11/2014 4:11:49 PM | Computer Name = Matt-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 238
seconds with 180 seconds of active time. This session ended with a crash.

Error - 3/19/2014 8:10:53 PM | Computer Name = Matt-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 498
seconds with 480 seconds of active time. This session ended with a crash.

Error - 3/21/2014 6:24:16 PM | Computer Name = Matt-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6690.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 2015
seconds with 420 seconds of active time. This session ended with a crash.

Error - 3/22/2014 11:22:25 AM | Computer Name = Matt-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 6287
seconds with 2880 seconds of active time. This session ended with a crash.

Error - 3/23/2014 1:21:26 PM | Computer Name = Matt-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 1, Application Name: Microsoft Office Excel, Application Version:
12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 15813
seconds with 780 seconds of active time. This session ended with a crash.

Error - 10/26/2014 2:34:40 PM | Computer Name = Matt-PC | Source = Microsoft Office 12 Sessions | ID = 7001
Description = ID: 0, Application Name: Microsoft Office Word, Application Version:
12.0.6705.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 14
seconds with 0 seconds of active time. This session ended with a crash.

[ System Events ]
Error - 5/21/2015 10:17:10 PM | Computer Name = Matt-PC | Source = Service Control Manager | ID = 7034
Description =

Error - 5/21/2015 10:17:11 PM | Computer Name = Matt-PC | Source = Service Control Manager | ID = 7031
Description =

Error - 5/21/2015 10:17:13 PM | Computer Name = Matt-PC | Source = Service Control Manager | ID = 7034
Description =

Error - 5/21/2015 10:17:14 PM | Computer Name = Matt-PC | Source = Service Control Manager | ID = 7034
Description =

Error - 5/21/2015 10:17:14 PM | Computer Name = Matt-PC | Source = Service Control Manager | ID = 7034
Description =

Error - 5/21/2015 10:17:15 PM | Computer Name = Matt-PC | Source = Service Control Manager | ID = 7034
Description =

Error - 5/21/2015 10:17:15 PM | Computer Name = Matt-PC | Source = Service Control Manager | ID = 7034
Description =

Error - 5/21/2015 10:17:24 PM | Computer Name = Matt-PC | Source = Service Control Manager | ID = 7034
Description =

Error - 5/21/2015 10:17:26 PM | Computer Name = Matt-PC | Source = Service Control Manager | ID = 7034
Description =

Error - 5/21/2015 10:17:26 PM | Computer Name = Matt-PC | Source = Service Control Manager | ID = 7031
Description =


< End of report >
Ratagin
Regular Member
 
Posts: 28
Joined: September 21st, 2011, 8:53 pm

Re: Computer much slower than usual, almost unusable

Unread postby Ratagin » May 21st, 2015, 11:45 pm

Ok I think that is everything. I had to break up the TDDS killer into a few posts.

Thanks,
Ratagin
Ratagin
Regular Member
 
Posts: 28
Joined: September 21st, 2011, 8:53 pm

Re: Computer much slower than usual, almost unusable

Unread postby pgmigg » May 22nd, 2015, 5:07 pm

Hello Ratagin,

Good job! :D Let see what can be done here...

I uninstalled all programs you asked, but Java Auto Updater was not even listed... so I couldn't uninstall it.
Please don't worry - it is possible and normal...
The link: general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner did not work, even if I added http:// before it. I got a 404 error, so I downloaded from bleepingcomputer.
It is strange - I checked all links before post and they are worked properly. Lets say that it is possible unknown problem of your browsers... Anyway, I got the result!

Please run the following:

Step 1.
OTL - Run Fix Script
You should still have OTL.exe on your desktop.
Important! Close all applications and windows so that you have nothing open and are at your Desktop.
  1. Right click on OTL.exe, select "Run As Administrator..." to run it. If prompted by UAC, please allow it.
  2. Underneath Output at the top, make sure Standard Output is selected.
  3. Highlight and copy the following entries: into the Image text box.
    (Do not include the words Code: Select all - instead of it please click the Select all button next to Code: to select the entire script.)
    Code: Select all
    :Commands
    [createrestorepoint]
    
