Quantcast

Não consigo entrar no Facebook

classic Clássica list Lista threaded Em Árvore
Travado 23 mensagens Opções
12
Responder | Em Árvore
Abra essa mensagem na visão em árvore
|  
Denunciar Conteúdo como Inapropriado

Não consigo entrar no Facebook

Sara
Oi Marcelo, o meu problema eh:
O meu face entrava normalmente, só que de uma hora pra outra ele não abre mais, em navegador nenhum, dá falha no carregamento da página. O invocado é que qualquer outro face abre aki mas o meu não. Qndo consigo abrir ele é lento logo volta a dizer falha no carregamento da página. Já tentei por https/http mas nada... Já desinstalei os navegadores e instalei de novo mas não deu certo. Espero que consiga me ajudar. Desde já agradeço a atenção. Abraços!
Responder | Em Árvore
Abra essa mensagem na visão em árvore
|  
Denunciar Conteúdo como Inapropriado

Re: Não consigo entrar no Facebook

Marcelo
Administrador
Olá Sara,

Movi seu post para este tópico, deixando-o reservado para seu problema especificamente.

Bem, se me permite, gostaria de analisar o estado do seu sistema operacional para ver se há alguma infecção constando aí que, talvez, possa estar comprometendo o carregamento do seu perfil. Peço que siga este procedimento a seguir.

Faça o download do OTL e salve-o no desktop;

- Se for o Windows 7 ou Vista, clique com o direito sobre a ferramenta e selecione "Executar como administrador". Se for o XP, apenas dê um duplo clique.
- Marque as opções: Ignorar Arquivos Microsoft, Verificar All Users, Verificar Lop e Verificar Purity;
- Feito isso, clique no botão Verificar e aguarde o scan;
- Dois logs (relatórios) serão abertos no Bloco de Notas com os seguintes nomes:

- OTL.Txt <- este será aberto
- Extras.Txt <- este estará minimizado

- Eles também estarão salvos no desktop.

Peço que copie ambos os relatórios, na íntegra, e cole-os em sua próxima resposta, por favor.

Atenciosamente,
Marcelo
Responder | Em Árvore
Abra essa mensagem na visão em árvore
|  
Denunciar Conteúdo como Inapropriado

Re: Não consigo entrar no Facebook

Sara
Aki está o o relatorio OTL.txt


OTL logfile created on: 17/07/2012 18:32:50 - Run 1
OTL by OldTimer - Version 3.2.54.0     Folder = C:\Users\Sara\Desktop
 Starter Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000416 | Country: Brasil | Language: PTB | Date Format: dd/MM/yyyy
 
1,75 Gb Total Physical Memory | 0,70 Gb Available Physical Memory | 40,26% Memory free
3,49 Gb Paging File | 2,13 Gb Available in Paging File | 60,90% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 113,00 Gb Total Space | 80,29 Gb Free Space | 71,05% Space Free | Partition Type: NTFS
Drive D: | 167,88 Gb Total Space | 163,13 Gb Free Space | 97,17% Space Free | Partition Type: NTFS
 
Computer Name: SARA-PC | User Name: Sara | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2012/07/17 18:26:46 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Sara\Desktop\OTL.exe
PRC - [2012/07/06 11:53:20 | 000,217,536 | ---- | M] (Facebook) -- C:\Users\Sara\AppData\Local\Facebook\Messenger\2.1.4570.0\FacebookMessenger.exe
PRC - [2012/03/06 21:15:17 | 004,241,512 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe
PRC - [2012/03/06 21:15:14 | 000,044,768 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe
PRC - [2011/10/01 08:30:42 | 000,219,496 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
PRC - [2011/10/01 08:30:36 | 000,508,776 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
PRC - [2011/08/10 13:47:28 | 000,401,408 | ---- | M] (AMD) -- C:\Windows\System32\atieclxx.exe
PRC - [2011/08/10 13:47:00 | 000,176,128 | ---- | M] (AMD) -- C:\Windows\System32\atiesrxx.exe
PRC - [2011/04/04 03:03:18 | 001,757,264 | ---- | M] (SAMSUNG Electronics) -- C:\Program Files\Samsung\Samsung Support Center\SSCKbdHk.exe
PRC - [2011/03/29 01:15:54 | 004,399,696 | ---- | M] (SEC) -- C:\Program Files\Samsung\Samsung Recovery Solution 5\WCScheduler.exe
PRC - [2011/02/25 02:30:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2011/02/24 22:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft\BingBar\SeaPort.EXE
PRC - [2011/01/04 10:06:42 | 007,060,560 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Easy Display Manager\WifiManager.exe
PRC - [2010/12/23 03:07:58 | 000,945,232 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe
PRC - [2010/11/29 02:42:38 | 000,775,848 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\Movie Color Enhancer\MovieColorEnhancer.exe
PRC - [2010/11/20 18:29:19 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2010/11/12 19:24:08 | 001,602,344 | ---- | M] (ELAN Microelectronics Corp.) -- C:\Program Files\Elantech\ETDCtrlHelper.exe
PRC - [2010/11/12 19:24:06 | 001,812,264 | ---- | M] (ELAN Microelectronics Corp.) -- C:\Program Files\Elantech\ETDCtrl.exe
PRC - [2010/11/10 01:03:52 | 000,136,488 | ---- | M] (CyberLink) -- C:\Program Files\CyberLink\YouCam\YCMMirage.exe
PRC - [2010/09/20 00:24:42 | 000,087,336 | ---- | M] (CyberLink Corp.) -- C:\Program Files\CyberLink\Media+Player10\Media+Player10Serv.exe
PRC - [2010/08/26 22:52:12 | 002,782,064 | ---- | M] (Samsung Electronics) -- C:\Program Files\Samsung\Samsung Update Plus\SUPBackground.exe
PRC - [2010/08/05 02:16:04 | 002,208,624 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\Samsung\SamsungFastStart\SmartRestarter.exe
PRC - [2010/02/10 11:29:52 | 000,719,360 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\Program Files\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe
PRC - [2009/11/02 02:21:26 | 000,103,720 | ---- | M] (CyberLink) -- C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe
 
 
[color=#E56717]========== Modules (No Company Name) ==========[/color]
 
MOD - [2012/07/10 01:09:00 | 000,438,296 | ---- | M] () -- C:\Users\Sara\AppData\Local\Google\Chrome\Application\20.0.1132.57\ppGoogleNaClPluginChrome.dll
MOD - [2012/07/10 01:08:59 | 003,972,120 | ---- | M] () -- C:\Users\Sara\AppData\Local\Google\Chrome\Application\20.0.1132.57\pdf.dll
MOD - [2012/07/10 01:07:39 | 000,554,520 | ---- | M] () -- C:\Users\Sara\AppData\Local\Google\Chrome\Application\20.0.1132.57\libglesv2.dll
MOD - [2012/07/10 01:07:37 | 000,117,784 | ---- | M] () -- C:\Users\Sara\AppData\Local\Google\Chrome\Application\20.0.1132.57\libegl.dll
MOD - [2012/07/10 01:07:22 | 000,140,328 | ---- | M] () -- C:\Users\Sara\AppData\Local\Google\Chrome\Application\20.0.1132.57\avutil-51.dll
MOD - [2012/07/10 01:07:21 | 000,262,184 | ---- | M] () -- C:\Users\Sara\AppData\Local\Google\Chrome\Application\20.0.1132.57\avformat-54.dll
MOD - [2012/07/10 01:07:19 | 002,386,984 | ---- | M] () -- C:\Users\Sara\AppData\Local\Google\Chrome\Application\20.0.1132.57\avcodec-54.dll
MOD - [2012/07/09 23:17:27 | 009,255,112 | ---- | M] () -- C:\Users\Sara\AppData\Local\Google\Chrome\Application\20.0.1132.57\gcswf32.dll
MOD - [2012/07/09 23:17:27 | 009,255,112 | ---- | M] () -- C:\Users\Sara\AppData\Local\Google\Chrome\APPLIC~1\200113~1.57\gcswf32.dll
MOD - [2012/07/05 20:58:56 | 021,015,488 | ---- | M] () -- C:\Users\Sara\AppData\Local\Facebook\Messenger\2.1.4570.0\libcef.dll
MOD - [2012/07/05 20:58:16 | 000,284,096 | ---- | M] () -- C:\Users\Sara\AppData\Local\Facebook\Messenger\2.1.4570.0\CefSharp.WinForms.dll
MOD - [2012/07/05 20:56:24 | 000,456,128 | ---- | M] () -- C:\Users\Sara\AppData\Local\Facebook\Messenger\2.1.4570.0\CefSharp.dll
MOD - [2012/06/14 16:16:30 | 000,240,128 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\f2f8201dd3453250dfd9ed1afce630a0\WindowsFormsIntegration.ni.dll
MOD - [2012/06/14 16:08:39 | 011,833,344 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Web\a501b7960f6c6e2e39162b83f3303aaa\System.Web.ni.dll
MOD - [2012/06/14 16:08:06 | 014,340,608 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\e717a230496832656b05b515eb9f3bc5\PresentationFramework.ni.dll
MOD - [2012/06/14 16:07:13 | 012,436,480 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\7b7fbe651c6e72f12099a298654c9594\System.Windows.Forms.ni.dll
MOD - [2012/06/14 16:06:52 | 001,591,808 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\6bb439b3f87736d3248ae27d43e2c0d6\System.Drawing.ni.dll
MOD - [2012/06/14 16:06:43 | 012,237,824 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\14a87218ea49639f38097e278b98a3da\PresentationCore.ni.dll
MOD - [2012/05/31 16:26:53 | 000,368,128 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\8e56489276063ededde74e597a121df3\PresentationFramework.Aero.ni.dll
MOD - [2012/05/31 16:24:39 | 003,347,968 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\46fce56db7685a586d3eeb7c373e3c1c\WindowsBase.ni.dll
MOD - [2012/05/31 16:24:10 | 002,297,856 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\dfd33f59a5803a3c73cf408362e6e0b7\System.Core.ni.dll
MOD - [2012/05/29 15:16:17 | 000,771,584 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\03dee80574f4ec770b6f77ca030ded6c\System.Runtime.Remoting.ni.dll
MOD - [2012/05/29 15:16:03 | 006,611,456 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\f3814b488d9e083cbbc623e01b389f09\System.Data.ni.dll
MOD - [2012/05/29 15:13:39 | 005,452,800 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\ba3d70b651454c7d49b407b93663bfed\System.Xml.ni.dll
MOD - [2012/05/29 15:13:23 | 000,971,264 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\cfa9c506bfb9254c89dace7b83bc9f9d\System.Configuration.ni.dll
MOD - [2012/05/29 15:13:08 | 007,967,232 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\System\ce9ff6baf9053ed2ed673d948179195c\System.ni.dll
MOD - [2012/05/29 15:12:35 | 011,492,864 | ---- | M] () -- C:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\acfc1391e45fedd2a359778ea57d914c\mscorlib.ni.dll
MOD - [2012/04/19 11:53:44 | 000,081,408 | ---- | M] () -- C:\Program Files\NCH Software\ExpressZip\ezcm.dll
MOD - [2011/11/29 15:46:59 | 000,241,664 | ---- | M] () -- C:\windows\assembly\GAC_MSIL\PresentationFramework.resources\3.0.0.0_pt-BR_31bf3856ad364e35\PresentationFramework.resources.dll
MOD - [2011/11/29 15:46:59 | 000,106,496 | ---- | M] () -- C:\windows\assembly\GAC_MSIL\PresentationCore.resources\3.0.0.0_pt-BR_31bf3856ad364e35\PresentationCore.resources.dll
MOD - [2011/11/29 15:46:42 | 000,208,896 | ---- | M] () -- C:\windows\assembly\GAC_MSIL\System.resources\2.0.0.0_pt-BR_b77a5c561934e089\System.resources.dll
MOD - [2011/11/08 21:55:02 | 000,016,384 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
MOD - [2011/08/10 00:08:08 | 000,369,152 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
MOD - [2010/11/20 18:29:11 | 002,927,616 | ---- | M] () -- C:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll
MOD - [2010/11/12 21:02:33 | 000,417,792 | ---- | M] () -- C:\windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_pt-BR_b77a5c561934e089\System.Windows.Forms.resources.dll
MOD - [2010/11/12 20:34:31 | 000,303,104 | ---- | M] () -- C:\windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_pt-BR_b77a5c561934e089\mscorlib.resources.dll
MOD - [2010/07/05 07:42:58 | 000,203,776 | ---- | M] () -- C:\Program Files\Samsung\Movie Color Enhancer\WinCRT.dll
MOD - [2010/05/07 11:22:18 | 001,636,864 | ---- | M] () -- C:\Program Files\Samsung\Samsung Recovery Solution 5\Resdll.dll
MOD - [2009/11/02 02:23:36 | 000,013,096 | ---- | M] () -- C:\Program Files\CyberLink\Power2Go\CLMLSvcPS.dll
MOD - [2009/11/02 02:20:10 | 000,619,816 | ---- | M] () -- C:\Program Files\CyberLink\Power2Go\CLMediaLibrary.dll
MOD - [2006/08/12 00:48:40 | 000,049,152 | ---- | M] () -- C:\Program Files\Samsung\Easy Display Manager\HookDllPS2.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2012/06/14 19:17:46 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/03/06 21:15:14 | 000,044,768 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011/10/01 08:30:42 | 000,219,496 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe -- (sftvsa)
SRV - [2011/10/01 08:30:36 | 000,508,776 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe -- (sftlist)
SRV - [2011/08/10 13:47:00 | 000,176,128 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\System32\atiesrxx.exe -- (AMD External Events Utility)
SRV - [2011/03/01 09:23:36 | 000,183,560 | ---- | M] (Microsoft Corporation.) [On_Demand | Stopped] -- C:\Program Files\Microsoft\BingBar\BBSvc.EXE -- (BBSvc)
SRV - [2011/02/24 22:46:22 | 000,249,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft\BingBar\SeaPort.EXE -- (SeaPort)
SRV - [2010/08/09 16:04:04 | 000,131,888 | ---- | M] (Samsung Electronics CO., LTD.) [On_Demand | Stopped] -- C:\Windows\System32\SUPDSvc.exe -- (Samsung UPD Service)
SRV - [2009/07/13 22:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\mpsvc.dll -- (WinDefend)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2012/03/06 21:03:51 | 000,612,184 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\windows\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2012/03/06 21:03:38 | 000,337,880 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2012/03/06 21:02:14 | 000,044,376 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr2.sys -- (aswRdr)
DRV - [2012/03/06 21:01:53 | 000,053,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2012/03/06 21:01:48 | 000,057,688 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2012/03/06 21:01:30 | 000,020,696 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2012/02/28 02:54:19 | 000,015,656 | ---- | M] (Windows (R) 2003 DDK 3790 provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rtport.sys -- (rtport)
DRV - [2011/12/12 07:32:24 | 002,228,224 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\athr.sys -- (athr)
DRV - [2011/10/01 08:30:42 | 000,019,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Sftvollh.sys -- (Sftvol)
DRV - [2011/10/01 08:30:40 | 000,021,864 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\Sftredirlh.sys -- (Sftredir)
DRV - [2011/10/01 08:30:38 | 000,194,408 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Sftplaylh.sys -- (Sftplay)
DRV - [2011/10/01 08:30:36 | 000,579,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Sftfslh.sys -- (Sftfs)
DRV - [2011/08/10 14:38:14 | 008,396,800 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (amdkmdag)
DRV - [2011/08/10 13:09:44 | 000,247,296 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmpag.sys -- (amdkmdap)
DRV - [2011/04/15 15:37:46 | 000,066,688 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\amd_sata.sys -- (amd_sata)
DRV - [2011/04/15 15:37:46 | 000,033,408 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\amd_xata.sys -- (amd_xata)
DRV - [2010/12/16 00:06:46 | 000,037,504 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\usbfilter.sys -- (usbfilter)
DRV - [2010/11/20 18:29:24 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/20 18:29:03 | 000,035,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2010/11/20 18:29:03 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2010/11/18 02:04:24 | 000,101,392 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AtihdW73.sys -- (AtiHDAudioService)
DRV - [2010/11/10 01:04:14 | 000,027,632 | ---- | M] (CyberLink Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\clwvd.sys -- (clwvd)
DRV - [2008/11/11 13:42:00 | 000,024,832 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbmodem.sys -- (USBModem)
DRV - [2008/11/11 13:41:00 | 000,019,968 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbdiag.sys -- (UsbDiag)
DRV - [2008/11/11 13:41:00 | 000,013,056 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbbus.sys -- (usbbus)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://start.allgameshome.com/
IE - HKLM\..\SearchScopes,DefaultScope = {807FC1E6-CF7E-4B46-B5A0-A988A18689CA}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&form=SMSTDF&pc=MASM&src=IE-SearchBox
IE - HKLM\..\SearchScopes\{807FC1E6-CF7E-4B46-B5A0-A988A18689CA}: "URL" = http://start.allgameshome.com/results.php?category=web&s={searchTerms}
IE - HKLM\..\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}: "URL" = http://home.myplaycity.com/results.php?category=web&s={searchTerms}
 
 
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Äi?i://home.myplaycity.com/
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page =
IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Äi?i://home.myplaycity.com/
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-896558980-977426591-2796425657-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung.msn.com
IE - HKU\S-1-5-21-896558980-977426591-2796425657-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com.br/
IE - HKU\S-1-5-21-896558980-977426591-2796425657-1000\..\URLSearchHook: {CA3EB689-8F09-4026-AA10-B9534C691CE0} - No CLSID value found
IE - HKU\S-1-5-21-896558980-977426591-2796425657-1000\..\SearchScopes,DefaultScope = {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
IE - HKU\S-1-5-21-896558980-977426591-2796425657-1000\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://tbsearch.ask.com/redirect?client=ie&tb=VRS&o=&src=crm&q={searchTerms}&locale=
IE - HKU\S-1-5-21-896558980-977426591-2796425657-1000\..\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}: "URL" = http://home.myplaycity.com/results.php?category=web&s={searchTerms}
IE - HKU\S-1-5-21-896558980-977426591-2796425657-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-896558980-977426591-2796425657-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.startup.homepage: "http://www.google.com.br/"
FF - user.js - File not found
 
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKCU\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin: C:\Users\Sara\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Sara\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Sara\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@unity3d.com/UnityPlayer,version=1.0: C:\Users\Sara\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKCU\Software\MozillaPlugins\facebook.com/fbDesktopPlugin: C:\Users\Sara\AppData\Local\Facebook\Messenger\2.1.4570.0\npFbDesktopPlugin.dll (Facebook, Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012/05/09 08:53:16 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/07/12 12:38:31 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
 
[2012/07/12 12:53:30 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Sara\AppData\Roaming\mozilla\Extensions
[2012/06/14 19:19:07 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - homepage:
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage:
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Sara\AppData\Local\Google\Chrome\Application\20.0.1132.57\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Sara\AppData\Local\Google\Chrome\Application\20.0.1132.57\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Sara\AppData\Local\Google\Chrome\Application\20.0.1132.57\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Sara\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - plugin: Windows Live\u0099 Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
CHR - plugin: Unity Player (Enabled) = C:\Users\Sara\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: Facebook Desktop (Enabled) = C:\Users\Sara\AppData\Local\Facebook\Messenger\2.1.4554.0\npFbDesktopPlugin.dll
CHR - plugin: Facebook Video Calling Plugin (Enabled) = C:\Users\Sara\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Sara\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - Extension: YouTube = C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Pesquisa do Google = C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: avast! WebRep = C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1426_0\
CHR - Extension: Marc Ecko = C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\opjonmehjfmkejjifhhknofdnacklmjk\2_1\
CHR - Extension: Gmail = C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
 
O1 HOSTS File: ([2009/06/10 18:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O2 - BHO: (Samsung BHO Class) - {AA609D72-8482-4076-8991-8CDAE5B93BCB} - C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll ()
O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)
O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKU\S-1-5-21-896558980-977426591-2796425657-1000\..\Toolbar\WebBrowser: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No CLSID value found.
O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [ETDCtrl] C:\Program Files\Elantech\ETDCtrl.exe (ELAN Microelectronics Corp.)
O4 - HKLM..\Run: [LanguageShortcut] C:\Program Files\CyberLink\PowerDVD\Language\Language.exe ()
O4 - HKU\S-1-5-21-896558980-977426591-2796425657-1000..\Run: [Facebook Update] C:\Users\Sara\AppData\Local\Facebook\Update\FacebookUpdate.exe (Facebook Inc.)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - Startup: C:\Users\Sara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\debug.log ()
O4 - Startup: C:\Users\Sara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Messenger.lnk = C:\Users\Sara\AppData\Local\Facebook\Messenger\2.1.4570.0\FacebookMessenger.exe (Facebook)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O9 - Extra Button: Samsung AnyWeb Print - {328ECD19-C167-40eb-A0C7-16FE7634105E} - C:\Program Files\Samsung AnyWeb Print\W2PBrowser.dll ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000010 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab (MessengerStatsClient Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.1.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{30BCAC89-9D8E-4D4F-BEB6-76743329E5A8}: DhcpNameServer = 10.1.1.1
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 18:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{ad5378c2-7f30-11e1-a2ea-e8039a439679}\Shell - "" = AutoRun
O33 - MountPoints2\{ad5378c2-7f30-11e1-a2ea-e8039a439679}\Shell\AutoRun\command - "" = F:\USBAutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2012/07/17 18:26:16 | 000,596,480 | ---- | C] (OldTimer Tools) -- C:\Users\Sara\Desktop\OTL.exe
[2012/07/12 13:27:53 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook
[2012/07/12 13:18:38 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Roaming\Apple Computer
[2012/07/12 13:18:38 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\Apple Computer
[2012/07/12 13:17:44 | 000,000,000 | ---D | C] -- C:\Program Files\Safari
[2012/07/12 13:17:44 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple Computer
[2012/07/12 13:16:43 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2012/07/12 13:16:36 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\Apple
[2012/07/12 13:16:29 | 000,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2012/07/12 13:16:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2012/07/12 13:08:02 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012/07/12 12:12:22 | 000,000,000 | ---D | C] -- C:\windows\System32\directx
[2012/07/12 12:11:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Game Booster 3
[2012/07/12 12:11:36 | 000,000,000 | ---D | C] -- C:\ProgramData\IObit
[2012/07/12 12:11:35 | 000,000,000 | ---D | C] -- C:\Program Files\IObit
[2012/07/12 12:03:54 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\Deployment
[2012/07/12 12:03:54 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\Apps
[2012/07/12 11:04:37 | 000,000,000 | ---D | C] -- C:\windows\Minidump
[2012/07/12 10:29:18 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Roaming\TeamViewer
[2012/07/12 10:29:05 | 000,000,000 | ---D | C] -- C:\Program Files\TeamViewer
[2012/07/12 09:19:54 | 000,000,000 | ---D | C] -- C:\Users\Sara\Documents\Downloads
[2012/07/04 19:22:59 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\{D65438D0-F2C5-43FF-8313-EBFEE947EC0B}
[2012/07/04 18:31:13 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\{FBED7B91-5BB9-4F1F-8B8E-FF738017DC77}
[2012/07/04 18:31:01 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\{B023F3CB-3EA6-4DE0-9837-CC3F0FF1EA7B}
[2012/07/04 16:21:44 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\{8873D3C3-8550-4BB2-806B-6C9FAADD6FC1}
[2012/07/04 16:21:32 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\{680B4A98-F2F3-4D91-96F6-64D1C91AF974}
[2012/07/03 20:25:43 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\{F99391E4-7BFD-4895-9EC9-21AA2763A694}
[2012/07/03 20:25:27 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\{F9992556-F02D-4D36-8DAC-29C1E38E48A9}
[2012/07/03 19:02:33 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012/07/03 15:03:29 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\{F9A650DC-A232-40A2-A97C-0E724D803085}
[2012/07/02 19:19:56 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\'Full Speed' Internet Booster + Performance Tests
[2012/07/02 19:19:43 | 000,000,000 | ---D | C] -- C:\windows\'Full Speed' Internet Booster + Performance Tests
[2012/07/02 19:19:43 | 000,000,000 | ---D | C] -- C:\Program Files\'Full Speed' Internet Booster + Performance Tests
[2012/07/02 19:02:59 | 000,000,000 | ---D | C] -- C:\Program Files\RamBooster 2.0
[2012/07/02 18:48:30 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Roaming\PC Accelerate
[2012/07/02 18:48:23 | 000,000,000 | ---D | C] -- C:\Users\Sara\Desktop\Try NTechnologies products
[2012/07/02 18:48:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Accelerate
[2012/07/02 18:48:21 | 000,000,000 | ---D | C] -- C:\Program Files\PC Accelerate
[2012/07/02 16:10:37 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
[2012/07/02 16:08:29 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CyberLink DVD Suite
[2012/06/29 21:37:48 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\{31161447-56BA-47ED-B389-FEC6F648BF26}
[2012/06/29 21:37:33 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\{D7D54860-88C7-4C63-9783-0D25767505DC}
[2012/06/29 14:53:55 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\{A4928B9E-D46C-4139-8EF7-4AAE6D3002B6}
[2012/06/29 14:53:42 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\{2E5F5AB4-A687-4A88-8738-08E250580FB7}
[2012/06/28 16:44:02 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\{95E1D45A-6D59-4420-8BD0-8A2128628A06}
[2012/06/27 23:23:42 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Roaming\Mozilla
[2012/06/27 23:23:42 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\Mozilla
[2012/06/27 23:23:34 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2012/06/27 23:23:20 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012/06/26 19:02:50 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\{D6049873-16F5-48F2-AEF0-06DA42533BA9}
[2012/06/26 19:02:35 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\{9903C07E-73A2-4898-9CE5-B736D3D9EA64}
[2012/06/25 18:55:24 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\{D6543BD0-4842-47E3-8C86-038E034A07E7}
[2012/06/25 18:00:23 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\{DAF09953-6F44-472D-9226-52AB984F64DD}
[2012/06/25 18:00:10 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\{E9511105-3065-47C7-8FEF-336FBDCF747D}
[2012/06/25 09:36:22 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\{C22F822E-7126-4BF9-9D16-010AAC25F57E}
[2012/06/19 22:43:10 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\{8163FFCC-7FA0-4485-850E-0D6C760187D8}
[2012/06/19 22:42:20 | 000,000,000 | ---D | C] -- C:\Users\Sara\AppData\Local\{94C4A58A-3A75-4656-B244-9A2E917A3473}
[2010/04/09 13:55:22 | 016,205,198 | ---- | C] (Mooii) -- C:\Program Files\PhotoScapeSetup_V3.4.exe
[4 C:\windows\System32\*.tmp files -> C:\windows\System32\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2012/07/17 18:29:35 | 000,016,160 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/07/17 18:29:35 | 000,016,160 | -H-- | M] () -- C:\windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/07/17 18:26:46 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Users\Sara\Desktop\OTL.exe
[2012/07/17 18:21:53 | 000,067,584 | --S- | M] () -- C:\windows\bootstat.dat
[2012/07/17 18:21:46 | 1874,792,448 | -HS- | M] () -- C:\hiberfil.sys
[2012/07/17 17:05:00 | 000,001,074 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-896558980-977426591-2796425657-1000UA.job
[2012/07/17 16:21:17 | 000,664,248 | ---- | M] () -- C:\windows\System32\prfh0416.dat
[2012/07/17 16:21:17 | 000,616,452 | ---- | M] () -- C:\windows\System32\perfh009.dat
[2012/07/17 16:21:17 | 000,128,280 | ---- | M] () -- C:\windows\System32\prfc0416.dat
[2012/07/17 16:21:17 | 000,106,574 | ---- | M] () -- C:\windows\System32\perfc009.dat
[2012/07/17 16:15:04 | 000,001,070 | ---- | M] () -- C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-896558980-977426591-2796425657-1000UA.job
[2012/07/17 10:05:02 | 000,001,022 | ---- | M] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-896558980-977426591-2796425657-1000Core.job
[2012/07/16 21:57:54 | 000,062,889 | ---- | M] () -- C:\Users\Sara\Desktop\dinha.jpg
[2012/07/16 13:15:02 | 000,001,048 | ---- | M] () -- C:\windows\tasks\FacebookUpdateTaskUserS-1-5-21-896558980-977426591-2796425657-1000Core.job
[2012/07/12 13:27:53 | 000,001,277 | ---- | M] () -- C:\Users\Sara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Messenger.lnk
[2012/07/12 13:18:24 | 000,002,479 | ---- | M] () -- C:\Users\Public\Desktop\Safari.lnk
[2012/07/12 12:40:29 | 000,001,922 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2012/07/12 12:40:27 | 000,002,577 | ---- | M] () -- C:\windows\System32\config.nt
[2012/07/03 19:47:57 | 000,073,722 | ---- | M] () -- C:\Users\Sara\Desktop\bubuzinha.jpg
[2012/07/03 19:02:37 | 000,001,088 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/07/02 20:19:48 | 000,110,536 | ---- | M] () -- C:\Users\Sara\Desktop\Mãe João Paulo.jpg
[2012/07/02 19:19:56 | 000,002,207 | ---- | M] () -- C:\Users\Sara\Desktop\Full Speed.lnk
[2012/07/02 19:02:59 | 000,003,183 | ---- | M] () -- C:\Users\Sara\Desktop\Launch Rambooster 2.0.lnk
[2012/07/02 18:48:23 | 000,001,020 | ---- | M] () -- C:\Users\Sara\Desktop\PC Accelerate.lnk
[2012/07/02 16:11:31 | 000,001,145 | ---- | M] () -- C:\Users\Sara\Desktop\CyberLink PowerDVD.lnk
[2012/06/29 20:59:38 | 000,000,193 | ---- | M] () -- C:\Users\Sara\Desktop\jp moedas verdes.rtf
[2012/06/26 00:26:10 | 001,686,614 | ---- | M] () -- C:\Users\Sara\Desktop\linda.jpg
[2012/06/26 00:25:50 | 001,672,685 | ---- | M] () -- C:\Users\Sara\Desktop\bubu3.jpg
[2012/06/22 01:24:18 | 001,450,688 | ---- | M] () -- C:\Users\Sara\Desktop\bubu2.jpg
[4 C:\windows\System32\*.tmp files -> C:\windows\System32\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2012/07/16 21:57:54 | 000,062,889 | ---- | C] () -- C:\Users\Sara\Desktop\dinha.jpg
[2012/07/12 13:18:24 | 000,002,491 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Safari.lnk
[2012/07/12 13:18:24 | 000,002,479 | ---- | C] () -- C:\Users\Public\Desktop\Safari.lnk
[2012/07/12 13:16:32 | 000,002,519 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
[2012/07/12 12:54:14 | 000,001,074 | ---- | C] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-896558980-977426591-2796425657-1000UA.job
[2012/07/12 12:54:13 | 000,001,022 | ---- | C] () -- C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-896558980-977426591-2796425657-1000Core.job
[2012/07/04 19:02:54 | 000,001,277 | ---- | C] () -- C:\Users\Sara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Messenger.lnk
[2012/07/03 19:02:37 | 000,001,100 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2012/07/03 19:02:37 | 000,001,088 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2012/07/02 20:19:53 | 000,110,536 | ---- | C] () -- C:\Users\Sara\Desktop\Mãe João Paulo.jpg
[2012/07/02 19:19:56 | 000,002,207 | ---- | C] () -- C:\Users\Sara\Desktop\Full Speed.lnk
[2012/07/02 19:02:59 | 000,003,183 | ---- | C] () -- C:\Users\Sara\Desktop\Launch Rambooster 2.0.lnk
[2012/07/02 19:02:59 | 000,002,045 | ---- | C] () -- C:\Users\Sara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Launch RamBooster 2.0.lnk
[2012/07/02 18:48:23 | 000,001,020 | ---- | C] () -- C:\Users\Sara\Desktop\PC Accelerate.lnk
[2012/07/02 16:11:31 | 000,001,145 | ---- | C] () -- C:\Users\Sara\Desktop\CyberLink PowerDVD.lnk
[2012/06/29 20:59:38 | 000,000,193 | ---- | C] () -- C:\Users\Sara\Desktop\jp moedas verdes.rtf
[2012/06/26 22:03:59 | 001,686,614 | ---- | C] () -- C:\Users\Sara\Desktop\linda.jpg
[2012/06/26 22:03:59 | 001,672,685 | ---- | C] () -- C:\Users\Sara\Desktop\bubu3.jpg
[2012/06/26 22:03:59 | 001,450,688 | ---- | C] () -- C:\Users\Sara\Desktop\bubu2.jpg
[2012/06/26 22:03:59 | 000,073,722 | ---- | C] () -- C:\Users\Sara\Desktop\bubuzinha.jpg
[2012/05/09 08:45:26 | 000,168,448 | ---- | C] () -- C:\windows\System32\unrar.dll
[2012/01/11 21:11:20 | 000,080,416 | ---- | C] () -- C:\windows\System32\RtNicProp32.dll
[2011/11/29 15:48:21 | 000,664,248 | ---- | C] () -- C:\windows\System32\prfh0416.dat
[2011/11/29 15:48:21 | 000,323,154 | ---- | C] () -- C:\windows\System32\prfi0416.dat
[2011/11/29 15:48:21 | 000,128,280 | ---- | C] () -- C:\windows\System32\prfc0416.dat
[2011/11/29 15:48:21 | 000,038,536 | ---- | C] () -- C:\windows\System32\prfd0416.dat
[2011/11/29 15:22:38 | 000,259,888 | ---- | C] () -- C:\windows\SUPDRun.exe
[2011/11/29 15:22:37 | 000,283,136 | ---- | C] () -- C:\windows\System32\DscPnt.dll
[2011/11/29 15:22:37 | 000,026,624 | ---- | C] () -- C:\windows\System32\spd__l.dll
[2011/11/29 15:22:36 | 000,151,552 | ---- | C] () -- C:\windows\System32\spd__ci.exe
[2011/11/29 15:22:26 | 000,557,056 | ---- | C] () -- C:\windows\System32\SnMinDrv.dll
[2011/11/29 15:22:26 | 000,160,256 | ---- | C] () -- C:\windows\System32\SNWIAUI.dll
[2011/11/29 15:22:26 | 000,135,168 | ---- | C] () -- C:\windows\System32\SnImgFlt.dll
[2011/11/29 15:22:26 | 000,094,208 | ---- | C] () -- C:\windows\System32\SnErHdlr.dll
[2011/11/29 00:57:45 | 000,307,200 | ---- | C] () -- C:\windows\SetDisplayResolution.exe
[2011/11/29 00:22:12 | 000,000,000 | ---- | C] () -- C:\windows\ativpsrm.bin
[2011/11/29 00:02:28 | 000,001,246 | ---- | C] () -- C:\windows\HotFixList.ini
[2011/11/28 23:54:15 | 000,120,112 | ---- | C] () -- C:\windows\Wiainst.exe
[2011/11/28 23:27:40 | 000,006,656 | ---- | C] () -- C:\windows\System32\bcmwlrc.dll
[2011/11/28 23:24:14 | 000,180,712 | ---- | C] () -- C:\windows\System32\drivers\RTAIODAT.DAT
[2011/11/22 21:13:03 | 000,003,929 | ---- | C] () -- C:\windows\System32\atipblag.dat
[2011/11/22 21:13:02 | 000,234,855 | ---- | C] () -- C:\windows\System32\atiicdxx.dat
[2011/08/10 00:01:46 | 000,053,760 | ---- | C] () -- C:\windows\System32\OVDecode.dll
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2012/05/16 20:11:36 | 000,000,000 | ---D | M] -- C:\Users\Sara\AppData\Roaming\Mikrotik
[2012/07/02 18:48:30 | 000,000,000 | ---D | M] -- C:\Users\Sara\AppData\Roaming\PC Accelerate
[2012/07/12 12:38:14 | 000,000,000 | ---D | M] -- C:\Users\Sara\AppData\Roaming\SoftGrid Client
[2012/07/12 10:29:18 | 000,000,000 | ---D | M] -- C:\Users\Sara\AppData\Roaming\TeamViewer
[2012/03/29 17:48:41 | 000,000,000 | ---D | M] -- C:\Users\Sara\AppData\Roaming\TERMINAL Studio
[2012/03/21 12:31:36 | 000,000,000 | ---D | M] -- C:\Users\Sara\AppData\Roaming\TP
[2012/07/16 13:15:02 | 000,001,048 | ---- | M] () -- C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-896558980-977426591-2796425657-1000Core.job
[2012/07/17 16:15:04 | 000,001,070 | ---- | M] () -- C:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-896558980-977426591-2796425657-1000UA.job
[2012/06/20 09:12:26 | 000,032,608 | ---- | M] () -- C:\windows\Tasks\SCHEDLGU.TXT
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 115 bytes -> C:\ProgramData\Temp:47626ACA

< End of report >


E aki está o relatorio Extras.txt.


