IRISS
-
Брой теми
41 -
Регистрация
-
Последно посещение
IRISS's Achievements
Новобранец (1/14)
0
Репутация в общността
-
Проблем с парола за онлайн-банкиране
IRISS replied to Sten's тема in Компютърна сигурност и защита от зловреден код
Провери дали ти е вкл функцията cookies на браузера, който използваш. Също така пробвай с различен браузер, защото понякога от много защити не можеш да влизаш -
В интерес на истината Касперски е на второ място с почти същите показатели http://www.comss.ru/page.php?id=1209 И още нещо- раздаваната версия е на румънски, но след като установите лицензионния ключ, може да деинсталирате без почистване на системния регистър (Windows стандартен начин: Toolbar -> Деинсталиране на програма) и инсталиране на руската версия на BitDefender Internet Security 2013. Руска версия http://www.comss.ru/page.php?id=972
-
В чест на наградата "Най-добър антивирус ха 2012" , получена от независимата лаборатория AV-Comparatives - едногодишен безплатен лиценз http://www.bitdefender.ro/media/html/yoda/
-
Auslogics Disc Defrag Professional
IRISS replied to тема in Проблеми и дискусии, свързани с програми
Здравей , понеже се интересуваш от платени програми -тук дават безплатен ключ за Raxco PerfectDisk Professional11,но не е съвместима с Windows 8 http://newest-download.blogspot.gr/2012/09/serial-number-for-raxco-perfectdisk-pro-free.html А тук - SuperEasy Live Defrag http://www.supereasy.net/en/eur/lpa/softpedia За O&O Defrag пробвай http://newest-download.blogspot.gr/2011/12/get-o-defrag-12-professional-edition.html -
Нищо не се променя. Тази програма откри някакви неща, изтрих ги, рестартирах но пак същото. Има някакъв проблем в регистрито за програмите. Някои работят, но офиса не може да се пусне
-
Имаше 6 подозрителни неща, сложих ги в карантина няма промяна. За всеки случай рестартирах, но все същото
-
11:01:11.0507 5516 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35 11:01:12.0327 5516 ============================================================ 11:01:12.0327 5516 Current date / time: 2012/11/20 11:01:12.0327 11:01:12.0327 5516 SystemInfo: 11:01:12.0327 5516 11:01:12.0327 5516 OS Version: 6.1.7601 ServicePack: 1.0 11:01:12.0328 5516 Product type: Workstation 11:01:12.0328 5516 ComputerName: EMI-THINK 11:01:12.0328 5516 UserName: Emi 11:01:12.0328 5516 Windows directory: C:\Windows 11:01:12.0328 5516 System windows directory: C:\Windows 11:01:12.0328 5516 Running under WOW64 11:01:12.0328 5516 Processor architecture: Intel x64 11:01:12.0328 5516 Number of processors: 4 11:01:12.0328 5516 Page size: 0x1000 11:01:12.0328 5516 Boot type: Normal boot 11:01:12.0328 5516 ============================================================ 11:01:15.0830 5516 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 11:01:15.0850 5516 ============================================================ 11:01:15.0850 5516 \Device\Harddisk0\DR0: 11:01:15.0869 5516 MBR partitions: 11:01:15.0869 5516 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x258000 11:01:15.0869 5516 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x258800, BlocksNum 0x38DA4FF8 11:01:15.0869 5516 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x38FFD800, BlocksNum 0x1388000 11:01:15.0869 5516 ============================================================ 11:01:15.0969 5516 C: <-> \Device\Harddisk0\DR0\Partition2 11:01:16.0061 5516 Q: <-> \Device\Harddisk0\DR0\Partition3 11:01:16.0061 5516 ============================================================ 11:01:16.0061 5516 Initialize success 11:01:16.0061 5516 ============================================================ 11:02:15.0082 4784 ============================================================ 11:02:15.0082 4784 Scan started 11:02:15.0082 4784 Mode: Manual; SigCheck; TDLFS; 11:02:15.0082 4784 ============================================================ 11:02:18.0014 4784 ================ Scan system memory ======================== 11:02:18.0014 4784 System memory - ok 11:02:18.0014 4784 ================ Scan services ============================= 11:02:18.0264 4784 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys 11:02:18.0700 4784 1394ohci - ok 11:02:18.0753 4784 [ 0FC813D822BFC06169CE4E0D00669021 ] 5U877 C:\Windows\system32\DRIVERS\5U877.sys 11:02:18.0847 4784 5U877 - ok 11:02:18.0985 4784 [ 6DBC0E92A9FC66284A36E733308B9836 ] AAMWRegFilter C:\Programs\Ashampoo® Anti-Malware\Ashampoo Anti-Malware\AAMW_Regfilter64.sys 11:02:19.0150 4784 AAMWRegFilter - ok 11:02:19.0230 4784 [ 9CDDB64FA3ACECDA2C7113A17EBADD01 ] AAMWService C:\Programs\Ashampoo® Anti-Malware\Ashampoo Anti-Malware\AAMW_Service.exe 11:02:19.0320 4784 AAMWService - ok 11:02:19.0386 4784 [ EA87DF1A0D4287DB88DEBE30E449514F ] AAMW_WSC_Service_Vista C:\Programs\Ashampoo® Anti-Malware\Ashampoo Anti-Malware\AAMW_WSC_Service_Vista.exe 11:02:19.0414 4784 AAMW_WSC_Service_Vista - ok 11:02:19.0472 4784 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:\Windows\system32\drivers\ACPI.sys 11:02:19.0518 4784 ACPI - ok 11:02:19.0567 4784 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 11:02:19.0692 4784 AcpiPmi - ok 11:02:19.0733 4784 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys 11:02:19.0819 4784 adp94xx - ok 11:02:19.0852 4784 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys 11:02:19.0921 4784 adpahci - ok 11:02:19.0944 4784 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys 11:02:19.0998 4784 adpu320 - ok 11:02:20.0029 4784 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 11:02:20.0255 4784 AeLookupSvc - ok 11:02:20.0307 4784 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:\Windows\system32\drivers\afd.sys 11:02:20.0449 4784 AFD - ok 11:02:20.0481 4784 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:\Windows\system32\drivers\agp440.sys 11:02:20.0527 4784 agp440 - ok 11:02:20.0566 4784 [ 3290D6946B5E30E70414990574883DDB ] ALG C:\Windows\System32\alg.exe 11:02:20.0665 4784 ALG - ok 11:02:20.0689 4784 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:\Windows\system32\drivers\aliide.sys 11:02:20.0728 4784 aliide - ok 11:02:20.0746 4784 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:\Windows\system32\drivers\amdide.sys 11:02:20.0806 4784 amdide - ok 11:02:20.0833 4784 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys 11:02:20.0921 4784 AmdK8 - ok 11:02:20.0938 4784 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys 11:02:21.0004 4784 AmdPPM - ok 11:02:21.0056 4784 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:\Windows\system32\drivers\amdsata.sys 11:02:21.0103 4784 amdsata - ok 11:02:21.0121 4784 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys 11:02:21.0177 4784 amdsbs - ok 11:02:21.0195 4784 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:\Windows\system32\drivers\amdxata.sys 11:02:21.0235 4784 amdxata - ok 11:02:21.0284 4784 [ AD12F5C7251BB8D575D560894E73CBBA ] Apowersoft_AudioDevice C:\Windows\system32\drivers\Apowersoft_AudioDevice.sys 11:02:21.0319 4784 Apowersoft_AudioDevice - ok 11:02:21.0404 4784 [ 59D01FA91962C9C1E9B4022B2D3B46DB ] AppHostSvc C:\Windows\system32\inetsrv\apphostsvc.dll 11:02:21.0499 4784 AppHostSvc - ok 11:02:21.0532 4784 [ 89A69C3F2F319B43379399547526D952 ] AppID C:\Windows\system32\drivers\appid.sys 11:02:21.0733 4784 AppID - ok 11:02:21.0757 4784 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:\Windows\System32\appidsvc.dll 11:02:21.0881 4784 AppIDSvc - ok 11:02:21.0947 4784 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:\Windows\System32\appinfo.dll 11:02:22.0053 4784 Appinfo - ok 11:02:22.0107 4784 Application Updater - ok 11:02:22.0163 4784 [ C484F8CEB1717C540242531DB7845C4E ] arc C:\Windows\system32\DRIVERS\arc.sys 11:02:22.0212 4784 arc - ok 11:02:22.0237 4784 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys 11:02:22.0283 4784 arcsas - ok 11:02:22.0375 4784 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe 11:02:22.0440 4784 aspnet_state - ok 11:02:22.0475 4784 [ 899324D3CF59C492AF9C5917E32C314B ] ASW3Scan C:\Programs\Ashampoo® Anti-Malware\Ashampoo Anti-Malware\AAMW_IFS64.sys 11:02:22.0496 4784 ASW3Scan - ok 11:02:22.0514 4784 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 11:02:22.0645 4784 AsyncMac - ok 11:02:22.0698 4784 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:\Windows\system32\drivers\atapi.sys 11:02:22.0736 4784 atapi - ok 11:02:22.0771 4784 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 11:02:22.0905 4784 AudioEndpointBuilder - ok 11:02:22.0924 4784 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:\Windows\System32\Audiosrv.dll 11:02:23.0032 4784 AudioSrv - ok 11:02:23.0097 4784 [ 3C8F504FA1DF6A77B173BDBD0A79E334 ] avgtp C:\Windows\system32\drivers\avgtpx64.sys 11:02:23.0135 4784 avgtp - ok 11:02:23.0160 4784 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:\Windows\System32\AxInstSV.dll 11:02:23.0278 4784 AxInstSV - ok 11:02:23.0317 4784 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys 11:02:23.0445 4784 b06bdrv - ok 11:02:23.0483 4784 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 11:02:23.0550 4784 b57nd60a - ok 11:02:23.0601 4784 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:\Windows\System32\bdesvc.dll 11:02:23.0679 4784 BDESVC - ok 11:02:23.0686 4784 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:\Windows\system32\drivers\Beep.sys 11:02:23.0819 4784 Beep - ok 11:02:23.0888 4784 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:\Windows\System32\bfe.dll 11:02:24.0054 4784 BFE - ok 11:02:24.0111 4784 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:\Windows\system32\qmgr.dll 11:02:24.0283 4784 BITS - ok 11:02:24.0315 4784 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 11:02:24.0348 4784 blbdrive - ok 11:02:24.0381 4784 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 11:02:24.0629 4784 bowser - ok 11:02:24.0650 4784 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys 11:02:24.0755 4784 BrFiltLo - ok 11:02:24.0772 4784 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys 11:02:24.0820 4784 BrFiltUp - ok 11:02:24.0874 4784 [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP C:\Windows\system32\DRIVERS\bridge.sys 11:02:25.0006 4784 BridgeMP - ok 11:02:25.0073 4784 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:\Windows\System32\browser.dll 11:02:25.0163 4784 Browser - ok 11:02:25.0183 4784 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:\Windows\System32\Drivers\Brserid.sys 11:02:25.0307 4784 Brserid - ok 11:02:25.0331 4784 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 11:02:25.0399 4784 BrSerWdm - ok 11:02:25.0420 4784 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 11:02:25.0485 4784 BrUsbMdm - ok 11:02:25.0513 4784 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 11:02:25.0557 4784 BrUsbSer - ok 11:02:25.0605 4784 [ CF98190A94F62E405C8CB255018B2315 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys 11:02:25.0751 4784 BthEnum - ok 11:02:25.0779 4784 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys 11:02:25.0836 4784 BTHMODEM - ok 11:02:25.0867 4784 [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys 11:02:25.0952 4784 BthPan - ok 11:02:26.0012 4784 [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys 11:02:26.0163 4784 BTHPORT - ok 11:02:26.0196 4784 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:\Windows\system32\bthserv.dll 11:02:26.0317 4784 bthserv - ok 11:02:26.0349 4784 [ F188B7394D81010767B6DF3178519A37 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys 11:02:26.0415 4784 BTHUSB - ok 11:02:26.0459 4784 [ D3466F77C2C49C6E393BA5FBA963A33E ] btusbflt C:\Windows\system32\drivers\btusbflt.sys 11:02:26.0495 4784 btusbflt - ok 11:02:26.0526 4784 [ A72A9101F9730DB7332714E566614E4D ] btwaudio C:\Windows\system32\drivers\btwaudio.sys 11:02:26.0564 4784 btwaudio - ok 11:02:26.0592 4784 [ 5CEEC634B617525F2B6AD29F871033F7 ] btwavdt C:\Windows\system32\drivers\btwavdt.sys 11:02:26.0805 4784 btwavdt - ok 11:02:26.0935 4784 [ 1BA00F5A3012365CB5B1A5DBABC1943C ] btwdins C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe 11:02:27.0232 4784 btwdins - ok 11:02:27.0255 4784 [ 6149301DC3F81D6F9667A3FBAC410975 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys 11:02:27.0286 4784 btwl2cap - ok 11:02:27.0302 4784 [ 2AF5604D28BEF77B7CF4B9D232FE7CD3 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys 11:02:27.0335 4784 btwrchid - ok 11:02:27.0363 4784 catchme - ok 11:02:27.0386 4784 [ B8BD2BB284668C84865658C77574381A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 11:02:27.0527 4784 cdfs - ok 11:02:27.0585 4784 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:\Windows\system32\drivers\cdrom.sys 11:02:27.0677 4784 cdrom - ok 11:02:27.0733 4784 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:\Windows\System32\certprop.dll 11:02:27.0847 4784 CertPropSvc - ok 11:02:27.0885 4784 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:\Windows\system32\DRIVERS\circlass.sys 11:02:27.0935 4784 circlass - ok 11:02:27.0964 4784 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:\Windows\system32\CLFS.sys 11:02:28.0076 4784 CLFS - ok 11:02:28.0132 4784 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 11:02:28.0299 4784 clr_optimization_v2.0.50727_32 - ok 11:02:28.0328 4784 [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 11:02:28.0367 4784 clr_optimization_v2.0.50727_64 - ok 11:02:28.0442 4784 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 11:02:28.0518 4784 clr_optimization_v4.0.30319_32 - ok 11:02:28.0537 4784 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 11:02:28.0586 4784 clr_optimization_v4.0.30319_64 - ok 11:02:28.0618 4784 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 11:02:28.0674 4784 CmBatt - ok 11:02:28.0707 4784 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:\Windows\system32\drivers\cmdide.sys 11:02:28.0745 4784 cmdide - ok 11:02:28.0802 4784 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:\Windows\system32\Drivers\cng.sys 11:02:28.0923 4784 CNG - ok 11:02:28.0952 4784 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 11:02:28.0991 4784 Compbatt - ok 11:02:29.0040 4784 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys 11:02:29.0111 4784 CompositeBus - ok 11:02:29.0141 4784 COMSysApp - ok 11:02:29.0164 4784 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys 11:02:29.0193 4784 crcdisk - ok 11:02:29.0241 4784 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:\Windows\system32\cryptsvc.dll 11:02:29.0337 4784 CryptSvc - ok 11:02:29.0431 4784 [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE 11:02:30.0529 4784 cvhsvc - ok 11:02:30.0584 4784 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:\Windows\system32\rpcss.dll 11:02:30.0713 4784 DcomLaunch - ok 11:02:30.0747 4784 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:\Windows\System32\defragsvc.dll 11:02:30.0873 4784 defragsvc - ok 11:02:30.0911 4784 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:\Windows\system32\Drivers\dfsc.sys 11:02:31.0042 4784 DfsC - ok 11:02:31.0076 4784 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:\Windows\system32\dhcpcore.dll 11:02:31.0188 4784 Dhcp - ok 11:02:31.0226 4784 [ 79B9D7643C9E3AD10B89DF8EF0A9D2FE ] DigiartyVirtualCDBus C:\Windows\system32\drivers\DigiartyVirtualCDBus.sys 11:02:31.0501 4784 DigiartyVirtualCDBus - ok 11:02:31.0536 4784 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:\Windows\system32\drivers\discache.sys 11:02:31.0675 4784 discache - ok 11:02:31.0721 4784 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:\Windows\system32\DRIVERS\disk.sys 11:02:31.0757 4784 Disk - ok 11:02:31.0786 4784 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:\Windows\System32\dnsrslvr.dll 11:02:31.0865 4784 Dnscache - ok 11:02:31.0905 4784 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:\Windows\System32\dot3svc.dll 11:02:32.0026 4784 dot3svc - ok 11:02:32.0068 4784 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:\Windows\system32\dps.dll 11:02:32.0185 4784 DPS - ok 11:02:32.0223 4784 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 11:02:32.0289 4784 drmkaud - ok 11:02:32.0357 4784 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 11:02:32.0484 4784 DXGKrnl - ok 11:02:32.0511 4784 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:\Windows\System32\eapsvc.dll 11:02:32.0628 4784 EapHost - ok 11:02:32.0724 4784 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys 11:02:32.0981 4784 ebdrv - ok 11:02:33.0027 4784 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:\Windows\System32\lsass.exe 11:02:33.0123 4784 EFS - ok 11:02:33.0184 4784 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 11:02:33.0326 4784 ehRecvr - ok 11:02:33.0346 4784 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:\Windows\ehome\ehsched.exe 11:02:33.0553 4784 ehSched - ok 11:02:33.0604 4784 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys 11:02:33.0690 4784 elxstor - ok 11:02:33.0707 4784 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:\Windows\system32\drivers\errdev.sys 11:02:33.0792 4784 ErrDev - ok 11:02:33.0832 4784 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:\Windows\system32\es.dll 11:02:33.0957 4784 EventSystem - ok 11:02:34.0038 4784 [ B56D9602DB5FE1C116B1CA5EFD8E2E50 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe 11:02:34.0327 4784 EvtEng - ok 11:02:34.0351 4784 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:\Windows\system32\drivers\exfat.sys 11:02:34.0492 4784 exfat - ok 11:02:34.0526 4784 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:\Windows\system32\drivers\fastfat.sys 11:02:34.0670 4784 fastfat - ok 11:02:34.0728 4784 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:\Windows\system32\fxssvc.exe 11:02:34.0833 4784 Fax - ok 11:02:34.0842 4784 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:\Windows\system32\DRIVERS\fdc.sys 11:02:34.0875 4784 fdc - ok 11:02:34.0896 4784 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:\Windows\system32\fdPHost.dll 11:02:35.0010 4784 fdPHost - ok 11:02:35.0035 4784 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:\Windows\system32\fdrespub.dll 11:02:35.0151 4784 FDResPub - ok 11:02:35.0189 4784 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 11:02:35.0222 4784 FileInfo - ok 11:02:35.0230 4784 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 11:02:35.0367 4784 Filetrace - ok 11:02:35.0431 4784 [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe 11:02:35.0489 4784 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - warning 11:02:35.0489 4784 FLEXnet Licensing Service - detected