MyCity » Ambulanta -> Arhiva Ambulante » Problemi sa virusima

Problemi sa virusima

Napisano na dan: 24.3.2016

Strana:
1
2

Problemi sa virusima

Sledeća strana

Pagination

Odgovori

Strana:
1
2

sasasakic Poslao: 24 Mar 2016 14:24 Idi na vrh
offline sasasakic Novi MyCity građanin Pridružio: 24 Mar 2016 Poruke: 7	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Uloguj se preko Facebooka da bi skinuo fajl: Stizu mejlovi sa nepoznatih adresa, cak i lazni mejlovi sa sopstvene adrese. Primjetan je znatno sporiji i bucan rad racunara, kao i povremena blokada radnog ekrana. Pocetak navednih problema je primjecen prije 10 dana. Racunar je skeniran SA AVG a-virusom, i pri tome je pronadjena jedna zarazena datoteka. ---------------------------------------------------------------------------------------------------------- Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01 Ran by Korisnik (administrator) on SAKIC (24-03-2016 14:18:29) Running from d:\Users\Korisnik\Desktop Loaded Profiles: Korisnik (Available Profiles: Korisnik) Platform: Windows 7 Professional Service Pack 1 (X64) Language: English (United States) Internet Explorer Version 8 (Default browser: FF) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: geekstogo.com/forum/topic/335081-frst-t.....scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgrsa.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgcsrva.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe (Hewlett-Packard Company) C:\Windows\System32\hpservice.exe (Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler.exe (Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.5\GoogleCrashHandler64.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgfws.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgidsagent.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe (IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgnsa.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgemca.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (CANON INC.) C:\Program Files\Canon\DIAS\CnxDIAS.exe () C:\Users\Korisnik\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe (Hewlett-Packard Company) C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe (HP) C:\Windows\System32\HPSIsvc.exe () C:\ProgramData\DatacardService\HWDeviceService64.exe (Huawei Technologies Co., Ltd.) C:\ProgramData\DatacardService\DCSHelper.exe () C:\ProgramData\Internet Manager\OnlineUpdate\ouc.exe () C:\ProgramData\Mobilni internet\OnlineUpdate\ouc.exe (pdfforge GmbH) C:\Program Files (x86)\PDF Architect 2\creator-ws.exe (IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe (Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Box, Inc.) C:\Program Files\Box\Box Sync\BoxSync.exe (Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Google) C:\Program Files (x86)\Google\Drive\googledrivesync.exe (Dropbox, Inc.) C:\Users\Korisnik\AppData\Roaming\Dropbox\bin\Dropbox.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (IVT Corporation) C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 7110 series\Bin\HPNetworkCommunicatorCom.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Av\avgui.exe () C:\Program Files\Box\Box Sync\BoxSyncMonitor.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office15\OUTLOOK.EXE (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Autodesk, Inc.) C:\Program Files\Common Files\Autodesk Shared\WSCommCntr4\lib\WSCommCntr4.exe ==================== Registry (Whitelisted) =========================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1356240 2013-07-18] (Microsoft Corporation) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated) HKLM\...\Run: [BoxSync] => C:\Program Files\Box\Box Sync\BoxSync.exe [6159848 2016-03-04] (Box, Inc.) HKLM-x32\...\Run: [BtTray] => C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe [364544 2012-09-03] (IVT Corporation) HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-01-27] (Intel Corporation) HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard) HKLM-x32\...\Run: [mobilegeni daemon] => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3499896 2014-05-08] (Adobe Systems Inc.) HKLM-x32\...\Run: [StatusAlerts] => C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe [313656 2013-04-18] (Hewlett-Packard Company) HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirnx.exe [179624 2016-02-18] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [AVG_UI] => C:\Program Files (x86)\AVG\Av\avgui.exe [3862440 2016-03-02] (AVG Technologies CZ, s.r.o.) Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation) HKU\S-1-5-21-1725173109-782845030-373357407-1000\...\Run: [Dropbox Update] => C:\Users\Korisnik\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-16] (Dropbox, Inc.) HKU\S-1-5-21-1725173109-782845030-373357407-1000\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23260000 2016-02-24] (Google) HKU\S-1-5-21-1725173109-782845030-373357407-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [50599552 2016-02-10] (Skype Technologies S.A.) HKU\S-1-5-21-1725173109-782845030-373357407-1000\...\Run: [CloudApp] => C:\Program Files (x86)\CloudApp\CloudApp.exe HKU\S-1-5-21-1725173109-782845030-373357407-1000\...\Policies\Explorer: [] HKU\S-1-5-21-1725173109-782845030-373357407-1000\...\MountPoints2: {1accd8a0-3377-11e3-a583-38eaa7e3dd10} - F:\LGAutoRun.exe HKU\S-1-5-21-1725173109-782845030-373357407-1000\...\MountPoints2: {7f0dc71a-1709-11e3-b63c-a41731a8ac88} - F:\AutoRun.exe HKU\S-1-5-21-1725173109-782845030-373357407-1000\...\MountPoints2: {7f0dc73f-1709-11e3-b63c-a41731a8ac88} - F:\AutoRun.exe HKU\S-1-5-21-1725173109-782845030-373357407-1000\...\MountPoints2: {cf3a71bc-b287-11e4-b042-38eaa7e3dd10} - F:\AutoRun.exe HKU\S-1-5-21-1725173109-782845030-373357407-1000\...\MountPoints2: {cf3a71ca-b287-11e4-b042-38eaa7e3dd10} - G:\AutoRun.exe HKU\S-1-5-18\...\Run: [Copy] => "C:\Users\Korisnik\AppData\Roaming\Copy\CopyAgent.exe" ShellIconOverlayIdentifiers: [ BoxSyncFileLocked] -> {86f83459-46ae-3fc3-8c14-c1bc03652fc3} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation) ShellIconOverlayIdentifiers: [ BoxSyncFileLockedByOther] -> {08d9ef0e-3e66-3dbd-aa48-33a29d48a756} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation) ShellIconOverlayIdentifiers: [ BoxSyncNotSynced] -> {05702baa-61d6-3e70-942d-890a10c53c60} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation) ShellIconOverlayIdentifiers: [ BoxSyncProblem] -> {218ff48e-7276-3cb9-9a88-e18be653d8b7} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation) ShellIconOverlayIdentifiers: [ BoxSyncSynced] -> {75f00343-4f8e-37b0-8f40-4ec7a4559d11} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation) ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-02-24] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-02-24] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-02-24] (Google) ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Korisnik\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Korisnik\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Korisnik\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Korisnik\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Korisnik\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Korisnik\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Korisnik\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.) ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Korisnik\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-03-12] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [1aCopyShExtError] -> {83BEA36E-7680-4598-A4DF-994426F6E78D} => C:\Users\Korisnik\AppData\Roaming\Copy\overlay\CopyShExt.dll No File ShellIconOverlayIdentifiers: [2aCopyShExtSynced] -> {845B7388-6F85-4F32-9FD5-F02DC7882B89} => C:\Users\Korisnik\AppData\Roaming\Copy\overlay\CopyShExt.dll No File ShellIconOverlayIdentifiers: [3aCopyShExtSyncing] -> {F6378A7A-F753-449B-AE1B-997A96132E61} => C:\Users\Korisnik\AppData\Roaming\Copy\overlay\CopyShExt.dll No File ShellIconOverlayIdentifiers: [4aCopyShExtSyncingProg1] -> {3A511828-777D-46F8-82F4-5B530C1B3D9E} => C:\Users\Korisnik\AppData\Roaming\Copy\overlay\CopyShExt.dll No File ShellIconOverlayIdentifiers: [5aCopyShExtSyncingProg2] -> {C8C88204-5B14-40EC-BA72-8AEBC762047E} => C:\Users\Korisnik\AppData\Roaming\Copy\overlay\CopyShExt.dll No File ShellIconOverlayIdentifiers: [6aCopyShExtSyncingProg3] -> {ACFF45C3-3EEB-4351-86C2-6696BA264239} => C:\Users\Korisnik\AppData\Roaming\Copy\overlay\CopyShExt.dll No File ShellIconOverlayIdentifiers: [7aCopyShExtSyncingProg4] -> {29AF997F-488B-46F0-AE78-7146F1B89CC3} => C:\Users\Korisnik\AppData\Roaming\Copy\overlay\CopyShExt.dll No File ShellIconOverlayIdentifiers: [8aCopyShExtSyncingProg5] -> {03F9AD29-1C78-4B66-8890-B177B5430C53} => C:\Users\Korisnik\AppData\Roaming\Copy\overlay\CopyShExt.dll No File ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2013-04-16] (Autodesk, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Korisnik\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Korisnik\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Korisnik\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-03-12] (Dropbox, Inc.) Startup: C:\Users\Korisnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2016-03-18] ShortcutTarget: Dropbox.lnk -> C:\Users\Korisnik\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) Startup: C:\Users\Korisnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Monitor Ink Alerts - HP Officejet 7110 series (Network).lnk [2016-03-24] ShortcutTarget: Monitor Ink Alerts - HP Officejet 7110 series (Network).lnk -> C:\Program Files\HP\HP Officejet 7110 series\Bin\HPStatusBL.dll (Hewlett-Packard Co.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) Hosts: 127.0.0.1 validation.sls.microsoft.com Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{3E8122F6-12FC-48C9-8AC9-E38A93DAD7D1}: [NameServer] 81.93.64.1 81.93.64.9 Tcpip\..\Interfaces\{AA57C641-CCC5-4683-A4F1-7B6CC2B9ADB4}: [NameServer] 81.93.64.1 81.93.64.9 Tcpip\..\Interfaces\{B70934B0-60D9-46A4-8B35-5F2E02C1D6D4}: [DhcpNameServer] 192.168.0.1 Tcpip\..\Interfaces\{DD3CE4D8-7D21-41F0-8BC7-416DBB567CDA}: [DhcpNameServer] 192.168.0.1 Internet Explorer: ================== HKU\S-1-5-21-1725173109-782845030-373357407-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.ba/?gws_rd=cr,ssl&ei=N5c2VdOZJMHosAH2noCoAw SearchScopes: HKU\S-1-5-21-1725173109-782845030-373357407-1000 -> {926D1A9C-A768-445F-ACF3-D81A9A87B2BD} URL = hxxp://www.mysearchresults.com/search?c=3523&t=01&q={searchTerms} BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-05-08] (Adobe Systems Incorporated) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation) BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2013-07-13] (Microsoft Corporation) BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-05-08] (Adobe Systems Incorporated) BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated) BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2013-07-10] (Microsoft Corporation) BHO-x32: PDF Architect Helper -> {691B33B0-B86E-47F3-81C7-56E4FE3B929C} -> C:\Program Files (x86)\PDF Architect 2\creator-ie-helper.dll [2014-10-10] (pdfforge GmbH) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-04-21] (Oracle Corporation) BHO-x32: DefaultTab Browser Helper -> {7F6AFBF1-E065-4627-A2FD-810366367D01} -> C:\Windows\SysWow64\config\systemprofile\AppData\Roaming\defaulttab\defaulttab\DefaultTabBHO.dll [2014-11-11] () BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-05-08] (Adobe Systems Incorporated) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2012-10-01] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-04-21] (Oracle Corporation) BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-05-08] (Adobe Systems Incorporated) Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-05-08] (Adobe Systems Incorporated) Toolbar: HKLM-x32 - PDF Architect Toolbar - {DEEB13D7-CEA9-45FB-B77C-E039BEC85221} - C:\Program Files (x86)\PDF Architect 2\creator-ie-plugin.dll [2014-10-10] (pdfforge GmbH) Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll [2014-05-08] (Adobe Systems Incorporated) Toolbar: HKU\S-1-5-21-1725173109-782845030-373357407-1000 -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll [2014-05-08] (Adobe Systems Incorporated) DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxps://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2016-01-08] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2016-01-08] (Microsoft Corporation) Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2015-08-14] (Microsoft Corporation) Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2015-08-14] (Microsoft Corporation) Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2015-08-14] (Microsoft Corporation) Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2015-08-14] (Microsoft Corporation) FireFox: ======== FF ProfilePath: C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default FF SearchEngineOrder.3: Bing FF SelectedSearchEngine: Ask Web Search FF Homepage: hxxp://home.tb.ask.com/index.jhtml?ptb=1FCE14A8-7C43-4337-80C0-3C2829334186&n=781c0886&p2=^HJ^xdm007^YYA^ba&si=CIusiv7S7cgCFQvhGwod1-QDAg FF Keyword.URL: hxxp://int.search.tb.ask.com/search/GGmain.jhtml?st=kwd&ptb=1FCE14A8-7C43-4337-80C0-3C2829334186&n=781c0886&ind=2015103110&p2=^HJ^xdm007^YYA^ba&si=CIusiv7S7cgCFQvhGwod1-QDAg&searchfor= FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_11_8_800_94.dll [2013-08-26] () FF Plugin: @microsoft.com/GENUINE -> disabled [No File] FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll [2013-08-26] () FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-04-21] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-04-21] (Oracle Corporation) FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2013-07-10] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2012-10-01] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-01] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-01] (Google Inc.) FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll [2014-05-08] (Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems) FF Plugin-x32: PDF Architect 2 -> C:\Program Files (x86)\PDF Architect 2\np-previewer.dll [2014-10-10] (pdfforge GmbH) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2013-07-10] (Microsoft Corporation) FF SearchPlugin: C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\searchplugins\ask-web-search.xml [2015-02-11] FF Extension: Default Tab - C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\Extensions\addon@defaulttab.com.xpi [2014-05-06] [not signed] FF Extension: Bing Search Engine - C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\Extensions\bingsearch.full@microsoft.com [2015-04-07] [not signed] FF Extension: VideoDownloadConverter - C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\Extensions\_4zMembers_@www.videodownloadconverter.com [2016-01-24] FF Extension: Internet Speed Tracker - C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\Extensions\_9tMembers_@download.internetspeedtracker.com [2016-01-24] FF Extension: Skype - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2016-01-06] FF Extension: Default - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi [2016-03-19] [not signed] FF HKLM-x32\...\Firefox\Extensions: [ff-bmboc@bytemobile.com] - C:\Program Files\T-Mobile\InternetManager_H\OCx64\addon => not found FF HKLM-x32\...\Firefox\Extensions: [pdf_architect_2_conv@pdfarchitect.org] - C:\Program Files (x86)\PDF Architect 2\resources\pdfarchitect2firefoxextension FF Extension: PDF Architect 2 Creator - C:\Program Files (x86)\PDF Architect 2\resources\pdfarchitect2firefoxextension [2015-02-13] [not signed] FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2015-02-17] [not signed] Chrome: ======= CHR Profile: C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google документи) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-01] CHR Extension: (Google диск) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-02-01] CHR Extension: (YouTube) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-01] CHR Extension: (Google Search) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-01] CHR Extension: (Google документи офлајн) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-24] CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2016-02-02] CHR Extension: (Плаћања у Chrome веб-продавници) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-02-03] CHR Extension: (Gmail) - C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-02] CHR HKU\S-1-5-21-1725173109-782845030-373357407-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2014-05-08] CHR HKLM-x32\...\Chrome\Extension: [jljheddigenhleadfofeccneimcmlefp] - C:\Users\Korisnik\AppData\Roaming\speedtest4354\speedtest4354.crx [2013-12-19] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14] ==================== Services (Whitelisted) ======================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [12288 2012-12-13] (Autodesk, Inc.) [File not signed] S3 AvgAMPS; C:\Program Files (x86)\AVG\Av\avgamps.exe [604144 2016-03-02] (AVG Technologies CZ, s.r.o.) R2 avgfws; C:\Program Files (x86)\AVG\Av\avgfws.exe [1580352 2016-03-02] (AVG Technologies CZ, s.r.o.) R2 AVGIDSAgent; C:\Program Files (x86)\AVG\Av\avgidsagent.exe [3934184 2016-03-02] (AVG Technologies CZ, s.r.o.) R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1045928 2016-02-18] (AVG Technologies CZ, s.r.o.) R2 avgwd; C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe [561104 2016-03-02] (AVG Technologies CZ, s.r.o.) R2 BlueSoleilCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe [1602560 2012-09-03] (IVT Corporation) [File not signed] S3 BoxSyncUpdateService; C:\Program Files\Box\Box Sync\SyncUpdaterService.exe [36240 2016-02-26] (Box, Inc.) R3 BsHelpCS; C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe [138752 2012-09-03] (IVT Corporation) [File not signed] R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2016-01-08] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2016-01-08] (Microsoft Corporation) R2 Canon Driver Information Assist Service; C:\Program Files\Canon\DIAS\CnxDIAS.exe [4970384 2013-03-28] (CANON INC.) R2 DefaultTabUpdate; C:\Users\Korisnik\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe [107520 2013-12-06] () [File not signed] R2 HP DS Service; C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe [13824 2011-10-17] (Hewlett-Packard Company) [File not signed] S2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [174592 2012-12-04] (HP) [File not signed] R2 HWDeviceService64.exe; C:\ProgramData\DatacardService\HWDeviceService64.exe [351824 2014-01-15] () S2 Internet Manager. RunOuc; C:\Program Files (x86)\T-Mobile\InternetManager_H\UpdateDog\ouc.exe [224096 2013-09-06] () S2 Mobilni internet. RunOuc; C:\Program Files (x86)\Mobilni internet\UpdateDog\ouc.exe [651856 2013-10-26] () R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2013-07-18] (Microsoft Corporation) R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [366600 2013-07-18] (Microsoft Corporation) S3 PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [1771560 2014-10-10] (pdfforge GmbH) R2 PDF Architect 2 Creator; C:\Program Files (x86)\PDF Architect 2\creator-ws.exe [738856 2014-10-10] (pdfforge GmbH) S3 pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [861736 2014-10-10] (pdfforge GmbH) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ===================== Drivers (Whitelisted) ========================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) R1 Avgdiska; C:\Windows\System32\DRIVERS\avgdiska.sys [184240 2015-11-06] (AVG Technologies CZ, s.r.o.) R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6a.sys [97208 2015-08-29] (AVG Technologies CZ, s.r.o.) R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdrivera.sys [315312 2016-01-26] (AVG Technologies CZ, s.r.o.) R0 AVGIDSHA; C:\Windows\System32\DRIVERS\avgidsha.sys [272304 2016-01-26] (AVG Technologies CZ, s.r.o.) R1 Avgldx64; C:\Windows\System32\DRIVERS\avgldx64.sys [284080 2015-10-21] (AVG Technologies CZ, s.r.o.) R0 Avgloga; C:\Windows\System32\DRIVERS\avgloga.sys [378288 2016-02-03] (AVG Technologies CZ, s.r.o.) R0 Avgmfx64; C:\Windows\System32\DRIVERS\avgmfx64.sys [269232 2016-03-02] (AVG Technologies CZ, s.r.o.) R0 Avgrkx64; C:\Windows\System32\DRIVERS\avgrkx64.sys [42416 2015-12-04] (AVG Technologies CZ, s.r.o.) R1 Avgtdia; C:\Windows\System32\DRIVERS\avgtdia.sys [302000 2015-10-08] (AVG Technologies CZ, s.r.o.) R0 Avguniva; C:\Windows\System32\DRIVERS\avguniva.sys [23472 2016-01-08] (AVG Technologies CZ, s.r.o.) U5 BlueletAudio; C:\Windows\System32\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.) R0 BMLoad; C:\Windows\System32\drivers\BMLoad.sys [16512 2013-09-06] (Bytemobile, Inc.) [File not signed] R3 BtAudioBusSrv; C:\Windows\System32\Drivers\BtAudioBus.sys [23136 2012-06-15] (IVT Corporation) S3 BthL2caScoIfSrv; C:\Windows\System32\Drivers\BtL2caScoIf.sys [56904 2012-07-19] (Ralink Corporation) S3 btUrbFilterDrv; C:\Windows\System32\Drivers\IvtUrbBtFlt.sys [48736 2012-08-14] (Ralink Corporation) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) S3 hwusb_cdcacm; C:\Windows\System32\DRIVERS\ew_cdcacm.sys [124672 2014-04-16] (Huawei Technologies Co., Ltd.) S3 hwusb_wwanecm; C:\Windows\System32\DRIVERS\ew_wwanecm.sys [379392 2014-04-16] (Huawei Technologies Co., Ltd.) R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [247216 2013-06-18] (Microsoft Corporation) S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2010-04-28] (Marvell Semiconductor, Inc.) R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [139616 2013-06-18] (Microsoft Corporation) S3 RSP2STOR; C:\Windows\System32\DRIVERS\RtsP2Stor.sys [258664 2011-09-21] (Realtek Semiconductor Corp.) R3 rtbth; C:\Windows\System32\DRIVERS\rtbth.sys [695904 2012-09-04] (Ralink Technology, Corp.) S3 tapoas; C:\Windows\System32\DRIVERS\tapoas.sys [30720 2010-08-03] (The OpenVPN Project) R1 tcpipBM; C:\Windows\system32\drivers\tcpipBM.sys [39552 2013-09-06] (Bytemobile, Inc.) [File not signed] U5 BlueletAudio; C:\Windows\SysWOW64\Drivers\BlueletAudio.sys [34912 2012-06-15] (Ralink Corporation.) S1 ciqyeyxp; \??\C:\Windows\system32\drivers\ciqyeyxp.sys [X] ==================== NetSvcs (Whitelisted) =================== (If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.) ==================== One Month Created files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-03-24 14:16 - 2016-03-24 14:18 - 00000000 ____D C:\FRST 2016-03-23 15:01 - 2016-03-23 15:01 - 00002470 _____ C:\Windows\System32\Tasks\0216pizUpdateInfo 2016-03-23 15:01 - 2016-03-23 15:01 - 00000346 _____ C:\Windows\Tasks\0216pizUpdateInfo.job 2016-03-23 15:01 - 2016-03-23 15:01 - 00000000 ____D C:\ProgramData\Avg_Update_0216piz 2016-03-23 14:55 - 2016-03-23 14:55 - 00000000 ____D C:\Users\Korisnik\AppData\Roaming\AVG 2016-03-23 14:54 - 2016-03-23 14:54 - 00000000 ____D C:\Users\Korisnik\AppData\Roaming\TuneUp Software 2016-03-23 14:54 - 2016-03-23 14:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG 2016-03-23 14:54 - 2016-03-23 14:54 - 00000000 ____D C:\Program Files\Common Files\AV 2016-03-23 14:51 - 2016-03-23 14:51 - 00000000 ___HD C:\$AVG 2016-03-23 14:47 - 2016-03-24 14:01 - 00000000 ____D C:\ProgramData\MFAData 2016-03-23 14:47 - 2016-03-23 14:47 - 00000000 ____D C:\Users\Korisnik\AppData\Local\MFAData 2016-03-23 14:46 - 2016-03-23 14:46 - 00000862 _____ C:\Users\Public\Desktop\AVG.lnk 2016-03-23 14:46 - 2016-03-23 14:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen 2016-03-23 14:44 - 2016-03-23 14:51 - 00000000 ____D C:\ProgramData\Avg 2016-03-23 14:44 - 2016-03-23 14:50 - 00000000 ____D C:\Program Files (x86)\AVG 2016-03-23 14:42 - 2016-03-23 14:55 - 00000000 ____D C:\Users\Korisnik\AppData\Local\Avg 2016-03-23 14:42 - 2016-03-23 14:46 - 00000000 ____D C:\Users\Korisnik\AppData\Local\AvgSetupLog 2016-03-19 17:14 - 2016-03-23 08:52 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2016-03-18 10:50 - 2016-03-18 10:50 - 00000000 ____D C:\Users\Korisnik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2016-03-13 10:50 - 2016-03-24 08:10 - 00003758 _____ C:\Windows\System32\Tasks\AutoKMS 2016-03-02 10:21 - 2016-03-02 10:21 - 00269232 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgmfx64.sys 2016-03-01 08:46 - 2016-03-01 08:46 - 00000000 ___RD C:\Users\Korisnik\Copy vladimir.plavsic@lindner-beograd.com 2016-02-29 21:59 - 2016-03-16 21:34 - 00000000 ___RD C:\Users\Korisnik\Box Sync 2016-02-29 21:59 - 2016-02-29 21:59 - 00001547 _____ C:\Users\Korisnik\Desktop\Box Sync.lnk 2016-02-29 21:54 - 2016-03-24 08:07 - 00000000 ____D C:\Users\Korisnik\AppData\Local\Box Sync 2016-02-29 21:54 - 2016-03-15 21:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Box Sync 2016-02-29 21:54 - 2016-02-29 21:55 - 00000000 ____D C:\ProgramData\Package Cache 2016-02-29 21:54 - 2016-02-29 21:54 - 00000000 ____D C:\Program Files\Box ==================== One Month Modified files and folders ======== (If an entry is included in the fixlist, the file/folder will be moved.) 2016-03-24 14:07 - 2013-08-29 07:02 - 00000000 ____D C:\Users\Korisnik\AppData\Roaming\Skype 2016-03-24 13:47 - 2015-06-16 13:37 - 00000930 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1725173109-782845030-373357407-1000UA.job 2016-03-24 12:24 - 2014-11-06 13:19 - 00000000 ____D C:\ProgramData\dtdata 2016-03-24 11:47 - 2015-06-16 13:37 - 00000878 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1725173109-782845030-373357407-1000Core.job 2016-03-24 08:15 - 2009-07-14 05:45 - 00021088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-03-24 08:15 - 2009-07-14 05:45 - 00021088 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-03-24 08:06 - 2015-10-13 09:53 - 00000000 ___RD C:\Users\Korisnik\Google Drive 2016-03-24 08:04 - 2015-10-13 09:50 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-03-24 08:04 - 2012-09-10 13:54 - 00000804 _____ C:\Windows\SysWOW64\bscs.ini 2016-03-24 08:04 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-03-23 20:05 - 2014-11-26 22:09 - 00000000 ____D C:\ProgramData\dl159 2016-03-23 14:53 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf 2016-03-23 08:59 - 2009-07-14 06:13 - 00782470 _____ C:\Windows\system32\PerfStringBackup.INI 2016-03-23 08:52 - 2013-08-26 19:45 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2016-03-22 13:53 - 2013-09-04 13:54 - 00000000 ____D C:\Users\Korisnik\AppData\Roaming\Dropbox 2016-03-22 13:52 - 2013-09-04 13:59 - 00000000 ___RD C:\Users\Korisnik\Dropbox 2016-03-11 13:03 - 2013-08-26 21:19 - 00000000 ____D C:\Users\Korisnik\AppData\Local\Adobe 2016-03-11 08:42 - 2013-08-29 07:01 - 00000000 ____D C:\ProgramData\Skype 2016-03-09 17:33 - 2009-07-14 06:08 - 00032624 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2016-03-09 08:35 - 2016-02-01 21:39 - 00002161 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2016-03-07 13:00 - 2016-01-26 09:01 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin 2016-03-07 13:00 - 2016-01-26 09:01 - 00000000 ____D C:\Users\Korisnik\AppData\Roaming\Copy 2016-03-07 12:59 - 2016-01-25 19:16 - 00000445 _____ C:\Users\Korisnik\AppData\Roaming\com.cloudapp.windows.plist 2016-03-03 17:22 - 2015-10-13 09:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive 2016-03-01 08:46 - 2013-08-22 10:33 - 00000000 ____D C:\Users\Korisnik 2016-02-27 16:09 - 2016-01-26 09:02 - 00000000 ___RD C:\Users\Korisnik\Copy ==================== Files in the root of some directories ======= 2013-01-19 08:44 - 2013-01-19 08:44 - 2174976 _____ (Advanced Micro Devices Inc.) C:\Program Files (x86)\Common Files\atimpenc.dll 2016-01-25 19:16 - 2016-03-07 12:59 - 0000445 _____ () C:\Users\Korisnik\AppData\Roaming\com.cloudapp.windows.plist 2013-08-28 14:11 - 2013-08-28 14:13 - 0009306 _____ () C:\Users\Korisnik\AppData\Roaming\Comma Separated Values.EML 2013-10-02 07:24 - 2013-10-02 07:24 - 0000057 _____ () C:\ProgramData\Ament.ini 2013-08-26 20:12 - 2013-08-26 20:12 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc Some files in TEMP: ==================== C:\Users\Korisnik\AppData\Local\Temp\AcDeltree.exe C:\Users\Korisnik\AppData\Local\Temp\ApnIC.dll C:\Users\Korisnik\AppData\Local\Temp\ApnStub.exe C:\Users\Korisnik\AppData\Local\Temp\ApnToolbarInstaller.exe C:\Users\Korisnik\AppData\Local\Temp\AskSLib.dll C:\Users\Korisnik\AppData\Local\Temp\bassmod.dll C:\Users\Korisnik\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp6lrsqh.dll C:\Users\Korisnik\AppData\Local\Temp\GomEncDnInstaller.exe C:\Users\Korisnik\AppData\Local\Temp\install_helper.exe C:\Users\Korisnik\AppData\Local\Temp\jre-8u45-windows-au.exe C:\Users\Korisnik\AppData\Local\Temp\MiniBand0.dll C:\Users\Korisnik\AppData\Local\Temp\Mobogenie_Setup_2-1-23_517.exe C:\Users\Korisnik\AppData\Local\Temp\ShellHook.dll C:\Users\Korisnik\AppData\Local\Temp\siinst.exe C:\Users\Korisnik\AppData\Local\Temp\SkypeSetup.exe C:\Users\Korisnik\AppData\Local\Temp\strings.dll C:\Users\Korisnik\AppData\Local\Temp\vcredist_x64.exe C:\Users\Korisnik\AppData\Local\Temp\Сodec Performer803975.exe ==================== Bamital & volsnap ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\SysWOW64\wininit.exe => File is digitally signed C:\Windows\explorer.exe => File is digitally signed C:\Windows\SysWOW64\explorer.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\SysWOW64\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\SysWOW64\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\SysWOW64\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\dnsapi.dll => File is digitally signed C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2016-03-22 14:54 ==================== End of FRST.txt ============================ mycity.rs/must-login.png mycity.rs/must-login.png

