Jump to content

fryerlawrence

Honorary Members
  • Posts

    52
  • Joined

  • Last visited

Reputation

0 Neutral

Recent Profile Visitors

1,634 profile views
  1. As far as I know everything looks okay. I did re-install Chrome. (forgot to backup my bookmarks before I did..lol whoops... lesson learned) Please advise. Thanks, -fryer
  2. Also please forgive me for not paying more close attention to the instructions. In the past I have always been asked to post the logs within the reply and that is that I "thought" I saw in your instructions. However, I am wrong in my assumption. In the future I will attach my logs as an attachment for you. -fryer
  3. Sorry... forgot to add that I didn't make a mistake the second time around when i did the second scan, I noticed your instructions said: Scan with ZOEK Temporary disable your AntiVirus and AntiSpyware protection - instructions here. You should probably switch that around? Thanks, -fryer
  4. The problem occurred when I got ahead of the instructions and ran the zoek.exe file without disabling Webroot first, I apologize for my mistake. However, despite my mistake, I am concerned that Webroot flagged Zoek.exe as a Trojan virus. Because I believe that you are a trusted advisor and never had problems before on Malwarebytes.org, I went ahead and ran the Zoek.exe file anyway. So far I have not done anything with the Quarantine items in Webroot. I did notice that every single add on extension for Chrome was wiped out and replaced with a "puzzle piece picture" even though they are "Enabled" (they do not work) I know not to install stuff during this process, however, my LastPass extension I depend on because I cannot remember 31 character string passwords with symbols etc. So out of necessity to be able to log into Malwarebytes.org forums I did delete and reinstall the LastPass add on extension from the Chrome Store into Chrome. Within Chrome I noticed the following: All of my Chrome apps are replaced with that different picture. I have tested a couple of them and the apps that I tested worked. They do not have the specific app picture as I had before. With all that in mind I did notice that the PorIcEChop & SavuEMass browser virus is gone in Chrome, Firefox and Internet Explorer for now. What is the next step? Thanks. And by the way, I like your Avatar picture...lol. Cool! - fryer
  5. Zoek.exe v5.0.0.0 Updated 29-07-2014 Tool run by Owner on Tue 07/29/2014 at 19:36:21.91. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Owner\Desktop\zoek.exe [scan all users] [script inserted] ==== Older Logs ====================== C:\zoek-results2014-07-29-202236.log 34852 bytes ==== System Restore Info ====================== 7/29/2014 7:36:43 PM Zoek.exe System Restore Point Created Succesfully. ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== FireFox Fix ====================== ProfilePath: C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\kfjgpmg8.default user.js not found ---- Lines easylife removed from prefs.js ---- user_pref("extensions.gpHtKO.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if (url.indexOf(\"acebook\")>-1||url.indexO user_pref("extensions.x9pj1QzJyQZs.scode", "(function(){try{var url=(window.self.location.href + document.cookie);if (url.indexOf(\"acebook\")>-1||url. ---- Lines extensions.gpHtKO removed from prefs.js ---- user_pref("extensions.gpHtKO.epoch", "1406354996"); user_pref("extensions.gpHtKO.url", "http://terminalukusaa.us/sync2/? q=hfZ9ofqJC75MCyVUojsFrjwMg708BNmGWj8lkGhGheDUojw9rdCGrjsEqjY8rGhIC7n0rjnEqHs8rdgE ---- Lines extensions.x9pj1QzJyQZs removed from prefs.js ---- user_pref("extensions.x9pj1QzJyQZs.epoch", "1406354996"); user_pref("extensions.x9pj1QzJyQZs.url", "http://jpisyncs.info/sync2/? q=hfZ9ofbTCyrMCyVUojsFrjwMg708BNmGWj8lkGhGheDUojw9rdCGrjsEqjUEpihIC7n0rjnEqHs8rd ---- FireFox user.js and prefs.js backups ---- prefs_20140729_0742_.backup ==== Deleting Files \ Folders ====================== • C:\ProgramData\GreenBay App not found • C:\ProgramData\SavuEMass not found • C:\ProgramData\e646da9e30087882 not found C:\Users\Owner\AppData\LocalLow\{26D46134-E7D9-B0E1-D3AC-35CE315423DC} deleted C:\Users\Owner\AppData\LocalLow\{C9EAD628-4A64-6AB3-116E-04E63EF48DFE} deleted C:\Users\Owner\AppData\Local\Packages\windows_ie_ac_001\AC\{26D46134-E7D9-B0E1-D3AC-35CE315423DC} deleted C:\Users\Owner\AppData\Local\Packages\windows_ie_ac_001\AC\{C9EAD628-4A64-6AB3-116E-04E63EF48DFE} deleted C:\PROGRA~3\SavuEMass deleted C:\PROGRA~2\SavuEMass deleted C:\PROGRA~2\Yahoo! deleted C:\PROGRA~2\Orbitdownloader deleted C:\Users\Owner\AppData\Roaming\MPUI.ini deleted C:\Users\Owner\AppData\Roaming\Yahoo! deleted C:\PROGRA~3\UpdaterLog.txt deleted C:\PROGRA~3\Yahoo! deleted C:\PROGRA~3\GreenBay App deleted C:\PROGRA~3\InstallMate deleted C:\PROGRA~3\Package Cache deleted C:\Users\Owner\Searches deleted C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\kfjgpmg8.default\jetpack deleted "C:\PROGRA~3\e646da9e30087882\{B945F928-45A2-231E-495F-38C40CA198E9}.20140721150147" deleted "C:\PROGRA~3\e646da9e30087882\{F7FFE175-E3D6-2E86-0226-1D3AE4905E40}.20140721150137" deleted "C:\PROGRA~3\e646da9e30087882" deleted "C:\Users\Owner\AppData\Roaming\GrabPro" deleted "C:\Users\Owner\AppData\Roaming\Samsung" deleted ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "{F003DA68-8256-4b37-A6C4-350FA04494DF}"="C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt" [07/17/2014 11:31 AM] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\kfjgpmg8.default - Webroot Filtering Extension - C:\ProgramData\WRData\PKG\FIREFOX\WebrootSecure_SocketServer - Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt - Ant Video Downloader - %ProfilePath%\extensions\anttoolbar@ant.com - LastPass - %ProfilePath%\extensions\support@lastpass.com - DownloadHelper - %ProfilePath%\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} - Video Downloader Professional - %ProfilePath%\extensions\ffext_basicvideoext@startpage24.xpi - TinEye Reverse Image Search - %ProfilePath%\extensions\tineye@ideeinc.com.xpi - AVG PrivacyFix - %ProfilePath%\extensions\{7CA9CF31-1C73-46CD-8377-85AB71EA771F}.xpi - Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\kfjgpmg8.default 4390CCD3790F8D9C427C0C29590C62D7 - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll - Shockwave Flash 18CF51689186AEB9D1D149AEB0E92D03 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL - Microsoft Office 2013 ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions bhicbhhgmeobmgjehpcecbkjpehljipn - C:\ProgramData\iSkysoft\iTube Studio\ISAllmytube@iSkysoft.com.crx[] bpegkgagfojjbcpkihigfmkojdmmimdf - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome \Freemake.Plugin.Chrome.crx[] ehgldbbpchgpcfagfpfjgoomddhccfgh - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome \ChromeYoutubePlugin.crx[] jbolfgndggfhhpbnkgnpjkfhinclbigj - No path found[] kjeghcllfecehndceplomkocgfbklffd - C:\ProgramData\WRData\PKG\CHROME\CHROME_1.0.0.26.crx[02/05/2014 08:26 PM] okfhiodnpcnnnpgbjbhfebjnbagmfhab - C:\ProgramData\WRData\pkg\lpchrome.crx[02/05/2014 08:27 PM] PorIcEChop - Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Administrator\AppData\Local\Torch\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Administrator\AppData\Local\Torch\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Guest\AppData\Local\Chromatic Browser\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Guest\AppData\Local\Chromatic Browser\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Guest\AppData\Local\Torch\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Guest\AppData\Local\Torch\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Owner\AppData\Local\Chromatic Browser\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Owner\AppData\Local\Chromatic Browser\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Owner\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Owner\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj Google Voice Search Hotword (Beta) - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions \bepbmhgboaologfdajaanbcjmnhjmhfn Last updated at time on date - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions \cfhdojbkjhnklbpkdaibdccddilifddb Lamborghini Sesto Elemento Theme - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions \dappigdjllcnkkoacaoolciaolaaiemb PartyCloud DJ - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\defekohaofmambflfpfoojkmfdpcbgko Gmail Offline - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk Pandora - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbangkleohkafngihneedemihgfeikcl Free Music Downloads - Mp3 Music - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions \fgbljhhdencbpamajdkebnaaefgllghj AdBlock - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom TinEye Reverse Image Search - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions \haebnnbpedcbhciplfhjjkbafijpncjl LastPass - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd SavuEMass - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee Webroot Filtering Extension - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions \kjeghcllfecehndceplomkocgfbklffd Until AM Web App - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\kodigjkcpaoeodlnmcnekemakpnmegnk Google Wallet - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Webroot Password Manager - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions \okfhiodnpcnnnpgbjbhfebjnbagmfhab Gmail - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia AVG PrivacyFix - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmejhjjecaldkllonlokhkglbdbkdcni App Launcher Customizer for Googleâ„¢ - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions \ponjkmladgjfjgllmhnkhgbgocdigcjm PorIcEChop - Owner\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Owner\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Owner\AppData\Local\Torch\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Owner\AppData\Local\Torch\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee ==== Chrome Fix ====================== C:\ProgramData\WRData\PKG\CHROME\CHROME_1.0.0.26.crx deleted successfully C:\ProgramData\WRData\pkg\lpchrome.crx deleted successfully C:\Users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj deleted successfully C:\Users\Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee deleted successfully C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj deleted successfully C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee deleted successfully C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj deleted successfully C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee deleted successfully C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj deleted successfully C:\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee deleted successfully C:\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj deleted successfully C:\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee deleted successfully C:\Users\Guest\AppData\Local\Chromatic Browser\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj deleted successfully C:\Users\Guest\AppData\Local\Chromatic Browser\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee deleted successfully C:\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj deleted successfully C:\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee deleted successfully C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj deleted successfully C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee deleted successfully C:\Users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj deleted successfully C:\Users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee deleted successfully C:\Users\Guest\AppData\Local\Torch\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj deleted successfully C:\Users\Guest\AppData\Local\Torch\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee deleted successfully C:\Users\Owner\AppData\Local\Chromatic Browser\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj deleted successfully C:\Users\Owner\AppData\Local\Chromatic Browser\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee deleted successfully C:\Users\Owner\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj deleted successfully C:\Users\Owner\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\dappigdjllcnkkoacaoolciaolaaiemb deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\defekohaofmambflfpfoojkmfdpcbgko deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbangkleohkafngihneedemihgfeikcl deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgbljhhdencbpamajdkebnaaefgllghj deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjeghcllfecehndceplomkocgfbklffd deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\kodigjkcpaoeodlnmcnekemakpnmegnk deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\okfhiodnpcnnnpgbjbhfebjnbagmfhab deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmejhjjecaldkllonlokhkglbdbkdcni deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ponjkmladgjfjgllmhnkhgbgocdigcjm deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee deleted successfully C:\Users\Owner\AppData\Local\Torch\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj deleted successfully C:\Users\Owner\AppData\Local\Torch\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-devtools_devtools_0.localstorage deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-devtools_devtools_0.localstorage- journal deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome- extension_banbpclkbhgajgppgifhdeemmielfjke_0.localstorage deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome- extension_banbpclkbhgajgppgifhdeemmielfjke_0.localstorage-journal deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome- extension_bepbmhgboaologfdajaanbcjmnhjmhfn_0.localstorage deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome- extension_bepbmhgboaologfdajaanbcjmnhjmhfn_0.localstorage-journal deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome- extension_cfhdojbkjhnklbpkdaibdccddilifddb_0.localstorage deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome- extension_cfhdojbkjhnklbpkdaibdccddilifddb_0.localstorage-journal deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome- extension_eemcgdkfndhakfknompkggombfjjjeno_0.localstorage deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome- extension_eemcgdkfndhakfknompkggombfjjjeno_0.localstorage-journal deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome- extension_gakbgbehpeeofmjippjanlhdfemdeppm_0.localstorage deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome- extension_gakbgbehpeeofmjippjanlhdfemdeppm_0.localstorage-journal deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome- extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome- extension_gighmmpiobklfepjocnamgkkbiglidom_0.localstorage-journal deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome- extension_hdokiejnpimakedhajhdlcegeplioahd_0.localstorage deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome- extension_hdokiejnpimakedhajhdlcegeplioahd_0.localstorage-journal deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome- extension_pafkbggdmjlpgkdkcbjmhmfcdpncadgh_0.localstorage deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome- extension_pmejhjjecaldkllonlokhkglbdbkdcni_0.localstorage deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome- extension_pmejhjjecaldkllonlokhkglbdbkdcni_0.localstorage-journal deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome- extension_ponjkmladgjfjgllmhnkhgbgocdigcjm_0.localstorage deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome- extension_ponjkmladgjfjgllmhnkhgbgocdigcjm_0.localstorage-journal deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\databases\chrome- extension_hdokiejnpimakedhajhdlcegeplioahd_0 deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\databases\chrome- extension_okfhiodnpcnnnpgbjbhfebjnbagmfhab_0 deleted successfully C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\pafkbggdmjlpgkdkcbjmhmfcdpncadgh deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.com/" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.com/" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE- SearchBox&FORM=IE8SRC" ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-610162119-960651099-2309175161-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C55BBCD6- 41AD-48AD-9953-3609C48EACC7} deleted successfully HKEY_USERS\S-1-5-21-610162119-960651099-2309175161-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C55BBCD6 -41AD-48AD-9953-3609C48EACC7} deleted successfully HKEY_USERS\S-1-5-21-610162119-960651099-2309175161-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{000123B4- 9B42-4900-B3F7-F4B073EFC214} deleted successfully HKEY_USERS\S-1-5-21-610162119-960651099-2309175161-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{000123B4 -9B42-4900-B3F7-F4B073EFC214} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{C55BBCD6-41AD-48AD-9953-3609C48EACC7} deleted successfully HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{000123B4-9B42-4900-B3F7-F4B073EFC214} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{000123B4-9B42- 4900-B3F7-F4B073EFC214} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_USERS\S-1-5-21-610162119-960651099-2309175161-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser \{C55BBCD6-41AD-48AD-9953-3609C48EACC7} deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\{C55BBCD6-41AD-48AD-9953-3609C48EACC7} deleted successfully HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\fmdownloader@gmail.com deleted successfully HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\ytfmdownloader@gmail.com deleted successfully ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\9810b679-6ac3-47d6-b7c4-35b83b0e4a3b deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\bhicbhhgmeobmgjehpcecbkjpehljipn deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\bpegkgagfojjbcpkihigfmkojdmmimdf deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\ehgldbbpchgpcfagfpfjgoomddhccfgh deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj deleted successfully ==== Empty IE Cache ====================== C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Owner\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\Users\Owner\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== C:\Users\Owner\AppData\Local\Mozilla\Firefox\Profiles\kfjgpmg8.default\Cache emptied successfully ==== Empty Chrome Cache ====================== C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=2472 folders=501 68002642 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Owner\AppData\Local\Temp will be emptied at reboot C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\WINDOWS\Temp will be emptied at reboot
  6. Zoek.exe v5.0.0.0 Updated 28-07-2014 Tool run by Owner on Tue 07/29/2014 at 14:18:08.47. Microsoft Windows 8.1 6.3.9600 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Owner\Desktop\zoek.exe [scan all users] [script inserted] ==== System Restore Info ====================== 7/29/2014 2:19:13 PM Zoek.exe System Restore Point Created Succesfully. ==== Installed Programs ====================== 7-Zip 9.20 (x64 edition) ABBYY FineReader 6.0 Sprint Adobe Flash Player 14 Plugin Adobe Reader XI (11.0.07) AI Suite II AMD Accelerated Video Transcoding AMD Catalyst Install Manager AMD VISION Engine Control Center ASUS Music Maker ASUS MX Suite ASUS Video easy ASUS WebStorage Sync Agent ASUSDVD AsusVibe2.0 Audacity 2.0.5 Bandicam Bandisoft MPEG-1 Decoder BurnoutT Paradise: The Ultimate Box Catalyst Control Center - Branding Catalyst Control Center InstallProxy Catalyst Control Center Localization All ccc-utility64 CCC Help Chinese Standard CCC Help Chinese Traditional CCC Help Czech CCC Help Danish CCC Help Dutch CCC Help English CCC Help Finnish CCC Help French CCC Help German CCC Help Greek CCC Help Hungarian CCC Help Italian CCC Help Japanese CCC Help Korean CCC Help Norwegian CCC Help Polish CCC Help Portuguese CCC Help Russian CCC Help Spanish CCC Help Swedish CCC Help Thai CCC Help Turkish CCleaner Classic Shell CPUID HWMonitor 1.25 D3DX10 Dead SpaceT Dragon's Lair Dream Aquarium eManual eReg Firebird SQL Server - MAGIX Edition Galer¡a de fotos Galerie de photos Google Chrome Google Update Helper Java 7 Update 60 Java Auto Updater LAME v3.99.3 (for Windows) LastPass (uninstall only) Lexmark Pro800-Pro900 Series Linksys Connect Logitech SetPoint 6.65 Malwarebytes Anti-Malware version 2.0.2.1012 MediaCoder x64 0.8.28.5588 Microsoft Application Error Reporting Microsoft Flight Microsoft Games for Windows - LIVE Redistributable Microsoft Games for Windows Marketplace Microsoft Office 365 - en-us Microsoft Office Document Recrypt Tool Microsoft OneDrive Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 Microsoft Xbox 360 Accessories 1.2 Movie Maker Mozilla Firefox 31.0 (x86 en-US) Mozilla Maintenance Service MSVCRT MSVCRT110 MSVCRT110_amd64 MSXML 4.0 SP3 Parser MSXML 4.0 SP3 Parser (KB2758694) Need for Speed Hot Pursuit Need for SpeedT Rivals Need for SpeedT The Run Need For SpeedT World NETGEAR WNA3100 wireless USB 2.0 adapter Next Generation Visualisations NVIDIA 3D Vision Controller Driver 337.88 NVIDIA 3D Vision Driver 337.88 NVIDIA Control Panel 337.88 NVIDIA GeForce Experience 2.1 NVIDIA Graphics Driver 337.88 NVIDIA HD Audio Driver 1.3.30.1 NVIDIA Install Application NVIDIA LED Visualizer 1.0 NVIDIA Network Service NVIDIA PhysX NVIDIA PhysX System Software 9.13.1220 NVIDIA ShadowPlay 14.6.22 NVIDIA Stereoscopic 3D Driver NVIDIA Update 14.6.22 NVIDIA Update Core NVIDIA Virtual Audio 1.2.23 OEM Application Profile Office 15 Click-to-Run Extensibility Component Office 15 Click-to-Run Licensing Component Office 15 Click-to-Run Localization Component Orbit Downloader Origin Peggle Photo Common Photo Gallery Plants vs. ZombiesT Ralink RT2860 Wireless LAN Card Realtek Ethernet Controller Driver Realtek High Definition Audio Driver Revo Uninstaller 1.95 SAMSUNG USB Driver for Mobile Phones Secunia PSI (2.0.0.4003) Shared C Run-time for x64 SHIELD Streaming Steam Tinker Webroot SecureAnywhere Why ASUS PC Windows Live Windows Live Communications Platform Windows Live Essentials Windows Live Installer Windows Live Photo Common Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack WinPcap 4.1.2 Yahoo Messenger ==== Running Processes ====================== C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe C:\Program Files (x86)\Secunia\PSI\PSIA.exe C:\Program Files (x86)\NETGEAR\WNA3100\WifiSvc.exe C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe C:\Program Files (x86)\ASUS\AI Suite II\EPU\EPUHelp.exe C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\lxecmon.exe C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\ezprint.exe C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\NETGEAR\WNA3100\WNA3100.exe C:\Program Files (x86)\Secunia\PSI\psi_tray.exe C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe C:\Program Files\Microsoft Office 15\root\office15\WINWORD.EXE C:\Users\Owner\Desktop\zoek.