    :OTL
    IE - HKU\S-1-5-21-245273635-629929200-1524352486-1000\..\SearchScopes\{410B8D53-D376-4F25-B51F-D2F2853C231A}: "URL" = https://search.yahoo.com/search?fr=mcaf ... 0150111&p= {searchTerms}
    IE - HKU\S-1-5-21-245273635-629929200-1524352486-1000\..\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4}: "URL" = http://search.yahoo.com/search?fr=mcafee&p= {searchTerms}
    FF - prefs.js..browser.search.defaultenginename: "https://search.yahoo.com/search?fr=mcafee&type=B114US105D20150111&p="
    FF - prefs.js..browser.search.order.1: "https://search.yahoo.com/search?fr=mcafee&type=B114US105D20150111&p="
    FF - prefs.js..browser.search.selectedEngine: "https://search.yahoo.com/search?fr=mcafee&type=B114US105D20150111&p="
    FF - prefs.js..extensions.enabledAddons: zoteroWinWordIntegration%40zotero.org:3.1.19
    FF - prefs.js..extensions.enabledAddons: zotero%40chnm.gmu.edu:4.0.26.2
    FF - prefs.js..extensions.enabledItems: zotero@chnm.gmu.edu :3.0.8
    FF - prefs.js..extensions.enabledItems: zoteroWinWordIntegration@zotero.org :3.1.11
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
    FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA}:7.0
    FF - prefs.js..extensions.enabledItems: {4ED1F68A-5463-4931-9384-8FFF5ED91D92}:3.6.0
    FF - prefs.js..keyword.URL: "https://search.yahoo.com/search?fr=mcafee&type=B114US105D20150111&p="
    FF - prefs.js..network.proxy.type: 4
    [2015/04/21 06:42:15 | 000,000,000 | ---D | M] (Zotero Word for Windows Integration) -- C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\9pfopnr9.default\extensions\zoteroWinWordIntegration@zotero.org
    File not found (No name found) -- C:\PROGRAM FILES\MCAFEE\SITEADVISOR
    CHR - plugin: McAfee SiteAdvisor (Enabled) = C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.41.123.2_0\McChPlg.dll
    CHR - plugin: McAfee SiteAdvisor (Enabled) = C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll
    CHR - plugin: Java Deployment Toolkit 7.0.0.147 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
    CHR - plugin: Java(TM) Platform SE 7 (Enabled) = C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll
    CHR - plugin: McAfee SecurityCenter (Enabled) = c:\progra~1\mcafee\msc\npmcsn~1.dll
    O2 - BHO: (no name) - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - No CLSID value found.
    O3 - HKU\S-1-5-21-245273635-629929200-1524352486-1000\..\Toolbar\WebBrowser: (no name) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No CLSID value found.
    O4 - HKLM..\Run: [Dell PC TuneUp Startup] "C:\Program Files\iolo\Common\Lib\ioloLManager.exe" File not found
    [2010/01/06 13:11:08 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\Accelrys
    [2014/08/25 06:35:09 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\ACSChemWorxLibrary
    [2010/07/02 17:34:42 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\DAEMON Tools Pro
    [2009/08/10 00:30:46 | 000,000,000 | ---D | M] -- C:\Users\Matt\AppData\Roaming\Windows Live Writer
    
    :Files
    C:\Program Files\McAfee
    @C:\ProgramData\TEMP:5D432CE3
    @C:\ProgramData\TEMP:430C6D84
    @C:\ProgramData\TEMP:DFC5A2B2
    ipconfig /flushdns /c
    
    :Commands
    [emptyflash]
    [emptyjava]
    [emptytemp]
    
  4. Click under the Custom Scan/Fixes box and paste the copied text.
  5. Click the Run Fix button. If prompted... click OK.
  6. OTL may ask to reboot the machine. Please do so if asked.
  7. Let the program run unhindered and reboot the PC when it is done.
    When the computer reboots, and you start your usual account, a Notepad text file will appear.
  8. Copy the contents of that file and post it in your next reply. The log can also be found, based on the date/time it was created, as C:\_OTL\MovedFiles\MMDDYYYY_HHMMSS.log

Then:
Please tell me is this computer used for business purposes and connected to a business or educational network?
I need to know it - so I can provide the proper instructions.

Please post each log separately to prevent it being cut off by the forum post size limiter.
Check each after you've posted it to make sure it's all present, if any log is cut off you'll have to post it in sections....

Please include in your next reply:
  1. Do you have any problems executing the instructions?
  2. Contents of the C:\_OTL\MovedFiles\MMDDYYYY_HHMMSS.log log file after OTL FixScript run
  3. Answer to my question related to type of using of your computer
  4. Do you see any changes in computer behavior?