Profil

Sass Drake Poslao: 24 Mar 2016 18:23 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Korak 1 Idi u Start -> Control Panel -> Programs and Features i deinstaliraj Defaulttab. Korak 2 Otvori Notepad i iskopiraj sljedeći tekst koji se nalazi unutar Kod polja. CreateRestorePoint: HKLM-x32\...\Run: [mobilegeni daemon] => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe SearchScopes: HKU\S-1-5-21-1725173109-782845030-373357407-1000 -> {926D1A9C-A768-445F-ACF3-D81A9A87B2BD} URL = hxxp://www.mysearchresults.com/search?c=3523&t=01&q={searchTerms} BHO-x32: DefaultTab Browser Helper -> {7F6AFBF1-E065-4627-A2FD-810366367D01} -> C:\Windows\SysWow64\config\systemprofile\AppData\Roaming\defaulttab\defaulttab\DefaultTabBHO.dll [2014-11-11] () FF SearchEngineOrder.3: Bing FF SelectedSearchEngine: Ask Web Search FF Homepage: hxxp://home.tb.ask.com/index.jhtml?ptb=1FCE14A8-7C43-4337-80C0-3C2829334186&n=781c0886&p2=^HJ^xdm007^YYA^ba&si=CIusiv7S7cgCFQvhGwod1-QDAg FF Keyword.URL: hxxp://int.search.tb.ask.com/search/GGmain.jhtml?st=kwd&ptb=1FCE14A8-7C43-4337-80C0-3C2829334186&n=781c0886&ind=2015103110&p2=^HJ^xdm007^YYA^ba&si=CIusiv7S7cgCFQvhGwod1-QDAg&searchfor= FF SearchPlugin: C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\searchplugins\ask-web-search.xml [2015-02-11] FF Extension: Default Tab - C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\Extensions\addon@defaulttab.com.xpi [2014-05-06] [not signed] FF Extension: Bing Search Engine - C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\Extensions\bingsearch.full@microsoft.com [2015-04-07] [not signed] FF Extension: VideoDownloadConverter - C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\Extensions\_4zMembers_@www.videodownloadconverter.com [2016-01-24] FF Extension: Internet Speed Tracker - C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\Extensions\_9tMembers_@download.internetspeedtracker.com [2016-01-24] CHR HKU\S-1-5-21-1725173109-782845030-373357407-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [jljheddigenhleadfofeccneimcmlefp] - C:\Users\Korisnik\AppData\Roaming\speedtest4354\speedtest4354.crx [2013-12-19] R2 DefaultTabUpdate; C:\Users\Korisnik\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe [107520 2013-12-06] () [File not signed] S1 ciqyeyxp; \??\C:\Windows\system32\drivers\ciqyeyxp.sys [X] Task: {7FFCE6DD-6931-4367-A59D-BDB79EAB8A8A} - System32\Tasks\DefaultCheck => c:\Users\All Users\dtdata\R002.exe <==== ATTENTION Task: {CC2DABDF-C155-46FE-B972-4D432B9B62FC} - System32\Tasks\DefaultReg => c:\Users\All Users\dtdata\R001.exe <==== ATTENTION Task: {CF8AB004-4705-4DF1-BD99-BDCCACBF4407} - System32\Tasks\Default2Check => c:\Users\All Users\dtdata\R003.exe <==== ATTENTION C:\Users\Korisnik\AppData\Roaming\defaulttab C:\Program Files (x86)\Mobogenie C:\Users\Korisnik\AppData\Roaming\speedtest4354 c:\Users\All Users\dtdata HKU\S-1-5-21-1725173109-782845030-373357407-1000\...\MountPoints2: {1accd8a0-3377-11e3-a583-38eaa7e3dd10} - F:\LGAutoRun.exe HKU\S-1-5-21-1725173109-782845030-373357407-1000\...\MountPoints2: {7f0dc71a-1709-11e3-b63c-a41731a8ac88} - F:\AutoRun.exe HKU\S-1-5-21-1725173109-782845030-373357407-1000\...\MountPoints2: {7f0dc73f-1709-11e3-b63c-a41731a8ac88} - F:\AutoRun.exe HKU\S-1-5-21-1725173109-782845030-373357407-1000\...\MountPoints2: {cf3a71bc-b287-11e4-b042-38eaa7e3dd10} - F:\AutoRun.exe HKU\S-1-5-21-1725173109-782845030-373357407-1000\...\MountPoints2: {cf3a71ca-b287-11e4-b042-38eaa7e3dd10} - G:\AutoRun.exe EmptyTemp: U okviru Notepad-a klikni na File --> Save As Fajl nazovi Fixlist i sačuvaj na Desktop Dvoklikom ponovo pokreni FRST.exe Klikni na Fix i sačekaj dok program ne završi. Ukoliko program zatraži restart računara, omogući mu da to nesmetano obavi. Nakon završetka rada, otvoriće se fixlog.txt, sa sadržajem koji treba da kopiraš u temu. Takođe, na Desktop-u će se nalaziti (fixlog.txt). Preuzmi "Xplode"-ov AdwCleaner i sačuvaj ga na Desktop Dvoklikom pokreni program. U EULA prozoru klikni na I agree. U Options isključi Reset Winsock settings ako je uključen. Klikni na dugme Scan i sačekaj da se završi skeniranje. Klikni na dugme Cleaning i pričekaj da program završi. Program će zatvoriti sve aktivne programe i izbaciti prozor sa tim upozorenjem. Klikni OK kao potvrdu. Na sljedeća dva prozora koja se otvore (Informations i Restart required ) klikni OK Računar će se restartovati, a potom otvoriti Notepad (C:\Adwcleaner\AdwCleaner[C1].txt) sa izvještajem. Sačuvaj taj izvještaj na Desktop i okači ga uz poruku koristeći opciju "Prikači fajl"