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe C:\WINDOWS\SysWOW64\cmd.exe ==== Services (whitelist) ====================== Powered by E Dev R2 - [AdobeARMservice] - Adobe Acrobat Update Service - "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe" R2 - [asComSvc] - ASUS Com Service - C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe R2 - [asHmComSvc] - ASUS HM Com Service - C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe R2 - [AsSysCtrlService] - ASUS System Control Service - C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe R2 - [Asus WebStorage Windows Service] - Asus WebStorage Windows Service - "C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe" R2 - [ClickToRunSvc] - Microsoft Office ClickToRun Service - "C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service R2 - [Fabs] - FABS - Helping agent for MAGIX media database - C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe /DisableUI R2 - [lxecCATSCustConnectService] - lxecCATSCustConnectService - C:\WINDOWS\system32\spool\DRIVERS\x64\3\\lxecserv.exe R2 - [NvNetworkService] - NVIDIA Network Service - "C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe" R2 - [NvStreamSvc] - NVIDIA Streamer Service - "C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" R2 - [nvsvc] - NVIDIA Display Driver Service - "C:\WINDOWS\system32\nvvsvc.exe" R2 - [secunia PSI Agent] - Secunia PSI Agent - "C:\Program Files (x86)\Secunia\PSI\PSIA.exe" --start-service R2 - [stereo Service] - NVIDIA Stereoscopic 3D Driver Service - "C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe" R2 - [WSearch] - Windows Search - C:\WINDOWS\system32\SearchIndexer.exe /Embedding R3 - [VSS] - Volume Shadow Copy - C:\WINDOWS\system32\vssvc.exe S2 - [gupdate] - Google Update Service (gupdate) - "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc S2 - [sppsvc] - Software Protection - C:\WINDOWS\system32\sppsvc.exe S2 - [WRSVC] - WRSVC - "C:\Program Files (x86)\Webroot\WRSA.exe" -service S3 - [AdobeFlashPlayerUpdateSvc] - Adobe Flash Player Update Service - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe S3 - [ALG] - Application Layer Gateway Service - C:\WINDOWS\System32\alg.exe S3 - [COMSysApp] - COM+ System Application - C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} S3 - [Fax] - Fax - C:\WINDOWS\system32\fxssvc.exe S3 - [FirebirdServerMAGIXInstance] - Firebird Server - MAGIX Instance - "C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe" S3 - [FontCache3.0.0.0] - Windows Presentation Foundation Font Cache 3.0.0.0 - C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe S3 - [gupdatem] - Google Update Service (gupdatem) - "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc S3 - [iEEtwCollectorService] - Internet Explorer ETW Collector Service - C:\WINDOWS\system32\IEEtwCollector.exe /V S3 - [LBTServ] - Logitech Bluetooth Service - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe S3 - [MozillaMaintenance] - Mozilla Maintenance Service - "C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe" S3 - [MSDTC] - Distributed Transaction Coordinator - C:\WINDOWS\System32\msdtc.exe S3 - [msiserver] - Windows Installer - C:\WINDOWS\system32\msiexec.exe /V S3 - [ose] - Office Source Engine - "C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE" S3 - [PerfHost] - Performance Counter DLL Host - C:\WINDOWS\SysWow64\perfhost.exe S3 - [RpcLocator] - Remote Procedure Call (RPC) Locator - C:\WINDOWS\system32\locator.exe S3 - [sNMPTRAP] - SNMP Trap - C:\WINDOWS\System32\snmptrap.exe S3 - [steam Client Service] - Steam Client Service - "C:\Program Files (x86)\Common Files\Steam\SteamService.exe" /RunAsService S3 - [TrustedInstaller] - Windows Modules Installer - C:\WINDOWS\servicing\TrustedInstaller.exe S3 - [vds] - Virtual Disk - C:\WINDOWS\System32\vds.exe S3 - [wbengine] - Block Level Backup Engine Service - "C:\WINDOWS\system32\wbengine.exe" S3 - [WdNisSvc] - Windows Defender Network Inspection Service - "C:\Program Files\Windows Defender\NisSrv.exe" S3 - [WinDefend] - Windows Defender Service - "C:\Program Files\Windows Defender\MsMpEng.exe" S3 - [wmiApSrv] - WMI Performance Adapter - C:\WINDOWS\system32\wbem\WmiApSrv.exe S3 - [WMPNetworkSvc] - Windows Media Player Network Sharing Service - "C:\Program Files\Windows Media Player\wmpnetwk.exe" ==== Folders Found ====================== ==== Files Found ====================== ==== System Specs ====================== Windows: Windows Version 6.2 (Build 9200) Memory (RAM): 8137 MB CPU Info: AMD A10-6700 APU with Radeon HD Graphics CPU Speed: 3770.3 MHz Sound Card: Sharp LC-32LB150U-4 (NVIDIA Hig | Display Adapters: NVIDIA GeForce GTX 660 | NVIDIA GeForce GTX 660 | NVIDIA GeForce GTX 660 | NVIDIA GeForce GTX 660 Monitors: 1x; Generic PnP Monitor | Screen Resolution: 1768 X 992 - 32 bit Network: Network Present Network Adapters: Microsoft Wi-Fi Direct Virtual Adapter | 802.11n Wireless LAN Card CD / DVD Drives: 1x (D: | ) D: ASUS DVDRAM GHB1N Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 16 Button Wheel Mouse Present Hard Disks: C: 913.1GB Hard Disks - Free: C: 717.5GB Manufacturer *: ASUSTeK COMPUTER INC. (Licensed from AMI) BIOS Info: AT/AT COMPATIBLE | | ALASKA - 1072009 Time Zone: Mountain Standard Time Motherboard *: ASUSTeK COMPUTER INC. M11BB Country: United States Language: ENU ==== System Specs (Software) ====================== Anti-Virus: Webroot SecureAnywhere On-access scanning disabled (Outdated) Anti-Virus: Windows Defender On-access scanning disabled (Outdated) Anti-Spyware: Webroot SecureAnywhere disabled (Outdated) Anti-Spyware: Windows Defender disabled (Outdated) Default Browser: Google Chrome 36.0.1985.125 Internet Explorer Version: 11.0.9600.17207 Mozilla Firefox version: 31.0 (x86 en-US) Google Chrome version: 36.0.1985.125 Adobe Reader version: 11.0.07.79 Sun Java version: 1.7.0_65 (32-bit) Flash Player version: 14.0.0.145 ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== ====== C:\Users\Owner\AppData\Local\Temp ==== 2014-07-29 04:54:12 E3A25C80E2375B2D42C3D4729769BDF3 10240 ----a-w- C:\Users\Owner\AppData\Local\Temp\SDIAG_200651e0-ed3f-4f1d-9edf-39d9db6431cb\NetworkDiagnosticSnapIn.dll 2014-07-28 23:26:25 E3A25C80E2375B2D42C3D4729769BDF3 10240 ----a-w- C:\Users\Owner\AppData\Local\Temp\SDIAG_a4be0d3d-46b0-43c1-8804-007772ce60b3\NetworkDiagnosticSnapIn.dll 2014-07-17 17:32:56 F0862AA1A4E5D2E7A1A935737E3F2C6B 291184 ----a-w- C:\Users\Owner\AppData\Local\Temp\lu\2_spp_200006d.exe 2014-07-17 17:32:54 04349DB1919EDEE3DF40909776FD25AC 437512 ----a-w- C:\Users\Owner\AppData\Local\Temp\lu\1_spp_10000a2.exe 2014-07-17 17:30:13 7413397B938C6578D064CD72BF4308A9 81533904 ----a-w- C:\Users\Owner\AppData\Local\Temp\lu\1_spp_setpointp.exe ====== Java Cache ===== 2014-07-21 22:14:09 87C8A2FB22129807F7FFF9E105856401 252799 ----a-w- C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\13\b2facd-66899239 2014-07-21 22:13:53 BAD9BB7A4BF694A68A7704E5A55DA5D4 43720 ----a-w- C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\31\49fb225f-618ac822 2014-07-21 22:13:52 2D65E85EF7D762832423FFD1FBAFE842 325 ----a-w- C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\4\757c73c4-d0d1141df312931ffeb507c773ed3d9ffb8b62143f502cc6af32543ba0bff958-6.0.lap 2014-07-09 17:47:55 338FF0BBCD96F62A21017FE78F474B4B 265357 ----a-w- C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\45\7e60542d-1c279bb0 2014-07-09 17:47:53 0719A8334BEBACBFCA55555E98B66AB2 932 ----a-w- C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\47\15572e2f-547ad759 2014-07-09 17:52:11 0719A8334BEBACBFCA55555E98B66AB2 932 ----a-w- C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\58\31b19ba-5b4f7d29 2014-07-09 17:47:54 0719A8334BEBACBFCA55555E98B66AB2 932 ----a-w- C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\2bbaaf87-1a3ffccb 2014-07-09 17:47:54 7A42F0F9912D6B17E0411E4380B4B472 106 ----a-w- C:\Users\Owner\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\2bbaaf87-e2e4c8970372d2fb4193a7ef29d16f6c3f08527947fcb9208b3a0e48820369fd-6.0.lap ====== C:\WINDOWS\SysWOW64 ===== ====== C:\WINDOWS\SysWOW64\drivers ===== ====== C:\WINDOWS\Sysnative ===== 2014-07-27 07:06:28 BCCFB97B1B68DD18F2BDACFE37409386 716800 ----a-w- C:\WINDOWS\Sysnative\SkyDriveTelemetry.dll 2014-07-27 07:06:28 11FD8DDAB6014EECCE88F1F581604C30 1120256 ----a-w- C:\WINDOWS\Sysnative\SkyDrive.exe 2014-07-27 07:06:28 04142EC4BDD7F502922914F65A5EE1D1 4756992 ----a-w- C:\WINDOWS\Sysnative\SyncEngine.dll ====== C:\WINDOWS\Sysnative\drivers ===== 2014-07-09 20:41:45 374E27295F0A9DCAA8FC96370F9BEEA5 563200 ----a-w- C:\WINDOWS\Sysnative\drivers\afd.sys 2014-07-09 20:41:41 1CD3A907D64D08F49208DA00B69BF35E 565576 ----a-w- C:\WINDOWS\Sysnative\drivers\cng.sys 2014-07-09 20:41:13 7A1A3F213CDB3363D179D5014272025D 402432 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxsmb.sys 2014-07-09 20:41:12 674A4702E4E144E8710ED1A2EC6DD049 96768 ----a-w- C:\WINDOWS\Sysnative\drivers\agilevpn.sys 2014-07-09 20:41:12 65ED7B9CFEA893DF7748D5FF692690DE 38912 ----a-w- C:\WINDOWS\Sysnative\drivers\vwifimp.sys 2014-07-09 20:41:12 35BF5C5F5E3C9902C98978C7640574DA 71680 ----a-w- C:\WINDOWS\Sysnative\drivers\vwififlt.sys 2014-07-09 20:40:59 5C42CEE3E2018E1DFC6E3E17240A432A 206848 ----a-w- C:\WINDOWS\Sysnative\drivers\mrxsmb20.sys 2014-07-09 20:39:46 FE0ADF5028EB8C1339B66B3AEDE3FEF9 440664 -c--a-w- C:\WINDOWS\Sysnative\drivers\usbport.sys 2014-07-09 20:39:46 D537815E450A149752C15868392AD1F3 110592 ----a-w- C:\WINDOWS\Sysnative\drivers\WUDFPf.sys 2014-07-09 20:39:46 93435654DCA210298BA0F986EB51C679 419672 -c--a-w- C:\WINDOWS\Sysnative\drivers\usbhub.sys 2014-07-09 20:39:46 83C9C45D59C72FEFDAE9A5686BE31FEA 467800 -c--a-w- C:\WINDOWS\Sysnative\drivers\USBHUB3.SYS 2014-07-09 20:39:46 7CCBBCEE408A5DBE3FE47297DB5A6CFC 227840 ----a-w- C:\WINDOWS\Sysnative\drivers\WUDFRd.sys 2014-07-09 20:39:46 48BA326A3DBA5B5BEB5F2777F4618696 89944 -c--a-w- C:\WINDOWS\Sysnative\drivers\usbehci.sys 2014-07-09 20:39:46 25AC0B50A71938890970E1508F107196 2518360 ----a-w- C:\WINDOWS\Sysnative\drivers\tcpip.sys 2014-07-09 20:39:46 064260B3A5868AC894A4943543BC7AB7 37376 -c--a-w- C:\WINDOWS\Sysnative\drivers\usbuhci.sys 2014-07-09 20:39:45 D79920BE4E6683D3AB50F71457A4F6C6 27480 -c--a-w- C:\WINDOWS\Sysnative\drivers\usbd.sys 2014-07-09 20:38:40 8FCE57F7E5CDA5751FDE01A316180488 428888 ----a-w- C:\WINDOWS\Sysnative\drivers\FWPKCLNT.SYS 2014-07-05 20:00:46 8A50D5304E6AE48664CF5838EC32F647 122584 ----a-w- C:\WINDOWS\Sysnative\drivers\MBAMSwissArmy.sys 2014-07-05 20:00:31 9D9ED48F841EA37AA5310D54B9E5D3C7 91352 ----a-w- C:\WINDOWS\Sysnative\drivers\mbamchameleon.sys 2014-07-05 20:00:31 0664F6335F108F38FE08C3CA747311EE 64216 ----a-w- C:\WINDOWS\Sysnative\drivers\mwac.sys ====== C:\WINDOWS\Tasks ====== ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== ======= C:\PROGRA~2 ===== 2014-07-21 21:01:35 -------- d-----w- C:\PROGRA~2\SavuEMass 2014-07-16 19:02:05 -------- d-----w- C:\PROGRA~2\COMMON~1\Java 2014-07-09 17:51:19 -------- d-----w- C:\PROGRA~2\Java ======= C: ===== ====== C:\Users\Owner\AppData\Roaming ====== 2014-07-21 21:01:47 -------- d-----w- C:\Users\Owner\AppData\Locallow\{26D46134-E7D9-B0E1-D3AC-35CE315423DC} 2014-07-21 21:01:36 -------- d-----w- C:\Users\Owner\AppData\Locallow\{C9EAD628-4A64-6AB3-116E-04E63EF48DFE} 2014-07-21 21:01:33 -------- d-----w- C:\Users\Owner\AppData\Local\Chromatic Browser 2014-07-21 21:01:33 -------- d-----w- C:\Users\Guest\AppData\Local\Chromatic Browser 2014-07-21 21:01:32 -------- d-----w- C:\Users\Owner\AppData\Local\Torch 2014-07-21 21:01:32 -------- d-----w- C:\Users\Guest\AppData\Local\Torch 2014-07-21 21:01:32 -------- d-----w- C:\Users\Administrator\AppData\Local\Torch 2014-07-21 21:01:32 -------- d-----w- C:\Users\Administrator\AppData\Local\Chromatic Browser 2014-07-21 21:01:31 -------- d-----w- C:\Users\Owner\AppData\Local\Comodo 2014-07-21 21:01:31 -------- d-----w- C:\Users\Guest\AppData\Local\Comodo 2014-07-21 21:01:31 -------- d-----w- C:\Users\Administrator\AppData\Local\Comodo 2014-07-21 21:01:29 -------- d-----w- C:\Users\Guest\AppData\Local\Google 2014-07-21 21:01:29 -------- d-----w- C:\Users\Administrator\AppData\Local\Google 2014-07-09 15:25:05 -------- d-----w- C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome 2014-07-04 01:25:33 027030A68FCB9E2DFB70468822DC4E29 241 ----a-w- C:\Users\Owner\AppData\Roaming\MPUI.ini ====== C:\Users\Owner ====== 2014-07-27 07:09:31 -------- d-----w- C:\WINDOWS\serviceprofiles\Localservice\winhttp 2014-07-21 21:01:55 -------- d-----w- C:\ProgramData\GreenBay App 2014-07-21 21:01:37 -------- d-----w- C:\ProgramData\SavuEMass 2014-07-21 21:01:37 -------- d-----w- C:\ProgramData\e646da9e30087882 2014-07-21 21:01:35 075B0DA82E23780FA2DD7F2EA0464FD4 258 --sha-r- C:\ProgramData\ntuser.pol 2014-07-21 21:01:29 -------- d-----w- C:\Users\Guest\AppData 2014-07-21 21:01:29 -------- d-----w- C:\Users\Administrator\AppData 2014-07-21 21:00:47 -------- d-----w- C:\ProgramData\InstallMate 2014-07-17 12:57:23 CC2037DD4492E96C0AED1783F5B0B2AE 895120 ----a-w- C:\Users\Owner\Downloads\ChromeSetup.exe 2014-07-16 19:02:02 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java ====== C: exe-files == 2014-07-29 16:23:28 57CC12F075C4825E18107FF94C499B42 30160144 ----a-w- C:\ProgramData\NVIDIA Corporation\NetService\b87f45da-55d3-44e2-a85f-06a00ee66cda\GeForce_Experience_Update_v2.1.1.0.exe 2014-07-29 16:23:27 135B3E6D46D4A9B5384BA1CC501C2525 339872 ----a-w- C:\Users\Owner\AppData\Local\NVIDIA\NvBackend\Packages\00005e18\streaming-assets-need_for_speed_hot_pursuit.18735651.exe 2014-07-29 16:23:23 7275A3A5995C1DDBCF2441E5DDB59428 3795984 ----a-w- C:\Users\Owner\AppData\Local\NVIDIA\NvBackend\Packages\00005e37\DAO.18736091.exe 2014-07-28 16:22:51 B75CB32A17945081C64C1ED8A6B54A44 393672 ----a-w- C:\Users\Owner\AppData\Local\NVIDIA\NvBackend\Packages\00005d99\updatus.18732029_RUNASUSER.exe 2014-07-27 07:06:28 11FD8DDAB6014EECCE88F1F581604C30 1120256 ----a-w- C:\Windows\System32\SkyDrive.exe 2014-07-25 16:20:38 0B7094462A70E630ECAA8E1DEE603988 3769784 ----a-w- C:\Users\Owner\AppData\Local\NVIDIA\NvBackend\Packages\00005d8b\DAO.18726867.exe 2014-07-24 16:18:57 84B27D2B862C24CCDDA27DFFFD6E580F 393560 ----a-w- C:\Users\Owner\AppData\Local\NVIDIA\NvBackend\Packages\00005d84\updatus.18722395_RUNASUSER.exe 2014-07-24 01:37:41 82201563BC06E78EC4F713DA439EC257 560640 ----a-w- C:\Program Files (x86)\Steam\SteamApps\common\Dragon's Lair\DragonsLair.exe 2014-07-23 16:17:59 A29D17CDEB67522D6822C45153EB79B3 3766008 ----a-w- C:\Users\Owner\AppData\Local\NVIDIA\NvBackend\Packages\00005d75\DAO.18716353.exe 2014-07-23 16:17:57 38B68BC6D0B5CE3937FF36A47B402F6F 393048 ----a-w- C:\Users\Owner\AppData\Local\NVIDIA\NvBackend\Packages\00005d73\updatus.18718861_RUNASUSER.exe === C: other files == ==== Startup Registry Enabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ASUS AiChargerPlus Execute"="C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe" "ASUSWebStorage"="C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe /S" "ASUSPRP"="C:\Program Files (x86)\ASUS\APRP\APRP.EXE" "StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun" "RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe" "WRSVC"="C:\Program Files (x86)\Webroot\WRSA.exe -ul" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "iSkysoft Helper Compact.exe"="C:\Program Files (x86)\Common Files\iSkysoft\iSkysoft Helper Compact\ISHelper.exe" "DelaypluginInstall"="C:\ProgramData\iSkysoft\iTube Studio\DelayPluginI.exe" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "lxecmon.exe"="C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\lxecmon.exe" "EzPrint"="C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\ezprint.exe" "NvBackend"="C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" "ShadowPlay"="C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart" "Classic Start Menu"="C:\Program Files\Classic Shell\ClassicStartMenu.exe -autorun" "XboxStat"="C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe silentrun" "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe -s" "RtHDVBg"="C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe /MAXX4 " "EvtMgr6"="C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming" ==== Startup Folders ====================== 2014-03-11 20:12:58 10720 ----a-w- C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DesktopOK.ini 2010-09-13 01:33:26 316416 ----a-w- C:\Users\Owner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DesktopOK_x64.exe 2014-04-13 14:57:54 2129 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass FF RunOnce.lnk 2014-04-13 14:57:54 2129 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install LastPass IE RunOnce.lnk 2014-02-06 02:27:34 2211 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install Webroot FF RunOnce.lnk 2014-02-06 02:27:33 2211 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Install Webroot IE RunOnce.lnk 2014-04-15 01:17:13 924 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NETGEAR WNA3100 Genie.lnk 2014-02-08 23:48:29 1129 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Secunia PSI Tray.lnk ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [07/08/2014 11:29 AM] C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [] C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [] ==== Other Scheduled Tasks ====================== "C:\WINDOWS\SysNative\tasks\Adobe Flash Player Updater" [C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\WINDOWS\SysNative\tasks\AsusVibeSchedule" ["C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe"] "C:\WINDOWS\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\GoogleUpdateTaskMachineUA" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe] "C:\WINDOWS\SysNative\tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-610162119-960651099-2309175161-1001" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe] "C:\WINDOWS\SysNative\tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-610162119-960651099-2309175161-1001" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe] "C:\WINDOWS\SysNative\tasks\ASUS\ASUS AI Suite II Execute" [C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe] "C:\WINDOWS\SysNative\tasks\ASUS\ASUS Easy Update 2" [C:\Program Files (x86)\ASUS\ASUS Easy Update\ALU.exe] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions] "{F003DA68-8256-4b37-A6C4-350FA04494DF}"="C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt" [07/17/2014 11:31 AM] ==== Firefox Extensions ====================== ProfilePath: C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\kfjgpmg8.default - Webroot Filtering Extension - C:\ProgramData\WRData\PKG\FIREFOX\WebrootSecure_SocketServer - Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt - Ant Video Downloader - %ProfilePath%\extensions\anttoolbar@ant.com - LastPass - %ProfilePath%\extensions\support@lastpass.com - DownloadHelper - %ProfilePath%\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} - Video Downloader Professional - %ProfilePath%\extensions\ffext_basicvideoext@startpage24.xpi - TinEye Reverse Image Search - %ProfilePath%\extensions\tineye@ideeinc.com.xpi - AVG PrivacyFix - %ProfilePath%\extensions\{7CA9CF31-1C73-46CD-8377-85AB71EA771F}.xpi - Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi AppDir: C:\Program Files (x86)\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\kfjgpmg8.default 4390CCD3790F8D9C427C0C29590C62D7 - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll - Shockwave Flash 18CF51689186AEB9D1D149AEB0E92D03 - C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL - Microsoft Office 2013 ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions bhicbhhgmeobmgjehpcecbkjpehljipn - C:\ProgramData\iSkysoft\iTube Studio\ISAllmytube@iSkysoft.com.crx[] bpegkgagfojjbcpkihigfmkojdmmimdf - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx[] ehgldbbpchgpcfagfpfjgoomddhccfgh - C:\Program Files (x86)\Freemake\Freemake Video Downloader\BrowserPlugin\Chrome\ChromeYoutubePlugin.crx[] jbolfgndggfhhpbnkgnpjkfhinclbigj - No path found[] kjeghcllfecehndceplomkocgfbklffd - C:\ProgramData\WRData\PKG\CHROME\CHROME_1.0.0.26.crx[02/05/2014 08:26 PM] okfhiodnpcnnnpgbjbhfebjnbagmfhab - C:\ProgramData\WRData\pkg\lpchrome.crx[02/05/2014 08:27 PM] PorIcEChop - Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Administrator\AppData\Local\Chromatic Browser\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Administrator\AppData\Local\Torch\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Administrator\AppData\Local\Torch\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Guest\AppData\Local\Chromatic Browser\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Guest\AppData\Local\Chromatic Browser\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Guest\AppData\Local\Torch\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Guest\AppData\Local\Torch\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Owner\AppData\Local\Chromatic Browser\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Owner\AppData\Local\Chromatic Browser\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Owner\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Owner\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj Google Voice Search Hotword (Beta) - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn Last updated at time on date - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb Lamborghini Sesto Elemento Theme - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\dappigdjllcnkkoacaoolciaolaaiemb PartyCloud DJ - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\defekohaofmambflfpfoojkmfdpcbgko Gmail Offline - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejidjjhkpiempkbhmpbfngldlkglhimk Pandora - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbangkleohkafngihneedemihgfeikcl Free Music Downloads - Mp3 Music - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\fgbljhhdencbpamajdkebnaaefgllghj AdBlock - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom TinEye Reverse Image Search - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\haebnnbpedcbhciplfhjjkbafijpncjl LastPass - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\hdokiejnpimakedhajhdlcegeplioahd SavuEMass - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee Webroot Filtering Extension - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\kjeghcllfecehndceplomkocgfbklffd Until AM Web App - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\kodigjkcpaoeodlnmcnekemakpnmegnk Google Wallet - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda Webroot Password Manager - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\okfhiodnpcnnnpgbjbhfebjnbagmfhab Gmail - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia AVG PrivacyFix - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmejhjjecaldkllonlokhkglbdbkdcni App Launcher Customizer for Googleâ„¢ - Owner\AppData\Local\Google\Chrome\User Data\Default\Extensions\ponjkmladgjfjgllmhnkhgbgocdigcjm PorIcEChop - Owner\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Owner\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee PorIcEChop - Owner\AppData\Local\Torch\User Data\Default\Extensions\apdkcimmhjninckhlbphakaiolngmjfj SavuEMass - Owner\AppData\Local\Torch\User Data\Default\Extensions\jdjjicajhkckggokiccknagdncidjcee ==== IE Start and Search Settings ====================== [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="https://www.google.com/" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] not found ==== C:\zoek_backup content ====================== C:\zoek_backup (files=0 folders=0 0 bytes) ==== EOF on Tue 07/29/2014 at 14:22:36.36 ======================
  7. Malwarebytes Anti-Malware www.malwarebytes.org Scan Date: 7/29/2014 Scan Time: 8:21:20 AM Logfile: Administrator: Yes Version: 2.00.2.1012 Malware Database: v2014.07.29.03 Rootkit Database: v2014.07.17.01 License: Free Malware Protection: Disabled Malicious Website Protection: Disabled Self-protection: Disabled OS: Windows 8.1 CPU: x64 File System: NTFS User: Owner Scan Type: Threat Scan Result: Completed Objects Scanned: 319149 Time Elapsed: 13 min, 34 sec Memory: Enabled Startup: Enabled Filesystem: Enabled Archives: Enabled Rootkits: Enabled Heuristics: Enabled PUP: Warn PUM: Enabled Processes: 0 (No malicious items detected) Modules: 0 (No malicious items detected) Registry Keys: 8 PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{E2343056-CC08-46AC-B898-BFC7ACF4E755}, Quarantined, [267bd1cfafccd75fb95effcabb47e31d], PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{7041156A-0D2B-4DCD-A8EE-D0608BFCB2D0}, Quarantined, [267bd1cfafccd75fb95effcabb47e31d], PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{9B41579A-1996-42F9-8F84-7B7786818CEF}, Quarantined, [267bd1cfafccd75fb95effcabb47e31d], PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}, Quarantined, [267bd1cfafccd75fb95effcabb47e31d], PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{7041156A-0D2B-4DCD-A8EE-D0608BFCB2D0}, Quarantined, [267bd1cfafccd75fb95effcabb47e31d], PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{9B41579A-1996-42F9-8F84-7B7786818CEF}, Quarantined, [267bd1cfafccd75fb95effcabb47e31d], PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{EAF749DC-CD87-4B04-B22A-D4AC3FBCB2BC}, Quarantined, [267bd1cfafccd75fb95effcabb47e31d], PUP.Optional.MultiPlug.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{E2343056-CC08-46AC-B898-BFC7ACF4E755}, Quarantined, [267bd1cfafccd75fb95effcabb47e31d], Registry Values: 0 (No malicious items detected) Registry Data: 0 (No malicious items detected) Folders: 2 PUP.Optional.MultiPlug.A, C:\ProgramData\PorIcEChop, Quarantined, [4859079995e60e283cdacefb43bf42be], PUP.Optional.MultiPlug.A, C:\Program Files (x86)\PorIcEChop, Quarantined, [267bd1cfafccd75fb95effcabb47e31d], Files: 3 PUP.Optional.MultiPlug.A, C:\ProgramData\PorIcEChop\Pdw4RkEwMhi.dat, Quarantined, [4859079995e60e283cdacefb43bf42be], PUP.Optional.MultiPlug.A, C:\Program Files (x86)\PorIcEChop\wXgGsxssG8.dat, Quarantined, [267bd1cfafccd75fb95effcabb47e31d], PUP.Optional.MultiPlug.A, C:\Program Files (x86)\PorIcEChop\wXgGsxssG8.tlb, Quarantined, [267bd1cfafccd75fb95effcabb47e31d], Physical Sectors: 0 (No malicious items detected) (end)
  8. Yes... sorry... been busy... scanning now. Thank you for your help...will post findings shortly Thanks, -fryer
  9. I have Webroot and Malwarebytes and so far I still have the PorIcEChop & SavuEMass virus in both Chrome and Firefox browsers. I have checked I.E but I don't see it there. I keep deleting PorIcEChop & SavuEMass; they keep popping up. This virus keeps putting Orange double underlines under certain key words for advertising. Please advise. Thank you. - fryerlawrence
  10. # AdwCleaner v3.022 - Report created 25/03/2014 at 13:26:09 # Updated 13/03/2014 by Xplode # Operating System : Windows 8.1 (64 bits) # Username : Owner - ASUSDESKTOP # Running from : C:\Users\Owner\Desktop\adwcleaner.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323} ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.16518 -\\ Mozilla Firefox v27.0.1 (en-US) [ File : C:\Users\Owner\AppData\Roaming\Mozilla\Firefox\Profiles\kfjgpmg8.default\prefs.js ] -\\ Google Chrome v33.0.1750.154 [ File : C:\Users\Owner\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [1034 octets] - [25/03/2014 10:06:32] AdwCleaner[s0].txt - [961 octets] - [25/03/2014 13:26:09] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [1020 octets] ########## ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Junkware Removal Tool (JRT) by Thisisu Version: 6.1.3 (03.23.2014:1) OS: Windows 8.1 x64 Ran by Owner on Tue 03/25/2014 at 13:35:27.58 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~ Services ~~~ Registry Values ~~~ Registry Keys ~~~ Files ~~~ Folders ~~~ FireFox Successfully deleted: [Folder] C:\Users\Owner\AppData\Roaming\mozilla\firefox\profiles\kfjgpmg8.default\extensions\staged Emptied folder: C:\Users\Owner\AppData\Roaming\mozilla\firefox\profiles\kfjgpmg8.default\minidumps [2 files] ~~~ Event Viewer Logs were cleared ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Scan was completed on Tue 03/25/2014 at 13:38:38.06 End of JRT log Results of screen317's Security Check version 0.99.81 x64 (UAC is enabled) Internet Explorer 11 ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Enabled! Webroot SecureAnywhere Windows Defender Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` Secunia PSI (2.0.0.4003) Malwarebytes Anti-Malware version 1.75.0.1300 Java 7 Update 51 Adobe Flash Player 12.0.0.77 Adobe Reader XI Mozilla Firefox 27.0.1 Firefox out of Date! Google Chrome 33.0.1750.152 Google Chrome 33.0.1750.154 ````````Process Check: objlist.exe by Laurent```````` `````````````````System Health check````````````````` Total Fragmentation on Drive C: % ````````````````````End of Log``````````````````````
  11. Windows Resource Protection did not find any integrity violations. Windows successfully scanned the drive, No errors were found. + System - Provider [ Name] Microsoft-Windows-Wininit [ Guid] {206f6dea-d3c5-4d10-bc72-989f03c8b84b} [ EventSourceName] Wininit - EventID 1001 [ Qualifiers] 16384 Version 0 Level 4 Task 0 Opcode 0 Keywords 0x80000000000000 - TimeCreated [ SystemTime] 2014-03-25T15:39:01.000000000Z EventRecordID 11487 Correlation - Execution [ ProcessID] 0 [ ThreadID] 0 Channel Application Computer AsusDesktop Security - EventData Checking file system on C: The type of the file system is NTFS. Volume label is Windows. A disk check has been scheduled. Windows will now check the disk. Stage 1: Examining basic file system structure ... 397056 file records processed. File verification completed. 1725 large file records processed. 0 bad file records processed. Stage 2: Examining file name linkage ... 465562 index entries processed. Index verification completed. 0 unindexed files scanned. 0 unindexed files recovered. Stage 3: Examining security descriptors ... Cleaning up 1504 unused index entries from index $SII of file 0x9. Cleaning up 1504 unused index entries from index $SDH of file 0x9. Cleaning up 1504 unused security descriptors. Security descriptor verification completed. 34254 data files processed. CHKDSK is verifying Usn Journal... 41088168 USN bytes processed. Usn Journal verification completed. CHKDSK discovered free space marked as allocated in the volume bitmap. Windows has made corrections to the file system. No further action is required. 957422591 KB total disk space. 142653484 KB in 197076 files. 109268 KB in 34255 indexes. 0 KB in bad sectors. 535687 KB in use by the system. 65536 KB occupied by the log file. 814124152 KB available on disk. 4096 bytes in each allocation unit. 239355647 total allocation units on disk. 203531038 allocation units available on disk. Internal Info: 00 0f 06 00 a8 87 03 00 37 55 06 00 00 00 00 00 ........7U...... 1d 0f 00 00 4d 00 00 00 00 00 00 00 00 00 00 00 ....M........... Windows has finished checking your disk. Please wait while your computer restarts. By the way I do have Windows 8.1 for future reference. I had trouble with some of your instructions and had to Google some instructions on some “how to’s” (laughing) Can you advise on next step?