UnsignedFile.Multi.Generic (1) 11:02:35.0525 4784 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys 11:02:35.0566 4784 flpydisk - ok 11:02:35.0602 4784 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 11:02:35.0668 4784 FltMgr - ok 11:02:35.0714 4784 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:\Windows\system32\FntCache.dll 11:02:35.0816 4784 FontCache - ok 11:02:35.0874 4784 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 11:02:35.0917 4784 FontCache3.0.0.0 - ok 11:02:35.0940 4784 [ D43703496149971890703B4B1B723EAC ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 11:02:35.0970 4784 FsDepends - ok 11:02:36.0006 4784 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 11:02:36.0206 4784 Fs_Rec - ok 11:02:36.0267 4784 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 11:02:36.0357 4784 fvevol - ok 11:02:36.0382 4784 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys 11:02:36.0429 4784 gagp30kx - ok 11:02:36.0474 4784 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:\Windows\System32\gpsvc.dll 11:02:36.0618 4784 gpsvc - ok 11:02:36.0746 4784 [ A5AA895F4036E590FCFC1C4845DDC2DE ] GSService C:\Windows\SysWOW64\GSService.exe 11:02:37.0125 4784 GSService ( UnsignedFile.Multi.Generic ) - warning 11:02:37.0125 4784 GSService - detected UnsignedFile.Multi.Generic (1) 11:02:37.0214 4784 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 11:02:37.0241 4784 gupdate - ok 11:02:37.0261 4784 [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 11:02:37.0282 4784 gupdatem - ok 11:02:37.0307 4784 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 11:02:37.0395 4784 hcw85cir - ok 11:02:37.0418 4784 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 11:02:37.0529 4784 HdAudAddService - ok 11:02:37.0585 4784 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys 11:02:37.0645 4784 HDAudBus - ok 11:02:37.0666 4784 [ B6AC71AAA2B10848F57FC49D55A651AF ] HECIx64 C:\Windows\system32\DRIVERS\HECIx64.sys 11:02:37.0703 4784 HECIx64 - ok 11:02:37.0719 4784 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys 11:02:37.0762 4784 HidBatt - ok 11:02:37.0777 4784 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys 11:02:38.0035 4784 HidBth - ok 11:02:38.0062 4784 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys 11:02:38.0133 4784 HidIr - ok 11:02:38.0163 4784 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:\Windows\System32\hidserv.dll 11:02:38.0280 4784 hidserv - ok 11:02:38.0320 4784 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 11:02:38.0351 4784 HidUsb - ok 11:02:38.0380 4784 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:\Windows\system32\kmsvc.dll 11:02:38.0493 4784 hkmsvc - ok 11:02:38.0536 4784 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll 11:02:38.0586 4784 HomeGroupListener - ok 11:02:38.0601 4784 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 11:02:38.0657 4784 HomeGroupProvider - ok 11:02:38.0690 4784 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 11:02:38.0734 4784 HpSAMD - ok 11:02:38.0774 4784 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:\Windows\system32\drivers\HTTP.sys 11:02:38.0958 4784 HTTP - ok 11:02:38.0999 4784 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 11:02:39.0036 4784 hwpolicy - ok 11:02:39.0079 4784 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys 11:02:39.0133 4784 i8042prt - ok 11:02:39.0179 4784 [ 85977CD13FC16069CE0AF7943A811775 ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys 11:02:39.0221 4784 iaStor - ok 11:02:39.0293 4784 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 11:02:39.0343 4784 iaStorV - ok 11:02:39.0359 4784 [ 3761FAB385F1C2F51B2FAD48CFABBE9D ] IBMPMDRV C:\Windows\system32\DRIVERS\ibmpmdrv.sys 11:02:39.0393 4784 IBMPMDRV - ok 11:02:39.0428 4784 [ FC22310F3862E2C7C8722EF4778D5CC3 ] IBMPMSVC C:\Windows\system32\ibmpmsvc.exe 11:02:39.0567 4784 IBMPMSVC - ok 11:02:39.0620 4784 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 11:02:39.0758 4784 idsvc - ok 11:02:40.0053 4784 [ 0AC9E321D604BE48A0D72B69BA484BDC ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys 11:02:45.0313 4784 igfx - ok 11:02:45.0354 4784 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys 11:02:45.0396 4784 iirsp - ok 11:02:45.0456 4784 [ AB55B8A9B13130F638546881CE4425F8 ] IISADMIN C:\Windows\system32\inetsrv\inetinfo.exe 11:02:45.0614 4784 IISADMIN - ok 11:02:45.0662 4784 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:\Windows\System32\ikeext.dll 11:02:45.0799 4784 IKEEXT - ok 11:02:45.0840 4784 [ DD587A55390ED2295BCE6D36AD567DA9 ] Impcd C:\Windows\system32\DRIVERS\Impcd.sys 11:02:45.0921 4784 Impcd - ok 11:02:45.0970 4784 [ CAA8BC6737DFA3BF1A50175CFB226788 ] InputFilter_Hid_FlexDef2b C:\Windows\system32\DRIVERS\InputFilter_FlexDef2b.sys 11:02:46.0023 4784 InputFilter_Hid_FlexDef2b - ok 11:02:46.0105 4784 [ 1C11E5D258BC374E7FBD598D75E49B75 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys 11:02:46.0334 4784 IntcAzAudAddService - ok 11:02:46.0391 4784 [ 58CF58DEE26C909BD6F977B61D246295 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys 11:02:46.0477 4784 IntcDAud - ok 11:02:46.0498 4784 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:\Windows\system32\drivers\intelide.sys 11:02:46.0535 4784 intelide - ok 11:02:46.0570 4784 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 11:02:46.0635 4784 intelppm - ok 11:02:46.0664 4784 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:\Windows\system32\ipbusenum.dll 11:02:46.0779 4784 IPBusEnum - ok 11:02:46.0832 4784 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 11:02:46.0956 4784 IpFilterDriver - ok 11:02:47.0032 4784 [ 08C2957BB30058E663720C5606885653 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 11:02:47.0121 4784 iphlpsvc - ok 11:02:47.0148 4784 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 11:02:47.0217 4784 IPMIDRV - ok 11:02:47.0253 4784 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:\Windows\system32\drivers\ipnat.sys 11:02:47.0573 4784 IPNAT - ok 11:02:47.0653 4784 [ 11FE7637A49B67D9B1F895B2AD4D982F ] iprip C:\Windows\System32\iprip.dll 11:02:47.0724 4784 iprip - ok 11:02:47.0744 4784 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:\Windows\system32\drivers\irenum.sys 11:02:47.0853 4784 IRENUM - ok 11:02:47.0886 4784 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:\Windows\system32\drivers\isapnp.sys 11:02:47.0929 4784 isapnp - ok 11:02:47.0962 4784 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 11:02:48.0023 4784 iScsiPrt - ok 11:02:48.0060 4784 [ 213822072085B5BBAD9AF30AB577D817 ] IviRegMgr C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe 11:02:48.0090 4784 IviRegMgr - ok 11:02:48.0110 4784 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 11:02:48.0148 4784 kbdclass - ok 11:02:48.0189 4784 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 11:02:48.0244 4784 kbdhid - ok 11:02:48.0277 4784 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:\Windows\system32\lsass.exe 11:02:48.0305 4784 KeyIso - ok 11:02:48.0336 4784 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 11:02:48.0368 4784 KSecDD - ok 11:02:48.0415 4784 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 11:02:48.0622 4784 KSecPkg - ok 11:02:48.0673 4784 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 11:02:48.0800 4784 ksthunk - ok 11:02:48.0845 4784 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:\Windows\system32\msdtckrm.dll 11:02:48.0973 4784 KtmRm - ok 11:02:49.0074 4784 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:\Windows\System32\srvsvc.dll 11:02:49.0206 4784 LanmanServer - ok 11:02:49.0250 4784 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 11:02:49.0365 4784 LanmanWorkstation - ok 11:02:49.0434 4784 [ 70481DABD9ADAB51A6933C5893B82925 ] LENOVO.CAMMUTE C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe 11:02:49.0574 4784 LENOVO.CAMMUTE - ok 11:02:49.0606 4784 [ C88EB33793420A79F601FB5E33E2EDD9 ] LENOVO.MICMUTE C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe 11:02:49.0702 4784 LENOVO.MICMUTE - ok 11:02:49.0719 4784 [ 5ACFF5823634BC2C4EBF559C3B33E18E ] lenovo.smi C:\Windows\system32\DRIVERS\smiifx64.sys 11:02:49.0751 4784 lenovo.smi - ok 11:02:49.0758 4784 [ D0DAF6A22037F6DEE706A095C647AA41 ] LENOVO.TPKNRSVC C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe 11:02:49.0931 4784 LENOVO.TPKNRSVC - ok 11:02:49.0963 4784 [ 6F2CC57EB5836D2AC9BD37F3554D55F8 ] Lenovo.VIRTSCRLSVC C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe 11:02:50.0117 4784 Lenovo.VIRTSCRLSVC - ok 11:02:50.0175 4784 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 11:02:50.0291 4784 lltdio - ok 11:02:50.0325 4784 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:\Windows\System32\lltdsvc.dll 11:02:50.0450 4784 lltdsvc - ok 11:02:50.0481 4784 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:\Windows\System32\lmhsvc.dll 11:02:50.0578 4784 lmhosts - ok 11:02:50.0622 4784 [ 5460828F8951D310B42B442877603B8D ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe 11:02:50.0659 4784 LMS - ok 11:02:50.0705 4784 [ 5DCD36FC4A6ECBF6E7F9B3BF7E0D0F55 ] LPDSVC C:\Windows\system32\lpdsvc.dll 11:02:50.0770 4784 LPDSVC - ok 11:02:50.0796 4784 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys 11:02:50.0843 4784 LSI_FC - ok 11:02:50.0855 4784 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys 11:02:50.0901 4784 LSI_SAS - ok 11:02:50.0915 4784 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys 11:02:50.0960 4784 LSI_SAS2 - ok 11:02:50.0986 4784 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys 11:02:51.0033 4784 LSI_SCSI - ok 11:02:51.0058 4784 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:\Windows\system32\drivers\luafv.sys 11:02:51.0208 4784 luafv - ok 11:02:51.0298 4784 Magic Desktop Server - ok 11:02:51.0340 4784 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 11:02:51.0392 4784 Mcx2Svc - ok 11:02:51.0426 4784 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:\Windows\system32\DRIVERS\megasas.sys 11:02:51.0466 4784 megasas - ok 11:02:51.0500 4784 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys 11:02:51.0562 4784 MegaSR - ok 11:02:51.0591 4784 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:\Windows\system32\mmcss.dll 11:02:51.0708 4784 MMCSS - ok 11:02:51.0717 4784 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:\Windows\system32\drivers\modem.sys 11:02:51.0866 4784 Modem - ok 11:02:51.0913 4784 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:\Windows\system32\DRIVERS\monitor.sys 11:02:51.0977 4784 monitor - ok 11:02:52.0023 4784 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 11:02:52.0072 4784 mouclass - ok 11:02:52.0116 4784 [ 7BE9D753373D779192410D2859DD6BFB ] MouFilter_Mou_FlexDef4 C:\Windows\system32\DRIVERS\MouFilter_FlexDef4.sys 11:02:52.0160 4784 MouFilter_Mou_FlexDef4 - ok 11:02:52.0195 4784 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 11:02:52.0434 4784 mouhid - ok 11:02:52.0485 4784 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 11:02:52.0552 4784 mountmgr - ok 11:02:52.0655 4784 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 11:02:52.0847 4784 MozillaMaintenance - ok 11:02:52.0883 4784 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:\Windows\system32\drivers\mpio.sys 11:02:52.0956 4784 mpio - ok 11:02:53.0012 4784 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 11:02:53.0139 4784 mpsdrv - ok 11:02:53.0286 4784 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:\Windows\system32\mpssvc.dll 11:02:53.0471 4784 MpsSvc - ok 11:02:53.0518 4784 [ CD22D2563039DDA6793F7624719363A7 ] MQAC C:\Windows\system32\drivers\mqac.sys 11:02:53.0608 4784 MQAC - ok 11:02:53.0666 4784 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 11:02:53.0734 4784 MRxDAV - ok 11:02:53.0772 4784 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 11:02:54.0017 4784 mrxsmb - ok 11:02:54.0045 4784 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 11:02:54.0123 4784 mrxsmb10 - ok 11:02:54.0148 4784 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 11:02:54.0205 4784 mrxsmb20 - ok 11:02:54.0235 4784 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:\Windows\system32\drivers\msahci.sys 11:02:54.0274 4784 msahci - ok 11:02:54.0319 4784 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:\Windows\system32\drivers\msdsm.sys 11:02:54.0407 4784 msdsm - ok 11:02:54.0444 4784 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:\Windows\System32\msdtc.exe 11:02:54.0642 4784 MSDTC - ok 11:02:54.0708 4784 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:\Windows\system32\drivers\Msfs.sys 11:02:54.0835 4784 Msfs - ok 11:02:54.0860 4784 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 11:02:54.0987 4784 mshidkmdf - ok 11:02:55.0023 4784 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 11:02:55.0075 4784 msisadrv - ok 11:02:55.0132 4784 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 11:02:55.0265 4784 MSiSCSI - ok 11:02:55.0272 4784 msiserver - ok 11:02:55.0317 4784 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 11:02:55.0443 4784 MSKSSRV - ok 11:02:55.0495 4784 [ FAAEAEF99E53561BEEE58F946CA56F0D ] MSMQ C:\Windows\system32\mqsvc.exe 11:02:55.0668 4784 MSMQ - ok 11:02:55.0718 4784 [ 59ED174FD4314B0218DC91F9BFA6CD3D ] MSMQTriggers C:\Windows\system32\mqtgsvc.exe 11:02:55.0915 4784 MSMQTriggers - ok 11:02:55.0938 4784 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 11:02:56.0058 4784 MSPCLOCK - ok 11:02:56.0089 4784 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 11:02:56.0208 4784 MSPQM - ok 11:02:56.0254 4784 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 11:02:56.0325 4784 MsRPC - ok 11:02:56.0364 4784 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys 11:02:56.0401 4784 mssmbios - ok 11:02:56.0409 4784 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 11:02:56.0537 4784 MSTEE - ok 11:02:56.0564 4784 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys 11:02:56.0632 4784 MTConfig - ok 11:02:56.0648 4784 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:\Windows\system32\Drivers\mup.sys 11:02:56.0704 4784 Mup - ok 11:02:56.0734 4784 [ A9BC2302FBDF52C8AF4E2FC966288D21 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe 11:02:56.0883 4784 MyWiFiDHCPDNS - ok 11:02:56.0970 4784 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:\Windows\system32\qagentRT.dll 11:02:57.0094 4784 napagent - ok 11:02:57.0146 4784 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 11:02:57.0232 4784 NativeWifiP - ok 11:02:57.0267 4784 [ 37BFE7CE56133F2E8E90EF68157D73C8 ] Nbdrv C:\Windows\system32\DRIVERS\nbdrv.sys 11:02:57.0305 4784 Nbdrv - ok 11:02:57.0354 4784 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:\Windows\system32\drivers\ndis.sys 11:02:57.0453 4784 NDIS - ok 11:02:57.0494 4784 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 11:02:57.0624 4784 NdisCap - ok 11:02:57.0656 4784 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 11:02:57.0943 4784 NdisTapi - ok 11:02:57.0979 4784 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 11:02:58.0130 4784 Ndisuio - ok 11:02:58.0164 4784 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 11:02:58.0297 4784 NdisWan - ok 11:02:58.0349 4784 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 11:02:58.0444 4784 NDProxy - ok 11:02:58.0507 4784 [ BC4A5463CDAB54967671F500D5F2C79D ] NetBalancer Windows Service C:\Programs\NetBalancerPro\NetBalancer\SeriousBit.NetBalancer.Service.exe 11:02:58.0543 4784 NetBalancer Windows Service ( UnsignedFile.Multi.Generic ) - warning 11:02:58.0543 4784 NetBalancer Windows Service - detected UnsignedFile.Multi.Generic (1) 11:02:58.0583 4784 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 11:02:58.0700 4784 NetBIOS - ok 11:02:58.0745 4784 [ 09594D1089C523423B32A4229263F068 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 11:02:58.0889 4784 NetBT - ok 11:02:58.0911 4784 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:\Windows\system32\lsass.exe 11:02:58.0940 4784 Netlogon - ok 11:02:58.0971 4784 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:\Windows\System32\netman.dll 11:02:59.0078 4784 Netman - ok 11:02:59.0141 4784 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 11:02:59.0242 4784 NetMsmqActivator - ok 11:02:59.0249 4784 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 11:02:59.0273 4784 NetPipeActivator - ok 11:02:59.0300 4784 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:\Windows\System32\netprofm.dll 11:02:59.0427 4784 netprofm - ok 11:02:59.0466 4784 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 11:02:59.0489 4784 NetTcpActivator - ok 11:02:59.0496 4784 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 11:02:59.0521 4784 NetTcpPortSharing - ok 11:02:59.0717 4784 [ 24F64343F14A119308456E1CA7507B26 ] NETw5s64 C:\Windows\system32\DRIVERS\NETw5s64.sys 11:03:00.0209 4784 NETw5s64 - ok 11:03:00.0373 4784 [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys 11:03:00.0719 4784 netw5v64 - ok 11:03:00.0757 4784 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys 11:03:00.0799 4784 nfrd960 - ok 11:03:00.0857 4784 [ 8AD77806D336673F270DB31645267293 ] NlaSvc C:\Windows\System32\nlasvc.dll 11:03:00.0908 4784 NlaSvc - ok 11:03:00.0930 4784 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:\Windows\system32\drivers\Npfs.sys 11:03:01.0054 4784 Npfs - ok 11:03:01.0089 4784 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:\Windows\system32\nsisvc.dll 11:03:01.0185 4784 nsi - ok 11:03:01.0202 4784 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 11:03:01.0326 4784 nsiproxy - ok 11:03:01.0402 4784 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 11:03:01.0582 4784 Ntfs - ok 11:03:01.0602 4784 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:\Windows\system32\drivers\Null.sys 11:03:01.0706 4784 Null - ok 11:03:01.0748 4784 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:\Windows\system32\drivers\nvraid.sys 11:03:01.0798 4784 nvraid - ok 11:03:01.0811 4784 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:\Windows\system32\drivers\nvstor.sys 11:03:01.0864 4784 nvstor - ok 11:03:01.0881 4784 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 11:03:01.0932 4784 nv_agp - ok 11:03:01.0949 4784 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 11:03:02.0005 4784 ohci1394 - ok 11:03:02.0043 4784 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 11:03:02.0275 4784 ose - ok 11:03:02.0421 4784 [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 11:03:02.0734 4784 osppsvc - ok 11:03:02.0792 4784 