Profil

sasasakic Poslao: 25 Mar 2016 12:14 Idi na vrh
offline sasasakic Novi MyCity građanin Pridružio: 24 Mar 2016 Poruke: 7	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! # AdwCleaner v5.105 - Logfile created 25/03/2016 at 11:58:41 # Updated 21/03/2016 by Xplode # Database : 2016-03-24.4 [Server] # Operating system : Windows 7 Professional Service Pack 1 (x64) # Username : Korisnik - SAKIC # Running from : D:\Users\Korisnik\Downloads\AdwCleaner(1).exe # Option : Clean # Support : toolslib.net/forum *** [ Services ] * * [ Folders ] * [-] Folder Deleted : C:\Program Files (x86)\MyPC Backup [-] Folder Deleted : C:\Users\Korisnik\AppData\Local\Mobogenie [-] Folder Deleted : C:\Users\Korisnik\AppData\Roaming\OpenCandy [-] Folder Deleted : C:\Users\Korisnik\AppData\Roaming\PerformerSoft [-] Folder Deleted : C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\defaulttab [-] Folder Deleted : d:\Users\Korisnik\Documents\Mobogenie * [ Files ] * * [ DLLs ] * * [ Shortcuts ] * * [ Scheduled tasks ] * * [ Registry ] * [-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\DefaultTabBHO.DLL [-] Key Deleted : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowser [-] Key Deleted : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowser.1 [-] Key Deleted : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowserActiveX [-] Key Deleted : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowserActiveX.1 [-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{38495740-0035-4471-851E-F5BBB86AB085} [-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{72D89EBF-0C5D-4190-91FD-398E45F1D007} [-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A1E28287-1A31-4B0F-8D05-AA8C465D3C5A} [-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AF175732-0D59-716D-F757-9F1492D808D9} [-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1F8EDE97-36D5-422A-B8F0-9406E2D87C60} [-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{FEB62B15-CC00-4736-AAEC-BA046C9DFF73} [-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7F6AFBF1-E065-4627-A2FD-810366367D01} [-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{96A25A24-2E87-4374-8A50-CC6F943FCE4D} [-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{11C8C9C0-D918-44C0-8B5E-D297DA42F2C7} [-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{7F6AFBF1-E065-4627-A2FD-810366367D01} [-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C45EC9F0-8333-465D-9728-074BD41985C9} [-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{96A25A24-2E87-4374-8A50-CC6F943FCE4D} [-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F6AFBF1-E065-4627-A2FD-810366367D01} [-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A1E28287-1A31-4B0F-8D05-AA8C465D3C5A} [-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2D33ED6-EBBD-467C-BF6F-F175D9B51363} [-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BAD84EE2-624D-4E7C-A8BB-41EFD720FD77} [-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1F8EDE97-36D5-422A-B8F0-9406E2D87C60} [-] Key Deleted : HKCU\Software\Default Tab [-] Key Deleted : HKCU\Software\DefaultTab [-] Key Deleted : HKCU\Software\Softonic [-] Key Deleted : HKCU\Software\AppDataLow\Software\DefaultTab [-] Key Deleted : HKLM\SOFTWARE\Default Tab [-] Key Deleted : HKU\.DEFAULT\Software\Default Tab [-] Key Deleted : HKU\.DEFAULT\Software\DefaultTab [-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\Software\DefaultTab * [ Web browsers ] *** [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("browser.search.hiddenOneOffs", "Ask Web Search,Amazon.com,DuckDuckGo,eBay,Twitter,Wikipedia (en)"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.mywebsearch.prevKwdEnabled", true); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.mywebsearch.prevKwdURL", "hxxp://www.bing.com/search?FORM=SKY2DF&PC=SKY2&q="); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark.Mindspark.MindsparkFF_.browser.version.last", "42.0"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark.Mindspark.MindsparkFF_.toolbar.versionChanged", false); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark.MindsparkFF_.lssState", "{\"previousLocales\":[\"en-US\",\"en\"],\"supportedLocales\":[\"de\",\"es\",\"pt\",\"ja\",\"en\"],\"defaultLocale\":\"en\",\"supportedL[...] [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.BUTTON_STRUCTURE", "[{\"b\":224542617,\"c\":\"mindspark.magnify\",\"p\":\"L.0\"},{\"b\":224542618,\"c\":\"mindspark.entersearchterms\",\"p\":\"L.0.0[...] [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.search.defaultenginename.prev", "Ask Web Search"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.search.defaultenginename.savedPrev", "true"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.search.defaultenginename.tb", "Ask Web Search"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.search.selectedEngine.prev", "Google"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.search.selectedEngine.savedPrev", "true"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.search.selectedEngine.tb", "Ask Web Search"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.startup.homepage.prev", "hxxp://home.tb.ask.com/index.jhtml?ptb=AD59261C-EC84-41A1-89A2-F7A458806B0B&n=781ac82e&p2=^BBQ^xdm007^YYA^ba&si=CPH[...] [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.startup.homepage.savedPrev", "true"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.startup.homepage.tb", "hxxp://home.tb.ask.com/index.jhtml?ptb=1FCE14A8-7C43-4337-80C0-3C2829334186&n=781c0886&p2=^HJ^xdm007^YYA^ba&si=CIusiv[...] [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.startup.page.savedPrev", 1); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.startup.page.tb", 1); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.browser.version.last", "45.0"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.competitorDNS", "{\"comment\":\"refresh every 1 week (72460601000)\",\"refreshPeriod\":604800000,\"list\":[{\"url\":\"hxxp://www.dnsrsearch.com/[...] [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.firstKnownVersion", "7.23.7.36111"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.homepage", "hxxp://home.tb.ask.com/index.jhtml?ptb=1FCE14A8-7C43-4337-80C0-3C2829334186&n=781c0886&p2=^HJ^xdm007^YYA^ba&si=CIusiv7S7cgCFQvhGwod1-QDA[...] [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.hp.enabled", true); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.hp.guardType", "HPR"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.hp.user.defined", false); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.initialized", true); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installKeysSource", "LocalStorage"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installType", "XPI"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.contextKey", ""); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.dlpCountryCode", "BA"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.installDate", "2015103110"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.partnerId", "^HJ^xdm007^YYA^ba"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.partnerSubId", "CIusiv7S7cgCFQvhGwod1-QDAg"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.pixelUrl", "hxxp://free.videodownloadconverter.com/install_pixels.jhtml?partner=^HJ^xdm007^YYA^ba&sub_id=CIusiv7S7cgCFQvhGwod1-QDAg&coI[...] [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.success", true); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.installation.toolbarId", "1FCE14A8-7C43-4337-80C0-3C2829334186"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.lastActivePing", "1458848015697"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.lastKnownVersion", "7.38.8.56543"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.lssState", "{\"previousLocales\":[\"en-US\",\"en\"],\"supportedLocales\":[\"de\",\"es\",\"pt\",\"ja\",\"en\"],\"defaultLocale\":\"en\",\"supportedLo[...] [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.options.defaultSearch", true); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.options.homePageEnabled", true); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.options.keywordEnabled", true); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.options.tabEnabled", true); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.partnerPixelFired", true); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.productDeliveryOption.language", "en"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.productDeliveryOption.type", "Toolbar"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.searchHistory", "Lindner checking listsAneks ugovora o javnim nabavkama"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.successUrl", "hxxp://free.videodownloadconverter.com/installComplete.jhtml"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.toolbar.versionChanged", false); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.toolbarCollapsed", false); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._4zMembers_.uninstallTasks", "{\"prefBranchesToDelete\":[\"extensions.toolbar.mindspark._4zMembers_.\"],\"filesToDelete\":[\"C:\\\\Users\\\\Korisnik\\\\AppData\[...] [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.BUTTON_STRUCTURE", "[{\"b\":224542360,\"c\":\"mindspark.magnify\",\"p\":\"L.0\"},{\"b\":224542361,\"c\":\"mindspark.entersearchterms\",\"p\":\"L.0.0[...] [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.browser.search.defaultenginename.prev", "Google"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.browser.search.defaultenginename.savedPrev", "true"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.browser.search.defaultenginename.tb", "Ask Web Search"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.browser.search.selectedEngine.prev", "Google"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.browser.search.selectedEngine.savedPrev", "true"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.browser.search.selectedEngine.tb", "Ask Web Search"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.browser.startup.homepage.savedPrev", "true"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.browser.startup.homepage.tb", "hxxp://home.tb.ask.com/index.jhtml?ptb=AD59261C-EC84-41A1-89A2-F7A458806B0B&n=781ac82e&p2=^BBQ^xdm007^YYA^ba&si=CPHqk[...] [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.browser.startup.page.savedPrev", 1); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.browser.startup.page.tb", 1); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.browser.version.last", "45.0"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.competitorDNS", "{\"comment\":\"refresh every 1 week (72460601000)\",\"refreshPeriod\":604800000,\"list\":[{\"url\":\"hxxp://www.dnsrsearch.com/[...] [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.firstKnownVersion", "6.85.5.65004"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.homepage", "hxxp://home.tb.ask.com/index.jhtml?ptb=AD59261C-EC84-41A1-89A2-F7A458806B0B&n=781ac82e&p2=^BBQ^xdm007^YYA^ba&si=CPHqk5z_2cMCFbQatAodY04A[...] [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.hp.enabled", true); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.hp.guardType", "HPR"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.hp.user.defined", false); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.initialized", true); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.installKeysSource", "LocalStorage"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.installType", "XPI"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.installation.contextKey", ""); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.installation.dlpCountryCode", "BA"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.installation.installDate", "2015021102"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.installation.partnerId", "^BBQ^xdm007^YYA^ba"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.installation.partnerSubId", "CPHqk5z_2cMCFbQatAodY04AWQ"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.installation.pixelUrl", "hxxp://free.internetspeedtracker.com/install_pixels.jhtml?partner=^BBQ^xdm007^YYA^ba&coId=1bf74197ef7d4afe8db1b2c2f4720b68&[...] [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.installation.success", true); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.installation.toolbarId", "AD59261C-EC84-41A1-89A2-F7A458806B0B"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.isCompliantUninstallImplementation", true); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.lastActivePing", "1458848015829"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.lastKnownVersion", "7.38.8.56171"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.lssState", "{\"previousLocales\":[\"en-US\",\"en\"],\"supportedLocales\":[\"de\",\"es\",\"pt\",\"ja\",\"en\"],\"defaultLocale\":\"en\",\"supportedLo[...] [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.options.defaultSearch", true); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.options.homePageEnabled", true); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.options.keywordEnabled", true); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.options.tabEnabled", true); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.partnerPixelFired", true); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.productDeliveryOption.language", "en"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.productDeliveryOption.type", "Toolbar"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.searchHistory", "googlebarbara vickovic"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.successUrl", "hxxp://free.internetspeedtracker.com/installComplete.jhtml"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.toolbar.ownSearch", false); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.toolbar.versionChanged", false); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.toolbarCollapsed", true); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.uninstallTasks", "{\"prefBranchesToDelete\":[\"extensions.toolbar.mindspark._9tMembers_.\"],\"filesToDelete\":[\"C:\\\\Users\\\\Korisnik\\\\AppData\[...] [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark._9tMembers_.weather.location", "10001"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark.hp.enabled", true); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark.hp.enabled.guid", "videodownloadconverter@mindspark.com"); [-] [C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\prefs.js] [Preference] Deleted : user_pref("extensions.toolbar.mindspark.lastInstalled", "videodownloadconverter@mindspark.com"); [-] [C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : aol.com [-] [C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : ask.com [-] [C:\Users\Korisnik\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : jljheddigenhleadfofeccneimcmlefp *********************** :: "Tracing" keys removed *********************** C:\AdwCleaner\AdwCleaner[C1].txt - [26724 bytes] - [25/03/2016 11:58:41] C:\AdwCleaner\AdwCleaner[S1].txt - [26494 bytes] - [25/03/2016 11:54:34] ########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [26872 bytes] ##########

Profil

Sass Drake Poslao: 25 Mar 2016 18:10 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Zašto nisi obavio korak br. 2? Ako jesi, postavi mi fixlog.txt

Profil

sasasakic Poslao: 25 Mar 2016 18:40 Idi na vrh
offline sasasakic Novi MyCity građanin Pridružio: 24 Mar 2016 Poruke: 7	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Fix result of Farbar Recovery Scan Tool (x64) Version:05-03-2016 01 Ran by Korisnik (2016-03-25 11:16:13) Run:3 Running from d:\Users\Korisnik\Desktop Loaded Profiles: Korisnik (Available Profiles: Korisnik) Boot Mode: Normal ============================================== fixlist content: *************** CreateRestorePoint: HKLM-x32\...\Run: [mobilegeni daemon] => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe SearchScopes: HKU\S-1-5-21-1725173109-782845030-373357407-1000 -> {926D1A9C-A768-445F-ACF3-D81A9A87B2BD} URL = hxxp://www.mysearchresults.com/search?c=3523&t=01&q={searchTerms} BHO-x32: DefaultTab Browser Helper -> {7F6AFBF1-E065-4627-A2FD-810366367D01} -> C:\Windows\SysWow64\config\systemprofile\AppData\Roaming\defaulttab\defaulttab\DefaultTabBHO.dll [2014-11-11] () FF SearchEngineOrder.3: Bing FF SelectedSearchEngine: Ask Web Search FF Homepage: hxxp://home.tb.ask.com/index.jhtml?ptb=1FCE14A8-7C43-4337-80C0-3C2829334186&n=781c0886&p2=^HJ^xdm007^YYA^ba&si=CIusiv7S7cgCFQvhGwod1-QDAg FF Keyword.URL: hxxp://int.search.tb.ask.com/search/GGmain.jhtml?st=kwd&ptb=1FCE14A8-7C43-4337-80C0-3C2829334186&n=781c0886&ind=2015103110&p2=^HJ^xdm007^YYA^ba&si=CIusiv7S7cgCFQvhGwod1-QDAg&searchfor= FF SearchPlugin: C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\searchplugins\ask-web-search.xml [2015-02-11] FF Extension: Default Tab - C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\Extensions\addon@defaulttab.com.xpi [2014-05-06] [not signed] FF Extension: Bing Search Engine - C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\Extensions\bingsearch.full@microsoft.com [2015-04-07] [not signed] FF Extension: VideoDownloadConverter - C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\Extensions\_4zMembers_@www.videodownloadconverter.com [2016-01-24] FF Extension: Internet Speed Tracker - C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\Extensions\_9tMembers_@download.internetspeedtracker.com [2016-01-24] CHR HKU\S-1-5-21-1725173109-782845030-373357407-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [jljheddigenhleadfofeccneimcmlefp] - C:\Users\Korisnik\AppData\Roaming\speedtest4354\speedtest4354.crx [2013-12-19] R2 DefaultTabUpdate; C:\Users\Korisnik\AppData\Roaming\defaulttab\defaulttab\dtupdate.exe [107520 2013-12-06] () [File not signed] S1 ciqyeyxp; \??\C:\Windows\system32\drivers\ciqyeyxp.sys [X] Task: {7FFCE6DD-6931-4367-A59D-BDB79EAB8A8A} - System32\Tasks\DefaultCheck => c:\Users\All Users\dtdata\R002.exe <==== ATTENTION Task: {CC2DABDF-C155-46FE-B972-4D432B9B62FC} - System32\Tasks\DefaultReg => c:\Users\All Users\dtdata\R001.exe <==== ATTENTION Task: {CF8AB004-4705-4DF1-BD99-BDCCACBF4407} - System32\Tasks\Default2Check => c:\Users\All Users\dtdata\R003.exe <==== ATTENTION C:\Users\Korisnik\AppData\Roaming\defaulttab C:\Program Files (x86)\Mobogenie C:\Users\Korisnik\AppData\Roaming\speedtest4354 c:\Users\All Users\dtdata HKU\S-1-5-21-1725173109-782845030-373357407-1000\...\MountPoints2: {1accd8a0-3377-11e3-a583-38eaa7e3dd10} - F:\LGAutoRun.exe HKU\S-1-5-21-1725173109-782845030-373357407-1000\...\MountPoints2: {7f0dc71a-1709-11e3-b63c-a41731a8ac88} - F:\AutoRun.exe HKU\S-1-5-21-1725173109-782845030-373357407-1000\...\MountPoints2: {7f0dc73f-1709-11e3-b63c-a41731a8ac88} - F:\AutoRun.exe HKU\S-1-5-21-1725173109-782845030-373357407-1000\...\MountPoints2: {cf3a71bc-b287-11e4-b042-38eaa7e3dd10} - F:\AutoRun.exe HKU\S-1-5-21-1725173109-782845030-373357407-1000\...\MountPoints2: {cf3a71ca-b287-11e4-b042-38eaa7e3dd10} - G:\AutoRun.exe EmptyTemp: *************** Restore point was successfully created. HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\mobilegeni daemon => value not found. HKU\S-1-5-21-1725173109-782845030-373357407-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{926D1A9C-A768-445F-ACF3-D81A9A87B2BD} => key not found. HKCR\CLSID\{926D1A9C-A768-445F-ACF3-D81A9A87B2BD} => key not found. HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01} => key not found. HKCR\Wow6432Node\CLSID\{7F6AFBF1-E065-4627-A2FD-810366367D01} => key not found. FF SearchEngineOrder.3: Bing => not found FF SelectedSearchEngine: Ask Web Search => not found Firefox "homepage" removed successfully FF Keyword.URL: hxxp://int.search.tb.ask.com/search/GGmain.jhtml?st=kwd&ptb=1FCE14A8-7C43-4337-80C0-3C2829334186&n=781c0886&ind=2015103110&p2=^HJ^xdm007^YYA^ba&si=CIusiv7S7cgCFQvhGwod1-QDAg&searchfor= => not found "C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\searchplugins\ask-web-search.xml" => not found. C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\Extensions\addon@defaulttab.com.xpi => not found. C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\Extensions\bingsearch.full@microsoft.com => not found. C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\Extensions\_4zMembers_@www.videodownloadconverter.com => not found. C:\Users\Korisnik\AppData\Roaming\Mozilla\Firefox\Profiles\bi8rtfyf.default\Extensions\_9tMembers_@download.internetspeedtracker.com => not found. HKU\S-1-5-21-1725173109-782845030-373357407-1000\SOFTWARE\Google\Chrome\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh => key not found. HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jljheddigenhleadfofeccneimcmlefp => key not found. "C:\Users\Korisnik\AppData\Roaming\speedtest4354\speedtest4354.crx" => not found. DefaultTabUpdate => service not found. ciqyeyxp => service not found. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7FFCE6DD-6931-4367-A59D-BDB79EAB8A8A} => key not found. C:\Windows\System32\Tasks\DefaultCheck => not found. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DefaultCheck => key not found. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CC2DABDF-C155-46FE-B972-4D432B9B62FC} => key not found. C:\Windows\System32\Tasks\DefaultReg => not found. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DefaultReg => key not found. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CF8AB004-4705-4DF1-BD99-BDCCACBF4407} => key not found. C:\Windows\System32\Tasks\Default2Check => not found. HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Default2Check => key not found. "C:\Users\Korisnik\AppData\Roaming\defaulttab" => not found. "C:\Program Files (x86)\Mobogenie" => not found. "C:\Users\Korisnik\AppData\Roaming\speedtest4354" => not found. "c:\Users\All Users\dtdata" => not found. HKU\S-1-5-21-1725173109-782845030-373357407-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{1accd8a0-3377-11e3-a583-38eaa7e3dd10} => key not found. HKCR\CLSID\{1accd8a0-3377-11e3-a583-38eaa7e3dd10} => key not found. HKU\S-1-5-21-1725173109-782845030-373357407-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7f0dc71a-1709-11e3-b63c-a41731a8ac88} => key not found. HKCR\CLSID\{7f0dc71a-1709-11e3-b63c-a41731a8ac88} => key not found. HKU\S-1-5-21-1725173109-782845030-373357407-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{7f0dc73f-1709-11e3-b63c-a41731a8ac88} => key not found. HKCR\CLSID\{7f0dc73f-1709-11e3-b63c-a41731a8ac88} => key not found. HKU\S-1-5-21-1725173109-782845030-373357407-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cf3a71bc-b287-11e4-b042-38eaa7e3dd10} => key not found. HKCR\CLSID\{cf3a71bc-b287-11e4-b042-38eaa7e3dd10} => key not found. HKU\S-1-5-21-1725173109-782845030-373357407-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{cf3a71ca-b287-11e4-b042-38eaa7e3dd10} => key not found. HKCR\CLSID\{cf3a71ca-b287-11e4-b042-38eaa7e3dd10} => key not found. EmptyTemp: => 61.8 MB temporary data Removed. The system needed a reboot. ==== End of Fixlog 11:17:23 ====