  12. 09:08:06.0394 0x08e4 NetTcpPortSharing - ok 09:08:06.0440 0x08e4 [ 70414DB660BFBB7BD58FCE8EA4364E1B, 6DFB3897CD55E22BA1EDF0AE672F4D7A6A1F512F8A0A26AF106765E6B1CF65AC ] netvsc C:\WINDOWS\system32\DRIVERS\netvsc63.sys 09:08:06.0440 0x08e4 netvsc - ok 09:08:06.0472 0x08e4 [ 3A280F3B3C7A46E29C404ACD46ECBF5E, 81C3367A2A212DBCC65B8A0166FD092E3205AB31A146B4B737061335CEC51F9D ] NlaSvc C:\WINDOWS\System32\nlasvc.dll 09:08:06.0503 0x08e4 NlaSvc - ok 09:08:06.0565 0x08e4 [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys 09:08:06.0565 0x08e4 Npfs - ok 09:08:06.0644 0x08e4 [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys 09:08:06.0644 0x08e4 npsvctrig - ok 09:08:06.0706 0x08e4 [ 6E2271ED0C3E95B8E29F3752B91B9E84, 44026AD9757EA82967D7F7578455802FAD7FE0057EAC088E0AE207C15F594B86 ] nsi C:\WINDOWS\system32\nsisvc.dll 09:08:06.0706 0x08e4 nsi - ok 09:08:06.0753 0x08e4 [ E490B459978CB87779E84C761D22B827, 1E5CA38626E41618E4CA16DD0C70EB2FA86E986F0CF21A749BDE2A17015DEEC6 ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys 09:08:06.0753 0x08e4 nsiproxy - ok 09:08:06.0878 0x08e4 [ 4412D565C0278C401575E11072C7DCE3, 82A0E9AA88750900EA0E9983157345456B418745C8BA62FAF339640E759C0418 ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys 09:08:06.0909 0x08e4 Ntfs - ok 09:08:06.0925 0x08e4 [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null C:\WINDOWS\system32\drivers\Null.sys 09:08:06.0925 0x08e4 Null - ok 09:08:06.0940 0x08e4 [ E366A5681C50785D4ED04FCFD65C3415, 7FF7B4B8F09E773401AE879897E60BF494B57B9ACEE990204A4C98A3FB183A33 ] NVHDA C:\WINDOWS\system32\drivers\nvhda64v.sys 09:08:06.0940 0x08e4 NVHDA - ok 09:08:07.0237 0x08e4 [ 757ACE4D4C9FF0571F86AA5D586B45E8, E7F23CC1DE26E2DAA690B78B05FC001EE0051F0ED9B9BCE9E7FA4E9684D4F3D4 ] nvlddmkm C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys 09:08:07.0425 0x08e4 nvlddmkm - ok 09:08:07.0534 0x08e4 [ 6F5D2728019DCE7BFF3BAC1885CC0449, D62ECFE384361F04E6AF446CBB8CF64A58556AEFC0E04204F81073B016960EB8 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe 09:08:07.0566 0x08e4 NvNetworkService - ok 09:08:07.0597 0x08e4 [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys 09:08:07.0597 0x08e4 nvraid - ok 09:08:07.0612 0x08e4 [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys 09:08:07.0612 0x08e4 nvstor - ok 09:08:08.0065 0x08e4 [ F9C2484E42EDB56E1FFE8378DA3AA778, FB200D950A3BC92B5207A31E9B8255F1DA3989F2DEA160FB653AD1D283FFBFC4 ] NvStreamSvc C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe 09:08:08.0315 0x08e4 NvStreamSvc - ok 09:08:08.0378 0x08e4 [ 1C7CC708AC4A02A3BE8915539780534A, 0EBDE100880963BF1EC05002BA244CA7700693E958D1974CDD2AC3927D93224F ] nvsvc C:\WINDOWS\system32\nvvsvc.exe 09:08:08.0394 0x08e4 nvsvc - ok 09:08:08.0409 0x08e4 [ 939C0FAE9CC0CDD69E6508BDE4C11FE5, 1E82FF4A8797A0EC5DF0E54DE7F358542C73FFFBECADDF86ED66839182E3B55D ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys 09:08:08.0409 0x08e4 nvvad_WaveExtensible - ok 09:08:08.0440 0x08e4 [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp C:\WINDOWS\system32\drivers\nv_agp.sys 09:08:08.0440 0x08e4 nv_agp - ok 09:08:08.0534 0x08e4 [ E7D8C7748AAED52F1700D048A0087158, 3DD1652460C3AC9809A01DFC39326614C738CBF8196AC1DB73D88231EB860C90 ] OfficeSvc C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe 09:08:08.0550 0x08e4 OfficeSvc - ok 09:08:08.0628 0x08e4 [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 09:08:08.0628 0x08e4 ose - ok 09:08:08.0675 0x08e4 [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll 09:08:08.0690 0x08e4 p2pimsvc - ok 09:08:08.0706 0x08e4 [ 2A57A937BC5B1B2D6AFE6A8C5925F50B, 00D84EFED5A7129AAD86945940030474795905C32D65CBD5B1A3EBADCED8F873 ] p2psvc C:\WINDOWS\system32\p2psvc.dll 09:08:08.0722 0x08e4 p2psvc - ok 09:08:08.0753 0x08e4 [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport C:\WINDOWS\System32\drivers\parport.sys 09:08:08.0753 0x08e4 Parport - ok 09:08:08.0769 0x08e4 [ EF0C1749C9A8CEE9A457473D433CC00F, A5FDAB5AD47471640D697C6CFBA6C67730878ABBA47D394EAA47C9733EDCE1F3 ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys 09:08:08.0769 0x08e4 partmgr - ok 09:08:08.0784 0x08e4 [ 9A5309EF92F39346CFD5A4C2C3D1BFAD, 5908E0C9562F9CB24784491BD9AE7983A33A6BDF81AFA0A08045518A0C9BB2B1 ] PcaSvc C:\WINDOWS\System32\pcasvc.dll 09:08:08.0800 0x08e4 PcaSvc - ok 09:08:08.0816 0x08e4 [ C0D3F3BC1C84B4BA746D9847314C1164, 66FDF288ACAE021C5F63BCCC68D7534B4DB737E252AB16DFF746355D8BE7502D ] pci C:\WINDOWS\system32\drivers\pci.sys 09:08:08.0831 0x08e4 pci - ok 09:08:08.0831 0x08e4 [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide C:\WINDOWS\system32\drivers\pciide.sys 09:08:08.0831 0x08e4 pciide - ok 09:08:08.0862 0x08e4 [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys 09:08:08.0862 0x08e4 pcmcia - ok 09:08:08.0878 0x08e4 [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw C:\WINDOWS\system32\drivers\pcw.sys 09:08:08.0878 0x08e4 pcw - ok 09:08:08.0894 0x08e4 [ B9D968D8E2B0F9C6301CEB39CFC9B9E4, 83F32831B0727F18B56DC3CAF37E45A3523D2BBCD54D1421F0DE5A0179D8A404 ] pdc C:\WINDOWS\system32\drivers\pdc.sys 09:08:08.0894 0x08e4 pdc - ok 09:08:08.0941 0x08e4 [ BA50CC0BD19004AAB88BE37338B6FA0D, 34D4720A621CCB4707F2EB929F6F44C317DBC6F055F7F34F3FAC68DFDAA00DEF ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys 09:08:08.0956 0x08e4 PEAUTH - ok 09:08:09.0050 0x08e4 [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe 09:08:09.0050 0x08e4 PerfHost - ok 09:08:09.0128 0x08e4 [ 928061178CD9856CA6B67FFFCE6BA766, 71DE3C7CA7F83EAAA550CD8A68FB67DE042B0AE51BFACB1ECB8852D502E11F50 ] pla C:\WINDOWS\system32\pla.dll 09:08:09.0159 0x08e4 pla - ok 09:08:09.0190 0x08e4 [ 752A457320A946E03C3AA86C3ACD735E, 63946150581532D862F4220606E74FFC479209E1A36CD57AA78AC4AE34A26F49 ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll 09:08:09.0206 0x08e4 PlugPlay - ok 09:08:09.0222 0x08e4 [ 045EB4F260606A03BE340D09DEAF3BA4, 6F34B8D414F7F69F4388F2F8A86E0F3AD179E423126990AF3E1EC4DCCB8E7693 ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll 09:08:09.0237 0x08e4 PNRPAutoReg - ok 09:08:09.0253 0x08e4 [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll 09:08:09.0269 0x08e4 PNRPsvc - ok 09:08:09.0300 0x08e4 [ C16097D77A232A288D65F299E2E01105, 5CE4B44B06FD26569C0F92FF1D3991D0128D8444AE7BC9EBEF5A33811D721BE8 ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll 09:08:09.0315 0x08e4 PolicyAgent - ok 09:08:09.0315 0x08e4 [ 00E08B30E7F7C13ECE2CDF4F46A77311, 1807C0A64C1794E572C86730816C01DCF4D8F773ADE9CAEA3AC0658F7BD71A4E ] Power C:\WINDOWS\system32\umpo.dll 09:08:09.0331 0x08e4 Power - ok 09:08:09.0456 0x08e4 [ B7DB57A000D46D4DE75BC0C563E58072, 8183EB09DC4D44DFF027CA0AAA8C09921A14F088C1BC427B6ACA42340AAF69E6 ] PrintNotify C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll 09:08:09.0503 0x08e4 PrintNotify - ok 09:08:09.0534 0x08e4 [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor C:\WINDOWS\System32\drivers\processr.sys 09:08:09.0534 0x08e4 Processor - ok 09:08:09.0550 0x08e4 [ 8513A1E7AE4B9DC82C4B4F432C648A58, C0C629BF79722A12B35BDA6D5EF6FD2D96E013D80D8F17077E9137ED3988B452 ] ProfSvc C:\WINDOWS\system32\profsvc.dll 09:08:09.0565 0x08e4 ProfSvc - ok 09:08:09.0597 0x08e4 [ 8528BB05E4D4E25945F78B00B2555FB7, FF8E0D4580F93CD348080967F52FE6C2C68B56DAEACAE2EAEF04E19412A953AE ] Psched C:\WINDOWS\system32\DRIVERS\pacer.sys 09:08:09.0597 0x08e4 Psched - ok 09:08:09.0612 0x08e4 [ FB46E9A827A8799EBD7BFA9128C91F37, 7C40E9C1720522D76AF45A588DFF47BDF0E2A99AF3A396854A00F1273EA13193 ] PSI C:\WINDOWS\system32\DRIVERS\psi_mf.sys 09:08:09.0628 0x08e4 PSI - ok 09:08:09.0659 0x08e4 [ AF90BB44C99D6820BE52C9BBAA523283, 9772D9CC1666959EC8EE4ED740A5179473CE4F38762109F1123DD68010D20EA1 ] QWAVE C:\WINDOWS\system32\qwave.dll 09:08:09.0675 0x08e4 QWAVE - ok 09:08:09.0690 0x08e4 [ 3FB466684609A4329858CF2EBD62E0FD, CFC8FBAB1436948F9D34CE6A2D6DE2F86F3E93E50B86851CED979C8CCE609798 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys 09:08:09.0690 0x08e4 QWAVEdrv - ok 09:08:09.0706 0x08e4 [ 2C56F0EE27E4EF70CA4B4983D3638905, AFFDD686886CE982424B644D9168D61C6F86A5244FF97BC644DF75B321E415E5 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys 09:08:09.0706 0x08e4 RasAcd - ok 09:08:09.0737 0x08e4 [ 5F061AC45266841A2860C1858ED863B8, 9E0D52BAC8A50225C32D0397C35350601B996443E2481C808CC59D3B0763FEF0 ] RasAuto C:\WINDOWS\System32\rasauto.dll 09:08:09.0737 0x08e4 RasAuto - ok 09:08:09.0769 0x08e4 [ BF3B17016764F20F9D28CF1A8DC210C0, F64B410D444D4A3DFEE356EFC5B758781FA2612771EDCF72DB91D3120385D7DB ] RasMan C:\WINDOWS\System32\rasmans.dll 09:08:09.0784 0x08e4 RasMan - ok 09:08:09.0800 0x08e4 [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys 09:08:09.0800 0x08e4 RasPppoe - ok 09:08:09.0816 0x08e4 [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys 09:08:09.0831 0x08e4 rdbss - ok 09:08:09.0847 0x08e4 [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys 09:08:09.0847 0x08e4 rdpbus - ok 09:08:09.0878 0x08e4 [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys 09:08:09.0894 0x08e4 RDPDR - ok 09:08:09.0909 0x08e4 [ 858776908AF838E3790F3261B799CDA6, 5BE4658540382D1B2F46E503CE175D74E3870FE492B8B8F37C3CFB34FF8E2DA8 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys 09:08:09.0909 0x08e4 RdpVideoMiniport - ok 09:08:09.0925 0x08e4 [ 847C6A08912C3515807049C93E526D65, 74AFC58793B43E73614D2F49B19FB360091E208097696D9DF0B0354761E0B30F ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys 09:08:09.0925 0x08e4 rdyboost - ok 09:08:09.0972 0x08e4 [ 036746D54347FD2D0385668E2A4064E4, 7C670176176C86D6C3814367A6282A78F4E950F84DDEDA849829236C891F5BB9 ] ReFS C:\WINDOWS\system32\drivers\ReFS.sys 09:08:09.0987 0x08e4 ReFS - ok 09:08:10.0034 0x08e4 [ BFFB40FBE6D2C3469F8D06EE5E4934AB, 5B6763F973A740DCD53CEA75156926457BED8B075965033C484877DDA8B97F39 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll 09:08:10.0034 0x08e4 RemoteAccess - ok 09:08:10.0081 0x08e4 [ 4DCCABE03D06955ED61BABBD8EF9F30F, 531CD60315AAF283B73E0F6CF77D4DE093B809E73C44D2AC43B7247500B3485E ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll 09:08:10.0081 0x08e4 RemoteRegistry - ok 09:08:10.0112 0x08e4 [ D894CBD7DA753C881EE8D5E33B583225, DA4472A85F10A3DF8CE969F731E67FE7C75EE6095908AB8AC2C44851DC5A3F8B ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll 09:08:10.0112 0x08e4 RpcEptMapper - ok 09:08:10.0144 0x08e4 [ 5CAE8F47B31D5CFC322B5B898C19E0FE, FDB5F0B6EA36403E031D9147AB0519011FAAD3AC8190DE5B1F17FB5472D79D47 ] RpcLocator C:\WINDOWS\system32\locator.exe 09:08:10.0144 0x08e4 RpcLocator - ok 09:08:10.0190 0x08e4 [ 3FD5AE42EC87C6F532A931F96BE731DD, 8282823022391ACF65E23F461FCE5CAFFB5ADC077647FEF80B91BC4BC31EDFE2 ] RpcSs C:\WINDOWS\system32\rpcss.dll 09:08:10.0206 0x08e4 RpcSs - ok 09:08:10.0222 0x08e4 [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr C:\WINDOWS\system32\DRIVERS\rspndr.sys 09:08:10.0222 0x08e4 rspndr - ok 09:08:10.0237 0x08e4 [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys 09:08:10.0237 0x08e4 s3cap - ok 09:08:10.0237 0x08e4 [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] SamSs C:\WINDOWS\system32\lsass.exe 09:08:10.0237 0x08e4 SamSs - ok 09:08:10.0269 0x08e4 [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys 09:08:10.0269 0x08e4 sbp2port - ok 09:08:10.0300 0x08e4 [ 47C497FA4DDEA908633CAA60CEBE6805, 4DF5742D4C99D3F7B6A5671AEDB1E5E47D3399D36B28BA19C105FA604D8D5A1C ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll 09:08:10.0316 0x08e4 SCardSvr - ok 09:08:10.0347 0x08e4 [ E76C4E98302AE39CC6FA5D20FC8B5438, B6B6B59CF427515087689285797F4A5763103440EBE5D87A61FA74F80F895BD0 ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll 09:08:10.0347 0x08e4 ScDeviceEnum - ok 09:08:10.0378 0x08e4 [ ABD0237B15DBD2B4695F4B7D734A58F7, D6831921F0CD3E03CBF1CA3ED5824EE0C75127842D12D4E897E74EC72B0792EB ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys 09:08:10.0378 0x08e4 scfilter - ok 09:08:10.0441 0x08e4 [ A95838FFFAEAA7500263D491575F7E0C, FEB79ECAE6D9AB0C29D9AFE12F60502A8357B3A382C0FACF4C6DA4852B6ECFA4 ] Schedule C:\WINDOWS\system32\schedsvc.dll 09:08:10.0472 0x08e4 Schedule - ok 09:08:10.0503 0x08e4 [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll 09:08:10.0503 0x08e4 SCPolicySvc - ok 09:08:10.0534 0x08e4 [ 2F9A3380B8C0380E5608E29C7AA66899, 56D1908437DD3791E54866819E39CC89586C5CD804F47B556416FA8642D88CBB ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys 09:08:10.0550 0x08e4 sdbus - ok 09:08:10.0597 0x08e4 [ 4EAF4DCF9DBD9A56952A58F56D61C005, BCA42FD1553569D3603008CC97D88FD309E87F8A8B1522A4287A0E81CAE6C294 ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys 09:08:10.0597 0x08e4 sdstor - ok 09:08:10.0612 0x08e4 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\WINDOWS\system32\drivers\secdrv.sys 09:08:10.0612 0x08e4 secdrv - ok 09:08:10.0644 0x08e4 [ C49009F897BA4F2F4F31043663AA1485, 48C8BE1E3A4F150662AD012AF4E0357ABA792AD1147AB90EFF6CB2630E2501B6 ] seclogon C:\WINDOWS\system32\seclogon.dll 09:08:10.0659 0x08e4 seclogon - ok 09:08:10.0737 0x08e4 [ 5B66DB4877BBAC9F7493AA8D84421E49, D1FCE833A9140E5EC3106373A6FF42335A9A20EBBE020E757B55F032DA0FA7AE ] Secunia PSI Agent C:\Program Files (x86)\Secunia\PSI\PSIA.exe 09:08:10.0753 0x08e4 Secunia PSI Agent - ok 09:08:10.0769 0x08e4 [ A88882E64BDC1D8E8D6E727B71CCCC53, 12D2235F54D0CEEED8AA268C17CDE44020269F4FEFC70CE957DBBF99AF7F553D ] SENS C:\WINDOWS\System32\sens.dll 09:08:10.0769 0x08e4 SENS - ok 09:08:10.0800 0x08e4 [ E66A7C8CE7ED22DED6DF1CA479FB4790, ADEB076F131E7A8C3AD96022B09BB33EB9AB26C9C831503B8C6960AA763B8975 ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll 09:08:10.0800 0x08e4 SensrSvc - ok 09:08:10.0816 0x08e4 [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys 09:08:10.0816 0x08e4 SerCx - ok 09:08:10.0847 0x08e4 [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys 09:08:10.0847 0x08e4 SerCx2 - ok 09:08:10.0862 0x08e4 [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum C:\WINDOWS\System32\drivers\serenum.sys 09:08:10.0862 0x08e4 Serenum - ok 09:08:10.0878 0x08e4 [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial C:\WINDOWS\System32\drivers\serial.sys 09:08:10.0894 0x08e4 Serial - ok 09:08:10.0894 0x08e4 [ 0BD2B65DCE756FDE95A2E5CCCBF7705D, F13FAFEC8FCF3E796196562717C433CE359A74A3E5876AB070647C717AF74028 ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys 09:08:10.0894 0x08e4 sermouse - ok 09:08:10.0925 0x08e4 [ 441E6FF1F34D7A942946DB42A15FB519, A16BA505B74C7A2ADD08BD5B50728C2AD55062E0ABABAD7E3EE0EB97F3725523 ] SessionEnv C:\WINDOWS\system32\sessenv.dll 09:08:10.0925 0x08e4 SessionEnv - ok 09:08:10.0956 0x08e4 [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys 09:08:10.0956 0x08e4 sfloppy - ok 09:08:10.0987 0x08e4 [ F4414F57DF2CECB8FC969AA43A6B0D50, AD09A6E1294721507DD6BE82B91F2EEB0FF0151B9BC14A75840CD657DBFDECEC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll 09:08:10.0987 0x08e4 SharedAccess - ok 09:08:11.0034 0x08e4 [ 0D190D8B4B20446BE6299AC734DFADF1, 6551095971F99820BBFC5FED8FAB9591A3F8ABFA0F027887F3B71B79325FF6D9 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll 09:08:11.0034 0x08e4 ShellHWDetection - ok 09:08:11.0081 0x08e4 [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys 09:08:11.0081 0x08e4 SiSRaid2 - ok 09:08:11.0097 0x08e4 [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys 09:08:11.0097 0x08e4 SiSRaid4 - ok 09:08:11.0144 0x08e4 [ 587ACA15210D1B01FBF272E07A08F91A, 1F3C13C218C5EA329C6E33E4AE7CFE88DAD59DA40F59FDE09D733AFD2E489000 ] smphost C:\WINDOWS\System32\smphost.dll 09:08:11.0144 0x08e4 smphost - ok 09:08:11.0191 0x08e4 [ 49EEB92DE930B8566EF615D600781DB4, 0B7C929D24FAFC34F95BB4AA77DCBA29DDD8F1977EB42713B64228677D1FBFD3 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe 09:08:11.0191 0x08e4 SNMPTRAP - ok 09:08:11.0237 0x08e4 [ F6EBE514D13ECE7EDC23440039CDF9AB, B58072BE7E4E52704C7B1D52DD49F469542B4B015C6D560369EEC1B046AFB254 ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys 09:08:11.0253 0x08e4 spaceport - ok 09:08:11.0269 0x08e4 [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys 09:08:11.0269 0x08e4 SpbCx - ok 09:08:11.0300 0x08e4 [ FE0CB40F36D3FCDD3A1B312EF72C38D5, 42EA50869752164764DFE8CE7E1C247BE8342A0C15F39158DC808E8A692C460F ] Spooler C:\WINDOWS\System32\spoolsv.exe 09:08:11.0315 0x08e4 Spooler - ok 09:08:11.0487 0x08e4 [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc C:\WINDOWS\system32\sppsvc.exe 09:08:11.0565 0x08e4 sppsvc - ok 09:08:11.0628 0x08e4 [ 2B78788A1485F9B99A578A299DF42C02, A87183A9B13585C9E850437A45237105D39D7F3212ADB079D6AB430B67A59643 ] srv C:\WINDOWS\system32\DRIVERS\srv.sys 09:08:11.0628 0x08e4 srv - ok 09:08:11.0675 0x08e4 [ C1AE59C0B0817236EC083A91C396005A, 26F05ECB44C300DA8F333B115727C31C5C8252C83F37F0AE7DFF89B267599CDF ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys 09:08:11.0675 0x08e4 srv2 - ok 09:08:11.0690 0x08e4 [ 77195C32175FC63D6054EBA5A066D727, 22F5D26809BC9288021620040FC7B7BB76708D434C863B3C0C20F73200C1C6A9 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys 09:08:11.0706 0x08e4 srvnet - ok 09:08:11.0753 0x08e4 [ BB9ED3EDD8E85008215A7250D325A72E, D3404E31B7706B25CDEA7CB4260C343B5F090E8CCB9A5FA203B0F94A9112F1B3 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll 09:08:11.0753 0x08e4 SSDPSRV - ok 09:08:11.0784 0x08e4 [ 3911418AFDE10EA6823B7799E4815524, A73517C4C1271E666B2B3A747756070098E923742B41572AA16573170440AA07 ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll 09:08:11.0784 0x08e4 SstpSvc - ok 09:08:11.0800 0x08e4 [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm C:\WINDOWS\system32\DRIVERS\ssudmdm.sys 09:08:11.0800 0x08e4 ssudmdm - ok 09:08:11.0894 0x08e4 [ CDA9313E34887A111B8309B55BCDCD82, AC070AA093B7013E4D1B29F4FAF9B469C3C261E4D3D1512B4F77CC609CBD1484 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe 09:08:11.0909 0x08e4 Stereo Service - ok 09:08:11.0941 0x08e4 [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys 09:08:11.0941 0x08e4 stexstor - ok 09:08:12.0003 0x08e4 [ D638904FE86A5FE542A1BA13A9D68E5C, 89A956F932316BC50DD99B54BAF4E2809DCAA084DBB04CB84D11E5470BEAF251 ] stisvc C:\WINDOWS\System32\wiaservc.dll 09:08:12.0034 0x08e4 stisvc - ok 09:08:12.0034 0x08e4 [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci C:\WINDOWS\system32\drivers\storahci.sys 09:08:12.0034 0x08e4 storahci - ok 09:08:12.0050 0x08e4 [ 7A08CEE1535F5A448215634C5EA74E50, 41529CDC08A3956F8FE9D5759B147E2E56E3305149EA415EB200249F7CD32094 ] storflt C:\WINDOWS\system32\DRIVERS\vmstorfl.sys 09:08:12.0050 0x08e4 storflt - ok 09:08:12.0066 0x08e4 [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys 09:08:12.0066 0x08e4 stornvme - ok 09:08:12.0081 0x08e4 [ 3118058E3D07021A55324A943C6D722B, 0B255DF1977DADD2B9766EEEA814B464F0ABFA34D6439F3C453083850C121F16 ] StorSvc C:\WINDOWS\system32\storsvc.dll 09:08:12.0081 0x08e4 StorSvc - ok 09:08:12.0097 0x08e4 [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys 09:08:12.0097 0x08e4 storvsc - ok 09:08:12.0112 0x08e4 [ D8E1AE075AB3E8AD56F69C44AA978596, CAFF5116DE7F0EEFFEBE38724BCEE7D11B44153AD35EE43E314C56D5E210758A ] svsvc C:\WINDOWS\system32\svsvc.dll 09:08:12.0112 0x08e4 svsvc - ok 09:08:12.0144 0x08e4 [ 84E0F5D41C138C5CC975137A2A98F6D3, 1E36CED05E4F4365C2AB020CAF920E3959995D7F89F3FABD7B2FB05985F85F38 ] swenum C:\WINDOWS\System32\drivers\swenum.sys 09:08:12.0144 0x08e4 swenum - ok 09:08:12.0175 0x08e4 [ 99453C649DC4B0BE6D062B701CD2917F, 6E136BBF46E2E07635BEDC307A7F2E7C653DB45C055419DAB4878BF657B82058 ] swprv C:\WINDOWS\System32\swprv.dll 09:08:12.0190 0x08e4 swprv - ok 09:08:12.0253 0x08e4 [ E45DA7CBBA34510C8B9473AD7D4FFD0B, 89C2AED757D86C276D78D29D94DCBF9C1B6A244A2153EC85CCB2E86C5F078387 ] SysMain C:\WINDOWS\system32\sysmain.dll 09:08:12.0284 0x08e4 SysMain - ok 09:08:12.0300 0x08e4 [ D65B1C952AEB864C2BAC7A770B17ECCE, 3EFAAFFF73390D9CB660E0F42B305512396CF66ED06E4A20ED67E8722FB4355B ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll 09:08:12.0300 0x08e4 SystemEventsBroker - ok 09:08:12.0331 0x08e4 [ BA6DD39266A5E15515C8C14DA2DA3E5C, 5BC917BA4E7281A67CC6CEF2F4D1972DF04DECBEFB6DED0B08FFBD06E15D4B4F ] TabletInputService C:\WINDOWS\System32\TabSvc.dll 09:08:12.0331 0x08e4 TabletInputService - ok 09:08:12.0347 0x08e4 [ B517410F157693043DACA21B19B258A6, 2224EECEB575CEA811036C43BB5B0A408DE5F59BC97235AB948968E4C3E438F2 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll 09:08:12.0362 0x08e4 TapiSrv - ok 09:08:12.0440 0x08e4 [ ECC68BD5347BDE9631EE68274858A41F, F5274400312C776C13BCBC333AF20C29163FEBC7879E9C6AD45774A0C39F8A52 ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys 09:08:12.0472 0x08e4 Tcpip - ok 09:08:12.0534 0x08e4 [ ECC68BD5347BDE9631EE68274858A41F, F5274400312C776C13BCBC333AF20C29163FEBC7879E9C6AD45774A0C39F8A52 ] TCPIP6 C:\WINDOWS\system32\DRIVERS\tcpip.sys 09:08:12.0566 0x08e4 TCPIP6 - ok 09:08:12.0597 0x08e4 [ 33A7D83EEB15431773A6E186CFAABA21, AC5100A76CA44BFADF4A54FDB09FF5D2FF13B9F8482DC1AE86C8C27005F77B0F ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys 09:08:12.0612 0x08e4 tcpipreg - ok 09:08:12.0644 0x08e4 [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys 09:08:12.0644 0x08e4 tdx - ok 09:08:12.0659 0x08e4 [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys 09:08:12.0675 0x08e4 terminpt - ok 09:08:12.0722 0x08e4 [ 2C77831737491F4D684D315B95C62883, 90A2574A281F19646CFCDA5FDF40063220058290D2D5523AD91B7E709EC36D3D ] TermService C:\WINDOWS\System32\termsrv.dll 09:08:12.0737 0x08e4 TermService - ok 09:08:12.0753 0x08e4 [ 05FBE1F7C13E87AF7A414CDF288B1F62, 24079E1A6B2E33A1A8E76A77F73473B93DD6B379E44C982CE50D6CEED9747838 ] Themes C:\WINDOWS\system32\themeservice.dll 09:08:12.0769 0x08e4 Themes - ok 09:08:12.0800 0x08e4 [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] THREADORDER C:\WINDOWS\system32\mmcss.dll 09:08:12.0800 0x08e4 THREADORDER - ok 09:08:12.0816 0x08e4 [ 347A3E49CE18402305B8119A6EC7CFEB, 6768B20EE577880B0353FE84B980D4A18D323929A63FAE41F7A55123BBFC8DBA ] TimeBroker C:\WINDOWS\System32\TimeBrokerServer.dll 09:08:12.0831 0x08e4 TimeBroker - ok 09:08:12.0847 0x08e4 [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM C:\WINDOWS\system32\drivers\tpm.sys 09:08:12.0862 0x08e4 TPM - ok 09:08:12.0894 0x08e4 [ C97E14BB6A196B0554D6EB67D8818175, C00588C94988F10507F84584DFA4C0A43B8648AD1AD35E9BAE14CDD21FCF7B90 ] TrkWks C:\WINDOWS\System32\trkwks.dll 09:08:12.0894 0x08e4 TrkWks - ok 09:08:12.0956 0x08e4 [ DA56FFA46030E6FEB215E3D5DAA65B11, 36B5EED8F9044475000362DBFC8A2A40B889ED46382CCEFB6BA04BE0442F98C2 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe 09:08:12.0956 0x08e4 TrustedInstaller - ok 09:08:12.0972 0x08e4 [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys 09:08:12.0972 0x08e4 TsUsbFlt - ok 09:08:12.0987 0x08e4 [ E0088068DCE2EE82897027DDB8E05254, FA9C201D3C885DAD2ABE6A23343EDCC83CFB342EFF9E3005FA50B1D88B21D203 ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys 09:08:12.0987 0x08e4 TsUsbGD - ok 09:08:13.0019 0x08e4 [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel C:\WINDOWS\system32\DRIVERS\tunnel.sys 09:08:13.0019 0x08e4 tunnel - ok 09:08:13.0034 0x08e4 [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35 C:\WINDOWS\system32\drivers\uagp35.sys 09:08:13.0050 0x08e4 uagp35 - ok 09:08:13.0066 0x08e4 [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys 09:08:13.0066 0x08e4 UASPStor - ok 09:08:13.0112 0x08e4 [ 5D1B430EA11064C56E7C8F84B90DEB6A, 874D9EE807F16321C4857030F9C18D2B925785FD4BB7ED047AF9535BF3F30D84 ] UCX01000 C:\WINDOWS\System32\drivers\ucx01000.sys 09:08:13.0112 0x08e4 UCX01000 - ok 09:08:13.0144 0x08e4 [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys 09:08:13.0144 0x08e4 udfs - ok 09:08:13.0175 0x08e4 [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys 09:08:13.0175 0x08e4 UEFI - ok 09:08:13.0206 0x08e4 [ 320878AFECDBBD61BBE98624A6CAAC08, 15C090EA32A24D976B5FCB1373B1281DCC2295C075299C814345D694AEB47CB9 ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe 09:08:13.0206 0x08e4 UI0Detect - ok 09:08:13.0237 0x08e4 [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx C:\WINDOWS\system32\drivers\uliagpkx.sys 09:08:13.0237 0x08e4 uliagpkx - ok 09:08:13.0253 0x08e4 [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus C:\WINDOWS\System32\drivers\umbus.sys 09:08:13.0253 0x08e4 umbus - ok 09:08:13.0269 0x08e4 [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass C:\WINDOWS\System32\drivers\umpass.sys 09:08:13.0269 0x08e4 UmPass - ok 09:08:13.0316 0x08e4 [ E3DDF7D43E05784FAA5E042605EEE528, 8E20E880FAB09AF4FF5C438BF9EAE9970D46C05167870110869B744E498FD761 ] UmRdpService C:\WINDOWS\System32\umrdp.dll 09:08:13.0331 0x08e4 UmRdpService - ok 09:08:13.0331 0x08e4 [ 4A2FFDAC45F317E17DF642C7160EB633, F1AB762912FAA5F469F322407DA37C91556086C42D1643AD27516C12A84F74D0 ] upnphost C:\WINDOWS\System32\upnphost.dll 09:08:13.0347 0x08e4 upnphost - ok 09:08:13.0378 0x08e4 [ DF355EB0199198728027962DCFCDE5FB, 9E158BD07389B4CFF99674716647FA3AABEECBD1A98EDF20E544E099A99A8768 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys 09:08:13.0378 0x08e4 usbaudio - ok 09:08:13.0425 0x08e4 [ 433ECDE01A52691FA7ACA51C10C09B70, B896296A3F8EF2AF3AC5F0091B9848156608586F1E10A95D70700BAB51E8062A ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys 09:08:13.0425 0x08e4 usbccgp - ok 09:08:13.0456 0x08e4 [ B3D6457D841A0CAEF4C52D88621715F2, CBDD76A8A28379B107B1FB530757B477B8AB74CD01F9F3CEDC7B1BA0C6E5A990 ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys 09:08:13.0456 0x08e4 usbcir - ok 09:08:13.0487 0x08e4 [ 5477D6E27C7D266EF8C152B9A25ADE5E, FEE81677D284A78A0C0FB60F887A952CFC759AE78B01206D73F59FE33612C519 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys 09:08:13.0487 0x08e4 usbehci - ok 09:08:13.0519 0x08e4 [ 504901430B6E03B99EBB6BF26E0868C6, D00C0904B7008305DCA5D1E6FED153DD8875CAD14D80348E59F42A182FA7E832 ] usbfilter C:\WINDOWS\system32\DRIVERS\usbfilter.sys 09:08:13.0519 0x08e4 usbfilter - ok 09:08:13.0550 0x08e4 [ DF56C2C04EFA328D7A66B69007130266, 719316EB25A8C7B82C7941D1C5B964CC4EDA4A997732F481526DE7356F6FC0D8 ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys 09:08:13.0566 0x08e4 usbhub - ok 09:08:13.0581 0x08e4 [ C0E33820326199CE3CFD3B9F27F81D99, C67F55E7DD6F7FC4A96256A14A805D39C5CE8725FD86675C6C860B3DE8E4DBC3 ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys 09:08:13.0597 0x08e4 USBHUB3 - ok 09:08:13.0597 0x08e4 [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys 09:08:13.0597 0x08e4 usbohci - ok 09:08:13.0612 0x08e4 [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys 09:08:13.0612 0x08e4 usbprint - ok 09:08:13.0644 0x08e4 [ F04D164C4168701A4E7835607722E5F1, 6F743CF2CF73945B4A4B1C4402744BC2FE1624F1346C194493AD2F7110F9EB35 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys 09:08:13.0644 0x08e4 usbscan - ok 09:08:13.0675 0x08e4 [ 4628B415A84EA9D4D396A56F1D0CB6C6, 430F4C819BF958430FD0DEEFD5BA07F210E0541634811993090C039CB602622F ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS 09:08:13.0675 0x08e4 USBSTOR - ok 09:08:13.0675 0x08e4 [ BA4FA655E0FC577DB7436FC963932CE4, 3336FDECD4AEC6B316D4C0803E22A12719EBEDD1A9427C0DF5D3B263BE600EE6 ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys 09:08:13.0691 0x08e4 usbuhci - ok 09:08:13.0706 0x08e4 [ D22EB844EB57D016CC34178AC86456DF, C83440A44EA9CC3D1041AB966FFC423DD17FB25B42BA41BB36C109D16723BD5E ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS 09:08:13.0706 0x08e4 USBXHCI - ok 09:08:13.0722 0x08e4 [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] VaultSvc C:\WINDOWS\system32\lsass.exe 09:08:13.0722 0x08e4 VaultSvc - ok 09:08:13.0753 0x08e4 [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys 09:08:13.0753 0x08e4 vdrvroot - ok 09:08:13.0831 0x08e4 [ CFBAD6B48EDFAA0828A52646B7C4C08D, DDC7D607E784CE6FB5BC62E53E6309EB583D74425E6D3FC8F3D3EC705D69C075 ] vds C:\WINDOWS\System32\vds.exe 09:08:13.0847 0x08e4 vds - ok 09:08:13.0878 0x08e4 [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys 09:08:13.0878 0x08e4 VerifierExt - ok 09:08:13.0909 0x08e4 [ 041D3EF364E624DBB2703A64A5AADF89, 94A52A35AFDD09EBCC4266BD6D44014AAB4BBDFD3F6E8C997A1CA49DFB48F60D ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys 09:08:13.0909 0x08e4 vhdmp - ok 09:08:13.0925 0x08e4 [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide C:\WINDOWS\system32\drivers\viaide.sys 09:08:13.0925 0x08e4 viaide - ok 09:08:13.0941 0x08e4 [ C6305BDFC4F7CE51F72BB072C03D4ACE, 73E62869CA3104F48CC3B0C45E69CE9BF4F8D7D06E29C2F049B9347ABB50554D ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys 09:08:13.0941 0x08e4 vmbus - ok 09:08:13.0956 0x08e4 [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys 09:08:13.0956 0x08e4 VMBusHID - ok 09:08:14.0003 0x08e4 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll 09:08:14.0019 0x08e4 vmicguestinterface - ok 09:08:14.0034 0x08e4 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicheartbeat C:\WINDOWS\System32\ICSvc.dll 09:08:14.0050 0x08e4 vmicheartbeat - ok 09:08:14.0050 0x08e4 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll 09:08:14.0066 0x08e4 vmickvpexchange - ok 09:08:14.0081 0x08e4 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicrdv C:\WINDOWS\System32\ICSvc.dll 09:08:14.0081 0x08e4 vmicrdv - ok 09:08:14.0097 0x08e4 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicshutdown C:\WINDOWS\System32\ICSvc.dll 09:08:14.0112 0x08e4 vmicshutdown - ok 09:08:14.0112 0x08e4 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmictimesync C:\WINDOWS\System32\ICSvc.dll 09:08:14.0128 0x08e4 vmictimesync - ok 09:08:14.0144 0x08e4 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicvss C:\WINDOWS\System32\ICSvc.dll 09:08:14.0144 0x08e4 vmicvss - ok 09:08:14.0159 0x08e4 [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys 09:08:14.0175 0x08e4 volmgr - ok 09:08:14.0191 0x08e4 [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys 09:08:14.0191 0x08e4 volmgrx - ok 09:08:14.0222 0x08e4 [ C85C075DE5B6D0FE116043054DE8EE02, 8BB01DA3D63562F51BCCB5CC996F99A5CB0A8F89900045BBCF4115FD521A9706 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys 09:08:14.0222 0x08e4 volsnap - ok 09:08:14.0237 0x08e4 [ 01355C98B5C3ED1EC446743CDA848FCE, B9FCF558C20E05DD0F53FFB70BBEF873EA57801E13A16701E636128D625C4B67 ] vpci C:\WINDOWS\System32\drivers\vpci.sys 09:08:14.0237 0x08e4 vpci - ok 09:08:14.0269 0x08e4 [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys 09:08:14.0269 0x08e4 vsmraid - ok 09:08:14.0331 0x08e4 [ D51D7EF1EA5ED2BB01E9D07E6E0533BC, E31118F42B316C9B6C9072D9628AA2801FC2519F1A46C9ED167843CD67183C19 ] VSS C:\WINDOWS\system32\vssvc.exe 09:08:14.0362 0x08e4 VSS - ok 09:08:14.0394 0x08e4 [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys 09:08:14.0394 0x08e4 VSTXRAID - ok 09:08:14.0425 0x08e4 [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys 09:08:14.0425 0x08e4 vwifibus - ok 09:08:14.0440 0x08e4 [ 6B26AD573CCDD5209DF4397438B76354, 2C8AC314EC471F6D8B0B12D49D621360A10DCADA7C52E73596730C954FF89FCF ] vwififlt C:\WINDOWS\system32\DRIVERS\vwififlt.sys 09:08:14.0456 0x08e4 vwififlt - ok 09:08:14.0456 0x08e4 [ 0B48E0DFB44EE475F4FD8A8EE599AF30, 28271D4CA0C642304CD8826A3D514F44E3391F9D6D07A1595BB30CE65E7E3494 ] vwifimp C:\WINDOWS\system32\DRIVERS\vwifimp.sys 09:08:14.0472 0x08e4 vwifimp - ok 09:08:14.0519 0x08e4 [ 7599E582CA3A6AAA95A18FFE1172D339, A0410778FBBC4302EA91CF24B944427410B4706535F1192504D4F34C3ED4503E ] W32Time C:\WINDOWS\system32\w32time.dll 09:08:14.0534 0x08e4 W32Time - ok 09:08:14.0550 0x08e4 [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys 09:08:14.0550 0x08e4 WacomPen - ok 09:08:14.0581 0x08e4 [ 92BF4B3EBD6F163B94B7A20C65E7B698, 293E6FEFA862690A7B75443D6495144313D759971B98B495A99AAB0D2CF1F350 ] wbengine C:\WINDOWS\system32\wbengine.exe 09:08:14.0612 0x08e4 wbengine - ok 09:08:14.0659 0x08e4 [ 58F28103889817C93E5B5AFABC87E709, 547381B10DAC8A3CC16FB5DE6DF2FDA3CCD8F45DF581959FFF6E30875419B011 ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll 09:08:14.0659 0x08e4 WbioSrvc - ok 09:08:14.0706 0x08e4 [ 772365894F14652D376B2E5030179DC9, 3D917CED040456EB269BE2B82315CEAE3589FEC016DAE37FC5BC1C3D66DE3140 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll 09:08:14.0722 0x08e4 Wcmsvc - ok 09:08:14.0753 0x08e4 [ D2726823DF7E19F213F4805A9D6D145F, A7F582C99918D204264D3B374F70D75984BDA5805203041E3DECB8153D16E102 ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll 09:08:14.0769 0x08e4 wcncsvc - ok 09:08:14.0784 0x08e4 [ 846C02A8B48CBD921A3D6AB521AA0DC4, B07573A774A6C65D24E5718DC25DF378270EB5B40221CA5A53B21D47838381D3 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll 09:08:14.0784 0x08e4 WcsPlugInService - ok 09:08:14.0800 0x08e4 [ 241895E8A9C158DF86E12FDD21033A32, 46D4BF6319271AC33EC1C7283053B91D38A3D5443F3F749E640253FDC2819679 ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys 09:08:14.0800 0x08e4 WdBoot - ok 09:08:14.0862 0x08e4 [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys 09:08:14.0878 0x08e4 Wdf01000 - ok 09:08:14.0894 0x08e4 [ C52148456E0F6EAD9E903020A79207FC, 7DEB2D7D09FB005A79E88FA8766B7EBE0396F0CA084D72269156874C727FBFF4 ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys 09:08:14.0909 0x08e4 WdFilter - ok 09:08:14.0925 0x08e4 [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll 09:08:14.0925 0x08e4 WdiServiceHost - ok 09:08:14.0925 0x08e4 [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll 09:08:14.0925 0x08e4 WdiSystemHost - ok 09:08:14.0956 0x08e4 [ 57F22324FAAF92ADF957B281E88F1743, 46CFBA6529E28756D73A00A211C3D72E9854E035EE6F2520066E074697A9745E ] WdNisDrv C:\WINDOWS\system32\Drivers\WdNisDrv.sys 09:08:14.0956 0x08e4 WdNisDrv - ok 09:08:14.0987 0x08e4 WdNisSvc - ok 09:08:15.0003 0x08e4 [ 6588A957873326361AB1CAC4E76F8394, BE17880CEDCAE5ED3B983443E3777842646A3E48B661422A717656E11F6DBA94 ] WebClient C:\WINDOWS\System32\webclnt.dll 09:08:15.0019 0x08e4 WebClient - ok 09:08:15.0034 0x08e4 [ 3274312F263882B51B964329FAF49734, 99A020377ACF0762BE5ECD2D68EB5E1497B9D59963247E725F7F96FB5DF41FAD ] Wecsvc C:\WINDOWS\system32\wecsvc.dll 09:08:15.0050 0x08e4 Wecsvc - ok 09:08:15.0066 0x08e4 [ 7CDD84E0023A0C5C230B06A7965EC65E, 6EC7DC18C76D66CF9A893C3DD20F9BE3ADD76546F9A9BA42CE4F24854709F9D9 ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll 09:08:15.0066 0x08e4 WEPHOSTSVC - ok 09:08:15.0097 0x08e4 [ AA1315B87D9B2E39584165318A59F15D, CD19608BE1F6B7AECF802F8D2DD4FCBDAA29450ED37F7D040DC6453924C7B0FE ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll 09:08:15.0097 0x08e4 wercplsupport - ok 09:08:15.0128 0x08e4 [ 22B4C24AB921BFF7827FFBCA1F4E1BB3, B634F7018097A8E4EECDD9F032DF6A0FB6817FC3DEB92BCE6A0965B5D71D8DFA ] WerSvc C:\WINDOWS\System32\WerSvc.dll 09:08:15.0128 0x08e4 WerSvc - ok 09:08:15.0159 0x08e4 [ 2E3E82D7B1076B90F4E228A8EF17B261, 0492F8E0BE09DAD9922E85CCA7BCB1548CB9DC5841F46174A0657FDC59AAC3CE ] WFPLWFS C:\WINDOWS\system32\DRIVERS\wfplwfs.sys 09:08:15.0175 0x08e4 WFPLWFS - ok 09:08:15.0191 0x08e4 [ E06AFE2F94BA7CFA2FE4FD2A449E60E2, 99A81E16366E9E77905D873B0246E4C11B383FE1E99E0E1D9A07FAD4E52EA9E4 ] WiaRpc C:\WINDOWS\System32\wiarpc.dll 09:08:15.0206 0x08e4 WiaRpc - ok 09:08:15.0222 0x08e4 [ 867BCC69ED9C31C501465EB0E8BA9DFA, 678B7FF4D4E8624514301956CDA7FB451159BBFC83FF2E4E5E7DADAE3C7AB2EC ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys 09:08:15.0222 0x08e4 WIMMount - ok 09:08:15.0222 0x08e4 WinDefend - ok 09:08:15.0300 0x08e4 [ DD079EC8F44DCA3A176B345C6ADEFB66, 6CD9371B83EA23D2181891FAE1DB285BC111A78C35F374E57666ED09860C91A9 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll 09:08:15.0315 0x08e4 WinHttpAutoProxySvc - ok 09:08:15.0378 0x08e4 [ 9DB490F3E823C5C3C070644B96CB9D59, 81937D0B331E43C7C61514E60B3AD51370C5201F7B4D12F8534840D91EDC32DD ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll 09:08:15.0394 0x08e4 Winmgmt - ok 09:08:15.0487 0x08e4 [ 690C3FC5C9DBD6B9AEDF8341EC720E41, 0E4412BB6DEB5761F7A889FD90821FAFD7C6E173F449EAB3A0446BA653D6AD0C ] WinRM C:\WINDOWS\system32\WsmSvc.dll 09:08:15.0534 0x08e4 WinRM - ok 09:08:15.0566 0x08e4 [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUsb C:\WINDOWS\system32\DRIVERS\WinUsb.sys 09:08:15.0566 0x08e4 WinUsb - ok 09:08:15.0628 0x08e4 [ 728D3349FAB251B0265EFA55C67DCA2D, 676D2C9CF16DD333BF99FD5EC31B8F53E5295553E19BED5CF94620EE59345777 ] WlanSvc C:\WINDOWS\System32\wlansvc.dll 09:08:15.0644 0x08e4 WlanSvc - ok 09:08:15.0691 0x08e4 [ C2838466CCC44FAEF2C3D4C1E5971ECB, 4CA5B1632302E59E754CEA5B3CA3977D8CE9DC7B2E8673B450BBF0D646AD7AD8 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll 09:08:15.0722 0x08e4 wlidsvc - ok 09:08:15.0753 0x08e4 [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys 09:08:15.0753 0x08e4 WmiAcpi - ok 09:08:15.0800 0x08e4 [ 7AFAC828F52D62F304A911EC32F42EEE, 4EDCF4149069413A166169F2E23F7505F47B39B7EC319E1EF6D2C46CD140AA24 ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe 09:08:15.0800 0x08e4 wmiApSrv - ok 09:08:15.0831 0x08e4 WMPNetworkSvc - ok 09:08:15.0909 0x08e4 [ E178371E493BF17EB90FE71ABA8BE643, E6F96C62D6AD1FE65D54F6799ABC32D34DE8C6EBFF8A297CA3142EF096112FCE ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll 09:08:15.0940 0x08e4 workfolderssvc - ok 09:08:15.0972 0x08e4 [ E746BCDBA2E02CF6B8D6B26FB167FBE0, 8875BBE444A33E0C477EF1A3899955501B7E0A9479CA8AA20DD8E6AA0D9A71E6 ] wpcfltr C:\WINDOWS\system32\DRIVERS\wpcfltr.sys 09:08:15.0972 0x08e4 wpcfltr - ok 09:08:16.0003 0x08e4 [ 4E6A0F60DA7EF050D3D26417CD4D24E9, E6B3BFB007B641D41F8532ED086F92CB3D86E210023DBFAA9AD8152A9FD33CCA ] WPCSvc C:\WINDOWS\System32\wpcsvc.dll 09:08:16.0003 0x08e4 WPCSvc - ok 09:08:16.0050 0x08e4 [ D27491CFCE452C154CECFA155AD0EBC8, 1F3F74C253E3B07DE7EFE27C34DD9AF08617C7B03BB44C2902F69BA9DA3F21F2 ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll 09:08:16.0050 0x08e4 WPDBusEnum - ok 09:08:16.0065 0x08e4 [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys 09:08:16.0065 0x08e4 WpdUpFltr - ok 09:08:16.0097 0x08e4 [ A050C55005554745BF6DEE1FC8A6D3E0, 778283FD9E599CAD719F728507D4ABD8D2D1EC2736D6E1DBF9DC04162C0CD54B ] WRkrn C:\WINDOWS\system32\drivers\WRkrn.sys 09:08:16.0097 0x08e4 WRkrn - ok 09:08:16.0159 0x08e4 [ D6A08A4D9F90E47FACB3FF499CB65F0B, 49B1EB4385149C25639D67A7A727E4DE7AE0E818FEB310B1FA2162D6F2A10E8A ] WRSVC C:\Program Files (x86)\Webroot\WRSA.exe 09:08:16.0175 0x08e4 WRSVC - ok 09:08:16.0191 0x08e4 [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys 09:08:16.0191 0x08e4 ws2ifsl - ok 09:08:16.0206 0x08e4 [ 5CFA46C4ACB2FD70572017052378DAE5, F09134C4433A9E174889A16F29EA6628045B21BE4FA85275ACFD24D5DFB0D937 ] wscsvc C:\WINDOWS\System32\wscsvc.dll 09:08:16.0206 0x08e4 wscsvc - ok 09:08:16.0222 0x08e4 WSearch - ok 09:08:16.0315 0x08e4 [ D8E3A4701376CCFD0BE542D745FA4809, CF267B5507BD02EEB6BF051534E900D592682D11159A6A13C38AE70B3CCC081F ] WSService C:\WINDOWS\System32\WSService.dll 09:08:16.0362 0x08e4 WSService - ok 09:08:16.0472 0x08e4 [ 86D0BF4F792053A50D6EE43DFA5837A5, 5705DAB9C5896F10757630439AC8FEAB5754251C6C90E9E8449220A65D1E95D5 ] wuauserv C:\WINDOWS\system32\wuaueng.dll 09:08:16.0534 0x08e4 wuauserv - ok 09:08:16.0566 0x08e4 [ 2FEAE33E9B2B56104596E1BA444405A9, 0A142F50E06F6224B9CB36B3CE62BE0B36DE8B8DB9F9E05D287DFB884CC7826E ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys 09:08:16.0581 0x08e4 WudfPf - ok 09:08:16.0597 0x08e4 [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys 09:08:16.0612 0x08e4 WUDFRd - ok 09:08:16.0628 0x08e4 [ BB73CBC65AABC4EA0A5C6A1474A0A743, D644B3C6A7202CADDADB3B68FE1B2A7C76B023FE58F667EED4D538C1F4A65D64 ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll 09:08:16.0628 0x08e4 wudfsvc - ok 09:08:16.0628 0x08e4 [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys 09:08:16.0644 0x08e4 WUDFWpdFs - ok 09:08:16.0644 0x08e4 [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFWpdMtp C:\WINDOWS\system32\DRIVERS\WUDFRd.sys 09:08:16.0644 0x08e4 WUDFWpdMtp - ok 09:08:16.0691 0x08e4 [ 2FA9794CA36147756F3FDFD6CA29B46F, 4B86DC38C2411C281686E9A4E64DA6FB2992E39391371F78E012D6D8BB85123F ] WwanSvc C:\WINDOWS\System32\wwansvc.dll 09:08:16.0691 0x08e4 WwanSvc - ok 09:08:16.0706 0x08e4 ================ Scan global =============================== 09:08:16.0753 0x08e4 [ C89780A6F58D113C28A96D85D1261DC5, 185114F33A60916C7904E4A0F278CA43258454343E614F01F0DAFA98BAC981B1 ] C:\WINDOWS\system32\basesrv.dll 09:08:16.0784 0x08e4 [ 599F1244C60E3D6C28A8DA7FBA7A2C13, 992E5EB5E3ED6172DC986085532224A148A09A4E9A4DED9556F34533EE98E4D0 ] C:\WINDOWS\system32\winsrv.dll 09:08:16.0816 0x08e4 [ 9C1833ABD62876856836C5AE55C7CE86, 0A21E2C8B2FF3B0438C86DA7151A548F9C6F5C62CD402CBBEDB435994C8508F1 ] C:\WINDOWS\system32\sxssrv.dll 09:08:16.0831 0x08e4 [ B4B610BBCB002EC478C6FD80CF915697, CE22B87A7C7C0D325CE66FB97E7318B4A41EE0BD14D902A410126A1EBBEAA6FB ] C:\WINDOWS\system32\services.exe 09:08:16.0831 0x08e4 [ Global ] - ok 09:08:16.0831 0x08e4 ================ Scan MBR ================================== 09:08:16.0847 0x08e4 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0 09:08:16.0862 0x08e4 \Device\Harddisk0\DR0 - ok 09:08:16.0862 0x08e4 ================ Scan VBR ================================== 09:08:16.0878 0x08e4 [ 962C52E7ED17DCA7BF67B2FF74EE57CB ] \Device\Harddisk0\DR0\Partition1 09:08:16.0956 0x08e4 \Device\Harddisk0\DR0\Partition1 - ok 09:08:16.0972 0x08e4 [ 332F454CE5C07B375754ED32029193BF ] \Device\Harddisk0\DR0\Partition2 09:08:17.0050 0x08e4 \Device\Harddisk0\DR0\Partition2 - ok 09:08:17.0066 0x08e4 [ 17A813D6F7F201DCE418C0F840663E81 ] \Device\Harddisk0\DR0\Partition3 09:08:17.0066 0x08e4 \Device\Harddisk0\DR0\Partition3 - ok 09:08:17.0066 0x08e4 [ 0F59B19FAB8DD0183AAFA240811CCF5E ] \Device\Harddisk0\DR0\Partition4 09:08:17.0144 0x08e4 \Device\Harddisk0\DR0\Partition4 - ok 09:08:17.0191 0x08e4 [ 3CD9D42021182E61DB6576E8BED51B30 ] \Device\Harddisk0\DR0\Partition5 09:08:17.0206 0x08e4 \Device\Harddisk0\DR0\Partition5 - ok 09:08:17.0222 0x08e4 [ 80FD905924F3896D537069CFA913F5A3 ] \Device\Harddisk0\DR0\Partition6 09:08:17.0222 0x08e4 \Device\Harddisk0\DR0\Partition6 - ok 09:08:17.0222 0x08e4 Waiting for KSN requests completion. In queue: 54 09:08:18.0237 0x08e4 Waiting for KSN requests completion. In queue: 54 09:08:19.0253 0x08e4 Waiting for KSN requests completion. In queue: 54 09:08:20.0284 0x08e4 AV detected via SS2: Webroot SecureAnywhere, C:\Program Files (x86)\Webroot\WRSA.exe ( 8.0.4.66 ), 0x41000 ( enabled : updated ) 09:08:20.0284 0x08e4 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.4.304.0 ), 0x60100 ( disabled : updated ) 09:08:20.0284 0x08e4 Win FW state via NFP2: enabled 09:08:22.0769 0x08e4 ============================================================ 09:08:22.0769 0x08e4 Scan finished 09:08:22.0769 0x08e4 ============================================================ 09:08:22.0769 0x16d4 Detected object count: 0 09:08:22.0769 0x16d4 Actual detected object count: 0
  13. 09:07:48.0151 0x03c0 TDSS rootkit removing tool 3.0.0.26 Mar 24 2014 07:28:43 09:07:48.0151 0x03c0 UEFI system 09:07:51.0590 0x03c0 ============================================================ 09:07:51.0590 0x03c0 Current date / time: 2014/03/24 09:07:51.0590 09:07:51.0590 0x03c0 SystemInfo: 09:07:51.0590 0x03c0 09:07:51.0590 0x03c0 OS Version: 6.3.9600 ServicePack: 0.0 09:07:51.0590 0x03c0 Product type: Workstation 09:07:51.0590 0x03c0 ComputerName: ASUSDESKTOP 09:07:51.0590 0x03c0 UserName: Owner 09:07:51.0590 0x03c0 Windows directory: C:\WINDOWS 09:07:51.0590 0x03c0 System windows directory: C:\WINDOWS 09:07:51.0590 0x03c0 Running under WOW64 09:07:51.0590 0x03c0 Processor architecture: Intel x64 09:07:51.0590 0x03c0 Number of processors: 4 09:07:51.0590 0x03c0 Page size: 0x1000 09:07:51.0590 0x03c0 Boot type: Normal boot 09:07:51.0590 0x03c0 ============================================================ 09:07:52.0418 0x03c0 KLMD registered as C:\WINDOWS\system32\drivers\94998916.sys 09:07:52.0621 0x03c0 System UUID: {EC5AAD8F-DFCB-564C-0637-3E8079970090} 09:07:52.0934 0x03c0 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 09:07:53.0012 0x03c0 ============================================================ 09:07:53.0012 0x03c0 \Device\Harddisk0\DR0: 09:07:53.0027 0x03c0 GPT partitions: 09:07:53.0027 0x03c0 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {B219FDCB-769C-4AAA-896C-7A12EF8CA0A8}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x190000 09:07:53.0027 0x03c0 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {ED8380B1-8936-4226-9002-EF385DD8AD6E}, Name: EFI system partition, StartLBA 0x190800, BlocksNum 0x82000 09:07:53.0027 0x03c0 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {644D0F79-26BA-4712-B2C5-38FF5BD92BEF}, Name: Microsoft reserved partition, StartLBA 0x212800, BlocksNum 0x40000 09:07:53.0027 0x03c0 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {8F5F2264-7341-47D9-995E-8E8E4CB96A04}, Name: Basic data partition, StartLBA 0x252800, BlocksNum 0x72223800 09:07:53.0027 0x03c0 \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {08E92AAB-6F7B-4482-A289-D064F7B84C29}, Name: , StartLBA 0x72476000, BlocksNum 0xAF000 09:07:53.0027 0x03c0 \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {393EA6E1-98D3-4813-B487-6617B1F250A3}, Name: Basic data partition, StartLBA 0x72525000, BlocksNum 0x21E1800 09:07:53.0027 0x03c0 MBR partitions: 09:07:53.0027 0x03c0 ============================================================ 09:07:53.0043 0x03c0 C: <-> \Device\Harddisk0\DR0\Partition4 09:07:53.0043 0x03c0 ============================================================ 09:07:53.0043 0x03c0 Initialize success 09:07:53.0043 0x03c0 ============================================================ 09:07:55.0653 0x08e4 ============================================================ 09:07:55.0653 0x08e4 Scan started 09:07:55.0653 0x08e4 Mode: Manual; 09:07:55.0653 0x08e4 ============================================================ 09:07:55.0653 0x08e4 KSN ping started 09:07:58.0144 0x08e4 KSN ping finished: true 09:07:58.0597 0x08e4 ================ Scan system memory ======================== 09:07:58.0597 0x08e4 System memory - ok 09:07:58.0597 0x08e4 ================ Scan services ============================= 09:07:58.0753 0x08e4 [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys 09:07:58.0769 0x08e4 1394ohci - ok 09:07:58.0784 0x08e4 [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys 09:07:58.0784 0x08e4 3ware - ok 09:07:58.0862 0x08e4 [ 3D30878A269D934100FA5F972E53AF39, 3D2D22D1A9D80DB94D6059C789FBD04DC945722B8644DF6DAA73D5713A10EC52 ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys 09:07:58.0862 0x08e4 ACPI - ok 09:07:58.0878 0x08e4 [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys 09:07:58.0878 0x08e4 acpiex - ok 09:07:58.0894 0x08e4 [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys 09:07:58.0894 0x08e4 acpipagr - ok 09:07:58.0894 0x08e4 [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys 09:07:58.0909 0x08e4 AcpiPmi - ok 09:07:58.0909 0x08e4 [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys 09:07:58.0909 0x08e4 acpitime - ok 09:07:58.0956 0x08e4 [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 09:07:58.0956 0x08e4 AdobeARMservice - ok 09:07:59.0081 0x08e4 [ 9D96B0D5855FD1B98023B3EEC9F06786, E4C79233158BE8AA4E9C6DD71585E5D2703A5156531EB3D692D7D81BC443E844 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 09:07:59.0081 0x08e4 AdobeFlashPlayerUpdateSvc - ok 09:07:59.0144 0x08e4 [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS 09:07:59.0159 0x08e4 ADP80XX - ok 09:07:59.0206 0x08e4 [ B19CA8E441D35AA2B1EE51C10B27DA1B, EBEB96EA44E665B2D4FCD1CC58621A20A17F036EA4A695340A2B65F94F69CDDC ] AeLookupSvc C:\WINDOWS\System32\aelupsvc.dll 09:07:59.0206 0x08e4 AeLookupSvc - ok 09:07:59.0237 0x08e4 [ 239268BAB58EAE9A3FF4E08334C00451, 13F927730DF9BAEDB3A7AB6F7238270A20E4CDEB3D5324A1C471DF2209F3D239 ] AFD C:\WINDOWS\system32\drivers\afd.sys 09:07:59.0253 0x08e4 AFD - ok 09:07:59.0269 0x08e4 [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440 C:\WINDOWS\system32\drivers\agp440.sys 09:07:59.0269 0x08e4 agp440 - ok 09:07:59.0300 0x08e4 [ 8E8E34B7BA059050EED827410D0697A2, 85B6684709F24729A6497563812A90A54068AC2DD9EEA03037CB1EEF5C85AAA9 ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys 09:07:59.0300 0x08e4 ahcache - ok 09:07:59.0331 0x08e4 [ 6B768B67B8B34844E6B571ECAA289437, 9A91D4FDDDD1E28BB2B2E745D6A2E3D82C6A978880A227A14A98F0D46A3DCC5E ] ahcix64s C:\WINDOWS\System32\drivers\ahcix64s.sys 09:07:59.0331 0x08e4 ahcix64s - ok 09:07:59.0378 0x08e4 [ 4BFB41025FA1C37205EDEEFDE36F7771, EA171520C0C8DAFA3D656EC4815393F77096C1E22EC9F39756B52D1565483102 ] AiChargerPlus C:\WINDOWS\syswow64\drivers\AiChargerPlus.sys 09:07:59.0378 0x08e4 AiChargerPlus - ok 09:07:59.0425 0x08e4 [ A91D8E1E433EFB32551BCE69037E1CE7, 41DFDD5B56918D19D09DFB3E4B07460AA85647A8647ABBBB906158D8D6653290 ] ALG C:\WINDOWS\System32\alg.exe 09:07:59.0425 0x08e4 ALG - ok 09:07:59.0440 0x08e4 [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys 09:07:59.0440 0x08e4 AmdK8 - ok 09:07:59.0472 0x08e4 [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys 09:07:59.0472 0x08e4 AmdPPM - ok 09:07:59.0503 0x08e4 [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys 09:07:59.0503 0x08e4 amdsata - ok 09:07:59.0534 0x08e4 [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys 09:07:59.0550 0x08e4 amdsbs - ok 09:07:59.0565 0x08e4 [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys 09:07:59.0565 0x08e4 amdxata - ok 09:07:59.0597 0x08e4 [ 0E6F9683928F99DF16E0E7924E4807D9, D236F8BCC233370E86F6A474F7576601E10AEC5923B9ED168FEF6303228F940E ] amd_sata C:\WINDOWS\system32\drivers\amd_sata.sys 09:07:59.0597 0x08e4 amd_sata - ok 09:07:59.0612 0x08e4 [ F9254DE6FA0A2782A4810726F2D677EF, C6FBDC24E48EE330D47C5A4726633207EE90B841D2A62900E1B2CDACAC7F2B58 ] amd_xata C:\WINDOWS\system32\drivers\amd_xata.sys 09:07:59.0612 0x08e4 amd_xata - ok 09:07:59.0628 0x08e4 [ 04951A9A937CBE28A2D3FEEA360B6D1F, D8AAF000BE4FE4B203DC2EB2A64F780A542E5238CE3F9952FD03277379B11529 ] AppID C:\WINDOWS\system32\drivers\appid.sys 09:07:59.0644 0x08e4 AppID - ok 09:07:59.0659 0x08e4 [ C0DC3F58214A227980AEB091CFD2F973, 0C3E8453C9F65ADA3E74C38C0E3AC3E0CBFD807B827097046265B38839E151E3 ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll 09:07:59.0659 0x08e4 AppIDSvc - ok 09:07:59.0690 0x08e4 [ 7E790DE2487CEDB349D1750B9E47F090, EDA4A87EA2F89ABD174E9590DD46E70B9E7E4B35BDFC3ED90D79CD594F8CB2CD ] Appinfo C:\WINDOWS\System32\appinfo.dll 09:07:59.0706 0x08e4 Appinfo - ok 09:07:59.0737 0x08e4 [ 4B964AE0DF433A3BFA7BD24713BC2E9B, DC8933265E67E43CAE96EA64B146CB9067B536A4DA2C90EDCB38302BBFA1CE6B ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll 09:07:59.0753 0x08e4 AppReadiness - ok 09:07:59.0815 0x08e4 [ 0B726D9ED75C787D6FFAF1E3873BCC70, DC3822B35FB65D53CC5D0E3982C326C5F47F0911BEB1F66DCC84A79C84621E1E ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll 09:07:59.0847 0x08e4 AppXSvc - ok 09:07:59.0862 0x08e4 [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys 09:07:59.0862 0x08e4 arcsas - ok 09:07:59.0925 0x08e4 [ 31E2470E61D5A390405BA41C279D8446, ADA2518DCB78529F716622E45775283CBBB8CA61A4E90B99C2D799C23C8AFCAA ] asComSvc C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe 09:07:59.0940 0x08e4 asComSvc - ok 09:07:59.0987 0x08e4 [ 0466B91EE5767A769E9F8EDB8EF94DDB, 04A529E57D6F617688B072B3BD281538B6B02BB985EE0AE2E355E685E52BE0C8 ] asHmComSvc C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe 09:07:59.0987 0x08e4 asHmComSvc - ok 09:08:00.0019 0x08e4 [ 798DE15F187C1F013095BBBEB6FB6197, 436CCAB6F62FA2D29827916E054ADE7ACAE485B3DE1D3E5C6C62D3DEBF1480E7 ] AsIO C:\WINDOWS\syswow64\drivers\AsIO.sys 09:08:00.0019 0x08e4 AsIO - ok 09:08:00.0050 0x08e4 [ AD8947D621FDCA48F1F39F4624B60AA1, D685CD1A378FA411EA11C18615A1EC5D66CEC2F990DB0D4181EE3140B9DF3E8B ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe 09:08:00.0050 0x08e4 AsSysCtrlService - ok 09:08:00.0065 0x08e4 [ 1392B92179B07B672720763D9B1028A5, B4D47EA790920A4531E3DF5A4B4B0721B7FEA6B49A35679F0652F1E590422602 ] AsUpIO C:\WINDOWS\syswow64\drivers\AsUpIO.sys 09:08:00.0065 0x08e4 AsUpIO - ok 09:08:00.0081 0x08e4 [ AAE374280DDC307061A43ED9FAD1AD57, BFBE60D67B4283868D148C38502689FFE52CC7F13F4294E21F47B37D14FB5821 ] Asus WebStorage Windows Service C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe 09:08:00.0081 0x08e4 Asus WebStorage Windows Service - ok 09:08:00.0112 0x08e4 [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi C:\WINDOWS\system32\drivers\atapi.sys 09:08:00.0112 0x08e4 atapi - ok 09:08:00.0175 0x08e4 [ D278B7C0205249398F434856F5329FC9, 19526BC7D85D1EA63449A94274183EA051AB9F0F32209514041906E691060405 ] AU8168 C:\WINDOWS\system32\DRIVERS\au630x64.sys 09:08:00.0190 0x08e4 AU8168 - ok 09:08:00.0237 0x08e4 [ 4903CBC14742B5AB4DCF7A92F7DEC483, B8491FDA1D1E767658ECC5C3C3DDFB3EB12A969F0F6ACF116C18300FF54075D5 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll 09:08:00.0237 0x08e4 AudioEndpointBuilder - ok 09:08:00.0315 0x08e4 [ EF276593AD1BDF5A99032F62D6272848, 3961689B34A6BCD891FF48A044ABD184F5D7320AE882DF79E5ADC57B08205BA9 ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll 09:08:00.0331 0x08e4 Audiosrv - ok 09:08:00.0347 0x08e4 [ 96E8CAF20FC4B6C31CAD7816A801EB78, E4870DB8FFBDCFEE98449338D0BDBF2DD0B5FEC75514E41C11A882BE6EB16833 ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll 09:08:00.0347 0x08e4 AxInstSV - ok 09:08:00.0378 0x08e4 [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys 09:08:00.0394 0x08e4 b06bdrv - ok 09:08:00.0394 0x08e4 [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys 09:08:00.0409 0x08e4 BasicDisplay - ok 09:08:00.0409 0x08e4 [ 2748E116F8621A4DB0D39FCDD7318C01, DA2DEB7FE1D887B1EF5E2B5103270B72268D8ABDDA36C396627305C0BA90FC20 ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys 09:08:00.0409 0x08e4 BasicRender - ok 09:08:00.0456 0x08e4 [ F2E8CEFC8CF4D6454F4121C5FF93136A, DFD05AD328BD0FDD8BF44043C40084A6DF98BF6F5CEAE71BF793176AF6ADFBBB ] BBSvc C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\BBSvc.exe 09:08:00.0456 0x08e4 BBSvc - ok 09:08:00.0487 0x08e4 [ 6E1BCC590C9D30FEE8FC14DBD053CE94, 4F698D399225A890B7FDCE3773E504B2880534ED1C0F4C37589568C44BA51743 ] BBUpdate C:\Program Files (x86)\Microsoft\BingBar\7.3.124.0\SeaPort.exe 09:08:00.0487 0x08e4 BBUpdate - ok 09:08:00.0534 0x08e4 [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys 09:08:00.0534 0x08e4 bcmfn2 - ok 09:08:00.0565 0x08e4 [ BBE61A40665B83488901E41082A6097D, ADF750DB32E1295C57C03D587A60194529C8B83F90F433C3458288FB5E8F475B ] BDESVC C:\WINDOWS\System32\bdesvc.dll 09:08:00.0581 0x08e4 BDESVC - ok 09:08:00.0597 0x08e4 [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep C:\WINDOWS\system32\drivers\Beep.sys 09:08:00.0597 0x08e4 Beep - ok 09:08:00.0659 0x08e4 [ 6468B696C65775D51A06615830E0E79D, CC4081B3A4895192B4796A745F0BCE8C9C3149B854A7B9BEF84668A2E1D074B5 ] BFE C:\WINDOWS\System32\bfe.dll 09:08:00.0675 0x08e4 BFE - ok 09:08:00.0722 0x08e4 [ 15225081966C785A9192782401643FD4, E2BA0C8D044556FDD9DD7A25F7F71553DE7A2924E78F9284413C2AC46F0BF4EB ] BITS C:\WINDOWS\System32\qmgr.dll 09:08:00.0737 0x08e4 BITS - ok 09:08:00.0753 0x08e4 [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys 09:08:00.0753 0x08e4 bowser - ok 09:08:00.0784 0x08e4 [ A6207A88B596F726DE558425F3B7E592, 126375CC8EA101E0878728323B7EAA69DC8699AC04470FB95D482B1025E0FFB2 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll 09:08:00.0784 0x08e4 BrokerInfrastructure - ok 09:08:00.0800 0x08e4 [ D528D6A92D187777691993DD757AF19A, 2C79978310193431E5FC462368424A172858D5351C92D4815C2A7E35B5DDE50C ] Browser C:\WINDOWS\System32\browser.dll 