OTL Extras logfile created on: 17/07/2012 18:32:50 - Run 1
OTL by OldTimer - Version 3.2.54.0     Folder = C:\Users\Sara\Desktop
 Starter Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000416 | Country: Brasil | Language: PTB | Date Format: dd/MM/yyyy
 
1,75 Gb Total Physical Memory | 0,70 Gb Available Physical Memory | 40,26% Memory free
3,49 Gb Paging File | 2,13 Gb Available in Paging File | 60,90% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\windows | %ProgramFiles% = C:\Program Files
Drive C: | 113,00 Gb Total Space | 80,29 Gb Free Space | 71,05% Space Free | Partition Type: NTFS
Drive D: | 167,88 Gb Total Space | 163,13 Gb Free Space | 97,17% Space Free | Partition Type: NTFS
 
Computer Name: SARA-PC | User Name: Sara | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== File Associations ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\windows\winhlp32.exe (Microsoft Corporation)
 
[color=#E56717]========== Shell Spawning ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[color=#E56717]========== Security Center Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[color=#E56717]========== Firewall Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0
 
[color=#E56717]========== Authorized Applications List ==========[/color]
 
 
[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{43F6AAC8-4DCB-42E4-AD2A-9D22B2A6D8D8}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{AA9ED848-03F2-4BBA-A649-5D45405AC920}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
 
[color=#E56717]========== Vista Active Application Exception List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0E2ED232-36EE-4B2F-8EFE-857D15D1063B}" = dir=in | app=c:\program files\windows live\mesh\moe.exe |
"{122E00C6-24D7-4492-8EF2-EA406F83BA66}" = protocol=6 | dir=in | app=c:\program files\samsung\samsung universal scan driver\usdagent.exe |
"{2A6661C3-48E2-4356-B2E9-6631837453F2}" = dir=in | app=c:\program files\cyberlink\powerdirector\pdr8.exe |
"{8C98CBE4-7484-4408-B8CB-6013593DB477}" = protocol=17 | dir=in | app=c:\program files\samsung\samsung universal scan driver\iccupdater.exe |
"{935CE935-C878-4018-88AA-4FFDB37CBA53}" = protocol=6 | dir=in | app=c:\windows\system32\supdsvc.exe |
"{977DAF30-8F16-4284-BB77-9A162D48F04E}" = dir=in | app=c:\users\sara\appdata\local\facebook\video\skype\facebookvideocalling.exe |
"{AB9974D6-D7F1-4B11-A023-68FF7365A542}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{B2EA3EA7-ACB2-46D1-A20D-1DFD86F42162}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{B786347F-8862-436F-AA8E-445A8255023E}" = dir=in | app=c:\program files\cyberlink\media+player10\media+player10.exe |
"{CB09C3B4-32D5-41E1-B6B4-A222B8244FA7}" = protocol=6 | dir=in | app=c:\program files\samsung\samsung universal scan driver\iccupdater.exe |
"{DBB0349D-E3FD-4DD3-817C-093AA9109FE2}" = protocol=17 | dir=in | app=c:\windows\system32\supdsvc.exe |
"{EA30D336-39D4-4DC7-B1A3-7C84E6A853AF}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"{F6AA7140-35D3-4671-91BD-787B8B51182A}" = protocol=17 | dir=in | app=c:\program files\samsung\samsung universal scan driver\usdagent.exe |
"{FE88E0ED-8973-42B6-A662-9C797889280B}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"TCP Query User{7BF4AC66-821E-44AD-B8A9-76477224AB41}C:\program files\mobiola web camera for windows mobile\webcam.exe" = protocol=6 | dir=in | app=c:\program files\mobiola web camera for windows mobile\webcam.exe |
"TCP Query User{AA644EA1-DFAD-4C1E-90E0-659C2F67CEB2}C:\program files\valve\hl.exe" = protocol=6 | dir=in | app=c:\program files\valve\hl.exe |
"TCP Query User{BF22EB54-BFE6-4C4F-994A-54A3A0D2BC5E}C:\program files\dsnet corp\atube catcher 2.0\yct.exe" = protocol=6 | dir=in | app=c:\program files\dsnet corp\atube catcher 2.0\yct.exe |
"UDP Query User{8934F665-3898-4057-8B19-9BF53342A8E2}C:\program files\valve\hl.exe" = protocol=17 | dir=in | app=c:\program files\valve\hl.exe |
"UDP Query User{A01C7128-C434-46FC-A27F-B1AA65D9698E}C:\program files\dsnet corp\atube catcher 2.0\yct.exe" = protocol=17 | dir=in | app=c:\program files\dsnet corp\atube catcher 2.0\yct.exe |
"UDP Query User{A27CADC0-88DD-4855-A677-861EDB3BC1A0}C:\program files\mobiola web camera for windows mobile\webcam.exe" = protocol=17 | dir=in | app=c:\program files\mobiola web camera for windows mobile\webcam.exe |
 
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{000F2A10-9CDF-47BF-9CF2-9AC87567B433}" = Windows Live Photo Common
"{00884F14-05BD-4D8E-90E5-1ABF78948CA4}" = Windows Live Mesh
"{01125F9F-9BBC-4937-B30D-76E8C5D68D37}" = Catalyst Control Center - Branding
"{0119B342-476F-4F5A-B712-144B5CFA781F}" = Windows Live Movie Maker
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"{02602409-9189-4567-BC07-562605243B69}" = Windows Live Remote Client Resources
"{02E1EAF5-F1B6-41EC-B500-E6BC728A5E20}" = Windows Live Remote Service Resources
"{03241D8D-2217-42F7-9FCB-6A68D141C14D}" = Windows Live 软件包
"{039480EE-6933-4845-88B8-77FD0C3D059D}" = Windows Live Mesh
"{05E379CC-F626-4E7D-8354-463865B303BF}" = Windows Live UX Platform Language Pack
"{062E4D94-8306-46D5-81B6-45E6AD09C799}" = Windows Live Messenger
"{065241D0-A178-4F24-8A09-691761A8957B}" = Windows Live Remote Service Resources
"{0654EA5D-308A-4196-882B-5C09744A5D81}" = Windows Live Photo Common
"{071A7A87-F72C-4239-BAF8-92FF44EB82AF}" = Windows Live Remote Client Resources
"{073F306D-9851-4969-B828-7B6444D07D55}" = Windows Live Photo Common
"{07611948-B78E-6E62-4456-678C6C6DB894}" = CCC Help Portuguese
"{07E15DDE-CAD9-434D-B24D-35708E3BEA09}" = Windows Live 필수 패키지
"{0891B708-EF3F-4D7E-9724-265245F46276}" = Windows Live Remote Service Resources
"{096D9340-4B83-32EB-E861-1D2EB951D30A}" = CCC Help German
"{09922FFE-D153-44AE-8B60-EA3CB8088F93}" = Windows Live UX Platform Language Pack
"{0A1651F1-7E0F-4613-93FE-967F5BC3C1B7}" = Windows Live Remote Service Resources
"{0A4C4B29-5A9D-4910-A13C-B920D5758744}" = بريد Windows Live
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0C1931EB-8339-4837-8BEC-75029BF42734}" = Windows Live UX Platform Language Pack
"{0C975FCC-A06E-4CB6-8F54-A9B52CF37781}" = Windows Liven sähköposti
"{0D261C88-454B-46FE-B43B-640E621BDA11}" = Windows Live Mail
"{0EC0B576-90F9-43C3-8FAD-A4902DF4B8F4}" = Galeria de Fotografias do Windows Live
"{10186F1A-6A14-43DF-A404-F0105D09BB07}" = Windows Live Mail
"{110668B7-54C6-47C9-BAC4-1CE77F156AF5}" = Windows Live Mesh
"{11417707-1F72-4279-95A3-01E0B898BBF5}" = Windows Live Mesh
"{11778DA1-0495-4ED9-972F-F9E0B0367CD5}" = Windows Live Writer
"{1203DC60-D9BD-44F9-B372-2B8F227E6094}" = Windows Live Temel Parçalar
"{122800FE-3AAF-4974-9FBD-54B023FA756A}" = „Windows Live Messenger“
"{128133D3-037A-4C62-B1B7-55666A10587A}" = Windows Live UX Platform Language Pack
"{133D9D67-D475-4407-AC3C-D558087B2453}" = Windows Live Movie Maker
"{13674885-6C87-D111-33A3-E21F7D82F68D}" = CCC Help Hungarian
"{142D8CA7-2C6F-45A7-83E3-099AAFD99133}" = Samsung Update Plus
"{143DB9C9-3F0D-4DC7-A57B-A7E4F26FA12E}" = Windows Live Remote Client Resources
"{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}" = Samsung Recovery Solution 5
"{14B441B7-774D-4170-98EA-A13667AE6218}" = Windows Live Writer Resources
"{16880765-677F-440B-B16A-BFD9B9C00012}" = EasyFileShare
"{168E7302-890A-4138-9109-A225ACAF7AD1}" = Windows Live Photo Common
"{17283B95-21A8-4996-97DA-547A48DB266F}" = Easy Display Manager
"{17504ED4-DB08-40A8-81C2-27D8C01581DA}" = Windows Live Remote Service Resources
"{17835B63-8308-427F-8CF5-D76E0D5FE457}" = Windows Live Essentials
"{17F99FCE-8F03-4439-860A-25C5A5434E18}" = Windows Live Essentials
"{18088C5C-323A-4E56-AA4A-6D3F2EE34102}" = Windows Live Remote Client Resources
"{192ACB43-09C7-18C0-D6B2-10BBA9305421}" = CCC Help Chinese Traditional
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319
"{198EA334-8A3F-4CB2-9D61-6C10B8168A6F}" = Windows Live Writer
"{19A4A990-5343-4FF7-B3B5-6F046C091EDF}" = Windows Live Remote Client
"{19ADD3BF-C42B-47DC-81C6-5E9731B668C4}" = „Windows Live Essentials“
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1A72337E-D126-4BAF-AC89-E6122DB71866}" = Windows Liven valokuvavalikoima
"{1A82AE99-84D3-486D-BAD6-675982603E14}" = Windows Live Writer
"{1BA1DBDC-5431-46FD-A66F-A17EB1C439EE}" = Windows Live Messenger
"{1D6C2068-807F-4B76-A0C2-62ED05656593}" = Windows Live Writer
"{1DA6D447-C54D-4833-84D4-3EA31CAECE9B}" = Windows Live UX Platform Language Pack
"{1DDB95A4-FD7B-4517-B3F1-2BCAA96879E6}" = Windows Live Writer Resources
"{1E03DB52-D5CB-4338-A338-E526DD4D4DB1}" = Bing Bar
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = DVD Suite
"{1FC83EAE-74C8-4C72-8400-2D8E40A017DE}" = Windows Live Writer
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{201B5096-AF6E-423E-B987-023E040D9B42}" = Windows Live Remote Service Resources
"{208762DE-34A1-44B1-B597-509C8D05D39E}" = Windows Live Remote Client Resources
"{20C21396-4F89-4044-806B-326C993A3996}" = Windows Live Remote Service Resources
"{220C7F8C-929D-4F71-9DC7-F7A6823B38E4}" = Windows Live UX Platform Language Pack
"{227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0}" = Windows Live Remote Service
"{244C5A67-39DC-4C6C-BF1B-BCC9D342A4C4}" = Windows Live Remote Client Resources
"{249EE21B-8EDD-4F36-8A23-E580E9DBE80A}" = Windows Live Mail
"{24DF33E0-F924-4D0D-9B96-11F28F0D602D}" = Windows Live UX Platform Language Pack
"{2511AAD7-82DF-4B97-B0B3-E1B933317010}" = Windows Live Writer Resources
"{25A381E1-0AB9-4E7A-ACCE-BA49D519CF4E}" = Windows Live Mail
"{25CD4B12-8CC5-433E-B723-C9CB41FA8C5A}" = Windows Live Writer
"{26E3C07C-7FF7-4362-9E99-9E49E383CF16}" = Windows Live Writer Resources
"{2720009D-9566-45A7-A370-0E6DAC313F3F}" = „Windows Live Mail“
"{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Atheros Client Installation Program
"{2852BC06-B850-4518-97E6-CD136FE75683}" = Windows Live Remote Client Resources
"{28B9D2D8-4304-483F-AD71-51890A063A74}" = Windows Live Photo Common
"{29373E24-AC72-424E-8F2A-FB0F9436F21F}" = Windows Live Photo Common
"{2A07C35B-8384-4DA4-9A95-442B6C89A073}" = Windows Live Essentials
"{2A3FC24C-6EC0-4519-A52B-FDA4EA9B2D24}" = Windows Live Messenger
"{2B3EA5DA-D040-48FB-813F-1CF8C0123698}" = Windows Live Remote Client Resources
"{2BA5FD10-653F-4CAF-9CCD-F685082A1DC1}" = Windows Live Writer
"{2C4E06CC-1F04-4C25-8B3C-93A9049EC42C}" = Windows Live UX Platform Language Pack
"{2C865FB0-051E-4D22-AC62-428E035AEAF0}" = Windows Live Mesh
"{2CC0789D-D31B-445F-8970-6E058BE39754}" = Windows Live UX Platform Language Pack
"{2D3E034E-F76B-410A-A169-55755D2637BB}" = Windows Live Mesh
"{2D49C296-BCCA-4800-BAF6-A0269EBDCF74}" = Windows Live Messenger
"{2DDC70C1-C77A-4D08-89D2-9AB648504533}" = Easy Content Share
"{2E50E321-4747-4EB5-9ECB-BBC6C3AC0F31}" = Windows Live Writer Resources
"{2F54E453-8C93-4B3B-936A-233C909E6CAC}" = Windows Live Messenger
"{2F62127C-11A6-EF48-3BC2-F6B76E8EE355}" = CCC Help Japanese
"{30E82CD5-6E97-4381-86EB-548202A6D5B7}" = Windows Live Remote Client Resources
"{3125D9DE-8D7A-4987-95F3-8A42389833D8}" = Windows Live Writer Resources
"{317D56AC-0DB3-48F5-929A-42032DAC9AD7}" = Windows Live Writer
"{318DBE01-1E6B-4243-84B0-210391FE789A}" = Samsung AnyWeb Print
"{331ECF61-69AF-4F57-AC35-AFED610231C3}" = Multimedia POP
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}" = Windows Live
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{34FBC7C4-CD31-4D93-A428-0E524EAC4586}" = CyberLink Media+ Player10
"{354FF1E9-5D3F-4D91-A433-7626AC6B55EA}" = Windows Live Remote Service Resources
"{368BEC2C-B7A2-4762-9213-2D8465D533CA}" = Windows Live UX Platform Language Pack
"{370F888E-42A7-4911-9E34-7D74632E17EB}" = Windows Live Photo Common
"{374254DF-B1A4-7F9E-D493-6F77853BD4C0}" = CCC Help Korean
"{37B33B16-2535-49E7-8990-32668708A0A3}" = Windows Live UX Platform Language Pack
"{39F95B0B-A0B7-4FA7-BB6C-197DA2546468}" = Windows Live Mesh
"{3A65A74A-5B6E-451A-92D8-50F1182BBE9A}" = Windows Live Remote Service Resources
"{3B72C1E0-26A1-40F6-8516-D50C651DFB3C}" = Windows Live Essentials
"{3B8F240C-B75E-4A1E-BDCC-6C7F033078A3}" = Windows Live UX Platform Language Pack
"{3B9A92DA-6374-4872-B646-253F18624D5F}" = Windows Live Writer
"{3BC3B1A5-30E3-4DDB-BE08-E7262B838B5F}" = Windows Live Remote Client Resources
"{3BFB2388-64EE-4AAA-9235-5FE725FED6DE}" = Windows Live Remote Service Resources
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3F4143A1-9C21-4011-8679-3BC1014C6886}" = Windows Live Mesh
"{3F498774-289B-853B-D150-29E190804C9E}" = CCC Help Polish
"{40034B11-149E-4310-AE89-BB575B02525B}" = LG Internet Kit
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"{40BFD84C-64CD-42CC-9909-8734C50429C6}" = Windows Live UX Platform Language Pack
"{410DF0AA-882D-450D-9E1B-F5397ACFFA80}" = Windows Live Essentials
"{41B07C21-145D-496F-B029-0899514099C7}" = Windows Live Remote Service Resources
"{41B72CAF-036B-4E0A-8D22-F5DF7C970434}" = Windows Live Remote Client Resources
"{41E4FA4B-9376-4C32-AA46-65FCC0087CD5}" = Windows Live Remote Service Resources
"{4264C020-850B-4F08-ACBE-98205D9C336C}" = Windows Live Writer
"{429DF1A0-3610-4E9E-8ACE-3C8AC1BA8FCA}" = Windows Live Photo Gallery
"{43B43577-2514-4CE0-B14A-7E85C17C0453}" = Windows Live Essentials
"{442032CB-900C-49C7-B4B4-2B76525DD403}" = Windows Live Photo Common
"{443B561F-DE1B-4DEF-ADD9-484B684653C7}" = Windows Live Messenger
"{4444F27C-B1A8-464E-9486-4C37BAB39A09}" = Фотогалерия на Windows Live
"{448702D4-83DD-4EFC-B09B-94AD6CA0D978}" = Windows Live Remote Service Resources
"{454F5782-A4C3-480E-A629-D435795DEFD8}" = Windows Live Remote Client Resources
"{458F399F-62AC-4747-99F5-499BBF073D29}" = Windows Live Writer Resources
"{464B3406-A4D0-4914-910F-7CA4380DCC13}" = Windows Live Remote Client Resources
"{4664ED39-C80A-48F7-93CD-EBDCAFAB6CC5}" = Windows Live Writer Resources
"{46872828-6453-4138-BE1C-CE35FBF67978}" = Windows Live Mesh
"{48294D95-EE9A-4377-8213-44FC4265FB27}" = Windows Live Messenger
"{488F0347-C4A7-4374-91A7-30818BEDA710}" = Galerie de photos Windows Live
"{48B47387-D175-64D1-B216-4214A3854FE8}" = CCC Help Swedish
"{48C0DC5E-820A-44F2-890E-29B68EDD3C78}" = Windows Live Writer
"{4925C0C2-E4E2-456B-9791-0F228BDDC428}" = Facebook Messenger 2.1.4570.0
"{4A04DB63-8F81-4EF4-9D09-61A2057EF419}" = Windows Live Essentials
"{4B1EDAFC-B0EB-465F-886C-24FAC1BED2AC}" = Windows Live Remote Client Resources
"{4B28D47A-5FF0-45F8-8745-11DC2A1C9D0F}" = Windows Live Writer
"{4B744C85-DBB1-4038-B989-4721EB22C582}" = Windows Live Messenger
"{4C378B16-46B7-4DA1-A2CE-2EE676F74680}" = Windows Live UX Platform Language Pack
"{4CD66A84-FC42-8E7C-9A50-0E6FA711F439}" = AMD Catalyst Install Manager
"{4D141929-141B-4605-95D6-2B8650C1C6DA}" = Windows Live UX Platform Language Pack
"{4D83F339-5A5C-4B21-8FD3-5D407B981E72}" = Windows Live Photo Common
"{4F35DF91-F834-41F7-A287-0E377D55C486}" = Windows Live Photo Common
"{5008BC55-FD3D-4A32-A1B7-610E18F4D220}" = Windows Live Remote Service Resources
"{506FC723-8E6C-4417-9CFF-351F99130425}" = Windows Live UX Platform Language Pack
"{517EAAB9-C35E-4949-B8C2-20C241162BBB}" = Windows Live Pošta
"{51FFAC89-B6B0-4E6E-B76F-6D4E2E83086A}" = Windows Live 메일
"{523DF2BB-3A85-4047-9898-29DC8AEB7E69}" = Windows Live UX Platform Language Pack
"{5275D81E-83AD-4DE4-BC2B-6E6BA3A33244}" = Windows Live Writer Resources
"{542DA303-FB91-4731-9F37-6E518368D3B9}" = Windows Live Messenger
"{545192D4-E817-4EAA-834D-623EA50CF268}" = Windows Live UX Platform Language Pack
"{56D012F7-14AF-B22F-9C6A-635266DB95D9}" = CCC Help French
"{579684A4-DDD5-4CA3-9EA8-7BE7D9593DB4}" = Windows Live UX Platform Language Pack
"{588CE0C0-860B-49A8-AFCF-3C69465B345F}" = Windows Live Mesh
"{5A680992-8861-089A-5015-E0D078D32824}" = AMD VISION Engine Control Center
"{5B90ADD7-4AFC-B5B2-E344-3653E5647F48}" = CCC Help Turkish
"{5C2F5C1B-9732-4F81-8FBF-6711627DC508}" = Windows Live Fotogalleri
"{5C8BC258-A629-4DF2-97D0-E106C2A9B1BD}" = Windows Live Remote Client Resources
"{5CF5B1A5-CBC3-42F0-8533-5A5090665862}" = Windows Live Mesh
"{5D163056-96B7-440F-A836-89BA5D3CFF2F}" = Windows Live Photo Common
"{5D273F60-0525-48BA-A5FB-D0CAA4A952AE}" = Windows Live Movie Maker
"{5D2E7BD7-4B6F-4086-BA8A-E88484750624}" = Windows Live Writer Resources
"{5DA7D148-D2D2-4C67-8444-2F0F9BD88A06}" = Windows Live Writer
"{5E627606-53B9-42D1-97E1-D03F6229E248}" = Windows Live UX Platform Language Pack
"{5EC9FFCC-F5D1-D1C8-96A5-FDFD7FD205D2}" = CCC Help Czech
"{607DA1C8-34EC-4D7A-AD83-F8E5C70736DF}" = EasyBatteryManager
"{60C3C026-DB53-4DAB-8B97-7C1241F9A847}" = Windows Live Movie Maker
"{61506B53-EE02-46CE-8464-3F806947978F}" = Windows Live Mesh
"{61A5DE19-BE38-45AF-A9BC-73E49703315E}" = Windows Live Remote Service Resources
"{6255D9FC-427F-4867-84DB-164DBEA0661F}" = Windows Live Remote Client Resources
"{62687B11-58B5-4A18-9BC3-9DF4CE03F194}" = Windows Live Writer Resources
"{63CF7D0C-B6E7-4EE9-8253-816B613CC437}" = Windows Live Mail
"{640798A0-A4FB-4C52-AC72-755134767F1E}" = Windows Live Movie Maker
"{64376910-1860-4CEF-8B34-AA5D205FC5F1}" = Poczta usługi Windows Live
"{644063FA-ABA3-42AC-A8AC-3EDC0706018B}" = Windows Live Mesh
"{6491AB99-A11E-41FD-A5E7-32DE8A097B8E}" = Windows Live Essentials
"{64B2D6B3-71AC-45A7-A6A1-2E07ABF58341}" = Windows Live Movie Maker
"{66B0B400-22AB-47E6-8673-38A5D37F6331}" = Windows Live Remote Client Resources
"{677AAD91-1790-4FC5-B285-0E6A9D65F7DC}" = Windows Live Mail
"{6807427D-8D68-4D30-AF5B-0B38F8F948C8}" = Windows Live Writer Resources
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{69C9C672-400A-43A0-B2DE-9DB38C371282}" = Windows Live Writer
"{69CAC24D-B1DC-4B97-A1BE-FE21843108FE}" = Windows Live Writer Resources
"{6A4ABCDC-0A49-4132-944E-01FBCCB3465C}" = Windows Live UX Platform Language Pack
"{6A67578E-095B-4661-88F7-0B199CEC3371}" = Windows Live Messenger
"{6ABE832B-A5C7-44C1-B697-3E123B7B4D5B}" = Windows Live Mesh
"{6B3BAE39-4ED1-4EEB-9769-A3AA0AA58CB4}" = Windows Live Movie Maker
"{6B556C37-8919-4991-AC34-93D018B9EA49}" = Windows Live Photo Common
"{6CB36609-E3A6-446C-A3C1-C71E311D2B9C}" = Windows Live Movie Maker
"{6DCE9C3E-3DB7-4C3C-8B80-BC55781BB7B6}" = Windows Live Writer Resources
"{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}" = Windows Live Movie Maker
"{6E8AFC13-F7B8-41D8-88AB-F1D0CFC56305}" = Windows Live Messenger
"{6EF2BE2C-3121-48B7-B7A6-C56046B3A588}" = Windows Live Movie Maker
"{6F37D92B-41AA-44B7-80D2-457ABDE11896}" = Windows Live Photo Common
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{7115EEBC-DA7B-434C-B81C-EA5B26EA9A94}" = Windows Live Writer Resources
"{71684DFF-CDED-450C-AF0C-4A1A6438A1A5}" = Windows Live Essentials
"{71A81378-79D5-40CC-9BDC-380642D1A87F}" = Windows Live Writer
"{71C95134-F6A9-45E7-B7B3-07CA6012BF2A}" = Windows Live Mesh
"{7234BD6D-5394-4572-A87D-0279C5ED535D}" = Windows Live Remote Client Resources
"{7272F232-A7E0-4B2B-A5D2-71B7C5E2379C}" = Windows Live Fotótár
"{7327080F-6673-421F-BBD9-B618F357EEB3}" = Windows Live UX Platform Language Pack
"{734104DE-C2BF-412F-BB97-FCCE1EC94229}" = Windows Live Writer Resources
"{7373E17D-18E0-44A7-AC3A-6A3BFB85D3B3}" = Windows Live Movie Maker
"{73FC3510-6421-40F7-9503-EDAE4D0CF70D}" = Windows Live Photo Common
"{7465A996-0FCA-4D2D-A52C-F833B0829B5B}" = Windows Live Movie Maker
"{746C4E73-CA08-492E-1A5B-134C969950AE}" = Catalyst Control Center Localization All
"{7496FD31-E5CB-4AE4-82D3-31099558BF6A}" = Windows Live Mesh
"{74E8A7F6-575D-42C7-9178-E87D1B3BEFE8}" = Windows Live UX Platform Language Pack
"{753F0A72-59C3-41CE-A36A-F2DF2079275C}" = Windows Live Mail
"{7612E28A-C4DB-4259-AA91-CB02B1BCF623}" = Windows Live Remote Service Resources
"{77477AEA-5757-47D8-8B33-939F43D82218}" = Windows Live UX Platform Language Pack
"{7780682A-47C9-480D-90BE-247539342595}" = Windows Live UX Platform Language Pack
"{77BC9EAF-14C7-4338-9B1C-D5A3E142C0B8}" = Windows Live Photo Common
"{77DAF553-291A-4471-988C-5677D90DB57E}" = Windows Live Writer Resources
"{77F45ECD-FAFC-45A8-8896-CFFB139DAAA3}" = Fast Start
"{77F69CA1-E53D-4D77-8BA3-FA07606CC851}" = Фотоальбом Windows Live
"{7846B719-862C-468A-9FD0-4769D2590535}" = Windows Live Remote Client Resources
"{78906B56-0E81-42A7-AC25-F54C946E1538}" = Windows Live Photo Common
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78DAE910-CA72-450E-AD22-772CB1A00678}" = Windows Live Mesh
"{78DBE8CE-61F6-4D6C-806C-A0FFF65F5E1D}" = Windows Live Messenger
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7A143876-9658-4A58-82E7-B5F02D942957}" = Windows Live Remote Client Resources
"{7A9D47BA-6D50-4087-866F-0800D8B89383}" = Podstawowe programy Windows Live
"{7ADFA72D-2A9F-4DEC-80A5-2FAA27E23F0F}" = Windows Live Photo Common
"{7AF8E500-B349-4A77-8265-9854E9A47925}" = Windows Live Movie Maker
"{7B982EBD-D017-4527-BF1A-FC489EC6B100}" = Windows Live 照片库
"{7BA19818-F717-4DFB-BC11-FAF17B2B8AEE}" = Pošta Windows Live
"{7C2A3479-A5A0-412B-B0E6-6D64CBB9B251}" = Windows Live Photo Common
"{7CAC6A44-C3DE-4153-ACA6-7524602C789E}" = Facebook Video Calling 1.2.0.159
"{7CB529B2-6C74-4878-9C3F-C29C3C3BBDC6}" = Windows Live Writer Resources
"{7D0DE76C-874E-4BDE-A204-F4240160693E}" = Windows Live Photo Common
"{7D1C7B9F-2744-4388-B128-5C75B8BCCC84}" = Windows Live Essentials
"{7E017923-16F8-4E32-94EF-0A150BD196FE}" = Windows Live Writer
"{7E90B133-FF47-48BB-91B8-36FC5A548FE9}" = Windows Live Writer Resources
"{7F6F62F0-7884-4CFB-B86C-597A4A6D9C4D}" = Movie Color Enhancer
"{7FF11E53-C002-4F40-8D68-6BE751E5DD62}" = Windows Live Writer Resources
"{804DE397-F82C-4867-9085-E0AA539A3294}" = Windows Live Writer
"{80E158EA-7181-40FE-A701-301CE6BE64AB}" = CyberLink MediaShow
"{80E8C65A-8F70-4585-88A2-ABC54BABD576}" = Windows Live Mesh
"{827D3E4A-0186-48B7-9801-7D1E9DD40C07}" = Windows Live Essentials
"{82803FF3-563F-414F-A403-8D4C167D4120}" = Windows Live Mail
"{82EE333F-45A9-4585-A5D9-31FE16B7FB25}" = Windows Live Remote Service Resources
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{83D2FFB0-E378-49FE-8A53-580CA7B5761F}" = Windows Live Messenger
"{841F1FB4-FDF8-461C-A496-3E1CFD84C0B5}" = Windows Live Mesh
"{84267681-BF16-40B6-9564-27BC57D7D71C}" = Windows Live Photo Common
"{845E0BCB-8C8D-4FAB-8588-AD5FFD156C95}" = Windows Live Remote Service Resources
"{84A411F9-40A5-4CDA-BF46-E09FBB2BC313}" = Windows Live Essentials
"{84D3CB13-C7EE-4A29-817E-D82697320BF5}" = Windows Live Remote Client Resources
"{85373DA7-834E-4850-8AF5-1D99F7526857}" = Windows Live Photo Common
"{859D4022-B76D-40DE-96EF-C90CDA263F44}" = Windows Live Writer
"{861B1145-7762-4794-B40C-3FF0A389DFE6}" = Windows Live Photo Gallery
"{86E6D3A7-3ADC-44C0-B94E-85D2A9DD36B0}" = Windows Live Writer
"{8732818E-CA78-4ACB-B077-22311BF4C0E4}" = Easy Network Manager
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{885F1BCD-C344-4758-85BD-09640CF449A5}" = Windows Live Photo Gallery
"{8909CFA8-97BF-4077-AC0F-6925243FFE08}" = Windows Liven asennustyökalu
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8CF5D47D-27B7-49D6-A14F-10550B92749D}" = Windows Live UX Platform Language Pack
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8E9CB7DE-8087-48A0-8280-1658F423AAEF}" = Windows Live Remote Service Resources
"{8FF3891F-01B5-4A71-BFCD-20761890471C}" = Windows Live Messenger
"{90140000-006D-0416-0000-0000000FF1CE}" = Microsoft Office com Clique para Executar 2010
"{90140011-0066-0416-0000-0000000FF1CE}" = Microsoft Office Starter 2010 - Português (Brasil)
"{903EDF14-4E28-4463-AA5E-4AEE71C0263B}" = Windows Live Movie Maker
"{924B4D82-1B97-48EB-8F1E-55C4353C22DB}" = Windows Live Mail
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{93C6647F-AFE0-4CC2-8809-28A0B320D11B}" = Windows Live Remote Service Resources
"{93E464B3-D075-4989-87FD-A828B5C308B1}" = Windows Live Writer Resources
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{97124033-1253-4474-8B25-1AB314A920E6}" = Windows Live Remote Service Resources
"{97F77D62-5110-4FA3-A2D3-410B92D31199}" = Windows Live Fotogaléria
"{99BE7F5D-AB52-4404-9E03-4240FFAA7DE9}" = Windows Live Mesh
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BD262D0-B788-4546-A0A5-F4F56EC3834B}" = Windows Live Photo Common
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9DA3F03B-2CEE-4344-838E-117861E61FAF}" = Windows Live Mail
"{9DB90178-B5B0-45BD-B0A7-D40A6A1DF1CA}" = Windows Live Movie Maker
"{9E771D5B-C429-4CBC-8730-3EBD9EC99E4C}" = Windows Live Movie Maker
"{9FAE6E8D-E686-49F5-A574-0A58DFD9580C}" = Windows Live Mail
"{A0B91308-6666-4249-8FF6-1E11AFD75FE1}" = Windows Live Mail
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{A101F637-2E56-42C0-8E08-F1E9086BFAF3}" = Windows Live Movie Maker
"{A1668729-C4D2-49AE-877B-FB608362FFF1}" = Windows Live Essentials
"{A199DB88-E22D-4CE7-90AC-B8BE396D7BF4}" = Windows Live Movie Maker
"{A25FF1C0-80B6-4B8B-A551-DC525697A408}" = AMD APP SDK Runtime
"{A3389C72-1782-4BB4-BBAA-33345DE52E3F}" = Windows Live Messenger
"{A41A708E-3BE6-4561-855D-44027C1CF0F8}" = Windows Live Photo Common
"{A4C16B19-10AA-4990-AA87-D14F653E3345}" = Windows Live Remote Client Resources
"{A60B3BF0-954B-42AF-B8D8-2C1D34B613AA}" = Windows Live Photo Gallery
"{A7056D45-C63A-4FE4-A69D-FB54EF9B21BB}" = Windows Live Messenger
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A8F64B0D-1797-626D-1BB1-D78FA09B9712}" = CCC Help English
"{A9ABC0A6-DC01-4102-BEC9-86974A73B214}" = Windows Live Remote Client Resources
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AA8B67ED-31F7-43EA-A9E9-FA826415201F}" = CCC Help Dutch
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AB0B2113-5B96-4B95-8AD1-44613384911F}" = Windows Live Mesh
"{AB61A2E9-37D3-485D-9085-19FBDF8CEF4A}" = Windows Live Messenger
"{AB78C965-5C67-409B-8433-D7B5BDB12073}" = Windows Live Writer Resources
"{AB93C51F-71F9-4A28-8134-FE1B5B9373E9}" = Windows Live Remote Service Resources
"{ABD534B7-E951-470E-92C2-CD5AF1735726}" = Windows Live Essentials
"{ABE2F2AA-7ADC-4717-9573-BF3F83C696AC}" = Windows Live Mail
"{AC0628FF-532F-4800-91EC-40903B04682F}" = Windows Live Remote Service Resources
"{AC259A12-6CD9-486D-A97A-B619EB46225A}" = Windows Live Remote Service Resources
"{AC76BA86-7AD7-1033-7B44-A91000000001}" = Adobe Reader 9.1
"{ACFBE99B-6981-4513-B17E-A2683CEB9EE5}" = Windows Live Mesh
"{AD001A69-88CC-4766-B2DB-3C1DFAB9AC72}" = Windows Live Mesh
"{ADE3CACC-EC31-480C-83A0-587EE60CE8DF}" = RamBooster
"{ADE547D4-1441-253C-B36F-E25D59793FD1}" = CCC Help Spanish
"{ADE85655-8D1E-4E4B-BF88-5E312FB2C74F}" = Windows Live Mail
"{ADFE4AED-7F8E-4658-8D6E-742B15B9F120}" = Windows Live Photo Common
"{AF01B90A-D25C-4F60-AECD-6EEDF509DC11}" = Windows Live Mesh
"{AF844339-2F8A-4593-81B3-9F4C54038C4E}" = Windows Live MIME IFilter
"{B0AD205F-60D0-4084-AFB8-34D9A706D9A8}" = Windows Live Essentials
"{B113D18C-67B0-4FB7-B329-E89B66194AE6}" = Windows Live Fotogalerie
"{B1239994-A850-44E2-BED8-E70A21124E16}" = Windows Live Mail
"{B2B846F0-7A66-293A-B764-47FFA9AFD47D}" = CCC Help Greek
"{B2BCA478-EC0F-45EE-A9E9-5EABE87EA72D}" = Windows Live Photo Common
"{B2E90616-C50D-4B89-A40D-92377AC669E5}" = Windows Live Messenger
"{B33B61FE-701F-425F-98AB-2B85725CBF68}" = Windows Live Photo Common
"{B3BE54A4-8DFE-4593-8E66-56AB7133B812}" = Windows Live Writer
"{B4712CB7-27D7-4F61-8805-BCF9BE1CFC4A}" = Windows Live Writer Resources
"{B512307E-543D-457E-B759-75E0D5B0BCDF}" = Windows Live Remote Client Resources
"{B618C3BF-5142-4630-81DD-F96864F97C7E}" = Windows Live Essentials
"{B63F0CE3-CCD0-490A-9A9C-E1A3B3A17137}" = Почта Windows Live
"{B6F55C3E-30EE-4D25-8BAD-CEE4BF8C78EB}" = Windows Live Remote Client Resources
"{B7B67AA5-12DA-4F01-918D-B1BF66779D8A}" = Windows Live Writer Resources
"{B81722D3-0A95-4BDE-AA1A-A2A5D12FCDB2}" = Windows Live Foto-galerija
"{B9B66F77-9D00-4CA4-BDF1-BBA8236B4DB6}" = Windows Live Writer
"{BA8D4CEF-D23D-44AB-8A89-66E602253791}" = Windows Live Remote Service Resources
"{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}" = User Guide
"{BAEE89D5-6E87-4F89-9603-A1C100479181}" = Windows Live Messenger
"{BD0C3887-64E6-41D8-9A38-BC6F34369352}" = Windows Live Messenger
"{BD4EBDB5-EB14-4120-BB04-BE0A26C7FB3E}" = Windows Live Photo Common
"{BD695C2F-3EA0-4DA4-92D5-154072468721}" = Windows Live Fotoğraf Galerisi
"{BF022D76-9F72-4203-B8FA-6522DC66DFDA}" = Windows Live Movie Maker
"{BF35168D-F6F9-4202-BA87-86B5E3C9BF7A}" = Windows Live Mesh
"{BFC47A0B-D487-4DF0-889E-D6D392DF31E0}" = Windows Live Messenger
"{C00C2A91-6CB3-483F-80B3-2958E29468F1}" = Συλλογή φωτογραφιών του Windows Live
"{C01FCACE-CC3D-49A2-ADC2-583A49857C58}" = Windows Live Essentials
"{C08D5964-C42F-48EE-A893-2396F9562A7C}" = Windows Live Mesh
"{C1C9D199-B4DD-4895-92DD-9A726A2FE341}" = Windows Live Writer
"{C29FC15D-E84B-4EEC-8505-4DED94414C59}" = Windows Live Writer Resources
"{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common
"{C30628D8-D3A0-4F23-90F0-F145808087B6}" = Windows Live Remote Client Resources
"{C411942C-C26B-4450-8B9A-173DCC22AEC6}" = Windows Live Remote Service Resources
"{C454280F-3C3E-4929-B60E-9E6CED5717E7}" = Windows Live Mail
"{C4E7704D-5AFB-44CA-B8BA-F16C8FA46D5F}" = Windows Live Remote Service Resources
"{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{C779648B-410E-4BBA-B75B-5815BCEFE71D}" = Safari
"{C8421D85-CA0E-4E93-A9A9-B826C4FB88EA}" = Windows Live Mail
"{C877E454-FA36-409A-A00E-1240CEC61BBD}" = „Windows Live“ fotogalerija
"{C893D8C0-1BA0-4517-B11C-E89B65E72F70}" = Windows Live Photo Common
"{C8A2793D-EFF2-4069-95BF-A28192E39DEB}" = Windows Live Writer
"{C900DEE1-8BF0-F4DC-B1A3-3D3CC0B3D2F2}" = CCC Help Chinese Standard
"{C95A5A77-622F-45CA-9540-84468FCB18B1}" = Windows Live Messenger
"{C9E1343D-E21E-4508-A1BE-04A089EC137D}" = Windows Live Messenger
"{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = CyberLink PowerDirector
"{CB3F59BB-7858-41A1-A7EA-4B8A6FC7D431}" = Galeria fotografii usługi Windows Live
"{CB66242D-12B1-4494-82D2-6F53A7E024A3}" = Galerie foto Windows Live
"{CB7224D9-6DCA-43F1-8F83-6B1E39A00F92}" = Windows Live Movie Maker
"{CBFD061C-4B27-4A89-ADD8-210316EEFA11}" = Windows Live Messenger
"{CD442136-9115-4236-9C14-278F6A9DCB3F}" = Windows Live Movie Maker
"{CD6CB7F1-1B8E-424A-9B81-F8D2F03958EC}" = Windows Live Remote Client Resources
"{CD7CB1E6-267A-408F-877D-B532AD2C882E}" = Windows Live Photo Common
"{CDC39BF2-9697-4959-B893-A2EE05EF6ACB}" = Windows Live Writer
"{CE929F09-3853-4180-BD90-30764BFF7136}" = גלריית התמונות של Windows Live
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CF671BFE-6BA3-44E7-98C1-500D9C51D947}" = Windows Live Photo Gallery
"{CF936193-C584-458C-B793-15FA945621AF}" = Windows Live fotoattēlu galerija
"{CF9DEFAA-12CD-4D04-AA45-F9F667D21E2E}" = Windows Live Movie Maker
"{D06F10C5-3EDD-4B29-A3B5-16BBB9A047F8}" = Windows Live Mesh
"{D07B1FDA-876B-4914-9E9A-309732B6D44F}" = Windows Live Mail
"{D27DF849-C8C7-4892-A7F1-E0B381A1BD01}" = Windows Live Writer
"{D299197D-CDEA-41A6-A363-F532DE4114FD}" = Windows Live UX Platform Language Pack
"{D31169F2-CD71-4337-B783-3E53F29F4CAD}" = Windows Live Mail
"{D378BEA1-912E-4827-B9DB-D3B2C3D0BD4A}" = Windows Live Remote Service Resources
"{D3CAE2CA-BE71-4CA4-9EB9-46E1C82E778B}" = Windows Live Remote Service Resources
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D47C66BE-0EB5-4587-93FE-D1E176C4B25C}" = Windows Live Messenger
"{D57D43BF-699A-429F-AF8C-AF1867222800}" = Windows Live 사진 갤러리
"{D588365A-AE39-4F27-BDAE-B4E72C8E900C}" = Windows Live Mail
"{D6CBB3B2-F510-483D-AE0D-1CF3F43CF1EE}" = Windows Live Writer Resources
"{D6F25CF9-4E87-43EB-B324-C12BE9CDD668}" = Windows Live UX Platform Language Pack
"{D78569CD-8194-A05E-6664-0DBB1B8077F5}" = CCC Help Danish
"{D987098B-3AD4-4E88-B80E-CF27A32D1955}" = Windows Live Writer Resources
"{DA29F644-2420-4448-8128-1331BE588999}" = Windows Live Writer
"{DA673B5C-3836-5C90-8906-F4D91CF01D28}" = CCC Help Norwegian
"{DAEF48AD-89C8-4A93-B1DD-45B7E4FB6071}" = Windows Live Movie Maker
"{DB1208F4-B2FE-44E9-BFE6-8824DBD7891B}" = Windows Live Movie Maker
"{DBAA2B17-D596-4195-A169-BA2166B0D69B}" = Windows Live Mail
"{DCAB6BA7-6533-44BF-9235-E5BF33B7431C}" = Windows Live Writer
"{DDC1E1BD-7615-4186-89E1-F5F43F9B6491}" = Windows Live Movie Maker
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DE7C13A6-E4EA-4296-B0D5-5D7E8AD69501}" = Windows Live Writer
"{DE8F99FD-2FC7-4C98-AA67-2729FDE1F040}" = Windows Live Writer Resources
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{DEDF8BAB-98D7-4CFA-9C42-27431EC4BD1F}" = Windows Live Remote Service Resources
"{DEF91E0F-D266-453D-B6F2-1BA002B40CB6}" = Windows Live Essentials
"{DF71ABBB-B834-41C0-BB58-80B0545D754C}" = Windows Live UX Platform Language Pack
"{DFDBE1F9-04CE-4645-BB6C-4590EABC7A9C}" = Windows Live Remote Client Resources
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E1629C45-9CEF-498E-83CD-D6A09CADA176}" = Windows Live Remote Client Resources
"{E4E88B54-4777-4659-967A-2EED1E6AFD83}" = Windows Live Movie Maker
"{E5377D46-83C5-445A-A1F1-830336B42A10}" = Windows Live Galerija fotografija
"{E55E0C35-AC3C-4683-BA2F-834348577B80}" = Windows Live Writer
"{E59969EA-3B5B-4B24-8B94-43842A7FBFE9}" = Fotogalerija Windows Live
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{E5DD4723-FE0B-436E-A815-DC23CF902A0B}" = Windows Live UX Platform Language Pack
"{E62E0550-C098-43A2-B54B-03FB1E634483}" = Windows Live Writer
"{E6617B44-D556-49AC-B2A3-01451E115043}" = Windows Live Remote Service Resources
"{E70E47B1-FA61-2647-79F9-C8BC711A1D7E}" = ccc-utility
"{E727A662-AF9F-4DEE-81C5-F4A1686F3DFC}" = Windows Live Writer Resources
"{E7FB0043-24A5-4B30-AED6-01B47B44CB67}" = Windows Live Remote Client Resources
"{E83DC314-C926-4214-AD58-147691D6FE9F}" = Основные компоненты Windows Live
"{E8524B28-3BBB-4763-AC83-0E83FE31C350}" = Windows Live Writer
"{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}" = Galería fotográfica de Windows Live
"{E9AD2143-26D5-4201-BED1-19DCC03B407D}" = Windows Live Messenger
"{E9D98402-21AB-4E9F-BF6B-47AF36EF7E97}" = Windows Live Writer Resources
"{EA777812-4905-4C08-8F6E-13BDCC734609}" = Windows Live UX Platform Language Pack
"{EAB1BDF2-734A-4D44-9169-7615D185C974}" = Windows Live Mesh
"{EAEA7ED1-22F0-4C1E-B001-E56F10E1A100}" = Windows Live Remote Client Resources
"{EC20FB81-9B5E-4B97-92A2-8DC52548EFCE}" = Windows Live Mesh
"{ED16B700-D91F-44B0-867C-7EB5253CA38D}" = Raccolta foto di Windows Live
"{EEF99142-3357-402C-B298-DEC303E12D92}" = Windows Live 影像中心
"{EF367AA4-070B-493C-9575-85BE59D789C9}" = Easy SpeedUp Manager
"{EF7EAB13-46FC-49DD-8E3C-AAF8A286C5BB}" = Windows Live 程式集
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0CCBE54-9132-44E9-82DF-CD364AD5C22D}" = Windows Live Remote Client Resources
"{F0F9505B-3ACF-4158-9311-D0285136AA00}" = Windows Live Essentials
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F2979AAA-FDD7-4CB3-93BC-5C24D965D679}" = Windows Live Messenger
"{F2C97A89-5958-4813-ADC6-BFDF086F4C00}" = CCC Help Finnish
"{F2DA949E-40BE-3D4F-8667-C13FBEF90286}" = Catalyst Control Center InstallProxy
"{F35DC85A-E96B-496B-ABE7-F04192824856}" = Windows Live Messenger
"{F4BEA6C1-AAC3-4810-AAEA-588E26E0F237}" = Windows Live UX Platform Language Pack
"{F52C5BE7-3F57-464E-8A54-908402E43CE8}" = Windows Live Writer Resources
"{F66430D8-08E6-4C96-B9B7-90E66E27D58C}" = Windows Live Mail
"{F687E657-F636-44DF-8125-9FEEA2C362F5}" = Samsung Support Center
"{F6A72BBA-14AC-4018-B05E-81C4B095DF4A}" = CCC Help Thai
"{F783464C-C7C6-4E9B-AC40-BC90E5414BAF}" = Windows Live Messenger
"{F7A46527-DF1F-4B0F-9637-98547E189442}" = Windows Live Galeria de Fotos
"{F7E80BA7-A09D-4DD1-828B-C4A0274D4720}" = Windows Live Mesh
"{F80E5450-3EF3-4270-B26C-6AC53BEC5E76}" = Windows Live Movie Maker
"{F81DB83D-A016-45A6-A6A0-135B1E6939EF}" = Windows Live Remote Service Resources
"{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials
"{FA02ACAC-9E14-4878-A257-92A22A647C2C}" = LG USB Modem Drivers
"{FA20D803-14E5-4B00-8F03-B519D46F9D4A}" = Windows Live Messenger
"{FA6CF94F-DACF-4FE7-959D-55C421B91B17}" = Windows Live Mail
"{FB3D07AE-73D0-47A9-AC12-6F50BF8B6202}" = Windows Live Movie Maker
"{FB79FDB7-4DE1-453D-99FE-9A880F57380E}" = Windows Live Fotogalerie
"{FBCA06D2-4642-4F33-B20A-A7AB3F0D2E69}" = معرض صور Windows Live
"{FBCFBFCE-BDC4-5337-ACBC-291B1ACA7D1A}" = CCC Help Russian
"{FCDE76CB-989D-4E32-9739-6A272D2B0ED7}" = Windows Live Mesh
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FE62C88B-425B-4BDE-8B70-CD5AE3B83176}" = Windows Live Essentials
"{FEEF7F78-5876-438B-B554-C4CC426A4302}" = Windows Live Essentials
"{FF105207-8423-4E13-B0B1-50753170B245}" = Windows Live Movie Maker
"{FF3DFA01-1E98-46B4-A065-DA8AD47C9598}" = Windows Live Movie Maker
"{FF737490-5A2D-4269-9D82-97DB2F7C0B09}" = Windows Live Movie Maker
"{FFB768E4-E427-4553-BC36-A11F5E62A94D}" = Adobe Flash Player 10 ActiveX
"{FFD0E594-823B-4E2B-B680-720B3C852588}" = BatteryLifeExtender
"{FFEFE993-4FFF-A9C0-EF8A-16CFE20BA23C}" = CCC Help Italian
"{FFFA0584-8E3D-4195-8283-CCA3AD73C746}" = Windows Live Messenger
"aTube Catcher" = aTube Catcher
"avast" = avast! Free Antivirus
"Broadcom 802.11 Network Adapter" = Broadcom 802.11 Network Adapter
"Elantech" = ETDWare PS/2-X86 8.0.7.2_WHQL
"ExpressZip" = Express Zip File Compression Software
"'Full Speed' Internet Booster + Performance Tests3.6" = 'Full Speed' Internet Booster + Performance Tests
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = CyberLink YouCam
"InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink Media Suite
"InstallShield_{34FBC7C4-CD31-4D93-A428-0E524EAC4586}" = CyberLink Media+ Player10
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}" = CyberLink MediaShow
"InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = CyberLink PowerDirector
"KLiteCodecPack_is1" = K-Lite Codec Pack 4.8.5 (Standard)
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mozilla Firefox 13.0.1 (x86 pt-BR)" = Mozilla Firefox 13.0.1 (x86 pt-BR)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Office14.Click2Run" = Microsoft Office com Clique para Executar 2010
"PC Accelerate_is1" = PC Accelerate
"Samsung Printer Live Update" = Samsung Printer Live Update
"Samsung Universal Print Driver" = Samsung Universal Print Driver
"Samsung Universal Scan Driver" = Samsung Universal Scan Driver
"WinLiveSuite" = Windows Live 程式集
 
[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]
 
[HKEY_USERS\S-1-5-21-896558980-977426591-2796425657-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"UnityWebPlayer" = Unity Web Player
 
[color=#E56717]========== Last 20 Event Log Errors ==========[/color]
 
[ Application Events ]
Error - 24/06/2012 08:21:46 | Computer Name = Sara-PC | Source = WinMgmt | ID = 10
Description =
 
Error - 24/06/2012 08:33:05 | Computer Name = Sara-PC | Source = CVHSVC | ID = 100
Description = Somente informações.  Error: O servidor retornou uma resposta inválida
 ou não reconhecida   ErrorCode: 14007(0x36b7).
 
Error - 24/06/2012 12:14:15 | Computer Name = Sara-PC | Source = WinMgmt | ID = 10
Description =
 
Error - 24/06/2012 12:24:45 | Computer Name = Sara-PC | Source = CVHSVC | ID = 100
Description = Somente informações.  Error: O servidor retornou uma resposta inválida
 ou não reconhecida   ErrorCode: 14007(0x36b7).
 
Error - 24/06/2012 20:06:23 | Computer Name = Sara-PC | Source = Google Update | ID = 20
Description =
 
Error - 24/06/2012 20:27:47 | Computer Name = Sara-PC | Source = Application Hang | ID = 1002
Description = O programa ETDCtrl.exe versão 8.2.0.16 parou de interagir com o Windows
 e foi fechado. Para ver se há mais informações disponíveis sobre o problema, verifique
 o histórico de problemas no painel de controle da Central de Ações.    ID de Processo:
 bd0    Hora de Início: 01cd52244456c1b4    Hora de Término: 187    Caminho do Aplicativo: C:\Program
 Files\Elantech\ETDCtrl.exe    Id do Relatório: ec7324df-be55-11e1-b3f5-e8039a439679

 
Error - 25/06/2012 08:14:26 | Computer Name = Sara-PC | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Falha ao extrair lista raiz de terceiros do arquivo cab de atualização
 automática de: <http://ctldl.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
 com erro: Os dados são inválidos.  .
 
Error - 25/06/2012 08:14:27 | Computer Name = Sara-PC | Source = WinMgmt | ID = 10
Description =
 
Error - 25/06/2012 09:51:51 | Computer Name = Sara-PC | Source = WinMgmt | ID = 10
Description =
 
Error - 25/06/2012 10:02:55 | Computer Name = Sara-PC | Source = CVHSVC | ID = 100
Description = Somente informações.  Error: O servidor retornou uma resposta inválida
 ou não reconhecida   ErrorCode: 14007(0x36b7).
 
[ System Events ]
Error - 26/06/2012 20:56:55 | Computer Name = Sara-PC | Source = Service Control Manager | ID = 7023
Description = O serviço Instalador de Módulos do Windows terminou com o erro:   %%126
 
Error - 26/06/2012 20:57:25 | Computer Name = Sara-PC | Source = Service Control Manager | ID = 7023
Description = O serviço Instalador de Módulos do Windows terminou com o erro:   %%126
 
Error - 26/06/2012 20:57:55 | Computer Name = Sara-PC | Source = Service Control Manager | ID = 7023
Description = O serviço Instalador de Módulos do Windows terminou com o erro:   %%126
 
Error - 26/06/2012 20:58:25 | Computer Name = Sara-PC | Source = Service Control Manager | ID = 7023
Description = O serviço Instalador de Módulos do Windows terminou com o erro:   %%126
 
Error - 26/06/2012 20:58:55 | Computer Name = Sara-PC | Source = Service Control Manager | ID = 7023
Description = O serviço Instalador de Módulos do Windows terminou com o erro:   %%126
 
Error - 26/06/2012 20:59:25 | Computer Name = Sara-PC | Source = Service Control Manager | ID = 7023
Description = O serviço Instalador de Módulos do Windows terminou com o erro:   %%126
 
Error - 26/06/2012 20:59:55 | Computer Name = Sara-PC | Source = Service Control Manager | ID = 7023
Description = O serviço Instalador de Módulos do Windows terminou com o erro:   %%126
 
Error - 26/06/2012 21:00:27 | Computer Name = Sara-PC | Source = Service Control Manager | ID = 7023
Description = O serviço Instalador de Módulos do Windows terminou com o erro:   %%126
 
Error - 26/06/2012 21:00:57 | Computer Name = Sara-PC | Source = Service Control Manager | ID = 7023
Description = O serviço Instalador de Módulos do Windows terminou com o erro:   %%126
 
Error - 26/06/2012 21:01:27 | Computer Name = Sara-PC | Source = Service Control Manager | ID = 7023
Description = O serviço Instalador de Módulos do Windows terminou com o erro:   %%126
 
 
< End of report >



Responder | Em Árvore
Abra essa mensagem na visão em árvore
|  
Denunciar Conteúdo como Inapropriado

Re: Não consigo entrar no Facebook

Marcelo
Administrador
Sara, seu computador está contaminado. Vamos ver se após removê-los, seu perfil do Facebook volta ao normal.

No entanto, de acordo com os relatórios, há um malware do tipo Trojan Banker em seu sistema. Este malware possui a finalidade de roubar seus dados pessoas (senhas, IDs, número do Cartão de Crédito, etc) para repassá-los a terceiros. É altamente aconselhável que você efetue uma alteração de todas as senhas que você digitou após finalizarmos a remoção das infecções, especialmente se você utilizou Internet Banking para visitar sua conta bancária.

Siga atentamente os três passos descritos abaixo.

1º Passo



1 - Baixe a ferramenta BankerFix a partir do link a seguir e salve em seu disco rígido (C:\).
http://www.linhadefensiva.org/dl/bankerfix

2 - Para saber como usar a ferramenta corretamente, leia o rápido tutorial oficial neste link.

3 - Quando a ferramenta finalizar seu scan, tendo identificado/removido ou não as infecções, um relatório dela será gerado na pasta de instalação da mesma. Este relatório estará em C:\LinhaDefensiva\relatorio.txt.
4 - Cole o conteúdo dele em sua próxima resposta.

2º Passo



1 - Acesse o link abaixo e copie todo o texto da página que será aberta. Para facilitar, pressione Ctrl + A para selecionar tudo e depois Ctrl + C para copiar.
http://pastebin.com/raw.php?i=Hbqm3CLB

2 - Abra o programa OTL, que já está em seu PC, como administradora.
3 - No campo inferior em branco da ferramenta chamado "Exames Personalizados/Correções", você deverá colar todo o texto que você copiou da página acima.
4 - Após colá-lo lá, você clicará no botão Consertar e aguardar que seu PC seja reiniciado.
5 - Após a reinicialização, o relatório do resultado será gerado.
6 - Poste ele + relatório do BankerFix em sua próxima resposta.

3º Passo

 


Faça uma limpeza completa dos arquivos temporários e dos cachês de todos os seus navegadores.

Acesse seu Facebook e observe se o problema persiste.

Atenciosamente,
Marcelo
Responder | Em Árvore
Abra essa mensagem na visão em árvore
|  
Denunciar Conteúdo como Inapropriado

Re: Não consigo entrar no Facebook

Sara
Marcelo vou fazer tudo que me disse. Mas fikei com mto medo agora, pois há mais ou menos uma semana fiz compra no cartao de credito do meu pai pela internet. Estou correndo o risco?? ai meu Deus do céu..!
Responder | Em Árvore
Abra essa mensagem na visão em árvore
|  
Denunciar Conteúdo como Inapropriado

Re: Não consigo entrar no Facebook

Sara
Em resposta à esta mensagem postada por Marcelo
Marcelo aki o qndo terminou o processo do programa do linha defensiva disse que nada
foi encontrado no meu computador. E dps de tudo, o face ainda não está entrando. Aki está o relatorio:


BankerFix 3.1 VALKYRIE - Removedor de Bankers
Linha Defensiva | http://www.linhadefensiva.org
http://www.linhadefensiva.org/bankerfix/
-------------------------------------------------------
Data: 2012-07-18 - 09:46
-------------------------------------------------------
Lista de Definição: 2012-07-05-1 | CORE: 2012-01-27-1
=======================================================



----- Fim -------------------------





Aki está o outro relatorio, que é o OTL:


All processes killed
========== PROCESSES ==========
No active process named FacebookMessenger.exe was found!
========== OTL ==========
HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{807FC1E6-CF7E-4B46-B5A0-A988A18689CA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{807FC1E6-CF7E-4B46-B5A0-A988A18689CA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}\ not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Bar| /E : value set successfully!
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully!
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Bar| /E : value set successfully!
HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main\\Search Page| /E : value set successfully!
HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry value HKEY_USERS\S-1-5-21-896558980-977426591-2796425657-1000\Software\Microsoft\Internet Explorer\URLSearchHooks\\{CA3EB689-8F09-4026-AA10-B9534C691CE0} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}\ not found.
HKEY_USERS\S-1-5-21-896558980-977426591-2796425657-1000\Software\Microsoft\Internet Explorer\SearchScopes\\DefaultScope| /E : value set successfully!
Registry key HKEY_USERS\S-1-5-21-896558980-977426591-2796425657-1000\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}\ not found.
Registry key HKEY_USERS\S-1-5-21-896558980-977426591-2796425657-1000\Software\Microsoft\Internet Explorer\SearchScopes\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{96bd48dd-741b-41ae-ac4a-aff96ba00f7e}\ not found.
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\@Skype Limited.com/Facebook Video Calling Plugin\ deleted successfully.
C:\Users\Sara\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll moved successfully.
Registry key HKEY_CURRENT_USER\Software\MozillaPlugins\facebook.com/fbDesktopPlugin\ deleted successfully.
C:\Users\Sara\AppData\Local\Facebook\Messenger\2.1.4570.0\npFbDesktopPlugin.dll moved successfully.
File internal-remoting-viewer not found.
File C:\Users\Sara\AppData\Local\Facebook\Messenger\2.1.4554.0\npFbDesktopPlugin.dll not found.
File C:\Users\Sara\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll not found.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\zh_TW folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\zh_CN folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\vi folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\uk folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\tr folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\th folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\sv folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\sr folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\sl folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\sk folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ru folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ro folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\pt_PT folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\pt_BR folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\pl folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\no folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\nl folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\lv folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\lt folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ko folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ja folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\it folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\id folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\hu folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\hr folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\hi folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\he folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\fr folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\fil folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\fi folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\et folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\es_419 folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\es folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\en_US folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\en_GB folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\en folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\el folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\de folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\da folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\cs folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ca folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\bg folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales\ar folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\_locales folder moved successfully.
C:\Users\Sara\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0 folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}\ deleted successfully.
C:\Program Files\Microsoft\BingBar\BingExt.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f}\ deleted successfully.
File C:\Program Files\Microsoft\BingBar\BingExt.dll not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\Locked deleted successfully.
Registry value HKEY_USERS\S-1-5-21-896558980-977426591-2796425657-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}\ not found.
Registry value HKEY_USERS\S-1-5-21-896558980-977426591-2796425657-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Facebook Update deleted successfully.
C:\Users\Sara\AppData\Local\Facebook\Update\FacebookUpdate.exe moved successfully.
C:\Users\Sara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\debug.log moved successfully.
C:\Users\Sara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Messenger.lnk moved successfully.
C:\Users\Sara\AppData\Local\Facebook\Messenger\2.1.4570.0\FacebookMessenger.exe moved successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{ad5378c2-7f30-11e1-a2ea-e8039a439679}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{ad5378c2-7f30-11e1-a2ea-e8039a439679}\ not found.
File F:\USBAutoRun.exe not found.
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-896558980-977426591-2796425657-1000UA.job moved successfully.
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-896558980-977426591-2796425657-1000Core.job moved successfully.
File C:\Users\Sara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Messenger.lnk not found.
C:\Windows\Wiainst.exe moved successfully.
========== FILES ==========
C:\Users\Sara\AppData\Local\Facebook\Video\Skype folder moved successfully.
C:\Users\Sara\AppData\Local\Facebook\Video\Common\fb#3aac5fbexs0fpl_kczjhq7dkpoqy14w66a4a6omx4936f500h7azu5wgydggvwfmhauhm folder moved successfully.
C:\Users\Sara\AppData\Local\Facebook\Video\Common folder moved successfully.
C:\Users\Sara\AppData\Local\Facebook\Video folder moved successfully.
C:\Users\Sara\AppData\Local\Facebook\Update\Manifest\Initial folder moved successfully.
C:\Users\Sara\AppData\Local\Facebook\Update\Manifest folder moved successfully.
C:\Users\Sara\AppData\Local\Facebook\Update\Download folder moved successfully.
C:\Users\Sara\AppData\Local\Facebook\Update\1.2.205.0 folder moved successfully.
C:\Users\Sara\AppData\Local\Facebook\Update folder moved successfully.
C:\Users\Sara\AppData\Local\Facebook\Messenger\fbmessenger.cache\Local Storage folder moved successfully.
C:\Users\Sara\AppData\Local\Facebook\Messenger\fbmessenger.cache folder moved successfully.
C:\Users\Sara\AppData\Local\Facebook\Messenger\2.1.4570.0\locales folder moved successfully.
C:\Users\Sara\AppData\Local\Facebook\Messenger\2.1.4570.0 folder moved successfully.
C:\Users\Sara\AppData\Local\Facebook\Messenger\2.1.4554.0\chrome.pak folder moved successfully.
C:\Users\Sara\AppData\Local\Facebook\Messenger\2.1.4554.0 folder moved successfully.
C:\Users\Sara\AppData\Local\Facebook\Messenger folder moved successfully.
C:\Users\Sara\AppData\Local\Facebook\CrashReports folder moved successfully.
C:\Users\Sara\AppData\Local\Facebook folder moved successfully.
C:\Users\Sara\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Facebook folder moved successfully.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: All Users
 
User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
 
User: Public
 
User: Sara
->Temp folder emptied: 188710545 bytes
->Temporary Internet Files folder emptied: 13216818 bytes
->FireFox cache emptied: 7122497 bytes
->Google Chrome cache emptied: 27177346 bytes
->Apple Safari cache emptied: 7826432 bytes
->Flash cache emptied: 3057 bytes
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 96466714 bytes
RecycleBin emptied: 1218937446 bytes
 
Total Files Cleaned = 1.487,00 mb
 
 
[EMPTYJAVA]
 
User: All Users
 
User: Default
 
User: Default User
 
User: Public
 
User: Sara
 
Total Java Files Cleaned = 0,00 mb
 
Error: Unable to interpret <[emtyflash]> in the current context!
Restore point Set: OTL Restore Point
 
OTL by OldTimer - Version 3.2.54.0 log created on 07182012_095316

Files\Folders moved on Reboot...
File move failed. C:\windows\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

PendingFileRenameOperations files...
[2012/07/18 09:56:41 | 000,000,000 | ---- | M] () C:\windows\temp\_avast_\Webshlock.txt : Unable to obtain MD5

Registry entries deleted on Reboot...
Responder | Em Árvore
Abra essa mensagem na visão em árvore
|  
Denunciar Conteúdo como Inapropriado

Re: Não consigo entrar no Facebook

Marcelo
Administrador
Em resposta à esta mensagem postada por Sara
Sara, assumindo que o Banker infectou sua máquina paralelamente quando o problema com o Facebook teve início, e você fez essa compra antes desse problema todo começar, acredito que não haja riscos, uma vez que o Banker intercepta os dados que são digitados apenas quando ele já está alojado no sistema. No entanto, serei sincero, pessoalmente, eu não pagaria para ver, principalmente se tratando de uma Cartão de Crédito.

Bom, voltando ao problema do Face...

Os vírus e o malware (Banker) foram removidos pelo OTL.

Você consegue acessar o painel de aplicativos a partir deste link permanente abaixo?
http://www.facebook.com/settings?tab=applications

Se conseguir, exclua todos os aplicativos presentes neste painel.

Troque a senha do seu Facebook também.
Responder | Em Árvore
Abra essa mensagem na visão em árvore
|  
Denunciar Conteúdo como Inapropriado

Re: Não consigo entrar no Facebook

Sara
Marcelo nao consegui excluir todos os aplicativos e nem trocar a senha pois deu falha no carregamento.
Mas vou continuar tentando. estou mto preocupada em relação ao cartão de credito, o que eu devo fazer agora em relação ao cartãoo?????? Pois qndo efetuei a compra ja tinha esse problema com o facebook... Nossa to mto preocupada. desde já agradeço toda a sua atenção
Responder | Em Árvore
Abra essa mensagem na visão em árvore
|  
Denunciar Conteúdo como Inapropriado

Re: Não consigo entrar no Facebook

Marcelo
Administrador
Sara, o único jeito de evitar qualquer complicação com seu cartão, é entrando em contato com o(a) gerente do seu banco. Informe ele/ela sobre o problema ou solicite o bloqueio do cartão, pois assim, se o malware roubou a senha (pode ser que nada tenha acontecido também) o interceptador ficará impossibilitado de fazer qualquer coisa. Você não pode fazer nada sozinha. É necessário envolver o administrador do cartão.

Quanto ao problema com o Face, a situação parece bem complexa. Vamos ver se o ComboFix resolve.

1 - Baixe o ComboFix abaixo.
http://www.bleepingcomputer.com/download/combofix/

2 - Utilize-o conforme este tutorial: http://www.bleepingcomputer.com/combofix/pt/como-usar-o-combofix

3 - No final do scan, um relatórios estará presente em C:\ComboFix.txt.

Poste este relatórios em sua próxima resposta.
Responder | Em Árvore
Abra essa mensagem na visão em árvore
|  
Denunciar Conteúdo como Inapropriado

Re: Não consigo entrar no Facebook

Sara
Marcelo, o problema do face ainda persiste. Na parte dos aplicativos consegui abrir novamente, mas
restam tres aplicativos e não removem, clico no remover e tudo mas nada acontece, eles nao saem do meu face. Aki está o relatorio do Combofix:



ComboFix 12-07-18.04 - Sara 18/07/2012  18:43:28.1.2 - x86
Microsoft Windows 7 Starter   6.1.7601.1.1252.55.1046.18.1788.1092 [GMT -3:00]
Executando de: c:\users\Sara\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((   Outras Exclusões   )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Sara\AppData\Roaming\Microsoft\Windows\Recent\Comfy Cakes.pif
c:\windows\WindowsUpdate.log
.
.
((((((((((((((((   Arquivos/Ficheiros criados de 2012-06-18 to 2012-07-18  ))))))))))))))))))))))))))))
.
.
2012-07-18 17:23 . 2012-07-18 17:23 -------- d-----w- c:\programdata\FacebookDiscovery
2012-07-18 17:23 . 2012-07-18 17:23 -------- d-----w- c:\program files\FacebookDiscovery
2012-07-18 16:58 . 2012-07-18 16:58 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{FB85C19C-8BA6-4F27-AB9F-4FC5C1EF5475}\offreg.dll
2012-07-18 16:24 . 2012-07-18 16:24 -------- d-----w- c:\users\Sara\AppData\Local\Facebook
2012-07-18 12:53 . 2012-07-18 12:53 -------- d-----w- C:\_OTL
2012-07-18 12:38 . 2012-07-18 12:50 -------- d-----w- C:\LinhaDefensiva
2012-07-18 12:34 . 2012-07-18 12:33 178597 ----a-w- C:\bankerfix.exe
2012-07-12 16:18 . 2012-07-12 16:18 -------- d-----w- c:\users\Sara\AppData\Roaming\Apple Computer
2012-07-12 16:18 . 2012-07-12 16:18 -------- d-----w- c:\users\Sara\AppData\Local\Apple Computer
2012-07-12 16:17 . 2012-07-12 16:18 -------- d-----w- c:\program files\Safari
2012-07-12 16:17 . 2012-07-12 16:17 -------- d-----w- c:\programdata\Apple Computer
2012-07-12 16:16 . 2012-07-12 16:16 -------- d-----w- c:\program files\Bonjour
2012-07-12 16:16 . 2012-07-12 16:16 -------- d-----w- c:\users\Sara\AppData\Local\Apple
2012-07-12 16:16 . 2012-07-12 16:16 -------- d-----w- c:\program files\Apple Software Update
2012-07-12 16:16 . 2012-07-12 16:16 -------- d-----w- c:\programdata\Apple
2012-07-12 15:30 . 2009-03-16 17:18 517448 ----a-w- c:\windows\system32\XAudio2_4.dll
2012-07-12 15:30 . 2008-07-31 13:40 509448 ----a-w- c:\windows\system32\XAudio2_2.dll
2012-07-12 15:30 . 2008-07-10 14:01 467984 ----a-w- c:\windows\system32\d3dx10_39.dll
2012-07-12 15:30 . 2007-10-12 18:14 1374232 ----a-w- c:\windows\system32\D3DCompiler_36.dll
2012-07-12 15:30 . 2006-11-29 16:06 440080 ----a-w- c:\windows\system32\d3dx10.dll
2012-07-12 15:11 . 2012-07-12 15:11 -------- d-----w- c:\programdata\IObit
2012-07-12 15:11 . 2012-07-12 15:11 -------- d-----w- c:\program files\IObit
2012-07-12 15:03 . 2012-07-12 15:04 -------- d-----w- c:\users\Sara\AppData\Local\Deployment
2012-07-12 15:03 . 2012-07-12 15:03 -------- d-----w- c:\users\Sara\AppData\Local\Apps
2012-07-12 13:29 . 2012-07-12 13:29 -------- d-----w- c:\users\Sara\AppData\Roaming\TeamViewer
2012-07-12 13:29 . 2012-07-12 13:29 -------- d-----w- c:\program files\TeamViewer
2012-07-03 22:02 . 2012-07-12 15:38 -------- d-----w- c:\program files\Mozilla Maintenance Service
2012-07-02 22:19 . 2012-07-02 22:19 -------- d-----w- c:\program files\'Full Speed' Internet Booster + Performance Tests
2012-07-02 22:19 . 2012-07-02 22:19 -------- d-----w- c:\windows\'Full Speed' Internet Booster + Performance Tests
2012-07-02 22:02 . 2012-07-02 22:02 40960 ----a-r- c:\users\Sara\AppData\Roaming\Microsoft\Installer\{ADE3CACC-EC31-480C-83A0-587EE60CE8DF}\Rambooster.exe1_ADE3CACCEC31480C83A0587EE60CE8DF_1.exe
2012-07-02 22:02 . 2012-07-02 22:02 40960 ----a-r- c:\users\Sara\AppData\Roaming\Microsoft\Installer\{ADE3CACC-EC31-480C-83A0-587EE60CE8DF}\NewShortcut2_ADE3CACCEC31480C83A0587EE60CE8DF.exe
2012-07-02 22:02 . 2012-07-02 22:02 -------- d-----w- c:\program files\RamBooster 2.0
2012-07-02 21:48 . 2012-07-02 21:48 -------- d-----w- c:\users\Sara\AppData\Roaming\PC Accelerate
2012-07-02 21:48 . 2012-07-02 21:48 -------- d-----w- c:\program files\PC Accelerate
2012-07-02 19:07 . 2001-09-05 07:18 225280 ----a-w- c:\program files\Common Files\InstallShield\IScript\iscript.dll
2012-07-02 19:07 . 2001-09-05 07:14 176128 ----a-w- c:\program files\Common Files\InstallShield\Engine\6\Intel 32\iuser.dll
2012-07-02 19:07 . 2001-09-05 07:18 77824 ----a-w- c:\program files\Common Files\InstallShield\Engine\6\Intel 32\ctor.dll
2012-07-02 19:07 . 2001-09-05 07:13 32768 ----a-w- c:\program files\Common Files\InstallShield\Engine\6\Intel 32\objectps.dll
2012-07-02 18:11 . 2012-05-08 16:40 6737808 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{FB85C19C-8BA6-4F27-AB9F-4FC5C1EF5475}\mpengine.dll
2012-06-28 02:23 . 2012-07-12 15:38 -------- d-----w- c:\users\Sara\AppData\Local\Mozilla
.
.
.
(((((((((((((((((((((((((((((((((((((   Relatório Find3M   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-05-17 22:45 . 2012-06-16 19:14 1800192 ----a-w- c:\windows\system32\jscript9.dll
2012-05-17 22:35 . 2012-06-16 19:14 1129472 ----a-w- c:\windows\system32\wininet.dll
2012-05-17 22:35 . 2012-06-16 19:14 1427968 ----a-w- c:\windows\system32\inetcpl.cpl
2012-05-17 22:29 . 2012-06-16 19:14 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2012-05-17 22:24 . 2012-06-16 19:14 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-05-15 01:05 . 2012-06-14 00:33 2343936 ----a-w- c:\windows\system32\win32k.sys
2012-05-01 04:44 . 2012-06-14 00:32 164352 ----a-w- c:\windows\system32\profsvc.dll
2012-04-28 03:17 . 2012-06-14 01:16 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-04-26 04:45 . 2012-06-14 00:33 58880 ----a-w- c:\windows\system32\rdpwsx.dll
2012-04-26 04:45 . 2012-06-14 00:33 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll
2012-04-26 04:41 . 2012-06-14 00:33 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe
2012-04-24 04:36 . 2012-06-14 01:15 140288 ----a-w- c:\windows\system32\cryptsvc.dll
2012-04-24 04:36 . 2012-06-14 01:15 1158656 ----a-w- c:\windows\system32\crypt32.dll
2012-04-24 04:36 . 2012-06-14 01:15 103936 ----a-w- c:\windows\system32\cryptnet.dll
2012-02-25 14:29 . 2010-04-09 16:55 16205198 ----a-w- c:\program files\PhotoScapeSetup_V3.4.exe
2012-06-14 22:19 . 2012-07-03 22:02 85472 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((   Pontos de Carregamento do Registro   )))))))))))))))))))))))))))))))))))))))
.
.
*Nota* entradas vazias e legítimas por padrão não são apresentadas.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-03-07 00:15 123536 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"FacebookDiscovery"="c:\program files\FacebookDiscovery\FacebookDiscovery.exe" [2012-07-15 525824]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-11-04 11463272]
"ETDCtrl"="c:\program files\Elantech\ETDCtrl.exe" [2010-11-12 1812264]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-03-07 4241512]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2006-11-23 56928]
"LanguageShortcut"="c:\program files\CyberLink\PowerDVD\Language\Language.exe" [2006-12-06 54832]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ   kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R3 BBSvc;Bing Bar Update Service;c:\program files\Microsoft\BingBar\BBSvc.EXE [x]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [x]
R3 Samsung UPD Service;Samsung UPD Service;c:\windows\System32\SUPDSvc.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 SABI;SAMSUNG Kernel Driver For Windows 7;c:\windows\system32\Drivers\SABI.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 cvhsvc;Client Virtualization Handler;c:\program files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [x]
S2 sftlist;Application Virtualization Client;c:\program files\Microsoft Application Virtualization Client\sftlist.exe [x]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [x]
S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [x]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [x]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [x]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [x]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [x]
S3 sftvsa;Application Virtualization Service Agent;c:\program files\Microsoft Application Virtualization Client\sftvsa.exe [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [x]
.
.
--- =Outros Serviços/Drivers Na Memória ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ   SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc
.
Conteúdo da pasta 'Tarefas Agendadas'
.
2012-07-18 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-896558980-977426591-2796425657-1000Core.job
- c:\users\Sara\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-12 15:54]
.
2012-07-18 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-896558980-977426591-2796425657-1000UA.job
- c:\users\Sara\AppData\Local\Google\Update\GoogleUpdate.exe [2012-07-12 15:54]
.
.
------- Scan Suplementar -------
.
uStart Page = hxxp://www.google.com.br/
mStart Page =
uInternet Settings,ProxyOverride = *.local
TCP: DhcpNameServer = 10.1.1.1
FF - ProfilePath - c:\users\Sara\AppData\Roaming\Mozilla\Firefox\Profiles\iwqj96nq.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com.br/
.
.
--------------------- CHAVES DO REGISTRO BLOQUEADAS ---------------------
.
[HKEY_USERS\S-1-5-21-896558980-977426591-2796425657-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.download\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="SafariDownload"
.
[HKEY_USERS\S-1-5-21-896558980-977426591-2796425657-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\UserChoice]
@Denied: (2) (S-1-5-21-896558980-977426591-2796425657-1000)
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\S-1-5-21-896558980-977426591-2796425657-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\UserChoice]
@Denied: (2) (S-1-5-21-896558980-977426591-2796425657-1000)
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\S-1-5-21-896558980-977426591-2796425657-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.safariextz\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="SafariExtension"
.
[HKEY_USERS\S-1-5-21-896558980-977426591-2796425657-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
@Denied: (2) (S-1-5-21-896558980-977426591-2796425657-1000)
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\S-1-5-21-896558980-977426591-2796425657-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.svg\UserChoice]
@Denied: (2) (S-1-5-21-896558980-977426591-2796425657-1000)
@Denied: (2) (LocalSystem)
"Progid"="IE.AssocFile.SVG"
.
[HKEY_USERS\S-1-5-21-896558980-977426591-2796425657-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.webarchive\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="SafariHTML"
.
[HKEY_USERS\S-1-5-21-896558980-977426591-2796425657-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xht\UserChoice]
@Denied: (2) (S-1-5-21-896558980-977426591-2796425657-1000)
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\S-1-5-21-896558980-977426591-2796425657-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xhtml\UserChoice]
@Denied: (2) (S-1-5-21-896558980-977426591-2796425657-1000)
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\S-1-5-21-896558980-977426591-2796425657-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="SafariHTML"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- DLLs Carregadas Sob os Processos em Execução ---------------------
.
- - - - - - - > 'Explorer.exe'(3120)
c:\program files\Samsung\Movie Color Enhancer\WinCRT.dll
.
------------------------ Outros Processos em Execução ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\system32\atieclxx.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\CyberLink\Shared files\RichVideo.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\conhost.exe
c:\program files\CyberLink\YouCam\YCMMirage.exe
c:\program files\Samsung\Easy Display Manager\WifiManager.exe
c:\program files\Samsung\Samsung Recovery Solution 5\WCScheduler.exe
c:\program files\Samsung\SamsungFastStart\SmartRestarter.exe
c:\program files\Microsoft\BingBar\SeaPort.EXE
c:\windows\system32\sppsvc.exe
c:\program files\Samsung\Movie Color Enhancer\MovieColorEnhancer.exe
c:\program files\Samsung\Samsung Support Center\SSCKbdHk.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\Samsung\Samsung Update Plus\SUPBackground.exe
.
**************************************************************************
.
Tempo para conclusão: 2012-07-18  19:06:12 - Máquina reiniciou
ComboFix-quarantined-files.txt  2012-07-18 22:06
.
Pré-execução: 88.284.950.528 bytes disponíveis
Pós execução: 88.450.940.928 bytes disponíveis
.
- - End Of File - - AFCB78901CE43C79A9288300B456CC6C
Responder | Em Árvore
Abra essa mensagem na visão em árvore
|  
Denunciar Conteúdo como Inapropriado

Re: Não consigo entrar no Facebook

Marcelo
Administrador
Sara, estes aplicativos que não saem do seu Face podem ser a causa desse problema. Mas nada concreto, apenas uma suposição.

Enquanto isso, vamos terminar de limpar sua máquina dos vírus (que também podem estar influenciando neste problema).

Entretanto, em relação ao seu cartão, creio que ele não esteja em risco. Roubos por intermédio de malwares assim, normalmente, têm efeito imediato, isto é, se os dados do seu cartão estivessem em mãos erradas, certamente o(s) meliante(s) já teria(m) feito uso do mesmo.

Vamos lá...

1º Passo



1 - Baixe o TDSSKiller e salve no desktop.
2 - Execute-o como administradora e clique em Change parameters.
3 - Marque as duas opções abaixo e clique em OK:

Verify Driver Digital Signature
Detect TDLFS file system


4 - Voltando à tela inicial, clique em Start Scan e aguarde.
5 - Se algum objeto suspeito for identificado, selecione a opção Skip. Se tratar-se de um objeto malicioso selecione Cure.
6 - Ao término do scan, um relatório será criado em C:\TDSSKiller.txt.

2º Passo



1 - Baixe o aswMBR e salve-o no desktop.
2 - Execute-o, clique em Scan e aguarde.
3 - Um relatório dele será criado no desktop mesmo. Apenas guarde-o.

3º Passo



1 - Abra o Bloco de Notas do seu computador.
2 - Acesse a página abaixo e copie todo o texto presente nele.
http://pastebin.com/raw.php?i=KXxKzdvZ

3 - Cole o texto copiado dentro do Bloco de Notas.
4 - Salve o Bloco com o nome CFScript.txt no desktop.
5 - Agora arraste este arquivo CFScript para cima do ícone do ComboFix e aguarde-o realizar o scan, do mesmo jeito que ocorreu a primeira vez.
6 - Depois que o scan terminar, um novo relatório C:\ComboFix.txt será gerado.

Para a sua próxima resposta, peço que você cole os três relatórios (TDSSKiller, AswCleaner e ComboFix), por gentileza.

Abraços
Responder | Em Árvore
Abra essa mensagem na visão em árvore
|  
Denunciar Conteúdo como Inapropriado

Re: Não consigo entrar no Facebook

Sara
Vou te mandar em tres respostas pois tah dando erro qndo coloco tudo numa resposta só, talvez seja pq tem mtos carecteres.

Aki está o relatorio TDSSKiller:


13:50:58.0083 5740 TDSS rootkit removing tool 2.7.46.0 Jul 16 2012 22:10:11
13:50:58.0900 5740 ============================================================
13:50:58.0901 5740 Current date / time: 2012/07/19 13:50:58.0900
13:50:58.0901 5740 SystemInfo:
13:50:58.0901 5740
13:50:58.0901 5740 OS Version: 6.1.7601 ServicePack: 1.0
13:50:58.0901 5740 Product type: Workstation
13:50:58.0902 5740 ComputerName: SARA-PC
13:50:58.0902 5740 UserName: Sara
13:50:58.0902 5740 Windows directory: C:\windows
13:50:58.0902 5740 System windows directory: C:\windows
13:50:58.0902 5740 Processor architecture: Intel x86
13:50:58.0902 5740 Number of processors: 2
13:50:58.0902 5740 Page size: 0x1000
13:50:58.0902 5740 Boot type: Normal boot
13:50:58.0902 5740 ============================================================
13:51:08.0254 5740 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
13:51:08.0427 5740 ============================================================
13:51:08.0427 5740 \Device\Harddisk0\DR0:
13:51:08.0462 5740 MBR partitions:
13:51:08.0462 5740 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
13:51:08.0462 5740 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xE200000
13:51:08.0489 5740 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xE233000, BlocksNum 0x14FC1800
13:51:08.0489 5740 ============================================================
13:51:08.0865 5740 C: <-> \Device\Harddisk0\DR0\Partition1
13:51:09.0063 5740 D: <-> \Device\Harddisk0\DR0\Partition2
13:51:09.0388 5740 ============================================================
13:51:09.0388 5740 Initialize success
13:51:09.0388 5740 ============================================================
13:51:43.0321 4960 ============================================================
13:51:43.0321 4960 Scan started
13:51:43.0321 4960 Mode: Manual; SigCheck; TDLFS;
13:51:43.0322 4960 ============================================================
13:51:44.0752 4960 1394ohci        (1b133875b8aa8ac48969bd3458afe9f5) C:\windows\system32\drivers\1394ohci.sys
13:51:44.0957 4960 1394ohci - ok
13:51:45.0022 4960 ACPI            (cea80c80bed809aa0da6febc04733349) C:\windows\system32\drivers\ACPI.sys
13:51:45.0066 4960 ACPI - ok
13:51:45.0106 4960 AcpiPmi         (1efbc664abff416d1d07db115dcb264f) C:\windows\system32\drivers\acpipmi.sys
13:51:45.0244 4960 AcpiPmi - ok
13:51:45.0324 4960 adp94xx         (21e785ebd7dc90a06391141aac7892fb) C:\windows\system32\drivers\adp94xx.sys
13:51:45.0376 4960 adp94xx - ok
13:51:45.0486 4960 adpahci         (0c676bc278d5b59ff5abd57bbe9123f2) C:\windows\system32\drivers\adpahci.sys
13:51:45.0544 4960 adpahci - ok
13:51:45.0611 4960 adpu320         (7c7b5ee4b7b822ec85321fe23a27db33) C:\windows\system32\drivers\adpu320.sys
13:51:45.0648 4960 adpu320 - ok
13:51:45.0739 4960 AeLookupSvc     (8b5eefeec1e6d1a72a06c526628ad161) C:\windows\System32\aelupsvc.dll
13:51:45.0831 4960 AeLookupSvc - ok
13:51:45.0920 4960 AFD             (9ebbba55060f786f0fcaa3893bfa2806) C:\windows\system32\drivers\afd.sys
13:51:45.0974 4960 AFD - ok
13:51:46.0005 4960 agp440          (507812c3054c21cef746b6ee3d04dd6e) C:\windows\system32\drivers\agp440.sys
13:51:46.0039 4960 agp440 - ok
13:51:46.0086 4960 aic78xx         (8b30250d573a8f6b4bd23195160d8707) C:\windows\system32\drivers\djsvs.sys
13:51:46.0120 4960 aic78xx - ok
13:51:46.0186 4960 ALG             (18a54e132947cd98fea9accc57f98f13) C:\windows\System32\alg.exe
13:51:46.0251 4960 ALG - ok
13:51:46.0368 4960 aliide          (0d40bcf52ea90fc7df2aeab6503dea44) C:\windows\system32\drivers\aliide.sys
13:51:46.0402 4960 aliide - ok
13:51:46.0465 4960 AMD External Events Utility (aae19c2290142740658b1a35cb96b836) C:\windows\system32\atiesrxx.exe
13:51:46.0525 4960 AMD External Events Utility - ok
13:51:46.0606 4960 amdagp          (3c6600a0696e90a463771c7422e23ab5) C:\windows\system32\drivers\amdagp.sys
13:51:46.0655 4960 amdagp - ok
13:51:46.0698 4960 amdide          (cd5914170297126b6266860198d1d4f0) C:\windows\system32\drivers\amdide.sys
13:51:46.0729 4960 amdide - ok
13:51:46.0758 4960 AmdK8           (00dda200d71bac534bf56a9db5dfd666) C:\windows\system32\drivers\amdk8.sys
13:51:46.0830 4960 AmdK8 - ok
13:51:47.0298 4960 amdkmdag        (978d7ad6280ca2537d29d50149192c18) C:\windows\system32\DRIVERS\atikmdag.sys
13:51:47.0701 4960 amdkmdag - ok
13:51:47.0945 4960 amdkmdap        (cc31467a1d0540f56803ffef7ec21644) C:\windows\system32\DRIVERS\atikmpag.sys
13:51:48.0027 4960 amdkmdap - ok
13:51:48.0147 4960 AmdPPM          (3cbf30f5370fda40dd3e87df38ea53b6) C:\windows\system32\DRIVERS\amdppm.sys
13:51:48.0222 4960 AmdPPM - ok
13:51:48.0298 4960 amdsata         (d320bf87125326f996d4904fe24300fc) C:\windows\system32\drivers\amdsata.sys
13:51:48.0335 4960 amdsata - ok
13:51:48.0369 4960 amdsbs          (ea43af0c423ff267355f74e7a53bdaba) C:\windows\system32\drivers\amdsbs.sys
13:51:48.0405 4960 amdsbs - ok
13:51:48.0427 4960 amdxata         (46387fb17b086d16dea267d5be23a2f2) C:\windows\system32\drivers\amdxata.sys
13:51:48.0460 4960 amdxata - ok
13:51:48.0492 4960 amd_sata        (d4d9f054f50cc176b8ad96957cbf34a0) C:\windows\system32\DRIVERS\amd_sata.sys
13:51:49.0229 4960 amd_sata - ok
13:51:49.0432 4960 amd_xata        (3d50f8f1a7bec39e3225203a34bb2bf6) C:\windows\system32\DRIVERS\amd_xata.sys
13:51:49.0464 4960 amd_xata - ok
13:51:49.0554 4960 AppID           (aea177f783e20150ace5383ee368da19) C:\windows\system32\drivers\appid.sys
13:51:49.0641 4960 AppID - ok
13:51:49.0690 4960 AppIDSvc        (62a9c86cb6085e20db4823e4e97826f5) C:\windows\System32\appidsvc.dll
13:51:49.0770 4960 AppIDSvc - ok
13:51:49.0793 4960 Appinfo         (fb1959012294d6ad43e5304df65e3c26) C:\windows\System32\appinfo.dll
13:51:49.0887 4960 Appinfo - ok
13:51:50.0028 4960 arc             (2932004f49677bd84dbc72edb754ffb3) C:\windows\system32\drivers\arc.sys
13:51:50.0068 4960 arc - ok
13:51:50.0091 4960 arcsas          (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\windows\system32\drivers\arcsas.sys
13:51:50.0125 4960 arcsas - ok
13:51:50.0170 4960 aswFsBlk        (0ae43c6c411254049279c2ee55630f95) C:\windows\system32\drivers\aswFsBlk.sys
13:51:50.0203 4960 aswFsBlk - ok
13:51:50.0293 4960 aswMonFlt       (6693141560b1615d8dccf0d8eb00087e) C:\windows\system32\drivers\aswMonFlt.sys
13:51:50.0341 4960 aswMonFlt - ok
13:51:50.0376 4960 aswRdr          (225013c16fe096714d71649ad7a20e8b) C:\windows\System32\Drivers\aswrdr2.sys
13:51:50.0406 4960 aswRdr - ok
13:51:50.0482 4960 aswSnx          (dcb199b967375753b5019ec15f008f53) C:\windows\system32\drivers\aswSnx.sys
13:51:50.0538 4960 aswSnx - ok
13:51:50.0630 4960 aswSP           (b32873e5a1443c0a1e322266e203bf10) C:\windows\system32\drivers\aswSP.sys
13:51:50.0678 4960 aswSP - ok
13:51:50.0706 4960 aswTdi          (6ff544175a9180c5d88534d3d9c9a9f7) C:\windows\system32\drivers\aswTdi.sys
13:51:50.0737 4960 aswTdi - ok
13:51:50.0782 4960 AsyncMac        (add2ade1c2b285ab8378d2daaf991481) C:\windows\system32\DRIVERS\asyncmac.sys
13:51:50.0933 4960 AsyncMac - ok
13:51:51.0020 4960 atapi           (338c86357871c167a96ab976519bf59e) C:\windows\system32\drivers\atapi.sys
13:51:51.0058 4960 atapi - ok
13:51:51.0235 4960 athr            (49f17a2e79469be6581d491706720671) C:\windows\system32\DRIVERS\athr.sys
13:51:51.0395 4960 athr - ok
13:51:51.0691 4960 AtiHDAudioService (95b1e9804ca10d096c0383f7c6684950) C:\windows\system32\drivers\AtihdW73.sys
13:51:51.0733 4960 AtiHDAudioService - ok
13:51:51.0806 4960 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\windows\System32\Audiosrv.dll
13:51:51.0903 4960 AudioEndpointBuilder - ok
13:51:51.0919 4960 Audiosrv        (ce3b4e731638d2ef62fcb419be0d39f0) C:\windows\System32\Audiosrv.dll
13:51:51.0993 4960 Audiosrv - ok
13:51:52.0176 4960 avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
13:51:52.0214 4960 avast! Antivirus - ok
13:51:52.0270 4960 AxInstSV        (6e30d02aac9cac84f421622e3a2f6178) C:\windows\System32\AxInstSV.dll
13:51:52.0336 4960 AxInstSV - ok
13:51:52.0391 4960 b06bdrv         (1a231abec60fd316ec54c66715543cec) C:\windows\system32\drivers\bxvbdx.sys
13:51:52.0484 4960 b06bdrv - ok
13:51:52.0548 4960 b57nd60x        (bd8869eb9cde6bbe4508d869929869ee) C:\windows\system32\DRIVERS\b57nd60x.sys
13:51:52.0590 4960 b57nd60x - ok
13:51:52.0687 4960 BBSvc           (93ee7d9c35ae7e9ffda148d7805f1421) C:\Program Files\Microsoft\BingBar\BBSvc.EXE
13:51:52.0733 4960 BBSvc - ok
13:51:52.0797 4960 BDESVC          (ee1e9c3bb8228ae423dd38db69128e71) C:\windows\System32\bdesvc.dll
13:51:52.0853 4960 BDESVC - ok
13:51:52.0898 4960 Beep            (505506526a9d467307b3c393dedaf858) C:\windows\system32\drivers\Beep.sys
13:51:53.0049 4960 Beep - ok
13:51:53.0150 4960 BFE             (1e2bac209d184bb851e1a187d8a29136) C:\windows\System32\bfe.dll
13:51:53.0249 4960 BFE - ok
13:51:53.0305 4960 BITS            (e585445d5021971fae10393f0f1c3961) C:\windows\system32\qmgr.dll
13:51:53.0544 4960 BITS - ok
13:51:53.0605 4960 blbdrive        (2287078ed48fcfc477b05b20cf38f36f) C:\windows\system32\DRIVERS\blbdrive.sys
13:51:53.0671 4960 blbdrive - ok
13:51:53.0811 4960 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
13:51:53.0858 4960 Bonjour Service - ok
13:51:53.0920 4960 bowser          (8f2da3028d5fcbd1a060a3de64cd6506) C:\windows\system32\DRIVERS\bowser.sys
13:51:53.0967 4960 bowser - ok
13:51:54.0014 4960 BrFiltLo        (9f9acc7f7ccde8a15c282d3f88b43309) C:\windows\system32\drivers\BrFiltLo.sys
13:51:54.0076 4960 BrFiltLo - ok
13:51:54.0092 4960 BrFiltUp        (56801ad62213a41f6497f96dee83755a) C:\windows\system32\drivers\BrFiltUp.sys
13:51:54.0217 4960 BrFiltUp - ok
13:51:54.0264 4960 BridgeMP        (77361d72a04f18809d0efb6cceb74d4b) C:\windows\system32\DRIVERS\bridge.sys
13:51:54.0342 4960 BridgeMP - ok
13:51:54.0388 4960 Browser         (6e11f33d14d020f58d5e02e4d67dfa19) C:\windows\System32\browser.dll
13:51:54.0482 4960 Browser - ok
13:51:54.0547 4960 Brserid         (845b8ce732e67f3b4133164868c666ea) C:\windows\System32\Drivers\Brserid.sys
13:51:54.0608 4960 Brserid - ok
13:51:54.0620 4960 BrSerWdm        (203f0b1e73adadbbb7b7b1fabd901f6b) C:\windows\System32\Drivers\BrSerWdm.sys
13:51:54.0670 4960 BrSerWdm - ok
13:51:54.0678 4960 BrUsbMdm        (bd456606156ba17e60a04e18016ae54b) C:\windows\System32\Drivers\BrUsbMdm.sys
13:51:54.0724 4960 BrUsbMdm - ok
13:51:54.0732 4960 BrUsbSer        (af72ed54503f717a43268b3cc5faec2e) C:\windows\System32\Drivers\BrUsbSer.sys
13:51:54.0790 4960 BrUsbSer - ok
13:51:54.0879 4960 BthEnum         (2865a5c8e98c70c605f417908cebb3a4) C:\windows\system32\drivers\BthEnum.sys
13:51:54.0960 4960 BthEnum - ok
13:51:54.0971 4960 BTHMODEM        (ed3df7c56ce0084eb2034432fc56565a) C:\windows\system32\drivers\bthmodem.sys
13:51:55.0024 4960 BTHMODEM - ok
13:51:55.0068 4960 BthPan          (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\windows\system32\DRIVERS\bthpan.sys
13:51:55.0112 4960 BthPan - ok
13:51:55.0175 4960 BTHPORT         (c2fbf6d271d9a94d839c416bf186ead9) C:\windows\System32\Drivers\BTHport.sys
13:51:55.0234 4960 BTHPORT - ok
13:51:55.0290 4960 bthserv         (1df19c96eef6c29d1c3e1a8678e07190) C:\windows\system32\bthserv.dll
13:51:55.0375 4960 bthserv - ok
13:51:55.0401 4960 BTHUSB          (c81e9413a25a439f436b1d4b6a0cf9e9) C:\windows\System32\Drivers\BTHUSB.sys
13:51:55.0452 4960 BTHUSB - ok
13:51:55.0735 4960 catchme - ok
13:51:55.0805 4960 cdfs            (77ea11b065e0a8ab902d78145ca51e10) C:\windows\system32\DRIVERS\cdfs.sys
13:51:55.0891 4960 cdfs - ok
13:51:55.0928 4960 cdrom           (be167ed0fdb9c1fa1133953c18d5a6c9) C:\windows\system32\DRIVERS\cdrom.sys
13:51:55.0989 4960 cdrom - ok
13:51:56.0037 4960 CertPropSvc     (319c6b309773d063541d01df8ac6f55f) C:\windows\System32\certprop.dll
13:51:56.0120 4960 CertPropSvc - ok
13:51:56.0156 4960 circlass        (3fe3fe94a34df6fb06e6418d0f6a0060) C:\windows\system32\drivers\circlass.sys
13:51:56.0214 4960 circlass - ok
13:51:56.0247 4960 CLFS            (635181e0e9bbf16871bf5380d71db02d) C:\windows\system32\CLFS.sys
13:51:56.0287 4960 CLFS - ok
13:51:56.0486 4960 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:51:56.0527 4960 clr_optimization_v2.0.50727_32 - ok
13:51:56.0835 4960 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:51:56.0870 4960 clr_optimization_v4.0.30319_32 - ok
13:51:56.0911 4960 clwvd           (125c828bf3673406dfd642d7bee8434f) C:\windows\system32\DRIVERS\clwvd.sys
13:51:56.0940 4960 clwvd - ok
13:51:56.0966 4960 CmBatt          (dea805815e587dad1dd2c502220b5616) C:\windows\system32\DRIVERS\CmBatt.sys
13:51:57.0021 4960 CmBatt - ok
13:51:57.0056 4960 cmdide          (c537b1db64d495b9b4717b4d6d9edbf2) C:\windows\system32\drivers\cmdide.sys
13:51:57.0089 4960 cmdide - ok
13:51:57.0201 4960 CNG             (6427525d76f61d0c519b008d3680e8e7) C:\windows\system32\Drivers\cng.sys
13:51:57.0265 4960 CNG - ok
13:51:57.0316 4960 Compbatt        (a6023d3823c37043986713f118a89bee) C:\windows\system32\DRIVERS\compbatt.sys
13:51:57.0347 4960 Compbatt - ok
13:51:57.0375 4960 CompositeBus    (cbe8c58a8579cfe5fccf809e6f114e89) C:\windows\system32\DRIVERS\CompositeBus.sys
13:51:57.0480 4960 CompositeBus - ok
13:51:57.0503 4960 COMSysApp - ok
13:51:57.0533 4960 crcdisk         (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\windows\system32\drivers\crcdisk.sys
13:51:57.0564 4960 crcdisk - ok
13:51:57.0658 4960 CryptSvc        (06e771aa596b8761107ab57e99f128d7) C:\windows\system32\cryptsvc.dll
13:51:57.0720 4960 CryptSvc - ok
13:51:57.0936 4960 cvhsvc          (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
13:51:58.0002 4960 cvhsvc - ok
13:51:58.0067 4960 DcomLaunch      (7660f01d3b38aca1747e397d21d790af) C:\windows\system32\rpcss.dll
13:51:58.0169 4960 DcomLaunch - ok
13:51:58.0213 4960 defragsvc       (8d6e10a2d9a5eed59562d9b82cf804e1) C:\windows\System32\defragsvc.dll
13:51:58.0307 4960 defragsvc - ok
13:51:58.0397 4960 DfsC            (f024449c97ec1e464aaffda18593db88) C:\windows\system32\Drivers\dfsc.sys
13:51:58.0472 4960 DfsC - ok
13:51:58.0535 4960 Dhcp            (e9e01eb683c132f7fa27cd607b8a2b63) C:\windows\system32\dhcpcore.dll
13:51:58.0604 4960 Dhcp - ok
13:51:58.0614 4960 discache        (1a050b0274bfb3890703d490f330c0da) C:\windows\system32\drivers\discache.sys
13:51:58.0711 4960 discache - ok
13:51:58.0817 4960 Disk            (565003f326f99802e68ca78f2a68e9ff) C:\windows\system32\drivers\disk.sys
13:51:58.0864 4960 Disk - ok
13:51:58.0911 4960 Dnscache        (33ef4861f19a0736b11314aad9ae28d0) C:\windows\System32\dnsrslvr.dll
13:51:58.0973 4960 Dnscache - ok
13:51:59.0051 4960 dot3svc         (366ba8fb4b7bb7435e3b9eacb3843f67) C:\windows\System32\dot3svc.dll
13:51:59.0129 4960 dot3svc - ok
13:51:59.0145 4960 DPS             (8ec04ca86f1d68da9e11952eb85973d6) C:\windows\system32\dps.dll
13:51:59.0223 4960 DPS - ok
13:51:59.0254 4960 drmkaud         (b918e7c5f9bf77202f89e1a9539f2eb4) C:\windows\system32\drivers\drmkaud.sys
13:51:59.0320 4960 drmkaud - ok
13:51:59.0375 4960 DXGKrnl         (23f5d28378a160352ba8f817bd8c71cb) C:\windows\System32\drivers\dxgkrnl.sys
13:51:59.0432 4960 DXGKrnl - ok
13:51:59.0468 4960 EapHost         (8600142fa91c1b96367d3300ad0f3f3a) C:\windows\System32\eapsvc.dll
13:51:59.0569 4960 EapHost - ok
13:51:59.0807 4960 ebdrv           (024e1b5cac09731e4d868e64dbfb4ab0) C:\windows\system32\drivers\evbdx.sys
13:51:59.0934 4960 ebdrv - ok
13:52:00.0076 4960 EFS             (81951f51e318aecc2d68559e47485cc4) C:\windows\System32\lsass.exe
13:52:00.0129 4960 EFS - ok
13:52:00.0302 4960 elxstor         (0ed67910c8c326796faa00b2bf6d9d3c) C:\windows\system32\drivers\elxstor.sys
13:52:00.0358 4960 elxstor - ok
13:52:00.0384 4960 ErrDev          (8fc3208352dd3912c94367a206ab3f11) C:\windows\system32\drivers\errdev.sys
13:52:00.0435 4960 ErrDev - ok
13:52:00.0501 4960 ETD             (f8f330e056e3f9237ed885024d44bc52) C:\windows\system32\DRIVERS\ETD.sys
13:52:00.0535 4960 ETD - ok
13:52:00.0627 4960 EventSystem     (f6916efc29d9953d5d0df06882ae8e16) C:\windows\system32\es.dll
13:52:00.0719 4960 EventSystem - ok
13:52:00.0764 4960 exfat           (2dc9108d74081149cc8b651d3a26207f) C:\windows\system32\drivers\exfat.sys
13:52:00.0845 4960 exfat - ok
13:52:00.0876 4960 fastfat         (7e0ab74553476622fb6ae36f73d97d35) C:\windows\system32\drivers\fastfat.sys
13:52:00.0962 4960 fastfat - ok
13:52:01.0046 4960 Fax             (967ea5b213e9984cbe270205df37755b) C:\windows\system32\fxssvc.exe
13:52:01.0109 4960 Fax - ok
13:52:01.0154 4960 fdc             (e817a017f82df2a1f8cfdbda29388b29) C:\windows\system32\drivers\fdc.sys
13:52:01.0247 4960 fdc - ok
13:52:01.0285 4960 fdPHost         (f3222c893bd2f5821a0179e5c71e88fb) C:\windows\system32\fdPHost.dll
13:52:01.0365 4960 fdPHost - ok
13:52:01.0376 4960 FDResPub        (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\windows\system32\fdrespub.dll
13:52:01.0445 4960 FDResPub - ok
13:52:01.0463 4960 FileInfo        (6cf00369c97f3cf563be99be983d13d8) C:\windows\system32\drivers\fileinfo.sys
13:52:01.0498 4960 FileInfo - ok
13:52:01.0514 4960 Filetrace       (42c51dc94c91da21cb9196eb64c45db9) C:\windows\system32\drivers\filetrace.sys
13:52:01.0579 4960 Filetrace - ok
13:52:01.0634 4960 flpydisk        (87907aa70cb3c56600f1c2fb8841579b) C:\windows\system32\drivers\flpydisk.sys
13:52:01.0692 4960 flpydisk - ok
13:52:01.0719 4960 FltMgr          (7520ec808e0c35e0ee6f841294316653) C:\windows\system32\drivers\fltmgr.sys
13:52:01.0757 4960 FltMgr - ok
13:52:01.0840 4960 FontCache       (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\windows\system32\FntCache.dll
13:52:01.0913 4960 FontCache - ok
13:52:02.0010 4960 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
13:52:02.0048 4960 FontCache3.0.0.0 - ok
13:52:02.0080 4960 FsDepends       (1a16b57943853e598cff37fe2b8cbf1d) C:\windows\system32\drivers\FsDepends.sys
13:52:02.0112 4960 FsDepends - ok
13:52:02.0147 4960 Fs_Rec          (7dae5ebcc80e45d3253f4923dc424d05) C:\windows\system32\drivers\Fs_Rec.sys
13:52:02.0178 4960 Fs_Rec - ok
13:52:02.0227 4960 fvevol          (8a73e79089b282100b9393b644cb853b) C:\windows\system32\DRIVERS\fvevol.sys
13:52:02.0271 4960 fvevol - ok
13:52:02.0359 4960 gagp30kx        (65ee0c7a58b65e74ae05637418153938) C:\windows\system32\drivers\gagp30kx.sys
13:52:02.0399 4960 gagp30kx - ok
13:52:02.0476 4960 gpsvc           (e897eaf5ed6ba41e081060c9b447a673) C:\windows\System32\gpsvc.dll
13:52:02.0567 4960 gpsvc - ok
13:52:02.0599 4960 hcw85cir        (c44e3c2bab6837db337ddee7544736db) C:\windows\system32\drivers\hcw85cir.sys
13:52:02.0651 4960 hcw85cir - ok
13:52:02.0704 4960 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\windows\system32\drivers\HdAudio.sys
13:52:02.0765 4960 HdAudAddService - ok
13:52:02.0789 4960 HDAudBus        (9036377b8a6c15dc2eec53e489d159b5) C:\windows\system32\DRIVERS\HDAudBus.sys
13:52:02.0848 4960 HDAudBus - ok
13:52:02.0876 4960 HidBatt         (1d58a7f3e11a9731d0eaaaa8405acc36) C:\windows\system32\drivers\HidBatt.sys
13:52:02.0927 4960 HidBatt - ok
13:52:02.0939 4960 HidBth          (89448f40e6df260c206a193a4683ba78) C:\windows\system32\drivers\hidbth.sys
13:52:02.0991 4960 HidBth - ok
13:52:03.0002 4960 HidIr           (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\windows\system32\drivers\hidir.sys
13:52:03.0051 4960 HidIr - ok
13:52:03.0083 4960 hidserv         (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\windows\System32\hidserv.dll
13:52:03.0170 4960 hidserv - ok
13:52:03.0217 4960 HidUsb          (10c19f8290891af023eaec0832e1eb4d) C:\windows\system32\DRIVERS\hidusb.sys
13:52:03.0267 4960 HidUsb - ok
13:52:03.0307 4960 hkmsvc          (196b4e3f4cccc24af836ce58facbb699) C:\windows\system32\kmsvc.dll
13:52:03.0373 4960 hkmsvc - ok
13:52:03.0399 4960 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\windows\system32\ListSvc.dll
13:52:03.0460 4960 HomeGroupListener - ok
13:52:03.0499 4960 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\windows\system32\provsvc.dll
13:52:03.0568 4960 HomeGroupProvider - ok
13:52:03.0643 4960 HpSAMD          (295fdc419039090eb8b49ffdbb374549) C:\windows\system32\drivers\HpSAMD.sys
13:52:03.0681 4960 HpSAMD - ok
13:52:03.0745 4960 HTTP            (871917b07a141bff43d76d8844d48106) C:\windows\system32\drivers\HTTP.sys
13:52:03.0823 4960 HTTP - ok
13:52:03.0849 4960 hwpolicy        (0c4e035c7f105f1299258c90886c64c5) C:\windows\system32\drivers\hwpolicy.sys
13:52:03.0879 4960 hwpolicy - ok
13:52:03.0912 4960 i8042prt        (f151f0bdc47f4a28b1b20a0818ea36d6) C:\windows\system32\DRIVERS\i8042prt.sys
13:52:03.0966 4960 i8042prt - ok
13:52:04.0011 4960 iaStorV         (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\windows\system32\drivers\iaStorV.sys
13:52:04.0055 4960 iaStorV - ok
13:52:04.0270 4960 idsvc           (c521d7eb6497bb1af6afa89e322fb43c) C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
13:52:04.0334 4960 idsvc - ok
13:52:04.0716 4960 igfx            (ad626f6964f4d364d226c39e06872dd3) C:\windows\system32\DRIVERS\igdkmd32.sys
13:52:04.0948 4960 igfx - ok
13:52:05.0200 4960 iirsp           (4173ff5708f3236cf25195fecd742915) C:\windows\system32\drivers\iirsp.sys
13:52:05.0232 4960 iirsp - ok
13:52:05.0326 4960 IKEEXT          (f95622f161474511b8d80d6b093aa610) C:\windows\System32\ikeext.dll
13:52:05.0424 4960 IKEEXT - ok
13:52:05.0663 4960 IntcAzAudAddService (b75fb1543ea119ad06d83d378b681949) C:\windows\system32\drivers\RTKVHDA.sys
13:52:05.0818 4960 IntcAzAudAddService - ok
13:52:06.0006 4960 intelide        (a0f12f2c9ba6c72f3987ce780e77c130) C:\windows\system32\drivers\intelide.sys
13:52:06.0045 4960 intelide - ok
13:52:06.0091 4960 intelppm        (3b514d27bfc4accb4037bc6685f766e0) C:\windows\system32\drivers\intelppm.sys
13:52:06.0139 4960 intelppm - ok
13:52:06.0176 4960 IPBusEnum       (acb364b9075a45c0736e5c47be5cae19) C:\windows\system32\ipbusenum.dll
13:52:06.0248 4960 IPBusEnum - ok
13:52:06.0258 4960 IpFilterDriver  (709d1761d3b19a932ff0238ea6d50200) C:\windows\system32\DRIVERS\ipfltdrv.sys
13:52:06.0342 4960 IpFilterDriver - ok
13:52:06.0382 4960 iphlpsvc        (4d65a07b795d6674312f879d09aa7663) C:\windows\System32\iphlpsvc.dll
13:52:06.0478 4960 iphlpsvc - ok
13:52:06.0503 4960 IPMIDRV         (4bd7134618c1d2a27466a099062547bf) C:\windows\system32\drivers\IPMIDrv.sys
13:52:06.0559 4960 IPMIDRV - ok
13:52:06.0571 4960 IPNAT           (a5fa468d67abcdaa36264e463a7bb0cd) C:\windows\system32\drivers\ipnat.sys
13:52:06.0650 4960 IPNAT - ok
13:52:06.0689 4960 IRENUM          (42996cff20a3084a56017b7902307e9f) C:\windows\system32\drivers\irenum.sys
13:52:06.0794 4960 IRENUM - ok
13:52:06.0817 4960 isapnp          (1f32bb6b38f62f7df1a7ab7292638a35) C:\windows\system32\drivers\isapnp.sys
13:52:06.0850 4960 isapnp - ok
13:52:06.0884 4960 iScsiPrt        (cb7a9abb12b8415bce5d74994c7ba3ae) C:\windows\system32\drivers\msiscsi.sys
13:52:06.0924 4960 iScsiPrt - ok
13:52:06.0948 4960 kbdclass        (adef52ca1aeae82b50df86b56413107e) C:\windows\system32\DRIVERS\kbdclass.sys
13:52:06.0985 4960 kbdclass - ok
13:52:07.0020 4960 kbdhid          (9e3ced91863e6ee98c24794d05e27a71) C:\windows\system32\drivers\kbdhid.sys
13:52:07.0108 4960 kbdhid - ok
13:52:07.0154 4960 KeyIso          (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe
13:52:07.0190 4960 KeyIso - ok
13:52:07.0211 4960 KSecDD          (f4647bb23db9038a7536cf6b68f4207f) C:\windows\system32\Drivers\ksecdd.sys
13:52:07.0245 4960 KSecDD - ok
13:52:07.0268 4960 KSecPkg         (e73cae53bbb72ba26918492c6b4c229d) C:\windows\system32\Drivers\ksecpkg.sys
13:52:07.0304 4960 KSecPkg - ok
13:52:07.0348 4960 KtmRm           (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\windows\system32\msdtckrm.dll
13:52:07.0440 4960 KtmRm - ok
13:52:07.0505 4960 LanmanServer    (d64af876d53eca3668bb97b51b4e70ab) C:\windows\System32\srvsvc.dll
13:52:07.0592 4960 LanmanServer - ok
13:52:07.0631 4960 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\windows\System32\wkssvc.dll
13:52:07.0722 4960 LanmanWorkstation - ok
13:52:07.0786 4960 lltdio          (f7611ec07349979da9b0ae1f18ccc7a6) C:\windows\system32\DRIVERS\lltdio.sys
13:52:07.0871 4960 lltdio - ok
13:52:07.0924 4960 lltdsvc         (5700673e13a2117fa3b9020c852c01e2) C:\windows\System32\lltdsvc.dll
13:52:08.0019 4960 lltdsvc - ok
13:52:08.0050 4960 lmhosts         (55ca01ba19d0006c8f2639b6c045e08b) C:\windows\System32\lmhsvc.dll
13:52:08.0117 4960 lmhosts - ok
13:52:08.0166 4960 LSI_FC          (eb119a53ccf2acc000ac71b065b78fef) C:\windows\system32\drivers\lsi_fc.sys
13:52:08.0200 4960 LSI_FC - ok
13:52:08.0263 4960 LSI_SAS         (8ade1c877256a22e49b75d1cc9161f9c) C:\windows\system32\drivers\lsi_sas.sys
13:52:08.0297 4960 LSI_SAS - ok
13:52:08.0377 4960 LSI_SAS2        (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\windows\system32\drivers\lsi_sas2.sys
13:52:08.0416 4960 LSI_SAS2 - ok
13:52:08.0442 4960 LSI_SCSI        (0a036c7d7cab643a7f07135ac47e0524) C:\windows\system32\drivers\lsi_scsi.sys
13:52:08.0476 4960 LSI_SCSI - ok
13:52:08.0559 4960 luafv           (6703e366cc18d3b6e534f5cf7df39cee) C:\windows\system32\drivers\luafv.sys
13:52:08.0664 4960 luafv - ok
13:52:08.0691 4960 megasas         (0fff5b045293002ab38eb1fd1fc2fb74) C:\windows\system32\drivers\megasas.sys
13:52:08.0722 4960 megasas - ok
13:52:08.0778 4960 MegaSR          (dcbab2920c75f390caf1d29f675d03d6) C:\windows\system32\drivers\MegaSR.sys
13:52:08.0818 4960 MegaSR - ok
13:52:08.0858 4960 MMCSS           (146b6f43a673379a3c670e86d89be5ea) C:\windows\system32\mmcss.dll
13:52:08.0950 4960 MMCSS - ok
13:52:08.0970 4960 Modem           (f001861e5700ee84e2d4e52c712f4964) C:\windows\system32\drivers\modem.sys
13:52:09.0048 4960 Modem - ok
13:52:09.0092 4960 monitor         (79d10964de86b292320e9dfe02282a23) C:\windows\system32\DRIVERS\monitor.sys
13:52:09.0142 4960 monitor - ok
13:52:09.0168 4960 mouclass        (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\windows\system32\DRIVERS\mouclass.sys
13:52:09.0202 4960 mouclass - ok
13:52:09.0235 4960 mouhid          (2c388d2cd01c9042596cf3c8f3c7b24d) C:\windows\system32\DRIVERS\mouhid.sys
13:52:09.0271 4960 mouhid - ok
13:52:09.0282 4960 mountmgr        (fc8771f45ecccfd89684e38842539b9b) C:\windows\system32\drivers\mountmgr.sys
13:52:09.0316 4960 mountmgr - ok
13:52:09.0500 4960 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
13:52:09.0538 4960 MozillaMaintenance - ok
13:52:09.0589 4960 mpio            (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\windows\system32\drivers\mpio.sys
13:52:09.0625 4960 mpio - ok
13:52:09.0651 4960 mpsdrv          (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\windows\system32\drivers\mpsdrv.sys
13:52:09.0795 4960 mpsdrv - ok
13:52:09.0854 4960 MpsSvc          (9835584e999d25004e1ee8e5f3e3b881) C:\windows\system32\mpssvc.dll
13:52:09.0953 4960 MpsSvc - ok
13:52:09.0989 4960 MRxDAV          (ceb46ab7c01c9f825f8cc6babc18166a) C:\windows\system32\drivers\mrxdav.sys
13:52:10.0052 4960 MRxDAV - ok
13:52:10.0130 4960 mrxsmb          (5d16c921e3671636c0eba3bbaac5fd25) C:\windows\system32\DRIVERS\mrxsmb.sys
13:52:10.0187 4960 mrxsmb - ok
13:52:10.0224 4960 mrxsmb10        (6d17a4791aca19328c685d256349fefc) C:\windows\system32\DRIVERS\mrxsmb10.sys
13:52:10.0279 4960 mrxsmb10 - ok
13:52:10.0308 4960 mrxsmb20        (b81f204d146000be76651a50670a5e9e) C:\windows\system32\DRIVERS\mrxsmb20.sys
13:52:10.0358 4960 mrxsmb20 - ok
13:52:10.0393 4960 msahci          (012c5f4e9349e711e11e0f19a8589f0a) C:\windows\system32\drivers\msahci.sys
13:52:10.0426 4960 msahci - ok
13:52:10.0480 4960 msdsm           (55055f8ad8be27a64c831322a780a228) C:\windows\system32\drivers\msdsm.sys
13:52:10.0524 4960 msdsm - ok
13:52:10.0575 4960 MSDTC           (e1bce74a3bd9902b72599c0192a07e27) C:\windows\System32\msdtc.exe
13:52:10.0637 4960 MSDTC - ok
13:52:10.0695 4960 Msfs            (daefb28e3af5a76abcc2c3078c07327f) C:\windows\system32\drivers\Msfs.sys
13:52:10.0783 4960 Msfs - ok
13:52:10.0804 4960 mshidkmdf       (3e1e5767043c5af9367f0056295e9f84) C:\windows\System32\drivers\mshidkmdf.sys
13:52:10.0870 4960 mshidkmdf - ok
13:52:10.0881 4960 msisadrv        (0a4e5757ae09fa9622e3158cc1aef114) C:\windows\system32\drivers\msisadrv.sys
13:52:10.0913 4960 msisadrv - ok
13:52:10.0953 4960 MSiSCSI         (90f7d9e6b6f27e1a707d4a297f077828) C:\windows\system32\iscsiexe.dll
13:52:11.0046 4960 MSiSCSI - ok
13:52:11.0056 4960 msiserver - ok
13:52:11.0093 4960 MSKSSRV         (8c0860d6366aaffb6c5bb9df9448e631) C:\windows\system32\drivers\MSKSSRV.sys
13:52:11.0226 4960 MSKSSRV - ok
13:52:11.0249 4960 MSPCLOCK        (3ea8b949f963562cedbb549eac0c11ce) C:\windows\system32\drivers\MSPCLOCK.sys
13:52:11.0329 4960 MSPCLOCK - ok
13:52:11.0357 4960 MSPQM           (f456e973590d663b1073e9c463b40932) C:\windows\system32\drivers\MSPQM.sys
13:52:11.0493 4960 MSPQM - ok
13:52:11.0544 4960 MsRPC           (0e008fc4819d238c51d7c93e7b41e560) C:\windows\system32\drivers\MsRPC.sys
13:52:11.0581 4960 MsRPC - ok
13:52:11.0843 4960 mssmbios        (fc6b9ff600cc585ea38b12589bd4e246) C:\windows\system32\DRIVERS\mssmbios.sys
13:52:11.0876 4960 mssmbios - ok
13:52:11.0889 4960 MSTEE           (b42c6b921f61a6e55159b8be6cd54a36) C:\windows\system32\drivers\MSTEE.sys
13:52:11.0954 4960 MSTEE - ok
13:52:11.0971 4960 MTConfig        (33599130f44e1f34631cea241de8ac84) C:\windows\system32\drivers\MTConfig.sys
13:52:12.0014 4960 MTConfig - ok
13:52:12.0030 4960 Mup             (159fad02f64e6381758c990f753bcc80) C:\windows\system32\Drivers\mup.sys
13:52:12.0062 4960 Mup - ok
13:52:12.0119 4960 napagent        (61d57a5d7c6d9afe10e77dae6e1b445e) C:\windows\system32\qagentRT.dll
13:52:12.0214 4960 napagent - ok
13:52:12.0295 4960 NativeWifiP     (26384429fcd85d83746f63e798ab1480) C:\windows\system32\DRIVERS\nwifi.sys
13:52:12.0362 4960 NativeWifiP - ok
13:52:12.0448 4960 NDIS            (3723262737d90f58059ceda7373b0387) C:\windows\system32\drivers\ndis.sys
13:52:12.0513 4960 NDIS - ok
13:52:12.0557 4960 NdisCap         (0e1787aa6c9191d3d319e8bafe86f80c) C:\windows\system32\DRIVERS\ndiscap.sys
13:52:12.0641 4960 NdisCap - ok
13:52:12.0674 4960 NdisTapi        (e4a8aec125a2e43a9e32afeea7c9c888) C:\windows\system32\DRIVERS\ndistapi.sys
13:52:12.0757 4960 NdisTapi - ok
13:52:12.0784 4960 Ndisuio         (d8a65dafb3eb41cbb622745676fcd072) C:\windows\system32\DRIVERS\ndisuio.sys
13:52:12.0869 4960 Ndisuio - ok
13:52:12.0884 4960 NdisWan         (38fbe267e7e6983311179230facb1017) C:\windows\system32\DRIVERS\ndiswan.sys
13:52:12.0959 4960 NdisWan - ok
13:52:12.0969 4960 NDProxy         (a4bdc541e69674fbff1a8ff00be913f2) C:\windows\system32\drivers\NDProxy.sys
13:52:13.0044 4960 NDProxy - ok
13:52:13.0084 4960 NetBIOS         (80b275b1ce3b0e79909db7b39af74d51) C:\windows\system32\DRIVERS\netbios.sys
13:52:13.0182 4960 NetBIOS - ok
13:52:13.0226 4960 NetBT           (280122ddcf04b378edd1ad54d71c1e54) C:\windows\system32\DRIVERS\netbt.sys
13:52:13.0307 4960 NetBT - ok
13:52:13.0365 4960 Netlogon        (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe
13:52:13.0403 4960 Netlogon - ok
13:52:13.0505 4960 Netman          (7cccfca7510684768da22092d1fa4db2) C:\windows\System32\netman.dll
13:52:13.0625 4960 Netman - ok
13:52:13.0678 4960 netprofm        (8c338238c16777a802d6a9211eb2ba50) C:\windows\System32\netprofm.dll
13:52:13.0761 4960 netprofm - ok
13:52:13.0929 4960 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:52:13.0992 4960 NetTcpPortSharing - ok
13:52:14.0062 4960 nfrd960         (1d85c4b390b0ee09c7a46b91efb2c097) C:\windows\system32\drivers\nfrd960.sys
13:52:14.0112 4960 nfrd960 - ok
13:52:14.0161 4960 NlaSvc          (912084381d30d8b89ec4e293053f4710) C:\windows\System32\nlasvc.dll
13:52:14.0254 4960 NlaSvc - ok
13:52:14.0292 4960 Npfs            (1db262a9f8c087e8153d89bef3d2235f) C:\windows\system32\drivers\Npfs.sys
13:52:14.0393 4960 Npfs - ok
13:52:14.0430 4960 nsi             (ba387e955e890c8a88306d9b8d06bf17) C:\windows\system32\nsisvc.dll
13:52:14.0524 4960 nsi - ok
13:52:14.0544 4960 nsiproxy        (e9a0a4d07e53d8fea2bb8387a3293c58) C:\windows\system32\drivers\nsiproxy.sys
13:52:14.0634 4960 nsiproxy - ok
13:52:14.0755 4960 Ntfs            (81189c3d7763838e55c397759d49007a) C:\windows\system32\drivers\Ntfs.sys
13:52:14.0897 4960 Ntfs - ok
13:52:15.0104 4960 Null            (f9756a98d69098dca8945d62858a812c) C:\windows\system32\drivers\Null.sys
13:52:15.0191 4960 Null - ok
13:52:15.0302 4960 nvraid          (b3e25ee28883877076e0e1ff877d02e0) C:\windows\system32\drivers\nvraid.sys
13:52:15.0338 4960 nvraid - ok
13:52:15.0356 4960 nvstor          (4380e59a170d88c4f1022eff6719a8a4) C:\windows\system32\drivers\nvstor.sys
13:52:15.0395 4960 nvstor - ok
13:52:15.0423 4960 nv_agp          (5a0983915f02bae73267cc2a041f717d) C:\windows\system32\drivers\nv_agp.sys
13:52:15.0458 4960 nv_agp - ok
13:52:15.0486 4960 ohci1394        (08a70a1f2cdde9bb49b885cb817a66eb) C:\windows\system32\drivers\ohci1394.sys
13:52:15.0525 4960 ohci1394 - ok
13:52:15.0601 4960 ose             (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:52:15.0635 4960 ose - ok
13:52:15.0974 4960 osppsvc         (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
13:52:16.0296 4960 osppsvc - ok
13:52:16.0500 4960 p2pimsvc        (82a8521ddc60710c3d3d3e7325209bec) C:\windows\system32\pnrpsvc.dll
13:52:16.0570 4960 p2pimsvc - ok
13:52:16.0645 4960 p2psvc          (59c3ddd501e39e006dac31bf55150d91) C:\windows\system32\p2psvc.dll
13:52:16.0714 4960 p2psvc - ok
13:52:16.0847 4960 Parport         (2ea877ed5dd9713c5ac74e8ea7348d14) C:\windows\system32\drivers\parport.sys
13:52:16.0922 4960 Parport - ok
13:52:16.0953 4960 partmgr         (3f34a1b4c5f6475f320c275e63afce9b) C:\windows\system32\drivers\partmgr.sys
13:52:16.0986 4960 partmgr - ok
13:52:17.0017 4960 Parvdm          (eb0a59f29c19b86479d36b35983daadc) C:\windows\system32\drivers\parvdm.sys
13:52:17.0066 4960 Parvdm - ok
13:52:17.0113 4960 PcaSvc          (358ab7956d3160000726574083dfc8a6) C:\windows\System32\pcasvc.dll
13:52:17.0184 4960 PcaSvc - ok
13:52:17.0229 4960 pci             (673e55c3498eb970088e812ea820aa8f) C:\windows\system32\drivers\pci.sys
13:52:17.0265 4960 pci - ok
13:52:17.0288 4960 pciide          (afe86f419014db4e5593f69ffe26ce0a) C:\windows\system32\drivers\pciide.sys
13:52:17.0305 4960 pciide - ok
13:52:17.0336 4960 pcmcia          (f396431b31693e71e8a80687ef523506) C:\windows\system32\drivers\pcmcia.sys
13:52:17.0367 4960 pcmcia - ok
13:52:17.0383 4960 pcw             (250f6b43d2b613172035c6747aeeb19f) C:\windows\system32\drivers\pcw.sys
13:52:17.0414 4960 pcw - ok
13:52:17.0477 4960 PEAUTH          (9e0104ba49f4e6973749a02bf41344ed) C:\windows\system32\drivers\peauth.sys
13:52:17.0570 4960 PEAUTH - ok
13:52:17.0703 4960 pla             (414bba67a3ded1d28437eb66aeb8a720) C:\windows\system32\pla.dll
13:52:17.0823 4960 pla - ok
13:52:18.0123 4960 PlugPlay        (ec7bc28d207da09e79b3e9faf8b232ca) C:\windows\system32\umpnpmgr.dll
13:52:18.0194 4960 PlugPlay - ok
13:52:18.0229 4960 PNRPAutoReg     (63ff8572611249931eb16bb8eed6afc8) C:\windows\system32\pnrpauto.dll
13:52:18.0272 4960 PNRPAutoReg - ok
13:52:18.0329 4960 PNRPsvc         (82a8521ddc60710c3d3d3e7325209bec) C:\windows\system32\pnrpsvc.dll
13:52:18.0378 4960 PNRPsvc - ok
13:52:18.0425 4960 PolicyAgent     (53946b69ba0836bd95b03759530c81ec) C:\windows\System32\ipsecsvc.dll
13:52:18.0566 4960 PolicyAgent - ok
13:52:18.0630 4960 Power           (f87d30e72e03d579a5199ccb3831d6ea) C:\windows\system32\umpo.dll
13:52:18.0763 4960 Power - ok
13:52:18.0837 4960 PptpMiniport    (631e3e205ad6d86f2aed6a4a8e69f2db) C:\windows\system32\DRIVERS\raspptp.sys
13:52:18.0994 4960 PptpMiniport - ok
13:52:19.0061 4960 Processor       (85b1e3a0c7585bc4aae6899ec6fcf011) C:\windows\system32\drivers\processr.sys
13:52:19.0114 4960 Processor - ok
13:52:19.0168 4960 ProfSvc         (cadefac453040e370a1bdff3973be00d) C:\windows\system32\profsvc.dll
13:52:19.0220 4960 ProfSvc - ok
13:52:19.0289 4960 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe
13:52:19.0347 4960 ProtectedStorage - ok
13:52:19.0398 4960 Psched          (6270ccae2a86de6d146529fe55b3246a) C:\windows\system32\DRIVERS\pacer.sys
13:52:19.0478 4960 Psched - ok
13:52:19.0562 4960 ql2300          (ab95ecf1f6659a60ddc166d8315b0751) C:\windows\system32\drivers\ql2300.sys
13:52:19.0647 4960 ql2300 - ok
13:52:19.0882 4960 ql40xx          (b4dd51dd25182244b86737dc51af2270) C:\windows\system32\drivers\ql40xx.sys
13:52:19.0919 4960 ql40xx - ok
13:52:19.0974 4960 QWAVE           (31ac809e7707eb580b2bdb760390765a) C:\windows\system32\qwave.dll
13:52:20.0044 4960 QWAVE - ok
13:52:20.0082 4960 QWAVEdrv        (584078ca1b95ca72df2a27c336f9719d) C:\windows\system32\drivers\qwavedrv.sys
13:52:20.0123 4960 QWAVEdrv - ok
13:52:20.0139 4960 RasAcd          (30a81b53c766d0133bb86d234e5556ab) C:\windows\system32\DRIVERS\rasacd.sys
13:52:20.0217 4960 RasAcd - ok
13:52:20.0255 4960 RasAgileVpn     (57ec4aef73660166074d8f7f31c0d4fd) C:\windows\system32\DRIVERS\AgileVpn.sys
13:52:20.0330 4960 RasAgileVpn - ok
13:52:20.0370 4960 RasAuto         (a60f1839849c0c00739787fd5ec03f13) C:\windows\System32\rasauto.dll
13:52:20.0459 4960 RasAuto - ok
13:52:20.0489 4960 Rasl2tp         (d9f91eafec2815365cbe6d167e4e332a) C:\windows\system32\DRIVERS\rasl2tp.sys
13:52:20.0577 4960 Rasl2tp - ok
13:52:20.0656 4960 RasMan          (cb9e04dc05eacf5b9a36ca276d475006) C:\windows\System32\rasmans.dll
13:52:20.0756 4960 RasMan - ok
13:52:20.0841 4960 RasPppoe        (0fe8b15916307a6ac12bfb6a63e45507) C:\windows\system32\DRIVERS\raspppoe.sys
13:52:20.0941 4960 RasPppoe - ok
13:52:20.0985 4960 RasSstp         (44101f495a83ea6401d886e7fd70096b) C:\windows\system32\DRIVERS\rassstp.sys
13:52:21.0059 4960 RasSstp - ok
13:52:21.0083 4960 rdbss           (d528bc58a489409ba40334ebf96a311b) C:\windows\system32\DRIVERS\rdbss.sys
13:52:21.0153 4960 rdbss - ok
13:52:21.0174 4960 rdpbus          (0d8f05481cb76e70e1da06ee9f0da9df) C:\windows\system32\drivers\rdpbus.sys
13:52:21.0226 4960 rdpbus - ok
13:52:21.0254 4960 RDPCDD          (23dae03f29d253ae74c44f99e515f9a1) C:\windows\system32\DRIVERS\RDPCDD.sys
13:52:21.0328 4960 RDPCDD - ok
13:52:21.0365 4960 RDPENCDD        (5a53ca1598dd4156d44196d200c94b8a) C:\windows\system32\drivers\rdpencdd.sys
13:52:21.0446 4960 RDPENCDD - ok
13:52:21.0472 4960 RDPREFMP        (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\windows\system32\drivers\rdprefmp.sys
13:52:21.0546 4960 RDPREFMP - ok
13:52:21.0601 4960 RDPWD           (f031683e6d1fea157abb2ff260b51e61) C:\windows\system32\drivers\RDPWD.sys
13:52:21.0658 4960 RDPWD - ok
13:52:21.0751 4960 rdyboost        (518395321dc96fe2c9f0e96ac743b656) C:\windows\system32\drivers\rdyboost.sys
13:52:21.0788 4960 rdyboost - ok
13:52:21.0886 4960 RemoteAccess    (7b5e1419717fac363a31cc302895217a) C:\windows\System32\mprdim.dll
13:52:22.0007 4960 RemoteAccess - ok
13:52:22.0047 4960 RemoteRegistry  (cb9a8683f4ef2bf99e123d79950d7935) C:\windows\system32\regsvc.dll
13:52:22.0133 4960 RemoteRegistry - ok
13:52:22.0180 4960 RFCOMM          (cb928d9e6daf51879dd6ba8d02f01321) C:\windows\system32\DRIVERS\rfcomm.sys
13:52:22.0235 4960 RFCOMM - ok
13:52:22.0426 4960 RichVideo       (f12a68ed55053940cadd59ca5e3468dd) C:\Program Files\CyberLink\Shared files\RichVideo.exe
13:52:22.0474 4960 RichVideo ( UnsignedFile.Multi.Generic ) - warning
13:52:22.0474 4960 RichVideo - detected UnsignedFile.Multi.Generic (1)
13:52:22.0537 4960 RpcEptMapper    (78d072f35bc45d9e4e1b61895c152234) C:\windows\System32\RpcEpMap.dll
13:52:22.0629 4960 RpcEptMapper - ok
13:52:22.0665 4960 RpcLocator      (94d36c0e44677dd26981d2bfeef2a29d) C:\windows\system32\locator.exe
13:52:22.0767 4960 RpcLocator - ok
13:52:22.0800 4960 RpcSs           (7660f01d3b38aca1747e397d21d790af) C:\windows\system32\rpcss.dll
13:52:22.0878 4960 RpcSs - ok
13:52:22.0934 4960 rspndr          (032b0d36ad92b582d869879f5af5b928) C:\windows\system32\DRIVERS\rspndr.sys
13:52:23.0081 4960 rspndr - ok
13:52:23.0133 4960 RTL8167         (558684c0bef37c5be04940ee4e607b68) C:\windows\system32\DRIVERS\Rt86win7.sys
13:52:23.0175 4960 RTL8167 - ok
13:52:23.0272 4960 rtport          (41ce6b172542a9a227e34a45881e1d2a) C:\windows\system32\drivers\rtport.sys
13:52:23.0316 4960 rtport - ok
13:52:23.0366 4960 SABI            (6e5fbb7cbaec47038b945d5e9b144a64) C:\windows\system32\Drivers\SABI.sys
13:52:23.0413 4960 SABI - ok
13:52:23.0460 4960 SamSs           (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe
13:52:23.0504 4960 SamSs - ok
13:52:23.0566 4960 Samsung UPD Service (bd26a150dc292913e48ee2b950372dfd) C:\windows\System32\SUPDSvc.exe
13:52:23.0605 4960 Samsung UPD Service - ok
13:52:23.0670 4960 sbp2port        (05d860da1040f111503ac416ccef2bca) C:\windows\system32\drivers\sbp2port.sys
13:52:23.0716 4960 sbp2port - ok
13:52:23.0795 4960 SCardSvr        (8fc518ffe9519c2631d37515a68009c4) C:\windows\System32\SCardSvr.dll
13:52:23.0886 4960 SCardSvr - ok
13:52:23.0919 4960 scfilter        (0693b5ec673e34dc147e195779a4dcf6) C:\windows\system32\DRIVERS\scfilter.sys
13:52:23.0997 4960 scfilter - ok
13:52:24.0040 4960 Schedule        (a04bb13f8a72f8b6e8b4071723e4e336) C:\windows\system32\schedsvc.dll
13:52:24.0148 4960 Schedule - ok
13:52:24.0179 4960 SCPolicySvc     (319c6b309773d063541d01df8ac6f55f) C:\windows\System32\certprop.dll
13:52:24.0241 4960 SCPolicySvc - ok
13:52:24.0302 4960 SDRSVC          (08236c4bce5edd0a0318a438af28e0f7) C:\windows\System32\SDRSVC.dll
13:52:24.0360 4960 SDRSVC - ok
13:52:24.0542 4960 SeaPort         (cc781378e7eda615d2cdca3b17829fa4) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
13:52:24.0589 4960 SeaPort - ok
13:52:24.0652 4960 secdrv          (90a3935d05b494a5a39d37e71f09a677) C:\windows\system32\drivers\secdrv.sys
13:52:24.0788 4960 secdrv - ok
13:52:24.0832 4960 seclogon        (a59b3a4442c52060cc7a85293aa3546f) C:\windows\system32\seclogon.dll
13:52:24.0986 4960 seclogon - ok
13:52:25.0023 4960 SENS            (dcb7fcdcc97f87360f75d77425b81737) C:\windows\system32\sens.dll
13:52:25.0114 4960 SENS - ok
13:52:25.0152 4960 Serenum         (9ad8b8b515e3df6acd4212ef465de2d1) C:\windows\system32\drivers\serenum.sys
13:52:25.0189 4960 Serenum - ok
13:52:25.0231 4960 Serial          (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\windows\system32\drivers\serial.sys
13:52:25.0300 4960 Serial - ok
13:52:25.0309 4960 sermouse        (79bffb520327ff916a582dfea17aa813) C:\windows\system32\drivers\sermouse.sys
13:52:25.0352 4960 sermouse - ok
13:52:25.0422 4960 SessionEnv      (4ae380f39a0032eab7dd953030b26d28) C:\windows\system32\sessenv.dll
13:52:25.0509 4960 SessionEnv - ok
13:52:25.0521 4960 sffdisk         (9f976e1eb233df46fce808d9dea3eb9c) C:\windows\system32\drivers\sffdisk.sys
13:52:25.0559 4960 sffdisk - ok
13:52:25.0567 4960 sffp_mmc        (932a68ee27833cfd57c1639d375f2731) C:\windows\system32\drivers\sffp_mmc.sys
13:52:25.0623 4960 sffp_mmc - ok
13:52:25.0632 4960 sffp_sd         (6d4ccaedc018f1cf52866bbbaa235982) C:\windows\system32\drivers\sffp_sd.sys
13:52:25.0681 4960 sffp_sd - ok
13:52:25.0701 4960 sfloppy         (db96666cc8312ebc45032f30b007a547) C:\windows\system32\drivers\sfloppy.sys
13:52:25.0746 4960 sfloppy - ok
13:52:25.0834 4960 Sftfs           (d9b734638dd8dba9d59aad3189cd0fad) C:\windows\system32\DRIVERS\Sftfslh.sys
13:52:25.0886 4960 Sftfs - ok
13:52:26.0016 4960 sftlist         (cb73bc422c07fb611f194da18d1e7f36) C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
13:52:26.0066 4960 sftlist - ok
13:52:26.0114 4960 Sftplay         (2f61bd46c0bff4eb36e1e359ca17bfc5) C:\windows\system32\DRIVERS\Sftplaylh.sys
13:52:26.0149 4960 Sftplay - ok
13:52:26.0176 4960 Sftredir        (518bac0179f94304f422696b47c0ec12) C:\windows\system32\DRIVERS\Sftredirlh.sys
13:52:26.0204 4960 Sftredir - ok
13:52:26.0237 4960 Sftvol          (747325236d88b3f05ffd27ff9ec711c5) C:\windows\system32\DRIVERS\Sftvollh.sys
13:52:26.0265 4960 Sftvol - ok
13:52:26.0301 4960 sftvsa          (a5812f0281ca5081bf696626f9bf324d) C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
13:52:26.0339 4960 sftvsa - ok
13:52:26.0407 4960 SharedAccess    (d1a079a0de2ea524513b6930c24527a2) C:\windows\System32\ipnathlp.dll
13:52:26.0502 4960 SharedAccess - ok
13:52:26.0550 4960 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\windows\System32\shsvcs.dll
13:52:26.0646 4960 ShellHWDetection - ok
13:52:26.0680 4960 sisagp          (2565cac0dc9fe0371bdce60832582b2e) C:\windows\system32\drivers\sisagp.sys
13:52:26.0713 4960 sisagp - ok
13:52:26.0758 4960 SiSRaid2        (a9f0486851becb6dda1d89d381e71055) C:\windows\system32\drivers\SiSRaid2.sys
13:52:26.0792 4960 SiSRaid2 - ok
13:52:26.0860 4960 SiSRaid4        (3727097b55738e2f554972c3be5bc1aa) C:\windows\system32\drivers\sisraid4.sys
13:52:26.0912 4960 SiSRaid4 - ok
13:52:26.0950 4960 Smb             (3e21c083b8a01cb70ba1f09303010fce) C:\windows\system32\DRIVERS\smb.sys
13:52:27.0032 4960 Smb - ok
13:52:27.0091 4960 SNMPTRAP        (6a984831644eca1a33ffeae4126f4f37) C:\windows\System32\snmptrap.exe
13:52:27.0148 4960 SNMPTRAP - ok
13:52:27.0176 4960 spldr           (95cf1ae7527fb70f7816563cbc09d942) C:\windows\system32\drivers\spldr.sys
13:52:27.0208 4960 spldr - ok
13:52:27.0246 4960 Spooler         (866a43013535dc8587c258e43579c764) C:\windows\System32\spoolsv.exe
13:52:27.0324 4960 Spooler - ok
13:52:27.0500 4960 sppsvc          (cf87a1de791347e75b98885214ced2b8) C:\windows\system32\sppsvc.exe
13:52:27.0654 4960 sppsvc - ok
13:52:27.0860 4960 sppuinotify     (b0180b20b065d89232a78a40fe56eaa6) C:\windows\system32\sppuinotify.dll
13:52:27.0958 4960 sppuinotify - ok
13:52:28.0083 4960 srv             (e4c2764065d66ea1d2d3ebc28fe99c46) C:\windows\system32\DRIVERS\srv.sys
13:52:28.0145 4960 srv - ok
13:52:28.0177 4960 srv2            (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\windows\system32\DRIVERS\srv2.sys
13:52:28.0223 4960 srv2 - ok
13:52:28.0239 4960 srvnet          (be6bd660caa6f291ae06a718a4fa8abc) C:\windows\system32\DRIVERS\srvnet.sys
13:52:28.0286 4960 srvnet - ok
13:52:28.0333 4960 SSDPSRV         (d887c9fd02ac9fa880f6e5027a43e118) C:\windows\System32\ssdpsrv.dll
13:52:28.0426 4960 SSDPSRV - ok
13:52:28.0442 4960 SstpSvc         (d318f23be45d5e3a107469eb64815b50) C:\windows\system32\sstpsvc.dll
13:52:28.0556 4960 SstpSvc - ok
13:52:28.0604 4960 stexstor        (db32d325c192b801df274bfd12a7e72b) C:\windows\system32\drivers\stexstor.sys
13:52:28.0637 4960 stexstor - ok
13:52:28.0693 4960 StillCam        (edb05bd63148796f23ea78506404a538) C:\windows\system32\DRIVERS\serscan.sys
13:52:28.0761 4960 StillCam - ok
13:52:28.0850 4960 StiSvc          (e1fb3706030fb4578a0d72c2fc3689e4) C:\windows\System32\wiaservc.dll
13:52:28.0935 4960 StiSvc - ok
13:52:28.0973 4960 swenum          (e58c78a848add9610a4db6d214af5224) C:\windows\system32\DRIVERS\swenum.sys
13:52:29.0004 4960 swenum - ok
13:52:29.0046 4960 swprv           (a28bd92df340e57b024ba433165d34d7) C:\windows\System32\swprv.dll
13:52:29.0142 4960 swprv - ok
13:52:29.0220 4960 SysMain         (36650d618ca34c9d357dfd3d89b2c56f) C:\windows\system32\sysmain.dll
13:52:29.0325 4960 SysMain - ok
13:52:29.0368 4960 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\windows\System32\TabSvc.dll
13:52:29.0421 4960 TabletInputService - ok
13:52:29.0468 4960 TapiSrv         (613bf4820361543956909043a265c6ac) C:\windows\System32\tapisrv.dll
13:52:29.0546 4960 TapiSrv - ok
13:52:29.0580 4960 TBS             (b799d9fdb26111737f58288d8dc172d9) C:\windows\System32\tbssvc.dll
13:52:29.0670 4960 TBS - ok
13:52:29.0825 4960 Tcpip           (7fa2e0f8b072bd04b77b421480b6cc22) C:\windows\system32\drivers\tcpip.sys
13:52:29.0962 4960 Tcpip - ok
13:52:30.0195 4960 TCPIP6          (7fa2e0f8b072bd04b77b421480b6cc22) C:\windows\system32\DRIVERS\tcpip.sys
13:52:30.0269 4960 TCPIP6 - ok
13:52:30.0365 4960 tcpipreg        (cca24162e055c3714ce5a88b100c64ed) C:\windows\system32\drivers\tcpipreg.sys
13:52:30.0442 4960 tcpipreg - ok
13:52:30.0466 4960 TDPIPE          (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\windows\system32\drivers\tdpipe.sys
13:52:30.0499 4960 TDPIPE - ok
13:52:30.0536 4960 TDTCP           (2c2c5afe7ee4f620d69c23c0617651a8) C:\windows\system32\drivers\tdtcp.sys
13:52:30.0586 4960 TDTCP - ok
13:52:30.0597 4960 tdx             (b459575348c20e8121d6039da063c704) C:\windows\system32\DRIVERS\tdx.sys
13:52:30.0663 4960 tdx - ok
13:52:30.0680 4960 TermDD          (04dbf4b01ea4bf25a9a3e84affac9b20) C:\windows\system32\DRIVERS\termdd.sys
13:52:30.0714 4960 TermDD - ok
13:52:30.0778 4960 TermService     (382c804c92811be57829d8e550a900e2) C:\windows\System32\termsrv.dll
13:52:30.0877 4960 TermService - ok
13:52:30.0888 4960 Themes          (42fb6afd6b79d9fe07381609172e7ca4) C:\windows\system32\themeservice.dll
13:52:30.0952 4960 Themes - ok
13:52:30.0990 4960 THREADORDER     (146b6f43a673379a3c670e86d89be5ea) C:\windows\system32\mmcss.dll
13:52:31.0062 4960 THREADORDER - ok
13:52:31.0134 4960 TrkWks          (4792c0378db99a9bc2ae2de6cfff0c3a) C:\windows\System32\trkwks.dll
13:52:31.0225 4960 TrkWks - ok
13:52:31.0291 4960 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\windows\servicing\TrustedInstaller.exe
13:52:31.0381 4960 TrustedInstaller - ok
13:52:31.0411 4960 tssecsrv        (254bb140eee3c59d6114c1a86b636877) C:\windows\system32\DRIVERS\tssecsrv.sys
13:52:31.0474 4960 tssecsrv - ok
13:52:31.0500 4960 TsUsbFlt        (fd1d6c73e6333be727cbcc6054247654) C:\windows\system32\drivers\tsusbflt.sys
13:52:31.0544 4960 TsUsbFlt - ok
13:52:31.0616 4960 TsUsbGD         (01246f0baad7b68ec0f472aa41e33282) C:\windows\system32\drivers\TsUsbGD.sys
13:52:31.0682 4960 TsUsbGD - ok
13:52:31.0719 4960 tunnel          (b2fa25d9b17a68bb93d58b0556e8c90d) C:\windows\system32\DRIVERS\tunnel.sys
13:52:31.0785 4960 tunnel - ok
13:52:31.0796 4960 uagp35          (750fbcb269f4d7dd2e420c56b795db6d) C:\windows\system32\drivers\uagp35.sys
13:52:31.0829 4960 uagp35 - ok
13:52:31.0857 4960 udfs            (ee43346c7e4b5e63e54f927babbb32ff) C:\windows\system32\DRIVERS\udfs.sys
13:52:31.0944 4960 udfs - ok
13:52:31.0986 4960 UI0Detect       (8344fd4fce927880aa1aa7681d4927e5) C:\windows\system32\UI0Detect.exe
13:52:32.0075 4960 UI0Detect - ok
13:52:32.0134 4960 uliagpkx        (44e8048ace47befbfdc2e9be4cbc8880) C:\windows\system32\drivers\uliagpkx.sys
13:52:32.0170 4960 uliagpkx - ok
13:52:32.0237 4960 umbus           (d295bed4b898f0fd999fcfa9b32b071b) C:\windows\system32\DRIVERS\umbus.sys
13:52:32.0291 4960 umbus - ok
13:52:32.0305 4960 UmPass          (7550ad0c6998ba1cb4843e920ee0feac) C:\windows\system32\drivers\umpass.sys
13:52:32.0369 4960 UmPass - ok
13:52:32.0409 4960 upnphost        (833fbb672460efce8011d262175fad33) C:\windows\System32\upnphost.dll
13:52:32.0503 4960 upnphost - ok
13:52:32.0563 4960 usbbus          (9419faac6552a51542dbba02971c841c) C:\windows\system32\DRIVERS\lgusbbus.sys
13:52:32.0670 4960 usbbus - ok
13:52:32.0730 4960 usbccgp         (bd9c55d7023c5de374507acc7a14e2ac) C:\windows\system32\DRIVERS\usbccgp.sys
13:52:32.0769 4960 usbccgp - ok
13:52:32.0855 4960 usbcir          (04ec7cec62ec3b6d9354eee93327fc82) C:\windows\system32\drivers\usbcir.sys
13:52:32.0905 4960 usbcir - ok
13:52:32.0980 4960 UsbDiag         (c0a466fa4ffec464320e159bc1bbdc0c) C:\windows\system32\DRIVERS\lgusbdiag.sys
13:52:33.0011 4960 UsbDiag - ok
13:52:33.0105 4960 usbehci         (f92de757e4b7ce9c07c5e65423f3ae3b) C:\windows\system32\DRIVERS\usbehci.sys
13:52:33.0152 4960 usbehci - ok
13:52:33.0207 4960 usbfilter       (08369f1fdd7c0d4287373d253d64d75e) C:\windows\system32\DRIVERS\usbfilter.sys
13:52:33.0240 4960 usbfilter - ok
13:52:33.0347 4960 usbhub          (8dc94aec6a7e644a06135ae7506dc2e9) C:\windows\system32\DRIVERS\usbhub.sys
13:52:33.0417 4960 usbhub - ok
13:52:33.0446 4960 USBModem        (f74a54774a9b0afeb3c40adec68aa600) C:\windows\system32\DRIVERS\lgusbmodem.sys
13:52:33.0490 4960 USBModem - ok
13:52:33.0516 4960 usbohci         (e185d44fac515a18d9deddc23c2cdf44) C:\windows\system32\DRIVERS\usbohci.sys
13:52:33.0612 4960 usbohci - ok
13:52:33.0647 4960 usbprint        (797d862fe0875e75c7cc4c1ad7b30252) C:\windows\system32\drivers\usbprint.sys
13:52:33.0705 4960 usbprint - ok
13:52:33.0771 4960 USBSTOR         (f991ab9cc6b908db552166768176896a) C:\windows\system32\DRIVERS\USBSTOR.SYS
13:52:33.0814 4960 USBSTOR - ok
13:52:33.0853 4960 usbuhci         (68df884cf41cdada664beb01daf67e3d) C:\windows\system32\drivers\usbuhci.sys
13:52:33.0902 4960 usbuhci - ok
13:52:33.0984 4960 usbvideo        (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\windows\system32\Drivers\usbvideo.sys
13:52:34.0041 4960 usbvideo - ok
13:52:34.0089 4960 UxSms           (081e6e1c91aec36758902a9f727cd23c) C:\windows\System32\uxsms.dll
13:52:34.0176 4960 UxSms - ok
13:52:34.0232 4960 VaultSvc        (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe
13:52:34.0270 4960 VaultSvc - ok
13:52:34.0316 4960 vdrvroot        (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\windows\system32\drivers\vdrvroot.sys
13:52:34.0350 4960 vdrvroot - ok
13:52:34.0405 4960 vds             (c3cd30495687c2a2f66a65ca6fd89be9) C:\windows\System32\vds.exe
13:52:34.0493 4960 vds - ok
13:52:34.0546 4960 vga             (17c408214ea61696cec9c66e388b14f3) C:\windows\system32\DRIVERS\vgapnp.sys
13:52:34.0656 4960 vga - ok
13:52:34.0683 4960 VgaSave         (8e38096ad5c8570a6f1570a61e251561) C:\windows\System32\drivers\vga.sys
13:52:34.0765 4960 VgaSave - ok
13:52:34.0792 4960 vhdmp           (5461686cca2fda57b024547733ab42e3) C:\windows\system32\drivers\vhdmp.sys
13:52:34.0830 4960 vhdmp - ok
13:52:34.0881 4960 viaagp          (c829317a37b4bea8f39735d4b076e923) C:\windows\system32\drivers\viaagp.sys
13:52:34.0917 4960 viaagp - ok
13:52:34.0932 4960 ViaC7           (e02f079a6aa107f06b16549c6e5c7b74) C:\windows\system32\drivers\viac7.sys
13:52:34.0986 4960 ViaC7 - ok
13:52:35.0013 4960 viaide          (e43574f6a56a0ee11809b48c09e4fd3c) C:\windows\system32\drivers\viaide.sys
13:52:35.0050 4960 viaide - ok
13:52:35.0085 4960 volmgr          (4c63e00f2f4b5f86ab48a58cd990f212) C:\windows\system32\drivers\volmgr.sys
13:52:35.0120 4960 volmgr - ok
13:52:35.0143 4960 volmgrx         (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\windows\system32\drivers\volmgrx.sys
13:52:35.0186 4960 volmgrx - ok
13:52:35.0236 4960 volsnap         (c37aee5966eb5929e2051ac7409b5730) C:\windows\system32\drivers\volsnap.sys
13:52:35.0278 4960 volsnap - ok
13:52:35.0333 4960 vsmraid         (9dfa0cc2f8855a04816729651175b631) C:\windows\system32\drivers\vsmraid.sys
13:52:35.0371 4960 vsmraid - ok
13:52:35.0462 4960 VSS             (209a3b1901b83aeb8527ed211cce9e4c) C:\windows\system32\vssvc.exe
13:52:35.0578 4960 VSS - ok
13:52:35.0603 4960 vwifibus        (90567b1e658001e79d7c8bbd3dde5aa6) C:\windows\system32\DRIVERS\vwifibus.sys
13:52:35.0655 4960 vwifibus - ok
13:52:35.0699 4960 vwififlt        (632f1b4b573b19ce0c80df8432d1f65d) C:\windows\system32\DRIVERS\vwififlt.sys
13:52:35.0735 4960 vwififlt - ok
13:52:35.0787 4960 W32Time         (55187fd710e27d5095d10a472c8baf1c) C:\windows\system32\w32time.dll
13:52:35.0886 4960 W32Time - ok
13:52:35.0923 4960 WacomPen        (de3721e89c653aa281428c8a69745d90) C:\windows\system32\drivers\wacompen.sys
13:52:35.0978 4960 WacomPen - ok
13:52:36.0021 4960 WANARP          (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys
13:52:36.0103 4960 WANARP - ok
13:52:36.0109 4960 Wanarpv6        (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys
13:52:36.0173 4960 Wanarpv6 - ok
13:52:36.0270 4960 wbengine        (691e3285e53dca558e1a84667f13e15a) C:\windows\system32\wbengine.exe
13:52:36.0346 4960 wbengine - ok
13:52:36.0387 4960 WbioSrvc        (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\windows\System32\wbiosrvc.dll
13:52:36.0455 4960 WbioSrvc - ok
13:52:36.0494 4960 wcncsvc         (34eee0dfaadb4f691d6d5308a51315dc) C:\windows\System32\wcncsvc.dll
13:52:36.0554 4960 wcncsvc - ok
13:52:36.0584 4960 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\windows\System32\WcsPlugInService.dll
13:52:36.0647 4960 WcsPlugInService - ok
13:52:36.0714 4960 Wd              (1112a9badacb47b7c0bb0392e3158dff) C:\windows\system32\drivers\wd.sys
13:52:36.0750 4960 Wd - ok
13:52:36.0801 4960 Wdf01000        (9950e3d0f08141c7e89e64456ae7dc73) C:\windows\system32\drivers\Wdf01000.sys
13:52:36.0849 4960 Wdf01000 - ok
13:52:36.0887 4960 WdiServiceHost  (46ef9dc96265fd0b423db72e7c38c2a5) C:\windows\system32\wdi.dll
13:52:36.0940 4960 WdiServiceHost - ok
13:52:36.0948 4960 WdiSystemHost   (46ef9dc96265fd0b423db72e7c38c2a5) C:\windows\system32\wdi.dll
13:52:36.0999 4960 WdiSystemHost - ok
13:52:37.0032 4960 WebClient       (a9d880f97530d5b8fee278923349929d) C:\windows\System32\webclnt.dll
13:52:37.0098 4960 WebClient - ok
13:52:37.0122 4960 Wecsvc          (760f0afe937a77cff27153206534f275) C:\windows\system32\wecsvc.dll
13:52:37.0203 4960 Wecsvc - ok
13:52:37.0224 4960 wercplsupport   (ac804569bb2364fb6017370258a4091b) C:\windows\System32\wercplsupport.dll
13:52:37.0299 4960 wercplsupport - ok
13:52:37.0317 4960 WerSvc          (08e420d873e4fd85241ee2421b02c4a4) C:\windows\System32\WerSvc.dll
13:52:37.0400 4960 WerSvc - ok
13:52:37.0455 4960 WfpLwf          (8b9a943f3b53861f2bfaf6c186168f79) C:\windows\system32\DRIVERS\wfplwf.sys
13:52:37.0574 4960 WfpLwf - ok
13:52:37.0607 4960 WIMMount        (5cf95b35e59e2a38023836fff31be64c) C:\windows\system32\drivers\wimmount.sys
13:52:37.0640 4960 WIMMount - ok
13:52:37.0829 4960 WinDefend       (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
13:52:37.0926 4960 WinDefend - ok
13:52:37.0938 4960 WinHttpAutoProxySvc - ok
13:52:38.0009 4960 Winmgmt         (f62e510b6ad4c21eb9fe8668ed251826) C:\windows\system32\wbem\WMIsvc.dll
13:52:38.0088 4960 Winmgmt - ok
13:52:38.0201 4960 WinRM           (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\windows\system32\WsmSvc.dll
13:52:38.0317 4960 WinRM - ok
13:52:38.0428 4960 WinUsb          (a67e5f9a400f3bd1be3d80613b45f708) C:\windows\system32\DRIVERS\WinUsb.sys
13:52:38.0496 4960 WinUsb - ok
13:52:38.0575 4960 Wlansvc         (16935c98ff639d185086a3529b1f2067) C:\windows\System32\wlansvc.dll
13:52:38.0648 4960 Wlansvc - ok
13:52:38.0751 4960 wlcrasvc        (6067acef367e79914af628fa1e9b5330) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
13:52:38.0788 4960 wlcrasvc - ok
13:52:38.0992 4960 wlidsvc         (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:52:39.0092 4960 wlidsvc - ok
13:52:39.0304 4960 WmiAcpi         (0217679b8fca58714c3bf2726d2ca84e) C:\windows\system32\drivers\wmiacpi.sys
13:52:39.0347 4960 WmiAcpi - ok
13:52:39.0431 4960 wmiApSrv        (6eb6b66517b048d87dc1856ddf1f4c3f) C:\windows\system32\wbem\WmiApSrv.exe
13:52:39.0483 4960 wmiApSrv - ok
13:52:39.0627 4960 WMPNetworkSvc   (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
13:52:39.0717 4960 WMPNetworkSvc - ok
13:52:39.0887 4960 WPCSvc          (a2f0ec770a92f2b3f9de6d518e11409c) C:\windows\System32\wpcsvc.dll
13:52:39.0933 4960 WPCSvc - ok
13:52:39.0959 4960 WPDBusEnum      (aa53356d60af47eacc85bc617a4f3f66) C:\windows\system32\wpdbusenum.dll
13:52:40.0023 4960 WPDBusEnum - ok
13:52:40.0103 4960 ws2ifsl         (6db3276587b853bf886b69528fdb048c) C:\windows\system32\drivers\ws2ifsl.sys
13:52:40.0190 4960 ws2ifsl - ok
13:52:40.0229 4960 wscsvc          (6f5d49efe0e7164e03ae773a3fe25340) C:\windows\system32\wscsvc.dll
13:52:40.0294 4960 wscsvc - ok
13:52:40.0303 4960 WSearch - ok
13:52:40.0445 4960 wuauserv        (3026418a50c5b4761befa632cedb7406) C:\windows\system32\wuaueng.dll
13:52:40.0571 4960 wuauserv - ok
13:52:40.0769 4960 WudfPf          (e714a1c0354636837e20ccbf00888ee7) C:\windows\system32\drivers\WudfPf.sys
13:52:40.0860 4960 WudfPf - ok
13:52:40.0920 4960 WUDFRd          (1023ee888c9b47178c5293ed5336ab69) C:\windows\system32\DRIVERS\WUDFRd.sys
13:52:41.0003 4960 WUDFRd - ok
13:52:41.0056 4960 wudfsvc         (8d1e1e529a2c9e9b6a85b55a345f7629) C:\windows\System32\WUDFSvc.dll
13:52:41.0152 4960 wudfsvc - ok
13:52:41.0190 4960 WwanSvc         (ff2d745b560f7c71b31f30f4d49f73d2) C:\windows\System32\wwansvc.dll
13:52:41.0273 4960 WwanSvc - ok
13:52:41.0349 4960 MBR (0x1B8)     (2e5debb2116b3417023e0d6562d7ed07) \Device\Harddisk0\DR0
13:52:41.0872 4960 \Device\Harddisk0\DR0 - ok
13:52:41.0958 4960 Boot (0x1200)   (82058dd2cbc9b925aabfa0936689c7ab) \Device\Harddisk0\DR0\Partition0
13:52:41.0963 4960 \Device\Harddisk0\DR0\Partition0 - ok
13:52:41.0981 4960 Boot (0x1200)   (5290be75d95588eeb0381bcf2a011ac5) \Device\Harddisk0\DR0\Partition1
13:52:41.0986 4960 \Device\Harddisk0\DR0\Partition1 - ok
13:52:42.0009 4960 Boot (0x1200)   (70b7824e264662f90b18996fe4e61a1c) \Device\Harddisk0\DR0\Partition2
13:52:42.0013 4960 \Device\Harddisk0\DR0\Partition2 - ok
13:52:42.0014 4960 ============================================================
13:52:42.0014 4960 Scan finished
13:52:42.0014 4960 ============================================================
13:52:42.0178 5196 Detected object count: 1
13:52:42.0178 5196 Actual detected object count: 1
13:53:33.0653 5196 RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
13:53:33.0654 5196 RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:53:36.0594 4836 ============================================================
13:53:36.0594 4836 Scan started
13:53:36.0594 4836 Mode: Manual; SigCheck; TDLFS;
13:53:36.0594 4836 ============================================================
13:53:36.0820 4836 1394ohci        (1b133875b8aa8ac48969bd3458afe9f5) C:\windows\system32\drivers\1394ohci.sys
13:53:36.0882 4836 1394ohci - ok
13:53:36.0917 4836 ACPI            (cea80c80bed809aa0da6febc04733349) C:\windows\system32\drivers\ACPI.sys
13:53:36.0956 4836 ACPI - ok
13:53:36.0981 4836 AcpiPmi         (1efbc664abff416d1d07db115dcb264f) C:\windows\system32\drivers\acpipmi.sys
13:53:37.0018 4836 AcpiPmi - ok
13:53:37.0085 4836 adp94xx         (21e785ebd7dc90a06391141aac7892fb) C:\windows\system32\drivers\adp94xx.sys
13:53:37.0132 4836 adp94xx - ok
13:53:37.0172 4836 adpahci         (0c676bc278d5b59ff5abd57bbe9123f2) C:\windows\system32\drivers\adpahci.sys
13:53:37.0211 4836 adpahci - ok
13:53:37.0255 4836 adpu320         (7c7b5ee4b7b822ec85321fe23a27db33) C:\windows\system32\drivers\adpu320.sys
13:53:37.0288 4836 adpu320 - ok
13:53:37.0326 4836 AeLookupSvc     (8b5eefeec1e6d1a72a06c526628ad161) C:\windows\System32\aelupsvc.dll
13:53:37.0389 4836 AeLookupSvc - ok
13:53:37.0452 4836 AFD             (9ebbba55060f786f0fcaa3893bfa2806) C:\windows\system32\drivers\afd.sys
13:53:37.0492 4836 AFD - ok
13:53:37.0537 4836 agp440          (507812c3054c21cef746b6ee3d04dd6e) C:\windows\system32\drivers\agp440.sys
13:53:37.0567 4836 agp440 - ok
13:53:37.0595 4836 aic78xx         (8b30250d573a8f6b4bd23195160d8707) C:\windows\system32\drivers\djsvs.sys
13:53:37.0627 4836 aic78xx - ok
13:53:37.0662 4836 ALG             (18a54e132947cd98fea9accc57f98f13) C:\windows\System32\alg.exe
13:53:37.0696 4836 ALG - ok
13:53:37.0722 4836 aliide          (0d40bcf52ea90fc7df2aeab6503dea44) C:\windows\system32\drivers\aliide.sys
13:53:37.0751 4836 aliide - ok
13:53:37.0797 4836 AMD External Events Utility (aae19c2290142740658b1a35cb96b836) C:\windows\system32\atiesrxx.exe
13:53:37.0837 4836 AMD External Events Utility - ok
13:53:37.0882 4836 amdagp          (3c6600a0696e90a463771c7422e23ab5) C:\windows\system32\drivers\amdagp.sys
13:53:37.0913 4836 amdagp - ok
13:53:37.0930 4836 amdide          (cd5914170297126b6266860198d1d4f0) C:\windows\system32\drivers\amdide.sys
13:53:37.0960 4836 amdide - ok
13:53:37.0970 4836 AmdK8           (00dda200d71bac534bf56a9db5dfd666) C:\windows\system32\drivers\amdk8.sys
13:53:38.0007 4836 AmdK8 - ok
13:53:38.0442 4836 amdkmdag        (978d7ad6280ca2537d29d50149192c18) C:\windows\system32\DRIVERS\atikmdag.sys
13:53:38.0666 4836 amdkmdag - ok
13:53:38.0927 4836 amdkmdap        (cc31467a1d0540f56803ffef7ec21644) C:\windows\system32\DRIVERS\atikmpag.sys
13:53:38.0975 4836 amdkmdap - ok
13:53:39.0012 4836 AmdPPM          (3cbf30f5370fda40dd3e87df38ea53b6) C:\windows\system32\DRIVERS\amdppm.sys
13:53:39.0047 4836 AmdPPM - ok
13:53:39.0140 4836 amdsata         (d320bf87125326f996d4904fe24300fc) C:\windows\system32\drivers\amdsata.sys
13:53:39.0171 4836 amdsata - ok
13:53:39.0201 4836 amdsbs          (ea43af0c423ff267355f74e7a53bdaba) C:\windows\system32\drivers\amdsbs.sys
13:53:39.0236 4836 amdsbs - ok
13:53:39.0281 4836 amdxata         (46387fb17b086d16dea267d5be23a2f2) C:\windows\system32\drivers\amdxata.sys
13:53:39.0310 4836 amdxata - ok
13:53:39.0358 4836 amd_sata        (d4d9f054f50cc176b8ad96957cbf34a0) C:\windows\system32\DRIVERS\amd_sata.sys
13:53:39.0389 4836 amd_sata - ok
13:53:39.0410 4836 amd_xata        (3d50f8f1a7bec39e3225203a34bb2bf6) C:\windows\system32\DRIVERS\amd_xata.sys
13:53:39.0439 4836 amd_xata - ok
13:53:39.0521 4836 AppID           (aea177f783e20150ace5383ee368da19) C:\windows\system32\drivers\appid.sys
13:53:39.0589 4836 AppID - ok
13:53:39.0635 4836 AppIDSvc        (62a9c86cb6085e20db4823e4e97826f5) C:\windows\System32\appidsvc.dll
13:53:39.0697 4836 AppIDSvc - ok
13:53:39.0715 4836 Appinfo         (fb1959012294d6ad43e5304df65e3c26) C:\windows\System32\appinfo.dll
13:53:39.0777 4836 Appinfo - ok
13:53:39.0817 4836 arc             (2932004f49677bd84dbc72edb754ffb3) C:\windows\system32\drivers\arc.sys
13:53:39.0850 4836 arc - ok
13:53:39.0879 4836 arcsas          (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\windows\system32\drivers\arcsas.sys
13:53:39.0912 4836 arcsas - ok
13:53:39.0937 4836 aswFsBlk        (0ae43c6c411254049279c2ee55630f95) C:\windows\system32\drivers\aswFsBlk.sys
13:53:39.0968 4836 aswFsBlk - ok
13:53:40.0016 4836 aswMonFlt       (6693141560b1615d8dccf0d8eb00087e) C:\windows\system32\drivers\aswMonFlt.sys
13:53:40.0046 4836 aswMonFlt - ok
13:53:40.0120 4836 aswRdr          (225013c16fe096714d71649ad7a20e8b) C:\windows\System32\Drivers\aswrdr2.sys
13:53:40.0149 4836 aswRdr - ok
13:53:40.0217 4836 aswSnx          (dcb199b967375753b5019ec15f008f53) C:\windows\system32\drivers\aswSnx.sys
13:53:40.0265 4836 aswSnx - ok
13:53:40.0307 4836 aswSP           (b32873e5a1443c0a1e322266e203bf10) C:\windows\system32\drivers\aswSP.sys
13:53:40.0346 4836 aswSP - ok
13:53:40.0373 4836 aswTdi          (6ff544175a9180c5d88534d3d9c9a9f7) C:\windows\system32\drivers\aswTdi.sys
13:53:40.0402 4836 aswTdi - ok
13:53:40.0439 4836 AsyncMac        (add2ade1c2b285ab8378d2daaf991481) C:\windows\system32\DRIVERS\asyncmac.sys
13:53:40.0503 4836 AsyncMac - ok
13:53:40.0520 4836 atapi           (338c86357871c167a96ab976519bf59e) C:\windows\system32\drivers\atapi.sys
13:53:40.0551 4836 atapi - ok
13:53:40.0690 4836 athr            (49f17a2e79469be6581d491706720671) C:\windows\system32\DRIVERS\athr.sys
13:53:40.0776 4836 athr - ok
13:53:40.0990 4836 AtiHDAudioService (95b1e9804ca10d096c0383f7c6684950) C:\windows\system32\drivers\AtihdW73.sys
13:53:41.0021 4836 AtiHDAudioService - ok
13:53:41.0101 4836 AudioEndpointBuilder (ce3b4e731638d2ef62fcb419be0d39f0) C:\windows\System32\Audiosrv.dll
13:53:41.0187 4836 AudioEndpointBuilder - ok
13:53:41.0202 4836 Audiosrv        (ce3b4e731638d2ef62fcb419be0d39f0) C:\windows\System32\Audiosrv.dll
13:53:41.0281 4836 Audiosrv - ok
13:53:41.0477 4836 avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
13:53:41.0515 4836 avast! Antivirus - ok
13:53:41.0571 4836 AxInstSV        (6e30d02aac9cac84f421622e3a2f6178) C:\windows\System32\AxInstSV.dll
13:53:41.0613 4836 AxInstSV - ok
13:53:41.0705 4836 b06bdrv         (1a231abec60fd316ec54c66715543cec) C:\windows\system32\drivers\bxvbdx.sys
13:53:41.0747 4836 b06bdrv - ok
13:53:41.0791 4836 b57nd60x        (bd8869eb9cde6bbe4508d869929869ee) C:\windows\system32\DRIVERS\b57nd60x.sys
13:53:41.0828 4836 b57nd60x - ok
13:53:41.0921 4836 BBSvc           (93ee7d9c35ae7e9ffda148d7805f1421) C:\Program Files\Microsoft\BingBar\BBSvc.EXE
13:53:41.0956 4836 BBSvc - ok
13:53:41.0987 4836 BDESVC          (ee1e9c3bb8228ae423dd38db69128e71) C:\windows\System32\bdesvc.dll
13:53:42.0021 4836 BDESVC - ok
13:53:42.0055 4836 Beep            (505506526a9d467307b3c393dedaf858) C:\windows\system32\drivers\Beep.sys
13:53:42.0125 4836 Beep - ok
13:53:42.0172 4836 BFE             (1e2bac209d184bb851e1a187d8a29136) C:\windows\System32\bfe.dll
13:53:42.0254 4836 BFE - ok
13:53:42.0318 4836 BITS            (e585445d5021971fae10393f0f1c3961) C:\windows\system32\qmgr.dll
13:53:42.0402 4836 BITS - ok
13:53:42.0440 4836 blbdrive        (2287078ed48fcfc477b05b20cf38f36f) C:\windows\system32\DRIVERS\blbdrive.sys
13:53:42.0473 4836 blbdrive - ok
13:53:42.0651 4836 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe
13:53:42.0693 4836 Bonjour Service - ok
13:53:42.0736 4836 bowser          (8f2da3028d5fcbd1a060a3de64cd6506) C:\windows\system32\DRIVERS\bowser.sys
13:53:42.0768 4836 bowser - ok
13:53:42.0788 4836 BrFiltLo        (9f9acc7f7ccde8a15c282d3f88b43309) C:\windows\system32\drivers\BrFiltLo.sys
13:53:42.0824 4836 BrFiltLo - ok
13:53:42.0854 4836 BrFiltUp        (56801ad62213a41f6497f96dee83755a) C:\windows\system32\drivers\BrFiltUp.sys
13:53:42.0891 4836 BrFiltUp - ok
13:53:42.0912 4836 BridgeMP        (77361d72a04f18809d0efb6cceb74d4b) C:\windows\system32\DRIVERS\bridge.sys
13:53:42.0978 4836 BridgeMP - ok
13:53:43.0016 4836 Browser         (6e11f33d14d020f58d5e02e4d67dfa19) C:\windows\System32\browser.dll
13:53:43.0086 4836 Browser - ok
13:53:43.0116 4836 Brserid         (845b8ce732e67f3b4133164868c666ea) C:\windows\System32\Drivers\Brserid.sys
13:53:43.0160 4836 Brserid - ok
13:53:43.0176 4836 BrSerWdm        (203f0b1e73adadbbb7b7b1fabd901f6b) C:\windows\System32\Drivers\BrSerWdm.sys
13:53:43.0216 4836 BrSerWdm - ok
13:53:43.0233 4836 BrUsbMdm        (bd456606156ba17e60a04e18016ae54b) C:\windows\System32\Drivers\BrUsbMdm.sys
13:53:43.0272 4836 BrUsbMdm - ok
13:53:43.0295 4836 BrUsbSer        (af72ed54503f717a43268b3cc5faec2e) C:\windows\System32\Drivers\BrUsbSer.sys
13:53:43.0328 4836 BrUsbSer - ok
13:53:43.0370 4836 BthEnum         (2865a5c8e98c70c605f417908cebb3a4) C:\windows\system32\drivers\BthEnum.sys
13:53:43.0405 4836 BthEnum - ok
13:53:43.0421 4836 BTHMODEM        (ed3df7c56ce0084eb2034432fc56565a) C:\windows\system32\drivers\bthmodem.sys
13:53:43.0460 4836 BTHMODEM - ok
13:53:43.0494 4836 BthPan          (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\windows\system32\DRIVERS\bthpan.sys
13:53:43.0534 4836 BthPan - ok
13:53:43.0576 4836 BTHPORT         (c2fbf6d271d9a94d839c416bf186ead9) C:\windows\System32\Drivers\BTHport.sys
13:53:43.0617 4836 BTHPORT - ok
13:53:43.0659 4836 bthserv         (1df19c96eef6c29d1c3e1a8678e07190) C:\windows\system32\bthserv.dll
13:53:43.0728 4836 bthserv - ok
13:53:43.0749 4836 BTHUSB          (c81e9413a25a439f436b1d4b6a0cf9e9) C:\windows\System32\Drivers\BTHUSB.sys
13:53:43.0782 4836 BTHUSB - ok
13:53:44.0017 4836 catchme - ok
13:53:44.0085 4836 cdfs            (77ea11b065e0a8ab902d78145ca51e10) C:\windows\system32\DRIVERS\cdfs.sys
13:53:44.0157 4836 cdfs - ok
13:53:44.0186 4836 cdrom           (be167ed0fdb9c1fa1133953c18d5a6c9) C:\windows\system32\DRIVERS\cdrom.sys
13:53:44.0221 4836 cdrom - ok
13:53:44.0250 4836 CertPropSvc     (319c6b309773d063541d01df8ac6f55f) C:\windows\System32\certprop.dll
13:53:44.0312 4836 CertPropSvc - ok
13:53:44.0381 4836 circlass        (3fe3fe94a34df6fb06e6418d0f6a0060) C:\windows\system32\drivers\circlass.sys
13:53:44.0418 4836 circlass - ok
13:53:44.0461 4836 CLFS            (635181e0e9bbf16871bf5380d71db02d) C:\windows\system32\CLFS.sys
13:53:44.0499 4836 CLFS - ok
13:53:44.0610 4836 clr_optimization_v2.0.50727_32 (d88040f816fda31c3b466f0fa0918f29) C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:53:44.0645 4836 clr_optimization_v2.0.50727_32 - ok
13:53:44.0928 4836 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:53:44.0994 4836 clr_optimization_v4.0.30319_32 - ok
13:53:45.0025 4836 clwvd           (125c828bf3673406dfd642d7bee8434f) C:\windows\system32\DRIVERS\clwvd.sys
13:53:45.0056 4836 clwvd - ok
13:53:45.0101 4836 CmBatt          (dea805815e587dad1dd2c502220b5616) C:\windows\system32\DRIVERS\CmBatt.sys
13:53:45.0136 4836 CmBatt - ok
13:53:45.0179 4836 cmdide          (c537b1db64d495b9b4717b4d6d9edbf2) C:\windows\system32\drivers\cmdide.sys
13:53:45.0209 4836 cmdide - ok
13:53:45.0281 4836 CNG             (6427525d76f61d0c519b008d3680e8e7) C:\windows\system32\Drivers\cng.sys
13:53:45.0336 4836 CNG - ok
13:53:45.0353 4836 Compbatt        (a6023d3823c37043986713f118a89bee) C:\windows\system32\DRIVERS\compbatt.sys
13:53:45.0385 4836 Compbatt - ok
13:53:45.0397 4836 CompositeBus    (cbe8c58a8579cfe5fccf809e6f114e89) C:\windows\system32\DRIVERS\CompositeBus.sys
13:53:45.0435 4836 CompositeBus - ok
13:53:45.0444 4836 COMSysApp - ok
13:53:45.0470 4836 crcdisk         (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\windows\system32\drivers\crcdisk.sys
13:53:45.0500 4836 crcdisk - ok
13:53:45.0543 4836 CryptSvc        (06e771aa596b8761107ab57e99f128d7) C:\windows\system32\cryptsvc.dll
13:53:45.0581 4836 CryptSvc - ok
13:53:45.0715 4836 cvhsvc          (72794d112cbaff3bc0c29bf7350d4741) C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
13:53:45.0772 4836 cvhsvc - ok
13:53:45.0841 4836 DcomLaunch      (7660f01d3b38aca1747e397d21d790af) C:\windows\system32\rpcss.dll
13:53:45.0923 4836 DcomLaunch - ok
13:53:45.0981 4836 defragsvc       (8d6e10a2d9a5eed59562d9b82cf804e1) C:\windows\System32\defragsvc.dll
13:53:46.0052 4836 defragsvc - ok
13:53:46.0136 4836 DfsC            (f024449c97ec1e464aaffda18593db88) C:\windows\system32\Drivers\dfsc.sys
13:53:46.0199 4836 DfsC - ok
13:53:46.0251 4836 Dhcp            (e9e01eb683c132f7fa27cd607b8a2b63) C:\windows\system32\dhcpcore.dll
13:53:46.0320 4836 Dhcp - ok
13:53:46.0334 4836 discache        (1a050b0274bfb3890703d490f330c0da) C:\windows\system32\drivers\discache.sys
13:53:46.0400 4836 discache - ok
13:53:46.0439 4836 Disk            (565003f326f99802e68ca78f2a68e9ff) C:\windows\system32\drivers\disk.sys
13:53:46.0470 4836 Disk - ok
13:53:46.0577 4836 Dnscache        (33ef4861f19a0736b11314aad9ae28d0) C:\windows\System32\dnsrslvr.dll
13:53:46.0630 4836 Dnscache - ok
13:53:46.0689 4836 dot3svc         (366ba8fb4b7bb7435e3b9eacb3843f67) C:\windows\System32\dot3svc.dll
13:53:46.0757 4836 dot3svc - ok
13:53:46.0773 4836 DPS             (8ec04ca86f1d68da9e11952eb85973d6) C:\windows\system32\dps.dll
13:53:46.0840 4836 DPS - ok
13:53:46.0868 4836 drmkaud         (b918e7c5f9bf77202f89e1a9539f2eb4) C:\windows\system32\drivers\drmkaud.sys
13:53:46.0909 4836 drmkaud - ok
13:53:46.0969 4836 DXGKrnl         (23f5d28378a160352ba8f817bd8c71cb) C:\windows\System32\drivers\dxgkrnl.sys
13:53:47.0023 4836 DXGKrnl - ok
13:53:47.0084 4836 EapHost         (8600142fa91c1b96367d3300ad0f3f3a) C:\windows\System32\eapsvc.dll
13:53:47.0153 4836 EapHost - ok
13:53:47.0339 4836 ebdrv           (024e1b5cac09731e4d868e64dbfb4ab0) C:\windows\system32\drivers\evbdx.sys
13:53:47.0441 4836 ebdrv - ok
13:53:47.0636 4836 EFS             (81951f51e318aecc2d68559e47485cc4) C:\windows\System32\lsass.exe
13:53:47.0674 4836 EFS - ok
13:53:47.0771 4836 elxstor         (0ed67910c8c326796faa00b2bf6d9d3c) C:\windows\system32\drivers\elxstor.sys
13:53:47.0816 4836 elxstor - ok
13:53:47.0844 4836 ErrDev          (8fc3208352dd3912c94367a206ab3f11) C:\windows\system32\drivers\errdev.sys
13:53:47.0876 4836 ErrDev - ok
13:53:47.0916 4836 ETD             (f8f330e056e3f9237ed885024d44bc52) C:\windows\system32\DRIVERS\ETD.sys
13:53:47.0949 4836 ETD - ok
13:53:48.0053 4836 EventSystem     (f6916efc29d9953d5d0df06882ae8e16) C:\windows\system32\es.dll
13:53:48.0128 4836 EventSystem - ok
13:53:48.0181 4836 exfat           (2dc9108d74081149cc8b651d3a26207f) C:\windows\system32\drivers\exfat.sys
13:53:48.0249 4836 exfat - ok
13:53:48.0280 4836 fastfat         (7e0ab74553476622fb6ae36f73d97d35) C:\windows\system32\drivers\fastfat.sys
13:53:48.0349 4836 fastfat - ok
13:53:48.0420 4836 Fax             (967ea5b213e9984cbe270205df37755b) C:\windows\system32\fxssvc.exe
13:53:48.0467 4836 Fax - ok
13:53:48.0503 4836 fdc             (e817a017f82df2a1f8cfdbda29388b29) C:\windows\system32\drivers\fdc.sys
13:53:48.0537 4836 fdc - ok
13:53:48.0589 4836 fdPHost         (f3222c893bd2f5821a0179e5c71e88fb) C:\windows\system32\fdPHost.dll
13:53:48.0658 4836 fdPHost - ok
13:53:48.0667 4836 FDResPub        (7dbe8cbfe79efbdeb98c9fb08d3a9a5b) C:\windows\system32\fdrespub.dll
13:53:48.0736 4836 FDResPub - ok
13:53:48.0757 4836 FileInfo        (6cf00369c97f3cf563be99be983d13d8) C:\windows\system32\drivers\fileinfo.sys
13:53:48.0789 4836 FileInfo - ok
13:53:48.0805 4836 Filetrace       (42c51dc94c91da21cb9196eb64c45db9) C:\windows\system32\drivers\filetrace.sys
13:53:48.0871 4836 Filetrace - ok
13:53:48.0880 4836 flpydisk        (87907aa70cb3c56600f1c2fb8841579b) C:\windows\system32\drivers\flpydisk.sys
13:53:48.0922 4836 flpydisk - ok
13:53:48.0944 4836 FltMgr          (7520ec808e0c35e0ee6f841294316653) C:\windows\system32\drivers\fltmgr.sys
13:53:48.0981 4836 FltMgr - ok
13:53:49.0060 4836 FontCache       (b3a5ec6b6b6673db7e87c2bcdbddc074) C:\windows\system32\FntCache.dll
13:53:49.0114 4836 FontCache - ok
13:53:49.0281 4836 FontCache3.0.0.0 (e56f39f6b7fda0ac77a79b0fd3de1a2f) C:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
13:53:49.0311 4836 FontCache3.0.0.0 - ok
13:53:49.0351 4836 FsDepends       (1a16b57943853e598cff37fe2b8cbf1d) C:\windows\system32\drivers\FsDepends.sys
13:53:49.0383 4836 FsDepends - ok
13:53:49.0463 4836 Fs_Rec          (7dae5ebcc80e45d3253f4923dc424d05) C:\windows\system32\drivers\Fs_Rec.sys
13:53:49.0497 4836 Fs_Rec - ok
13:53:49.0543 4836 fvevol          (8a73e79089b282100b9393b644cb853b) C:\windows\system32\DRIVERS\fvevol.sys
13:53:49.0587 4836 fvevol - ok
13:53:49.0619 4836 gagp30kx        (65ee0c7a58b65e74ae05637418153938) C:\windows\system32\drivers\gagp30kx.sys
13:53:49.0651 4836 gagp30kx - ok
13:53:49.0727 4836 gpsvc           (e897eaf5ed6ba41e081060c9b447a673) C:\windows\System32\gpsvc.dll
13:53:49.0806 4836 gpsvc - ok
13:53:49.0848 4836 hcw85cir        (c44e3c2bab6837db337ddee7544736db) C:\windows\system32\drivers\hcw85cir.sys
13:53:49.0880 4836 hcw85cir - ok
13:53:49.0942 4836 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\windows\system32\drivers\HdAudio.sys
13:53:49.0986 4836 HdAudAddService - ok
13:53:50.0019 4836 HDAudBus        (9036377b8a6c15dc2eec53e489d159b5) C:\windows\system32\DRIVERS\HDAudBus.sys
13:53:50.0063 4836 HDAudBus - ok
13:53:50.0092 4836 HidBatt         (1d58a7f3e11a9731d0eaaaa8405acc36) C:\windows\system32\drivers\HidBatt.sys
13:53:50.0126 4836 HidBatt - ok
13:53:50.0147 4836 HidBth          (89448f40e6df260c206a193a4683ba78) C:\windows\system32\drivers\hidbth.sys
13:53:50.0191 4836 HidBth - ok
13:53:50.0202 4836 HidIr           (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\windows\system32\drivers\hidir.sys
13:53:50.0241 4836 HidIr - ok
13:53:50.0277 4836 hidserv         (2bc6f6a1992b3a77f5f41432ca6b3b6b) C:\windows\System32\hidserv.dll
13:53:50.0346 4836 hidserv - ok
13:53:50.0354 4836 HidUsb          (10c19f8290891af023eaec0832e1eb4d) C:\windows\system32\DRIVERS\hidusb.sys
13:53:50.0389 4836 HidUsb - ok
13:53:50.0423 4836 hkmsvc          (196b4e3f4cccc24af836ce58facbb699) C:\windows\system32\kmsvc.dll
13:53:50.0490 4836 hkmsvc - ok
13:53:50.0525 4836 HomeGroupListener (6658f4404de03d75fe3ba09f7aba6a30) C:\windows\system32\ListSvc.dll
13:53:50.0566 4836 HomeGroupListener - ok
13:53:50.0615 4836 HomeGroupProvider (dbc02d918fff1cad628acbe0c0eaa8e8) C:\windows\system32\provsvc.dll
13:53:50.0667 4836 HomeGroupProvider - ok
13:53:50.0702 4836 HpSAMD          (295fdc419039090eb8b49ffdbb374549) C:\windows\system32\drivers\HpSAMD.sys
13:53:50.0733 4836 HpSAMD - ok
13:53:50.0793 4836 HTTP            (871917b07a141bff43d76d8844d48106) C:\windows\system32\drivers\HTTP.sys
13:53:50.0869 4836 HTTP - ok
13:53:50.0898 4836 hwpolicy        (0c4e035c7f105f1299258c90886c64c5) C:\windows\system32\drivers\hwpolicy.sys
13:53:50.0932 4836 hwpolicy - ok
13:53:50.0948 4836 i8042prt        (f151f0bdc47f4a28b1b20a0818ea36d6) C:\windows\system32\DRIVERS\i8042prt.sys
13:53:50.0984 4836 i8042prt - ok
13:53:51.0039 4836 iaStorV         (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\windows\system32\drivers\iaStorV.sys
13:53:51.0080 4836 iaStorV - ok
13:53:51.0249 4836 idsvc           (c521d7eb6497bb1af6afa89e322fb43c) C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
13:53:51.0303 4836 idsvc - ok
13:53:51.0741 4836 igfx            (ad626f6964f4d364d226c39e06872dd3) C:\windows\system32\DRIVERS\igdkmd32.sys
13:53:51.0887 4836 igfx - ok
13:53:52.0104 4836 iirsp           (4173ff5708f3236cf25195fecd742915) C:\windows\system32\drivers\iirsp.sys
13:53:52.0135 4836 iirsp - ok
13:53:52.0209 4836 IKEEXT          (f95622f161474511b8d80d6b093aa610) C:\windows\System32\ikeext.dll
13:53:52.0292 4836 IKEEXT - ok
13:53:52.0510 4836 IntcAzAudAddService (b75fb1543ea119ad06d83d378b681949) C:\windows\system32\drivers\RTKVHDA.sys
13:53:52.0653 4836 IntcAzAudAddService - ok
13:53:52.0812 4836 intelide        (a0f12f2c9ba6c72f3987ce780e77c130) C:\windows\system32\drivers\intelide.sys
13:53:52.0846 4836 intelide - ok
13:53:52.0864 4836 intelppm        (3b514d27bfc4accb4037bc6685f766e0) C:\windows\system32\drivers\intelppm.sys
13:53:52.0899 4836 intelppm - ok
13:53:52.0926 4836 IPBusEnum       (acb364b9075a45c0736e5c47be5cae19) C:\windows\system32\ipbusenum.dll
13:53:52.0997 4836 IPBusEnum - ok
13:53:53.0007 4836 IpFilterDriver  (709d1761d3b19a932ff0238ea6d50200) C:\windows\system32\DRIVERS\ipfltdrv.sys
13:53:53.0077 4836 IpFilterDriver - ok
13:53:53.0117 4836 iphlpsvc        (4d65a07b795d6674312f879d09aa7663) C:\windows\System32\iphlpsvc.dll
13:53:53.0194 4836 iphlpsvc - ok
13:53:53.0208 4836 IPMIDRV         (4bd7134618c1d2a27466a099062547bf) C:\windows\system32\drivers\IPMIDrv.sys
13:53:53.0244 4836 IPMIDRV - ok
13:53:53.0256 4836 IPNAT           (a5fa468d67abcdaa36264e463a7bb0cd) C:\windows\system32\drivers\ipnat.sys
13:53:53.0324 4836 IPNAT - ok
13:53:53.0339 4836 IRENUM          (42996cff20a3084a56017b7902307e9f) C:\windows\system32\drivers\irenum.sys
13:53:53.0379 4836 IRENUM - ok
13:53:53.0400 4836 isapnp          (1f32bb6b38f62f7df1a7ab7292638a35) C:\windows\system32\drivers\isapnp.sys
13:53:53.0432 4836 isapnp - ok
13:53:53.0466 4836 iScsiPrt        (cb7a9abb12b8415bce5d74994c7ba3ae) C:\windows\system32\drivers\msiscsi.sys
13:53:53.0507 4836 iScsiPrt - ok
13:53:53.0532 4836 kbdclass        (adef52ca1aeae82b50df86b56413107e) C:\windows\system32\DRIVERS\kbdclass.sys
13:53:53.0563 4836 kbdclass - ok
13:53:53.0581 4836 kbdhid          (9e3ced91863e6ee98c24794d05e27a71) C:\windows\system32\drivers\kbdhid.sys
13:53:53.0615 4836 kbdhid - ok
13:53:53.0674 4836 KeyIso          (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe
13:53:53.0712 4836 KeyIso - ok
13:53:53.0750 4836 KSecDD          (f4647bb23db9038a7536cf6b68f4207f) C:\windows\system32\Drivers\ksecdd.sys
13:53:53.0785 4836 KSecDD - ok
13:53:53.0817 4836 KSecPkg         (e73cae53bbb72ba26918492c6b4c229d) C:\windows\system32\Drivers\ksecpkg.sys
13:53:53.0852 4836 KSecPkg - ok
13:53:53.0898 4836 KtmRm           (89a7b9cc98d0d80c6f31b91c0a310fcd) C:\windows\system32\msdtckrm.dll
13:53:53.0977 4836 KtmRm - ok
13:53:54.0024 4836 LanmanServer    (d64af876d53eca3668bb97b51b4e70ab) C:\windows\System32\srvsvc.dll
13:53:54.0102 4836 LanmanServer - ok
13:53:54.0137 4836 LanmanWorkstation (58405e4f68ba8e4057c6e914f326aba2) C:\windows\System32\wkssvc.dll
13:53:54.0213 4836 LanmanWorkstation - ok
13:53:54.0269 4836 lltdio          (f7611ec07349979da9b0ae1f18ccc7a6) C:\windows\system32\DRIVERS\lltdio.sys
13:53:54.0335 4836 lltdio - ok
13:53:54.0386 4836 lltdsvc         (5700673e13a2117fa3b9020c852c01e2) C:\windows\System32\lltdsvc.dll
13:53:54.0460 4836 lltdsvc - ok
13:53:54.0479 4836 lmhosts         (55ca01ba19d0006c8f2639b6c045e08b) C:\windows\System32\lmhsvc.dll
13:53:54.0545 4836 lmhosts - ok
13:53:54.0583 4836 LSI_FC          (eb119a53ccf2acc000ac71b065b78fef) C:\windows\system32\drivers\lsi_fc.sys
13:53:54.0615 4836 LSI_FC - ok
13:53:54.0658 4836 LSI_SAS         (8ade1c877256a22e49b75d1cc9161f9c) C:\windows\system32\drivers\lsi_sas.sys
13:53:54.0694 4836 LSI_SAS - ok
13:53:54.0716 4836 LSI_SAS2        (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\windows\system32\drivers\lsi_sas2.sys
13:53:54.0749 4836 LSI_SAS2 - ok
13:53:54.0781 4836 LSI_SCSI        (0a036c7d7cab643a7f07135ac47e0524) C:\windows\system32\drivers\lsi_scsi.sys
13:53:54.0815 4836 LSI_SCSI - ok
13:53:54.0843 4836 luafv           (6703e366cc18d3b6e534f5cf7df39cee) C:\windows\system32\drivers\luafv.sys
13:53:54.0910 4836 luafv - ok
13:53:54.0942 4836 megasas         (0fff5b045293002ab38eb1fd1fc2fb74) C:\windows\system32\drivers\megasas.sys
13:53:54.0972 4836 megasas - ok
13:53:55.0007 4836 MegaSR          (dcbab2920c75f390caf1d29f675d03d6) C:\windows\system32\drivers\MegaSR.sys
13:53:55.0045 4836 MegaSR - ok
13:53:55.0087 4836 MMCSS           (146b6f43a673379a3c670e86d89be5ea) C:\windows\system32\mmcss.dll
13:53:55.0159 4836 MMCSS - ok
13:53:55.0188 4836 Modem           (f001861e5700ee84e2d4e52c712f4964) C:\windows\system32\drivers\modem.sys
13:53:55.0253 4836 Modem - ok
13:53:55.0276 4836 monitor         (79d10964de86b292320e9dfe02282a23) C:\windows\system32\DRIVERS\monitor.sys
13:53:55.0313 4836 monitor - ok
13:53:55.0323 4836 mouclass        (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\windows\system32\DRIVERS\mouclass.sys
13:53:55.0354 4836 mouclass - ok
13:53:55.0375 4836 mouhid          (2c388d2cd01c9042596cf3c8f3c7b24d) C:\windows\system32\DRIVERS\mouhid.sys
13:53:55.0409 4836 mouhid - ok
13:53:55.0421 4836 mountmgr        (fc8771f45ecccfd89684e38842539b9b) C:\windows\system32\drivers\mountmgr.sys
13:53:55.0457 4836 mountmgr - ok
13:53:55.0564 4836 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
13:53:55.0597 4836 MozillaMaintenance - ok
13:53:55.0706 4836 mpio            (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\windows\system32\drivers\mpio.sys
13:53:55.0743 4836 mpio - ok
13:53:55.0780 4836 mpsdrv          (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\windows\system32\drivers\mpsdrv.sys
13:53:55.0845 4836 mpsdrv - ok
13:53:55.0906 4836 MpsSvc          (9835584e999d25004e1ee8e5f3e3b881) C:\windows\system32\mpssvc.dll
13:53:55.0987 4836 MpsSvc - ok
13:53:56.0006 4836 MRxDAV          (ceb46ab7c01c9f825f8cc6babc18166a) C:\windows\system32\drivers\mrxdav.sys
13:53:56.0052 4836 MRxDAV - ok
13:53:56.0092 4836 mrxsmb          (5d16c921e3671636c0eba3bbaac5fd25) C:\windows\system32\DRIVERS\mrxsmb.sys
13:53:56.0128 4836 mrxsmb - ok
13:53:56.0153 4836 mrxsmb10        (6d17a4791aca19328c685d256349fefc) C:\windows\system32\DRIVERS\mrxsmb10.sys
13:53:56.0194 4836 mrxsmb10 - ok
13:53:56.0215 4836 mrxsmb20        (b81f204d146000be76651a50670a5e9e) C:\windows\system32\DRIVERS\mrxsmb20.sys
13:53:56.0251 4836 mrxsmb20 - ok
13:53:56.0279 4836 msahci          (012c5f4e9349e711e11e0f19a8589f0a) C:\windows\system32\drivers\msahci.sys
13:53:56.0311 4836 msahci - ok
13:53:56.0343 4836 msdsm           (55055f8ad8be27a64c831322a780a228) C:\windows\system32\drivers\msdsm.sys
13:53:56.0377 4836 msdsm - ok
13:53:56.0427 4836 MSDTC           (e1bce74a3bd9902b72599c0192a07e27) C:\windows\System32\msdtc.exe
13:53:56.0474 4836 MSDTC - ok
13:53:56.0524 4836 Msfs            (daefb28e3af5a76abcc2c3078c07327f) C:\windows\system32\drivers\Msfs.sys
13:53:56.0592 4836 Msfs - ok
13:53:56.0623 4836 mshidkmdf       (3e1e5767043c5af9367f0056295e9f84) C:\windows\System32\drivers\mshidkmdf.sys
13:53:56.0754 4836 mshidkmdf - ok
13:53:56.0775 4836 msisadrv        (0a4e5757ae09fa9622e3158cc1aef114) C:\windows\system32\drivers\msisadrv.sys
13:53:56.0807 4836 msisadrv - ok
13:53:56.0848 4836 MSiSCSI         (90f7d9e6b6f27e1a707d4a297f077828) C:\windows\system32\iscsiexe.dll
13:53:56.0919 4836 MSiSCSI - ok
13:53:56.0944 4836 msiserver - ok
13:53:56.0977 4836 MSKSSRV         (8c0860d6366aaffb6c5bb9df9448e631) C:\windows\system32\drivers\MSKSSRV.sys
13:53:57.0060 4836 MSKSSRV - ok
13:53:57.0090 4836 MSPCLOCK        (3ea8b949f963562cedbb549eac0c11ce) C:\windows\system32\drivers\MSPCLOCK.sys
13:53:57.0221 4836 MSPCLOCK - ok
13:53:57.0253 4836 MSPQM           (f456e973590d663b1073e9c463b40932) C:\windows\system32\drivers\MSPQM.sys
13:53:57.0322 4836 MSPQM - ok
13:53:57.0373 4836 MsRPC           (0e008fc4819d238c51d7c93e7b41e560) C:\windows\system32\drivers\MsRPC.sys
13:53:57.0408 4836 MsRPC - ok
13:53:57.0439 4836 mssmbios        (fc6b9ff600cc585ea38b12589bd4e246) C:\windows\system32\DRIVERS\mssmbios.sys
13:53:57.0478 4836 mssmbios - ok
13:53:57.0507 4836 MSTEE           (b42c6b921f61a6e55159b8be6cd54a36) C:\windows\system32\drivers\MSTEE.sys
13:53:57.0586 4836 MSTEE - ok
13:53:57.0623 4836 MTConfig        (33599130f44e1f34631cea241de8ac84) C:\windows\system32\drivers\MTConfig.sys
13:53:57.0656 4836 MTConfig - ok
13:53:57.0666 4836 Mup             (159fad02f64e6381758c990f753bcc80) C:\windows\system32\Drivers\mup.sys
13:53:57.0709 4836 Mup - ok
13:53:57.0758 4836 napagent        (61d57a5d7c6d9afe10e77dae6e1b445e) C:\windows\system32\qagentRT.dll
13:53:57.0839 4836 napagent - ok
13:53:57.0870 4836 NativeWifiP     (26384429fcd85d83746f63e798ab1480) C:\windows\system32\DRIVERS\nwifi.sys
13:53:57.0918 4836 NativeWifiP - ok
13:53:58.0000 4836 NDIS            (3723262737d90f58059ceda7373b0387) C:\windows\system32\drivers\ndis.sys
13:53:58.0057 4836 NDIS - ok
13:53:58.0098 4836 NdisCap         (0e1787aa6c9191d3d319e8bafe86f80c) C:\windows\system32\DRIVERS\ndiscap.sys
13:53:58.0164 4836 NdisCap - ok
13:53:58.0182 4836 NdisTapi        (e4a8aec125a2e43a9e32afeea7c9c888) C:\windows\system32\DRIVERS\ndistapi.sys
13:53:58.0244 4836 NdisTapi - ok
13:53:58.0256 4836 Ndisuio         (d8a65dafb3eb41cbb622745676fcd072) C:\windows\system32\DRIVERS\ndisuio.sys
13:53:58.0320 4836 Ndisuio - ok
13:53:58.0332 4836 NdisWan         (38fbe267e7e6983311179230facb1017) C:\windows\system32\DRIVERS\ndiswan.sys
13:53:58.0397 4836 NdisWan - ok
13:53:58.0409 4836 NDProxy         (a4bdc541e69674fbff1a8ff00be913f2) C:\windows\system32\drivers\NDProxy.sys
13:53:58.0471 4836 NDProxy - ok
13:53:58.0482 4836 NetBIOS         (80b275b1ce3b0e79909db7b39af74d51) C:\windows\system32\DRIVERS\netbios.sys
13:53:58.0548 4836 NetBIOS - ok
13:53:58.0565 4836 NetBT           (280122ddcf04b378edd1ad54d71c1e54) C:\windows\system32\DRIVERS\netbt.sys
13:53:58.0631 4836 NetBT - ok
13:53:58.0684 4836 Netlogon        (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe
13:53:58.0723 4836 Netlogon - ok
13:53:58.0777 4836 Netman          (7cccfca7510684768da22092d1fa4db2) C:\windows\System32\netman.dll
13:53:58.0854 4836 Netman - ok
13:53:58.0894 4836 netprofm        (8c338238c16777a802d6a9211eb2ba50) C:\windows\System32\netprofm.dll
13:53:58.0974 4836 netprofm - ok
13:53:59.0107 4836 NetTcpPortSharing (f476ec40033cdb91efbe73eb99b8362d) C:\windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
13:53:59.0138 4836 NetTcpPortSharing - ok
13:53:59.0221 4836 nfrd960         (1d85c4b390b0ee09c7a46b91efb2c097) C:\windows\system32\drivers\nfrd960.sys
13:53:59.0252 4836 nfrd960 - ok
13:53:59.0303 4836 NlaSvc          (912084381d30d8b89ec4e293053f4710) C:\windows\System32\nlasvc.dll
13:53:59.0376 4836 NlaSvc - ok
13:53:59.0400 4836 Npfs            (1db262a9f8c087e8153d89bef3d2235f) C:\windows\system32\drivers\Npfs.sys
13:53:59.0466 4836 Npfs - ok
13:53:59.0483 4836 nsi             (ba387e955e890c8a88306d9b8d06bf17) C:\windows\system32\nsisvc.dll
13:53:59.0557 4836 nsi - ok
13:53:59.0597 4836 nsiproxy        (e9a0a4d07e53d8fea2bb8387a3293c58) C:\windows\system32\drivers\nsiproxy.sys
13:53:59.0661 4836 nsiproxy - ok
13:53:59.0771 4836 Ntfs            (81189c3d7763838e55c397759d49007a) C:\windows\system32\drivers\Ntfs.sys
13:53:59.0845 4836 Ntfs - ok
13:54:00.0046 4836 Null            (f9756a98d69098dca8945d62858a812c) C:\windows\system32\drivers\Null.sys
13:54:00.0116 4836 Null - ok
13:54:00.0155 4836 nvraid          (b3e25ee28883877076e0e1ff877d02e0) C:\windows\system32\drivers\nvraid.sys
13:54:00.0189 4836 nvraid - ok
13:54:00.0211 4836 nvstor          (4380e59a170d88c4f1022eff6719a8a4) C:\windows\system32\drivers\nvstor.sys
13:54:00.0246 4836 nvstor - ok
13:54:00.0276 4836 nv_agp          (5a0983915f02bae73267cc2a041f717d) C:\windows\system32\drivers\nv_agp.sys
13:54:00.0313 4836 nv_agp - ok
13:54:00.0336 4836 ohci1394        (08a70a1f2cdde9bb49b885cb817a66eb) C:\windows\system32\drivers\ohci1394.sys
13:54:00.0374 4836 ohci1394 - ok
13:54:00.0499 4836 ose             (9d10f99a6712e28f8acd5641e3a7ea6b) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:54:00.0532 4836 ose - ok
13:54:00.0824 4836 osppsvc         (358a9cca612c68eb2f07ddad4ce1d8d7) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
13:54:01.0018 4836 osppsvc - ok
13:54:01.0198 4836 p2pimsvc        (82a8521ddc60710c3d3d3e7325209bec) C:\windows\system32\pnrpsvc.dll
13:54:01.0247 4836 p2pimsvc - ok
13:54:01.0323 4836 p2psvc          (59c3ddd501e39e006dac31bf55150d91) C:\windows\system32\p2psvc.dll
13:54:01.0379 4836 p2psvc - ok
13:54:01.0456 4836 Parport         (2ea877ed5dd9713c5ac74e8ea7348d14) C:\windows\system32\drivers\parport.sys
13:54:01.0499 4836 Parport - ok
13:54:01.0540 4836 partmgr         (3f34a1b4c5f6475f320c275e63afce9b) C:\windows\system32\drivers\partmgr.sys
13:54:01.0574 4836 partmgr - ok
13:54:01.0593 4836 Parvdm          (eb0a59f29c19b86479d36b35983daadc) C:\windows\system32\drivers\parvdm.sys
13:54:01.0628 4836 Parvdm - ok
13:54:01.0679 4836 PcaSvc          (358ab7956d3160000726574083dfc8a6) C:\windows\System32\pcasvc.dll
13:54:01.0731 4836 PcaSvc - ok
13:54:01.0806 4836 pci             (673e55c3498eb970088e812ea820aa8f) C:\windows\system32\drivers\pci.sys
13:54:01.0851 4836 pci - ok
13:54:01.0874 4836 pciide          (afe86f419014db4e5593f69ffe26ce0a) C:\windows\system32\drivers\pciide.sys
13:54:01.0904 4836 pciide - ok
13:54:01.0943 4836 pcmcia          (f396431b31693e71e8a80687ef523506) C:\windows\system32\drivers\pcmcia.sys
13:54:01.0982 4836 pcmcia - ok
13:54:01.0996 4836 pcw             (250f6b43d2b613172035c6747aeeb19f) C:\windows\system32\drivers\pcw.sys
13:54:02.0028 4836 pcw - ok
13:54:02.0071 4836 PEAUTH          (9e0104ba49f4e6973749a02bf41344ed) C:\windows\system32\drivers\peauth.sys
13:54:02.0151 4836 PEAUTH - ok
13:54:02.0273 4836 pla             (414bba67a3ded1d28437eb66aeb8a720) C:\windows\system32\pla.dll
13:54:02.0377 4836 pla - ok
13:54:02.0587 4836 PlugPlay        (ec7bc28d207da09e79b3e9faf8b232ca) C:\windows\system32\umpnpmgr.dll
13:54:02.0644 4836 PlugPlay - ok
13:54:02.0683 4836 PNRPAutoReg     (63ff8572611249931eb16bb8eed6afc8) C:\windows\system32\pnrpauto.dll
13:54:02.0727 4836 PNRPAutoReg - ok
13:54:02.0760 4836 PNRPsvc         (82a8521ddc60710c3d3d3e7325209bec) C:\windows\system32\pnrpsvc.dll
13:54:02.0806 4836 PNRPsvc - ok
13:54:02.0857 4836 PolicyAgent     (53946b69ba0836bd95b03759530c81ec) C:\windows\System32\ipsecsvc.dll
13:54:02.0933 4836 PolicyAgent - ok
13:54:03.0006 4836 Power           (f87d30e72e03d579a5199ccb3831d6ea) C:\windows\system32\umpo.dll
13:54:03.0085 4836 Power - ok
13:54:03.0203 4836 PptpMiniport    (631e3e205ad6d86f2aed6a4a8e69f2db) C:\windows\system32\DRIVERS\raspptp.sys
13:54:03.0289 4836 PptpMiniport - ok
13:54:03.0339 4836 Processor       (85b1e3a0c7585bc4aae6899ec6fcf011) C:\windows\system32\drivers\processr.sys
13:54:03.0377 4836 Processor - ok
13:54:03.0433 4836 ProfSvc         (cadefac453040e370a1bdff3973be00d) C:\windows\system32\profsvc.dll
13:54:03.0486 4836 ProfSvc - ok
13:54:03.0544 4836 ProtectedStorage (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe
13:54:03.0586 4836 ProtectedStorage - ok
13:54:03.0630 4836 Psched          (6270ccae2a86de6d146529fe55b3246a) C:\windows\system32\DRIVERS\pacer.sys
13:54:03.0714 4836 Psched - ok
13:54:03.0839 4836 ql2300          (ab95ecf1f6659a60ddc166d8315b0751) C:\windows\system32\drivers\ql2300.sys
13:54:03.0920 4836 ql2300 - ok
13:54:04.0149 4836 ql40xx          (b4dd51dd25182244b86737dc51af2270) C:\windows\system32\drivers\ql40xx.sys
13:54:04.0182 4836 ql40xx - ok
13:54:04.0284 4836 QWAVE           (31ac809e7707eb580b2bdb760390765a) C:\windows\system32\qwave.dll
13:54:04.0349 4836 QWAVE - ok
13:54:04.0381 4836 QWAVEdrv        (584078ca1b95ca72df2a27c336f9719d) C:\windows\system32\drivers\qwavedrv.sys
13:54:04.0430 4836 QWAVEdrv - ok
13:54:04.0464 4836 RasAcd          (30a81b53c766d0133bb86d234e5556ab) C:\windows\system32\DRIVERS\rasacd.sys
13:54:04.0532 4836 RasAcd - ok
13:54:04.0574 4836 RasAgileVpn     (57ec4aef73660166074d8f7f31c0d4fd) C:\windows\system32\DRIVERS\AgileVpn.sys
13:54:04.0652 4836 RasAgileVpn - ok
13:54:04.0691 4836 RasAuto         (a60f1839849c0c00739787fd5ec03f13) C:\windows\System32\rasauto.dll
13:54:04.0767 4836 RasAuto - ok
13:54:04.0788 4836 Rasl2tp         (d9f91eafec2815365cbe6d167e4e332a) C:\windows\system32\DRIVERS\rasl2tp.sys
13:54:04.0855 4836 Rasl2tp - ok
13:54:04.0891 4836 RasMan          (cb9e04dc05eacf5b9a36ca276d475006) C:\windows\System32\rasmans.dll
13:54:04.0968 4836 RasMan - ok
13:54:04.0983 4836 RasPppoe        (0fe8b15916307a6ac12bfb6a63e45507) C:\windows\system32\DRIVERS\raspppoe.sys
13:54:05.0055 4836 RasPppoe - ok
13:54:05.0081 4836 RasSstp         (44101f495a83ea6401d886e7fd70096b) C:\windows\system32\DRIVERS\rassstp.sys
13:54:05.0145 4836 RasSstp - ok
13:54:05.0165 4836 rdbss           (d528bc58a489409ba40334ebf96a311b) C:\windows\system32\DRIVERS\rdbss.sys
13:54:05.0241 4836 rdbss - ok
13:54:05.0273 4836 rdpbus          (0d8f05481cb76e70e1da06ee9f0da9df) C:\windows\system32\drivers\rdpbus.sys
13:54:05.0322 4836 rdpbus - ok
13:54:05.0354 4836 RDPCDD          (23dae03f29d253ae74c44f99e515f9a1) C:\windows\system32\DRIVERS\RDPCDD.sys
13:54:05.0420 4836 RDPCDD - ok
13:54:05.0464 4836 RDPENCDD        (5a53ca1598dd4156d44196d200c94b8a) C:\windows\system32\drivers\rdpencdd.sys
13:54:05.0530 4836 RDPENCDD - ok
13:54:05.0582 4836 RDPREFMP        (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\windows\system32\drivers\rdprefmp.sys
13:54:05.0648 4836 RDPREFMP - ok
13:54:05.0711 4836 RDPWD           (f031683e6d1fea157abb2ff260b51e61) C:\windows\system32\drivers\RDPWD.sys
13:54:05.0748 4836 RDPWD - ok
13:54:05.0783 4836 rdyboost        (518395321dc96fe2c9f0e96ac743b656) C:\windows\system32\drivers\rdyboost.sys
13:54:05.0819 4836 rdyboost - ok
13:54:05.0861 4836 RemoteAccess    (7b5e1419717fac363a31cc302895217a) C:\windows\System32\mprdim.dll
13:54:05.0930 4836 RemoteAccess - ok
13:54:05.0969 4836 RemoteRegistry  (cb9a8683f4ef2bf99e123d79950d7935) C:\windows\system32\regsvc.dll
13:54:06.0050 4836 RemoteRegistry - ok
13:54:06.0091 4836 RFCOMM          (cb928d9e6daf51879dd6ba8d02f01321) C:\windows\system32\DRIVERS\rfcomm.sys
13:54:06.0132 4836 RFCOMM - ok
13:54:06.0247 4836 RichVideo       (f12a68ed55053940cadd59ca5e3468dd) C:\Program Files\CyberLink\Shared files\RichVideo.exe
13:54:06.0273 4836 RichVideo ( UnsignedFile.Multi.Generic ) - warning
13:54:06.0274 4836 RichVideo - detected UnsignedFile.Multi.Generic (1)
13:54:06.0359 4836 RpcEptMapper    (78d072f35bc45d9e4e1b61895c152234) C:\windows\System32\RpcEpMap.dll
13:54:06.0438 4836 RpcEptMapper - ok
13:54:06.0487 4836 RpcLocator      (94d36c0e44677dd26981d2bfeef2a29d) C:\windows\system32\locator.exe
13:54:06.0527 4836 RpcLocator - ok
13:54:06.0554 4836 RpcSs           (7660f01d3b38aca1747e397d21d790af) C:\windows\system32\rpcss.dll
13:54:06.0633 4836 RpcSs - ok
13:54:06.0667 4836 rspndr          (032b0d36ad92b582d869879f5af5b928) C:\windows\system32\DRIVERS\rspndr.sys
13:54:06.0736 4836 rspndr - ok
13:54:06.0794 4836 RTL8167         (558684c0bef37c5be04940ee4e607b68) C:\windows\system32\DRIVERS\Rt86win7.sys
13:54:06.0835 4836 RTL8167 - ok
13:54:06.0872 4836 rtport          (41ce6b172542a9a227e34a45881e1d2a) C:\windows\system32\drivers\rtport.sys
13:54:06.0902 4836 rtport - ok
13:54:06.0944 4836 SABI            (6e5fbb7cbaec47038b945d5e9b144a64) C:\windows\system32\Drivers\SABI.sys
13:54:06.0974 4836 SABI - ok
13:54:07.0049 4836 SamSs           (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe
13:54:07.0088 4836 SamSs - ok
13:54:07.0133 4836 Samsung UPD Service (bd26a150dc292913e48ee2b950372dfd) C:\windows\System32\SUPDSvc.exe
13:54:07.0174 4836 Samsung UPD Service - ok
13:54:07.0259 4836 sbp2port        (05d860da1040f111503ac416ccef2bca) C:\windows\system32\drivers\sbp2port.sys
13:54:07.0292 4836 sbp2port - ok
13:54:07.0340 4836 SCardSvr        (8fc518ffe9519c2631d37515a68009c4) C:\windows\System32\SCardSvr.dll
13:54:07.0413 4836 SCardSvr - ok
13:54:07.0430 4836 scfilter        (0693b5ec673e34dc147e195779a4dcf6) C:\windows\system32\DRIVERS\scfilter.sys
13:54:07.0497 4836 scfilter - ok
13:54:07.0560 4836 Schedule        (a04bb13f8a72f8b6e8b4071723e4e336) C:\windows\system32\schedsvc.dll
13:54:07.0653 4836 Schedule - ok
13:54:07.0691 4836 SCPolicySvc     (319c6b309773d063541d01df8ac6f55f) C:\windows\System32\certprop.dll
13:54:07.0874 4836 SCPolicySvc - ok
13:54:07.0924 4836 SDRSVC          (08236c4bce5edd0a0318a438af28e0f7) C:\windows\System32\SDRSVC.dll
13:54:07.0976 4836 SDRSVC - ok
13:54:08.0209 4836 SeaPort         (cc781378e7eda615d2cdca3b17829fa4) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
13:54:08.0258 4836 SeaPort - ok
13:54:08.0319 4836 secdrv          (90a3935d05b494a5a39d37e71f09a677) C:\windows\system32\drivers\secdrv.sys
13:54:08.0386 4836 secdrv - ok
13:54:08.0432 4836 seclogon        (a59b3a4442c52060cc7a85293aa3546f) C:\windows\system32\seclogon.dll
13:54:08.0508 4836 seclogon - ok
13:54:08.0534 4836 SENS            (dcb7fcdcc97f87360f75d77425b81737) C:\windows\system32\sens.dll
13:54:08.0609 4836 SENS - ok
13:54:08.0631 4836 Serenum         (9ad8b8b515e3df6acd4212ef465de2d1) C:\windows\system32\drivers\serenum.sys
13:54:08.0664 4836 Serenum - ok
13:54:08.0686 4836 Serial          (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\windows\system32\drivers\serial.sys
13:54:08.0722 4836 Serial - ok
13:54:08.0735 4836 sermouse        (79bffb520327ff916a582dfea17aa813) C:\windows\system32\drivers\sermouse.sys
13:54:08.0768 4836 sermouse - ok
13:54:08.0811 4836 SessionEnv      (4ae380f39a0032eab7dd953030b26d28) C:\windows\system32\sessenv.dll
13:54:08.0885 4836 SessionEnv - ok
13:54:08.0894 4836 sffdisk         (9f976e1eb233df46fce808d9dea3eb9c) C:\windows\system32\drivers\sffdisk.sys
13:54:08.0933 4836 sffdisk - ok
13:54:08.0945 4836 sffp_mmc        (932a68ee27833cfd57c1639d375f2731) C:\windows\system32\drivers\sffp_mmc.sys
13:54:08.0989 4836 sffp_mmc - ok
13:54:09.0005 4836 sffp_sd         (6d4ccaedc018f1cf52866bbbaa235982) C:\windows\system32\drivers\sffp_sd.sys
13:54:09.0049 4836 sffp_sd - ok
13:54:09.0072 4836 sfloppy         (db96666cc8312ebc45032f30b007a547) C:\windows\system32\drivers\sfloppy.sys
13:54:09.0117 4836 sfloppy - ok
13:54:09.0179 4836 Sftfs           (d9b734638dd8dba9d59aad3189cd0fad) C:\windows\system32\DRIVERS\Sftfslh.sys
13:54:09.0226 4836 Sftfs - ok
13:54:09.0368 4836 sftlist         (cb73bc422c07fb611f194da18d1e7f36) C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
13:54:09.0426 4836 sftlist - ok
13:54:09.0487 4836 Sftplay         (2f61bd46c0bff4eb36e1e359ca17bfc5) C:\windows\system32\DRIVERS\Sftplaylh.sys
13:54:09.0532 4836 Sftplay - ok
13:54:09.0576 4836 Sftredir        (518bac0179f94304f422696b47c0ec12) C:\windows\system32\DRIVERS\Sftredirlh.sys
13:54:09.0603 4836 Sftredir - ok
13:54:09.0638 4836 Sftvol          (747325236d88b3f05ffd27ff9ec711c5) C:\windows\system32\DRIVERS\Sftvollh.sys
13:54:09.0664 4836 Sftvol - ok
13:54:09.0727 4836 sftvsa          (a5812f0281ca5081bf696626f9bf324d) C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
13:54:09.0760 4836 sftvsa - ok
13:54:09.0817 4836 SharedAccess    (d1a079a0de2ea524513b6930c24527a2) C:\windows\System32\ipnathlp.dll
13:54:09.0903 4836 SharedAccess - ok
13:54:09.0963 4836 ShellHWDetection (414da952a35bf5d50192e28263b40577) C:\windows\System32\shsvcs.dll
13:54:10.0058 4836 ShellHWDetection - ok
13:54:10.0146 4836 sisagp          (2565cac0dc9fe0371bdce60832582b2e) C:\windows\system32\drivers\sisagp.sys
13:54:10.0179 4836 sisagp - ok
13:54:10.0213 4836 SiSRaid2        (a9f0486851becb6dda1d89d381e71055) C:\windows\system32\drivers\SiSRaid2.sys
13:54:10.0245 4836 SiSRaid2 - ok
13:54:10.0271 4836 SiSRaid4        (3727097b55738e2f554972c3be5bc1aa) C:\windows\system32\drivers\sisraid4.sys
13:54:10.0304 4836 SiSRaid4 - ok
13:54:10.0328 4836 Smb             (3e21c083b8a01cb70ba1f09303010fce) C:\windows\system32\DRIVERS\smb.sys
13:54:10.0395 4836 Smb - ok
13:54:10.0435 4836 SNMPTRAP        (6a984831644eca1a33ffeae4126f4f37) C:\windows\System32\snmptrap.exe
13:54:10.0479 4836 SNMPTRAP - ok
13:54:10.0520 4836 spldr           (95cf1ae7527fb70f7816563cbc09d942) C:\windows\system32\drivers\spldr.sys
13:54:10.0554 4836 spldr - ok
13:54:10.0601 4836 Spooler         (866a43013535dc8587c258e43579c764) C:\windows\System32\spoolsv.exe
13:54:10.0687 4836 Spooler - ok
13:54:10.0954 4836 sppsvc          (cf87a1de791347e75b98885214ced2b8) C:\windows\system32\sppsvc.exe
13:54:11.0141 4836 sppsvc - ok
13:54:11.0295 4836 sppuinotify     (b0180b20b065d89232a78a40fe56eaa6) C:\windows\system32\sppuinotify.dll
13:54:11.0371 4836 sppuinotify - ok
13:54:11.0437 4836 srv             (e4c2764065d66ea1d2d3ebc28fe99c46) C:\windows\system32\DRIVERS\srv.sys
13:54:11.0477 4836 srv - ok
13:54:11.0512 4836 srv2            (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\windows\system32\DRIVERS\srv2.sys
13:54:11.0553 4836 srv2 - ok
13:54:11.0619 4836 srvnet          (be6bd660caa6f291ae06a718a4fa8abc) C:\windows\system32\DRIVERS\srvnet.sys
13:54:11.0655 4836 srvnet - ok
13:54:11.0706 4836 SSDPSRV         (d887c9fd02ac9fa880f6e5027a43e118) C:\windows\System32\ssdpsrv.dll
13:54:11.0790 4836 SSDPSRV - ok
13:54:11.0803 4836 SstpSvc         (d318f23be45d5e3a107469eb64815b50) C:\windows\system32\sstpsvc.dll
13:54:11.0878 4836 SstpSvc - ok
13:54:11.0915 4836 stexstor        (db32d325c192b801df274bfd12a7e72b) C:\windows\system32\drivers\stexstor.sys
13:54:11.0946 4836 stexstor - ok
13:54:11.0981 4836 StillCam        (edb05bd63148796f23ea78506404a538) C:\windows\system32\DRIVERS\serscan.sys
13:54:12.0028 4836 StillCam - ok
13:54:12.0093 4836 StiSvc          (e1fb3706030fb4578a0d72c2fc3689e4) C:\windows\System32\wiaservc.dll
13:54:12.0157 4836 StiSvc - ok
13:54:12.0184 4836 swenum          (e58c78a848add9610a4db6d214af5224) C:\windows\system32\DRIVERS\swenum.sys
13:54:12.0215 4836 swenum - ok
13:54:12.0259 4836 swprv           (a28bd92df340e57b024ba433165d34d7) C:\windows\System32\swprv.dll
13:54:12.0344 4836 swprv - ok
13:54:12.0427 4836 SysMain         (36650d618ca34c9d357dfd3d89b2c56f) C:\windows\system32\sysmain.dll
13:54:12.0505 4836 SysMain - ok
13:54:12.0556 4836 TabletInputService (763fecdc3d30c815fe72dd57936c6cd1) C:\windows\System32\TabSvc.dll
13:54:12.0609 4836 TabletInputService - ok
13:54:12.0646 4836 TapiSrv         (613bf4820361543956909043a265c6ac) C:\windows\System32\tapisrv.dll
13:54:12.0726 4836 TapiSrv - ok
13:54:12.0757 4836 TBS             (b799d9fdb26111737f58288d8dc172d9) C:\windows\System32\tbssvc.dll
13:54:12.0835 4836 TBS - ok
13:54:12.0986 4836 Tcpip           (7fa2e0f8b072bd04b77b421480b6cc22) C:\windows\system32\drivers\tcpip.sys
13:54:13.0075 4836 Tcpip - ok
13:54:13.0362 4836 TCPIP6          (7fa2e0f8b072bd04b77b421480b6cc22) C:\windows\system32\DRIVERS\tcpip.sys
13:54:13.0442 4836 TCPIP6 - ok
13:54:13.0676 4836 tcpipreg        (cca24162e055c3714ce5a88b100c64ed) C:\windows\system32\drivers\tcpipreg.sys
13:54:13.0744 4836 tcpipreg - ok
13:54:13.0821 4836 TDPIPE          (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\windows\system32\drivers\tdpipe.sys
13:54:13.0854 4836 TDPIPE - ok
13:54:13.0880 4836 TDTCP           (2c2c5afe7ee4f620d69c23c0617651a8) C:\windows\system32\drivers\tdtcp.sys
13:54:13.0913 4836 TDTCP - ok
13:54:13.0933 4836 tdx             (b459575348c20e8121d6039da063c704) C:\windows\system32\DRIVERS\tdx.sys
13:54:13.0997 4836 tdx - ok
13:54:14.0013 4836 TermDD          (04dbf4b01ea4bf25a9a3e84affac9b20) C:\windows\system32\DRIVERS\termdd.sys
13:54:14.0045 4836 TermDD - ok
13:54:14.0100 4836 TermService     (382c804c92811be57829d8e550a900e2) C:\windows\System32\termsrv.dll
13:54:14.0200 4836 TermService - ok
13:54:14.0211 4836 Themes          (42fb6afd6b79d9fe07381609172e7ca4) C:\windows\system32\themeservice.dll
13:54:14.0263 4836 Themes - ok
13:54:14.0301 4836 THREADORDER     (146b6f43a673379a3c670e86d89be5ea) C:\windows\system32\mmcss.dll
13:54:14.0373 4836 THREADORDER - ok
13:54:14.0387 4836 TrkWks          (4792c0378db99a9bc2ae2de6cfff0c3a) C:\windows\System32\trkwks.dll
13:54:14.0463 4836 TrkWks - ok
13:54:14.0535 4836 TrustedInstaller (2c49b175aee1d4364b91b531417fe583) C:\windows\servicing\TrustedInstaller.exe
13:54:14.0602 4836 TrustedInstaller - ok
13:54:14.0678 4836 tssecsrv        (254bb140eee3c59d6114c1a86b636877) C:\windows\system32\DRIVERS\tssecsrv.sys
13:54:14.0748 4836 tssecsrv - ok
13:54:14.0778 4836 TsUsbFlt        (fd1d6c73e6333be727cbcc6054247654) C:\windows\system32\drivers\tsusbflt.sys
13:54:14.0811 4836 TsUsbFlt - ok
13:54:14.0893 4836 TsUsbGD         (01246f0baad7b68ec0f472aa41e33282) C:\windows\system32\drivers\TsUsbGD.sys
13:54:14.0936 4836 TsUsbGD - ok
13:54:14.0954 4836 tunnel          (b2fa25d9b17a68bb93d58b0556e8c90d) C:\windows\system32\DRIVERS\tunnel.sys
13:54:15.0019 4836 tunnel - ok
13:54:15.0042 4836 uagp35          (750fbcb269f4d7dd2e420c56b795db6d) C:\windows\system32\drivers\uagp35.sys
13:54:15.0075 4836 uagp35 - ok
13:54:15.0105 4836 udfs            (ee43346c7e4b5e63e54f927babbb32ff) C:\windows\system32\DRIVERS\udfs.sys
13:54:15.0172 4836 udfs - ok
13:54:15.0220 4836 UI0Detect       (8344fd4fce927880aa1aa7681d4927e5) C:\windows\system32\UI0Detect.exe
13:54:15.0265 4836 UI0Detect - ok
13:54:15.0294 4836 uliagpkx        (44e8048ace47befbfdc2e9be4cbc8880) C:\windows\system32\drivers\uliagpkx.sys
13:54:15.0327 4836 uliagpkx - ok
13:54:15.0389 4836 umbus           (d295bed4b898f0fd999fcfa9b32b071b) C:\windows\system32\DRIVERS\umbus.sys
13:54:15.0434 4836 umbus - ok
13:54:15.0443 4836 UmPass          (7550ad0c6998ba1cb4843e920ee0feac) C:\windows\system32\drivers\umpass.sys
13:54:15.0480 4836 UmPass - ok
13:54:15.0545 4836 upnphost        (833fbb672460efce8011d262175fad33) C:\windows\System32\upnphost.dll
13:54:15.0627 4836 upnphost - ok
13:54:15.0663 4836 usbbus          (9419faac6552a51542dbba02971c841c) C:\windows\system32\DRIVERS\lgusbbus.sys
13:54:15.0693 4836 usbbus - ok
13:54:15.0743 4836 usbccgp         (bd9c55d7023c5de374507acc7a14e2ac) C:\windows\system32\DRIVERS\usbccgp.sys
13:54:15.0778 4836 usbccgp - ok
13:54:15.0811 4836 usbcir          (04ec7cec62ec3b6d9354eee93327fc82) C:\windows\system32\drivers\usbcir.sys
13:54:15.0850 4836 usbcir - ok
13:54:15.0902 4836 UsbDiag         (c0a466fa4ffec464320e159bc1bbdc0c) C:\windows\system32\DRIVERS\lgusbdiag.sys
13:54:15.0931 4836 UsbDiag - ok
13:54:15.0983 4836 usbehci         (f92de757e4b7ce9c07c5e65423f3ae3b) C:\windows\system32\DRIVERS\usbehci.sys
13:54:16.0018 4836 usbehci - ok
13:54:16.0052 4836 usbfilter       (08369f1fdd7c0d4287373d253d64d75e) C:\windows\system32\DRIVERS\usbfilter.sys
13:54:16.0080 4836 usbfilter - ok
13:54:16.0119 4836 usbhub          (8dc94aec6a7e644a06135ae7506dc2e9) C:\windows\system32\DRIVERS\usbhub.sys
13:54:16.0157 4836 usbhub - ok
13:54:16.0213 4836 USBModem        (f74a54774a9b0afeb3c40adec68aa600) C:\windows\system32\DRIVERS\lgusbmodem.sys
13:54:16.0253 4836 USBModem - ok
13:54:16.0283 4836 usbohci         (e185d44fac515a18d9deddc23c2cdf44) C:\windows\system32\DRIVERS\usbohci.sys
13:54:16.0316 4836 usbohci - ok
13:54:16.0348 4836 usbprint        (797d862fe0875e75c7cc4c1ad7b30252) C:\windows\system32\drivers\usbprint.sys
13:54:16.0389 4836 usbprint - ok
13:54:16.0471 4836 USBSTOR         (f991ab9cc6b908db552166768176896a) C:\windows\system32\DRIVERS\USBSTOR.SYS
13:54:16.0506 4836 USBSTOR - ok
13:54:16.0542 4836 usbuhci         (68df884cf41cdada664beb01daf67e3d) C:\windows\system32\drivers\usbuhci.sys
13:54:16.0575 4836 usbuhci - ok
13:54:16.0619 4836 usbvideo        (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\windows\system32\Drivers\usbvideo.sys
13:54:16.0660 4836 usbvideo - ok
13:54:16.0701 4836 UxSms           (081e6e1c91aec36758902a9f727cd23c) C:\windows\System32\uxsms.dll
13:54:16.0777 4836 UxSms - ok
13:54:16.0833 4836 VaultSvc        (81951f51e318aecc2d68559e47485cc4) C:\windows\system32\lsass.exe
13:54:16.0870 4836 VaultSvc - ok
13:54:16.0917 4836 vdrvroot        (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\windows\system32\drivers\vdrvroot.sys
13:54:16.0955 4836 vdrvroot - ok
13:54:17.0006 4836 vds             (c3cd30495687c2a2f66a65ca6fd89be9) C:\windows\System32\vds.exe
13:54:17.0103 4836 vds - ok
13:54:17.0135 4836 vga             (17c408214ea61696cec9c66e388b14f3) C:\windows\system32\DRIVERS\vgapnp.sys
13:54:17.0174 4836 vga - ok
13:54:17.0195 4836 VgaSave         (8e38096ad5c8570a6f1570a61e251561) C:\windows\System32\drivers\vga.sys
13:54:17.0261 4836 VgaSave - ok
13:54:17.0294 4836 vhdmp           (5461686cca2fda57b024547733ab42e3) C:\windows\system32\drivers\vhdmp.sys
13:54:17.0330 4836 vhdmp - ok
13:54:17.0342 4836 viaagp          (c829317a37b4bea8f39735d4b076e923) C:\windows\system32\drivers\viaagp.sys
13:54:17.0376 4836 viaagp - ok
13:54:17.0387 4836 ViaC7           (e02f079a6aa107f06b16549c6e5c7b74) C:\windows\system32\drivers\viac7.sys
13:54:17.0422 4836 ViaC7 - ok
13:54:17.0437 4836 viaide          (e43574f6a56a0ee11809b48c09e4fd3c) C:\windows\system32\drivers\viaide.sys
13:54:17.0467 4836 viaide - ok
13:54:17.0495 4836 volmgr          (4c63e00f2f4b5f86ab48a58cd990f212) C:\windows\system32\drivers\volmgr.sys
13:54:17.0527 4836 volmgr - ok
13:54:17.0551 4836 volmgrx         (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\windows\system32\drivers\volmgrx.sys
13:54:17.0592 4836 volmgrx - ok
13:54:17.0637 4836 volsnap         (c37aee5966eb5929e2051ac7409b5730) C:\windows\system32\drivers\volsnap.sys
13:54:17.0676 4836 volsnap - ok
13:54:17.0701 4836 vsmraid         (9dfa0cc2f8855a04816729651175b631) C:\windows\system32\drivers\vsmraid.sys
13:54:17.0736 4836 vsmraid - ok
13:54:17.0826 4836 VSS             (209a3b1901b83aeb8527ed211cce9e4c) C:\windows\system32\vssvc.exe
13:54:17.0924 4836 VSS - ok
13:54:17.0949 4836 vwifibus        (90567b1e658001e79d7c8bbd3dde5aa6) C:\windows\system32\DRIVERS\vwifibus.sys
13:54:17.0983 4836 vwifibus - ok
13:54:18.0012 4836 vwififlt        (632f1b4b573b19ce0c80df8432d1f65d) C:\windows\system32\DRIVERS\vwififlt.sys
13:54:18.0054 4836 vwififlt - ok
13:54:18.0112 4836 W32Time         (55187fd710e27d5095d10a472c8baf1c) C:\windows\system32\w32time.dll
13:54:18.0199 4836 W32Time - ok
13:54:18.0235 4836 WacomPen        (de3721e89c653aa281428c8a69745d90) C:\windows\system32\drivers\wacompen.sys
13:54:18.0272 4836 WacomPen - ok
13:54:18.0301 4836 WANARP          (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys
13:54:18.0368 4836 WANARP - ok
13:54:18.0376 4836 Wanarpv6        (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\windows\system32\DRIVERS\wanarp.sys
13:54:18.0439 4836 Wanarpv6 - ok
13:54:18.0537 4836 wbengine        (691e3285e53dca558e1a84667f13e15a) C:\windows\system32\wbengine.exe
13:54:18.0608 4836 wbengine - ok
13:54:18.0644 4836 WbioSrvc        (9614b5d29dc76ac3c29f6d2d3aa70e67) C:\windows\System32\wbiosrvc.dll
13:54:18.0700 4836 WbioSrvc - ok
13:54:18.0762 4836 wcncsvc         (34eee0dfaadb4f691d6d5308a51315dc) C:\windows\System32\wcncsvc.dll
13:54:18.0829 4836 wcncsvc - ok
13:54:18.0852 4836 WcsPlugInService (5d930b6357a6d2af4d7653bdabbf352f) C:\windows\System32\WcsPlugInService.dll
13:54:18.0901 4836 WcsPlugInService - ok
13:54:18.0971 4836 Wd              (1112a9badacb47b7c0bb0392e3158dff) C:\windows\system32\drivers\wd.sys
13:54:19.0002 4836 Wd - ok
13:54:19.0059 4836 Wdf01000        (9950e3d0f08141c7e89e64456ae7dc73) C:\windows\system32\drivers\Wdf01000.sys
13:54:19.0116 4836 Wdf01000 - ok
13:54:19.0155 4836 WdiServiceHost  (46ef9dc96265fd0b423db72e7c38c2a5) C:\windows\system32\wdi.dll
13:54:19.0231 4836 WdiServiceHost - ok
13:54:19.0251 4836 WdiSystemHost   (46ef9dc96265fd0b423db72e7c38c2a5) C:\windows\system32\wdi.dll
13:54:19.0315 4836 WdiSystemHost - ok
13:54:19.0345 4836 WebClient       (a9d880f97530d5b8fee278923349929d) C:\windows\System32\webclnt.dll
13:54:19.0401 4836 WebClient - ok
13:54:19.0437 4836 Wecsvc          (760f0afe937a77cff27153206534f275) C:\windows\system32\wecsvc.dll
13:54:19.0516 4836 Wecsvc - ok
13:54:19.0537 4836 wercplsupport   (ac804569bb2364fb6017370258a4091b) C:\windows\System32\wercplsupport.dll
13:54:19.0613 4836 wercplsupport - ok
13:54:19.0640 4836 WerSvc          (08e420d873e4fd85241ee2421b02c4a4) C:\windows\System32\WerSvc.dll
13:54:19.0737 4836 WerSvc - ok
13:54:19.0779 4836 WfpLwf          (8b9a943f3b53861f2bfaf6c186168f79) C:\windows\system32\DRIVERS\wfplwf.sys
13:54:19.0852 4836 WfpLwf - ok
13:54:19.0886 4836 WIMMount        (5cf95b35e59e2a38023836fff31be64c) C:\windows\system32\drivers\wimmount.sys
13:54:19.0919 4836 WIMMount - ok
13:54:20.0115 4836 WinDefend       (3fae8f94296001c32eab62cd7d82e0fd) C:\Program Files\Windows Defender\mpsvc.dll
13:54:20.0174 4836 WinDefend - ok
13:54:20.0192 4836 WinHttpAutoProxySvc - ok
13:54:20.0267 4836 Winmgmt         (f62e510b6ad4c21eb9fe8668ed251826) C:\windows\system32\wbem\WMIsvc.dll
13:54:20.0337 4836 Winmgmt - ok
13:54:20.0455 4836 WinRM           (1b91cd34ea3a90ab6a4ef0550174f4cc) C:\windows\system32\WsmSvc.dll
13:54:20.0570 4836 WinRM - ok
13:54:20.0663 4836 WinUsb          (a67e5f9a400f3bd1be3d80613b45f708) C:\windows\system32\DRIVERS\WinUsb.sys
13:54:20.0703 4836 WinUsb - ok
13:54:20.0780 4836 Wlansvc         (16935c98ff639d185086a3529b1f2067) C:\windows\System32\wlansvc.dll
13:54:20.0854 4836 Wlansvc - ok
13:54:21.0010 4836 wlcrasvc        (6067acef367e79914af628fa1e9b5330) C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
13:54:21.0050 4836 wlcrasvc - ok
13:54:21.0205 4836 wlidsvc         (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
13:54:21.0297 4836 wlidsvc - ok
13:54:21.0550 4836 WmiAcpi         (0217679b8fca58714c3bf2726d2ca84e) C:\windows\system32\drivers\wmiacpi.sys
13:54:21.0584 4836 WmiAcpi - ok
13:54:21.0733 4836 wmiApSrv        (6eb6b66517b048d87dc1856ddf1f4c3f) C:\windows\system32\wbem\WmiApSrv.exe
13:54:21.0787 4836 wmiApSrv - ok
13:54:21.0923 4836 WMPNetworkSvc   (3b40d3a61aa8c21b88ae57c58ab3122e) C:\Program Files\Windows Media Player\wmpnetwk.exe
13:54:21.0982 4836 WMPNetworkSvc - ok
13:54:22.0122 4836 WPCSvc          (a2f0ec770a92f2b3f9de6d518e11409c) C:\windows\System32\wpcsvc.dll
13:54:22.0165 4836 WPCSvc - ok
13:54:22.0194 4836 WPDBusEnum      (aa53356d60af47eacc85bc617a4f3f66) C:\windows\system32\wpdbusenum.dll
13:54:22.0241 4836 WPDBusEnum - ok
13:54:22.0338 4836 ws2ifsl         (6db3276587b853bf886b69528fdb048c) C:\windows\system32\drivers\ws2ifsl.sys
13:54:22.0403 4836 ws2ifsl - ok
13:54:22.0431 4836 wscsvc          (6f5d49efe0e7164e03ae773a3fe25340) C:\windows\system32\wscsvc.dll
13:54:22.0581 4836 wscsvc - ok
13:54:22.0601 4836 WSearch - ok
13:54:22.0745 4836 wuauserv        (3026418a50c5b4761befa632cedb7406) C:\windows\system32\wuaueng.dll
13:54:22.0872 4836 wuauserv - ok
13:54:23.0290 4836 WudfPf          (e714a1c0354636837e20ccbf00888ee7) C:\windows\system32\drivers\WudfPf.sys
13:54:23.0355 4836 WudfPf - ok
13:54:23.0388 4836 WUDFRd          (1023ee888c9b47178c5293ed5336ab69) C:\windows\system32\DRIVERS\WUDFRd.sys
13:54:23.0457 4836 WUDFRd - ok
13:54:23.0735 4836 wudfsvc         (8d1e1e529a2c9e9b6a85b55a345f7629) C:\windows\System32\WUDFSvc.dll
13:54:23.0868 4836 wudfsvc - ok
13:54:23.0913 4836 WwanSvc         (ff2d745b560f7c71b31f30f4d49f73d2) C:\windows\System32\wwansvc.dll
13:54:23.0990 4836 WwanSvc - ok
13:54:24.0038 4836 MBR (0x1B8)     (2e5debb2116b3417023e0d6562d7ed07) \Device\Harddisk0\DR0
13:54:24.0640 4836 \Device\Harddisk0\DR0 - ok
13:54:24.0647 4836 Boot (0x1200)   (82058dd2cbc9b925aabfa0936689c7ab) \Device\Harddisk0\DR0\Partition0
13:54:24.0652 4836 \Device\Harddisk0\DR0\Partition0 - ok
13:54:24.0693 4836 Boot (0x1200)   (5290be75d95588eeb0381bcf2a011ac5) \Device\Harddisk0\DR0\Partition1
13:54:24.0697 4836 \Device\Harddisk0\DR0\Partition1 - ok
13:54:24.0721 4836 Boot (0x1200)   (70b7824e264662f90b18996fe4e61a1c) \Device\Harddisk0\DR0\Partition2
13:54:24.0725 4836 \Device\Harddisk0\DR0\Partition2 - ok
13:54:24.0726 4836 ============================================================
13:54:24.0726 4836 Scan finished
13:54:24.0726 4836 ============================================================
13:54:24.0750 4980 Detected object count: 1
13:54:24.0750 4980 Actual detected object count: 1
13:54:27.0422 4980 RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
13:54:27.0422 4980 RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
13:54:33.0938 3764 Deinitialize success
Responder | Em Árvore
Abra essa mensagem na visão em árvore
|  
Denunciar Conteúdo como Inapropriado

Re: Não consigo entrar no Facebook

Sara
Em resposta à esta mensagem postada por Marcelo
Relatorio AswCleaner:


aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
Run date: 2012-07-19 13:56:16
-----------------------------
13:56:16.467    OS Version: Windows 6.1.7601 Service Pack 1
13:56:16.468    Number of processors: 2 586 0x200
13:56:16.472    ComputerName: SARA-PC  UserName: Sara
13:56:24.059    Initialize success
13:56:24.687    AVAST engine defs: 12071901
13:56:30.761    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000006d
13:56:30.768    Disk 0 Vendor: SAMSUNG_ 2AR1 Size: 305245MB BusType: 11
13:56:30.792    Disk 0 MBR read successfully
13:56:30.799    Disk 0 MBR scan
13:56:30.808    Disk 0 unknown MBR code
13:56:30.824    Disk 0 Partition 1 80 (A) 07    HPFS/NTFS NTFS          100 MB offset 2048
13:56:30.846    Disk 0 Partition 2 00     07    HPFS/NTFS NTFS       115712 MB offset 206848
13:56:30.856    Disk 0 Partition - 00     0F Extended LBA            171908 MB offset 237185024
13:56:30.892    Disk 0 Partition 3 00     27 Hidden NTFS WinRE NTFS        17522 MB offset 589252608
13:56:30.973    Disk 0 Partition 4 00     07    HPFS/NTFS NTFS       171907 MB offset 237187072
13:56:30.990    Disk 0 scanning sectors +625137664
13:56:31.062    Disk 0 scanning C:\windows\system32\drivers
13:56:42.928    Service scanning
13:57:05.471    Modules scanning
13:57:16.341    Disk 0 trace - called modules:
13:57:16.360    ntkrnlpa.exe CLASSPNP.SYS disk.sys amd_xata.sys storport.sys halmacpi.dll amd_sata.sys
13:57:16.362    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85eae8f0]
13:57:16.363    3 CLASSPNP.SYS[8880459e] -> nt!IofCallDriver -> [0x85dea400]
13:57:16.364    5 amd_xata.sys[8858d9d6] -> nt!IofCallDriver -> \Device\0000006d[0x858015c8]
13:57:17.030    AVAST engine scan C:\windows
13:57:21.248    AVAST engine scan C:\windows\system32
14:00:14.869    AVAST engine scan C:\windows\system32\drivers
14:00:26.866    AVAST engine scan C:\Users\Sara
14:01:32.516    Disk 0 MBR has been saved successfully to "C:\Users\Sara\Desktop\MBR.dat"
14:01:32.543    The log file has been saved successfully to "C:\Users\Sara\Desktop\aswMBR.txt"

Responder | Em Árvore
Abra essa mensagem na visão em árvore
|  
Denunciar Conteúdo como Inapropriado

Re: Não consigo entrar no Facebook

Sara
Em resposta à esta mensagem postada por Marcelo
Marcelo nao consigo postar o relatorio do combofix. Diz isso:

Oops... An error has occurred

Please contact Nabble Support and explain what you did to cause this error. Your feedback is very important to us.
Responder | Em Árvore
Abra essa mensagem na visão em árvore
|  
Denunciar Conteúdo como Inapropriado

Re: Não consigo entrar no Facebook

Marcelo
Administrador
Sara, é porque o relatório ficou demasiadamente grande.

Faça o seguinte:

1 - Acesse o site abaixo e cole o conteúdo do relatório no campo em branco.
http://www.pastebin.com

2 - Clique em Submit e poste aqui o link que será gerado.

Responder | Em Árvore
Abra essa mensagem na visão em árvore
|  
Denunciar Conteúdo como Inapropriado

Re: Não consigo entrar no Facebook

Sara
óh, diz assim qndo clico em submit:

Você excedeu o tamanho máximo de arquivo de 500 kilobytes por pasta. PRO usuários não têm esse limite!

:s

Esse meu prob tah lhe dando trabalho hein :/
Responder | Em Árvore
Abra essa mensagem na visão em árvore
|  
Denunciar Conteúdo como Inapropriado

Re: Não consigo entrar no Facebook

Marcelo
Administrador
Sara, não é incômodo algum. É um prazer ajudá-la. Não se incomode com isso.

Anexe o ComboFix txt em seu e-mail e mande para o seguinte endereço: seututorial@yahoo.com.br

Eu baixo e visualizo.

Abraços
Responder | Em Árvore
Abra essa mensagem na visão em árvore
|  
Denunciar Conteúdo como Inapropriado

Re: Não consigo entrar no Facebook

Sara
Marcelo ja enviei o email.
Responder | Em Árvore
Abra essa mensagem na visão em árvore
|  
Denunciar Conteúdo como Inapropriado

Re: Não consigo entrar no Facebook

Marcelo
Administrador
Sara, desculpe a demora. Tive de viajar de última hora.

Voltando ao assunto...

Vamos tentar mais estes dois passos abaixo.

1º Passo


1 - Acesse o link abaixo e copie todo o texto da página que será aberta. Para facilitar, pressione Ctrl + A para selecionar tudo e depois Ctrl + C para copiar.
http://pastebin.com/raw.php?i=HbQe8shu

2 - Abra o programa OTL, que já está em seu PC, como administradora.
3 - No campo inferior em branco da ferramenta chamado "Exames Personalizados/Correções", você deverá colar todo o texto que você copiou da página acima.
4 - Após colá-lo lá, você clicará no botão Consertar e aguardar que seu PC seja reiniciado.
5 - Após a reinicialização, o relatório do resultado será gerado.
6 - Poste ele em sua próxima resposta.

2º Passo


Eu nunca usei esta ferramenta e não sei se resolverá, porém, alguns usuários que estão enfrentando problemas similares ao seu, reportam um resultado positivo. Se quiser tentar, é só logar na página abaixo e baixar o McAfee Scan and Repair.

Link

Vá seguindo as orientações que aparecerão.

Mas, como eu disse, nunca usei e não sei de sua verdadeira eficácia.

Se optar por não usar, é completamente compreensível.

Abraços
Responder | Em Árvore
Abra essa mensagem na visão em árvore
|  
Denunciar Conteúdo como Inapropriado

Re: Não consigo entrar no Facebook

Sara
Marcelo vou levar meu notebook para formatar esta semana pois está mto lento.
12
Carregando...