Profil

Sass Drake Poslao: 25 Mar 2016 18:42 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Kakvo je sada stanje?

Profil

sasasakic Poslao: 25 Mar 2016 18:54 Idi na vrh
offline sasasakic Novi MyCity građanin Pridružio: 24 Mar 2016 Poruke: 7	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Bolje, rekao bih, brze radi. Mada sam danas imao dva nepoznata mejla, mozda su pretnje sa strane van racunara.

Profil

Sass Drake Poslao: 25 Mar 2016 19:00 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! Preuzmi TDSSKiller sa sljedeće adrese na Desktop: TDSSKiller Kad preuzimanje bude završeno: Preimenuj TDSSKiller.exe u MyCity.exe. Pokreni MyCity.exe. U End user Licence Agreement dijalogu klikni na Accept. Takođe, u KSN Statement dijalogu klikni na Accept. Klikni na Change parametres. U dijelu Additional options štrikliraj opcije Verify driver signatures i Detect TDLFS file system, a zatim klikni na OK. Klikni na Start scan. Kad završi prikazaće ti rezultate skeniranja i tu nemoj ništa da mijenjaš već samo klikni na Continue. Ukoliko program bude zatražio restart sistema dozvoli mu to. Prikači uz poruku izvještaj koji se nalazi na sljedećoj lokaciji: C:\TDSSKiller_verzija programa_DD.MM.GG_HH.MM.SS.txt (DD-dan, MM-mesec, GG-godina, HH-sat, MM-minut, SS-sekunda; datum i vrijeme kada je log napravljen)