Thanks,
pgmigg

Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
MRU Teacher
MRU Teacher
 
Posts: 3180
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: Computer much slower than usual, almost unusable

Unread postby Ratagin » May 22nd, 2015, 9:31 pm

Hello pgmigg,

A. No problems executing the instructions.
B. See below
C. This computer is my personal computer although I keep some files related to my work (scientific research). But it is my personal property and not connected with any business network.
D. I haven't tried running any programs, but it already seems to boot up a bit faster.
-Ratagin


All processes killed
========== COMMANDS ==========
Restore point Set: OTL Restore Point
========== OTL ==========
Registry key HKEY_USERS\S-1-5-21-245273635-629929200-1524352486-1000\Software\Microsoft\Internet Explorer\SearchScopes\{410B8D53-D376-4F25-B51F-D2F2853C231A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{410B8D53-D376-4F25-B51F-D2F2853C231A}\ not found.
Registry key HKEY_USERS\S-1-5-21-245273635-629929200-1524352486-1000\Software\Microsoft\Internet Explorer\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{DECA3892-BA8F-44b8-A993-A466AD694AE4}\ not found.
Prefs.js: "https://search.yahoo.com/search?fr=mcafee&type=B114US105D20150111&p=" removed from browser.search.defaultenginename
Prefs.js: "https://search.yahoo.com/search?fr=mcafee&type=B114US105D20150111&p=" removed from browser.search.order.1
Prefs.js: "https://search.yahoo.com/search?fr=mcafee&type=B114US105D20150111&p=" removed from browser.search.selectedEngine
Prefs.js: zoteroWinWordIntegration%40zotero.org:3.1.19 removed from extensions.enabledAddons
Prefs.js: zotero%40chnm.gmu.edu:4.0.26.2 removed from extensions.enabledAddons
Prefs.js: zotero@chnm.gmu.edu :3.0.8 removed from extensions.enabledItems
Prefs.js: zoteroWinWordIntegration@zotero.org :3.1.11 removed from extensions.enabledItems
Prefs.js: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24 removed from extensions.enabledItems
Prefs.js: {CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA}:7.0 removed from extensions.enabledItems
Prefs.js: {4ED1F68A-5463-4931-9384-8FFF5ED91D92}:3.6.0 removed from extensions.enabledItems
Prefs.js: "https://search.yahoo.com/search?fr=mcafee&type=B114US105D20150111&p=" removed from keyword.URL
Prefs.js: 4 removed from network.proxy.type
C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\9pfopnr9.default\extensions\zoteroWinWordIntegration@zotero.org\resource folder moved successfully.
C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\9pfopnr9.default\extensions\zoteroWinWordIntegration@zotero.org\install folder moved successfully.
C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\9pfopnr9.default\extensions\zoteroWinWordIntegration@zotero.org\defaults\preferences folder moved successfully.
C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\9pfopnr9.default\extensions\zoteroWinWordIntegration@zotero.org\defaults folder moved successfully.
C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\9pfopnr9.default\extensions\zoteroWinWordIntegration@zotero.org\components-38.0 folder moved successfully.
C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\9pfopnr9.default\extensions\zoteroWinWordIntegration@zotero.org\components-37.0 folder moved successfully.
C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\9pfopnr9.default\extensions\zoteroWinWordIntegration@zotero.org\components-36.0 folder moved successfully.
C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\9pfopnr9.default\extensions\zoteroWinWordIntegration@zotero.org\components-35.0 folder moved successfully.
C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\9pfopnr9.default\extensions\zoteroWinWordIntegration@zotero.org\components-34.0 folder moved successfully.
C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\9pfopnr9.default\extensions\zoteroWinWordIntegration@zotero.org\components-33.0 folder moved successfully.
C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\9pfopnr9.default\extensions\zoteroWinWordIntegration@zotero.org\components-32.0 folder moved successfully.
C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\9pfopnr9.default\extensions\zoteroWinWordIntegration@zotero.org\components-31.0 folder moved successfully.
C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\9pfopnr9.default\extensions\zoteroWinWordIntegration@zotero.org\components folder moved successfully.
C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\9pfopnr9.default\extensions\zoteroWinWordIntegration@zotero.org\chrome folder moved successfully.