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 11:03:02.0886 4784 p2pimsvc - ok 11:03:02.0943 4784 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:\Windows\system32\p2psvc.dll 11:03:03.0011 4784 p2psvc - ok 11:03:03.0046 4784 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:\Windows\system32\DRIVERS\parport.sys 11:03:03.0116 4784 Parport - ok 11:03:03.0174 4784 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:\Windows\system32\drivers\partmgr.sys 11:03:03.0254 4784 partmgr - ok 11:03:03.0286 4784 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:\Windows\System32\pcasvc.dll 11:03:03.0351 4784 PcaSvc - ok 11:03:03.0453 4784 [ 7317A0B550F7AC0223B7070897670476 ] PCDSRVC{127174DC-C366ED8B-06020101}_0 c:\program files\pc-doctor\pcdsrvc_x64.pkms 11:03:03.0502 4784 PCDSRVC{127174DC-C366ED8B-06020101}_0 - ok 11:03:03.0528 4784 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:\Windows\system32\drivers\pci.sys 11:03:03.0571 4784 pci - ok 11:03:03.0610 4784 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:\Windows\system32\drivers\pciide.sys 11:03:03.0647 4784 pciide - ok 11:03:03.0670 4784 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys 11:03:03.0731 4784 pcmcia - ok 11:03:03.0748 4784 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:\Windows\system32\drivers\pcw.sys 11:03:03.0780 4784 pcw - ok 11:03:03.0827 4784 [ 2BC3C10EF737EEE91F5C995C55F95EF2 ] PCWinSoft C:\Windows\system32\DRIVERS\scrcamnetdriver_x64.sys 11:03:03.0882 4784 PCWinSoft - ok 11:03:03.0907 4784 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:\Windows\system32\drivers\peauth.sys 11:03:04.0081 4784 PEAUTH - ok 11:03:04.0166 4784 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:\Windows\SysWow64\perfhost.exe 11:03:04.0276 4784 PerfHost - ok 11:03:04.0356 4784 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:\Windows\system32\pla.dll 11:03:04.0514 4784 pla - ok 11:03:04.0561 4784 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 11:03:04.0645 4784 PlugPlay - ok 11:03:04.0669 4784 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 11:03:04.0714 4784 PNRPAutoReg - ok 11:03:04.0743 4784 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 11:03:04.0779 4784 PNRPsvc - ok 11:03:04.0830 4784 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 11:03:04.0958 4784 PolicyAgent - ok 11:03:05.0021 4784 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:\Windows\system32\umpo.dll 11:03:05.0152 4784 Power - ok 11:03:05.0207 4784 [ BAC02775CF629E5FE80BEA952F4448EF ] Power Manager DBC Service C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE 11:03:05.0994 4784 Power Manager DBC Service - ok 11:03:06.0049 4784 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 11:03:06.0160 4784 PptpMiniport - ok 11:03:06.0190 4784 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:\Windows\system32\DRIVERS\processr.sys 11:03:06.0252 4784 Processor - ok 11:03:06.0297 4784 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:\Windows\system32\profsvc.dll 11:03:06.0352 4784 ProfSvc - ok 11:03:06.0361 4784 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe 11:03:06.0393 4784 ProtectedStorage - ok 11:03:06.0419 4784 [ 515A7C5A0886FCC60901916785EFD549 ] psadd C:\Windows\system32\DRIVERS\psadd.sys 11:03:06.0455 4784 psadd - ok 11:03:06.0494 4784 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:\Windows\system32\DRIVERS\pacer.sys 11:03:06.0607 4784 Psched - ok 11:03:06.0652 4784 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys 11:03:06.0823 4784 ql2300 - ok 11:03:06.0859 4784 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys 11:03:06.0920 4784 ql40xx - ok 11:03:06.0948 4784 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:\Windows\system32\qwave.dll 11:03:07.0017 4784 QWAVE - ok 11:03:07.0043 4784 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 11:03:07.0126 4784 QWAVEdrv - ok 11:03:07.0154 4784 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 11:03:07.0270 4784 RasAcd - ok 11:03:07.0320 4784 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 11:03:07.0445 4784 RasAgileVpn - ok 11:03:07.0480 4784 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:\Windows\System32\rasauto.dll 11:03:07.0596 4784 RasAuto - ok 11:03:07.0634 4784 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 11:03:07.0762 4784 Rasl2tp - ok 11:03:07.0812 4784 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:\Windows\System32\rasmans.dll 11:03:07.0917 4784 RasMan - ok 11:03:07.0928 4784 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 11:03:08.0057 4784 RasPppoe - ok 11:03:08.0083 4784 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 11:03:08.0211 4784 RasSstp - ok 11:03:08.0247 4784 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 11:03:08.0373 4784 rdbss - ok 11:03:08.0397 4784 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys 11:03:08.0467 4784 rdpbus - ok 11:03:08.0496 4784 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 11:03:08.0618 4784 RDPCDD - ok 11:03:08.0629 4784 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 11:03:08.0740 4784 RDPENCDD - ok 11:03:08.0751 4784 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 11:03:08.0856 4784 RDPREFMP - ok 11:03:08.0938 4784 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys 11:03:09.0195 4784 RdpVideoMiniport - ok 11:03:09.0227 4784 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 11:03:09.0358 4784 RDPWD - ok 11:03:09.0401 4784 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 11:03:09.0460 4784 rdyboost - ok 11:03:09.0512 4784 [ 0AA473966357C4A41B5EB19649EB6E5E ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe 11:03:09.0712 4784 RegSrvc - ok 11:03:09.0775 4784 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:\Windows\System32\mprdim.dll 11:03:09.0898 4784 RemoteAccess - ok 11:03:09.0934 4784 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:\Windows\system32\regsvc.dll 11:03:10.0051 4784 RemoteRegistry - ok 11:03:10.0099 4784 [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys 11:03:10.0160 4784 RFCOMM - ok 11:03:10.0195 4784 [ CAF88D6573D21CD2AA27001DDBFDC74D ] RMCAST C:\Windows\system32\DRIVERS\RMCAST.sys 11:03:10.0312 4784 RMCAST - ok 11:03:10.0324 4784 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 11:03:10.0439 4784 RpcEptMapper - ok 11:03:10.0473 4784 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:\Windows\system32\locator.exe 11:03:10.0540 4784 RpcLocator - ok 11:03:10.0585 4784 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:\Windows\system32\rpcss.dll 11:03:10.0694 4784 RpcSs - ok 11:03:10.0719 4784 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 11:03:11.0043 4784 rspndr - ok 11:03:11.0086 4784 [ 3CEEE53BBF8BA284FF44585CEC0162FE ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys 11:03:11.0123 4784 RSUSBSTOR - ok 11:03:11.0164 4784 [ 24452CCCC3808B5AB0341A384BB72200 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe 11:03:11.0300 4784 RtkAudioService - ok 11:03:11.0399 4784 [ EE082E06A82FF630351D1E0EBBD3D8D0 ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys 11:03:11.0484 4784 RTL8167 - ok 11:03:11.0495 4784 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:\Windows\system32\lsass.exe 11:03:11.0522 4784 SamSs - ok 11:03:11.0564 4784 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 11:03:11.0614 4784 sbp2port - ok 11:03:11.0641 4784 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:\Windows\System32\SCardSvr.dll 11:03:11.0768 4784 SCardSvr - ok 11:03:11.0805 4784 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 11:03:11.0940 4784 scfilter - ok 11:03:12.0004 4784 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:\Windows\system32\schedsvc.dll 11:03:12.0156 4784 Schedule - ok 11:03:12.0193 4784 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:\Windows\System32\certprop.dll 11:03:12.0286 4784 SCPolicySvc - ok 11:03:12.0324 4784 [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus C:\Windows\system32\drivers\sdbus.sys 11:03:12.0366 4784 sdbus - ok 11:03:12.0399 4784 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:\Windows\System32\SDRSVC.dll 11:03:12.0490 4784 SDRSVC - ok 11:03:12.0519 4784 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:\Windows\system32\drivers\secdrv.sys 11:03:12.0629 4784 secdrv - ok 11:03:12.0669 4784 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:\Windows\system32\seclogon.dll 11:03:12.0781 4784 seclogon - ok 11:03:12.0820 4784 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:\Windows\system32\sens.dll 11:03:12.0932 4784 SENS - ok 11:03:12.0955 4784 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:\Windows\system32\sensrsvc.dll 11:03:13.0021 4784 SensrSvc - ok 11:03:13.0032 4784 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:\Windows\system32\DRIVERS\serenum.sys 11:03:13.0073 4784 Serenum - ok 11:03:13.0088 4784 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:\Windows\system32\DRIVERS\serial.sys 11:03:13.0151 4784 Serial - ok 11:03:13.0194 4784 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys 11:03:13.0266 4784 sermouse - ok 11:03:13.0316 4784 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:\Windows\system32\sessenv.dll 11:03:13.0427 4784 SessionEnv - ok 11:03:13.0469 4784 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 11:03:13.0550 4784 sffdisk - ok 11:03:13.0566 4784 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 11:03:13.0621 4784 sffp_mmc - ok 11:03:13.0645 4784 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 11:03:13.0703 4784 sffp_sd - ok 11:03:13.0737 4784 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys 11:03:13.0776 4784 sfloppy - ok 11:03:13.0823 4784 [ C6CC9297BD53E5229653303E556AA539 ] Sftfs C:\Windows\system32\DRIVERS\Sftfslh.sys 11:03:13.0944 4784 Sftfs - ok 11:03:14.0009 4784 [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe 11:03:15.0185 4784 sftlist - ok 11:03:15.0209 4784 [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay C:\Windows\system32\DRIVERS\Sftplaylh.sys 11:03:15.0430 4784 Sftplay - ok 11:03:15.0461 4784 [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir C:\Windows\system32\DRIVERS\Sftredirlh.sys 11:03:15.0508 4784 Sftredir - ok 11:03:15.0524 4784 [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol C:\Windows\system32\DRIVERS\Sftvollh.sys 11:03:15.0558 4784 Sftvol - ok 11:03:15.0577 4784 [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe 11:03:16.0498 4784 sftvsa - ok 11:03:16.0547 4784 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:\Windows\System32\ipnathlp.dll 11:03:16.0665 4784 SharedAccess - ok 11:03:16.0712 4784 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll 11:03:16.0841 4784 ShellHWDetection - ok 11:03:16.0875 4784 [ 380B52126E62C6C2D3C8BA805AADFDC7 ] Shockprf C:\Windows\system32\DRIVERS\Apsx64.sys 11:03:16.0921 4784 Shockprf - ok 11:03:16.0965 4784 [ E9E830D540EDEDED650F906628468548 ] simptcp C:\Windows\System32\tcpsvcs.exe 11:03:17.0115 4784 simptcp - ok 11:03:17.0182 4784 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys 11:03:17.0223 4784 SiSRaid2 - ok 11:03:17.0235 4784 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys 11:03:17.0279 4784 SiSRaid4 - ok 11:03:17.0453 4784 [ 388AE59FE75F1B959DFA0900923C61BB ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe 11:03:18.0837 4784 Skype C2C Service - ok 11:03:18.0917 4784 [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 11:03:18.0948 4784 SkypeUpdate - ok 11:03:18.0975 4784 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:\Windows\system32\DRIVERS\smb.sys 11:03:19.0104 4784 Smb - ok 11:03:19.0146 4784 [ C5B1A19B14F19B08AE72FCB20A3075B6 ] smihlp C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys 11:03:19.0180 4784 smihlp - ok 11:03:19.0225 4784 [ CA62AE004E98374BF7F082CD765EEA02 ] SNMP C:\Windows\System32\snmp.exe 11:03:19.0406 4784 SNMP - ok 11:03:19.0449 4784 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:\Windows\System32\snmptrap.exe 11:03:19.0600 4784 SNMPTRAP - ok 11:03:19.0659 4784 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:\Windows\system32\drivers\spldr.sys 11:03:19.0686 4784 spldr - ok 11:03:19.0726 4784 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:\Windows\System32\spoolsv.exe 11:03:19.0844 4784 Spooler - ok 11:03:19.0954 4784 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:\Windows\system32\sppsvc.exe 11:03:20.0197 4784 sppsvc - ok 11:03:20.0236 4784 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:\Windows\system32\sppuinotify.dll 11:03:20.0354 4784 sppuinotify - ok 11:03:20.0398 4784 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:\Windows\system32\DRIVERS\srv.sys 11:03:20.0511 4784 srv - ok 11:03:20.0532 4784 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 11:03:20.0619 4784 srv2 - ok 11:03:20.0664 4784 [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS 11:03:20.0727 4784 SrvHsfHDA - ok 11:03:20.0777 4784 [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS 11:03:20.0897 4784 SrvHsfV92 - ok 11:03:20.0939 4784 [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS 11:03:21.0038 4784 SrvHsfWinac - ok 11:03:21.0070 4784 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 11:03:21.0136 4784 srvnet - ok 11:03:21.0187 4784 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 11:03:21.0313 4784 SSDPSRV - ok 11:03:21.0367 4784 [ 0211AB46B73A2623B86C1CFCB30579AB ] SSPORT C:\Windows\system32\Drivers\SSPORT.sys 11:03:21.0403 4784 SSPORT - ok 11:03:21.0419 4784 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:\Windows\system32\sstpsvc.dll 11:03:21.0518 4784 SstpSvc - ok 11:03:21.0544 4784 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys 11:03:21.0583 4784 stexstor - ok 11:03:21.0629 4784 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:\Windows\System32\wiaservc.dll 11:03:21.0713 4784 stisvc - ok 11:03:21.0763 4784 [ 7F7958C5B40F9441D1E8D704310D46FF ] SUService c:\Program Files (x86)\Lenovo\System Update\SUService.exe 11:03:21.0772 4784 SUService ( UnsignedFile.Multi.Generic ) - warning 11:03:21.0772 4784 SUService - detected UnsignedFile.Multi.Generic (1) 11:03:21.0803 4784 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:\Windows\system32\drivers\swenum.sys 11:03:21.0841 4784 swenum - ok 11:03:21.0961 4784 [ F577910A133A592234EBAAD3F3AFA258 ] SwitchBoard C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe 11:03:22.0530 4784 SwitchBoard ( UnsignedFile.Multi.Generic ) - warning 11:03:22.0530 4784 SwitchBoard - detected UnsignedFile.Multi.Generic (1) 11:03:22.0573 4784 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:\Windows\System32\swprv.dll 11:03:22.0701 4784 swprv - ok 11:03:22.0751 4784 [ 868DFB220A18312A12CEF01BA9AC069B ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys 11:03:22.0813 4784 SynTP - ok 11:03:22.0886 4784 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:\Windows\system32\sysmain.dll 11:03:23.0006 4784 SysMain - ok 11:03:23.0046 4784 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll 11:03:23.0110 4784 TabletInputService - ok 11:03:23.0145 4784 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:\Windows\System32\tapisrv.dll 11:03:23.0267 4784 TapiSrv - ok 11:03:23.0300 4784 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:\Windows\System32\tbssvc.dll 11:03:23.0399 4784 TBS - ok 11:03:23.0485 4784 [ 37608401DFDB388CAF66917F6B2D6FB0 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 11:03:23.0706 4784 Tcpip - ok 11:03:23.0769 4784 [ 37608401DFDB388CAF66917F6B2D6FB0 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 11:03:23.0871 4784 TCPIP6 - ok 11:03:23.0891 4784 [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 11:03:23.0933 4784 tcpipreg - ok 11:03:23.0963 4784 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 11:03:24.0058 4784 TDPIPE - ok 11:03:24.0093 4784 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 11:03:24.0147 4784 TDTCP - ok 11:03:24.0186 4784 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 11:03:24.0300 4784 tdx - ok 11:03:24.0354 4784 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:\Windows\system32\drivers\termdd.sys 11:03:24.0385 4784 TermDD - ok 11:03:24.0416 4784 [ 2E648163254233755035B46DD7B89123 ] TermService C:\Windows\System32\termsrv.dll 11:03:24.0534 4784 TermService - ok 11:03:24.0568 4784 [ 9201BE2BAB8A9FF8E20D8439AE3BB04D ] Themes C:\Windows\system32\themeservice.dll 11:03:24.0595 4784 Themes ( UnsignedFile.Multi.Generic ) - warning 11:03:24.0595 4784 Themes - detected UnsignedFile.Multi.Generic (1) 11:03:24.0634 4784 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:\Windows\system32\mmcss.dll 11:03:24.0733 4784 THREADORDER - ok 11:03:24.0769 4784 [ 519CB7D7F697F4BA47DE05845C20F158 ] TlntSvr C:\Windows\System32\tlntsvr.exe 11:03:24.0982 4784 TlntSvr - ok 11:03:24.0990 4784 [ 5523C729F1ED31B63C88490AF3D220FA ] TPDIGIMN C:\Windows\system32\DRIVERS\ApsHM64.sys 11:03:25.0024 4784 TPDIGIMN - ok 11:03:25.0054 4784 [ ECB098A3404ACB8A05F0673DC086BB43 ] TPHDEXLGSVC C:\Windows\system32\TPHDEXLG64.exe 11:03:25.0199 4784 TPHDEXLGSVC - ok 11:03:25.0239 4784 [ 2CF225E19490F499528B926263FE4554 ] TPHKSVC C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe 11:03:25.0358 4784 TPHKSVC - ok 11:03:25.0389 4784 [ DBCC20C02E8A3E43B03C304A4E40A84F ] TPM C:\Windows\system32\drivers\tpm.sys 11:03:25.0444 4784 TPM - ok 11:03:25.0474 4784 [ 2C067E01D6BBCCC88B233B868E210907 ] TPPWRIF C:\Windows\system32\drivers\Tppwr64v.sys 11:03:25.0509 4784 TPPWRIF - ok 11:03:25.0533 4784 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:\Windows\System32\trkwks.dll 11:03:25.0656 4784 TrkWks - ok 11:03:25.0713 4784 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 11:03:25.0933 4784 TrustedInstaller - ok 11:03:25.0976 4784 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 11:03:26.0099 4784 tssecsrv - ok 11:03:26.0134 4784 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 11:03:26.0286 4784 TsUsbFlt - ok 11:03:26.0329 4784 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 11:03:26.0473 4784 tunnel - ok 11:03:26.0494 4784 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys 11:03:26.0537 4784 uagp35 - ok 11:03:26.0578 4784 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 11:03:26.0705 4784 udfs - ok 11:03:26.0739 4784 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:\Windows\system32\UI0Detect.exe 11:03:26.0908 4784 UI0Detect - ok 11:03:26.0938 4784 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 11:03:26.0979 4784 uliagpkx - ok 11:03:27.0026 4784 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:\Windows\system32\drivers\umbus.sys 11:03:27.0093 4784 umbus - ok 11:03:27.0133 4784 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:\Windows\system32\DRIVERS\umpass.sys 11:03:27.0189 4784 UmPass - ok 11:03:27.0284 4784 [ 9E89C2D6945389270DE067CE51FF7425 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe 11:03:27.0426 4784 UNS - ok 11:03:27.0455 4784 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:\Windows\System32\upnphost.dll 11:03:27.0583 4784 upnphost - ok 11:03:27.0618 4784 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 11:03:27.0695 4784 usbccgp - ok 11:03:27.0727 4784 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:\Windows\system32\drivers\usbcir.sys 11:03:27.0782 4784 usbcir - ok 11:03:27.0816 4784 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:\Windows\system32\drivers\usbehci.sys 11:03:27.0872 4784 usbehci - ok 11:03:27.0902 4784 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 11:03:27.0997 4784 usbhub - ok 11:03:28.0023 4784 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:\Windows\system32\drivers\usbohci.sys 11:03:28.0062 4784 usbohci - ok 11:03:28.0085 4784 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 11:03:28.0142 4784 usbprint - ok 11:03:28.0175 4784 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 11:03:28.0261 4784 USBSTOR - ok 11:03:28.0277 4784 [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 11:03:28.0334 4784 usbuhci - ok 11:03:28.0362 4784 [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys 11:03:28.0425 4784 usbvideo - ok 11:03:28.0454 4784 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:\Windows\System32\uxsms.dll 11:03:28.0554 4784 UxSms - ok 11:03:28.0570 4784 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:\Windows\system32\lsass.exe 11:03:28.0597 4784 VaultSvc - ok 11:03:28.0640 4784 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 11:03:28.0686 4784 vdrvroot - ok 11:03:28.0738 4784 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:\Windows\System32\vds.exe 11:03:28.0897 4784 vds - ok 11:03:28.0918 4784 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 11:03:28.0967 4784 vga - ok 11:03:28.0982 4784 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:\Windows\System32\drivers\vga.sys 11:03:29.0111 4784 VgaSave - ok 11:03:29.0158 4784 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 11:03:29.0208 4784 vhdmp - ok 11:03:29.0226 4784 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:\Windows\system32\drivers\viaide.sys 11:03:29.0263 4784 viaide - ok 11:03:29.0275 4784 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:\Windows\system32\drivers\volmgr.sys 11:03:29.0319 4784 volmgr - ok 11:03:29.0354 4784 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 11:03:29.0442 4784 volmgrx - ok 11:03:29.0465 4784 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:\Windows\system32\drivers\volsnap.sys 11:03:29.0544 4784 volsnap - ok 11:03:29.0577 4784 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys 11:03:29.0629 4784 vsmraid - ok 11:03:29.0703 4784 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:\Windows\system32\vssvc.exe 11:03:29.0893 4784 VSS - ok 11:03:29.0960 4784 [ F98A970D02B35870C8013B43736F7904 ] vToolbarUpdater12.1.3 C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.1.3\ToolbarUpdater.exe 11:03:30.0693 4784 vToolbarUpdater12.1.3 - ok 11:03:30.0733 4784 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 11:03:30.0813 4784 vwifibus - ok 11:03:30.0845 4784 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 11:03:30.0902 4784 vwififlt - ok 11:03:30.0923 4784 [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys 11:03:30.0977 4784 vwifimp - ok 11:03:31.0016 4784 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:\Windows\system32\w32time.dll 11:03:31.0125 4784 W32Time - ok 11:03:31.0198 4784 [ B32009DB1972E7F2C227499289C4384A ] W3SVC C:\Windows\system32\inetsrv\iisw3adm.dll 11:03:31.0260 4784 W3SVC - ok 11:03:31.0295 4784 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys 11:03:31.0362 4784 WacomPen - ok 11:03:31.0407 4784 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 11:03:31.0503 4784 WANARP - ok 11:03:31.0510 4784 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 11:03:31.0604 4784 Wanarpv6 - ok 11:03:31.0664 4784 [ B32009DB1972E7F2C227499289C4384A ] WAS C:\Windows\system32\inetsrv\iisw3adm.dll 11:03:31.0703 4784 WAS - ok 11:03:31.0777 4784 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe 11:03:31.0888 4784 WatAdminSvc - ok 11:03:31.0943 4784 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:\Windows\system32\wbengine.exe 11:03:32.0063 4784 wbengine - ok 11:03:32.0105 4784 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 11:03:32.0153 4784 WbioSrvc - ok 11:03:32.0190 4784 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:\Windows\System32\wcncsvc.dll 11:03:32.0264 4784 wcncsvc - ok 11:03:32.0293 4784 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 11:03:32.0361 4784 WcsPlugInService - ok 11:03:32.0388 4784 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:\Windows\system32\DRIVERS\wd.sys 11:03:32.0428 4784 Wd - ok 11:03:32.0495 4784 [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 11:03:32.0617 4784 Wdf01000 - ok 11:03:32.0633 4784 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:\Windows\system32\wdi.dll 11:03:32.0755 4784 WdiServiceHost - ok 11:03:32.0763 4784 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:\Windows\system32\wdi.dll 11:03:32.0811 4784 WdiSystemHost - ok 11:03:32.0834 4784 [ 5B34E5938B9E76798977725E3F7847C4 ] wdkmd C:\Windows\system32\DRIVERS\WDKMD.sys 11:03:32.0871 4784 wdkmd - ok 11:03:32.0909 4784 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:\Windows\System32\webclnt.dll 11:03:32.0980 4784 WebClient - ok 11:03:33.0016 4784 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:\Windows\system32\wecsvc.dll 11:03:33.0143 4784 Wecsvc - ok 11:03:33.0172 4784 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:\Windows\System32\wercplsupport.dll 11:03:33.0290 4784 wercplsupport - ok 11:03:33.0319 4784 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:\Windows\System32\WerSvc.dll 11:03:33.0437 4784 WerSvc - ok 11:03:33.0483 4784 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 11:03:33.0592 4784 WfpLwf - ok 11:03:33.0603 4784 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys 11:03:33.0642 4784 WIMMount - ok 11:03:33.0671 4784 WinDefend - ok 11:03:33.0685 4784 WinHttpAutoProxySvc - ok 11:03:33.0725 4784 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 11:03:33.0846 4784 Winmgmt - ok 11:03:33.0924 4784 [ BCB1310604AA415C4508708975B3931E ] WinRM C:\Windows\system32\WsmSvc.dll 11:03:34.0106 4784 WinRM - ok 11:03:34.0163 4784 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:\Windows\system32\DRIVERS\WinUSB.sys 11:03:34.0215 4784 WinUsb - ok 11:03:34.0249 4784 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:\Windows\System32\wlansvc.dll 11:03:34.0321 4784 Wlansvc - ok 11:03:34.0361 4784 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe 11:03:34.0412 4784 wlcrasvc - ok 11:03:34.0502 4784 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 11:03:34.0643 4784 wlidsvc - ok 11:03:34.0685 4784 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys 11:03:34.0728 4784 WmiAcpi - ok 11:03:34.0760 4784 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 11:03:34.0956 4784 wmiApSrv - ok 11:03:34.0986 4784 WMPNetworkSvc - ok 11:03:34.0995 4784 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:\Windows\System32\wpcsvc.dll 11:03:35.0042 4784 WPCSvc - ok 11:03:35.0075 4784 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 11:03:35.0126 4784 WPDBusEnum - ok 11:03:35.0148 4784 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 11:03:35.0280 4784 ws2ifsl - ok 11:03:35.0305 4784 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:\Windows\system32\wscsvc.dll 11:03:35.0366 4784 wscsvc - ok 11:03:35.0372 4784 WSearch - ok 11:03:35.0476 4784 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:\Windows\system32\wuaueng.dll 11:03:35.0629 4784 wuauserv - ok 11:03:35.0665 4784 [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 11:03:35.0745 4784 WudfPf - ok 11:03:35.0773 4784 [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 11:03:35.0829 4784 WUDFRd - ok 11:03:35.0871 4784 [ B20F051B03A966392364C83F009F7D17 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 11:03:35.0917 4784 wudfsvc - ok 11:03:35.0958 4784 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:\Windows\System32\wwansvc.dll 11:03:36.0030 4784 WwanSvc - ok 11:03:36.0094 4784 [ C6B289A70A2D36242A2CCAA2715E1747 ] X5XSEx_Pr143 C:\Program Files (x86)\Free Ride Games\X5XSEx_Pr143.Sys 11:03:36.0296 4784 X5XSEx_Pr143 - ok 11:03:36.0330 4784 ================ Scan global =============================== 11:03:36.0354 4784 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll 11:03:36.0370 4784 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll 11:03:36.0388 4784 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll 11:03:36.0416 4784 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll 11:03:36.0439 4784 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe 11:03:36.0472 4784 [Global] - ok 11:03:36.0472 4784 ================ Scan MBR ================================== 11:03:36.0485 4784 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0 11:03:36.0800 4784 \Device\Harddisk0\DR0 - ok 11:03:36.0800 4784 ================ Scan VBR ================================== 11:03:36.0805 4784 [ 1D549E5EA3B572F1748FB91BE3E5CC75 ] \Device\Harddisk0\DR0\Partition1 11:03:36.0808 4784 \Device\Harddisk0\DR0\Partition1 - ok 11:03:36.0834 4784 [ F77187ED8BC83A6131635D8635D06327 ] \Device\Harddisk0\DR0\Partition2 11:03:36.0837 4784 \Device\Harddisk0\DR0\Partition2 - ok 11:03:36.0868 4784 [ F5A684788E058D6186DE7670E09B62B7 ] \Device\Harddisk0\DR0\Partition3 11:03:36.0870 4784 \Device\Harddisk0\DR0\Partition3 - ok 11:03:36.0871 4784 ============================================================ 11:03:36.0871 4784 Scan finished 11:03:36.0871 4784 ============================================================ 11:03:36.0890 5492 Detected object count: 6 11:03:36.0890 5492 Actual detected object count: 6 11:05:05.0612 5492 C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe - copied to quarantine 11:05:05.0612 5492 FLEXnet Licensing Service ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 11:05:05.0722 5492 C:\Windows\SysWOW64\GSService.exe - copied to quarantine 11:05:05.0723 5492 GSService ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 11:05:05.0810 5492 C:\Programs\NetBalancerPro\NetBalancer\SeriousBit.NetBalancer.Service.exe - copied to quarantine 11:05:05.0811 5492 NetBalancer Windows Service ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 11:05:05.0829 5492 c:\Program Files (x86)\Lenovo\System Update\SUService.exe - copied to quarantine 11:05:05.0829 5492 SUService ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 11:05:05.0878 5492 C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe - copied to quarantine 11:05:05.0879 5492 SwitchBoard ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 11:05:05.0913 5492 C:\Windows\system32\themeservice.dll - copied to quarantine 11:05:05.0914 5492 Themes ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 11:05:37.0498 4744 Deinitialize success
-
Никаква промяна излизат същите съобщения
-
Здравейте отново мисля да помъчим Уиндоуса сега имам време. Никакво подобрение от вчера. Според мен има проблем по Net Framework , може да не е вирус За Google Chrome исках да инсталирам най новата версия и излезе прозорец, че не може да се инсталира, защото липсва някакъв апдейт на Windows
-
ComboFix 12-11-16.02 - Emi 17/11/2012 19:43:59.1.4 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1032.18.1909.561 [GMT 2:00] Running from: c:\users\Emi\Downloads\ComboFix.exe AV: Ashampoo Anti-Malware *Disabled/Updated* {1586225C-B0F7-7A3E-FBB7-F15B3A4D2579} SP: Ashampoo Anti-Malware *Disabled/Updated* {AEE7C3B8-96CD-75B0-C107-CA2941CA6FC4} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\program files (x86)\DealPly c:\program files (x86)\DealPly\DealPly.crx c:\program files (x86)\DealPly\DealPly.xpi c:\program files (x86)\DealPly\DealPlyIE.dll c:\program files (x86)\DealPly\DealPlyTune.dll c:\program files (x86)\DealPly\DealPlyUpdate.exe c:\program files (x86)\DealPly\DealPlyUpdate.log c:\program files (x86)\DealPly\DealPlyUpdateRun.exe c:\program files (x86)\DealPly\icon.ico c:\program files (x86)\DealPly\uninst.exe c:\program files (x86)\Funmoods c:\program files (x86)\Funmoods\1.5.23.22\bh\escort.dll c:\program files (x86)\Funmoods\1.5.23.22\escortApp.dll c:\program files (x86)\Funmoods\1.5.23.22\escortEng.dll c:\program files (x86)\Funmoods\1.5.23.22\escorTlbr.dll c:\program files (x86)\Funmoods\1.5.23.22\escortShld.dll c:\program files (x86)\Funmoods\1.5.23.22\FavIcon.ico c:\program files (x86)\Funmoods\1.5.23.22\funmoodssrv.exe c:\program files (x86)\Funmoods\1.5.23.22\uninstall.exe C:\Skype c:\skype\SkypeSetup.exe c:\windows\SysWow64\Winter 3D Screensaver.htm c:\windows\XSxS Q:\AUTORUN.INF . . ((((((((((((((((((((((((( Files Created from 2012-10-17 to 2012-11-17 ))))))))))))))))))))))))))))))) . . 2012-11-17 18:05 . 2012-11-17 18:05 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-11-17 15:14 . 2012-11-17 15:14 30568 ----a-w- c:\windows\system32\drivers\avgtpx64.sys 2012-11-17 15:14 . 2012-11-17 15:14 -------- d-----w- c:\program files (x86)\Common Files\AVG Secure Search 2012-11-17 15:14 . 2012-11-17 15:14 -------- d-----w- c:\program files (x86)\AVG Secure Search 2012-11-17 15:14 . 2012-11-17 15:14 -------- d--h--w- c:\programdata\Common Files 2012-11-17 14:57 . 2012-11-17 14:57 -------- d-----w- c:\users\Emi\AppData\Local\Innovative Solutions 2012-11-17 12:46 . 2012-11-17 12:46 -------- d-----w- C:\fb9977af00c2e2b591d7c86f 2012-11-17 12:46 . 2012-11-17 12:46 -------- d-----w- C:\96e311d8e08296ae808ef2241270a5 2012-11-17 11:38 . 2012-11-17 11:38 -------- d-----w- C:\3a3eac37d1c3557dd2def9 2012-11-17 11:37 . 2012-11-17 11:38 -------- d-----w- C:\7d7444aaab06e7b2640c40e4615d 2012-11-16 20:03 . 2012-11-17 13:54 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{2689F9C6-F9E2-41C9-95FA-3336E754F2A5}\offreg.dll 2012-11-16 12:37 . 2012-06-01 05:36 192000 ----a-w- c:\windows\system32\iisRtl.dll 2012-11-16 12:37 . 2012-06-01 05:34 55296 ----a-w- c:\windows\system32\admwprox.dll 2012-11-16 12:37 . 2012-06-01 04:37 154624 ----a-w- c:\windows\SysWow64\iisRtl.dll 2012-11-16 12:37 . 2012-06-01 04:35 50688 ----a-w- c:\windows\SysWow64\admwprox.dll 2012-11-16 12:37 . 2012-06-01 05:39 14848 ----a-w- c:\windows\system32\wamregps.dll 2012-11-16 12:37 . 2012-06-01 05:36 11264 ----a-w- c:\windows\system32\iisrstap.dll 2012-11-16 12:37 . 2012-06-01 05:35 60928 ----a-w- c:\windows\system32\ahadmin.dll 2012-11-16 12:37 . 2012-06-01 05:33 16896 ----a-w- c:\windows\system32\iisreset.exe 2012-11-16 12:37 . 2012-06-01 04:40 10752 ----a-w- c:\windows\SysWow64\wamregps.dll 2012-11-16 12:37 . 2012-06-01 04:37 8192 ----a-w- c:\windows\SysWow64\iisrstap.dll 2012-11-16 12:37 . 2012-06-01 04:35 26624 ----a-w- c:\windows\SysWow64\ahadmin.dll 2012-11-16 12:37 . 2012-06-01 04:34 15360 ----a-w- c:\windows\SysWow64\iisreset.exe 2012-11-16 12:32 . 2012-10-12 07:19 9291768 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{2689F9C6-F9E2-41C9-95FA-3336E754F2A5}\mpengine.dll 2012-11-15 17:40 . 2012-11-15 17:40 -------- d-sh--we c:\users\DEFAUL~2\86F2~1 2012-11-15 17:40 . 2012-11-17 13:51 -------- d-----w- c:\users\DefaultAppPool 2012-11-15 17:17 . 2012-11-17 11:21 4194304 ----a-w- c:\windows\ServiceProfiles\NetworkService\msmqlog.bin 2012-11-15 17:16 . 2012-11-15 17:16 -------- d-----w- c:\windows\SysWow64\BestPractices 2012-11-15 17:16 . 2012-11-15 17:16 -------- d-----w- c:\windows\system32\msmq 2012-11-15 17:16 . 2012-11-15 17:16 -------- d-----w- c:\windows\system32\BestPractices 2012-11-15 17:15 . 2012-11-15 17:16 -------- d-----w- C:\inetpub 2012-11-15 16:08 . 2012-11-15 16:08 -------- d-----w- c:\program files\AuthenTec 2012-11-15 16:06 . 2012-11-15 16:06 -------- d-----w- c:\users\Emi\AppData\Roaming\Malwarebytes 2012-11-15 16:05 . 2012-11-15 16:05 -------- d-----w- c:\programdata\Malwarebytes 2012-11-15 16:05 . 2012-09-29 17:54 25928 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-11-15 16:05 . 2012-07-26 07:41 2560 ----a-w- c:\windows\system32\drivers\el-GR\wdf01000.sys.mui 2012-11-15 16:05 . 2012-07-26 04:55 785512 ----a-w- c:\windows\system32\drivers\Wdf01000.sys 2012-11-15 16:05 . 2012-07-26 04:55 54376 ----a-w- c:\windows\system32\drivers\WdfLdr.sys 2012-11-15 16:05 . 2012-07-26 02:36 9728 ----a-w- c:\windows\system32\Wdfres.dll 2012-11-15 15:58 . 2012-10-08 11:13 2382848 ----a-w- c:\windows\system32\mshtml.tlb 2012-11-15 15:58 . 2012-10-08 11:13 96768 ----a-w- c:\windows\system32\mshtmled.dll 2012-11-15 15:58 . 2012-10-08 07:40 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb 2012-11-15 15:58 . 2012-10-08 08:37 140960 ----a-w- c:\program files (x86)\Internet Explorer\sqmapi.dll 2012-11-15 15:58 . 2012-10-08 12:29 174216 ----a-w- c:\program files\Internet Explorer\sqmapi.dll 2012-11-15 15:58 . 2012-10-08 11:20 304640 ----a-w- c:\program files\Internet Explorer\IEShims.dll 2012-11-15 15:58 . 2012-10-08 07:45 194048 ----a-w- c:\program files (x86)\Internet Explorer\IEShims.dll 2012-11-15 15:58 . 2012-10-08 07:43 420864 ----a-w- c:\windows\SysWow64\vbscript.dll 2012-11-15 15:58 . 2012-10-08 11:18 173056 ----a-w- c:\windows\system32\ieUnatt.exe 2012-11-15 15:58 . 2012-10-08 11:09 248320 ----a-w- c:\windows\system32\ieui.dll 2012-11-15 15:58 . 2012-10-08 07:44 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe 2012-11-15 15:31 . 2012-11-15 16:34 -------- d-----w- c:\users\Emi\AppData\Roaming\EurekaLog 2012-11-15 15:12 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll 2012-11-15 15:12 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll 2012-11-15 15:12 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys 2012-11-15 15:12 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys 2012-11-15 15:12 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe 2012-11-15 15:12 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll 2012-11-15 15:12 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll 2012-11-15 14:42 . 2012-08-24 18:13 154480 ----a-w- c:\windows\system32\drivers\ksecpkg.sys 2012-11-15 14:42 . 2012-08-24 18:09 458712 ----a-w- c:\windows\system32\drivers\cng.sys 2012-11-15 14:42 . 2012-08-24 18:05 340992 ----a-w- c:\windows\system32\schannel.dll 2012-11-15 14:42 . 