09:08:00.0815 0x08e4 Browser - ok 09:08:00.0815 0x08e4 [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys 09:08:00.0815 0x08e4 BthAvrcpTg - ok 09:08:00.0847 0x08e4 [ 746B9F94214915AECDE4B7FEA5FF9664, EA2877D49DB4B7B9CE61653D63E8776DFF1CBCCAB12C14DB1D20DA44B8F06357 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys 09:08:00.0847 0x08e4 BthHFEnum - ok 09:08:00.0862 0x08e4 [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys 09:08:00.0862 0x08e4 bthhfhid - ok 09:08:00.0878 0x08e4 [ 07E33226AD218A2A162662A05CAFB52F, 0AC3D8B79EDA6DA232FA4E1CAF6592420A9EDE96350D1F0504C2434261684F0B ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys 09:08:00.0878 0x08e4 BTHMODEM - ok 09:08:00.0909 0x08e4 [ E5E48FEED73D463175EAB1542495191C, 0A8182F5BA7B694AB1DD3680F1194E4A568FE40DBA4BFDFF2EA09BAD045FFB29 ] bthserv C:\WINDOWS\system32\bthserv.dll 09:08:00.0909 0x08e4 bthserv - ok 09:08:00.0940 0x08e4 [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys 09:08:00.0940 0x08e4 cdfs - ok 09:08:00.0987 0x08e4 [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys 09:08:00.0987 0x08e4 cdrom - ok 09:08:01.0019 0x08e4 [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] CertPropSvc C:\WINDOWS\System32\certprop.dll 09:08:01.0019 0x08e4 CertPropSvc - ok 09:08:01.0050 0x08e4 [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass C:\WINDOWS\System32\drivers\circlass.sys 09:08:01.0050 0x08e4 circlass - ok 09:08:01.0081 0x08e4 [ 7F006813C2AFE622C13D7AF94F56CD07, 9F4AEEE19B44F4117BE036F1475CE2E91ED740EB7D8D38364F9724517F777482 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys 09:08:01.0097 0x08e4 CLFS - ok 09:08:01.0128 0x08e4 [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys 09:08:01.0128 0x08e4 CmBatt - ok 09:08:01.0159 0x08e4 [ 825BE21E6395E00698D8A23955A87972, 303F10C3BA72ABB3BA27D08968B10E8EB03FFB6951943B0E9DD35CF48BB72578 ] CNG C:\WINDOWS\system32\Drivers\cng.sys 09:08:01.0175 0x08e4 CNG - ok 09:08:01.0190 0x08e4 [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus C:\WINDOWS\System32\drivers\CompositeBus.sys 09:08:01.0190 0x08e4 CompositeBus - ok 09:08:01.0190 0x08e4 COMSysApp - ok 09:08:01.0206 0x08e4 [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv C:\WINDOWS\system32\drivers\condrv.sys 09:08:01.0206 0x08e4 condrv - ok 09:08:01.0253 0x08e4 [ 0EFE4B5884A8032617826A4D76F80969, 083D296CC623C83D36A97AEE343ADF819B17E490F931DBE4D161BD1E8C289E02 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll 09:08:01.0253 0x08e4 CryptSvc - ok 09:08:01.0269 0x08e4 [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam C:\WINDOWS\system32\drivers\dam.sys 09:08:01.0269 0x08e4 dam - ok 09:08:01.0300 0x08e4 [ 3FD5AE42EC87C6F532A931F96BE731DD, 8282823022391ACF65E23F461FCE5CAFFB5ADC077647FEF80B91BC4BC31EDFE2 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll 09:08:01.0315 0x08e4 DcomLaunch - ok 09:08:01.0347 0x08e4 [ F4CCAADC2C78F57E4F16B24C9201CE22, B76A5C487A814CB986FE8CC398FB7493C9EAB9ACC933A3C35384FA447092EF00 ] defragsvc C:\WINDOWS\System32\defragsvc.dll 09:08:01.0347 0x08e4 defragsvc - ok 09:08:01.0394 0x08e4 [ 0BC71D4D3B5883903C37BF4E13B0F0C5, C5EC2AD001FB7E72D3D12DBADFE01C308ACCB7426E0B90CCB3ECE2DE49D5E7D4 ] DeviceAssociationService C:\WINDOWS\system32\das.dll 09:08:01.0409 0x08e4 DeviceAssociationService - ok 09:08:01.0425 0x08e4 [ 752A457320A946E03C3AA86C3ACD735E, 63946150581532D862F4220606E74FFC479209E1A36CD57AA78AC4AE34A26F49 ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll 09:08:01.0425 0x08e4 DeviceInstall - ok 09:08:01.0456 0x08e4 [ 5DB26D7E0216D0BF364A81D3829AD7B9, FD786D530EA9ADBCB48782FE091E926505A83F2BF3B4181A3D4EDFAA991C4E5E ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys 09:08:01.0472 0x08e4 Dfsc - ok 09:08:01.0487 0x08e4 [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus C:\WINDOWS\system32\DRIVERS\ssudbus.sys 09:08:01.0487 0x08e4 dg_ssudbus - ok 09:08:01.0519 0x08e4 [ 8B107F55FD61654A6C9F1B819AEC5FC4, 773B1B9D3583F17B7C89BDE1EC4487ABB0AE039DF4583F8746460425443DA291 ] Dhcp C:\WINDOWS\system32\dhcpcore.dll 09:08:01.0534 0x08e4 Dhcp - ok 09:08:01.0550 0x08e4 [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk C:\WINDOWS\system32\drivers\disk.sys 09:08:01.0550 0x08e4 disk - ok 09:08:01.0581 0x08e4 [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys 09:08:01.0581 0x08e4 dmvsc - ok 09:08:01.0597 0x08e4 [ 5BAF7714E68F93515A937A3FA8587EF9, DD9296F75341EF96D514139DD8A8680B332E9B9D476368AB897FDA2D5D674E60 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll 09:08:01.0612 0x08e4 Dnscache - ok 09:08:01.0644 0x08e4 [ 50288EA079BB520C2B8C8A154202D518, 8916A9180CA009D124FFDFB4CCF5FDFEF7FA2FD37CBCD49FAD4C68E051B4734D ] dot3svc C:\WINDOWS\System32\dot3svc.dll 09:08:01.0644 0x08e4 dot3svc - ok 09:08:01.0659 0x08e4 [ 281BEE07BA97E3E98D12A822D923D0D8, 6EB482B2D4D6048D145C3738B2B6FA27A90B5EA53E9167447820F9981B004E63 ] DPS C:\WINDOWS\system32\dps.dll 09:08:01.0675 0x08e4 DPS - ok 09:08:01.0690 0x08e4 [ DDC11A202207C0400CBE07315B8FDE5E, 3ED0CA3A714582D92001BA3BFF78BE082F4DC8021298D5A2632F3B2B0A1C09DC ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys 09:08:01.0690 0x08e4 drmkaud - ok 09:08:01.0706 0x08e4 [ 5B074F14F5DD6418F46EE4CA2DEB7EA8, B8223D73C3DE123759101F7D5D45C60BD12B221F09D349575A1044CE3F43CBC5 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll 09:08:01.0722 0x08e4 DsmSvc - ok 09:08:01.0769 0x08e4 [ 13B160C1913F012BD1615EB1398D3779, 2B5786AAEC845156D28ABDAA77347844D39F33DF53F2C96ACEF38A668ADFF422 ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys 09:08:01.0784 0x08e4 DXGKrnl - ok 09:08:01.0815 0x08e4 [ 6073537F250B45E1CB2A02E97F0FE1B2, 653F3F2F2019168EDF225944A88AFDBF8393B62AA076BD19980691778F3DB67D ] Eaphost C:\WINDOWS\System32\eapsvc.dll 09:08:01.0815 0x08e4 Eaphost - ok 09:08:01.0940 0x08e4 [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys 09:08:01.0987 0x08e4 ebdrv - ok 09:08:02.0019 0x08e4 [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] EFS C:\WINDOWS\System32\lsass.exe 09:08:02.0034 0x08e4 EFS - ok 09:08:02.0034 0x08e4 [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys 09:08:02.0034 0x08e4 EhStorClass - ok 09:08:02.0050 0x08e4 [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys 09:08:02.0050 0x08e4 EhStorTcgDrv - ok 09:08:02.0065 0x08e4 [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys 09:08:02.0065 0x08e4 ErrDev - ok 09:08:02.0112 0x08e4 [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3, 5264734F0572FAEDCCB008221C9982CCB7922C4FFC358605424EA413CDCDAE99 ] EventSystem C:\WINDOWS\system32\es.dll 09:08:02.0128 0x08e4 EventSystem - ok 09:08:02.0144 0x08e4 [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat C:\WINDOWS\system32\drivers\exfat.sys 09:08:02.0144 0x08e4 exfat - ok 09:08:02.0190 0x08e4 Fabs - ok 09:08:02.0222 0x08e4 [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys 09:08:02.0222 0x08e4 fastfat - ok 09:08:02.0284 0x08e4 [ 2BC8532ABF2B3756B78FA1DA54147DDE, DF65EE2AB0255A2CF3221085A6BE7C37E3DB6BFEED3BCADCDD69BB1049F6DCB1 ] Fax C:\WINDOWS\system32\fxssvc.exe 09:08:02.0300 0x08e4 Fax - ok 09:08:02.0331 0x08e4 [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc C:\WINDOWS\System32\drivers\fdc.sys 09:08:02.0331 0x08e4 fdc - ok 09:08:02.0347 0x08e4 [ DC1A78BCCCB7EE53D6FD3BD615A8E222, EE16B6853185AAE779D7135035983938009901658F76A8856AAC12EBA15BB34E ] fdPHost C:\WINDOWS\system32\fdPHost.dll 09:08:02.0347 0x08e4 fdPHost - ok 09:08:02.0362 0x08e4 [ E5AD448F2DC84B1CF387FA7F2A3D1936, BBB29C79A085C503F5EFFB5144596D5DEC48A4EB34A049A4E7B38B27F6D92E0A ] FDResPub C:\WINDOWS\system32\fdrespub.dll 09:08:02.0362 0x08e4 FDResPub - ok 09:08:02.0394 0x08e4 [ 0046E0BD031213D37123876B0D0FA61C, A4FE17D56F0BAFB70D0D421ED9D1B6E50AF8ADAA4B59328A41AEC5B4C068A3CB ] fhsvc C:\WINDOWS\system32\fhsvc.dll 09:08:02.0409 0x08e4 fhsvc - ok 09:08:02.0409 0x08e4 [ 957A7A8F5ACCAF23DD9DFF6DAA393CE5, 85D1AC25CF8056FF303930A7E18DE5F7C3AEE429272CB791BD6F81F1DAFB7D8A ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys 09:08:02.0409 0x08e4 FileInfo - ok 09:08:02.0440 0x08e4 [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys 09:08:02.0440 0x08e4 Filetrace - ok 09:08:02.0503 0x08e4 [ 5BD96D8C5411ACE71A7EAACAF0EF2903, 2AF58E6060C7DEC44B4CA30E14E164473CD4089AE475DAFFC61DFE56990C1147 ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe 09:08:02.0550 0x08e4 FirebirdServerMAGIXInstance - ok 09:08:02.0565 0x08e4 [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys 09:08:02.0565 0x08e4 flpydisk - ok 09:08:02.0581 0x08e4 [ 60D5067FCE6D9433D35E04C01D8538B3, 2D97E9E8FF18CF564DE8E70F68B56F0177DC6C0E9EEB7E1C58BBDF42456CB0D8 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys 09:08:02.0597 0x08e4 FltMgr - ok 09:08:02.0644 0x08e4 [ 183CA7699474FDE235853967D1DA4D9B, 8FBD5997F1E39AFFD8C4322520DF4D2227279B5149017D825C188D7411BA99AF ] FontCache C:\WINDOWS\system32\FntCache.dll 09:08:02.0675 0x08e4 FontCache - ok 09:08:02.0800 0x08e4 [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 09:08:02.0800 0x08e4 FontCache3.0.0.0 - ok 09:08:02.0831 0x08e4 [ 35005534E600E993A90B036E4E599F2B, DA56FA3776FBD3D50276CB7410E0CB6F137DD8FCA84C0F3FEF8B1FEA5F6CA592 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys 09:08:02.0831 0x08e4 FsDepends - ok 09:08:02.0847 0x08e4 [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys 09:08:02.0847 0x08e4 Fs_Rec - ok 09:08:02.0909 0x08e4 [ 83E1F0983B02A6F8EC764D18E24ECF10, B5CA3FCB442697681C513FB37C6BB74D7A72B67DC65E2FCA93A7F9E81B63EAAC ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys 09:08:02.0925 0x08e4 fvevol - ok 09:08:02.0940 0x08e4 [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM C:\WINDOWS\System32\drivers\fxppm.sys 09:08:02.0940 0x08e4 FxPPM - ok 09:08:02.0972 0x08e4 [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx C:\WINDOWS\system32\drivers\gagp30kx.sys 09:08:02.0972 0x08e4 gagp30kx - ok 09:08:02.0972 0x08e4 [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys 09:08:02.0987 0x08e4 gencounter - ok 09:08:03.0003 0x08e4 [ FDA72810CA2F8409D9B31E833C448E34, FC24350E875D2AF2A41DB5EF0BFE4F876DADEACCC0B34B9B9C9B2CA185CBAE87 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys 09:08:03.0003 0x08e4 GPIOClx0101 - ok 09:08:03.0050 0x08e4 [ 0BDE0FCF597E9B65600121EF54FF8340, DA5C96E84E05AD09251C82B4BFEDE274342409803730CEBF24EEAD0DCD42DA7E ] gpsvc C:\WINDOWS\System32\gpsvc.dll 09:08:03.0081 0x08e4 gpsvc - ok 09:08:03.0112 0x08e4 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 09:08:03.0128 0x08e4 gupdate - ok 09:08:03.0128 0x08e4 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 09:08:03.0144 0x08e4 gupdatem - ok 09:08:03.0159 0x08e4 [ 03909BDBFF0DCACCABF2B2D4ADEE44DC, 42E631B23BB004F5C2128BAD334C21AB20FAD08AFED9E8191AE9373531BC73DD ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys 09:08:03.0159 0x08e4 HDAudBus - ok 09:08:03.0159 0x08e4 [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys 09:08:03.0159 0x08e4 HidBatt - ok 09:08:03.0175 0x08e4 [ 1EA1B4FABB8CC348E73CA90DBA22E104, 5C18C6BD499272F216DD4626B5E8D38181AEAC9AD917FBEB614A75B70467B258 ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys 09:08:03.0175 0x08e4 HidBth - ok 09:08:03.0190 0x08e4 [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys 09:08:03.0190 0x08e4 hidi2c - ok 09:08:03.0206 0x08e4 [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys 09:08:03.0206 0x08e4 HidIr - ok 09:08:03.0222 0x08e4 [ 449A20A674AA3FAA7F0DD4E33EE2DC20, 28B9BDA306456E8640C355718DE3477537B0FAF8C37F633C709129AAB64D9873 ] hidserv C:\WINDOWS\system32\hidserv.dll 09:08:03.0222 0x08e4 hidserv - ok 09:08:03.0222 0x08e4 [ F31397220D9687E11EB448649AA6E038, 671ACEAA8E00E0D4ED7E33D06A4558121DA4F56EB94F1CBC16FEB2EF3852F7A5 ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys 09:08:03.0222 0x08e4 HidUsb - ok 09:08:03.0253 0x08e4 [ 7BF3ADCBD021D4F4A84CF40EB49C71B5, 5758A51FD2EBE67E6DBE3A298D714D351910F9E01C428D0C1359457C9242B298 ] hkmsvc C:\WINDOWS\system32\kmsvc.dll 09:08:03.0253 0x08e4 hkmsvc - ok 09:08:03.0269 0x08e4 [ 6CD9C3819BE8C0A3DACC82AE5D3C4F18, 46BF4A968E506DE17CA401401D716B444CDC10A5C60EB081890DD4B886AEDF5F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll 09:08:03.0284 0x08e4 HomeGroupListener - ok 09:08:03.0315 0x08e4 [ BE5F89BAFBD4272D5A0C0A37B97865ED, 2F80CE6D123FEED9FA7B00ACF7547FF77E0E6FDC5243942E83BE308C46D414C6 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll 09:08:03.0315 0x08e4 HomeGroupProvider - ok 09:08:03.0331 0x08e4 [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys 09:08:03.0331 0x08e4 HpSAMD - ok 09:08:03.0378 0x08e4 [ 3502776E366C913D49C0DA928AE3E6CB, 3FB452F640B78AEDFBC09188F25C566949660163732A180331226A93DB08F26C ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys 09:08:03.0394 0x08e4 HTTP - ok 09:08:03.0425 0x08e4 [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys 09:08:03.0425 0x08e4 hwpolicy - ok 09:08:03.0456 0x08e4 [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys 09:08:03.0456 0x08e4 hyperkbd - ok 09:08:03.0472 0x08e4 [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo C:\WINDOWS\system32\DRIVERS\HyperVideo.sys 09:08:03.0472 0x08e4 HyperVideo - ok 09:08:03.0487 0x08e4 [ 84CFC5EFA97D0C965EDE1D56F116A541, 0155EA62BF07D99D98D1C9B6559C8E3301B016A20D03DF1EF64B2FAB8C37403B ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys 09:08:03.0503 0x08e4 i8042prt - ok 09:08:03.0519 0x08e4 [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys 09:08:03.0519 0x08e4 iaLPSSi_GPIO - ok 09:08:03.0534 0x08e4 [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys 09:08:03.0534 0x08e4 iaLPSSi_I2C - ok 09:08:03.0581 0x08e4 [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV C:\WINDOWS\system32\drivers\iaStorAV.sys 09:08:03.0581 0x08e4 iaStorAV - ok 09:08:03.0612 0x08e4 [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys 09:08:03.0612 0x08e4 iaStorV - ok 09:08:03.0628 0x08e4 IEEtwCollectorService - ok 09:08:03.0675 0x08e4 [ B82255670D270B75D2D2F0F8747D1443, C40E151AC3FBF289456A4AD9E5744B314067ADA03FE729970410931904305F51 ] IKEEXT C:\WINDOWS\System32\ikeext.dll 09:08:03.0690 0x08e4 IKEEXT - ok 09:08:03.0784 0x08e4 [ C274B45F4F728EF471D82A437AC65937, EEF56EE12B4BDE3EF90965C33D9880749E6C22E2C945E4F24308C840BCF08BB4 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys 09:08:03.0831 0x08e4 IntcAzAudAddService - ok 09:08:03.0862 0x08e4 [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide C:\WINDOWS\system32\drivers\intelide.sys 09:08:03.0862 0x08e4 intelide - ok 09:08:03.0894 0x08e4 [ 139CFCDCD36B1B1782FD8C0014AC9B0E, E0D7E0E9B46A8CECE138D689820023BFA650FB689E4FD62855BED37E04F2D9FF ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys 09:08:03.0894 0x08e4 intelpep - ok 09:08:03.0925 0x08e4 [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys 09:08:03.0940 0x08e4 intelppm - ok 09:08:03.0956 0x08e4 [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 09:08:03.0956 0x08e4 IpFilterDriver - ok 09:08:03.0987 0x08e4 [ DFC4050D58565ADBEE793A8D4AEBDAE6, 89B900408F030CD45753A11D6AE6CBAB87E8B0E3F8401402D2D8713C045BF488 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll 09:08:04.0003 0x08e4 iphlpsvc - ok 09:08:04.0019 0x08e4 [ 9949A3C7590B8C536C05312205079A82, 9276A09D5F910AE8358A96505AB3F66C514870944D58B63B71D5E96567D1E6BB ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys 09:08:04.0019 0x08e4 IPMIDRV - ok 09:08:04.0034 0x08e4 [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys 09:08:04.0034 0x08e4 IPNAT - ok 09:08:04.0065 0x08e4 [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys 09:08:04.0065 0x08e4 IRENUM - ok 09:08:04.0097 0x08e4 [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys 09:08:04.0097 0x08e4 isapnp - ok 09:08:04.0112 0x08e4 [ 034D4BD9DC67C64F3A4C8A049B5173BF, C68AF5A5AD4092AA1C871BD38473AEF84EC3ECF4D06FBEB5F6C09972EF1B8A81 ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys 09:08:04.0128 0x08e4 iScsiPrt - ok 09:08:04.0128 0x08e4 [ 8BE92376799B6B44D543E8D07CDCF885, 425B8BB1BAF62F735B3CB5A002E6055879F02E7207E55942BFD37F1784F5F368 ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys 09:08:04.0144 0x08e4 kbdclass - ok 09:08:04.0144 0x08e4 [ FB6E47E569D4872ABEB506BE03A45FBA, 5C4056CADA8F67587A119D9AE2A0EFAB30387CF6298F4019FF68AC92E2F6F54B ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys 09:08:04.0144 0x08e4 kbdhid - ok 09:08:04.0159 0x08e4 [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic C:\WINDOWS\system32\DRIVERS\kdnic.sys 09:08:04.0159 0x08e4 kdnic - ok 09:08:04.0175 0x08e4 [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] KeyIso C:\WINDOWS\system32\lsass.exe 09:08:04.0175 0x08e4 KeyIso - ok 09:08:04.0190 0x08e4 [ ADDECBCC777665BD113BED437E602AB0, B6283475A1219CE44E9F683DD3BEB8C42DA0943297E5C4699B22176AD8A6A7ED ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys 09:08:04.0190 0x08e4 KSecDD - ok 09:08:04.0222 0x08e4 [ 7296EA420134EAC390798B3232D066A4, 1F5D51EEFD389706660DFB4DB4BF3EC570BEC7097CEB5CAE70EFFE35C3255346 ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys 09:08:04.0222 0x08e4 KSecPkg - ok 09:08:04.0222 0x08e4 [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys 09:08:04.0222 0x08e4 ksthunk - ok 09:08:04.0269 0x08e4 [ 32B1A8351160F307A8C66BCB0F94A9C2, 52F1DEC2BBD4D5DDBB85ED20B99D96BBA7EB83304D76F183A11FDAFDA364E873 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll 09:08:04.0269 0x08e4 KtmRm - ok 09:08:04.0300 0x08e4 [ 27B58E16CF895AC1F1A97C04814C2239, D4336155331DDBF91952CDC6C446C68FF524F979099BA8D9B3A578758F97B2BE ] LanmanServer C:\WINDOWS\system32\srvsvc.dll 09:08:04.0315 0x08e4 LanmanServer - ok 09:08:04.0331 0x08e4 [ D0D9C2ECA4D03A8F06DCD91236B90C98, E2D1144DC8040EA5FEB0602A20BA4CB920B4BC86AD5AD05FC0DF7D74DC95DC66 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll 09:08:04.0347 0x08e4 LanmanWorkstation - ok 09:08:04.0440 0x08e4 [ 7772DFAB22611050B79504E671B06E6E, 331FE235EDBCF48EE96A5A9D5D0560457CD85FA3FD7BEACD3700055F815D9F13 ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe 09:08:04.0440 0x08e4 LBTServ - ok 09:08:04.0456 0x08e4 [ ED7EC050CD6C20E1A93A4DAFB7EFD14D, 9B3B9FA23788680D13E3DC2EEA2F127591A368578AEAB70F03AC379BA7379184 ] LEqdUsb C:\WINDOWS\system32\DRIVERS\LEqdUsb.Sys 09:08:04.0472 0x08e4 LEqdUsb - ok 09:08:04.0519 0x08e4 [ EE289BD147FDFF95EF1B9BD65D3B974A, EFD9D0F6C73E7D2D52DBE2E2A8D3009BFB6AB24776A100CA528A8365002C6105 ] lfsvc C:\WINDOWS\System32\GeofenceMonitorService.dll 09:08:04.0534 0x08e4 lfsvc - ok 09:08:04.0534 0x08e4 [ 3267BC698E29474A8381E68904EB0390, A653ED6364D4B7E02FB7087D364E33D029B15A92E0FAAB176877DE5F93B36B65 ] LHidEqd C:\WINDOWS\system32\DRIVERS\LHidEqd.Sys 09:08:04.0534 0x08e4 LHidEqd - ok 09:08:04.0565 0x08e4 [ 241F2648ADF090E2A10095BD6D6F5DCB, D31F50F7A70A62E3CA45071F75C56FFA21464BFAF4CA4A3AD2482D7477D78D4E ] LHidFilt C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys 09:08:04.0565 0x08e4 LHidFilt - ok 09:08:04.0597 0x08e4 [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio C:\WINDOWS\system32\DRIVERS\lltdio.sys 09:08:04.0597 0x08e4 lltdio - ok 09:08:04.0644 0x08e4 [ 00E070FC0C673311AFD4B068D1242780, 50B0E0E625361145332C849709498FF444E46578DCAD2536E6D0289E0125580F ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll 09:08:04.0644 0x08e4 lltdsvc - ok 09:08:04.0659 0x08e4 [ D113FAD71A5E67AA94B32A0F8828D265, 08DDB4BBDB570C59926DBF5E27FCF46DCDF8B8212BB9251E97837E0504516FB3 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll 09:08:04.0659 0x08e4 lmhosts - ok 09:08:04.0675 0x08e4 [ 342ED5A4B3326014438F36D22D803737, 45488402BD919D84729A19E618B3595D615EB1F73FB9BC77675A21E7DB80AB6C ] LMouFilt C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys 09:08:04.0675 0x08e4 LMouFilt - ok 09:08:04.0706 0x08e4 [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys 09:08:04.0706 0x08e4 LSI_SAS - ok 09:08:04.0722 0x08e4 [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2 C:\WINDOWS\system32\drivers\lsi_sas2.sys 09:08:04.0722 0x08e4 LSI_SAS2 - ok 09:08:04.0737 0x08e4 [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3 C:\WINDOWS\system32\drivers\lsi_sas3.sys 09:08:04.0737 0x08e4 LSI_SAS3 - ok 09:08:04.0753 0x08e4 [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys 09:08:04.0753 0x08e4 LSI_SSS - ok 09:08:04.0815 0x08e4 [ B6B69FF200F68888A7FAFDF204D00C91, 4C9BA7B8646C74AE1E49F513EF426930C09969F29F1533D84D020B414BB1609B ] LSM C:\WINDOWS\System32\lsm.dll 09:08:04.0831 0x08e4 LSM - ok 09:08:04.0847 0x08e4 [ 5EF604B0698F4FA962778285E8C5F1F2, 0465BDAB7EFBE9CC648E7E736B0B8BE152BD2FAB0917F6306675B9039C77F454 ] luafv C:\WINDOWS\system32\drivers\luafv.sys 09:08:04.0847 0x08e4 luafv - ok 09:08:04.0862 0x08e4 lxec_device - ok 09:08:04.0862 0x08e4 [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas C:\WINDOWS\system32\drivers\megasas.sys 09:08:04.0862 0x08e4 megasas - ok 09:08:04.0894 0x08e4 [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr C:\WINDOWS\system32\drivers\megasr.sys 09:08:04.0925 0x08e4 megasr - ok 09:08:04.0956 0x08e4 [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] MMCSS C:\WINDOWS\system32\mmcss.dll 09:08:04.0956 0x08e4 MMCSS - ok 09:08:04.0956 0x08e4 [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem C:\WINDOWS\system32\drivers\modem.sys 09:08:04.0972 0x08e4 Modem - ok 09:08:04.0972 0x08e4 [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor C:\WINDOWS\System32\drivers\monitor.sys 09:08:04.0972 0x08e4 monitor - ok 09:08:04.0987 0x08e4 [ CEAC6D40FE887CE8406C2393CF97DE06, 34E76908B802764FF0D7AB3AF89BE77BD35B44787983343FAD89891891C0A045 ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys 09:08:04.0987 0x08e4 mouclass - ok 09:08:05.0003 0x08e4 [ 02D98BF804084E9A0D69D1C69B02CCA9, EC5BC5D87043DFFD035FD4DD27B3D94E03119063519E4151BCC3522B613E2D7F ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys 09:08:05.0003 0x08e4 mouhid - ok 09:08:05.0003 0x08e4 [ 515549560D481138E6E21AF7C6998E56, C7E4B38D8CCAF15B9BDA63C8C8209F6193AD220DA02E1264F1B687AACD8F409F ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys 09:08:05.0019 0x08e4 mountmgr - ok 09:08:05.0034 0x08e4 [ 338037EFA0E8E8699B2667D57B751574, 59E0D39806D0C4EB57913AA013242837FD39AD378726AEE42D250CBA87C1C3BF ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 09:08:05.0050 0x08e4 MozillaMaintenance - ok 09:08:05.0065 0x08e4 [ F170510BE94CF45E3C6274578F6204B2, 344C3DDE1D622607CA2ABECB2C47CB0166D2D258BD94A7960C45A5ADBB640566 ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys 09:08:05.0065 0x08e4 mpsdrv - ok 09:08:05.0097 0x08e4 [ D186C5844393252147BE934F3871DB7A, 30160F8268B9F46E82C5CB536867E0CF280DC98074A481595072E3320200E343 ] MpsSvc C:\WINDOWS\system32\mpssvc.dll 09:08:05.0097 0x08e4 MpsSvc - ok 09:08:05.0144 0x08e4 [ 59DCEC7499095DE5AED741358037AE2D, 60C4CEBCAE27C121E9D63BD2BC3E5863A91ABC77616C56C10618273A8F9B6F61 ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys 09:08:05.0144 0x08e4 MRxDAV - ok 09:08:05.0175 0x08e4 [ 79B6F3DF7CDFD12159871FF71464F0CE, E01CDD5296237FB60D426784E1142B1AF2CEABDD7CB0B43C4798402C812A94D5 ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 09:08:05.0175 0x08e4 mrxsmb - ok 09:08:05.0206 0x08e4 [ 295771B092D4F7FCF2B62F80CCD14320, 53655B5ABA43A6A9114FE545B88F84E52319B905B8393A51BD97678D3F94A178 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys 09:08:05.0222 0x08e4 mrxsmb10 - ok 09:08:05.0237 0x08e4 [ AAF56E4E84D35411B4E446C445732DFE, 7AC41CAA0842AE4DA4EEF976202C58D7923DAA367F0D7E800D432323D5E7DE1A ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys 09:08:05.0237 0x08e4 mrxsmb20 - ok 09:08:05.0253 0x08e4 [ 4E888019078AC363076A5433E89AA4F8, 3DEBDA290230B3E83F956C902C960E39463B7EFE86439199521356762769FD91 ] MsBridge C:\WINDOWS\system32\DRIVERS\bridge.sys 09:08:05.0253 0x08e4 MsBridge - ok 09:08:05.0284 0x08e4 [ A082C17D14D0790E27D064EA4B138AE1, 9A565ED885782D9D5135C8399C11C356DBF9EBF3B8EB4B4504BD2604AD0B45E6 ] MSDTC C:\WINDOWS\System32\msdtc.exe 09:08:05.0300 0x08e4 MSDTC - ok 09:08:05.0315 0x08e4 [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys 09:08:05.0315 0x08e4 Msfs - ok 09:08:05.0331 0x08e4 [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys 09:08:05.0347 0x08e4 msgpiowin32 - ok 09:08:05.0347 0x08e4 [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys 09:08:05.0362 0x08e4 mshidkmdf - ok 09:08:05.0378 0x08e4 [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys 09:08:05.0378 0x08e4 mshidumdf - ok 09:08:05.0394 0x08e4 [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys 09:08:05.0394 0x08e4 msisadrv - ok 09:08:05.0440 0x08e4 [ 810F8A0A0680662BB0CE44D0E2CEF90C, 5631B07911B7EF378CB1583A480A3C5715E59A5488B33A528F4D7A2F849B9113 ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll 09:08:05.0440 0x08e4 MSiSCSI - ok 09:08:05.0440 0x08e4 msiserver - ok 09:08:05.0456 0x08e4 [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys 09:08:05.0456 0x08e4 MSKSSRV - ok 09:08:05.0472 0x08e4 [ 375E44168F2DFB91A68B8A3F619C5A7C, AC243E02E9A39D0B4DE9571F196941700EE6EB5E94F5B0BA8994FB551E73A7A8 ] MsLldp C:\WINDOWS\system32\DRIVERS\mslldp.sys 09:08:05.0472 0x08e4 MsLldp - ok 09:08:05.0503 0x08e4 [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys 09:08:05.0503 0x08e4 MSPCLOCK - ok 09:08:05.0519 0x08e4 [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys 09:08:05.0519 0x08e4 MSPQM - ok 09:08:05.0534 0x08e4 [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys 09:08:05.0550 0x08e4 MsRPC - ok 09:08:05.0550 0x08e4 [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys 09:08:05.0565 0x08e4 mssmbios - ok 09:08:05.0565 0x08e4 [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys 09:08:05.0565 0x08e4 MSTEE - ok 09:08:05.0581 0x08e4 [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys 09:08:05.0581 0x08e4 MTConfig - ok 09:08:05.0597 0x08e4 [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup C:\WINDOWS\system32\Drivers\mup.sys 09:08:05.0597 0x08e4 Mup - ok 09:08:05.0612 0x08e4 [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys 09:08:05.0612 0x08e4 mvumis - ok 09:08:05.0659 0x08e4 [ 41A45D2A75494EABF2806EA051E00376, EB2497561C8E33A4297C044604C717FF854C7F046882A9E4A400AE7679BF5467 ] napagent C:\WINDOWS\system32\qagentRT.dll 09:08:05.0675 0x08e4 napagent - ok 09:08:05.0722 0x08e4 [ CF8B989D89D6807B887690F2CF24EFD9, 7A3ED124D8D7736F57CD687111C478A206422D117099B2F752B6D933D009BCAC ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys 09:08:05.0722 0x08e4 NativeWifiP - ok 09:08:05.0753 0x08e4 [ 71E3C0100AA19D11373CCEB2F51A6008, 58FBF35F5FE19BEABE483C11E9996BE93D76721C8C34465350FA98B465CA3672 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll 09:08:05.0769 0x08e4 NcaSvc - ok 09:08:05.0784 0x08e4 [ 51DF09CAB2CAC64FEE3E371D9028ED01, 9B81604D0D0359AF8F54FED6DA7116FFD2F40407895028EAD99FF1D7CFDC2D14 ] NcbService C:\WINDOWS\System32\ncbservice.dll 09:08:05.0784 0x08e4 NcbService - ok 09:08:05.0800 0x08e4 [ 2586C4C167499210DCBF3ECFD8CCE210, D8129FEDE9918BF4FB0057CC58700D4E08457060E810B9CC25CA0F598506ADB8 ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll 09:08:05.0800 0x08e4 NcdAutoSetup - ok 09:08:05.0847 0x08e4 [ ED39D676080A1AEA755F1DEC1A8DF1A4, E413DA1113A51F3A68957147A50248AA98C0D365103D137D5AE8638C74E802D7 ] NDIS C:\WINDOWS\system32\drivers\ndis.sys 09:08:05.0862 0x08e4 NDIS - ok 09:08:05.0878 0x08e4 [ C6BB12BC35D1637CA17AE16D3A4725EB, 01C1D9FA738886A195166F88207EEB6715A1DE0608978ED6C5DC738AF5C02513 ] NdisCap C:\WINDOWS\system32\DRIVERS\ndiscap.sys 09:08:05.0878 0x08e4 NdisCap - ok 09:08:05.0894 0x08e4 [ 9F1DA20E943BE7AA4ED5F3E1EBA78B37, CCD99962917BBE256F64AE14CCC9FD12433C72B5DB98E0E57CA8F212A11B3C8F ] NdisImPlatform C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys 09:08:05.0894 0x08e4 NdisImPlatform - ok 09:08:05.0909 0x08e4 [ 9423421E735BD5394351E0C47C76BB92, 763E5D06F896C0EF8AD52515464F28BA85DB7A1560E451857AC9AA68FAFCBC66 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys 09:08:05.0909 0x08e4 NdisTapi - ok 09:08:05.0909 0x08e4 [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys 09:08:05.0925 0x08e4 Ndisuio - ok 09:08:05.0956 0x08e4 [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys 09:08:05.0956 0x08e4 NdisVirtualBus - ok 09:08:05.0972 0x08e4 [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys 09:08:05.0987 0x08e4 NdisWan - ok 09:08:06.0003 0x08e4 [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy C:\WINDOWS\system32\DRIVERS\ndiswan.sys 09:08:06.0003 0x08e4 NdisWanLegacy - ok 09:08:06.0019 0x08e4 [ A5BD69A8812FA79D1A487691DD3FB244, 67B5EDE101943E0E8B8041DB2353D20C8B9F2D253E77964761CFE8F136C0BBC7 ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys 09:08:06.0019 0x08e4 NDProxy - ok 09:08:06.0034 0x08e4 [ 5A072F0B90C29C5233D78BE33EF5ED78, B32ED76A674B1FC743361FB7BBD4C915A78B14132AB056AADD445D5995AD4F32 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys 09:08:06.0050 0x08e4 Ndu - ok 09:08:06.0050 0x08e4 [ A83D67D347A684F10B7D3019C8A6380C, 2B86832967981C8C786BF24C1CF8E13E01745ACE3333CF5C821DD93D623B96E4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys 09:08:06.0050 0x08e4 NetBIOS - ok 09:08:06.0065 0x08e4 [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys 09:08:06.0081 0x08e4 NetBT - ok 09:08:06.0097 0x08e4 [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] Netlogon C:\WINDOWS\system32\lsass.exe 09:08:06.0097 0x08e4 Netlogon - ok 09:08:06.0128 0x08e4 [ B7AD851A21FEBA3BA214972627614207, 29605320CCC3DAAD062CAECF0009DACBC2F6D28ED4E8AF7CE76132129F5572A0 ] Netman C:\WINDOWS\System32\netman.dll 09:08:06.0144 0x08e4 Netman - ok 09:08:06.0175 0x08e4 [ F0F0A372C2EF6358399C4936F91B6131, CE596C71EB4D1A5E104D3148F2D0D8789882C59FD198DCF33CCAC7A08B50E4EE ] netprofm C:\WINDOWS\System32\netprofmsvc.dll 09:08:06.0190 0x08e4 netprofm - ok 09:08:06.0284 0x08e4 [ E32D07CDCEB656AD11E15F121393C6CA, 5241FA2552B2CB875AD114E2EAAEA5ADD5C0385688AE42B09A943BEC89F0AC8A ] netr28x C:\WINDOWS\system32\DRIVERS\netr28x.sys 09:08:06.0331 0x08e4 netr28x - ok 09:08:06.0394 0x08e4 [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe ---------------------------------------------------------------------------
  14. Additional scan result of Farbar Recovery Scan Tool (x64) Version: 13-03-2014 Ran by Owner at 2014-03-23 17:30:05 Running from C:\Users\Owner\Desktop Boot Mode: Normal ========================================================== ==================== Security Center ======================== AV: Webroot SecureAnywhere (Enabled - Up to date) {66A6FE14-08CB-F415-3742-517201416109} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Webroot SecureAnywhere (Enabled - Up to date) {DDC71FF0-2EF1-FB9B-0DF2-6A007AC62BB4} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installed Programs ====================== ABBYY FineReader 6.0 Sprint (HKLM-x32\...\{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}) (Version: 6.00.2146.41621 - ABBYY Software House) Adobe Flash Player 12 Plugin (HKLM-x32\...\{9D32CD07-EA5C-4A79-B976-C0C7F975EDE4}) (Version: 12.0.0.77 - Adobe Systems Incorporated) Adobe Reader XI (11.0.06) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated) AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 2.01.05 - ASUSTeK Computer Inc.) AMD Accelerated Video Transcoding (Version: 12.10.100.30409 - Advanced Micro Devices, Inc.) Hidden AMD Catalyst Install Manager (HKLM\...\{377C9C44-398B-6CBD-9138-F6B4AB951839}) (Version: 8.0.911.0 - Advanced Micro Devices, Inc.) AMD VISION Engine Control Center (x32 Version: 2013.0409.2219.38230 - Advanced Micro Devices, Inc.) Hidden ASUS Music Maker (HKLM-x32\...\MAGIX_{AB515018-7F9D-4047-B0C0-F26BAC30F3E1}) (Version: 18.0.3.3 - MAGIX AG) ASUS Music Maker (Version: 18.0.3.3 - MAGIX AG) Hidden ASUS MX Suite (HKLM-x32\...\MAGIX_{CFA9C800-9B0B-42E3-92E7-08B5AF2E192E}) (Version: 1.13.0.121 - MAGIX AG) ASUS MX Suite (Version: 1.13.0.121 - MAGIX AG) Hidden ASUS Video easy (HKLM-x32\...\MAGIX_{E3185090-8796-46FB-A27F-6C844F106DAC}) (Version: 4.0.1.90 - MAGIX AG) ASUS Video easy (Version: 4.0.1.90 - MAGIX AG) Hidden ASUS WebStorage Sync Agent (HKLM-x32\...\ASUS WebStorage) (Version: 1.1.18.159 - ASUS Cloud Corporation) ASUSDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4127.52 - CyberLink Corp.) ASUSDVD (x32 Version: 10.0.4127.52 - CyberLink Corp.) Hidden AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.12.309 - ASUSTEK) Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team) Bandicam (HKLM-x32\...\Bandicam) (Version: 1.9.3.492 - Bandisoft.com) Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com) Bing Bar (HKLM-x32\...\{FF6DD716-7B10-4269-9F19-FFB07AC4CD95}) (Version: 7.3.124.0 - Microsoft Corporation) Burnout™ Paradise: The Ultimate Box (HKLM-x32\...\{9A996B6A-846E-4A89-B9C4-17546B7BE49F}) (Version: 1.1.0.0 - Electronic Arts) Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center InstallProxy (x32 Version: 2013.0409.2219.38230 - Advanced Micro Devices, Inc.) Hidden Catalyst Control Center Localization All (x32 Version: 2013.0409.2219.38230 - Advanced Micro Devices, Inc.) Hidden CCC Help Chinese Standard (x32 Version: 2013.0409.2218.38230 - Advanced Micro Devices, Inc.) Hidden CCC Help Chinese Traditional (x32 Version: 2013.0409.2218.38230 - Advanced Micro Devices, Inc.) Hidden CCC Help Czech (x32 Version: 2013.0409.2218.38230 - Advanced Micro Devices, Inc.) Hidden CCC Help Danish (x32 Version: 2013.0409.2218.38230 - Advanced Micro Devices, Inc.) Hidden CCC Help Dutch (x32 Version: 2013.0409.2218.38230 - Advanced Micro Devices, Inc.) Hidden CCC Help English (x32 Version: 2013.0409.2218.38230 - Advanced Micro Devices, Inc.) Hidden CCC Help Finnish (x32 Version: 2013.0409.2218.38230 - Advanced Micro Devices, Inc.) Hidden CCC Help French (x32 Version: 2013.0409.2218.38230 - Advanced Micro Devices, Inc.) Hidden CCC Help German (x32 Version: 2013.0409.2218.38230 - Advanced Micro Devices, Inc.) Hidden CCC Help Greek (x32 Version: 2013.0409.2218.38230 - Advanced Micro Devices, Inc.) Hidden CCC Help Hungarian (x32 Version: 2013.0409.2218.38230 - Advanced Micro Devices, Inc.) Hidden CCC Help Italian (x32 Version: 2013.0409.2218.38230 - Advanced Micro Devices, Inc.) Hidden CCC Help Japanese (x32 Version: 2013.0409.2218.38230 - Advanced Micro Devices, Inc.) Hidden CCC Help Korean (x32 Version: 2013.0409.2218.38230 - Advanced Micro Devices, Inc.) Hidden CCC Help Norwegian (x32 Version: 2013.0409.2218.38230 - Advanced Micro Devices, Inc.) Hidden CCC Help Polish (x32 Version: 2013.0409.2218.38230 - Advanced Micro Devices, Inc.) Hidden CCC Help Portuguese (x32 Version: 2013.0409.2218.38230 - Advanced Micro Devices, Inc.) Hidden CCC Help Russian (x32 Version: 2013.0409.2218.38230 - Advanced Micro Devices, Inc.) Hidden CCC Help Spanish (x32 Version: 2013.0409.2218.38230 - Advanced Micro Devices, Inc.) Hidden CCC Help Swedish (x32 Version: 2013.0409.2218.38230 - Advanced Micro Devices, Inc.) Hidden CCC Help Thai (x32 Version: 2013.0409.2218.38230 - Advanced Micro Devices, Inc.) Hidden CCC Help Turkish (x32 Version: 2013.0409.2218.38230 - Advanced Micro Devices, Inc.) Hidden ccc-utility64 (Version: 2013.0409.2219.38230 - Advanced Micro Devices, Inc.) Hidden Classic Shell (HKLM\...\{2368907C-E8F6-4750-A023-254C3E2B5E8D}) (Version: 4.0.4 - IvoSoft) CPUID HWMonitor 1.24 (HKLM\...\CPUID HWMonitor_is1) (Version: - ) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Dream Aquarium (HKLM-x32\...\DreamAqua) (Version: - ) eManual (HKLM-x32\...\{0C84E634-EB68-4A54-B21E-A05EC87A4CC5}) (Version: 1.00.06 - ASUSTeK Computer Inc.) eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{39AB2E37-1A55-4292-A5D3-971E9F70D0F8}) (Version: 2.1.32.0 - MAGIX AG) Galería de fotos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Galerie de photos (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden Google Chrome (HKLM-x32\...\Google Chrome) (Version: 33.0.1750.154 - Google Inc.) Google Update Helper (x32 Version: 1.3.22.5 - Google Inc.) Hidden Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle) Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden LastPass (uninstall only) (HKCU\...\LastPass) (Version: - LastPass) Lexmark Pro800-Pro900 Series (HKLM\...\Lexmark Pro800-Pro900 Series) (Version: - Lexmark International, Inc.) Logitech SetPoint 6.32 (HKLM\...\SP6) (Version: 6.32.20 - Logitech) Malwarebytes Anti-Malware version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation) MediaCoder x64 0.8.28.5588 (HKLM\...\MediaCoder x64) (Version: 0.8.28.5588 - Mediatronic) Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden Microsoft Flight (HKLM-x32\...\GFWL_{4D5308D2-DC8E-4658-A37C-351000058100}) (Version: 1.0.0005.129 - Microsoft Studios) Microsoft Flight (x32 Version: 1.0.0005.129 - Microsoft Studios) Hidden Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation) Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation) Microsoft Office 365 Home Premium - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 15.0.4551.1512 - Microsoft Corporation) Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4029.0217 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation) Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation) Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Movie Maker (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden Mozilla Firefox 27.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 27.0.1 (x86 en-US)) (Version: 27.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla) MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden MSVCRT110_amd64 (Version: 16.4.1109.0912 - Microsoft) Hidden MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) Need for Speed Hot Pursuit (HKLM-x32\...\{2736FCA6-A352-4CFC-B5A8-F1438BD8A5B2}) (Version: 1.0.5.0 - Electronic Arts) Need for Speed™ Rivals (HKLM-x32\...\{E0A32336-AA27-4053-99B2-C3380B7B95AC}) (Version: 1.4.0.0 - Electronic Arts) Need for Speed™ The Run (HKLM-x32\...\{0EDC9BA0-016E-406a-86DA-04FC1BE00C21}) (Version: 1.1.0.0 - Electronic Arts) Need For Speed™ World (HKLM-x32\...\{7B2CC3DF-64FA-44AE-8F57-B0F915147E4F}_is1) (Version: 1.0.0.1599 - Electronic Arts) Next Generation Visualisations (HKLM-x32\...\{2E376AD9-5C49-4F7D-A0BA-6A44E8FA5A3B}) (Version: 1.0.0 - Microsoft) NVIDIA 3D Vision Controller Driver 335.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 335.21 - NVIDIA Corporation) NVIDIA 3D Vision Driver 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 335.23 - NVIDIA Corporation) NVIDIA Control Panel 335.23 (Version: 335.23 - NVIDIA Corporation) Hidden NVIDIA GeForce Experience 1.8.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.2 - NVIDIA Corporation) NVIDIA Graphics Driver 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 335.23 - NVIDIA Corporation) NVIDIA HD Audio Driver 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation) NVIDIA Install Application (Version: 2.1002.147.1067 - NVIDIA Corporation) Hidden NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden NVIDIA PhysX (x32 Version: 9.13.1220 - NVIDIA Corporation) Hidden NVIDIA PhysX System Software 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation) NVIDIA ShadowPlay 11.10.11 (Version: 11.10.11 - NVIDIA Corporation) Hidden NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3523 - NVIDIA Corporation) Hidden NVIDIA Update 11.10.11 (Version: 11.10.11 - NVIDIA Corporation) Hidden NVIDIA Update Core (Version: 11.10.11 - NVIDIA Corporation) Hidden NVIDIA Virtual Audio 1.2.20 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.20 - NVIDIA Corporation) OEM Application Profile (HKLM-x32\...\{769E695A-F93F-803E-3763-9A00A0E38786}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.) Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4551.1512 - Microsoft Corporation) Hidden Office 15 Click-to-Run Licensing Component (Version: 15.0.4551.1512 - Microsoft Corporation) Hidden Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4551.1512 - Microsoft Corporation) Hidden Origin (HKLM-x32\...\Origin) (Version: 9.4.1.116 - Electronic Arts, Inc.) Photo Common (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Photo Gallery (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden Ralink RT2860 Wireless LAN Card (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309B0}) (Version: 1.2.0.40 - Ralink) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.10.1226.2012 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6890 - Realtek Semiconductor Corp.) Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.14013.45 - Samsung Electronics Co., Ltd.) Samsung Kies3 (x32 Version: 3.2.14013.45 - Samsung Electronics Co., Ltd.) Hidden SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.29.0 - SAMSUNG Electronics Co., Ltd.) Secunia PSI (2.0.0.4003) (HKLM-x32\...\Secunia PSI) (Version: 2.0.0.4003 - Secunia) Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee) SHIELD Streaming (Version: 1.7.306 - NVIDIA Corporation) Hidden Tinker (HKLM-x32\...\GFWL_{584109EB-4A5E-4467-B3C4-5C1000008300}) (Version: 1.0.0000.131 - Microsoft Corporation) Tinker (x32 Version: 1.0.0000.131 - Microsoft Corporation) Hidden Tinker (x32 Version: 1.0.0001.131 - Microsoft Corporation) Hidden Webroot SecureAnywhere (HKLM-x32\...\WRUNINST) (Version: 8.0.4.66 - Webroot) Why ASUS PC (HKLM-x32\...\{5648F9D9-299E-408C-AC1F-59DC75894A1F}) (Version: 1.00.02 - ASUSTeK Computer Inc.) Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Windows Live Communications Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3522.0110 - Microsoft Corporation) Windows Live Essentials (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Windows Live Essentials (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden Windows Live Installer (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden Windows Live Photo Common (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden Windows Live PIMT Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden Windows Live SOXE (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden Windows Live SOXE Definitions (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden Windows Live UX Platform (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden Windows Live UX Platform Language Pack (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden Windows Live UX Platform Language Pack (x32 Version: 16.4.3522.0110 - Microsoft Corporation) Hidden Yahoo! Messenger (HKLM-x32\...\Yahoo! Messenger) (Version: - Yahoo! Inc.) ==================== Restore Points ========================= 10-03-2014 16:04:11 Windows Live Essentials 11-03-2014 19:48:44 Installed Classic Shell 16-03-2014 05:20:37 Installed DirectX 18-03-2014 03:49:13 Installed Windows Live ID Sign-in Assistant 19-03-2014 04:23:02 Installed Classic Shell ==================== Hosts content: ========================== 2013-08-22 07:25 - 2013-08-22 07:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Scheduled Tasks (whitelisted) ============= Task: {05293577-D647-4185-B859-C94839A0B2E3} - System32\Tasks\Microsoft\Windows\SettingSync\NetworkStateChangeTask Task: {067F5007-4BC8-42B8-ADD5-7FAA9EF8E22D} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2012-03-13] (ASUSTeK Computer Inc.) Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList Task: {0C501C5B-60F4-4400-AD3E-6A7F5DE1BB29} - System32\Tasks\ASUS\ASUS Easy Update 2 => C:\Program Files (x86)\ASUS\ASUS Easy Update\ALU.exe Task: {2085BF56-520D-4951-B7C0-DF34AF90CC6A} - System32\Tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask => Rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask Task: {2C9C0C6C-2A74-46F2-858A-4389D253EAD0} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCachePrepopulate Task: {32F5C6A4-61B0-4462-AF74-903089651815} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe [2013-10-31] (Microsoft Corporation) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\Windows\System32\AutoWorkplace.exe [2013-08-21] (Microsoft Corporation) Task: {36AFECFE-EFD1-4DA4-ACFB-E90CF7EDFEC7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-07] (Google Inc.) Task: {39C58D70-FCE6-4747-96BB-64B8A46780E0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-02-07] (Google Inc.) Task: {3B6D8A73-F20B-4C93-B8FB-56A154F172D2} - System32\Tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone => C:\Windows\system32\tzsync.exe [2013-08-22] (Microsoft Corporation) Task: {49754026-21E1-41FC-94FD-727AFE414FE7} - System32\Tasks\Microsoft\Windows\Sysmain\HybridDriveCacheRebalance Task: {6AA91E8C-DDBD-4979-8464-4062F7681A19} - System32\Tasks\Microsoft\Windows\Plug and Play\Plug and Play Cleanup Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task Task: {73B1B253-CE67-4501-AE1A-377DD1D68B65} - System32\Tasks\Microsoft\Windows\Application Experience\StartupAppTask => Rundll32.exe Startupscan.dll,SusRunTask Task: {77648518-E831-4607-9E2D-2BADB92E6B4F} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2014-02-11] (Microsoft Corporation) Task: {77F1D869-6E65-4079-A2A0-E2023408EF97} - System32\Tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState => Rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState Task: {85366AA4-6297-4EBD-B694-ADC9DA3B4A37} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-03-16] (Adobe Systems Incorporated) Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task Task: {8CC813C9-712A-41EF-9512-B233444FC669} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup => Rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask Task: {9FF4C139-5234-410C-B7FA-23EE2FD2AB53} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Maintenance Work Task: {AA81A71D-3C64-4782-B2EC-B40A4F81F754} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-610162119-960651099-2309175161-1001 => %localappdata%\Microsoft\SkyDrive\SkyDrive.exe Task: {AB2118A4-FCBD-45CD-BEE9-E42D3813B581} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2014-03-16] (Microsoft Corporation) Task: {CFD7C21A-808B-487B-A6EC-8A10E44E8360} - System32\Tasks\Microsoft\Windows\SettingSync\BackupTask Task: {D88FEC9E-A82A-46F9-87E2-B6B97B301C1A} - System32\Tasks\Microsoft\Windows\WS\License Validation => Rundll32.exe WSClient.dll,WSpTLR licensing Task: {DA46820F-FF8A-4B5E-A6B2-B12185DCFFFB} - System32\Tasks\Microsoft\Windows\Work Folders\Work Folders Logon Synchronization Task: {E6D378FA-E068-4BCB-80DE-56D43A249507} - System32\Tasks\Microsoft\Windows\RecoveryEnvironment\VerifyWinRE Task: {EB18DB82-BFA5-4D06-9AD0-DBEFC8F7E444} - System32\Tasks\Microsoft Office 15 Sync Maintenance for ASUSDESKTOP-Owner AsusDesktop => C:\Program Files\Microsoft Office 15\Root\Office15\MsoSync.exe [2014-02-11] (Microsoft Corporation) Task: {FB7C7C4E-75FD-45B2-8DF0-D0CE2441E024} - System32\Tasks\AsusVibeSchedule => C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe [2012-09-27] () Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Loaded Modules (whitelisted) ============= 2014-02-08 01:42 - 2009-11-04 09:17 - 00189440 _____ () C:\WINDOWS\system32\spool\PRTPROCS\x64\lxecdrpp.dll 2009-02-20 09:48 - 2009-02-20 02:48 - 00381440 _____ () C:\WINDOWS\System32\lxecsm.dll 2009-02-20 09:48 - 2009-02-20 02:48 - 00023552 _____ () C:\WINDOWS\System32\lxecsmr.dll 2013-08-08 03:07 - 2012-06-01 03:42 - 00920736 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe 2012-12-19 00:10 - 2012-12-19 00:10 - 00072192 _____ () C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe 2014-02-10 11:28 - 2013-10-31 10:07 - 00377000 _____ () C:\Program Files\Microsoft Office 15\ClientX64\c2rui.dll 2014-02-10 11:28 - 2013-10-31 10:08 - 00520872 _____ () C:\Program Files\Microsoft Office 15\ClientX64\c2r64.dll 2014-02-10 11:28 - 2013-10-31 10:07 - 00618152 _____ () C:\Program Files\Microsoft Office 15\ClientX64\StreamServer.dll 2014-02-12 15:25 - 2009-12-16 07:42 - 00205824 _____ () C:\Program Files\Lexmark\Pro800-Pro900 Series\lxecmicro.dll 2014-02-12 15:25 - 2010-04-01 13:30 - 01558528 _____ () C:\Program Files\Lexmark\Pro800-Pro900 Series\lxecdrs64.dll 2014-02-12 15:25 - 2009-03-10 01:44 - 00015360 _____ () C:\Program Files\Lexmark\Pro800-Pro900 Series\lxeccaps64.dll 2014-03-16 11:37 - 2014-03-04 07:05 - 00116056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2014-02-11 09:27 - 2014-02-11 09:27 - 08866472 _____ () C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\1033\GrooveIntlResource.dll 2011-10-07 03:39 - 2011-10-07 03:39 - 01304856 _____ () C:\Program Files\Logitech\SetPointP\Macros\MacroCore.dll 2013-08-08 03:07 - 2014-03-21 22:05 - 00026112 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll 2013-08-08 03:07 - 2010-06-28 20:58 - 00104448 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll 2014-02-11 09:27 - 2014-02-11 09:27 - 00316584 _____ () C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\AppVIsvStream32.dll 2014-02-11 09:27 - 2014-02-11 09:27 - 00359592 _____ () C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\c2r32.dll 2014-02-11 09:21 - 2014-02-11 09:21 - 00316584 _____ () C:\Program Files\Microsoft Office 15\Root\Office15\AppVIsvStream32.dll 2014-02-11 09:21 - 2014-02-11 09:21 - 00359592 _____ () C:\Program Files\Microsoft Office 15\Root\Office15\c2r32.dll 2014-03-15 08:35 - 2014-03-14 18:50 - 00051016 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\chrome_elf.dll 2014-03-15 08:35 - 2014-03-14 18:50 - 00716616 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\libglesv2.dll 2014-03-15 08:35 - 2014-03-14 18:50 - 00100168 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\libegl.dll 2014-03-15 08:35 - 2014-03-14 18:50 - 04061000 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\pdf.dll 2014-03-15 08:35 - 2014-03-14 18:50 - 00394568 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll 2014-03-15 08:35 - 2014-03-14 18:50 - 01647432 _____ () C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.154\ffmpegsumo.dll 2014-02-11 09:21 - 2014-02-11 09:21 - 00316584 _____ () C:\Program Files\Microsoft Office 15\root\office15\AppVIsvStream32.dll 2014-02-11 09:21 - 2014-02-11 09:21 - 00359592 _____ () C:\Program Files\Microsoft Office 15\root\office15\c2r32.dll ==================== Alternate Data Streams (whitelisted) ========= AlternateDataStreams: C:\Users\Owner\SkyDrive:ms-properties ==================== Safe Mode (whitelisted) =================== ==================== Disabled items from MSCONFIG ============== ==================== Faulty Device Manager Devices ============= ==================== Event log errors: ========================= Application errors: ================== Error: (03/23/2014 08:37:26 AM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3. Invalid Xml syntax. Error: (03/23/2014 08:37:26 AM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3. Invalid Xml syntax. Error: (03/23/2014 08:37:26 AM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3. Invalid Xml syntax. Error: (03/23/2014 08:37:26 AM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3. Invalid Xml syntax. Error: (03/23/2014 08:36:25 AM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3. Invalid Xml syntax. Error: (03/23/2014 08:36:25 AM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3. Invalid Xml syntax. Error: (03/23/2014 08:36:23 AM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3. Invalid Xml syntax. Error: (03/23/2014 08:36:23 AM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3. Invalid Xml syntax. Error: (03/22/2014 01:21:28 PM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3. Invalid Xml syntax. Error: (03/22/2014 01:21:28 PM) (Source: SideBySide) (User: ) Description: Activation context generation failed for "1".Error in manifest or policy file "2" on line 3. Invalid Xml syntax. System errors: ============= Error: (03/23/2014 10:00:01 AM) (Source: DCOM) (User: NT AUTHORITY) Description: machine-defaultLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable Error: (03/22/2014 10:00:01 AM) (Source: DCOM) (User: NT AUTHORITY) Description: machine-defaultLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable Error: (03/21/2014 10:04:30 PM) (Source: Microsoft-Windows-Kernel-Boot) (User: NT AUTHORITY) Description: 32212256841164592 Error: (03/21/2014 10:04:59 PM) (Source: EventLog) (User: ) Description: The previous system shutdown at 4:26:56 PM on ‎3/‎21/‎2014 was unexpected. Error: (03/21/2014 10:00:01 AM) (Source: DCOM) (User: NT AUTHORITY) Description: machine-defaultLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable Error: (03/20/2014 10:44:43 AM) (Source: disk) (User: ) Description: The driver detected a controller error on \Device\Harddisk2\DR2. Error: (03/20/2014 10:00:01 AM) (Source: DCOM) (User: NT AUTHORITY) Description: machine-defaultLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable Error: (03/19/2014 10:00:01 AM) (Source: DCOM) (User: NT AUTHORITY) Description: machine-defaultLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable Error: (03/18/2014 10:26:06 PM) (Source: disk) (User: ) Description: The driver detected a controller error on \Device\Harddisk1\DR1. Error: (03/18/2014 07:38:28 PM) (Source: Service Control Manager) (User: ) Description: The Superfetch service terminated with the following error: %%1062 Microsoft Office Sessions: ========================= Error: (03/23/2014 08:37:26 AM) (Source: SideBySide)(User: ) Description: C:\Lexmark\drivers\Pro900\drivers\win_xp2k\i386\LXECsm.dllC:\Lexmark\drivers\Pro900\drivers\win_xp2k\i386\LXECsm.dll9 Error: (03/23/2014 08:37:26 AM) (Source: SideBySide)(User: ) Description: C:\Lexmark\drivers\Pro900\drivers\win_xp2k\x64\LXECsm64.dllC:\Lexmark\drivers\Pro900\drivers\win_xp2k\x64\LXECsm64.dll9 Error: (03/23/2014 08:37:26 AM) (Source: SideBySide)(User: ) Description: C:\Windows\SysWOW64\lxecsm.dllC:\Windows\SysWOW64\lxecsm.dll9 Error: (03/23/2014 08:37:26 AM) (Source: SideBySide)(User: ) Description: C:\Windows\System32\lxecsm.dllC:\Windows\System32\lxecsm.dll9 Error: (03/23/2014 08:36:25 AM) (Source: SideBySide)(User: ) Description: C:\Lexmark\drivers\Pro900\drivers\win_xp2k\i386\LXECsm.dllC:\Lexmark\drivers\Pro900\drivers\win_xp2k\i386\LXECsm.dll9 Error: (03/23/2014 08:36:25 AM) (Source: SideBySide)(User: ) Description: C:\Lexmark\drivers\Pro900\drivers\win_xp2k\x64\LXECsm64.dllC:\Lexmark\drivers\Pro900\drivers\win_xp2k\x64\LXECsm64.dll9 Error: (03/23/2014 08:36:23 AM) (Source: SideBySide)(User: ) Description: C:\Windows\SysWOW64\lxecsm.dllC:\Windows\SysWOW64\lxecsm.dll9 Error: (03/23/2014 08:36:23 AM) (Source: SideBySide)(User: ) Description: C:\Windows\System32\lxecsm.dllC:\Windows\System32\lxecsm.dll9 Error: (03/22/2014 01:21:28 PM) (Source: SideBySide)(User: ) Description: C:\Lexmark\drivers\Pro900\drivers\win_xp2k\i386\LXECsm.dllC:\Lexmark\drivers\Pro900\drivers\win_xp2k\i386\LXECsm.dll9 Error: (03/22/2014 01:21:28 PM) (Source: SideBySide)(User: ) Description: C:\Lexmark\drivers\Pro900\drivers\win_xp2k\x64\LXECsm64.dllC:\Lexmark\drivers\Pro900\drivers\win_xp2k\x64\LXECsm64.dll9 ==================== Memory info =========================== Percentage of memory in use: 24% Total physical RAM: 8136.36 MB Available physical RAM: 6156.05 MB Total Pagefile: 9416.36 MB Available Pagefile: 7151.76 MB Total Virtual: 131072 MB Available Virtual: 131071.77 MB ==================== Drives ================================ Drive c: (Windows) (Fixed) (Total:913.07 GB) (Free:777.15 GB) NTFS ==================== MBR & Partition Table ================== ======================================================== Disk: 0 (Size: 932 GB) (Disk ID: 1E277DE3) Partition: GPT Partition Type. ==================== End Of Log ============================
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.