C:\Users\Matt\AppData\Roaming\Mozilla\Firefox\Profiles\9pfopnr9.default\extensions\zoteroWinWordIntegration@zotero.org folder moved successfully.
File C:\Users\Matt\AppData\Local\Google\Chrome\User Data\Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho\3.41.123.2_0\McChPlg.dll not found.
File C:\Program Files\McAfee\SiteAdvisor\npmcffplg32.dll not found.
File C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll not found.
C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll moved successfully.
File c:\progra~1\mcafee\msc\npmcsn~1.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{27B4851A-3207-45A2-B947-BE8AFE6163AB}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{27B4851A-3207-45A2-B947-BE8AFE6163AB}\ not found.
Registry value HKEY_USERS\S-1-5-21-245273635-629929200-1524352486-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{21FA44EF-376D-4D53-9B0F-8A89D3229068}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Dell PC TuneUp Startup deleted successfully.
C:\Users\Matt\AppData\Roaming\Accelrys\Discovery Studio Client\2.5\State\System folder moved successfully.
C:\Users\Matt\AppData\Roaming\Accelrys\Discovery Studio Client\2.5\State\CustomUI\System folder moved successfully.
C:\Users\Matt\AppData\Roaming\Accelrys\Discovery Studio Client\2.5\State\CustomUI folder moved successfully.
C:\Users\Matt\AppData\Roaming\Accelrys\Discovery Studio Client\2.5\State folder moved successfully.
C:\Users\Matt\AppData\Roaming\Accelrys\Discovery Studio Client\2.5\PluginDescriptors\System folder moved successfully.
C:\Users\Matt\AppData\Roaming\Accelrys\Discovery Studio Client\2.5\PluginDescriptors folder moved successfully.
C:\Users\Matt\AppData\Roaming\Accelrys\Discovery Studio Client\2.5\NonStandardAminoAcids folder moved successfully.
C:\Users\Matt\AppData\Roaming\Accelrys\Discovery Studio Client\2.5\Fragments folder moved successfully.
C:\Users\Matt\AppData\Roaming\Accelrys\Discovery Studio Client\2.5\Diagnostics folder moved successfully.
C:\Users\Matt\AppData\Roaming\Accelrys\Discovery Studio Client\2.5\Catalyst\conf folder moved successfully.
C:\Users\Matt\AppData\Roaming\Accelrys\Discovery Studio Client\2.5\Catalyst folder moved successfully.
C:\Users\Matt\AppData\Roaming\Accelrys\Discovery Studio Client\2.5 folder moved successfully.
C:\Users\Matt\AppData\Roaming\Accelrys\Discovery Studio Client folder moved successfully.
C:\Users\Matt\AppData\Roaming\Accelrys folder moved successfully.
C:\Users\Matt\AppData\Roaming\ACSChemWorxLibrary\Local Store\acschemworx.acs.org\e04bda5bf4e2069\Logs folder moved successfully.
C:\Users\Matt\AppData\Roaming\ACSChemWorxLibrary\Local Store\acschemworx.acs.org\e04bda5bf4e2069\documents folder moved successfully.
C:\Users\Matt\AppData\Roaming\ACSChemWorxLibrary\Local Store\acschemworx.acs.org\e04bda5bf4e2069\cwShared\SF folder moved successfully.
C:\Users\Matt\AppData\Roaming\ACSChemWorxLibrary\Local Store\acschemworx.acs.org\e04bda5bf4e2069\cwShared\Gp folder moved successfully.
C:\Users\Matt\AppData\Roaming\ACSChemWorxLibrary\Local Store\acschemworx.acs.org\e04bda5bf4e2069\cwShared folder moved successfully.
C:\Users\Matt\AppData\Roaming\ACSChemWorxLibrary\Local Store\acschemworx.acs.org\e04bda5bf4e2069\citeLib folder moved successfully.
C:\Users\Matt\AppData\Roaming\ACSChemWorxLibrary\Local Store\acschemworx.acs.org\e04bda5bf4e2069 folder moved successfully.
C:\Users\Matt\AppData\Roaming\ACSChemWorxLibrary\Local Store\acschemworx.acs.org folder moved successfully.
C:\Users\Matt\AppData\Roaming\ACSChemWorxLibrary\Local Store\#SharedObjects\Library.swf folder moved successfully.
C:\Users\Matt\AppData\Roaming\ACSChemWorxLibrary\Local Store\#SharedObjects folder moved successfully.
C:\Users\Matt\AppData\Roaming\ACSChemWorxLibrary\Local Store folder moved successfully.
C:\Users\Matt\AppData\Roaming\ACSChemWorxLibrary\#airversion folder moved successfully.
C:\Users\Matt\AppData\Roaming\ACSChemWorxLibrary folder moved successfully.
C:\Users\Matt\AppData\Roaming\DAEMON Tools Pro\IconsCache folder moved successfully.
C:\Users\Matt\AppData\Roaming\DAEMON Tools Pro folder moved successfully.
C:\Users\Matt\AppData\Roaming\Windows Live Writer folder moved successfully.
========== FILES ==========
C:\Program Files\McAfee\Temp\qxz6381 folder moved successfully.
C:\Program Files\McAfee\Temp folder moved successfully.
C:\Program Files\McAfee folder moved successfully.
ADS C:\ProgramData\TEMP:5D432CE3 deleted successfully.
ADS C:\ProgramData\TEMP:430C6D84 deleted successfully.
ADS C:\ProgramData\TEMP:DFC5A2B2 deleted successfully.
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\Matt\Desktop\cmd.bat deleted successfully.
C:\Users\Matt\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========