2012-08-24 18:04 307200 ----a-w- c:\windows\system32\ncrypt.dll 2012-11-15 14:42 . 2012-08-24 18:03 1448448 ----a-w- c:\windows\system32\lsasrv.dll 2012-11-15 14:42 . 2012-08-24 16:57 247808 ----a-w- c:\windows\SysWow64\schannel.dll 2012-11-15 14:42 . 2012-08-24 16:57 22016 ----a-w- c:\windows\SysWow64\secur32.dll 2012-11-15 14:42 . 2012-08-24 16:57 220160 ----a-w- c:\windows\SysWow64\ncrypt.dll 2012-11-15 14:42 . 2012-08-24 16:53 96768 ----a-w- c:\windows\SysWow64\sspicli.dll 2012-11-15 14:40 . 2012-10-03 17:56 1914248 ----a-w- c:\windows\system32\drivers\tcpip.sys 2012-11-15 14:40 . 2012-10-03 17:44 70656 ----a-w- c:\windows\system32\nlaapi.dll 2012-11-15 14:40 . 2012-10-03 17:44 303104 ----a-w- c:\windows\system32\nlasvc.dll 2012-11-15 14:40 . 2012-10-03 17:44 246272 ----a-w- c:\windows\system32\netcorehc.dll 2012-11-15 14:40 . 2012-10-03 17:44 18944 ----a-w- c:\windows\system32\netevent.dll 2012-11-15 14:40 . 2012-10-03 17:44 216576 ----a-w- c:\windows\system32\ncsi.dll 2012-11-15 14:40 . 2012-10-03 17:42 569344 ----a-w- c:\windows\system32\iphlpsvc.dll 2012-11-15 14:40 . 2012-10-03 16:42 18944 ----a-w- c:\windows\SysWow64\netevent.dll 2012-11-15 14:40 . 2012-10-03 16:42 175104 ----a-w- c:\windows\SysWow64\netcorehc.dll 2012-11-15 14:40 . 2012-10-03 16:42 156672 ----a-w- c:\windows\SysWow64\ncsi.dll 2012-11-15 14:40 . 2012-10-03 16:07 45568 ----a-w- c:\windows\system32\drivers\tcpipreg.sys 2012-11-15 14:40 . 2012-01-13 07:12 52224 ----a-w- c:\windows\SysWow64\nlaapi.dll 2012-11-15 14:35 . 2012-10-09 18:17 55296 ----a-w- c:\windows\system32\dhcpcsvc6.dll 2012-11-15 14:35 . 2012-10-09 18:17 226816 ----a-w- c:\windows\system32\dhcpcore6.dll 2012-11-15 14:35 . 2012-10-09 17:40 193536 ----a-w- c:\windows\SysWow64\dhcpcore6.dll 2012-11-15 14:35 . 2012-10-09 17:40 44032 ----a-w- c:\windows\SysWow64\dhcpcsvc6.dll 2012-11-15 14:35 . 2012-10-18 18:25 3149824 ----a-w- c:\windows\system32\win32k.sys 2012-11-15 14:33 . 2012-09-25 22:47 78336 ----a-w- c:\windows\SysWow64\synceng.dll 2012-11-15 14:33 . 2012-09-25 22:46 95744 ----a-w- c:\windows\system32\synceng.dll 2012-11-10 11:12 . 2012-11-10 11:16 -------- d-----w- c:\program files (x86)\YourFileDownloader 2012-11-08 21:58 . 2012-11-08 21:58 -------- d-----w- c:\program files (x86)\IMVU_Inc 2012-11-03 12:03 . 2012-11-03 12:03 -------- d-----w- c:\users\Emi\AppData\Local\WEB2Print 2012-11-02 13:13 . 2012-11-02 13:13 -------- d-----w- C:\.cache 2012-11-02 13:11 . 2012-11-02 13:52 -------- d-----r- c:\users\Emi\MegaCloud 2012-11-02 13:09 . 2012-11-02 15:55 -------- d-----w- c:\users\Emi\AppData\Roaming\MegaCloud 2012-11-02 13:08 . 2012-11-02 13:08 -------- d-----w- c:\programdata\Web Installer 2012-10-28 13:43 . 2012-10-28 13:43 -------- d-----w- c:\programdata\GoBit Games 2012-10-28 13:35 . 2012-10-28 13:35 -------- d-----w- c:\users\Emi\AppData\Roaming\Exent Technologies 2012-10-28 13:35 . 2012-10-28 13:41 -------- d-----w- c:\users\Emi\AppData\Roaming\Supermarket Mania 2 2012-10-28 13:23 . 2012-11-06 15:59 -------- d-----w- C:\Remote Programs 2012-10-28 13:23 . 2012-10-28 13:23 -------- d-----w- c:\programdata\Free Ride Games 2012-10-28 13:23 . 2012-09-03 08:24 57824 ------w- c:\windows\ExentInfo.exe 2012-10-28 13:23 . 2012-10-28 16:23 -------- d-----w- c:\program files (x86)\Free Ride Games 2012-10-27 21:49 . 2012-10-28 08:59 -------- d-----w- C:\Downloads 2012-10-27 21:48 . 2012-11-15 17:59 -------- d-----w- c:\users\Emi\AppData\Roaming\BitComet 2012-10-27 20:17 . 2012-10-27 20:17 -------- d-----w- c:\program files (x86)\AppsAreFun 2012-10-27 20:16 . 2012-10-27 20:17 -------- d-----w- c:\programdata\Premium 2012-10-27 20:16 . 2012-10-27 21:34 -------- d-----w- c:\programdata\SaveAs 2012-10-27 20:15 . 2012-10-27 20:17 -------- d-----w- c:\programdata\InstallMate 2012-10-27 19:15 . 2012-11-17 11:27 -------- d-----w- c:\users\Emi\AppData\Roaming\IMVU . . . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-11-15 15:13 . 2011-11-27 08:32 66395536 ----a-w- c:\windows\system32\MRT.exe 2012-10-11 16:11 . 2012-10-11 16:11 0 ----a-w- c:\windows\SysWow64\sho23D8.tmp 2012-09-26 08:44 . 2012-09-26 08:44 226424 ----a-w- c:\windows\system32\SBuySupplies.exe 2012-09-14 19:19 . 2012-10-10 19:23 2048 ----a-w- c:\windows\system32\tzres.dll 2012-09-14 18:28 . 2012-10-10 19:23 2048 ----a-w- c:\windows\SysWow64\tzres.dll 2012-09-03 22:23 . 2012-09-03 22:22 161951 ----a-w- c:\windows\DP Animation Maker Uninstaller.exe 2012-08-31 18:19 . 2012-10-10 19:24 1659760 ----a-w- c:\windows\system32\drivers\ntfs.sys 2012-08-30 18:03 . 2012-10-10 19:24 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe 2012-08-30 17:12 . 2012-10-10 19:24 3968880 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe 2012-08-30 17:12 . 2012-10-10 19:24 3914096 ----a-w- c:\windows\SysWow64\ntoskrnl.exe 2012-08-24 18:05 . 2012-10-10 19:24 220160 ----a-w- c:\windows\system32\wintrust.dll 2012-08-24 16:57 . 2012-10-10 19:24 172544 ----a-w- c:\windows\SysWow64\wintrust.dll 2012-08-22 18:12 . 2012-09-12 18:21 950128 ----a-w- c:\windows\system32\drivers\ndis.sys 2012-08-22 18:12 . 2012-09-12 18:21 376688 ----a-w- c:\windows\system32\drivers\netio.sys 2012-08-22 18:12 . 2012-09-12 18:21 288624 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS 2012-08-21 21:01 . 2012-09-25 18:42 245760 ----a-w- c:\windows\system32\OxpsConverter.exe 2012-08-20 18:48 . 2012-10-10 19:23 243200 ----a-w- c:\windows\system32\wow64.dll 2012-08-20 18:48 . 2012-10-10 19:23 362496 ----a-w- c:\windows\system32\wow64win.dll 2012-08-20 18:48 . 2012-10-10 19:23 13312 ----a-w- c:\windows\system32\wow64cpu.dll 2012-08-20 18:48 . 2012-10-10 19:23 215040 ----a-w- c:\windows\system32\winsrv.dll 2012-08-20 18:48 . 2012-10-10 19:23 16384 ----a-w- c:\windows\system32\ntvdm64.dll 2012-08-20 18:48 . 2012-10-10 19:23 424448 ----a-w- c:\windows\system32\KernelBase.dll 2012-08-20 18:48 . 2012-10-10 19:23 1162240 ----a-w- c:\windows\system32\kernel32.dll 2012-08-20 18:46 . 2012-10-10 19:23 338432 ----a-w- c:\windows\system32\conhost.exe 2012-08-20 18:38 . 2012-10-10 19:23 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 3584 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 3584 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2012-08-20 18:38 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll 2012-08-20 17:40 . 2012-10-10 19:23 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll 2012-08-20 17:38 . 2012-10-10 19:23 44032 ----a-w- c:\windows\apppatch\acwow64.dll 2012-08-20 17:38 . 2012-10-10 19:23 25600 ----a-w- c:\windows\SysWow64\setup16.exe 2012-08-20 17:37 . 2012-10-10 19:23 5120 ----a-w- c:\windows\SysWow64\wow32.dll 2012-08-20 17:37 . 2012-10-10 19:23 274944 ----a-w- c:\windows\SysWow64\KernelBase.dll 2012-08-20 17:32 . 2012-10-10 19:23 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 5120 ---ha-w- c:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll 2012-08-20 17:32 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll 2012-08-20 15:38 . 2012-10-10 19:23 7680 ----a-w- c:\windows\SysWow64\instnm.exe 2012-08-20 15:38 . 2012-10-10 19:23 2048 ----a-w- c:\windows\SysWow64\user.exe 2012-08-20 15:33 . 2012-10-10 19:23 6144 ---ha-w- c:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll 2012-08-20 15:33 . 2012-10-10 19:23 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll 2012-08-20 15:33 . 2012-10-10 19:23 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll 2012-08-20 15:33 . 2012-10-10 19:23 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll . . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 . [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks] "{90b49673-5506-483e-b92b-ca0265bd9ca8}"= "c:\program files (x86)\IMVU_Inc\prxtbIMVU.dll" [2011-05-09 176936] . [HKEY_CLASSES_ROOT\clsid\{90b49673-5506-483e-b92b-ca0265bd9ca8}] . [HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{90b49673-5506-483e-b92b-ca0265bd9ca8}] 2011-05-09 09:49 176936 ----a-w- c:\program files (x86)\IMVU_Inc\prxtbIMVU.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar] "{90b49673-5506-483e-b92b-ca0265bd9ca8}"= "c:\program files (x86)\IMVU_Inc\prxtbIMVU.dll" [2011-05-09 176936] "{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files (x86)\AVG Secure Search\12.1.0.20\AVG Secure Search_toolbar.dll" [2012-11-17 2086496] . [HKEY_CLASSES_ROOT\clsid\{90b49673-5506-483e-b92b-ca0265bd9ca8}] . [HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}] [HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1] [HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj] . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584] "Advanced Woman Calendar"="c:\programs\AdvancedWomanCalendar\Advanced Woman Calendar\WomanCalendar.exe" [2012-03-07 4168000] "DriverMax"="c:\programs\DriverMax\drivermax.exe" [2012-10-19 11325376] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "PWMTRV"="c:\progra~2\ThinkPad\UTILIT~1\PWMTR64V.DLL" [2010-08-24 1129832] "WinampAgent"="c:\programs\winamp5623_full_emusic-7plus_all\Winamp\winampa.exe" [2011-12-09 74752] "Launch SilverCrest STMS 2017 A1-K"="c:\program files (x86)\SilverCrest STMS 2017 A1 Driver\KbClient_FD2.exe" [2012-07-10 1424384] "Launch SilverCrest STMS 2017 A1-M"="c:\program files (x86)\SilverCrest STMS 2017 A1 Driver\MouClient_FD2.exe" [2012-07-10 865280] "SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096] "AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992] "vProt"="c:\program files (x86)\AVG Secure Search\vprot.exe" [2012-11-17 1147488] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce] "Malwarebytes Anti-Malware"="c:\programs\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-09-29 766536] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "Exetender"="c:\program files (x86)\Free Ride Games\GPlayer.exe" [2012-09-03 4895192] . c:\users\Emi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ IMVU.lnk - c:\users\Emi\AppData\Roaming\IMVUClient\IMVUQualityAgent.exe [2012-11-8 23408] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 0 (0x0) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows] "LoadAppInit_DLLs"=1 (0x1) "AppInit_DLLs"=c:\progra~2\APPSAR~1\sprotector.dll . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Notification Packages REG_MULTI_SZ scecli c:\program files\ThinkVantage Fingerprint Software\psqlpwd.dll . R2 AAMW_WSC_Service_Vista;Ashampoo Anti-Malware WSC Service;c:\programs\Ashampoo® Anti-Malware\Ashampoo Anti-Malware\AAMW_WSC_Service_Vista.exe [2010-03-02 52616] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 LENOVO.MICMUTE;Lenovo Microphone Mute;c:\program files\LENOVO\HOTKEY\MICMUTE.exe [2010-04-07 45496] R2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-10-02 3064000] R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-06-07 160944] R3 Application Updater;Application Updater;c:\program files (x86)\Application Updater\ApplicationUpdater.exe [x] R3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [2009-11-30 53800] R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 35104] R3 DigiartyVirtualCDBus;Digiarty Virtual Driver;c:\windows\system32\drivers\DigiartyVirtualCDBus.sys [2012-05-27 276256] R3 GSService;GSService;c:\windows\SysWOW64\GSService.exe [2012-07-05 252416] R3 Magic Desktop Server;Magic Desktop Server;c:\programs\Ommoo Magic Desktop\Magic Desktop\server\MagicDesktopServer.exe [x] R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2010-03-05 340240] R3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368] R3 PCDSRVC{127174DC-C366ED8B-06020101}_0;PCDSRVC{127174DC-C366ED8B-06020101}_0 - PCDR Kernel Mode Service Helper Driver;c:\program files\pc-doctor\pcdsrvc_x64.pkms [2010-11-12 25072] R3 Power Manager DBC Service;Power Manager DBC Service;c:\program files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2010-08-24 75112] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456] R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-02-08 239136] R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864] R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312] R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864] R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856] R3 WatAdminSvc;?p??es?a ?e????????? e?e???p???s?? t?? Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-11-28 1255736] R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184] S0 TPDIGIMN;TPDIGIMN;c:\windows\System32\DRIVERS\ApsHM64.sys [2011-01-13 23664] S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys [2012-11-17 30568] S1 lenovo.smi;Lenovo System Interface Driver;c:\windows\system32\DRIVERS\smiifx64.sys [2008-05-12 15400] S2 AAMWService;Ashampoo Anti-Malware Service;c:\programs\Ashampoo® Anti-Malware\Ashampoo Anti-Malware\AAMW_Service.exe [2011-09-13 1313184] S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624] S2 iprip;????as? RIP;c:\windows\System32\svchost.exe [2009-07-14 27136] S2 LENOVO.CAMMUTE;Lenovo Camera Mute;c:\program files\Lenovo\Communications Utility\CAMMUTE.exe [2010-04-20 50536] S2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction;c:\program files\Lenovo\Communications Utility\TPKNRSVC.exe [2010-04-20 74088] S2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll;c:\program files\LENOVO\VIRTSCRL\lvvsst.exe [2010-04-07 93032] S2 NetBalancer Windows Service;NetBalancer Windows Service;c:\programs\NetBalancerPro\NetBalancer\SeriousBit.NetBalancer.Service.exe [2012-02-16 10240] S2 RtkAudioService;Realtek Audio Service;c:\program files\Realtek\Audio\HDA\RtkAudioService64.exe [2010-07-15 199272] S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776] S2 smihlp;SMI Helper Driver (smihlp);c:\program files\ThinkVantage Fingerprint Software\smihlp.sys [2009-03-13 13840] S2 SSPORT;SSPORT;c:\windows\system32\Drivers\SSPORT.sys [2012-02-15 11576] S2 TPHKSVC;On Screen Display;c:\program files\LENOVO\HOTKEY\TPHKSVC.exe [2010-04-07 63928] S2 UNS;Intel® Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2009-11-04 2320920] S2 vToolbarUpdater12.1.3;vToolbarUpdater12.1.3;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.1.3\ToolbarUpdater.exe [2012-11-17 830048] S2 X5XSEx_Pr143;X5XSEx_Pr143;c:\program files (x86)\Free Ride Games\X5XSEx_Pr143.Sys [2012-08-02 56136] S3 5U877;USB Video Device;c:\windows\system32\DRIVERS\5U877.sys [2010-03-17 161664] S3 Apowersoft_AudioDevice;Apowersoft_AudioDevice;c:\windows\system32\drivers\Apowersoft_AudioDevice.sys [2010-12-24 29288] S3 HECIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344] S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [2010-02-26 158976] S3 InputFilter_Hid_FlexDef2b;Siliten HID Devices(FlexDef2b) Driver Service;c:\windows\system32\DRIVERS\InputFilter_FlexDef2b.sys [2010-06-19 17920] S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-02-02 271872] S3 MouFilter_Mou_FlexDef4;HID Mouse(FlexDef4) Driver Service;c:\windows\system32\DRIVERS\MouFilter_FlexDef4.sys [2010-10-20 15360] S3 Nbdrv;NetBalancer;c:\windows\system32\DRIVERS\nbdrv.sys [2011-05-18 41256] S3 NETw5s64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;c:\windows\system32\DRIVERS\NETw5s64.sys [2010-03-18 7680512] S3 PCWinSoft;ScreenCamera.Net Video Camera;c:\windows\system32\DRIVERS\scrcamnetdriver_x64.sys [2012-05-09 241800] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240] S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 764264] S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 268648] S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 25960] S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 22376] S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496] S3 wdkmd;Intel WiDi KMD;c:\windows\system32\DRIVERS\WDKMD.sys [2010-04-16 39832] . . --- Other Services/Drivers In Memory --- . *NewlyCreated* - AVGTP . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost] iissvcs REG_MULTI_SZ w3svc was apphost REG_MULTI_SZ apphostsvc . Contents of the 'Scheduled Tasks' folder . 2012-11-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-08-25 13:27] . 2012-11-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-08-25 13:27] . 2012-11-16 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-521448404-2630859273-2988597377-1000Core.job - c:\users\Emi\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-09 12:10] . 2012-11-17 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-521448404-2630859273-2988597377-1000UA.job - c:\users\Emi\AppData\Local\Google\Update\GoogleUpdate.exe [2012-03-09 12:10] . 2012-11-17 c:\windows\Tasks\OptimizerPro1UpdaterTask{60AD2DD8-ADED-4406-9D7B-4CA6C262D661}.job - c:\programdata\Premium\OptimizerPro1\OptimizerPro1.exe [2012-10-27 14:50] . 2012-11-17 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job - c:\program files\PC-Doctor\uaclauncher.exe [2010-11-12 01:34] . 2012-11-17 c:\windows\Tasks\SystemToolsDailyTest.job - c:\program files\PC-Doctor\pcdrcui.exe [2010-11-12 01:34] . 2012-11-17 c:\windows\Tasks\WpsUpdateTask_Emi.job - c:\programs\KingsoftOfficeSuiteProfessional_2012\Kingsoft Office\office6\wpsupdate.exe [2011-10-29 16:00] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\2MeagCloudError] @="{03FB4213-3964-44E8-97D7-A2FA49CF5576}" [HKEY_CLASSES_ROOT\CLSID\{03FB4213-3964-44E8-97D7-A2FA49CF5576}] 2012-10-17 14:26 258224 ----a-w- c:\users\Emi\AppData\Roaming\MegaCloud\MegaCloudShellExtx64.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-07-15 11049576] "IntelWireless"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2010-03-05 1928976] "TPHOTKEY"="c:\program files\Lenovo\HOTKEY\TPOSDSVC.exe" [2009-12-21 69568] "TpShocks"="TpShocks.exe" [2011-01-14 380776] "LENOVO.TPKNRRES"="c:\program files\Lenovo\Communications Utility\TPKNRRES.exe" [2010-04-20 62312] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-11-29 167960] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-11-29 391704] "Persistence"="c:\windows\system32\igfxpers.exe" [2010-11-29 417304] "AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208] "CDAServer"="c:\program files\Common Files\Common Desktop Agent\CDASrv.exe" [2012-02-20 456704] "Ashampoo Anti-Malware Guard"="c:\programs\Ashampoo® Anti-Malware\Ashampoo Anti-Malware\AAMW_Guard.exe" [2010-08-26 3314176] "MsmqIntCert"="mqrt.dll" [2010-11-20 247808] . ------- Supplementary Scan ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = mStart Page = hxxp://home.myplaycity.com/ mLocal Page = c:\windows\SysWOW64\blank.htm mSearchAssistant = hxxp://start.facemoods.com/?a=gppc&s={searchTerms}&f=4 IE: Free YouTube to MP3 Converter - c:\users\Emi\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm IE: {{d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\users\Emi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk TCP: DhcpNameServer = 192.168.1.254 TCP: Interfaces\{0ABF717E-C69E-46D1-BFF9-C0FBE6FB487E}: NameServer = 8.26.56.26,156.154.70.22 TCP: Interfaces\{0ABF717E-C69E-46D1-BFF9-C0FBE6FB487E}\2647B6: NameServer = 8.26.56.26,156.154.70.22 TCP: Interfaces\{D0FA6351-DAE8-449D-B303-4CFEFB21B1E6}: NameServer = 8.26.56.26,156.154.70.22 TCP: Interfaces\{F6243604-7DDA-4687-81DA-50A7529E29EC}: NameServer = 0.0.0.0 Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\12.1.3\ViProtocol.dll FF - ProfilePath - c:\users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\ FF - prefs.js: Keyword.Enabled - true FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2481032&SearchSource=3&q={searchTerms} FF - prefs.js: browser.search.selectedEngine - AVG Secure Search FF - prefs.js: browser.startup.homepage - hxxp://search.conduit.com/?ctid=CT2612669&SearchSource=13 FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2481032&SearchSource=2&q= FF - ExtSQL: 2012-09-23 17:27; {b9db16a4-6edc-47ec-a1f4-b86292ed211d}; c:\users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} FF - ExtSQL: 2012-09-23 17:31; {bee6eb20-01e0-ebd1-da83-080329fb9a3a}; c:\users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} FF - ExtSQL: 2012-10-09 21:53; {62d40876-df18-411f-9d34-a9dd7a197bc5}; c:\users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\{62d40876-df18-411f-9d34-a9dd7a197bc5} FF - ExtSQL: 2012-10-28 00:06; 508c4318366e4@508c43183671d.com; c:\users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\508c4318366e4@508c43183671d.com FF - ExtSQL: 2012-11-10 13:58; {90b49673-5506-483e-b92b-ca0265bd9ca8}; c:\users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\{90b49673-5506-483e-b92b-ca0265bd9ca8} FF - ExtSQL: 2012-11-15 17:07; badge@darktrojan.net; c:\users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\badge@darktrojan.net.xpi FF - ExtSQL: 2012-11-15 17:10; personas@christopher.beard; c:\users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\personas@christopher.beard.xpi FF - ExtSQL: 2012-11-15 17:10; status4evar@caligonstudios.com; c:\users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\status4evar@caligonstudios.com.xpi FF - ExtSQL: 2012-11-15 17:10; {6e73f6b7-b9ab-44b8-b744-6393e3c2e351}; c:\users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\{6e73f6b7-b9ab-44b8-b744-6393e3c2e351} FF - ExtSQL: 2012-11-17 13:35; support@lastpass.com; c:\users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\support@lastpass.com FF - ExtSQL: 2012-11-17 17:11; GlassMyFox@ArisT2_Noia4dev; c:\users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\GlassMyFox@ArisT2_Noia4dev.xpi FF - ExtSQL: 2012-11-17 17:13; TabAutoReload@schuzak.jp; c:\users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\TabAutoReload@schuzak.jp.xpi FF - ExtSQL: 2012-11-17 17:19; StyleThing@ya.ru; c:\users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\StyleThing@ya.ru.xpi FF - ExtSQL: 2012-11-17 17:21; restartless.restart@erikvold.com; c:\users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\restartless.restart@erikvold.com.xpi FF - user.js: extensions.funmoods.hmpg - true FF - user.js: extensions.funmoods.hmpgUrl - hxxp://start.funmoods.com/?f=1&a=wbst&chnl=&cd=2XzutAtN2Y1L1Qzuzz0C0AzyzztBtAzz0EyD0FyByCzz0BtAtN0D0TzutBtDtCtBtDyBtCtD&cr=1851579163 FF - user.js: extensions.funmoods.dfltSrch - true FF - user.js: extensions.funmoods.srchPrvdr - Search FF - user.js: extensions.funmoods.dnsErr - true FF - user.js: extensions.funmoods_i.newTab - true FF - user.js: extensions.funmoods.newTabUrl - hxxp://start.funmoods.com/?f=2&a=wbst&chnl=&cd=2XzutAtN2Y1L1Qzuzz0C0AzyzztBtAzz0EyD0FyByCzz0BtAtN0D0TzutBtDtCtBtDyBtCtD&cr=1851579163 FF - user.js: extensions.funmoods.tlbrSrchUrl - hxxp://start.funmoods.com/?f=3&a=wbst&chnl=&cd=2XzutAtN2Y1L1Qzuzz0C0AzyzztBtAzz0EyD0FyByCzz0BtAtN0D0TzutBtDtCtBtDyBtCtD&cr=1851579163&q= FF - user.js: extensions.funmoods.id - f67b68b30000000000008ca98238e5f7 FF - user.js: extensions.funmoods.instlDay - 15531 FF - user.js: extensions.funmoods.vrsn - 1.5.23.22 FF - user.js: extensions.funmoods.vrsni - 1.5.23.22 FF - user.js: extensions.funmoods_i.vrsnTs - 1.5.23.221:21 FF - user.js: extensions.funmoods.prtnrId - funmoods FF - user.js: extensions.funmoods.prdct - funmoods FF - user.js: extensions.funmoods.aflt - wbst FF - user.js: extensions.funmoods_i.smplGrp - none FF - user.js: extensions.funmoods.tlbrId - base FF - user.js: extensions.funmoods.instlRef - FF - user.js: extensions.funmoods.dfltLng - FF - user.js: extensions.funmoods.excTlbr - false FF - user.js: extensions.funmoods.autoRvrt - false FF - user.js: extensions.funmoods.envrmnt - production FF - user.js: extensions.funmoods.isdcmntcmplt - true FF - user.js: extensions.funmoods.mntrvrsn - 1.3.0 FF - user.js: extensions.BabylonToolbar.tlbrSrchUrl - hxxp://search.babylon.com/?babsrc=TB_def&mntrId=f67b68b30000000000008ca98238e5f7&q= FF - user.js: extensions.BabylonToolbar.id - f67b68b30000000000008ca98238e5f7 FF - user.js: extensions.BabylonToolbar.appId - {BDB69379-802F-4eaf-B541-F8DE92DD98DB} FF - user.js: extensions.BabylonToolbar.instlDay - 15620 FF - user.js: extensions.BabylonToolbar.vrsn - 1.8.0.7 FF - user.js: extensions.BabylonToolbar.vrsni - 1.8.0.7 FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.8.0.70:25 FF - user.js: extensions.BabylonToolbar.prtnrId - babylon FF - user.js: extensions.BabylonToolbar.prdct - BabylonToolbar FF - user.js: extensions.BabylonToolbar.aflt - babsst FF - user.js: extensions.BabylonToolbar_i.smplGrp - none FF - user.js: extensions.BabylonToolbar.tlbrId - base FF - user.js: extensions.BabylonToolbar.instlRef - sst FF - user.js: extensions.BabylonToolbar.dfltLng - en FF - user.js: extensions.BabylonToolbar.excTlbr - false FF - user.js: extensions.BabylonToolbar.admin - false user_pref('extensions.dealply.partner', 'inff'); user_pref('extensions.dealply.channel', 'infftog01'); user_pref('extensions.dealply.installId', 'v24300247995957540653192012102800063631'); user_pref('extensions.dealply.installIdSource', 'inst'); user_pref('extensions.dealply.sampleGroup', '1'); user_pref('extensions.dealply.partner', 'inff'); user_pref('extensions.dealply.channel', 'infftog01'); user_pref('extensions.dealply.installId', 'v24300247995957540653192012102800063631'); user_pref('extensions.dealply.installIdSource', 'inst'); user_pref('extensions.dealply.sampleGroup', '1'); . - - - - ORPHANS REMOVED - - - - . URLSearchHooks-{192a6019-26d2-4611-aead-07cd7733b146} - (no file) URLSearchHooks-{124d001a-bdcb-472f-aa59-bbe7e4bc3204} - (no file) URLSearchHooks-{872b5b88-9db5-4310-bdd0-ac189557e5f5} - (no file) URLSearchHooks-{62d40876-df18-411f-9d34-a9dd7a197bc5} - (no file) BHO-{124d001a-bdcb-472f-aa59-bbe7e4bc3204} - (no file) BHO-{192a6019-26d2-4611-aead-07cd7733b146} - (no file) BHO-{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} - (no file) BHO-{872b5b88-9db5-4310-bdd0-ac189557e5f5} - (no file) BHO-{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - (no file) BHO-{E486E3AC-A2E3-263F-D235-6B159A3CC2E0} - (no file) BHO-{F3FEE66E-E034-436a-86E4-9690573BEE8A} - (no file) Toolbar-Locked - (no file) Toolbar-{F3FEE66E-E034-436a-86E4-9690573BEE8A} - (no file) Toolbar-{192a6019-26d2-4611-aead-07cd7733b146} - (no file) Toolbar-{124d001a-bdcb-472f-aa59-bbe7e4bc3204} - (no file) Toolbar-{D1121FE0-0145-44C9-AA35-72071AC20A9B} - (no file) Toolbar-{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - (no file) Toolbar-{872b5b88-9db5-4310-bdd0-ac189557e5f5} - (no file) Wow6432Node-HKCU-Run-AdobeBridge - (no file) Wow6432Node-HKCU-Run-DriverMax_RESTART - (no file) Toolbar-Locked - (no file) WebBrowser-{192A6019-26D2-4611-AEAD-07CD7733B146} - (no file) WebBrowser-{872B5B88-9DB5-4310-BDD0-AC189557E5F5} - (no file) HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe AddRemove-DealPly - c:\program files (x86)\DealPly\uninst.exe AddRemove-KGB Archiver_is1 - c:\games\gta\KGB Archiver\unins000.exe AddRemove-PhotoScape - c:\programs\PhotoScape 3 AddRemove-Funmoods Web Search - c:\progra~2\Funmoods\1.5.23.22\uninstall.exe . . . [HKEY_LOCAL_MACHINE\system\ControlSet001\services\PCDSRVC{127174DC-C366ED8B-06020101}_0] "ImagePath"="\??\c:\program files\pc-doctor\pcdsrvc_x64.pkms" . --------------------- LOCKED REGISTRY KEYS --------------------- . [HKEY_USERS\S-1-5-21-521448404-2630859273-2988597377-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{5E317469-5675-C466-B29A-D2970E64B966}*] "hahelcicemlbbmag"=hex:6b,61,69,69,6f,68,65,6a,68,69,62,63,6a,62,6f,6c,70,6f, 68,6d,70,6a,00,01 "hajcokppkijfimeo"=hex:61,62,6d,63,6b,66,70,66,6b,62,6a,6b,69,70,64,69,61,63, 6b,65,6e,61,61,6a,67,69,61,68,6b,63,63,67,70,67,00,00 "jaicdkhlnmjbjeckpabi"=hex:64,62,64,69,61,68,67,63,69,65,67,69,64,67,69,69,6a, 6d,70,68,65,70,6f,65,62,6b,6f,6f,65,6f,6e,6e,62,6d,62,65,70,61,6e,62,00,86 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Completion time: 2012-11-17 20:12:00 ComboFix-quarantined-files.txt 2012-11-17 18:11 . Pre-Run: 387649859584 bytes free Post-Run: 391831740416 bytes free . - - End Of File - - FF745445832011DEAB5F8C08C14172CD
-
. UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2012-11-07.01) . Microsoft Windows 7 Home Premium Boot Device: \Device\HarddiskVolume1 Install Date: 28/11/2011 3:29:58 pµ System Uptime: 17/11/2012 1:19:26 µµ (5 hours ago) . Motherboard: LENOVO | | 0301G7G Processor: Intel® Core i3 CPU M 380 @ 2.53GHz | CPU 1 | 911/133mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 455 GiB total, 360.268 GiB free. D: is CDROM () Q: is FIXED (NTFS) - 10 GiB total, 0.66 GiB free. . ==== Disabled Device Manager Items ============= . Class GUID: Description: Device ID: ROOT\LEGACY_A2INJECTIONDRIVER\0000 Manufacturer: Name: PNP Device ID: ROOT\LEGACY_A2INJECTIONDRIVER\0000 Service: . ==== System Restore Points =================== . RP118: 6/11/2012 2:57:59 µµ - Windows Update RP119: 6/11/2012 4:59:36 µµ - Revo Uninstaller's restore point - Adobe Photoshop CS3 RP120: 10/11/2012 3:04:53 µµ - Windows Update RP121: 13/11/2012 3:48:55 µµ - Windows Update RP122: 15/11/2012 5:10:35 µµ - Windows Update RP123: 15/11/2012 5:56:36 µµ - Windows Update RP124: 15/11/2012 6:22:03 µµ - Windows Update RP125: 15/11/2012 6:24:55 µµ - Windows Update RP127: 16/11/2012 2:45:48 pµ - Windows Update RP128: 17/11/2012 2:06:31 pµ - Windows Update RP129: 17/11/2012 1:36:30 µµ - Windows Update RP130: 17/11/2012 2:45:19 µµ - Windows Update . ==== Installed Programs ====================== . Registry Patch to arrange icons in Device and Printers folder of Windows 7 ?a??t? ???ss?? ??a ta ???????? t?? Microsoft .NET Framework 4 Client Profile ?a??t? ???ss?? ??a ta ???????? t?? Microsoft .NET Framework 4 Extended 3D Video Converter 3.3.5 3D Video Player 3.3.5 50 FREE MP3s +1 Free Audiobook! 7-Zip 9.25 (x64 edition) AcroPano Photo Stitcher, Panorama software Adobe AIR Adobe Anchor Service CS3 Adobe Asset Services CS3 Adobe Bridge CS3 Adobe Bridge Start Meeting Adobe Camera Raw 4.0 Adobe CMaps Adobe Color - Photoshop Specific Adobe Color Common Settings Adobe Color EU Extra Settings Adobe Color JA Extra Settings Adobe Color NA Recommended Settings Adobe Community Help Adobe Default Language CS3 Adobe Device Central CS3 Adobe Download Assistant Adobe ExtendScript Toolkit 2 Adobe Flash Player 11 ActiveX 64-bit Adobe Flash Player 11 Plugin 64-bit Adobe Fonts All Adobe Help Viewer CS3 Adobe Linguistics CS3 Adobe Media Player Adobe PDF Library Files Adobe Photoshop CS5 Adobe Setup Adobe Stock Photos CS3 Adobe Type Support Adobe Update Manager CS3 Adobe WinSoft Linguistics Plugin Adobe XMP Panels CS3 Advanced Woman Calendar 4.2 Aiseesoft Total Media Converter 6.2.26 AllMySongs Database Animated Screensaver Maker Artensoft Tilt Shift Generator Ashampoo Anti-Malware v.1.21 Ashampoo Snap 4 v.4.3.1 Astro Gemini Screensaver Manager 1.2 Athtek Skype Recorder Audio Record Wizard AV Burning Pro 4.5.1 Batch Photo Watermarker 3.5 Blingee Toolbar BS.Player FREE Chameleon Startup Manager 3.4.0.766 Christmas Eve 3D Screensaver 1.0 Cleanse Uninstaller Pro 8.0 Clone Terminator Common Desktop Agent Create Recovery Media D3DX10 DealPly DesignBox version 1.06.02 DP Animation Maker DriverMax 6 DVDVideoSoftTB Toolbar Easter 3D Screensaver 1.0 EzGenerator 4.0 Face Off Max Farm Frenzy - Pizza Party Farmscapes Fashion Fortune Fishdom H2O - Hidden Odyssey Flip Album Free YouTube to MP3 Converter version 3.11.32.918 Funmoods Web Search GIMP 2.8.2 Google Chrome Google Earth Plug-in Google Update Helper Home Sweet Home - Christmas Edition ImageSlicer IMVU Avatar Chat Software IMVU Inc Toolbar Inpaint 3.1 Integrated Camera Driver Installer Package Ver.1.0.1.7 Integrated Camera TWAIN Intel PROSet Wireless Intel® Control Center Intel® Graphics Media Accelerator Driver Intel® Management Engine Components Intel® PROSet/Wireless WiFi Software Intel® Wireless Display InterVideo WinDVD 8 Java Auto Updater Java 6 Update 17 (64-bit) Java 6 Update 30 Jojo's Fashion Show Jojos Fashion Show - World Tour Junk Mail filter update KGB Archiver 1.2.1.24 Kindergarten Kingsoft Office 2012 (8.1.0.3020) LangoMax Adult Advantage Lenovo Auto Scroll Utility Lenovo System Interface Driver Lenovo ThinkVantage Toolbox Lenovo Warranty Information Lenovo Welcome Magic Desktop 2.0.2 Malwarebytes Anti-Malware version 1.65.1.1000 Media Buddy 3.3.9 Mesh Runtime Message Center Plus Microsoft .NET Framework 4 Client Profile Microsoft .NET Framework 4 Client Profile ELL Language Pack Microsoft .NET Framework 4 Extended Microsoft .NET Framework 4 Extended ELL Language Pack Microsoft Application Error Reporting Microsoft Office "???s? µe ??a ????" 2010 Microsoft Office 2010 Microsoft Office Starter 2010 - ???????? Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable (x64) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Microsoft_VC80_ATL_x86 Microsoft_VC80_ATL_x86_x64 Microsoft_VC80_CRT_x86 Microsoft_VC80_CRT_x86_x64 Microsoft_VC80_MFC_x86 Microsoft_VC80_MFC_x86_x64 Microsoft_VC80_MFCLOC_x86 Microsoft_VC80_MFCLOC_x86_x64 Microsoft_VC90_ATL_x86 Microsoft_VC90_ATL_x86_x64 Microsoft_VC90_CRT_x86 Microsoft_VC90_CRT_x86_x64 Microsoft_VC90_MFC_x86 Microsoft_VC90_MFC_x86_x64 Mobile Broadband Mozilla Firefox 16.0.2 (x86 el) Mozilla Maintenance Service MSVCRT MSVCRT_amd64 MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Multi Image Optimizer Pro version 1.0.5.737 MySlideShow 3.5.6 NetBalancer On Screen Display OptimizerPro1 Our World 3 e-Book PageFlip PDF to Flash Converter PDF Settings PDF Settings CS5 Photo Stamp Remover 5.0 Photo Toolbox for Windows version 1.7.4.5 PhotoScape Picture Collage Maker 3.2.8 Picture Cutout Guide Lite 2.10 PPT To Flash Catalog Professional Presentation Marker V2.2.5 Realtek Ethernet Controller Driver For Windows Vista and Later Realtek High Definition Audio Driver Realtek USB 2.0 Card Reader Reg Organizer version 5.40 Registry Patch to Enable Maximum Power Saving on WiFi Adapters for Windows 7 Retouch Pilot Free 3.4.1 Revo Uninstaller 1.93 S?????? f?t???af??? t?? Windows Live Samsung CLP-360 Series Samsung Easy Printer Manager Samsung Printer Live Update Santa's Elves Animated Wallpaper version 1.0 SaveAs Screen Recording Suite V2.4.8 ScreenCamera.Net version 1.3.8.80 Search Assistant AppsAreFun 1.66 Security Update for ?a??t? ???ss?? ??a ta ???????? t?? Microsoft .NET Framework 4 Client Profile (KB2478663) Security Update for ?a??t? ???ss?? ??a ta ???????? t?? Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Security Update for Microsoft .NET Framework 4 Extended (KB2487367) Security Update for Microsoft .NET Framework 4 Extended (KB2656351) SilverCrest STMS 2017 A1 Driver SimplyGoodPictures Skype Click to Call Skype™ 5.10 SoftOrbits Photo Retoucher 1.0 Sothink Logo Maker Special Speed MP3 Downloader St???e?? e?????? ActiveX t?? Windows Live Mesh ??a ap?µa???sµ??e? s??d?se?? System Update Theme Manager ThinkPad Bluetooth with Enhanced Data Rate Software ThinkPad Power Management Driver ThinkPad Power Manager ThinkPad UltraNav Driver ThinkVantage Active Protection System ThinkVantage Communications Utility ThinkVantage Fingerprint Software ThunderSoft Flash Slideshow Factory (2.8.2.0) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Update for Microsoft .NET Framework 4 Extended (KB2468871) Update for Microsoft .NET Framework 4 Extended (KB2533523) Update for Microsoft .NET Framework 4 Extended (KB2600217) uRex Video Converter Platinum VirtualDJ Home FREE VLC media player 1.0.1 VS10Runtimex64 Wedding Salon Winamp Winamp Detector Plug-in Windows Driver Package - Broadcom (BTHUSB) Bluetooth (02/25/2010 6.2.0.9419) Windows Driver Package - Broadcom Bluetooth (01/19/2010 6.2.0.1417) Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) Windows Driver Package - Intel (iaStor) hdc (01/15/2010 9.5.7.1002) Windows Driver Package - Intel hdc (06/04/2009 7.0.0.1013) Windows Driver Package - Intel System (06/04/2009 1.0.0.0002) Windows Driver Package - Intel System (10/28/2009 9.1.1.1022) Windows Driver Package - Intel USB (08/20/2009 9.1.1.1020) Windows Driver Package - Lenovo 1.60.0.4 (11/18/2009 1.60.0.4) Windows Driver Package - Realtek Semiconductor Corp. HD Audio Driver (06/29/2010 6.0.1.6146) Windows Live Communications Platform Windows Live Essentials Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Language Selector Windows Live Mail Windows Live Mesh Windows Live Mesh ActiveX Control for Remote Connections Windows Live Messenger Windows Live MIME IFilter Windows Live Movie Maker Windows Live Photo Common Windows Live Photo Gallery Windows Live PIMT Platform Windows Live Remote Client Windows Live Remote Client Resources Windows Live Remote Service Windows Live Remote Service Resources Windows Live SOXE Windows Live SOXE Definitions Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources Windows Media Player Firefox Plugin Winter 3D Screensaver 1.0 WinX DVD Copy Pro 3.4.3 Wondershare PDF Converter (Build 3.0.0) YouTube Downloader Toolbar v4.9 Zebra-Media Surveillance System version 1.3 . ==== End Of File =========================== DDS (Ver_2012-11-07.01) - NTFS_AMD64 Internet Explorer: 9.0.8112.16455 Run by Emi at 18:14:51 on 2012-11-17 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1032.18.1909.323 [GMT 2:00] . AV: Ashampoo Anti-Malware *Disabled/Updated* {1586225C-B0F7-7A3E-FBB7-F15B3A4D2579} SP: Ashampoo Anti-Malware *Disabled/Updated* {AEE7C3B8-96CD-75B0-C107-CA2941CA6FC4} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\ibmpmsvc.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k LocalService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe C:\Windows\System32\WUDFHost.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\WLANExt.exe C:\Windows\System32\spoolsv.exe C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files (x86)\Google\Update\GoogleUpdate.exe C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe C:\Programs\Ashampoo® Anti-Malware\Ashampoo Anti-Malware\AAMW_Service.exe C:\PROGRA~1\Lenovo\HOTKEY\tpnumlkd.exe C:\Windows\system32\svchost.exe -k apphost C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe C:\Windows\System32\TpShocks.exe C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Programs\AdvancedWomanCalendar\Advanced Woman Calendar\WomanCalendar.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Windows\SysWOW64\rundll32.exe C:\Programs\winamp5623_full_emusic-7plus_all\Winamp\winampa.exe C:\Program Files (x86)\SilverCrest STMS 2017 A1 Driver\KbClient_FD2.exe C:\Program Files (x86)\SilverCrest STMS 2017 A1 Driver\MouClient_FD2.exe C:\Windows\system32\rundll32.exe C:\Windows\system32\inetsrv\inetinfo.exe C:\Windows\System32\svchost.exe -k ipripsvc C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe C:\Windows\System32\svchost.exe -k LPDService C:\Windows\system32\mqsvc.exe C:\Programs\NetBalancerPro\NetBalancer\SeriousBit.NetBalancer.Service.exe C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe C:\Windows\System32\tcpsvcs.exe C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe C:\Windows\System32\snmp.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\system32\svchost.exe -k iissvcs C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Intel\WiFi\bin\EvtEng.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\mqtgsvc.exe C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe C:\Windows\system32\wbem\unsecapp.exe C:\Windows\system32\wbem\unsecapp.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe C:\Windows\system32\igfxext.exe C:\Windows\system32\igfxsrvc.exe C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe c:\Program Files (x86)\Lenovo\System Update\SUService.exe C:\Program Files (x86)\LENOVO\Message Center Plus\MCPLaunch.exe C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe C:\Windows\System32\svchost.exe -k secsvcs C:\Windows\System32\osk.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\wuauclt.exe C:\Programs\Ashampoo® Anti-Malware\Ashampoo Anti-Malware\AAMW_Guard.exe C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.1.3\ToolbarUpdater.exe C:\Programs\DriverMax\drivermax.exe C:\Programs\Revo Uninstaller\Revouninstaller.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Users\Emi\AppData\Local\Google\Update\GoogleUpdate.exe C:\Windows\system32\svchost.exe -k defragsvc C:\Windows\system32\rundll32.exe C:\Windows\servicing\TrustedInstaller.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\System32\cscript.exe . ============== Pseudo HJT Report =============== . uDefault_Page_URL = hxxp://lenovo.msn.com mStart Page = hxxp://home.myplaycity.com/ mSearchAssistant = hxxp://start.facemoods.com/?a=gppc&s={searchTerms}&f=4 uURLSearchHooks: {F3FEE66E-E034-436a-86E4-9690573BEE8A} - <orphaned> uURLSearchHooks: {192a6019-26d2-4611-aead-07cd7733b146} - <orphaned> uURLSearchHooks: {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - <orphaned> uURLSearchHooks: {CA3EB689-8F09-4026-AA10-B9534C691CE0} - <orphaned> uURLSearchHooks: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - <orphaned> uURLSearchHooks: {62d40876-df18-411f-9d34-a9dd7a197bc5} - <orphaned> uURLSearchHooks: IMVU Inc Toolbar: {90b49673-5506-483e-b92b-ca0265bd9ca8} - C:\Program Files (x86)\IMVU_Inc\prxtbIMVU.dll mURLSearchHooks: {192a6019-26d2-4611-aead-07cd7733b146} - <orphaned> mURLSearchHooks: {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - <orphaned> mURLSearchHooks: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - <orphaned> mURLSearchHooks: IMVU Inc Toolbar: {90b49673-5506-483e-b92b-ca0265bd9ca8} - C:\Program Files (x86)\IMVU_Inc\prxtbIMVU.dll mWinlogon: Userinit = userinit.exe BHO: {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - <orphaned> BHO: {192a6019-26d2-4611-aead-07cd7733b146} - <orphaned> BHO: {2EECD738-5844-4a99-B4B6-146BF802613B} - <orphaned> BHO: {75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} - <orphaned> BHO: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - <orphaned> BHO: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - <orphaned> BHO: {9030D464-4C02-4ABF-8ECC-5164760863C6} - <orphaned> BHO: IMVU Inc Toolbar: {90b49673-5506-483e-b92b-ca0265bd9ca8} - C:\Program Files (x86)\IMVU_Inc\prxtbIMVU.dll BHO: {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - <orphaned> BHO: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - <orphaned> BHO: {DBC80044-A445-435b-BC74-9C25C1C588A9} - <orphaned> BHO: {E486E3AC-A2E3-263F-D235-6B159A3CC2E0} - <orphaned> BHO: {F3FEE66E-E034-436a-86E4-9690573BEE8A} - <orphaned> BHO: {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - <orphaned> TB: IMVU Inc Toolbar: {90b49673-5506-483e-b92b-ca0265bd9ca8} - C:\Program Files (x86)\IMVU_Inc\prxtbIMVU.dll TB: AVG Security Toolbar: {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\12.1.0.20\AVG Secure Search_toolbar.dll uRun: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun uRun: [Advanced Woman Calendar] "C:\Programs\AdvancedWomanCalendar\Advanced Woman Calendar\WomanCalendar.exe" -m uRun: [Google Update] "C:\Users\Emi\AppData\Local\Google\Update\GoogleUpdate.exe" /c uRun: [AdobeBridge] <no file> uRunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil11e_Plugin.exe -update plugin mRun: [PWMTRV] rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor mRun: [WinampAgent] C:\Programs\winamp5623_full_emusic-7plus_all\Winamp\winampa.exe mRun: [Launch SilverCrest STMS 2017 A1-K] C:\Program Files (x86)\SilverCrest STMS 2017 A1 Driver\KbClient_FD2.exe mRun: [Launch SilverCrest STMS 2017 A1-M] C:\Program Files (x86)\SilverCrest STMS 2017 A1 Driver\MouClient_FD2.exe mRun: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe mRun: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin mRun: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe" mRunOnce: [Malwarebytes Anti-Malware] C:\Programs\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent dRun: [Exetender] "C:\Program Files (x86)\Free Ride Games\GPlayer.exe" /runonstartup StartupFolder: C:\Users\Emi\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\IMVU.lnk - C:\Users\Emi\AppData\Roaming\IMVUClient\IMVUQualityAgent.exe uPolicies-Explorer: NoDriveTypeAutoRun = dword:145 mPolicies-Explorer: NoActiveDesktop = dword:1 mPolicies-System: ConsentPromptBehaviorAdmin = dword:0 mPolicies-System: ConsentPromptBehaviorUser = dword:3 mPolicies-System: EnableLUA = dword:0 mPolicies-System: EnableUIADesktopToggle = dword:0 IE: Free YouTube to MP3 Converter - C:\Users\Emi\AppData\Roaming\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - <orphaned> IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - <orphaned> IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm IE: {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Users\Emi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_30-windows-i586.cab TCP: NameServer = 192.168.1.254 TCP: Interfaces\{0ABF717E-C69E-46D1-BFF9-C0FBE6FB487E} : NameServer = 8.26.56.26,156.154.70.22 TCP: Interfaces\{0ABF717E-C69E-46D1-BFF9-C0FBE6FB487E} : DHCPNameServer = 192.168.1.254 TCP: Interfaces\{0ABF717E-C69E-46D1-BFF9-C0FBE6FB487E}\2647B6 : NameServer = 8.26.56.26,156.154.70.22 TCP: Interfaces\{0ABF717E-C69E-46D1-BFF9-C0FBE6FB487E}\2647B6 : DHCPNameServer = 192.168.1.1 TCP: Interfaces\{D0FA6351-DAE8-449D-B303-4CFEFB21B1E6} : NameServer = 8.26.56.26,156.154.70.22 TCP: Interfaces\{F6243604-7DDA-4687-81DA-50A7529E29EC} : NameServer = 0.0.0.0 Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - <orphaned> Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned> Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\12.1.3\ViProtocol.dll Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned> SSODL: WebCheck - <orphaned> LSA: Notification Packages = scecli C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - <is not referencing any dll> x64-mStart Page = hxxp://start.funmoods.com/?f=1&a=wbst&chnl=&cd=2XzutAtN2Y1L1Qzuzz0C0AzyzztBtAzz0EyD0FyByCzz0BtAtN0D0TzutBtDtCtBtDyBtCtD&cr=1851579163 x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll x64-BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - x64-BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s x64-Run: [intelWireless] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Tray x64-Run: [TPHOTKEY] C:\Program Files\Lenovo\HOTKEY\TPOSDSVC.exe x64-Run: [TpShocks] TpShocks.exe x64-Run: [LENOVO.TPKNRRES] C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe x64-Run: [synTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe x64-Run: [igfxTray] C:\Windows\System32\igfxtray.exe x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" x64-Run: [CDAServer] C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe x64-Run: [Ashampoo Anti-Malware Guard] "C:\Programs\Ashampoo® Anti-Malware\Ashampoo Anti-Malware\AAMW_Guard.exe" x64-Run: [MsmqIntCert] regsvr32 /s mqrt.dll x64-IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie.htm x64-DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab x64-DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned> x64-Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - <orphaned> x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned> x64-Notify: igfxcui - igfxdev.dll x64-Notify: psfus - C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll x64-SSODL: WebCheck - <orphaned> . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\ FF - prefs.js: Keyword.Enabled - true FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2481032&SearchSource=3&q={searchTerms} FF - prefs.js: browser.search.selectedEngine - AVG Secure Search FF - prefs.js: browser.startup.homepage - hxxp://search.conduit.com/?ctid=CT2612669&SearchSource=13 FF - prefs.js: keyword.URL - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2481032&SearchSource=2&q= FF - plugin: C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL FF - plugin: C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\12.1.3\npsitesafety.dll FF - plugin: C:\Program Files (x86)\Free Ride Games\npExentCtl.dll FF - plugin: C:\Program Files (x86)\Free Ride Games\npGameTreatWidget.dll FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrlui.dll FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll FF - plugin: C:\Programs\Ommoo Magic Desktop\Magic Desktop\MagicDesktop_v2.5.4\npdzzoerunner.dll FF - plugin: C:\Users\Emi\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll FF - plugin: C:\Users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}\plugins\np-mswmp.dll FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll FF - ExtSQL: 2012-09-23 17:27; {b9db16a4-6edc-47ec-a1f4-b86292ed211d}; C:\Users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} FF - ExtSQL: 2012-09-23 17:31; {bee6eb20-01e0-ebd1-da83-080329fb9a3a}; C:\Users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} FF - ExtSQL: 2012-10-09 21:53; {62d40876-df18-411f-9d34-a9dd7a197bc5}; C:\Users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\{62d40876-df18-411f-9d34-a9dd7a197bc5} FF - ExtSQL: 2012-10-28 00:06; 508c4318366e4@508c43183671d.com; C:\Users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\508c4318366e4@508c43183671d.com FF - ExtSQL: 2012-11-10 13:58; {90b49673-5506-483e-b92b-ca0265bd9ca8}; C:\Users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\{90b49673-5506-483e-b92b-ca0265bd9ca8} FF - ExtSQL: 2012-11-15 17:07; badge@darktrojan.net; C:\Users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\badge@darktrojan.net.xpi FF - ExtSQL: 2012-11-15 17:10; personas@christopher.beard; C:\Users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\personas@christopher.beard.xpi FF - ExtSQL: 2012-11-15 17:10; status4evar@caligonstudios.com; C:\Users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\status4evar@caligonstudios.com.xpi FF - ExtSQL: 2012-11-15 17:10; {6e73f6b7-b9ab-44b8-b744-6393e3c2e351}; C:\Users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\{6e73f6b7-b9ab-44b8-b744-6393e3c2e351} FF - ExtSQL: 2012-11-17 13:35; support@lastpass.com; C:\Users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\support@lastpass.com FF - ExtSQL: 2012-11-17 17:11; GlassMyFox@ArisT2_Noia4dev; C:\Users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\GlassMyFox@ArisT2_Noia4dev.xpi FF - ExtSQL: 2012-11-17 17:13; TabAutoReload@schuzak.jp; C:\Users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\TabAutoReload@schuzak.jp.xpi FF - ExtSQL: 2012-11-17 17:19; StyleThing@ya.ru; C:\Users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\StyleThing@ya.ru.xpi FF - ExtSQL: 2012-11-17 17:21; restartless.restart@erikvold.com; C:\Users\Emi\AppData\Roaming\Mozilla\Firefox\Profiles\akyxs1kh.default\extensions\restartless.restart@erikvold.com.xpi . ---- FIREFOX POLICIES ---- FF - user.js: extensions.funmoods.hmpg - true FF - user.js: extensions.funmoods.hmpgUrl - hxxp://start.funmoods.com/?f=1&a=wbst&chnl=&cd=2XzutAtN2Y1L1Qzuzz0C0AzyzztBtAzz0EyD0FyByCzz0BtAtN0D0TzutBtDtCtBtDyBtCtD&cr=1851579163 FF - user.js: extensions.funmoods.dfltSrch - true FF - user.js: extensions.funmoods.srchPrvdr - Search FF - user.js: extensions.funmoods.dnsErr - true FF - user.js: extensions.funmoods_i.newTab - true FF - user.js: extensions.funmoods.newTabUrl - hxxp://start.funmoods.com/?f=2&a=wbst&chnl=&cd=2XzutAtN2Y1L1Qzuzz0C0AzyzztBtAzz0EyD0FyByCzz0BtAtN0D0TzutBtDtCtBtDyBtCtD&cr=1851579163 FF - user.js: extensions.funmoods.tlbrSrchUrl - hxxp://start.funmoods.com/?f=3&a=wbst&chnl=&cd=2XzutAtN2Y1L1Qzuzz0C0AzyzztBtAzz0EyD0FyByCzz0BtAtN0D0TzutBtDtCtBtDyBtCtD&cr=1851579163&q= FF - user.js: extensions.funmoods.id - f67b68b30000000000008ca98238e5f7 FF - user.js: extensions.funmoods.instlDay - 15531 FF - user.js: extensions.funmoods.vrsn - 1.5.23.22 FF - user.js: extensions.funmoods.vrsni - 1.5.23.22 FF - user.js: extensions.funmoods_i.vrsnTs - 1.5.23.221:21:43 FF - user.js: extensions.funmoods.prtnrId - funmoods FF - user.js: extensions.funmoods.prdct - funmoods FF - user.js: extensions.funmoods.aflt - wbst FF - user.js: extensions.funmoods_i.smplGrp - none FF - user.js: extensions.funmoods.tlbrId - base FF - user.js: extensions.funmoods.instlRef - FF - user.js: extensions.funmoods.dfltLng - FF - user.js: extensions.funmoods.excTlbr - false FF - user.js: extensions.funmoods.autoRvrt - false FF - user.js: extensions.funmoods.envrmnt - production FF - user.js: extensions.funmoods.isdcmntcmplt - true FF - user.js: extensions.funmoods.mntrvrsn - 1.3.0 FF - user.js: extensions.BabylonToolbar.tlbrSrchUrl - hxxp://search.babylon.com/?babsrc=TB_def&mntrId=f67b68b30000000000008ca98238e5f7&q= FF - user.js: extensions.BabylonToolbar.id - f67b68b30000000000008ca98238e5f7 FF - user.js: extensions.BabylonToolbar.appId - {BDB69379-802F-4eaf-B541-F8DE92DD98DB} FF - user.js: extensions.BabylonToolbar.instlDay - 15620 FF - user.js: extensions.BabylonToolbar.vrsn - 1.8.0.7 FF - user.js: extensions.BabylonToolbar.vrsni - 1.8.0.7 FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.8.0.70:25:39 FF - user.js: extensions.BabylonToolbar.prtnrId - babylon FF - user.js: extensions.BabylonToolbar.prdct - BabylonToolbar FF - user.js: extensions.BabylonToolbar.aflt - babsst FF - user.js: extensions.BabylonToolbar_i.smplGrp - none FF - user.js: extensions.BabylonToolbar.tlbrId - base FF - user.js: extensions.BabylonToolbar.instlRef - sst FF - user.js: extensions.BabylonToolbar.dfltLng - en FF - user.js: extensions.BabylonToolbar.excTlbr - false FF - user.js: extensions.BabylonToolbar.admin - false . user_pref('extensions.dealply.partner', 'inff'); . user_pref('extensions.dealply.channel', 'infftog01'); . user_pref('extensions.dealply.installId', 'v24300247995957540653192012102800063631'); . user_pref('extensions.dealply.installIdSource', 'inst'); . user_pref('extensions.dealply.sampleGroup', '1'); . user_pref('extensions.dealply.partner', 'inff'); . user_pref('extensions.dealply.channel', 'infftog01'); . user_pref('extensions.dealply.installId', 'v24300247995957540653192012102800063631'); . user_pref('extensions.dealply.installIdSource', 'inst'); . user_pref('extensions.dealply.sampleGroup', '1'); . ============= SERVICES / DRIVERS =============== . R0 TPDIGIMN;TPDIGIMN;C:\Windows\System32\drivers\ApsHM64.sys [2011-1-14 23664] R1 avgtp;avgtp;C:\Windows\System32\drivers\avgtpx64.sys [2012-11-17 30568] R1 lenovo.smi;Lenovo System Interface Driver;C:\Windows\System32\drivers\smiifx64.sys [2010-5-27 15400] R2 AAMWService;Ashampoo Anti-Malware Service;C:\Programs\Ashampoo® Anti-Malware\Ashampoo Anti-Malware\AAMW_Service.exe [2012-3-9 1313184] R2 cvhsvc;Client Virtualization Handler;C:\Program Files (x86)\Common Files\microsoft shared\Virtualization Handler\CVHSVC.EXE [2012-1-4 822624] R2 LENOVO.CAMMUTE;Lenovo Camera Mute;C:\Program Files\Lenovo\Communications Utility\CamMute.exe [2011-3-3 50536] R2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction;C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [2011-3-3 74088] R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll;C:\Program Files\Lenovo\VIRTSCRL\lvvsst.exe [2010-5-27 93032] R2 NetBalancer Windows Service;NetBalancer Windows Service;C:\Programs\NetBalancerPro\NetBalancer\SeriousBit.NetBalancer.Service.exe [2012-2-18 10240] R2 RtkAudioService;Realtek Audio Service;C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2011-3-3 199272] R2 sftlist;Application Virtualization Client;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-1 508776] R2 Skype C2C Service;Skype C2C Service;C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-10-2 3064000] R2 smihlp;SMI Helper Driver (smihlp);C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys [2009-3-14 13840] R2 SSPORT;SSPORT;C:\Windows\System32\drivers\SSPORT.sys [2012-2-15 11576] R2 TPHKSVC;On Screen Display;C:\Program Files\Lenovo\HOTKEY\TPHKSVC.exe [2010-5-27 63928] R2 UNS;Intel® Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2011-3-3 2320920] R2 vToolbarUpdater12.1.3;vToolbarUpdater12.1.3;C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\12.1.3\ToolbarUpdater.exe [2012-11-17 830048] R2 X5XSEx_Pr143;X5XSEx_Pr143;C:\Program Files (x86)\Free Ride Games\X5XSEx_Pr143.sys [2012-10-28 56136] R3 5U877;USB Video Device;C:\Windows\System32\drivers\5U877.sys [2011-3-3 161664] R3 Apowersoft_AudioDevice;Apowersoft_AudioDevice;C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [2012-4-26 29288] R3 HECIx64;Intel® Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2011-3-3 56344] R3 Impcd;Impcd;C:\Windows\System32\drivers\Impcd.sys [2011-3-3 158976] R3 InputFilter_Hid_FlexDef2b;Siliten HID Devices(FlexDef2b) Driver Service;C:\Windows\System32\drivers\InputFilter_FlexDef2b.sys [2012-10-2 17920] R3 IntcDAud;Intel® Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2011-3-3 271872] R3 MouFilter_Mou_FlexDef4;HID Mouse(FlexDef4) Driver Service;C:\Windows\System32\drivers\MouFilter_FlexDef4.sys [2012-10-2 15360] R3 Nbdrv;NetBalancer;C:\Windows\System32\drivers\nbdrv.sys [2012-2-18 41256] R3 NETw5s64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;C:\Windows\System32\drivers\NETw5s64.sys [2010-3-18 7680512] R3 PCWinSoft;ScreenCamera.Net Video Camera;C:\Windows\System32\drivers\scrcamnetdriver_x64.sys [2012-6-28 241800] R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2011-6-10 539240] R3 Sftfs;Sftfs;C:\Windows\System32\drivers\Sftfslh.sys [2011-10-1 764264] R3 Sftplay;Sftplay;C:\Windows\System32\drivers\Sftplaylh.sys [2011-10-1 268648] R3 Sftredir;Sftredir;C:\Windows\System32\drivers\Sftredirlh.sys [2011-10-1 25960] R3 Sftvol;Sftvol;C:\Windows\System32\drivers\Sftvollh.sys [2011-10-1 22376] R3 sftvsa;Application Virtualization Service Agent;C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-1 219496] R3 wdkmd;Intel WiDi KMD;C:\Windows\System32\drivers\WDKMD.sys [2010-4-16 39832] S2 AAMW_WSC_Service_Vista;Ashampoo Anti-Malware WSC Service;C:\Programs\Ashampoo® Anti-Malware\Ashampoo Anti-Malware\AAMW_WSC_Service_Vista.exe [2012-3-9 52616] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576] S2 LENOVO.MICMUTE;Lenovo Microphone Mute;C:\Program Files\Lenovo\HOTKEY\micmute.exe [2010-5-27 45496] S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-6-7 160944] S3 Application Updater;Application Updater;"C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe" --> C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe [?] S3 btusbflt;Bluetooth USB Filter;C:\Windows\System32\drivers\btusbflt.sys [2011-3-3 53800] S3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\System32\drivers\btwl2cap.sys [2011-3-3 35104] S3 DigiartyVirtualCDBus;Digiarty Virtual Driver;C:\Windows\System32\drivers\DigiartyVirtualCDBus.sys [2012-1-6 276256] S3 GSService;GSService;C:\Windows\SysWOW64\GSService.exe [2012-2-27 252416] S3 Magic Desktop Server;Magic Desktop Server;C:\Programs\Ommoo Magic Desktop\Magic Desktop\server\MagicDesktopServer.exe --> C:\Programs\Ommoo Magic Desktop\Magic Desktop\server\MagicDesktopServer.exe [?] S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2010-3-5 340240] S3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\System32\drivers\netw5v64.sys [2009-6-10 5434368] S3 PCDSRVC{127174DC-C366ED8B-06020101}_0;PCDSRVC{127174DC-C366ED8B-06020101}_0 - PCDR Kernel Mode Service Helper Driver;C:\Program Files\PC-Doctor\pcdsrvc_x64.pkms [2010-11-12 25072] S3 Power Manager DBC Service;Power Manager DBC Service;C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.exe [2011-3-3 75112] S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2012-11-15 19456] S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\System32\drivers\RtsUStor.sys [2011-3-3 239136] S3 SrvHsfHDA;SrvHsfHDA;C:\Windows\System32\drivers\VSTAZL6.SYS [2009-7-14 292864] S3 SrvHsfV92;SrvHsfV92;C:\Windows\System32\drivers\VSTDPV6.SYS [2009-7-14 1485312] S3 SrvHsfWinac;SrvHsfWinac;C:\Windows\System32\drivers\VSTCNXT6.SYS [2009-7-14 740864] S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096] S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2012-11-15 57856] S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-23 57184] . =============== Created Last 30 ================ . 2012-11-17 15:14:25 30568 ----a-w- C:\Windows\System32\drivers\avgtpx64.sys 2012-11-17 15:14:21 -------- d-----w- C:\Program Files (x86)\Common Files\AVG Secure Search 2012-11-17 15:14:15 -------- d-----w- C:\Program Files (x86)\AVG Secure Search 2012-11-17 15:14:07 -------- d--h--w- C:\ProgramData\Common Files 2012-11-17 14:57:35 -------- d-----w- C:\Users\Emi\AppData\Local\Innovative Solutions 2012-11-17 12:46:37 -------- d-----w- C:\fb9977af00c2e2b591d7c86f 2012-11-17 12:46:11 -------- d-----w- C:\96e311d8e08296ae808ef2241270a5 2012-11-17 11:38:18 -------- d-----w- C:\3a3eac37d1c3557dd2def9 2012-11-17 11:37:43 -------- d-----w- C:\7d7444aaab06e7b2640c40e4615d 2012-11-16 20:03:39 69000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2689F9C6-F9E2-41C9-95FA-3336E754F2A5}\offreg.dll 2012-11-16 12:37:52 192000 ----a-w- C:\Windows\System32\iisRtl.dll 2012-11-16 12:37:51 55296 ----a-w- C:\Windows\System32\admwprox.dll 2012-11-16 12:37:51 50688 ----a-w- C:\Windows\SysWow64\admwprox.dll 2012-11-16 12:37:51 154624 ----a-w- C:\Windows\SysWow64\iisRtl.dll 2012-11-16 12:37:50 8192 ----a-w- C:\Windows\SysWow64\iisrstap.dll 2012-11-16 12:37:50 60928 ----a-w- C:\Windows\System32\ahadmin.dll 2012-11-16 12:37:50 26624 ----a-w- C:\Windows\SysWow64\ahadmin.dll 2012-11-16 12:37:50 16896 ----a-w- C:\Windows\System32\iisreset.exe 2012-11-16 12:37:50 15360 ----a-w- C:\Windows\SysWow64\iisreset.exe 2012-11-16 12:37:50 14848 ----a-w- C:\Windows\System32\wamregps.dll 2012-11-16 12:37:50 11264 ----a-w- C:\Windows\System32\iisrstap.dll 2012-11-16 12:37:50 10752 ----a-w- C:\Windows\SysWow64\wamregps.dll 2012-11-16 12:32:46 9291768 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{2689F9C6-F9E2-41C9-95FA-3336E754F2A5}\mpengine.dll 2012-11-15 17:16:09 -------- d-----w- C:\Windows\SysWow64\BestPractices 2012-11-15 17:16:07 -------- d-----w- C:\Windows\System32\msmq 2012-11-15 17:16:07 -------- d-----w- C:\Windows\System32\BestPractices 2012-11-15 17:15:59 -------- d-----w- C:\inetpub 2012-11-15 16:08:30 -------- d-----w- C:\Program Files\AuthenTec 2012-11-15 16:06:24 -------- d-----w- C:\Users\Emi\AppData\Roaming\Malwarebytes 2012-11-15 16:05:55 -------- d-----w- C:\ProgramData\Malwarebytes 2012-11-15 16:05:51 25928 ----a-w- C:\Windows\System32\drivers\mbam.sys 2012-11-15 16:05:14 9728 ----a-w- C:\Windows\System32\Wdfres.dll 2012-11-15 16:05:14 785512 ----a-w- C:\Windows\System32\drivers\Wdf01000.sys 2012-11-15 16:05:14 54376 ----a-w- C:\Windows\System32\drivers\WdfLdr.sys 2012-11-15 16:05:14 2560 ----a-w- C:\Windows\System32\drivers\el-GR\wdf01000.sys.mui 2012-11-15 15:58:04 2382848 ----a-w- C:\Windows\System32\mshtml.tlb 2012-11-15 15:58:03 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb 2012-11-15 15:58:02 140960 ----a-w- C:\Program Files (x86)\Internet Explorer\sqmapi.dll 2012-11-15 15:58:01 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll 2012-11-15 15:58:01 304640 ----a-w- C:\Program Files\Internet Explorer\IEShims.dll 2012-11-15 15:58:01 194048 ----a-w- C:\Program Files (x86)\Internet Explorer\IEShims.dll 2012-11-15 15:58:01 174216 ----a-w- C:\Program Files\Internet Explorer\sqmapi.dll 2012-11-15 15:58:00 173056 ----a-w- C:\Windows\System32\ieUnatt.exe 2012-11-15 15:58:00 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe 2012-11-15 15:31:02 -------- d-----w- C:\Users\Emi\AppData\Roaming\EurekaLog 2012-11-15 15:12:22 87040 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys 2012-11-15 15:12:22 84992 ----a-w- C:\Windows\System32\WUDFSvc.dll 2012-11-15 15:12:22 198656 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys 2012-11-15 15:12:22 194048 ----a-w- C:\Windows\System32\WUDFPlatform.dll 2012-11-15 15:12:21 744448 ----a-w- C:\Windows\System32\WUDFx.dll 2012-11-15 15:12:21 45056 ----a-w- C:\Windows\System32\WUDFCoinstaller.dll 2012-11-15 15:12:21 229888 ----a-w- C:\Windows\System32\WUDFHost.exe 2012-11-15 14:42:08 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll 2012-11-15 14:42:08 458712 ----a-w- C:\Windows\System32\drivers\cng.sys 2012-11-15 14:42:08 340992 ----a-w- C:\Windows\System32\schannel.dll 2012-11-15 14:42:08 307200 ----a-w- C:\Windows\System32\ncrypt.dll 2012-11-15 14:42:08 247808 ----a-w- C:\Windows\SysWow64\schannel.dll 2012-11-15 14:42:08 220160 ----a-w- C:\Windows\SysWow64\ncrypt.dll 2012-11-15 14:42:08 22016 ----a-w- C:\Windows\SysWow64\secur32.dll 2012-11-15 14:42:08 154480 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys 2012-11-15 14:42:08 1448448 ----a-w- C:\Windows\System32\lsasrv.dll 2012-11-15 14:40:14 70656 ----a-w- C:\Windows\System32\nlaapi.dll 2012-11-15 14:40:14 569344 ----a-w- C:\Windows\System32\iphlpsvc.dll 2012-11-15 14:40:14 52224 ----a-w- C:\Windows\SysWow64\nlaapi.dll 2012-11-15 14:40:14 45568 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys 2012-11-15 14:40:14 303104 ----a-w- C:\Windows\System32\nlasvc.dll 2012-11-15 14:40:14 246272 ----a-w- C:\Windows\System32\netcorehc.dll 2012-11-15 14:40:14 216576 ----a-w- C:\Windows\System32\ncsi.dll 2012-11-15 14:40:14 1914248 ----a-w- C:\Windows\System32\drivers\tcpip.sys 2012-11-15 14:40:14 18944 ----a-w- C:\Windows\SysWow64\netevent.dll 2012-11-15 14:40:14 18944 ----a-w- C:\Windows\System32\netevent.dll 2012-11-15 14:40:14 175104 ----a-w- C:\Windows\SysWow64\netcorehc.dll 2012-11-15 14:40:14 156672 ----a-w- C:\Windows\SysWow64\ncsi.dll 2012-11-15 14:35:59 55296 ----a-w- C:\Windows\System32\dhcpcsvc6.dll 2012-11-15 14:35:59 226816 ----a-w- C:\Windows\System32\dhcpcore6.dll 2012-11-15 14:35:59 193536 ----a-w- C:\Windows\SysWow64\dhcpcore6.dll 2012-11-15 14:35:58 44032 ----a-w- C:\Windows\SysWow64\dhcpcsvc6.dll 2012-11-15 14:35:23 3149824 ----a-w- C:\Windows\System32\win32k.sys 2012-11-15 14:33:25 95744 ----a-w- C:\Windows\System32\synceng.dll 2012-11-15 14:33:25 78336 ----a-w- C:\Windows\SysWow64\synceng.dll 2012-11-10 11:12:47 -------- d-----w- C:\Program Files (x86)\YourFileDownloader 2012-11-08 21:58:24 -------- d-----w- C:\Program Files (x86)\IMVU_Inc 2012-11-03 12:03:37 -------- d-----w- C:\Users\Emi\AppData\Local\WEB2Print 2012-11-02 13:13:07 -------- d--h--w- C:\.cache 2012-11-02 13:11:25 -------- d-----r- C:\Users\Emi\MegaCloud 2012-11-02 13:10:49 -------- d-----w- C:\Users\Emi\AppData\Roaming\MegaCloudBackup 2012-11-02 13:09:51 -------- d-----w- C:\Users\Emi\AppData\Roaming\MegaCloud 2012-11-02 13:08:49 -------- d-----w- C:\ProgramData\Web Installer 2012-10-28 13:43:28 -------- d-----w- C:\ProgramData\GoBit Games 2012-10-28 13:35:35 -------- d-----w- C:\Users\Emi\AppData\Roaming\Exent Technologies 2012-10-28 13:35:29 -------- d-----w- C:\Users\Emi\AppData\Roaming\Supermarket Mania 2 2012-10-28 13:23:29 -------- d-----w- C:\Remote Programs 2012-10-28 13:23:20 -------- d-----w- C:\ProgramData\Free Ride Games 2012-10-28 13:23:10 57824 ------w- C:\Windows\ExentInfo.exe 2012-10-28 13:23:09 -------- d-----w- C:\Program Files (x86)\Free Ride Games 2012-10-27 21:49:22 -------- d-----w- C:\Downloads 2012-10-27 21:48:07 -------- d-----w- C:\Users\Emi\AppData\Roaming\BitComet 2012-10-27 21:06:36 -------- d-----w- C:\Program Files (x86)\DealPly 2012-10-27 20:17:04 -------- d-----w- C:\Program Files (x86)\AppsAreFun 2012-10-27 20:16:46 -------- d-----w- C:\ProgramData\Premium 2012-10-27 20:16:21 -------- d-----w- C:\ProgramData\SaveAs 2012-10-27 20:15:35 -------- d-----w- C:\ProgramData\InstallMate 2012-10-27 19:15:35 -------- d-----w- C:\Users\Emi\AppData\Roaming\IMVU 2012-10-27 19:09:02 -------- d-----w- C:\Users\Emi\AppData\Roaming\IMVUClient . ==================== Find3M ==================== . 2012-10-11 16:11:29 0 ----a-w- C:\Windows\SysWow64\sho23D8.tmp 2012-10-08 11:31:03 2312704 ----a-w- C:\Windows\System32\jscript9.dll 2012-10-08 11:23:52 1392128 ----a-w- C:\Windows\System32\wininet.dll 2012-10-08 11:22:55 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl 2012-10-08 11:17:35 599040 ----a-w- C:\Windows\System32\vbscript.dll 2012-10-08 07:56:24 1800704 ----a-w- C:\Windows\SysWow64\jscript9.dll 2012-10-08 07:48:03 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll 2012-10-08 07:47:44 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl 2012-09-26 08:44:36 226424 ----a-w- C:\Windows\System32\SBuySupplies.exe 2012-09-14 19:19:29 2048 ----a-w- C:\Windows\System32\tzres.dll 2012-09-14 18:28:53 2048 ----a-w- C:\Windows\SysWow64\tzres.dll 2012-09-03 22:23:00 161951 ----a-w- C:\Windows\DP Animation Maker Uninstaller.exe 2012-08-31 18:19:35 1659760 ----a-w- C:\Windows\System32\drivers\ntfs.sys 2012-08-30 18:03:45 5559664 ----a-w- C:\Windows\System32\ntoskrnl.exe 2012-08-30 17:12:02 3968880 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe 2012-08-30 17:12:02 3914096 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe 2012-08-26 15:47:34 161 ----a-w- C:\Windows\SysWow64\gpupdate.bin 2012-08-24 18:05:07 220160 ----a-w- C:\Windows\System32\wintrust.dll 2012-08-24 16:57:48 172544 ----a-w- C:\Windows\SysWow64\wintrust.dll 2012-08-23 14:13:11 243200 ----a-w- C:\Windows\System32\rdpudd.dll 2012-08-23 14:10:20 19456 ----a-w- C:\Windows\System32\drivers\rdpvideominiport.sys 2012-08-23 14:07:35 57856 ----a-w- C:\Windows\System32\drivers\TsUsbFlt.sys 2012-08-23 13:47:20 46592 ----a-w- C:\Windows\SysWow64\MsRdpWebAccess.dll 2012-08-23 13:46:20 16896 ----a-w- C:\Windows\SysWow64\wksprtPS.dll 2012-08-23 13:41:52 13312 ----a-w- C:\Windows\System32\TsUsbRedirectionGroupPolicyControl.exe 2012-08-23 13:40:56 13312 ----a-w- C:\Windows\System32\TsUsbRedirectionGroupPolicyExtension.dll 2012-08-23 13:24:57 15360 ----a-w- C:\Windows\System32\RdpGroupPolicyExtension.dll 2012-08-23 13:20:40 54272 ----a-w- C:\Windows\System32\MsRdpWebAccess.dll 2012-08-23 13:18:14 37376 ----a-w- C:\Windows\SysWow64\tsgqec.dll 2012-08-23 13:17:54 18432 ----a-w- C:\Windows\System32\wksprtPS.dll 2012-08-23 13:06:58 43520 ----a-w- C:\Windows\System32\TsUsbGDCoInstaller.dll 2012-08-23 12:52:53 44032 ----a-w- C:\Windows\System32\tsgqec.dll 2012-08-23 11:20:06 62976 ----a-w- C:\Windows\System32\TSWbPrxy.exe 2012-08-23 11:15:57 269312 ----a-w- C:\Windows\SysWow64\aaclient.dll 2012-08-23 11:14:09 384000 ----a-w- C:\Windows\System32\wksprt.exe 2012-08-23 11:12:17 192000 ----a-w- C:\Windows\SysWow64\rdpendp_winip.dll 2012-08-23 10:54:24 322560 ----a-w- C:\Windows\System32\aaclient.dll 2012-08-23 10:51:14 228864 ----a-w- C:\Windows\System32\rdpendp_winip.dll 2012-08-23 10:39:24 1048064 ----a-w- C:\Windows\SysWow64\mstsc.exe 2012-08-23 10:22:22 1123840 ----a-w- C:\Windows\System32\mstsc.exe 2012-08-23 09:51:57 3174912 ----a-w- C:\Windows\System32\rdpcorets.dll 2012-08-23 08:19:01 4916224 ----a-w- C:\Windows\SysWow64\mstscax.dll 2012-08-23 08:13:07 5773824 ----a-w- C:\Windows\System32\mstscax.dll 2012-08-22 18:12:40 950128 ----a-w- C:\Windows\System32\drivers\ndis.sys 2012-08-22 18:12:40 376688 ----a-w- C:\Windows\System32\drivers\netio.sys 2012-08-22 18:12:33 288624 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS 2012-08-21 21:01:00 245760 ----a-w- C:\Windows\System32\OxpsConverter.exe 2012-08-20 18:48:44 362496 ----a-w- C:\Windows\System32\wow64win.dll 2012-08-20 18:48:44 243200 ----a-w- C:\Windows\System32\wow64.dll 2012-08-20 18:48:44 13312 ----a-w- C:\Windows\System32\wow64cpu.dll 2012-08-20 18:48:43 215040 ----a-w- C:\Windows\System32\winsrv.dll 2012-08-20 18:48:37 16384 ----a-w- C:\Windows\System32\ntvdm64.dll 2012-08-20 18:48:35 424448 ----a-w- C:\Windows\System32\KernelBase.dll 2012-08-20 18:46:22 338432 ----a-w- C:\Windows\System32\conhost.exe 2012-08-20 17:40:21 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll 2012-08-20 17:38:44 44032 ----a-w- C:\Windows\apppatch\acwow64.dll 2012-08-20 17:38:26 25600 ----a-w- C:\Windows\SysWow64\setup16.exe 2012-08-20 17:37:19 5120 ----a-w- C:\Windows\SysWow64\wow32.dll 2012-08-20 17:37:18 274944 ----a-w- C:\Windows\SysWow64\KernelBase.dll 2012-08-20 15:38:21 7680 ----a-w- C:\Windows\SysWow64\instnm.exe 2012-08-20 15:38:20 2048 ----a-w- C:\Windows\SysWow64\user.exe 2012-08-20 15:33:28 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll 2012-08-20 15:33:28 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll 2012-08-20 15:33:28 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll 2012-08-20 15:33:28 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll . ============= FINISH: 18:17:01.76 ===============
-
Exeption EOleSysError in module OTL.exe at 000584A5 не може да се стартира
-
Същото CoCreateInstance failed; Code ox80040154 натиснах 5 пъти ОК и другите две по 3 пъти
-
Rkill 2.4.5 by Lawrence Abrams (Grinler) http://www.bleepingcomputer.com/ Copyright 2008-2012 BleepingComputer.com More Information about Rkill can be found at this link: http://www.bleepingcomputer.com/forums/topic308364.html Program started at: 11/17/2012 03:51:33 PM in x64 mode. Windows Version: Windows 7 Home Premium Service Pack 1 Checking for Windows services to stop: * No malware services found to stop. Checking for processes to terminate: * C:\ProgramData\Premium\OptimizerPro1\OptimizerPro1.exe (PID: 1080) [AU-HEUR] 1 proccess terminated! Checking Registry for malware related settings: * Explorer Policy Removed: NoActiveDesktopChanges [HKLM] Backup Registry file created at: C:\Users\Emi\Desktop\rkill\rkill-11-17-2012-03-51-50.reg Resetting .EXE, .COM, & .BAT associations in the Windows Registry. Performing miscellaneous checks: * No issues found. Checking Windows Service Integrity: * No issues found. Searching for Missing Digital Signatures: * C:\Windows\System32\UxTheme.dll [NoSig] +-> C:\Windows\SysWOW64\uxtheme.dll : 245760 : 07/14/2009 00:11 AM : 43964fa89ccf97ba6be34d69455ac65f [Pos Repl] +-> C:\Windows\winsxs\amd64_microsoft-windows-uxtheme_31bf3856ad364e35_6.1.7600.16385_none_01d98c7b2040a1b9\uxtheme.dll : 332288 : 07/14/2009 00:41 AM : d29e998e8277666982b4f0303bf4e7af [Pos Repl] +-> C:\Windows\winsxs\wow64_microsoft-windows-uxtheme_31bf3856ad364e35_6.1.7600.16385_none_0c2e36cd54a163b4\uxtheme.dll : 245760 : 07/14/2009 00:11 AM : 43964fa89ccf97ba6be34d69455ac65f [Pos Repl] Checking HOSTS File: * No issues found. Program finished at: 11/17/2012 03:54:13 PM Execution time: 0 hours(s), 2 minute(s), and 40 seconds(s)
-
Здравейте, на лап топа ( Windows Home Premium 7 -64) се появи голям проблем. Като отварям основния прозорец на антивирусната излиза този надпис Exeption EOleSysError in module AAMW_Main.exe at 00134E35 Клас не е вписан ClassID: Също така при инсталиране на нова програма излизат CoCreateInstance failed; Code ox80040154 (Това излезе при инсталиране на Malwarebytes' Anti-Malware) Също и това Run-time error 'o' и Run-time error '440'; И други програми не работят (Skype) Може ли да се направи нещо? Благодаря ако някой знае да помогне! Исках да прикрепя снимки, но не работи изборът на файл. Това също е част от проблема Също така не могат да се инсталират 2 апдейта за Microsoft.Net FrameWork 4.