Profil

sasasakic Poslao: 25 Mar 2016 19:50 Idi na vrh
offline sasasakic Novi MyCity građanin Pridružio: 24 Mar 2016 Poruke: 7	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! 19:45:40.0696 0x154c TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12 19:45:43.0289 0x154c ============================================================ 19:45:43.0289 0x154c Current date / time: 2016/03/25 19:45:43.0289 19:45:43.0289 0x154c SystemInfo: 19:45:43.0289 0x154c 19:45:43.0289 0x154c OS Version: 6.1.7601 ServicePack: 1.0 19:45:43.0289 0x154c Product type: Workstation 19:45:43.0289 0x154c ComputerName: SAKIC 19:45:43.0289 0x154c UserName: Korisnik 19:45:43.0289 0x154c Windows directory: C:\Windows 19:45:43.0289 0x154c System windows directory: C:\Windows 19:45:43.0289 0x154c Running under WOW64 19:45:43.0289 0x154c Processor architecture: Intel x64 19:45:43.0289 0x154c Number of processors: 2 19:45:43.0289 0x154c Page size: 0x1000 19:45:43.0289 0x154c Boot type: Normal boot 19:45:43.0289 0x154c ============================================================ 19:45:45.0213 0x154c KLMD registered as C:\Windows\system32\drivers\14341774.sys 19:45:46.0365 0x154c System UUID: {5FA20683-DBD1-38B5-92CD-17584CB4B5A5} 19:45:47.0019 0x154c Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 19:45:47.0029 0x154c ============================================================ 19:45:47.0029 0x154c \Device\Harddisk0\DR0: 19:45:47.0029 0x154c MBR partitions: 19:45:47.0029 0x154c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000 19:45:47.0029 0x154c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x15963000 19:45:47.0029 0x154c \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x15995800, BlocksNum 0x249F0000 19:45:47.0029 0x154c ============================================================ 19:45:47.0039 0x154c C: <-> \Device\Harddisk0\DR0\Partition2 19:45:47.0069 0x154c D: <-> \Device\Harddisk0\DR0\Partition3 19:45:47.0069 0x154c ============================================================ 19:45:47.0069 0x154c Initialize success 19:45:47.0069 0x154c ============================================================ 19:45:55.0265 0x18a8 ============================================================ 19:45:55.0265 0x18a8 Scan started 19:45:55.0265 0x18a8 Mode: Manual; SigCheck; TDLFS; 19:45:55.0265 0x18a8 ============================================================ 19:45:55.0265 0x18a8 KSN ping started 19:45:57.0697 0x18a8 KSN ping finished: true 19:45:58.0867 0x18a8 ================ Scan system memory ======================== 19:45:58.0867 0x18a8 System memory - ok 19:45:58.0867 0x18a8 ================ Scan services ============================= 19:45:59.0037 0x18a8 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys 19:45:59.0097 0x18a8 1394ohci - ok 19:45:59.0127 0x18a8 [ 5C368F4B04ED2A923E6AFCA2D37BAFF5, C3CC58D636B18DF77C4C4B384AD1DE78418716A0606E564DBC63782D5EA02905 ] Accelerometer C:\Windows\system32\DRIVERS\Accelerometer.sys 19:45:59.0167 0x18a8 Accelerometer - ok 19:45:59.0207 0x18a8 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys 19:45:59.0237 0x18a8 ACPI - ok 19:45:59.0257 0x18a8 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 19:45:59.0277 0x18a8 AcpiPmi - ok 19:45:59.0407 0x18a8 [ 5DB2C6B908C50767E2EDAA294A7566B5, 13AE4879D679BB0C6B2A5A5B13910359815A9D2E569BC1DE740B5A387A78CF33 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 19:45:59.0427 0x18a8 AdobeARMservice - ok 19:45:59.0507 0x18a8 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 19:45:59.0547 0x18a8 adp94xx - ok 19:45:59.0567 0x18a8 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys 19:45:59.0587 0x18a8 adpahci - ok 19:45:59.0607 0x18a8 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 19:45:59.0617 0x18a8 adpu320 - ok 19:45:59.0657 0x18a8 [ 83BFCCAC53795E8A5055A93672D0C46C, B2B03473D950A5BA9DE59D81E7B14C1FAFF17B2A4D8A5808588F5CC21D63B291 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 19:45:59.0667 0x18a8 AeLookupSvc - ok 19:45:59.0737 0x18a8 [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys 19:45:59.0777 0x18a8 AFD - ok 19:45:59.0807 0x18a8 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys 19:45:59.0827 0x18a8 agp440 - ok 19:45:59.0847 0x18a8 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe 19:45:59.0867 0x18a8 ALG - ok 19:45:59.0897 0x18a8 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys 19:45:59.0907 0x18a8 aliide - ok 19:45:59.0917 0x18a8 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys 19:45:59.0927 0x18a8 amdide - ok 19:45:59.0967 0x18a8 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 19:45:59.0977 0x18a8 AmdK8 - ok 19:46:00.0007 0x18a8 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys 19:46:00.0017 0x18a8 AmdPPM - ok 19:46:00.0037 0x18a8 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys 19:46:00.0057 0x18a8 amdsata - ok 19:46:00.0077 0x18a8 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys 19:46:00.0087 0x18a8 amdsbs - ok 19:46:00.0127 0x18a8 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys 19:46:00.0157 0x18a8 amdxata - ok 19:46:00.0207 0x18a8 [ A0711D119BA4B48A1470C768D301013E, 536366F809125D2C2171597C8C2CB3271BE5C6B373152112E0D970749776E00A ] AppID C:\Windows\system32\drivers\appid.sys 19:46:00.0217 0x18a8 AppID - ok 19:46:00.0237 0x18a8 [ 173C90AF5B243B4DD86F95CA154CB58A, 349F566DADC96B31FDC34C4F26545FB880844DBF84E5821AA0D0CAA91FB837E1 ] AppIDSvc C:\Windows\System32\appidsvc.dll 19:46:00.0247 0x18a8 AppIDSvc - ok 19:46:00.0277 0x18a8 [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo C:\Windows\System32\appinfo.dll 19:46:00.0297 0x18a8 Appinfo - ok 19:46:00.0387 0x18a8 [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll 19:46:00.0407 0x18a8 AppMgmt - ok 19:46:00.0437 0x18a8 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys 19:46:00.0457 0x18a8 arc - ok 19:46:00.0467 0x18a8 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys 19:46:00.0477 0x18a8 arcsas - ok 19:46:00.0577 0x18a8 [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe 19:46:00.0607 0x18a8 aspnet_state - ok 19:46:00.0627 0x18a8 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 19:46:00.0667 0x18a8 AsyncMac - ok 19:46:00.0699 0x18a8 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys 19:46:00.0709 0x18a8 atapi - ok 19:46:00.0769 0x18a8 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 19:46:00.0809 0x18a8 AudioEndpointBuilder - ok 19:46:00.0830 0x18a8 [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll 19:46:00.0862 0x18a8 AudioSrv - ok 19:46:00.0931 0x18a8 [ 3817558D8D5BBC8B0F190CF0D7C4720F, 7CD250DD22BE0E6CF6BEA639EA8220E46158CA7DF33FF803967CEAEA7FBD14E5 ] Autodesk Content Service C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe 19:46:00.0941 0x18a8 Autodesk Content Service - detected UnsignedFile.Multi.Generic ( 1 ) 19:46:03.0411 0x18a8 Detect skipped due to KSN trusted 19:46:03.0411 0x18a8 Autodesk Content Service - ok 19:46:03.0561 0x18a8 [ 55D62DD579231402745ECCDD1E55C6CC, 29030EDEDDB40F6D78DD52353CB1FFF292A2CD25EF603225FD0A506868915781 ] AvgAMPS C:\Program Files (x86)\AVG\Av\avgamps.exe 19:46:03.0601 0x18a8 AvgAMPS - ok 19:46:03.0651 0x18a8 [ FF641C4AD6F27902A7D3CA57BEAA8E80, D5CC8F8BFAE3FFAF9E6FB8130337BACCCC2DB9AE04C8D01A3B7F9037EE3A0ED2 ] Avgdiska C:\Windows\system32\DRIVERS\avgdiska.sys 19:46:03.0691 0x18a8 Avgdiska - ok 19:46:03.0761 0x18a8 [ 7D869864BDA9C5B3D97B77F3FACC24BC, FF148BF9D81C641D9659A57C99E8518CF7D8B2EF75B99CAAA723474122C06F1E ] Avgfwfd C:\Windows\system32\DRIVERS\avgfwd6a.sys 19:46:03.0781 0x18a8 Avgfwfd - ok 19:46:03.0891 0x18a8 [ 57BAEE044B6A441315F2EE16581390C1, 85491537C5E86B3D30F718B91042FD460733D267A191F1CD34E7C5D9493B4DEF ] avgfws C:\Program Files (x86)\AVG\Av\avgfws.exe 19:46:03.0951 0x18a8 avgfws - ok 19:46:04.0151 0x18a8 [ F5EB38E929945BB7B476924F4D61DB4F, B28CA18B80D038627A03E9EB176808ABB1CFB3DDE4D00A1CC3D90175169BA35B ] AVGIDSAgent C:\Program Files (x86)\AVG\Av\avgidsagent.exe 19:46:04.0271 0x18a8 AVGIDSAgent - ok 19:46:04.0391 0x18a8 [ 9A809D3EA1569177B1CFA2A20E334C9D, DFC92C31D37EC49D2972712085E109E4D54C5F475D829F29884B51A523171AFC ] AVGIDSDriver C:\Windows\system32\DRIVERS\avgidsdrivera.sys 19:46:04.0421 0x18a8 AVGIDSDriver - ok 19:46:04.0471 0x18a8 [ D54A730B8DA065C33901737446D7C006, 5054DE9BD322D8D794AC69A8F2FA91C6FA0D82CB67047796114DB958AB7A9771 ] AVGIDSHA C:\Windows\system32\DRIVERS\avgidsha.sys 19:46:04.0491 0x18a8 AVGIDSHA - ok 19:46:04.0541 0x18a8 [ D2E83AA008426FC9408272035E50D40B, 6F3B3385C5E1BDBF29343737C5A72A3C8B671016BC805EC51B4C0728807726E3 ] Avgldx64 C:\Windows\system32\DRIVERS\avgldx64.sys 19:46:04.0561 0x18a8 Avgldx64 - ok 19:46:04.0641 0x18a8 [ 1B77FEC764628B1555086F749D911859, 0A0DA2FBB6472694A4E20E64F381AB99F7FE702E928C5FD2F7C6F353EC029F9B ] Avgloga C:\Windows\system32\DRIVERS\avgloga.sys 19:46:04.0681 0x18a8 Avgloga - ok 19:46:04.0733 0x18a8 [ 2A9380C58B7CD687EB9709086614820D, 7AB787135E96790740EE6A6A8046F2880B90ECF717359EEA579D2A149B953056 ] Avgmfx64 C:\Windows\system32\DRIVERS\avgmfx64.sys 19:46:04.0753 0x18a8 Avgmfx64 - ok 19:46:04.0793 0x18a8 [ 392339315A0738429B3C9E92A0F8F995, 3B101C2316DE151D39D88B33B382451C5C05C13FA5A52C4B00C5B7853931680A ] Avgrkx64 C:\Windows\system32\DRIVERS\avgrkx64.sys 19:46:04.0833 0x18a8 Avgrkx64 - ok 19:46:04.0983 0x18a8 [ 04D3CB2E6E66B36B1BACC186E8C2AC2B, E2B235CA49ADD10737A5067654D02543364630715B73BDBB265E82653239B369 ] avgsvc C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe 19:46:05.0033 0x18a8 avgsvc - ok 19:46:05.0093 0x18a8 [ E78505E4A45999570F380EAA87571239, B1A22691ABCA55C68EBCF7C68E34028735B48BB6BDBEED02DA37E03752A7328A ] Avgtdia C:\Windows\system32\DRIVERS\avgtdia.sys 19:46:05.0113 0x18a8 Avgtdia - ok 19:46:05.0183 0x18a8 [ EADED7133726FEEC05C3A7CF0F661590, 2B8A912B77E3A78D44BA0689BDB75DF7838AC18EF153191229019C4DAED93B7B ] Avguniva C:\Windows\system32\DRIVERS\avguniva.sys 19:46:05.0203 0x18a8 Avguniva - ok 19:46:05.0293 0x18a8 [ 501D3FE6D8A15FB182983E4EA0C6386B, 15B000CA8757B9D91695465D5D842F441FD2FCF0DD1064FF52D04020E5830D8E ] avgwd C:\Program Files (x86)\AVG\Av\avgwdsvcx.exe 19:46:05.0323 0x18a8 avgwd - ok 19:46:05.0353 0x18a8 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll 19:46:05.0373 0x18a8 AxInstSV - ok 19:46:05.0413 0x18a8 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys 19:46:05.0463 0x18a8 b06bdrv - ok 19:46:05.0503 0x18a8 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 19:46:05.0523 0x18a8 b57nd60a - ok 19:46:05.0563 0x18a8 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll 19:46:05.0583 0x18a8 BDESVC - ok 19:46:05.0613 0x18a8 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys 19:46:05.0643 0x18a8 Beep - ok 19:46:05.0703 0x18a8 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll 19:46:05.0743 0x18a8 BFE - ok 19:46:05.0833 0x18a8 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll 19:46:05.0893 0x18a8 BITS - ok 19:46:05.0923 0x18a8 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 19:46:05.0943 0x18a8 blbdrive - ok 19:46:06.0073 0x18a8 [ 6BEE5D2B12DE8090920DFF09BBAEA121, 5C582BE341B023AE52DD2A49130D90DD41771B8E8A0ED24B1BD4EC0F27B30BD9 ] BlueSoleilCS C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BlueSoleilCS.exe 19:46:06.0123 0x18a8 BlueSoleilCS - detected UnsignedFile.Multi.Generic ( 1 ) 19:46:08.0593 0x18a8 Detect skipped due to KSN trusted 19:46:08.0593 0x18a8 BlueSoleilCS - ok 19:46:08.0673 0x18a8 [ 057F482CFDB57E75202E2E37795F2D3B, EC0B9A058E67F19F9660D899022433BF1AE241CDEB8256A0FC2F54EEEA9BE3A9 ] BMLoad C:\Windows\system32\drivers\BMLoad.sys 19:46:08.0683 0x18a8 BMLoad - detected UnsignedFile.Multi.Generic ( 1 ) 19:46:11.0225 0x18a8 Detect skipped due to KSN trusted 19:46:11.0225 0x18a8 BMLoad - ok 19:46:11.0305 0x18a8 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 19:46:11.0335 0x18a8 bowser - ok 19:46:11.0475 0x18a8 [ A65DDBF46000179E266E534681171E7D, 9B0432603A786FC57CF201B6B363EFC18A40CC354F765B6178F6E03A64F78CEC ] BoxSyncUpdateService C:\Program Files\Box\Box Sync\SyncUpdaterService.exe 19:46:11.0485 0x18a8 BoxSyncUpdateService - ok 19:46:11.0524 0x18a8 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys 19:46:11.0547 0x18a8 BrFiltLo - ok 19:46:11.0567 0x18a8 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys 19:46:11.0577 0x18a8 BrFiltUp - ok 19:46:11.0629 0x18a8 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll 19:46:11.0659 0x18a8 Browser - ok 19:46:11.0699 0x18a8 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys 19:46:11.0719 0x18a8 Brserid - ok 19:46:11.0729 0x18a8 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 19:46:11.0755 0x18a8 BrSerWdm - ok 19:46:11.0771 0x18a8 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 19:46:11.0791 0x18a8 BrUsbMdm - ok 19:46:11.0801 0x18a8 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 19:46:11.0811 0x18a8 BrUsbSer - ok 19:46:11.0841 0x0f6c Object required for P2P: [ 55D62DD579231402745ECCDD1E55C6CC ] AvgAMPS 19:46:11.0841 0x18a8 [ 0BE32EB43DB4759C4795F5A4208C92C2, 4D391FFE80CAF2FAC310CF6713DB3C66EF4CCBF27B462A5811A2E2A98AAE569B ] BsHelpCS C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BsHelpCS.exe 19:46:11.0851 0x18a8 BsHelpCS - detected UnsignedFile.Multi.Generic ( 1 ) 19:46:14.0343 0x18a8 Detect skipped due to KSN trusted 19:46:14.0343 0x18a8 BsHelpCS - ok 19:46:14.0403 0x18a8 [ 34AAF6FD68B8403E76F0D08A8C1C1DA3, 2255F88C04E89AA80231B67287D81271DC226007F01CFCB55EB1EBF640C6FCF5 ] BtAudioBusSrv C:\Windows\system32\Drivers\BtAudioBus.sys 19:46:14.0423 0x18a8 BtAudioBusSrv - ok 19:46:14.0433 0x0f6c Object send P2P result: true 19:46:14.0433 0x0f6c Object required for P2P: [ 57BAEE044B6A441315F2EE16581390C1 ] avgfws 19:46:14.0483 0x18a8 [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys 19:46:14.0503 0x18a8 BthEnum - ok 19:46:14.0523 0x18a8 [ 9C09D5F1257F1748A4EAB0E8584FAF61, 2BD1109682AD5DC2AA6BABFB4759162BD160CDB2D6632FD28B4D942798936631 ] BthL2caScoIfSrv C:\Windows\system32\Drivers\BtL2caScoIf.sys 19:46:14.0543 0x18a8 BthL2caScoIfSrv - ok 19:46:14.0563 0x18a8 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys 19:46:14.0583 0x18a8 BTHMODEM - ok 19:46:14.0623 0x18a8 [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys 19:46:14.0643 0x18a8 BthPan - ok 19:46:14.0703 0x18a8 [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys 19:46:14.0733 0x18a8 BTHPORT - ok 19:46:14.0763 0x18a8 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll 19:46:14.0803 0x18a8 bthserv - ok 19:46:14.0823 0x18a8 [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys 19:46:14.0843 0x18a8 BTHUSB - ok 19:46:14.0853 0x18a8 [ 606B38EEB6E484481AE6113AA5473CB7, CC08EC27E2C65CC937692960D9DF9747285013B9BEDF244EAD373233AB9817D9 ] btUrbFilterDrv C:\Windows\system32\Drivers\IvtUrbBtFlt.sys 19:46:14.0863 0x18a8 btUrbFilterDrv - ok 19:46:15.0088 0x18a8 [ 52AE2CDD37AB735FBDA52263EFD524AA, 844103913E6079CC1C49B05FFB1CDC9A68692A8EE5A05C9C28FD272DFE534913 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe 19:46:15.0135 0x18a8 c2cautoupdatesvc - ok 19:46:15.0315 0x18a8 [ C35B91B6777E7C6DB67B8583D2AA66A7, CE3A004B560EB750442150FEEFEE074A11A17E66B3F2A489E8EF1DBCF8FE8390 ] c2cpnrsvc C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe 19:46:15.0385 0x18a8 c2cpnrsvc - ok 19:46:15.0645 0x18a8 [ CAC491D46A27A227864018AF2EF9D5D1, 25E00249A30381966B20BFF4F67CA11DB4ED1D8C2C5941A8E22B1FEC25E6B038 ] Canon Driver Information Assist Service C:\Program Files\Canon\DIAS\CnxDIAS.exe 19:46:15.0880 0x18a8 Canon Driver Information Assist Service - ok 19:46:15.0907 0x18a8 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 19:46:15.0947 0x18a8 cdfs - ok 19:46:15.0987 0x18a8 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 19:46:16.0007 0x18a8 cdrom - ok 19:46:16.0037 0x18a8 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll 19:46:16.0077 0x18a8 CertPropSvc - ok 19:46:16.0107 0x18a8 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys 19:46:16.0117 0x18a8 circlass - ok 19:46:16.0167 0x18a8 [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys 19:46:16.0187 0x18a8 CLFS - ok 19:46:16.0247 0x18a8 [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 19:46:16.0267 0x18a8 clr_optimization_v2.0.50727_32 - ok 19:46:16.0307 0x18a8 [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 19:46:16.0317 0x18a8 clr_optimization_v2.0.50727_64 - ok 19:46:16.0397 0x18a8 [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 19:46:16.0437 0x18a8 clr_optimization_v4.0.30319_32 - ok 19:46:16.0467 0x18a8 [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 19:46:16.0477 0x18a8 clr_optimization_v4.0.30319_64 - ok 19:46:16.0507 0x18a8 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 19:46:16.0527 0x18a8 CmBatt - ok 19:46:16.0547 0x18a8 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys 19:46:16.0567 0x18a8 cmdide - ok 19:46:16.0617 0x18a8 [ 27667A788130A7F7A5858DE27572E6D7, 5501D80BCCB7A811ECCED3828DFD0A5D948BBED8504E9BCC4A3BFB840DD41CBC ] CNG C:\Windows\system32\Drivers\cng.sys 19:46:16.0647 0x18a8 CNG - ok 19:46:16.0677 0x18a8 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 19:46:16.0707 0x18a8 Compbatt - ok 19:46:16.0747 0x18a8 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys 19:46:16.0767 0x18a8 CompositeBus - ok 19:46:16.0797 0x18a8 COMSysApp - ok 19:46:16.0877 0x18a8 [ B18D590BC5220FDB4A747BC16D78ABC7, D46F8B43BAC22E55DE9AFC19CF371B1C4E8D3707163598B2F9884BB31D730C09 ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe 19:46:16.0907 0x18a8 cphs - ok 19:46:16.0937 0x18a8 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 19:46:16.0947 0x18a8 crcdisk - ok 19:46:16.0997 0x18a8 [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll 19:46:17.0017 0x18a8 CryptSvc - ok 19:46:17.0057 0x18a8 [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys 19:46:17.0107 0x18a8 CSC - ok 19:46:17.0167 0x18a8 [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll 19:46:17.0207 0x18a8 CscService - ok 19:46:17.0257 0x18a8 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll 19:46:17.0315 0x18a8 DcomLaunch - ok 19:46:17.0329 0x18a8 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll 19:46:17.0369 0x18a8 defragsvc - ok 19:46:17.0409 0x18a8 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys 19:46:17.0449 0x18a8 DfsC - ok 19:46:17.0489 0x18a8 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll 19:46:17.0529 0x18a8 Dhcp - ok 19:46:17.0659 0x0f6c Object send P2P result: true 19:46:17.0659 0x0f6c Object required for P2P: [ F5EB38E929945BB7B476924F4D61DB4F ] AVGIDSAgent 19:46:17.0669 0x18a8 [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack C:\Windows\system32\diagtrack.dll 19:46:17.0721 0x18a8 DiagTrack - ok 19:46:17.0741 0x18a8 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys 19:46:17.0771 0x18a8 discache - ok 19:46:17.0831 0x18a8 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys 19:46:17.0851 0x18a8 Disk - ok 19:46:17.0901 0x18a8 [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys 19:46:17.0931 0x18a8 dmvsc - ok 19:46:17.0991 0x18a8 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll 19:46:18.0031 0x18a8 Dnscache - ok 19:46:18.0061 0x18a8 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll 19:46:18.0111 0x18a8 dot3svc - ok 19:46:18.0131 0x18a8 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll 19:46:18.0171 0x18a8 DPS - ok 19:46:18.0231 0x18a8 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 19:46:18.0251 0x18a8 drmkaud - ok 19:46:18.0341 0x18a8 [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 19:46:18.0381 0x18a8 DXGKrnl - ok 19:46:18.0411 0x18a8 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll 19:46:18.0451 0x18a8 EapHost - ok 19:46:18.0611 0x18a8 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys 19:46:18.0731 0x18a8 ebdrv - ok 19:46:18.0771 0x18a8 [ 3E9BDCA3994E2B6B6AC16BAA76722934, A77FEE9D78C1151B13C9509FA89B64024442D00C3C9EA19954045413D8A69D73 ] EFS C:\Windows\System32\lsass.exe 19:46:18.0801 0x18a8 EFS - ok 19:46:18.0891 0x18a8 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 19:46:18.0931 0x18a8 ehRecvr - ok 19:46:18.0951 0x18a8 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe 19:46:18.0971 0x18a8 ehSched - ok 19:46:19.0051 0x18a8 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys 19:46:19.0071 0x18a8 elxstor - ok 19:46:19.0091 0x18a8 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys 19:46:19.0111 0x18a8 ErrDev - ok 19:46:19.0141 0x18a8 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll 19:46:19.0191 0x18a8 EventSystem - ok 19:46:19.0241 0x18a8 [ 7230F4CF9F20DCD1DBF4BB3296EEED68, 0B9EAA411271AAB9C84680AAF8910854124D8A318A7388E0E356869126BE533D ] ew_hwusbdev C:\Windows\system32\DRIVERS\ew_hwusbdev.sys 19:46:19.0261 0x18a8 ew_hwusbdev - ok 19:46:19.0291 0x18a8 [ 5222D99C7E3245882E864D2EA7011387, 184E36074C765243783F69B7073FB2FAFC53BB18209ECD5030514CC513A47C8B ] ew_usbenumfilter C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys 19:46:19.0311 0x18a8 ew_usbenumfilter - ok 19:46:19.0351 0x18a8 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys 19:46:19.0391 0x18a8 exfat - ok 19:46:19.0401 0x18a8 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys 19:46:19.0451 0x18a8 fastfat - ok 19:46:19.0501 0x18a8 [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe 19:46:19.0551 0x18a8 Fax - ok 19:46:19.0581 0x18a8 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys 19:46:19.0591 0x18a8 fdc - ok 19:46:19.0631 0x18a8 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll 19:46:19.0671 0x18a8 fdPHost - ok 19:46:19.0681 0x18a8 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll 19:46:19.0721 0x18a8 FDResPub - ok 19:46:19.0741 0x18a8 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 19:46:19.0751 0x18a8 FileInfo - ok 19:46:19.0781 0x18a8 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 19:46:19.0821 0x18a8 Filetrace - ok 19:46:19.0961 0x18a8 [ ECC329F6104EE208C24C4A8C1B4A9D14, E120DAAB58C4083577A8445230DBB841984818188BFD0609576BC704C836DF3F ] FlexNet Licensing Service 64 C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe 19:46:20.0013 0x18a8 FlexNet Licensing Service 64 - ok 19:46:20.0033 0x18a8 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys 19:46:20.0043 0x18a8 flpydisk - ok 19:46:20.0083 0x18a8 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 19:46:20.0093 0x18a8 FltMgr - ok 19:46:20.0173 0x18a8 [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache C:\Windows\system32\FntCache.dll 19:46:20.0213 0x0f6c Object send P2P result: true 19:46:20.0213 0x0f6c Object required for P2P: [ 2A9380C58B7CD687EB9709086614820D ] Avgmfx64 19:46:20.0223 0x18a8 FontCache - ok 19:46:20.0273 0x18a8 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 19:46:20.0283 0x18a8 FontCache3.0.0.0 - ok 19:46:20.0303 0x18a8 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 19:46:20.0313 0x18a8 FsDepends - ok 19:46:20.0333 0x18a8 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 19:46:20.0353 0x18a8 Fs_Rec - ok 19:46:20.0413 0x18a8 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 19:46:20.0443 0x18a8 fvevol - ok 19:46:20.0473 0x18a8 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 19:46:20.0483 0x18a8 gagp30kx - ok 19:46:20.0543 0x18a8 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll 19:46:20.0603 0x18a8 gpsvc - ok 19:46:20.0753 0x18a8 [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 19:46:20.0763 0x18a8 gupdate - ok 19:46:20.0803 0x18a8 [ 053EEEE1ABAE53F044F1E386E22AE525, 195C8B78C0CF68F3DC1C08E58CE2A7146764F9273C39EF369194A366FA8EE1AD ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 19:46:20.0813 0x18a8 gupdatem - ok 19:46:20.0853 0x18a8 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 19:46:20.0867 0x18a8 hcw85cir - ok 19:46:20.0905 0x18a8 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 19:46:20.0925 0x18a8 HdAudAddService - ok 19:46:20.0975 0x18a8 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 19:46:20.0997 0x18a8 HDAudBus - ok 19:46:21.0007 0x18a8 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys 19:46:21.0035 0x18a8 HidBatt - ok 19:46:21.0059 0x18a8 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys 19:46:21.0079 0x18a8 HidBth - ok 19:46:21.0099 0x18a8 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys 19:46:21.0119 0x18a8 HidIr - ok 19:46:21.0139 0x18a8 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll 19:46:21.0188 0x18a8 hidserv - ok 19:46:21.0229 0x18a8 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys 19:46:21.0251 0x18a8 HidUsb - ok 19:46:21.0301 0x18a8 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll 19:46:21.0331 0x18a8 hkmsvc - ok 19:46:21.0363 0x18a8 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll 19:46:21.0403 0x18a8 HomeGroupListener - ok 19:46:21.0433 0x18a8 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 19:46:21.0453 0x18a8 HomeGroupProvider - ok 19:46:21.0553 0x18a8 [ 86724A200BF1F08A03FB563660FCD928, E2BDD30D7AFECB0F517BB02C788C93D506FB2B180DCA239BC4A1FEDB1E986EAD ] HP DS Service C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe 19:46:21.0563 0x18a8 HP DS Service - detected UnsignedFile.Multi.Generic ( 1 ) 19:46:22.0805 0x0f6c Object send P2P result: true 19:46:22.0805 0x0f6c Object required for P2P: [ 501D3FE6D8A15FB182983E4EA0C6386B ] avgwd 19:46:24.0055 0x18a8 Detect skipped due to KSN trusted 19:46:24.0055 0x18a8 HP DS Service - ok 19:46:24.0155 0x18a8 [ 64E96B86D6C5D29C89B206D6F19DABE9, FADF501FB18FEFC79DEA76BB8D7BC234E56DA714807EE7EC80D5FBF3AC4053B8 ] HP LaserJet Service C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe 19:46:24.0175 0x18a8 HP LaserJet Service - detected UnsignedFile.Multi.Generic ( 1 ) 19:46:25.0385 0x0f6c Object send P2P result: true 19:46:26.0735 0x18a8 Detect skipped due to KSN trusted 19:46:26.0735 0x18a8 HP LaserJet Service - ok 19:46:26.0765 0x18a8 [ 4E0BEC0F78096FFD6D3314B497FC49D3, 15B545815D0C80102963FFF13B6643CC9A74717137C1CBA45345B18912E72DB6 ] hpdskflt C:\Windows\system32\DRIVERS\hpdskflt.sys 19:46:26.0785 0x18a8 hpdskflt - ok 19:46:26.0815 0x18a8 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 19:46:26.0835 0x18a8 HpSAMD - ok 19:46:26.0885 0x18a8 [ 4E9CAE3200A46135DE01CE22BAF832BE, 722A14BEB3FC6BBD5700CE6901FA0C47305ED61FFB0E9604C369BC9366B1E16C ] HPSIService C:\Windows\system32\HPSIsvc.exe 19:46:26.0915 0x18a8 HPSIService - ok 19:46:26.0935 0x18a8 [ FC7C13B5A9E9BE23B7AE72BBC7FDB278, E85A7BF1CFE52BA7D663A1ED48A4F8874EFBDDF48979138F7E3E24817705B6A1 ] hpsrv C:\Windows\system32\Hpservice.exe 19:46:26.0945 0x18a8 hpsrv - ok 19:46:27.0015 0x18a8 [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys 19:46:27.0055 0x18a8 HTTP - ok 19:46:27.0105 0x18a8 [ 5004E766075BADA25608489A7C649698, 685D6F5B99C06EF091BB126CA3FEADCA3ED3C05DD78B6709AF04A1DD0A030BAE ] huawei_cdcacm C:\Windows\system32\DRIVERS\ew_jucdcacm.sys 19:46:27.0135 0x18a8 huawei_cdcacm - ok 19:46:27.0175 0x18a8 [ D49D4E7B70AD6B1D04771AC1F7DB79C7, 093D8343CF769FC805308ED357EEF30E3D78569B817A20FE9884863A1FDBC028 ] huawei_enumerator C:\Windows\system32\DRIVERS\ew_jubusenum.sys 19:46:27.0195 0x18a8 huawei_enumerator - ok 19:46:27.0335 0x18a8 [ C08814014290BF3AD581C0E9C5919269, 9C16822AC6B8977AAEFDB54C2B4295546461DD888060B62223EF20151790C934 ] HWDeviceService64.exe C:\ProgramData\DatacardService\HWDeviceService64.exe 19:46:27.0365 0x18a8 HWDeviceService64.exe - ok 19:46:27.0395 0x18a8 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 19:46:27.0405 0x18a8 hwpolicy - ok 19:46:27.0465 0x18a8 [ DD6C3D0A0125D5ED4D1BF92D29ECD693, 96B9BD88B97AD419F77010BBEBE7EDF295CC6ADCD222A0DC7BE7A799B175F9FD ] hwusb_cdcacm C:\Windows\system32\DRIVERS\ew_cdcacm.sys 19:46:27.0495 0x18a8 hwusb_cdcacm - ok 19:46:27.0535 0x18a8 [ 541D3673FC8EF86C9C490BACE6B9C835, A8EFBAEA516B365B6F5C5EF79CB7591A063504550D88AFE83C213D30F7222B6B ] hwusb_wwanecm C:\Windows\system32\DRIVERS\ew_wwanecm.sys 19:46:27.0565 0x18a8 hwusb_wwanecm - ok 19:46:27.0605 0x18a8 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 19:46:27.0625 0x18a8 i8042prt - ok 19:46:27.0695 0x18a8 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 19:46:27.0725 0x18a8 iaStorV - ok 19:46:27.0815 0x18a8 [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 19:46:27.0865 0x18a8 idsvc - ok 19:46:27.0895 0x18e0 Object required for P2P: [ C35B91B6777E7C6DB67B8583D2AA66A7 ] c2cpnrsvc 19:46:28.0057 0x18a8 [ 79AE3CC82CA1563A4B392207997ACE7C, A1E4A1DA95CA2FA197EF5975657822F0F813F6C33DA38E1FA5A840194034D071 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys 19:46:28.0267 0x18a8 igfx - ok 19:46:28.0367 0x18a8 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys 19:46:28.0387 0x18a8 iirsp - ok 19:46:28.0487 0x18a8 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll 19:46:28.0537 0x18a8 IKEEXT - ok 19:46:28.0557 0x18a8 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys 19:46:28.0567 0x18a8 intelide - ok 19:46:28.0617 0x18a8 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 19:46:28.0637 0x18a8 intelppm - ok 19:46:28.0727 0x18a8 [ 837B6D439C16DB39C30FB8EEBC806A57, 0F3C059965263738AB63FD1CD864FA4D272576FF7A0E58C40F287C2058E3D6B4 ] Internet Manager. RunOuc C:\Program Files (x86)\T-Mobile\InternetManager_H\UpdateDog\ouc.exe 19:46:28.0757 0x18a8 Internet Manager. RunOuc - ok 19:46:28.0797 0x18a8 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll 19:46:28.0837 0x18a8 IPBusEnum - ok 19:46:28.0857 0x18a8 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 19:46:28.0897 0x18a8 IpFilterDriver - ok 19:46:28.0947 0x18a8 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 19:46:28.0977 0x18a8 iphlpsvc - ok 19:46:28.0997 0x18a8 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 19:46:29.0007 0x18a8 IPMIDRV - ok 19:46:29.0077 0x18a8 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys 19:46:29.0127 0x18a8 IPNAT - ok 19:46:29.0147 0x18a8 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys 19:46:29.0167 0x18a8 IRENUM - ok 19:46:29.0187 0x18a8 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys 19:46:29.0197 0x18a8 isapnp - ok 19:46:29.0237 0x18a8 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 19:46:29.0257 0x18a8 iScsiPrt - ok 19:46:29.0297 0x18a8 [ 6BCEF45131C8B8E1C558BE540B190B3C, DFFED7FD9DCC15808184E65065DE6138FE010AC01217E5016B2D20A5B89AC570 ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys 19:46:29.0317 0x18a8 iusb3hcs - ok 19:46:29.0347 0x18a8 [ F080EADA8715F811B58BD35BB774F2F9, 06D5A70CBA89561A71B9CB64D7A298767F098395411A7022F414C7D0AC89A44D ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys 19:46:29.0367 0x18a8 iusb3hub - ok 19:46:29.0457 0x18a8 [ 0F1756D9396740F053221FA6260FCE66, 0B722BF6BCF66BBD49DE0E92555742976AB33319CF504461A50181BF7A77E886 ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys 19:46:29.0487 0x18a8 iusb3xhc - ok 19:46:29.0507 0x18a8 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 19:46:29.0517 0x18a8 kbdclass - ok 19:46:29.0557 0x18a8 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 19:46:29.0567 0x18a8 kbdhid - ok 19:46:29.0597 0x18a8 [ 3E9BDCA3994E2B6B6AC16BAA76722934, A77FEE9D78C1151B13C9509FA89B64024442D00C3C9EA19954045413D8A69D73 ] KeyIso C:\Windows\system32\lsass.exe 19:46:29.0617 0x18a8 KeyIso - ok 19:46:29.0647 0x18a8 [ 1DAC21EC0705A6AFEFACCE265798F0F9, 16B66AE2578C6744825B0DFBB9CBA35FBDF5C04E8999F7629BA43D566FA9277F ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 19:46:29.0667 0x18a8 KSecDD - ok 19:46:29.0677 0x18a8 [ 2737840E7F6F6FF439966A67A35D59F8, 7442A8864D0A92C3A7EDBF889EC1AA9F743D6B48C4075CA8F3C0F1D836DFB9CE ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 19:46:29.0697 0x18a8 KSecPkg - ok 19:46:29.0727 0x18a8 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 19:46:29.0767 0x18a8 ksthunk - ok 19:46:29.0807 0x18a8 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll 19:46:29.0857 0x18a8 KtmRm - ok 19:46:29.0897 0x18a8 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll 19:46:29.0937 0x18a8 LanmanServer - ok 19:46:29.0967 0x18a8 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 19:46:30.0007 0x18a8 LanmanWorkstation - ok 19:46:30.0037 0x18a8 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 19:46:30.0077 0x18a8 lltdio - ok 19:46:30.0107 0x18a8 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll 19:46:30.0157 0x18a8 lltdsvc - ok 19:46:30.0167 0x18a8 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll 19:46:30.0207 0x18a8 lmhosts - ok 19:46:30.0237 0x18a8 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 19:46:30.0247 0x18a8 LSI_FC - ok 19:46:30.0277 0x18a8 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 19:46:30.0287 0x18a8 LSI_SAS - ok 19:46:30.0327 0x18a8 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys 19:46:30.0337 0x18a8 LSI_SAS2 - ok 19:46:30.0357 0x18a8 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 19:46:30.0377 0x18a8 LSI_SCSI - ok 19:46:30.0397 0x18a8 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys 19:46:30.0437 0x18a8 luafv - ok 19:46:30.0447 0x18e0 Object send P2P result: true 19:46:30.0457 0x18a8 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 19:46:30.0477 0x18a8 Mcx2Svc - ok 19:46:30.0497 0x18a8 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys 19:46:30.0507 0x18a8 megasas - ok 19:46:30.0537 0x18a8 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys 19:46:30.0557 0x18a8 MegaSR - ok 19:46:30.0577 0x18a8 [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys 19:46:30.0587 0x18a8 MEIx64 - ok 19:46:30.0607 0x18a8 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll 19:46:30.0647 0x18a8 MMCSS - ok 19:46:30.0736 0x18a8 [ 53B8D9B905223CBB6317B0FFF61D155A, 3C3516CBFE08EB057EDFFF8D37A1691CF40252D0CBE5CAF01A7AA23C43CDE361 ] Mobilni internet. RunOuc C:\Program Files (x86)\Mobilni internet\UpdateDog\ouc.exe 19:46:30.0772 0x18a8 Mobilni internet. RunOuc - ok 19:46:30.0790 0x18a8 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys 19:46:30.0829 0x18a8 Modem - ok 19:46:30.0871 0x18a8 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys 19:46:30.0891 0x18a8 monitor - ok 19:46:30.0911 0x18a8 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 19:46:30.0921 0x18a8 mouclass - ok 19:46:30.0971 0x18a8 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 19:46:30.0981 0x18a8 mouhid - ok 19:46:31.0041 0x18a8 [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 19:46:31.0051 0x18a8 mountmgr - ok 19:46:31.0111 0x18a8 [ A43F5F2D3D71A902502D61E71A18C265, 9685DABFF80EFFFD28B9B12696BF4821F30989C8441EA0AA3FF0F03ED799AD9D ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 19:46:31.0131 0x18a8 MozillaMaintenance - ok 19:46:31.0171 0x18a8 [ FC1D590039EF06A381768710E6C07E75, 2F8B4D5232C4848A423A4E647102F3EDFD9B3D55D0D14AC04FD6D60D9212106F ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys 19:46:31.0190 0x18a8 MpFilter - ok 19:46:31.0216 0x18a8 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys 19:46:31.0231 0x18a8 mpio - ok 19:46:31.0245 0x18a8 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 19:46:31.0283 0x18a8 mpsdrv - ok 19:46:31.0325 0x18a8 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll 19:46:31.0398 0x18a8 MpsSvc - ok 19:46:31.0424 0x18a8 [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 19:46:31.0447 0x18a8 MRxDAV - ok 19:46:31.0477 0x18a8 [ DB8E6BA1D110A4E40D48612E9009E366, 678728CC8BBCD0D99E67DA63F53A99AC6D6D12EAE3E26655D372940BE7411098 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 19:46:31.0497 0x18a8 mrxsmb - ok 19:46:31.0527 0x18a8 [ 24432705B02BC1EFC42A83F93BA202A3, 13F2CA069FAEDA9CEAC6E09D10807DBFF729EAF6133DC46DE5A14C5694E9510B ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 19:46:31.0557 0x18a8 mrxsmb10 - ok 19:46:31.0600 0x18a8 [ 5E7E31C6426F000AF29E7C452826AF5E, F66102138458BDBD2CE586C95FF90F9B90F5DC8832EA1ACFAD694F1D0B949B21 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 19:46:31.0619 0x18a8 mrxsmb20 - ok 19:46:31.0639 0x18a8 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys 19:46:31.0649 0x18a8 msahci - ok 19:46:31.0689 0x18a8 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys 19:46:31.0699 0x18a8 msdsm - ok 19:46:31.0719 0x18a8 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe 19:46:31.0752 0x18a8 MSDTC - ok 19:46:31.0776 0x18a8 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys 19:46:31.0811 0x18a8 Msfs - ok 19:46:31.0834 0x18a8 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 19:46:31.0872 0x18a8 mshidkmdf - ok 19:46:31.0901 0x18a8 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 19:46:31.0903 0x18a8 msisadrv - ok 19:46:31.0963 0x18a8 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 19:46:32.0030 0x18a8 MSiSCSI - ok 19:46:32.0033 0x18a8 msiserver - ok 19:46:32.0068 0x18a8 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 19:46:32.0105 0x18a8 MSKSSRV - ok 19:46:32.0157 0x18a8 [ FD909D744ACFCF61CAC3A77854F8B301, F9810A9A1D1DBF8EC5D7F48097039E78425EDA69A4EE5EAFB1FAB10AE9C1F385 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe 19:46:32.0167 0x18a8 MsMpSvc - ok 19:46:32.0187 0x18a8 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 19:46:32.0237 0x18a8 MSPCLOCK - ok 19:46:32.0250 0x18a8 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 19:46:32.0289 0x18a8 MSPQM - ok 19:46:32.0319 0x18a8 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 19:46:32.0339 0x18a8 MsRPC - ok 19:46:32.0369 0x18a8 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 19:46:32.0379 0x18a8 mssmbios - ok 19:46:32.0399 0x18a8 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 19:46:32.0452 0x18a8 MSTEE - ok 19:46:32.0460 0x18a8 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys 19:46:32.0471 0x18a8 MTConfig - ok 19:46:32.0481 0x18a8 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys 19:46:32.0491 0x18a8 Mup - ok 19:46:32.0531 0x18a8 [ 09818558C2579B45D78AB18A759B0CA8, 3A4A01004A75D7C768ADB388EADE875841A8E40C81997880E602D8881BB0F8F5 ] mvusbews C:\Windows\system32\Drivers\mvusbews.sys 19:46:32.0561 0x18a8 mvusbews - ok 19:46:32.0601 0x18a8 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll 19:46:32.0651 0x18a8 napagent - ok 19:46:32.0703 0x18a8 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 19:46:32.0723 0x18a8 NativeWifiP - ok 19:46:32.0813 0x18a8 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys 19:46:32.0853 0x18a8 NDIS - ok 19:46:32.0893 0x18a8 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 19:46:32.0933 0x18a8 NdisCap - ok 19:46:32.0943 0x18a8 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 19:46:32.0983 0x18a8 NdisTapi - ok 19:46:33.0023 0x18a8 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 19:46:33.0053 0x18a8 Ndisuio - ok 19:46:33.0073 0x18a8 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 19:46:33.0115 0x18a8 NdisWan - ok 19:46:33.0135 0x18a8 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 19:46:33.0175 0x18a8 NDProxy - ok 19:46:33.0205 0x18a8 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 19:46:33.0235 0x18a8 NetBIOS - ok 19:46:33.0255 0x18a8 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 19:46:33.0305 0x18a8 NetBT - ok 19:46:33.0325 0x18a8 [ 3E9BDCA3994E2B6B6AC16BAA76722934, A77FEE9D78C1151B13C9509FA89B64024442D00C3C9EA19954045413D8A69D73 ] Netlogon C:\Windows\system32\lsass.exe 19:46:33.0335 0x18a8 Netlogon - ok 19:46:33.0385 0x18a8 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll 19:46:33.0425 0x18a8 Netman - ok 19:46:33.0515 0x18a8 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 19:46:33.0535 0x18a8 NetMsmqActivator - ok 19:46:33.0545 0x18a8 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 19:46:33.0555 0x18a8 NetPipeActivator - ok 19:46:33.0605 0x18a8 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll 19:46:33.0655 0x18a8 netprofm - ok 19:46:33.0775 0x18a8 [ 618C55B392238B9467F9113E13525C49, 304A77EF3E1E7A1738E5A4F6A911B4DF736CEF4867C6F07CA71E227048E90370 ] netr28ux C:\Windows\system32\DRIVERS\netr28ux.sys 19:46:33.0825 0x18a8 netr28ux - ok 19:46:33.0975 0x18a8 [ 2EED549279D7FBD10B846B5397573967, 4F7EBB6C1AC58D1EFFA7A86AC799137FC88F5CCA3AC27E563B4EE2AF1EAE4ECC ] netr28x C:\Windows\system32\DRIVERS\netr28x.sys 19:46:34.0045 0x18a8 netr28x - ok 19:46:34.0065 0x18a8 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 19:46:34.0085 0x18a8 NetTcpActivator - ok 19:46:34.0085 0x18a8 [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 19:46:34.0105 0x18a8 NetTcpPortSharing - ok 19:46:34.0155 0x18a8 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 19:46:34.0175 0x18a8 nfrd960 - ok 19:46:34.0205 0x18a8 [ 8FB3C853E886E1E4D57271672486111C, 2D2954740BF2046FC4C0F1C00FBA9627C356792C0636A51078116876E4886FC6 ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys 19:46:34.0235 0x18a8 NisDrv - ok 19:46:34.0275 0x18a8 [ EC445A9F0FB52E5F467C156FFF6F6D93, F1BD9F18376834097E80F107CC556CB65889E34D22F18D055CB88DF61D235306 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe 19:46:34.0305 0x18a8 NisSrv - ok 19:46:34.0345 0x18a8 [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll 19:46:34.0375 0x18a8 NlaSvc - ok 19:46:34.0395 0x18a8 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys 19:46:34.0435 0x18a8 Npfs - ok 19:46:34.0465 0x18a8 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll 19:46:34.0495 0x18a8 nsi - ok 19:46:34.0525 0x18a8 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 19:46:34.0585 0x18a8 nsiproxy - ok 19:46:34.0715 0x18a8 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 19:46:34.0775 0x18a8 Ntfs - ok 19:46:34.0805 0x18a8 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys 19:46:34.0835 0x18a8 Null - ok 19:46:34.0885 0x18a8 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys 19:46:34.0925 0x18a8 nvraid - ok 19:46:34.0945 0x18a8 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys 19:46:34.0965 0x18a8 nvstor - ok 19:46:35.0005 0x18a8 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 19:46:35.0025 0x18a8 nv_agp - ok 19:46:35.0035 0x18a8 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 19:46:35.0045 0x18a8 ohci1394 - ok 19:46:35.0115 0x18a8 [ 2B8E4C792BED0E5882702720BC528AE5, 6D7CB027BC6014CB268C49B46049CDFF3BA94D07102A65BD053335A28E83D125 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 19:46:35.0145 0x18a8 ose - ok 19:46:35.0375 0x18a8 [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 19:46:35.0595 0x18a8 osppsvc - ok 19:46:35.0645 0x18a8 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 19:46:35.0675 0x18a8 p2pimsvc - ok 19:46:35.0705 0x18a8 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll 19:46:35.0735 0x18a8 p2psvc - ok 19:46:35.0765 0x18a8 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys 19:46:35.0775 0x18a8 Parport - ok 19:46:35.0815 0x18a8 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys 19:46:35.0825 0x18a8 partmgr - ok 19:46:35.0865 0x18a8 [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll 19:46:35.0895 0x18a8 PcaSvc - ok 19:46:35.0935 0x18a8 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys 19:46:35.0945 0x18a8 pci - ok 19:46:35.0995 0x18a8 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys 19:46:36.0005 0x18a8 pciide - ok 19:46:36.0025 0x18a8 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 19:46:36.0045 0x18a8 pcmcia - ok 19:46:36.0055 0x18a8 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys 19:46:36.0075 0x18a8 pcw - ok 19:46:36.0245 0x18a8 [ 8F98C4BC605261B4B6E568FE791EB67A, 7B0D99D972A60423F7378BEE886061695FDA79B59AFF939744A130721E0174A1 ] PDF Architect 2 C:\Program Files (x86)\PDF Architect 2\ws.exe 19:46:36.0325 0x18a8 PDF Architect 2 - ok 19:46:36.0435 0x18a8 [ B2309F132A31AF03C0A249AEDE8CF289, BBAE32AA55E495ACB9A8089C090ADD78BE1DC16233CAA61BBED1456CA718D430 ] PDF Architect 2 Creator C:\Program Files (x86)\PDF Architect 2\creator-ws.exe 19:46:36.0475 0x18a8 PDF Architect 2 Creator - ok 19:46:36.0585 0x18a8 [ 9077A3059AB47834633AEAAED465F3D9, 9CA662E9CBA30795E4E5DAB3E309D2062FFDC2053C261054E24EF7EE5300F69F ] pdfforge CrashHandler C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe 19:46:36.0625 0x18a8 pdfforge CrashHandler - ok 19:46:36.0695 0x18a8 [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys 19:46:36.0735 0x18a8 PEAUTH - ok 19:46:36.0805 0x18a8 [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll 19:46:36.0865 0x18a8 PeerDistSvc - ok 19:46:36.0955 0x18a8 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe 19:46:36.0975 0x18a8 PerfHost - ok 19:46:37.0095 0x18a8 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll 19:46:37.0175 0x18a8 pla - ok 19:46:37.0265 0x18a8 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 19:46:37.0295 0x18a8 PlugPlay - ok 19:46:37.0315 0x18a8 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 19:46:37.0335 0x18a8 PNRPAutoReg - ok 19:46:37.0355 0x18a8 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 19:46:37.0375 0x18a8 PNRPsvc - ok 19:46:37.0435 0x18a8 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 19:46:37.0495 0x18a8 PolicyAgent - ok 19:46:37.0535 0x18a8 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll 19:46:37.0585 0x18a8 Power - ok 19:46:37.0625 0x18a8 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 19:46:37.0675 0x18a8 PptpMiniport - ok 19:46:37.0695 0x18a8 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys 19:46:37.0705 0x18a8 Processor - ok 19:46:37.0755 0x18a8 [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll 19:46:37.0795 0x18a8 ProfSvc - ok 19:46:37.0815 0x18a8 [ 3E9BDCA3994E2B6B6AC16BAA76722934, A77FEE9D78C1151B13C9509FA89B64024442D00C3C9EA19954045413D8A69D73 ] ProtectedStorage C:\Windows\system32\lsass.exe 19:46:37.0835 0x18a8 ProtectedStorage - ok 19:46:37.0865 0x18a8 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys 19:46:37.0915 0x18a8 Psched - ok 19:46:38.0005 0x18a8 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 19:46:38.0065 0x18a8 ql2300 - ok 19:46:38.0095 0x18a8 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 19:46:38.0115 0x18a8 ql40xx - ok 19:46:38.0155 0x18a8 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll 19:46:38.0185 0x18a8 QWAVE - ok 19:46:38.0206 0x18a8 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 19:46:38.0223 0x18a8 QWAVEdrv - ok 19:46:38.0237 0x18a8 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 19:46:38.0277 0x18a8 RasAcd - ok 19:46:38.0297 0x18a8 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 19:46:38.0337 0x18a8 RasAgileVpn - ok 19:46:38.0357 0x18a8 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll 19:46:38.0397 0x18a8 RasAuto - ok 19:46:38.0417 0x18a8 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 19:46:38.0457 0x18a8 Rasl2tp - ok 19:46:38.0517 0x18a8 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll 19:46:38.0567 0x18a8 RasMan - ok 19:46:38.0607 0x18a8 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 19:46:38.0637 0x18a8 RasPppoe - ok 19:46:38.0647 0x18a8 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 19:46:38.0687 0x18a8 RasSstp - ok 19:46:38.0727 0x18a8 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 19:46:38.0767 0x18a8 rdbss - ok 19:46:38.0787 0x18a8 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys 19:46:38.0797 0x18a8 rdpbus - ok 19:46:38.0827 0x18a8 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 19:46:38.0867 0x18a8 RDPCDD - ok 19:46:38.0897 0x18a8 [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys 19:46:38.0907 0x18a8 RDPDR - ok 19:46:38.0937 0x18a8 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 19:46:38.0977 0x18a8 RDPENCDD - ok 19:46:38.0987 0x18a8 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 19:46:39.0027 0x18a8 RDPREFMP - ok 19:46:39.0087 0x18a8 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys 19:46:39.0137 0x18a8 RdpVideoMiniport - ok 19:46:39.0187 0x18a8 [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 19:46:39.0207 0x18a8 RDPWD - ok 19:46:39.0257 0x18a8 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 19:46:39.0287 0x18a8 rdyboost - ok 19:46:39.0317 0x18a8 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll 19:46:39.0367 0x18a8 RemoteAccess - ok 19:46:39.0397 0x18a8 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll 19:46:39.0437 0x18a8 RemoteRegistry - ok 19:46:39.0467 0x18a8 [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys 19:46:39.0487 0x18a8 RFCOMM - ok 19:46:39.0497 0x18a8 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 19:46:39.0537 0x18a8 RpcEptMapper - ok 19:46:39.0547 0x18a8 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe 19:46:39.0567 0x18a8 RpcLocator - ok 19:46:39.0597 0x18a8 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll 19:46:39.0647 0x18a8 RpcSs - ok 19:46:39.0717 0x18a8 [ 1BDF0DFB56603888E7BA07A99BFF3C97, 45E84E79EF3E3757CB98F7B1956190E681D697581D3AC6E6315724190634B022 ] RSP2STOR C:\Windows\system32\DRIVERS\RtsP2Stor.sys 19:46:39.0747 0x18a8 RSP2STOR - ok 19:46:39.0797 0x18a8 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 19:46:39.0857 0x18a8 rspndr - ok 19:46:39.0927 0x18a8 [ 055F5531082856EEF5D70F605A8A68D7, E2DBBA752609F6BE2E45931C385B3540D5FE6AAD6DDD4E08782E4EA69C4BEC26 ] rtbth C:\Windows\system32\DRIVERS\rtbth.sys 19:46:39.0957 0x18a8 rtbth - ok 19:46:40.0017 0x18a8 [ 6074829C74C5C72AB65AD2CEE9C1BB47, 7EDF3967350BE9581B93822583D632E9AE6245DC894718F5AB2983EC2447E02E ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys 19:46:40.0047 0x18a8 RTL8167 - ok 19:46:40.0057 0x18a8 [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys 19:46:40.0077 0x18a8 s3cap - ok 19:46:40.0087 0x18a8 [ 3E9BDCA3994E2B6B6AC16BAA76722934, A77FEE9D78C1151B13C9509FA89B64024442D00C3C9EA19954045413D8A69D73 ] SamSs C:\Windows\system32\lsass.exe 19:46:40.0107 0x18a8 SamSs - ok 19:46:40.0127 0x18a8 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 19:46:40.0137 0x18a8 sbp2port - ok 19:46:40.0167 0x18a8 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll 19:46:40.0207 0x18a8 SCardSvr - ok 19:46:40.0227 0x18a8 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 19:46:40.0267 0x18a8 scfilter - ok 19:46:40.0327 0x18a8 [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll 19:46:40.0377 0x18a8 Schedule - ok 19:46:40.0417 0x18a8 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll 19:46:40.0457 0x18a8 SCPolicySvc - ok 19:46:40.0487 0x18a8 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll 19:46:40.0517 0x18a8 SDRSVC - ok 19:46:40.0557 0x18a8 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys 19:46:40.0587 0x18a8 secdrv - ok 19:46:40.0617 0x18a8 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll 19:46:40.0647 0x18a8 seclogon - ok 19:46:40.0677 0x18a8 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll 19:46:40.0717 0x18a8 SENS - ok 19:46:40.0734 0x18a8 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll 19:46:40.0754 0x18a8 SensrSvc - ok 19:46:40.0771 0x18a8 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\drivers\serenum.sys 19:46:40.0779 0x18a8 Serenum - ok 19:46:40.0809 0x18a8 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\drivers\serial.sys 19:46:40.0819 0x18a8 Serial - ok 19:46:40.0829 0x18a8 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys 19:46:40.0849 0x18a8 sermouse - ok 19:46:40.0888 0x18a8 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll 19:46:40.0928 0x18a8 SessionEnv - ok 19:46:40.0932 0x18a8 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 19:46:40.0951 0x18a8 sffdisk - ok 19:46:40.0967 0x18a8 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 19:46:40.0985 0x18a8 sffp_mmc - ok 19:46:40.0988 0x18a8 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 19:46:41.0007 0x18a8 sffp_sd - ok 19:46:41.0031 0x18a8 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 19:46:41.0041 0x18a8 sfloppy - ok 19:46:41.0101 0x18a8 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll 19:46:41.0151 0x18a8 SharedAccess - ok 19:46:41.0193 0x18a8 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll 19:46:41.0245 0x18a8 ShellHWDetection - ok 19:46:41.0275 0x18a8 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys 19:46:41.0285 0x18a8 SiSRaid2 - ok 19:46:41.0295 0x18a8 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 19:46:41.0305 0x18a8 SiSRaid4 - ok 19:46:41.0377 0x18a8 [ 52F7E8603E888E3DB0A8B3D1804098E9, 4E23DC9442C0C14AAE7146DACBB0B39743F1FFAA463EE7069CCDF866AD27BD77 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 19:46:41.0397 0x18a8 SkypeUpdate - ok 19:46:41.0431 0x18a8 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys 19:46:41.0475 0x18a8 Smb - ok 19:46:41.0509 0x18a8 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe 19:46:41.0519 0x18a8 SNMPTRAP - ok 19:46:41.0549 0x18a8 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys 19:46:41.0559 0x18a8 spldr - ok 19:46:41.0619 0x18a8 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe 19:46:41.0659 0x18a8 Spooler - ok 19:46:41.0804 0x18a8 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe 19:46:42.0005 0x18a8 sppsvc - ok 19:46:42.0027 0x18a8 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll 19:46:42.0065 0x18a8 sppuinotify - ok 19:46:42.0107 0x18a8 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys 19:46:42.0160 0x18a8 srv - ok 19:46:42.0182 0x18a8 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 19:46:42.0209 0x18a8 srv2 - ok 19:46:42.0249 0x18a8 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 19:46:42.0269 0x18a8 srvnet - ok 19:46:42.0299 0x18a8 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 19:46:42.0356 0x18a8 SSDPSRV - ok 19:46:42.0372 0x18a8 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll 19:46:42.0401 0x18a8 SstpSvc - ok 19:46:42.0429 0x18a8 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys 19:46:42.0441 0x18a8 stexstor - ok 19:46:42.0493 0x18a8 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll 19:46:42.0543 0x18a8 stisvc - ok 19:46:42.0566 0x18a8 [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys 19:46:42.0575 0x18a8 storflt - ok 19:46:42.0585 0x18a8 [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc C:\Windows\system32\storsvc.dll 19:46:42.0615 0x18a8 StorSvc - ok 19:46:42.0645 0x18a8 [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys 19:46:42.0655 0x18a8 storvsc - ok 19:46:42.0685 0x18a8 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys 19:46:42.0695 0x18a8 swenum - ok 19:46:42.0725 0x18a8 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll 19:46:42.0786 0x18a8 swprv - ok 19:46:42.0857 0x18a8 [ AC3CC98B1BDB6540021D3FFB105AC2B9, 671146CC16139AECE0BCCC44983807E045A930E262F64461D0D882A0A0B77E4F ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys 19:46:42.0877 0x18a8 SynTP - ok 19:46:42.0957 0x18a8 [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll 19:46:43.0037 0x18a8 SysMain - ok 19:46:43.0077 0x18a8 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll 19:46:43.0097 0x18a8 TabletInputService - ok 19:46:43.0117 0x18a8 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll 19:46:43.0157 0x18a8 TapiSrv - ok 19:46:43.0197 0x18a8 [ 927D0CDB3F96EFC1E98FB1A2C9FB67AD, 58F14DAA0EA21EA2F2A1D3D62C88BD8E5A0E0EF498B7B8D367BEEADE6A46843C ] tapoas C:\Windows\system32\DRIVERS\tapoas.sys 19:46:43.0207 0x18a8 tapoas - ok 19:46:43.0227 0x18a8 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll 19:46:43.0267 0x18a8 TBS - ok 19:46:43.0649 0x18a8 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 19:46:43.0719 0x18a8 Tcpip - ok 19:46:43.0839 0x18a8 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 19:46:43.0899 0x18a8 TCPIP6 - ok 19:46:43.0929 0x18a8 [ 1A95043750E359F993154EF8559BE518, C1CDFAA87084B4D7CF38598E6C723EDD2E1DCA23D29449F48D016F589DACEA29 ] tcpipBM C:\Windows\system32\drivers\tcpipBM.sys 19:46:43.0939 0x18a8 tcpipBM - detected UnsignedFile.Multi.Generic ( 1 ) 19:46:46.0419 0x18a8 Detect skipped due to KSN trusted 19:46:46.0419 0x18a8 tcpipBM - ok 19:46:46.0489 0x18a8 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 19:46:46.0519 0x18a8 tcpipreg - ok 19:46:46.0555 0x18a8 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 19:46:46.0581 0x18a8 TDPIPE - ok 19:46:46.0601 0x18a8 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 19:46:46.0621 0x18a8 TDTCP - ok 19:46:46.0651 0x18a8 [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx C:\Windows\system32\DRIVERS\tdx.sys 19:46:46.0681 0x18a8 tdx - ok 19:46:46.0711 0x18a8 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 19:46:46.0731 0x18a8 TermDD - ok 19:46:46.0771 0x18a8 [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll 19:46:46.0801 0x18a8 TermService - ok 19:46:46.0841 0x18a8 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll 19:46:46.0851 0x18a8 Themes - ok 19:46:46.0891 0x18a8 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll 19:46:46.0931 0x18a8 THREADORDER - ok 19:46:46.0941 0x18a8 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll 19:46:46.0981 0x18a8 TrkWks - ok 19:46:47.0011 0x18a8 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 19:46:47.0051 0x18a8 TrustedInstaller - ok 19:46:47.0091 0x18a8 [ 19BEDA57F3E0A06B8D5EB6D619BD5624, 952D5FAFD662C93628C12A6F7EB8E240A44216C0A15CBD2F5016BC357CBFE821 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 19:46:47.0101 0x18a8 tssecsrv - ok 19:46:47.0151 0x18a8 [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 19:46:47.0161 0x18a8 TsUsbFlt - ok 19:46:47.0191 0x18a8 [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys 19:46:47.0201 0x18a8 TsUsbGD - ok 19:46:47.0251 0x18a8 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 19:46:47.0301 0x18a8 tunnel - ok 19:46:47.0321 0x18a8 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys 19:46:47.0331 0x18a8 uagp35 - ok 19:46:47.0361 0x18a8 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 19:46:47.0401 0x18a8 udfs - ok 19:46:47.0441 0x18a8 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe 19:46:47.0451 0x18a8 UI0Detect - ok 19:46:47.0481 0x18a8 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 19:46:47.0521 0x18a8 uliagpkx - ok 19:46:47.0541 0x18a8 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys 19:46:47.0561 0x18a8 umbus - ok 19:46:47.0581 0x18a8 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys 19:46:47.0591 0x18a8 UmPass - ok 19:46:47.0621 0x18a8 [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll 19:46:47.0641 0x18a8 UmRdpService - ok 19:46:47.0671 0x18a8 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll 19:46:47.0721 0x18a8 upnphost - ok 19:46:47.0751 0x18a8 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 19:46:47.0771 0x18a8 usbccgp - ok 19:46:47.0801 0x18a8 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys 19:46:47.0821 0x18a8 usbcir - ok 19:46:47.0861 0x18a8 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\drivers\usbehci.sys 19:46:47.0871 0x18a8 usbehci - ok 19:46:47.0901 0x18a8 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 19:46:47.0921 0x18a8 usbhub - ok 19:46:47.0951 0x18a8 [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys 19:46:47.0971 0x18a8 usbohci - ok 19:46:48.0011 0x18a8 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 19:46:48.0031 0x18a8 usbprint - ok 19:46:48.0071 0x18a8 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 19:46:48.0101 0x18a8 usbscan - ok 19:46:48.0141 0x18a8 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 19:46:48.0151 0x18a8 USBSTOR - ok 19:46:48.0191 0x18a8 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys 19:46:48.0201 0x18a8 usbuhci - ok 19:46:48.0231 0x18a8 [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys 19:46:48.0261 0x18a8 usbvideo - ok 19:46:48.0301 0x18a8 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll 19:46:48.0341 0x18a8 UxSms - ok 19:46:48.0351 0x18a8 [ 3E9BDCA3994E2B6B6AC16BAA76722934, A77FEE9D78C1151B13C9509FA89B64024442D00C3C9EA19954045413D8A69D73 ] VaultSvc C:\Windows\system32\lsass.exe 19:46:48.0363 0x18a8 VaultSvc - ok 19:46:48.0383 0x18a8 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 19:46:48.0403 0x18a8 vdrvroot - ok 19:46:48.0433 0x18a8 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe 19:46:48.0483 0x18a8 vds - ok 19:46:48.0523 0x18a8 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 19:46:48.0533 0x18a8 vga - ok 19:46:48.0553 0x18a8 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys 19:46:48.0583 0x18a8 VgaSave - ok 19:46:48.0603 0x18a8 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 19:46:48.0623 0x18a8 vhdmp - ok 19:46:48.0723 0x18a8 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys 19:46:48.0753 0x18a8 viaide - ok 19:46:48.0893 0x18a8 [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys 19:46:48.0933 0x18a8 vmbus - ok 19:46:48.0953 0x18a8 [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys 19:46:48.0963 0x18a8 VMBusHID - ok 19:46:48.0993 0x18a8 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys 19:46:49.0003 0x18a8 volmgr - ok 19:46:49.0033 0x18a8 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 19:46:49.0053 0x18a8 volmgrx - ok 19:46:49.0073 0x18a8 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys 19:46:49.0083 0x18a8 volsnap - ok 19:46:49.0133 0x18a8 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 19:46:49.0143 0x18a8 vsmraid - ok 19:46:49.0233 0x18a8 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe 19:46:49.0313 0x18a8 VSS - ok 19:46:49.0333 0x18a8 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 19:46:49.0353 0x18a8 vwifibus - ok 19:46:49.0363 0x18a8 [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 19:46:49.0383 0x18a8 vwififlt - ok 19:46:49.0433 0x18a8 [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys 19:46:49.0443 0x18a8 vwifimp - ok 19:46:49.0473 0x18a8 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll 19:46:49.0513 0x18a8 W32Time - ok 19:46:49.0543 0x18a8 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys 19:46:49.0553 0x18a8 WacomPen - ok 19:46:49.0593 0x18a8 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 19:46:49.0653 0x18a8 WANARP - ok 19:46:49.0663 0x18a8 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 19:46:49.0693 0x18a8 Wanarpv6 - ok 19:46:49.0803 0x18a8 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe 19:46:49.0853 0x18a8 WatAdminSvc - ok 19:46:49.0973 0x18a8 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe 19:46:50.0033 0x18a8 wbengine - ok 19:46:50.0083 0x18a8 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 19:46:50.0123 0x18a8 WbioSrvc - ok 19:46:50.0153 0x18a8 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll 19:46:50.0183 0x18a8 wcncsvc - ok 19:46:50.0193 0x18a8 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 19:46:50.0213 0x18a8 WcsPlugInService - ok 19:46:50.0243 0x18a8 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys 19:46:50.0253 0x18a8 Wd - ok 19:46:50.0303 0x18a8 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 19:46:50.0343 0x18a8 Wdf01000 - ok 19:46:50.0383 0x18a8 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll 19:46:50.0413 0x18a8 WdiServiceHost - ok 19:46:50.0423 0x18a8 [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll 19:46:50.0433 0x18a8 WdiSystemHost - ok 19:46:50.0483 0x18a8 [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll 19:46:50.0513 0x18a8 WebClient - ok 19:46:50.0543 0x18a8 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll 19:46:50.0583 0x18a8 Wecsvc - ok 19:46:50.0603 0x18a8 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll 19:46:50.0643 0x18a8 wercplsupport - ok 19:46:50.0683 0x18a8 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll 19:46:50.0723 0x18a8 WerSvc - ok 19:46:50.0744 0x18a8 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 19:46:50.0788 0x18a8 WfpLwf - ok 19:46:50.0813 0x18a8 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys 19:46:50.0815 0x18a8 WIMMount - ok 19:46:50.0845 0x18a8 WinDefend - ok 19:46:50.0855 0x18a8 WinHttpAutoProxySvc - ok 19:46:50.0905 0x18a8 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 19:46:50.0945 0x18a8 Winmgmt - ok 19:46:51.0057 0x18a8 [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM C:\Windows\system32\WsmSvc.dll 19:46:51.0156 0x18a8 WinRM - ok 19:46:51.0219 0x18a8 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 19:46:51.0239 0x18a8 WinUsb - ok 19:46:51.0301 0x18a8 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll 19:46:51.0353 0x18a8 Wlansvc - ok 19:46:51.0373 0x18a8 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 19:46:51.0403 0x18a8 WmiAcpi - ok 19:46:51.0442 0x18a8 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 19:46:51.0465 0x18a8 wmiApSrv - ok 19:46:51.0485 0x18a8 WMPNetworkSvc - ok 19:46:51.0525 0x18a8 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll 19:46:51.0545 0x18a8 WPCSvc - ok 19:46:51.0565 0x18a8 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 19:46:51.0585 0x18a8 WPDBusEnum - ok 19:46:51.0615 0x18a8 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 19:46:51.0647 0x18a8 ws2ifsl - ok 19:46:51.0675 0x18a8 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll 19:46:51.0701 0x18a8 wscsvc - ok 19:46:51.0704 0x18a8 WSearch - ok 19:46:51.0828 0x18a8 [ 291778E1A36716182AFBC1731B2DFEAB, C0B928CCCE8C496C90C42E0D294BAB51DC67C02B0D20CFB6A16B0AE1F51CC497 ] wuauserv C:\Windows\system32\wuaueng.dll 19:46:51.0932 0x18a8 wuauserv - ok 19:46:51.0973 0x18a8 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 19:46:51.0993 0x18a8 WudfPf - ok 19:46:52.0023 0x18a8 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 19:46:52.0047 0x18a8 WUDFRd - ok 19:46:52.0073 0x18a8 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 19:46:52.0085 0x18a8 wudfsvc - ok 19:46:52.0125 0x18a8 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll 19:46:52.0165 0x18a8 WwanSvc - ok 19:46:52.0215 0x18a8 ================ Scan global =============================== 19:46:52.0245 0x18a8 [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll 19:46:52.0275 0x18a8 [ 8927015C999D55D9B4AC66000EE5343D, 2AC4896880BAD44192822063A31785F4A716D992201B3E6A590A2D75D9729A4A ] C:\Windows\system32\winsrv.dll 19:46:52.0295 0x18a8 [ 8927015C999D55D9B4AC66000EE5343D, 2AC4896880BAD44192822063A31785F4A716D992201B3E6A590A2D75D9729A4A ] C:\Windows\system32\winsrv.dll 19:46:52.0325 0x18a8 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll 19:46:52.0375 0x18a8 [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe 19:46:52.0385 0x18a8 [ Global ] - ok 19:46:52.0385 0x18a8 ================ Scan MBR ================================== 19:46:52.0395 0x18a8 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0 19:46:52.0917 0x18a8 \Device\Harddisk0\DR0 - ok 19:46:52.0917 0x18a8 ================ Scan VBR ================================== 19:46:52.0917 0x18a8 [ 5CC5BE0D9CB96D9ABC193C561A3BA80B ] \Device\Harddisk0\DR0\Partition1 19:46:52.0927 0x18a8 \Device\Harddisk0\DR0\Partition1 - ok 19:46:52.0927 0x18a8 [ 83D67339691643B392C1A10C8FFE82BE ] \Device\Harddisk0\DR0\Partition2 19:46:52.0937 0x18a8 \Device\Harddisk0\DR0\Partition2 - ok 19:46:52.0957 0x18a8 [ 969208F654B1544EB27BC324D80EF2C2 ] \Device\Harddisk0\DR0\Partition3 19:46:52.0957 0x18a8 \Device\Harddisk0\DR0\Partition3 - ok 19:46:52.0957 0x18a8 ================ Scan generic autorun ====================== 19:46:53.0077 0x18a8 [ D9AA753B736FD63F397C59464DC6FE68, AB357D3FDBF47C127571EE3ABBCBD7FF607CDDA230191913B2B45B5374A9EE42 ] C:\Program Files\Microsoft Security Client\msseces.exe 19:46:53.0137 0x18a8 MSC - ok 19:46:53.0317 0x18a8 [ F5A5DBADCD24BDF33BFDAA789E39C876, A0D931FA339CA1FB6198BF5DF327ECEB0881796FFF92BDE0F9FC2C233C46E83C ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe 19:46:53.0337 0x18a8 AdobeAAMUpdater-1.0 - ok 19:46:53.0337 0x18a8 SynTPEnh - ok 19:46:53.0377 0x18a8 [ 0C3154D0620F974AD5C4E8D87626C8CF, 4E6B751F9C0D5D4833A12166BC5142E0A7402E98D00F570926ED9CA0936A8007 ] C:\Windows\system32\igfxtray.exe 19:46:53.0397 0x18a8 IgfxTray - ok 19:46:53.0427 0x18a8 [ E4AA3D28753EF9DB333FE40079993B09, ECC60BAA7D21EF97CDA17F45277FBFE52B2169155DDB157E34A7AE2EC1BEC185 ] C:\Windows\system32\hkcmd.exe 19:46:53.0447 0x18a8 HotKeysCmds - ok 19:46:53.0497 0x18a8 [ CF40080765D6F66FA93318C0DB6C7D1F, 015EE5BE439DAC6D3F7C7471EEF554C11F28947492E3F7AA14BB72622C327DCD ] C:\Windows\system32\igfxpers.exe 19:46:53.0517 0x18a8 Persistence - ok 19:46:53.0817 0x18a8 [ F53F3E5DBBE68872373ED96789E2BA1C, 755FB22D438E35012E332FB4D42BF0AB38E90891B30968140FDF8BA8C8A6B44D ] C:\Program Files\Box\Box Sync\BoxSync.exe 19:46:53.0987 0x18a8 BoxSync - ok 19:46:54.0077 0x18a8 [ 903ED26B05121BDCC34A7FF9C4D47F87, FC152DE21B7A81B3EC0FD6AC8F2613100F2CCE7D5BA29A7F20AC14BFBC9CC84D ] C:\Program Files (x86)\Ralink Corporation\Ralink Bluetooth Stack\BtTray.exe 19:46:54.0107 0x18a8 BtTray - detected UnsignedFile.Multi.Generic ( 1 ) 19:46:56.0579 0x18a8 Detect skipped due to KSN trusted 19:46:56.0579 0x18a8 BtTray - ok 19:46:56.0689 0x18a8 [ 4D241A6A8F6BA9FA32FF836551FFDCEA, DEE87DFB6A8E87D40E3653435223B54AF2AB232DDC02D22468C126C54096F006 ] C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe 19:46:56.0729 0x18a8 USB3MON - ok 19:46:56.0779 0x18a8 [ CE5C9977DA751DDC30952AC4DCBCA788, 295172C4681E9AC27121122CDD2BA6F2A62435917A083CC8490D584CA0164BE6 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe 19:46:56.0789 0x18a8 HP Software Update - ok 19:46:56.0919 0x18a8 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 19:46:56.0969 0x18a8 Sidebar - ok 19:46:56.0989 0x18a8 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe 19:46:57.0009 0x18a8 mctadmin - ok 19:46:57.0099 0x18a8 [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 19:46:57.0139 0x18a8 Sidebar - ok 19:46:57.0159 0x18a8 [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe 19:46:57.0179 0x18a8 mctadmin - ok 19:46:57.0259 0x18a8 [ 7C6D524C78A1722AD987B9E47AC1FEE2, FFDC6C92ABB547D0DCD2621EC423C755A78079B061A41FA1751A56799D1A79A5 ] C:\Users\Korisnik\AppData\Local\Dropbox\Update\DropboxUpdate.exe 19:46:57.0289 0x18a8 Dropbox Update - ok 19:46:57.0359 0x18a8 GoogleDriveSync - ok 19:46:57.0389 0x18a8 Skype - ok 19:46:57.0399 0x18a8 CloudApp - ok 19:46:57.0399 0x18a8 Waiting for KSN requests completion. In queue: 10 19:46:58.0399 0x18a8 Waiting for KSN requests completion. In queue: 10 19:46:59.0399 0x18a8 Waiting for KSN requests completion. In queue: 10 19:46:59.0999 0x1374 Object required for P2P: [ F53F3E5DBBE68872373ED96789E2BA1C ] C:\Program Files\Box\Box Sync\BoxSync.exe 19:47:00.0401 0x18a8 Waiting for KSN requests completion. In queue: 8 19:47:01.0403 0x18a8 Waiting for KSN requests completion. In queue: 8 19:47:02.0403 0x18a8 Waiting for KSN requests completion. In queue: 8 19:47:02.0583 0x1374 Object send P2P result: true 19:47:03.0423 0x18a8 AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.3.216.0 ), 0x61000 ( enabled : updated ) 19:47:03.0433 0x18a8 AV detected via SS2: AVG Internet Security, C:\Program Files (x86)\AVG\Av\avgwsc.exe ( 16.51.0.7497 ), 0x41000 ( enabled : updated ) 19:47:03.0433 0x18a8 FW detected via SS2: AVG Internet Security, C:\Program Files (x86)\AVG\Av\avgwsc.exe ( 16.51.0.7497 ), 0x41010 ( enabled ) 19:47:05.0893 0x18a8 ============================================================ 19:47:05.0893 0x18a8 Scan finished 19:47:05.0893 0x18a8 ============================================================ 19:47:05.0903 0x0940 Detected object count: 0 19:47:05.0903 0x0940 Actual detected object count: 0 19:48:24.0194 0x14ec Deinitialize success

Profil

Sass Drake Poslao: 25 Mar 2016 20:06 Idi na vrh
offline Sass Drake Anti Malware Fighter Rank 2 Pridružio: 26 Avg 2010 Poruke: 10622 Gde živiš: Hypnos Control Room, Tokyo Metropolitan Government Building	0Niko još nije pohvalio poruku. Registruj se da bi pohvalio/la poruku! To bi bilo to. Ne zaboravi da promijeniš lozinku za email nalog za svaki slučaj. • Sledeća procedura će implementirati završno čišćenje. Preuzmi "Xplode"-ov DelFix alat i snimi ga na Desktop. Dvoklikom pokreni alat i štikliraj kućice ispred sledećih opcija; Remove disinfection tools Create registry backup Purge System Restore Klikni na dugme Run i pričekaj trenutak dok alat ne završi svoj rad. Od ovog trenutka, svi korišćeni alati u ovoj temi bi trebali biti obrisani. Alat će takođe formirati izveštaj za tebe. (C:\DelFix.txt) Alat će snimiti i zdravo stanje registy-ja i napraviti backup koristeci integrisan program "ERUNT" u %windir%\ERUNT\DelFix Alat briše stare system restore tačke i pravi novu, svežu tačku nakon čišćenja.

Profil

MyCity » Ambulanta -> Arhiva Ambulante » Problemi sa virusima

Ko je trenutno na forumu

Ukupno su 1037 korisnika na forumu :: 30 registrovanih, 7 sakrivenih i 1000 gosta :: [ Administrator ] [ Supermoderator ] [ Moderator ] :: Detaljnije

Najviše korisnika na forumu ikad bilo je 3466 - dana 01 Jun 2021 17:07

Korisnici koji su trenutno na forumu:: Korisnici trenutno na forumu: 357magnum, aleksmajstor, ArchaBasha, Ben Roj, BORUTUS, Brana01, dankisha, DENIRO, Djokislav, havoc995, HrcAk47, Još malo pa deda, jukeboxer, Kubovac, kunktator, ljuba, mercedesamg, Mercury, minmatar34957, okopanja, Panter, royst33, Sirius, trajkoni018, vathra, virked, vladaa012, vukdra, wizzardone, Wrangler

Svaki korisnik ovog sajta je odgovoran za sadržaj svoje poruke koju objavi na sajtu. Sajt se odriče svake odgovornosti za sadržaj tih poruka.
Postavljanjem vaše poruke ili vašeg autorskog dela na ovaj sajt, saglasni ste da ovaj sajt postaje distributer vašeg dela, i odričete se mogućnosti njegovog povlačenja ili brisanja, bez saglasnosti uprave sajta.
Distribucija sadržaja sa ovog sajta je dozvoljena samo u nekomercijalne svrhe, uz obaveznu napomenu da je sadržaj preuzet sa ovog sajta, i uz obavezno navođenje adrese MyCity sajta. Za sve ostale vidove distribucije obavezni ste da prethodno zatražite odobrenje od vlasnika MyCity sajta.
MyCity pokrenuo, administrira i razvija Predrag Damnjanović, a o uređenju sajta se brine MyCity Tim.
Ukoliko želite da nas kontaktirate kliknite ovde.
Naši sajtovi:
Vesti, Vojni forum, Zaštita od virusa, TekstPesme.rs

This content is licensed under a Creative Commons License.
Based on phpBB 2, translated by Simke, designed by