[EMPTYFLASH]

User: All Users

User: Default
->Flash cache emptied: 57311 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Matt
->Flash cache emptied: 41589 bytes

User: Public

User: RA Media Server

Total Flash Files Cleaned = 0.00 mb


[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: Matt
->Java cache emptied: 3237552 bytes

User: Public

User: RA Media Server

Total Java Files Cleaned = 3.00 mb


[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Matt
->Temp folder emptied: 111058365 bytes
->Temporary Internet Files folder emptied: 412099443 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 99956116 bytes
->Google Chrome cache emptied: 163932753 bytes
->Flash cache emptied: 0 bytes

User: Public
->Temp folder emptied: 0 bytes

User: RA Media Server
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 81534183 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 828.00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 05222015_203635

Files\Folders moved on Reboot...
File\Folder C:\Users\Matt\AppData\Local\Microsoft\Windows\Temporary Internet Files\Virtualized\C\Users\Matt\AppData\Roaming\Dropbox\shellext \l\54bbea97 not found!
File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
File\Folder C:\Windows\temp\TMP0000000166B182A74286E9F8 not found!

PendingFileRenameOperations files...

Registry entries deleted on Reboot...
Ratagin
Regular Member
 
Posts: 28
Joined: September 21st, 2011, 8:53 pm

Re: Computer much slower than usual, almost unusable

Unread postby pgmigg » May 23rd, 2015, 12:24 am

Hello Ratagin,

I haven't tried running any programs, but it already seems to boot up a bit faster.
Nice to hear but we do not finish yet... :D

Step 1.
Malwarebytes' Anti-Malware
  1. Please download Malwarebytes' Anti-Malware and save to your desktop.
  2. Right-click on mbam-setup.exe and select "Run as administrator... ", then follow the prompts to install the program.
  3. At the end, Uncheck enable free trial of Malwarebytes' Anti-Malware, (You can activate this when we've finished, if you wish)
  4. Then click Finish.
  5. You'll see an alert that "Databases out of date" Click the "Update Now" button.
  6. Press the Scan Settings icon on the top bar of the MBAM interface, make sure Threat Scan is checked.
  7. Press the Scan Now >> button.
  8. When the scan is finished:
  9. If clean, a message will be displayed "The scan completed successfully! No malicious items were detected!"
  10. If infections were found, click the Quarantine all button.
  11. Press the View detailed log >> link to display the results log.
  12. Press the Copy to Clipboard button.
  13. Copy and paste the scan results in your next reply and exit MBAM.

Step 2.
Reset Firefox Browser
  1. In the FireFiox browser click Help > Troubleshooting information.
  2. If you're unable to access the Help menu, type about:support in your address bar, then hit Enter.
  3. This will bring up the Troubleshooting Information page.
  4. Now click on Refresh FireFox, in the confirmation window that opens.
  5. Firefox will close and be reset. When it's done, a window will list the information that was imported.
  6. Click Finish and Firefox will open.

Step 3.
Show Hidden and System files
  1. Close all programs so that you are at your desktop.
  2. Press Image.
  3. Click the Start Search box on the Start Menu
  4. Copy and paste the following value, in the open text entry box:
    control folders
  5. Click on the View tab, then under the "Hidden files and folders" section
    • SELECT "Show hidden files and folders"
    • Remove check mark from check box "Hide extensions for known file types"
    • Remove check mark from check box "Hide protected operating system files"
  6. Press the Apply, then the OK buttons.

Step 4.
Backup Your Google Chrome Bookmarks
  1. Please go to this article and read it.
  2. If you have Google Account and familiar with it, please sync your Bookmarks to Google. Otherwise - do it manually by Option 2.

Step 5.
Remove Programs
  1. Click on Start, then click the Start Search box on the Start Menu.
  2. Copy and paste the value below without into the open text entry box:
    (Do not include the words Code: Select all - instead of it please click the Select all button next to Code: to select the entire script.)
    Code: Select all
     appwiz.cpl 
    and press Enter - the Unistall or change a program list will be opened.
  3. Click each Entry, as follows, one by one, if it exists, choose Uninstall, and give permission to Continue:
    Google Chrome
    Google Update Helper
  4. Take extra care in answering questions posed by any Uninstaller.
    Note:
    If you're asked if you would like to keep any personalized settings or folders, say NO! <- IMPORTANT!
  5. When the program(s) have been uninstalled, please close Control Panel.
  6. Now make sure that the folders from Chrome are deleted!!!, otherwise - delete the below if they exist:
    • C:\Users\Dawn\AppData\Local\Google
    • C:\Program Files\Google
  7. Reboot (restart) your computer.

Step 6.
Download and reinstall Google Chrome
  1. Please download and reinstall Google Chrome from Here
  2. After installation will be completed successfully, please set the Google Chrome as your default browser and rebuild you Bookmarks were backup-ed or synced in the Step 4 by using the import option of the Bookmarks menu or automatically in case of sign to Google Account.

Step 7.
Fresh OTL Scan
You should still have OTL.exe on your desktop.
Important! Close all applications and windows so that you have nothing open and are at your Desktop.
  1. Right click on OTL.exe, select "Run As Administrator..." to run it. If prompted by UAC, please allow it.
  2. Under Output, ensure that Standard Output is selected.
  3. Check the boxes labeled:
    • Scan All Users
    • LOP check
    • Extra Registry > Use SafeList
  4. Click on Run Scan at the top left hand corner.
  5. When done, one Notepad file OTL.txt <-- Will be opened, maximized
  6. Please post the content of OTL.txt file ONLY in your next reply.

Please post each log separately to prevent it being cut off by the forum post size limiter.
Check each after you've posted it to make sure it's all present, if any log is cut off you'll have to post it in sections....

Please include in your next reply:
  1. Do you have any problems executing the instructions?
  2. Contents of the most recent C:\ProgramData\Malwarebytes\Malwarebytes Anti-Malware\Logs\mbam-log-2015-05-... file
  3. Contents of a OTL.txt log file after OTL fresh scan
  4. Do you see any changes in computer behavior?

Thanks,
pgmigg

Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
MRU Teacher
MRU Teacher
 
Posts: 3180
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: Computer much slower than usual, almost unusable

Unread postby Ratagin » May 24th, 2015, 5:59 pm

A. Yes I had one problem; I was not able to install google chrome. I completed steps 1-5, but when I tried to install google chrome I got a "Installation Failed. The Google Chrome installer failed to start." error. I found this: https://www.youtube.com/watch?v=1PEGmk5hlTY . Should I delete the google registry keys so I can reinstall chrome?

B. see below:
Malwarebytes Anti-Malware
www.malwarebytes.org


Update, 5/23/2015 6:43:05 PM, SYSTEM, MATT-PC, Manual, Remediation Database, 2015.3.9.1, 2015.5.13.1,
Update, 5/23/2015 6:43:05 PM, SYSTEM, MATT-PC, Manual, Rootkit Database, 2015.2.25.1, 2015.5.16.1,
Update, 5/23/2015 6:43:21 PM, SYSTEM, MATT-PC, Manual, Malware Database, 2015.3.9.5, 2015.5.23.4,
Scan, 5/23/2015 7:30:29 PM, SYSTEM, MATT-PC, Manual, Start:5/23/2015 6:44:43 PM, Duration:44 min 19 sec, Threat Scan, Completed, 2 Malware Detections, 1 Non-Malware Detection,

(end)

C. will come next post as explained above in A.

D. In general my computer is operating slowly. I noticed it after originally backing up and creating a restore point. My recovery drive (D:) is completely full (8MB free of 14.6GB). Could this be slowing down my computer? My C: still has 6.51GB/218GB free.
Ratagin
Regular Member
 
Posts: 28
Joined: September 21st, 2011, 8:53 pm
Advertisement
Register to Remove

Next

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 13 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware