Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

ilivid redirect - NEED HELP


  • Please log in to reply
16 replies to this topic

#1 allysonm125

allysonm125

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:07:12 PM

Posted 16 October 2012 - 07:09 PM

Over the last couple of days, I've noticed that I sporadically have new tabs opening in my browser called ilivid redirect. A quick google search suggests that I'm not the only one with this problem, but it's pretty clear that I can't get rid of this on my own. As of right now, it isn't happening all of the time, but it seems to be more frequent today. I rely heavily on my internet access right now (job searching) so I need to get this resolved ASAP. Please let me know if you can help!!
Thanks,
Allyson

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:12 PM

Posted 16 October 2012 - 08:34 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 allysonm125

allysonm125
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:07:12 PM

Posted 16 October 2012 - 09:01 PM

TDSSkiller LOG REPORT

20:58:17.0578 5740 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
20:58:19.0062 5740 ============================================================
20:58:19.0062 5740 Current date / time: 2012/10/16 20:58:19.0062
20:58:19.0062 5740 SystemInfo:
20:58:19.0062 5740
20:58:19.0062 5740 OS Version: 5.1.2600 ServicePack: 3.0
20:58:19.0062 5740 Product type: Workstation
20:58:19.0062 5740 ComputerName: D630-02
20:58:19.0062 5740 UserName: Allyson
20:58:19.0062 5740 Windows directory: C:\WINDOWS
20:58:19.0062 5740 System windows directory: C:\WINDOWS
20:58:19.0062 5740 Processor architecture: Intel x86
20:58:19.0062 5740 Number of processors: 2
20:58:19.0062 5740 Page size: 0x1000
20:58:19.0062 5740 Boot type: Normal boot
20:58:19.0062 5740 ============================================================
20:58:20.0546 5740 Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
20:58:20.0562 5740 ============================================================
20:58:20.0562 5740 \Device\Harddisk0\DR0:
20:58:20.0562 5740 MBR partitions:
20:58:20.0562 5740 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x36E8E, BlocksNum 0x94D3772
20:58:20.0562 5740 ============================================================
20:58:20.0593 5740 C: <-> \Device\Harddisk0\DR0\Partition1
20:58:20.0593 5740 ============================================================
20:58:20.0593 5740 Initialize success
20:58:20.0593 5740 ============================================================
20:58:53.0609 2092 ============================================================
20:58:53.0609 2092 Scan started
20:58:53.0609 2092 Mode: Manual; TDLFS;
20:58:53.0609 2092 ============================================================
20:58:54.0046 2092 ================ Scan system memory ========================
20:58:56.0312 2092 System memory - ok
20:58:56.0312 2092 ================ Scan services =============================
20:58:56.0390 2092 Abiosdsk - ok
20:58:56.0437 2092 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
20:58:56.0437 2092 abp480n5 - ok
20:58:56.0484 2092 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
20:58:56.0484 2092 ACPI - ok
20:58:56.0515 2092 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
20:58:56.0531 2092 ACPIEC - ok
20:58:56.0546 2092 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
20:58:56.0562 2092 adpu160m - ok
20:58:56.0578 2092 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
20:58:56.0578 2092 aec - ok
20:58:56.0609 2092 [ A1AD1A4A9F18D900CA9C93FA3EFDCB56 ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
20:58:56.0625 2092 AegisP - ok
20:58:56.0656 2092 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
20:58:56.0671 2092 AFD - ok
20:58:56.0703 2092 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
20:58:56.0703 2092 agp440 - ok
20:58:56.0718 2092 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
20:58:56.0734 2092 agpCPQ - ok
20:58:56.0750 2092 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
20:58:56.0750 2092 Aha154x - ok
20:58:56.0765 2092 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
20:58:56.0765 2092 aic78u2 - ok
20:58:56.0781 2092 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
20:58:56.0796 2092 aic78xx - ok
20:58:56.0828 2092 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
20:58:56.0843 2092 Alerter - ok
20:58:56.0875 2092 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
20:58:56.0890 2092 ALG - ok
20:58:56.0906 2092 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
20:58:56.0921 2092 AliIde - ok
20:58:56.0937 2092 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
20:58:56.0953 2092 alim1541 - ok
20:58:56.0968 2092 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
20:58:56.0984 2092 amdagp - ok
20:58:56.0984 2092 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
20:58:57.0000 2092 amsint - ok
20:58:57.0046 2092 [ 350F19EB5FE4EC37A2414DF56CDE1AA8 ] ApfiltrService C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
20:58:57.0062 2092 ApfiltrService - ok
20:58:57.0093 2092 [ EC94E05B76D033B74394E7B2175103CF ] APPDRV C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS
20:58:57.0109 2092 APPDRV - ok
20:58:57.0218 2092 [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:58:57.0234 2092 Apple Mobile Device - ok
20:58:57.0281 2092 [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
20:58:57.0296 2092 AppMgmt - ok
20:58:57.0328 2092 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
20:58:57.0343 2092 Arp1394 - ok
20:58:57.0359 2092 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
20:58:57.0375 2092 asc - ok
20:58:57.0390 2092 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
20:58:57.0406 2092 asc3350p - ok
20:58:57.0437 2092 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
20:58:57.0453 2092 asc3550 - ok
20:58:57.0546 2092 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
20:58:57.0609 2092 aspnet_state - ok
20:58:57.0625 2092 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
20:58:57.0640 2092 AsyncMac - ok
20:58:57.0671 2092 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
20:58:57.0671 2092 atapi - ok
20:58:57.0671 2092 Atdisk - ok
20:58:57.0703 2092 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
20:58:57.0718 2092 Atmarpc - ok
20:58:57.0750 2092 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
20:58:57.0765 2092 AudioSrv - ok
20:58:57.0781 2092 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
20:58:57.0796 2092 audstub - ok
20:58:57.0890 2092 [ B9AE3C63A53396CD669EF8AE9C9CBD85 ] avg8emc C:\PROGRA~1\AVG\AVG8\avgemc.exe
20:58:57.0953 2092 avg8emc - ok
20:58:58.0015 2092 [ DB338A6BD3976904EB0F8343F51E64EB ] avg8wd C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
20:58:58.0296 2092 avg8wd - ok
20:58:58.0328 2092 [ BC12F2404BB6F2B6B2FF3C4C246CB752 ] AvgLdx86 C:\WINDOWS\System32\Drivers\avgldx86.sys
20:58:58.0343 2092 AvgLdx86 - ok
20:58:58.0343 2092 [ 5903D729D4F0C5BCA74123C96A1B29E0 ] AvgMfx86 C:\WINDOWS\System32\Drivers\avgmfx86.sys
20:58:58.0359 2092 AvgMfx86 - ok
20:58:58.0390 2092 [ 92D8E1E8502E649B60E70074EB29C380 ] AvgTdiX C:\WINDOWS\System32\Drivers\avgtdix.sys
20:58:58.0390 2092 AvgTdiX - ok
20:58:58.0437 2092 [ F96038AA1EC4013A93D2420FC689D1E9 ] b57w2k C:\WINDOWS\system32\DRIVERS\b57xp32.sys
20:58:58.0437 2092 b57w2k - ok
20:58:58.0453 2092 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
20:58:58.0468 2092 Beep - ok
20:58:58.0484 2092 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
20:58:58.0578 2092 BITS - ok
20:58:58.0640 2092 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:58:58.0656 2092 Bonjour Service - ok
20:58:58.0687 2092 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
20:58:58.0703 2092 Browser - ok
20:58:58.0703 2092 BTCFilterService - ok
20:58:58.0718 2092 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
20:58:58.0718 2092 cbidf - ok
20:58:58.0734 2092 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
20:58:58.0734 2092 cbidf2k - ok
20:58:58.0734 2092 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
20:58:58.0750 2092 cd20xrnt - ok
20:58:58.0765 2092 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
20:58:58.0781 2092 Cdaudio - ok
20:58:58.0781 2092 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
20:58:58.0796 2092 Cdfs - ok
20:58:58.0796 2092 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
20:58:58.0812 2092 Cdrom - ok
20:58:58.0812 2092 Changer - ok
20:58:58.0843 2092 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
20:58:58.0859 2092 CiSvc - ok
20:58:58.0859 2092 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
20:58:58.0875 2092 ClipSrv - ok
20:58:58.0906 2092 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:58:58.0968 2092 clr_optimization_v2.0.50727_32 - ok
20:58:59.0000 2092 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
20:58:59.0000 2092 CmBatt - ok
20:58:59.0031 2092 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
20:58:59.0031 2092 CmdIde - ok
20:58:59.0062 2092 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
20:58:59.0078 2092 Compbatt - ok
20:58:59.0078 2092 COMSysApp - ok
20:58:59.0093 2092 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
20:58:59.0109 2092 Cpqarray - ok
20:58:59.0125 2092 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
20:58:59.0140 2092 CryptSvc - ok
20:58:59.0156 2092 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
20:58:59.0171 2092 dac2w2k - ok
20:58:59.0187 2092 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
20:58:59.0187 2092 dac960nt - ok
20:58:59.0234 2092 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
20:58:59.0234 2092 DcomLaunch - ok
20:58:59.0281 2092 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
20:58:59.0281 2092 Dhcp - ok
20:58:59.0281 2092 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
20:58:59.0296 2092 Disk - ok
20:58:59.0296 2092 dmadmin - ok
20:58:59.0343 2092 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
20:58:59.0390 2092 dmboot - ok
20:58:59.0406 2092 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
20:58:59.0421 2092 dmio - ok
20:58:59.0453 2092 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
20:58:59.0468 2092 dmload - ok
20:58:59.0500 2092 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
20:58:59.0500 2092 dmserver - ok
20:58:59.0515 2092 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
20:58:59.0531 2092 DMusic - ok
20:58:59.0546 2092 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
20:58:59.0578 2092 Dnscache - ok
20:58:59.0609 2092 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
20:58:59.0625 2092 Dot3svc - ok
20:58:59.0640 2092 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
20:58:59.0656 2092 dpti2o - ok
20:58:59.0687 2092 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
20:58:59.0687 2092 drmkaud - ok
20:58:59.0718 2092 [ 549734664886D91222969845E4311D1B ] DXEC01 C:\WINDOWS\system32\drivers\dxec01.sys
20:58:59.0750 2092 DXEC01 - ok
20:58:59.0765 2092 [ 3FCA03CBCA11269F973B70FA483C88EF ] E100B C:\WINDOWS\system32\DRIVERS\e100b325.sys
20:58:59.0781 2092 E100B - ok
20:58:59.0796 2092 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
20:58:59.0828 2092 EapHost - ok
20:58:59.0843 2092 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
20:58:59.0843 2092 ERSvc - ok
20:58:59.0875 2092 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
20:58:59.0921 2092 Eventlog - ok
20:58:59.0968 2092 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
20:59:00.0000 2092 EventSystem - ok
20:59:00.0046 2092 [ E71B03FF6B819AE1A286AA27E956D523 ] EvtEng C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
20:59:00.0093 2092 EvtEng - ok
20:59:00.0140 2092 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
20:59:00.0156 2092 Fastfat - ok
20:59:00.0187 2092 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
20:59:00.0218 2092 FastUserSwitchingCompatibility - ok
20:59:00.0265 2092 [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax C:\WINDOWS\system32\fxssvc.exe
20:59:00.0312 2092 Fax - ok
20:59:00.0328 2092 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
20:59:00.0343 2092 Fdc - ok
20:59:00.0375 2092 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
20:59:00.0390 2092 Fips - ok
20:59:00.0406 2092 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
20:59:00.0421 2092 Flpydisk - ok
20:59:00.0468 2092 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
20:59:00.0515 2092 FltMgr - ok
20:59:00.0578 2092 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
20:59:00.0609 2092 FontCache3.0.0.0 - ok
20:59:00.0625 2092 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
20:59:00.0656 2092 Fs_Rec - ok
20:59:00.0687 2092 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
20:59:00.0718 2092 Ftdisk - ok
20:59:00.0750 2092 [ 8182FF89C65E4D38B2DE4BB0FB18564E ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
20:59:00.0765 2092 GEARAspiWDM - ok
20:59:00.0781 2092 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
20:59:00.0796 2092 Gpc - ok
20:59:00.0812 2092 [ 7031A936832967A93B0E5D5F1C76745A ] guardian2 C:\WINDOWS\system32\Drivers\oz776.sys
20:59:00.0843 2092 guardian2 - ok
20:59:00.0906 2092 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
20:59:00.0906 2092 gupdate - ok
20:59:00.0921 2092 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
20:59:00.0921 2092 gupdatem - ok
20:59:00.0937 2092 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
20:59:00.0968 2092 gusvc - ok
20:59:01.0015 2092 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
20:59:01.0015 2092 HDAudBus - ok
20:59:01.0078 2092 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
20:59:01.0078 2092 helpsvc - ok
20:59:01.0109 2092 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
20:59:01.0125 2092 HidServ - ok
20:59:01.0156 2092 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
20:59:01.0171 2092 HidUsb - ok
20:59:01.0203 2092 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
20:59:01.0218 2092 hkmsvc - ok
20:59:01.0234 2092 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
20:59:01.0250 2092 hpn - ok
20:59:01.0265 2092 [ 290CDBB05903742EA06B7203C5A662F5 ] HSFHWAZL C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
20:59:01.0281 2092 HSFHWAZL - ok
20:59:01.0328 2092 [ 7AB812355F98858B9ECDD46E6FCC221F ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
20:59:01.0359 2092 HSF_DPV - ok
20:59:01.0390 2092 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
20:59:01.0406 2092 HTTP - ok
20:59:01.0421 2092 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
20:59:01.0437 2092 HTTPFilter - ok
20:59:01.0484 2092 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
20:59:01.0500 2092 i2omgmt - ok
20:59:01.0531 2092 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
20:59:01.0546 2092 i2omp - ok
20:59:01.0562 2092 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
20:59:01.0578 2092 i8042prt - ok
20:59:01.0781 2092 [ 200CCA76CD0E0F7EEC78FA56C29B4D67 ] ialm C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
20:59:01.0906 2092 ialm - ok
20:59:01.0984 2092 [ 6F95324909B502E2651442C1548AB12F ] IDriverT C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
20:59:02.0031 2092 IDriverT - ok
20:59:02.0109 2092 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
20:59:02.0171 2092 idsvc - ok
20:59:02.0203 2092 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
20:59:02.0234 2092 Imapi - ok
20:59:02.0281 2092 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
20:59:02.0328 2092 ImapiService - ok
20:59:02.0359 2092 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
20:59:02.0375 2092 ini910u - ok
20:59:02.0406 2092 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
20:59:02.0421 2092 IntelIde - ok
20:59:02.0437 2092 [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
20:59:02.0468 2092 intelppm - ok
20:59:02.0484 2092 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
20:59:02.0515 2092 Ip6Fw - ok
20:59:02.0531 2092 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
20:59:02.0562 2092 IpFilterDriver - ok
20:59:02.0578 2092 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
20:59:02.0593 2092 IpInIp - ok
20:59:02.0625 2092 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
20:59:02.0656 2092 IpNat - ok
20:59:02.0703 2092 [ E6BE7A41A28D8F2DB174957454D32448 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:59:02.0796 2092 iPod Service - ok
20:59:02.0812 2092 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
20:59:02.0828 2092 IPSec - ok
20:59:02.0859 2092 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
20:59:02.0875 2092 IRENUM - ok
20:59:02.0890 2092 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
20:59:02.0921 2092 isapnp - ok
20:59:03.0000 2092 [ 0A5709543986843D37A92290B7838340 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
20:59:03.0046 2092 JavaQuickStarterService - ok
20:59:03.0062 2092 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
20:59:03.0093 2092 Kbdclass - ok
20:59:03.0109 2092 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
20:59:03.0125 2092 kbdhid - ok
20:59:03.0156 2092 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
20:59:03.0171 2092 kmixer - ok
20:59:03.0218 2092 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
20:59:03.0250 2092 KSecDD - ok
20:59:03.0296 2092 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
20:59:03.0328 2092 lanmanserver - ok
20:59:03.0343 2092 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
20:59:03.0390 2092 lanmanworkstation - ok
20:59:03.0390 2092 lbrtfdc - ok
20:59:03.0437 2092 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
20:59:03.0437 2092 LmHosts - ok
20:59:03.0484 2092 [ A3E700D78EEC390F1208098CDCA5C6B6 ] MarvinBus C:\WINDOWS\system32\DRIVERS\MarvinBus.sys
20:59:03.0500 2092 MarvinBus - ok
20:59:03.0546 2092 [ F8B823414A22DBF3BEC10DCAA5F93CD8 ] McciCMService C:\Program Files\Common Files\Motive\McciCMService.exe
20:59:03.0671 2092 McciCMService - ok
20:59:03.0765 2092 [ 11F714F85530A2BD134074DC30E99FCA ] MDM C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
20:59:03.0828 2092 MDM - ok
20:59:03.0828 2092 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
20:59:03.0859 2092 mdmxsdk - ok
20:59:03.0875 2092 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
20:59:03.0906 2092 Messenger - ok
20:59:03.0953 2092 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
20:59:03.0968 2092 mnmdd - ok
20:59:04.0000 2092 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
20:59:04.0031 2092 mnmsrvc - ok
20:59:04.0078 2092 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
20:59:04.0093 2092 Modem - ok
20:59:04.0109 2092 motccgp - ok
20:59:04.0109 2092 motccgpfl - ok
20:59:04.0140 2092 motmodem - ok
20:59:04.0140 2092 MotoSwitchService - ok
20:59:04.0140 2092 Motousbnet - ok
20:59:04.0156 2092 motusbdevice - ok
20:59:04.0156 2092 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
20:59:04.0187 2092 Mouclass - ok
20:59:04.0218 2092 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
20:59:04.0234 2092 mouhid - ok
20:59:04.0250 2092 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
20:59:04.0281 2092 MountMgr - ok
20:59:04.0328 2092 [ 4D7F2682D29B92A6251B17957AA0B985 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
20:59:04.0375 2092 MozillaMaintenance - ok
20:59:04.0406 2092 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
20:59:04.0437 2092 mraid35x - ok
20:59:04.0453 2092 [ 9BD4DCB5412921864A7AACDEDFBD1923 ] MREMP50 C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS
20:59:04.0484 2092 MREMP50 - ok
20:59:04.0500 2092 [ 07C02C892E8E1A72D6BF35004F0E9C5E ] MRESP50 C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS
20:59:04.0531 2092 MRESP50 - ok
20:59:04.0546 2092 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
20:59:04.0562 2092 MRxDAV - ok
20:59:04.0609 2092 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
20:59:04.0656 2092 MRxSmb - ok
20:59:04.0671 2092 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
20:59:04.0687 2092 Msfs - ok
20:59:04.0687 2092 MSIServer - ok
20:59:04.0718 2092 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
20:59:04.0734 2092 MSKSSRV - ok
20:59:04.0750 2092 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
20:59:04.0765 2092 MSPCLOCK - ok
20:59:04.0796 2092 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
20:59:04.0812 2092 MSPQM - ok
20:59:04.0828 2092 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
20:59:04.0843 2092 mssmbios - ok
20:59:04.0875 2092 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
20:59:04.0890 2092 Mup - ok
20:59:04.0937 2092 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
20:59:05.0000 2092 napagent - ok
20:59:05.0031 2092 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
20:59:05.0062 2092 NDIS - ok
20:59:05.0078 2092 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
20:59:05.0093 2092 NdisTapi - ok
20:59:05.0125 2092 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
20:59:05.0125 2092 Ndisuio - ok
20:59:05.0156 2092 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
20:59:05.0187 2092 NdisWan - ok
20:59:05.0234 2092 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
20:59:05.0250 2092 NDProxy - ok
20:59:05.0265 2092 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
20:59:05.0281 2092 NetBIOS - ok
20:59:05.0296 2092 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
20:59:05.0328 2092 NetBT - ok
20:59:05.0359 2092 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
20:59:05.0406 2092 NetDDE - ok
20:59:05.0406 2092 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
20:59:05.0421 2092 NetDDEdsdm - ok
20:59:05.0437 2092 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
20:59:05.0468 2092 Netlogon - ok
20:59:05.0500 2092 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
20:59:05.0500 2092 Netman - ok
20:59:05.0546 2092 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
20:59:05.0578 2092 NetTcpPortSharing - ok
20:59:05.0687 2092 [ B5AB1108B377B5F3D37409FABDA01453 ] NETw4x32 C:\WINDOWS\system32\DRIVERS\NETw4x32.sys
20:59:05.0781 2092 NETw4x32 - ok
20:59:05.0781 2092 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
20:59:05.0812 2092 NIC1394 - ok
20:59:05.0890 2092 [ 27D38B7D646283D98D65E3435B1E6197 ] NICCONFIGSVC C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
20:59:05.0921 2092 NICCONFIGSVC - ok
20:59:05.0968 2092 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
20:59:05.0968 2092 Nla - ok
20:59:06.0000 2092 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
20:59:06.0000 2092 Npfs - ok
20:59:06.0062 2092 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
20:59:06.0078 2092 Ntfs - ok
20:59:06.0109 2092 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
20:59:06.0109 2092 NtLmSsp - ok
20:59:06.0140 2092 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
20:59:06.0171 2092 NtmsSvc - ok
20:59:06.0187 2092 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
20:59:06.0203 2092 Null - ok
20:59:06.0265 2092 [ 2B298519EDBFCF451D43E0F1E8F1006D ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
20:59:06.0312 2092 nv - ok
20:59:06.0343 2092 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
20:59:06.0359 2092 NwlnkFlt - ok
20:59:06.0359 2092 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
20:59:06.0375 2092 NwlnkFwd - ok
20:59:06.0390 2092 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
20:59:06.0390 2092 ohci1394 - ok
20:59:06.0437 2092 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:59:06.0468 2092 ose - ok
20:59:06.0500 2092 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
20:59:06.0515 2092 Parport - ok
20:59:06.0531 2092 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
20:59:06.0546 2092 PartMgr - ok
20:59:06.0562 2092 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
20:59:06.0562 2092 ParVdm - ok
20:59:06.0593 2092 [ 9EC004140E1B675ACDEB07F66EE797A4 ] PBADRV C:\WINDOWS\system32\DRIVERS\PBADRV.sys
20:59:06.0593 2092 PBADRV - ok
20:59:06.0625 2092 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
20:59:06.0625 2092 PCI - ok
20:59:06.0640 2092 PCIDump - ok
20:59:06.0656 2092 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
20:59:06.0656 2092 PCIIde - ok
20:59:06.0671 2092 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
20:59:06.0687 2092 Pcmcia - ok
20:59:06.0703 2092 [ 7EA0EBD6E5AA687E116EB185A7CFB667 ] PCTAppEvent C:\WINDOWS\system32\drivers\PCTAppEvent.sys
20:59:06.0734 2092 PCTAppEvent - ok
20:59:06.0734 2092 [ 60AF5FA418EFE284FB81DBBF5A0391FB ] PCTFW-PacketFilter C:\WINDOWS\system32\drivers\pctNdis-PacketFilter.sys
20:59:06.0750 2092 PCTFW-PacketFilter - ok
20:59:06.0765 2092 [ 5BE722C8C9BBA995693C8CD524D83B27 ] pctgntdi C:\WINDOWS\system32\drivers\pctgntdi.sys
20:59:06.0828 2092 pctgntdi - ok
20:59:06.0859 2092 [ 3EC79CFB2E0E74AADA8B561ED8904577 ] pctNdis C:\WINDOWS\system32\DRIVERS\pctNdis.sys
20:59:06.0875 2092 pctNdis - ok
20:59:06.0890 2092 [ 3EC79CFB2E0E74AADA8B561ED8904577 ] pctNdisMP C:\WINDOWS\system32\DRIVERS\pctNdis.sys
20:59:06.0890 2092 pctNdisMP - ok
20:59:06.0953 2092 [ 86D511370A217B554916E3A45D091042 ] PCToolsFirewallPlus C:\Program Files\PC Tools Firewall Plus\FWService.exe
20:59:07.0062 2092 PCToolsFirewallPlus - ok
20:59:07.0109 2092 [ FE6803AF91DDB32FF8EDF5D6C0D370AF ] pctplfw C:\WINDOWS\system32\drivers\pctplfw.sys
20:59:07.0109 2092 pctplfw - ok
20:59:07.0109 2092 PDCOMP - ok
20:59:07.0125 2092 PDFRAME - ok
20:59:07.0125 2092 PDRELI - ok
20:59:07.0125 2092 PDRFRAME - ok
20:59:07.0171 2092 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
20:59:07.0187 2092 perc2 - ok
20:59:07.0218 2092 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
20:59:07.0234 2092 perc2hib - ok
20:59:07.0250 2092 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
20:59:07.0250 2092 PlugPlay - ok
20:59:07.0265 2092 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
20:59:07.0265 2092 PolicyAgent - ok
20:59:07.0281 2092 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
20:59:07.0296 2092 PptpMiniport - ok
20:59:07.0296 2092 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
20:59:07.0296 2092 ProtectedStorage - ok
20:59:07.0296 2092 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
20:59:07.0312 2092 PSched - ok
20:59:07.0328 2092 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
20:59:07.0343 2092 Ptilink - ok
20:59:07.0359 2092 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
20:59:07.0359 2092 ql1080 - ok
20:59:07.0375 2092 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
20:59:07.0375 2092 Ql10wnt - ok
20:59:07.0390 2092 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
20:59:07.0390 2092 ql12160 - ok
20:59:07.0406 2092 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
20:59:07.0406 2092 ql1240 - ok
20:59:07.0421 2092 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
20:59:07.0437 2092 ql1280 - ok
20:59:07.0453 2092 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
20:59:07.0453 2092 RasAcd - ok
20:59:07.0468 2092 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
20:59:07.0500 2092 RasAuto - ok
20:59:07.0515 2092 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
20:59:07.0515 2092 Rasl2tp - ok
20:59:07.0562 2092 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
20:59:07.0578 2092 RasMan - ok
20:59:07.0593 2092 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
20:59:07.0609 2092 RasPppoe - ok
20:59:07.0625 2092 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
20:59:07.0640 2092 Raspti - ok
20:59:07.0656 2092 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
20:59:07.0687 2092 Rdbss - ok
20:59:07.0703 2092 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
20:59:07.0718 2092 RDPCDD - ok
20:59:07.0734 2092 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
20:59:07.0765 2092 rdpdr - ok
20:59:07.0812 2092 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
20:59:07.0828 2092 RDPWD - ok
20:59:07.0843 2092 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
20:59:07.0890 2092 RDSessMgr - ok
20:59:07.0906 2092 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
20:59:07.0921 2092 redbook - ok
20:59:07.0953 2092 [ 2CF574D0965F58E514A2DC94114D7ECA ] RegSrvc C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
20:59:07.0968 2092 RegSrvc - ok
20:59:08.0015 2092 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
20:59:08.0031 2092 RemoteAccess - ok
20:59:08.0046 2092 [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
20:59:08.0062 2092 RemoteRegistry - ok
20:59:08.0062 2092 RimUsb - ok
20:59:08.0093 2092 [ 2C4FB2E9F039287767C384E46EE91030 ] RimVSerPort C:\WINDOWS\system32\DRIVERS\RimSerial.sys
20:59:08.0109 2092 RimVSerPort - ok
20:59:08.0125 2092 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
20:59:08.0125 2092 ROOTMODEM - ok
20:59:08.0156 2092 RoxLiveShare9 - ok
20:59:08.0171 2092 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
20:59:08.0187 2092 RpcLocator - ok
20:59:08.0218 2092 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\system32\rpcss.dll
20:59:08.0218 2092 RpcSs - ok
20:59:08.0265 2092 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
20:59:08.0281 2092 RSVP - ok
20:59:08.0328 2092 [ 874173EDBD4F2FE711F245855A2FFA23 ] S24EventMonitor C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
20:59:08.0359 2092 S24EventMonitor - ok
20:59:08.0375 2092 [ EADFB87F911A7A75D1B80617F92901E8 ] s24trans C:\WINDOWS\system32\DRIVERS\s24trans.sys
20:59:08.0390 2092 s24trans - ok
20:59:08.0390 2092 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
20:59:08.0390 2092 SamSs - ok
20:59:08.0406 2092 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
20:59:08.0421 2092 SCardSvr - ok
20:59:08.0437 2092 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
20:59:08.0453 2092 Schedule - ok
20:59:08.0468 2092 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
20:59:08.0468 2092 Secdrv - ok
20:59:08.0484 2092 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
20:59:08.0500 2092 seclogon - ok
20:59:08.0593 2092 [ 472946EDEBF85C1F0B44B6EBA01AC9B6 ] SecureStorageService C:\Program Files\Wave Systems Corp\Secure Storage Manager\SecureStorageService.exe
20:59:08.0656 2092 SecureStorageService - ok
20:59:08.0687 2092 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
20:59:08.0703 2092 SENS - ok
20:59:08.0734 2092 [ B490AD520257DDA26C1D587A71E527B5 ] Ser2pl C:\WINDOWS\system32\DRIVERS\ser2pl.sys
20:59:08.0750 2092 Ser2pl - ok
20:59:08.0781 2092 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
20:59:08.0796 2092 serenum - ok
20:59:08.0812 2092 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
20:59:08.0828 2092 Serial - ok
20:59:08.0828 2092 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
20:59:08.0843 2092 Sfloppy - ok
20:59:08.0890 2092 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
20:59:08.0906 2092 SharedAccess - ok
20:59:08.0921 2092 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
20:59:08.0921 2092 ShellHWDetection - ok
20:59:08.0937 2092 Simbad - ok
20:59:08.0953 2092 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
20:59:08.0984 2092 sisagp - ok
20:59:09.0000 2092 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
20:59:09.0031 2092 Sparrow - ok
20:59:09.0062 2092 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
20:59:09.0062 2092 splitter - ok
20:59:09.0093 2092 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
20:59:09.0125 2092 Spooler - ok
20:59:09.0171 2092 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
20:59:09.0187 2092 sr - ok
20:59:09.0203 2092 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
20:59:09.0218 2092 srservice - ok
20:59:09.0250 2092 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
20:59:09.0281 2092 Srv - ok
20:59:09.0312 2092 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
20:59:09.0359 2092 SSDPSRV - ok
20:59:09.0390 2092 [ 6F855B5625A47F3AC731A262FDC379A6 ] STacSV C:\WINDOWS\system32\StacSV.exe
20:59:09.0562 2092 STacSV - ok
20:59:09.0656 2092 [ 951801DFB54D86F611F0AF47825476F9 ] STHDA C:\WINDOWS\system32\drivers\sthda.sys
20:59:09.0703 2092 STHDA - ok
20:59:09.0734 2092 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
20:59:09.0765 2092 stisvc - ok
20:59:09.0796 2092 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
20:59:09.0796 2092 swenum - ok
20:59:09.0828 2092 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
20:59:09.0828 2092 swmidi - ok
20:59:09.0843 2092 SwPrv - ok
20:59:09.0859 2092 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
20:59:09.0875 2092 symc810 - ok
20:59:09.0890 2092 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
20:59:09.0906 2092 symc8xx - ok
20:59:09.0921 2092 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
20:59:09.0937 2092 sym_hi - ok
20:59:09.0937 2092 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
20:59:09.0937 2092 sym_u3 - ok
20:59:09.0968 2092 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
20:59:09.0968 2092 sysaudio - ok
20:59:09.0984 2092 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
20:59:10.0000 2092 SysmonLog - ok
20:59:10.0031 2092 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
20:59:10.0046 2092 TapiSrv - ok
20:59:10.0078 2092 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
20:59:10.0093 2092 Tcpip - ok
20:59:10.0187 2092 [ 23B506262493F1A521683EE88C5FBF60 ] tcsd_win32.exe C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe
20:59:10.0296 2092 tcsd_win32.exe - ok
20:59:10.0328 2092 [ A27D803B21F24A5CFB775944EA4CB130 ] TdmService C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe
20:59:10.0343 2092 TdmService - ok
20:59:10.0359 2092 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
20:59:10.0375 2092 TDPIPE - ok
20:59:10.0390 2092 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
20:59:10.0406 2092 TDTCP - ok
20:59:10.0421 2092 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
20:59:10.0437 2092 TermDD - ok
20:59:10.0468 2092 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
20:59:10.0484 2092 TermService - ok
20:59:10.0500 2092 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
20:59:10.0500 2092 Themes - ok
20:59:10.0531 2092 [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
20:59:10.0546 2092 TlntSvr - ok
20:59:10.0578 2092 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
20:59:10.0578 2092 TosIde - ok
20:59:10.0593 2092 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
20:59:10.0593 2092 TrkWks - ok
20:59:10.0625 2092 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
20:59:10.0625 2092 Udfs - ok
20:59:10.0640 2092 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
20:59:10.0656 2092 ultra - ok
20:59:10.0671 2092 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
20:59:10.0687 2092 Update - ok
20:59:10.0703 2092 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
20:59:10.0734 2092 upnphost - ok
20:59:10.0734 2092 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
20:59:10.0734 2092 UPS - ok
20:59:10.0765 2092 [ EAFE1E00739AFE6C51487A050E772E17 ] USBAAPL C:\WINDOWS\system32\Drivers\usbaapl.sys
20:59:10.0781 2092 USBAAPL - ok
20:59:10.0828 2092 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
20:59:10.0843 2092 usbccgp - ok
20:59:10.0890 2092 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
20:59:10.0906 2092 usbehci - ok
20:59:10.0984 2092 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
20:59:11.0125 2092 usbhub - ok
20:59:11.0281 2092 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
20:59:11.0328 2092 usbprint - ok
20:59:11.0468 2092 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
20:59:11.0484 2092 usbscan - ok
20:59:11.0500 2092 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
20:59:11.0515 2092 USBSTOR - ok
20:59:11.0531 2092 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
20:59:11.0531 2092 usbuhci - ok
20:59:11.0531 2092 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
20:59:11.0546 2092 VgaSave - ok
20:59:11.0578 2092 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
20:59:11.0593 2092 viaagp - ok
20:59:11.0593 2092 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
20:59:11.0609 2092 ViaIde - ok
20:59:11.0625 2092 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
20:59:11.0625 2092 VolSnap - ok
20:59:11.0656 2092 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
20:59:11.0687 2092 VSS - ok
20:59:11.0703 2092 [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time C:\WINDOWS\system32\w32time.dll
20:59:11.0703 2092 w32time - ok
20:59:11.0703 2092 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
20:59:11.0718 2092 Wanarp - ok
20:59:11.0718 2092 Wave UCSPlus - ok
20:59:11.0796 2092 [ 796FDA916625BE7E5F6CFECE15A81C3A ] WaveEnrollmentService C:\Program Files\Wave Systems Corp\Authentication Manager\WaveEnrollmentService.exe
20:59:11.0828 2092 WaveEnrollmentService - ok
20:59:11.0859 2092 [ DB626C46997C2430D4958DA5C7FFB969 ] WaveFDE C:\WINDOWS\system32\DRIVERS\WaveFDE.sys
20:59:11.0875 2092 WaveFDE - ok
20:59:11.0906 2092 [ 51E756F2BFB5E3ADCB15F966AD293231 ] WavxDMgr C:\WINDOWS\system32\DRIVERS\WavxDMgr.sys
20:59:11.0921 2092 WavxDMgr - ok
20:59:11.0953 2092 [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000 C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
20:59:11.0984 2092 Wdf01000 - ok
20:59:11.0984 2092 WDICA - ok
20:59:12.0000 2092 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
20:59:12.0000 2092 wdmaud - ok
20:59:12.0046 2092 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
20:59:12.0062 2092 WebClient - ok
20:59:12.0109 2092 [ A8596CF86D445269A42ECC08B7066A4C ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
20:59:12.0140 2092 winachsf - ok
20:59:12.0218 2092 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
20:59:12.0218 2092 winmgmt - ok
20:59:12.0578 2092 [ CAE0321F71C1FC421244BA1EEB0C1668 ] WiselinkPro C:\Program Files\SAMSUNG\PC Auto Backup\WiselinkPro.exe
20:59:12.0734 2092 WiselinkPro - ok
20:59:12.0781 2092 [ 4307641CA3389A210295FDFFD2A73DEE ] WLANKEEPER C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
20:59:12.0796 2092 WLANKEEPER - ok
20:59:12.0828 2092 [ 051B1BDECD6DEE18C771B5D5EC7F044D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
20:59:12.0843 2092 WmdmPmSN - ok
20:59:12.0890 2092 [ E76F8807070ED04E7408A86D6D3A6137 ] Wmi C:\WINDOWS\System32\advapi32.dll
20:59:12.0890 2092 Wmi - ok
20:59:12.0906 2092 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
20:59:12.0906 2092 WmiAcpi - ok
20:59:12.0953 2092 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
20:59:12.0968 2092 WmiApSrv - ok
20:59:13.0062 2092 [ 6BAB4DC65515A098505F8B3D01FB6FE5 ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
20:59:13.0140 2092 WMPNetworkSvc - ok
20:59:13.0156 2092 [ C60DC16D4E406810FAD54B98DC92D5EC ] WpdUsb C:\WINDOWS\system32\Drivers\wpdusb.sys
20:59:13.0171 2092 WpdUsb - ok
20:59:13.0203 2092 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
20:59:13.0218 2092 wscsvc - ok
20:59:13.0218 2092 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
20:59:13.0218 2092 wuauserv - ok
20:59:13.0250 2092 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
20:59:13.0265 2092 WudfPf - ok
20:59:13.0281 2092 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
20:59:13.0312 2092 WudfRd - ok
20:59:13.0328 2092 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
20:59:13.0359 2092 WudfSvc - ok
20:59:13.0390 2092 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
20:59:13.0406 2092 WZCSVC - ok
20:59:13.0421 2092 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
20:59:13.0453 2092 xmlprov - ok
20:59:13.0468 2092 ================ Scan global ===============================
20:59:13.0500 2092 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
20:59:13.0546 2092 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
20:59:13.0578 2092 [ 8C7DCA4B158BF16894120786A7A5F366 ] C:\WINDOWS\system32\winsrv.dll
20:59:13.0593 2092 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
20:59:13.0609 2092 [Global] - ok
20:59:13.0609 2092 ================ Scan MBR ==================================
20:59:13.0625 2092 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
20:59:13.0968 2092 \Device\Harddisk0\DR0 - ok
20:59:13.0968 2092 ================ Scan VBR ==================================
20:59:13.0968 2092 [ AC5C9B6FED33B03DB21E7832DEFBA7E8 ] \Device\Harddisk0\DR0\Partition1
20:59:13.0968 2092 \Device\Harddisk0\DR0\Partition1 - ok
20:59:13.0968 2092 ============================================================
20:59:13.0968 2092 Scan finished
20:59:13.0968 2092 ============================================================
20:59:13.0984 3544 Detected object count: 0
20:59:13.0984 3544 Actual detected object count: 0

#4 allysonm125

allysonm125
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:07:12 PM

Posted 16 October 2012 - 09:33 PM

aswMBR Log

aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-10-16 21:02:57
-----------------------------
21:02:57.953 OS Version: Windows 5.1.2600 Service Pack 3
21:02:57.953 Number of processors: 2 586 0xF0B
21:02:57.953 ComputerName: D630-02 UserName: Allyson
21:03:05.296 Initialize success
21:09:22.562 AVAST engine defs: 12101601
21:10:33.062 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-e
21:10:33.062 Disk 0 Vendor: Hitachi_HTS722080K9A300 DCBOCA1H Size: 76319MB BusType: 3
21:10:33.093 Disk 0 MBR read successfully
21:10:33.093 Disk 0 MBR scan
21:10:33.140 Disk 0 Windows XP default MBR code
21:10:33.140 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 109 MB offset 63
21:10:33.156 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 76198 MB offset 224910
21:10:33.156 Disk 0 scanning sectors +156280320
21:10:33.250 Disk 0 scanning C:\WINDOWS\system32\drivers
21:10:46.531 Service scanning
21:11:06.187 Modules scanning
21:11:11.687 Disk 0 trace - called modules:
21:11:11.703 ntkrnlpa.exe CLASSPNP.SYS disk.sys atapi.sys hal.dll pciide.sys PCIIDEX.SYS
21:11:11.703 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8a6d9ab8]
21:11:11.718 3 CLASSPNP.SYS[ba0e8fd7] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP1T0L0-e[0x8a73a4d0]
21:11:12.343 AVAST engine scan C:\WINDOWS
21:11:33.609 AVAST engine scan C:\WINDOWS\system32
21:14:47.343 AVAST engine scan C:\WINDOWS\system32\drivers
21:15:06.828 AVAST engine scan C:\Documents and Settings\Allyson
21:32:29.296 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Allyson\Desktop\MBR.dat"
21:32:29.296 The log file has been saved successfully to "C:\Documents and Settings\Allyson\Desktop\aswMBR.txt"

#5 allysonm125

allysonm125
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:07:12 PM

Posted 16 October 2012 - 10:52 PM

ESET Online Scanner

C:\Documents and Settings\Allyson\My Documents\Downloads\SoftonicDownloader_for_pinnacle-videospin.exe a variant of Win32/SoftonicDownloader.E application cleaned by deleting - quarantined

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:12 PM

Posted 16 October 2012 - 10:54 PM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#7 allysonm125

allysonm125
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:07:12 PM

Posted 17 October 2012 - 12:56 PM

Malwarebytes Log

Malwarebytes Anti-Malware (Trial) 1.65.0.1400
www.malwarebytes.org

Database version: v2012.10.17.08

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Allyson :: D630-02 [administrator]

Protection: Enabled

10/17/2012 11:04:14 AM
mbam-log-2012-10-17 (11-04-14).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 314243
Time elapsed: 1 hour(s), 26 minute(s), 45 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 7
HKCR\CLSID\{597A9974-8CB0-4f41-B61F-ED065738A397} (PUP.RewardsArcade) -> Quarantined and deleted successfully.
HKCR\TypeLib\{60BE6B2E-F2F5-4404-AA1E-4381D4A6EEA2} (PUP.RewardsArcade) -> Quarantined and deleted successfully.
HKCR\Interface\{6427058B-217C-4C7F-A6CE-C7934C0BDCEB} (PUP.RewardsArcade) -> Quarantined and deleted successfully.
HKCR\RewardsArcade.BHO.1 (PUP.RewardsArcade) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{597A9974-8CB0-4F41-B61F-ED065738A397} (PUP.RewardsArcade) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{597A9974-8CB0-4F41-B61F-ED065738A397} (PUP.RewardsArcade) -> Quarantined and deleted successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{597A9974-8CB0-4F41-B61F-ED065738A397} (PUP.RewardsArcade) -> Quarantined and deleted successfully.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\System Volume Information\_restore{46DE8921-1D39-44D2-A9E9-64119261F211}\RP592\A0094272.exe (PUP.BundleInstaller.BT) -> Quarantined and deleted successfully.

(end)

#8 allysonm125

allysonm125
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:07:12 PM

Posted 17 October 2012 - 01:17 PM

Mini Toolbox

MiniToolBox by Farbar Version: 23-07-2012
Ran by Allyson (administrator) on 17-10-2012 at 13:08:19
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 www.1001namen.com
127.0.0.1 1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com

There are 9929 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Intel® PRO/Wireless 3945ABG Network Connection = Wireless Network Connection (Connected)
1394 Net Adapter = 1394 Connection (Connected)
Broadcom NetXtreme 57xx Gigabit Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp

# Interface IP Configuration for "Wireless Network Connection"

set address name="Wireless Network Connection" source=dhcp
set dns name="Wireless Network Connection" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : D630-02

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Broadcast

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : gateway.2wire.net



Ethernet adapter Local Area Connection:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Broadcom NetXtreme 57xx Gigabit Controller

Physical Address. . . . . . . . . : 00-1C-23-50-28-23



Ethernet adapter Wireless Network Connection:



Connection-specific DNS Suffix . : gateway.2wire.net

Description . . . . . . . . . . . : Intel® PRO/Wireless 3945ABG Network Connection

Physical Address. . . . . . . . . : 00-1F-3C-32-D3-12

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.1.69

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.1.254

DHCP Server . . . . . . . . . . . : 192.168.1.254

DNS Servers . . . . . . . . . . . : 192.168.1.254

Lease Obtained. . . . . . . . . . : Wednesday, October 17, 2012 12:58:53 PM

Lease Expires . . . . . . . . . . : Thursday, October 18, 2012 12:58:53 PM

Server: homeportal
Address: 192.168.1.254

Name: google.com
Addresses: 74.125.137.100, 74.125.137.101, 74.125.137.102, 74.125.137.113
74.125.137.138, 74.125.137.139



Pinging google.com [74.125.137.101] with 32 bytes of data:



Reply from 74.125.137.101: bytes=32 time=30ms TTL=44

Reply from 74.125.137.101: bytes=32 time=31ms TTL=44



Ping statistics for 74.125.137.101:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 30ms, Maximum = 31ms, Average = 30ms

Server: homeportal
Address: 192.168.1.254

Name: yahoo.com
Addresses: 72.30.38.140, 98.138.253.109, 98.139.183.24



Pinging yahoo.com [98.138.253.109] with 32 bytes of data:



Reply from 98.138.253.109: bytes=32 time=92ms TTL=44

Reply from 98.138.253.109: bytes=32 time=84ms TTL=45



Ping statistics for 98.138.253.109:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 84ms, Maximum = 92ms, Average = 88ms

Server: homeportal
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Request timed out.

Request timed out.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 1c 23 50 28 23 ...... Broadcom NetXtreme 57xx Gigabit Controller - Packet Scheduler Miniport
0x3 ...00 1f 3c 32 d3 12 ...... Intel® PRO/Wireless 3945ABG Network Connection - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.69 25
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 192.168.1.69 192.168.1.69 20
192.168.1.0 255.255.255.0 192.168.1.69 192.168.1.69 25
192.168.1.69 255.255.255.255 127.0.0.1 127.0.0.1 25
192.168.1.255 255.255.255.255 192.168.1.69 192.168.1.69 25
224.0.0.0 240.0.0.0 192.168.1.69 192.168.1.69 25
255.255.255.255 255.255.255.255 192.168.1.69 2 1
255.255.255.255 255.255.255.255 192.168.1.69 192.168.1.69 1
Default Gateway: 192.168.1.254
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/17/2012 00:59:12 PM) (Source: COM+) (User: )
Description: The run-time environment was unable to initialize for transactions required to support transactional components. Make sure that MS-DTC is running. (DtcGetTransactionManagerEx(): hr = 0x8004d027)

Error: (10/17/2012 00:59:12 PM) (Source: MSDTC Client) (User: )
Description: Failed to initialize the needed name objects. Error Specifics: d:\comxp_sp3\com\com1x\dtc\dtc\msdtcprx\src\dtcinit.cpp:215, Pid: 2412
No Callstack,
CmdLine: C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}

Error: (10/17/2012 10:59:23 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 42570375

Error: (10/17/2012 10:59:23 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 42570375

Error: (10/17/2012 10:59:23 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/16/2012 11:09:55 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1985

Error: (10/16/2012 11:09:55 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1985

Error: (10/16/2012 11:09:55 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/16/2012 08:58:12 PM) (Source: crypt32) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: The data is invalid.

Error: (10/16/2012 06:42:23 PM) (Source: COM+) (User: )
Description: The run-time environment was unable to initialize for transactions required to support transactional components. Make sure that MS-DTC is running. (DtcGetTransactionManagerEx(): hr = 0x8004d027)


System errors:
=============
Error: (10/17/2012 00:58:51 PM) (Source: 0) (User: )
Description: 0xC0000001HarddiskVolume2

Error: (10/16/2012 06:40:49 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (10/16/2012 06:34:41 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
APPDRV
AvgLdx86
AvgMfx86
Fips
intelppm

Error: (10/16/2012 06:33:38 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (10/15/2012 06:55:03 AM) (Source: 0) (User: )
Description:

Error: (10/15/2012 06:55:03 AM) (Source: 0) (User: )
Description:

Error: (10/15/2012 06:54:47 AM) (Source: Dhcp) (User: )
Description: Your computer has lost the lease to its IP address 192.168.1.69 on the
Network Card with network address 001F3C32D312.

Error: (10/07/2012 10:20:52 AM) (Source: Dhcp) (User: )
Description: Your computer has lost the lease to its IP address 192.168.1.69 on the
Network Card with network address 001F3C32D312.

Error: (10/03/2012 09:22:19 PM) (Source: Dhcp) (User: )
Description: Your computer has lost the lease to its IP address 192.168.1.69 on the
Network Card with network address 001F3C32D312.

Error: (10/02/2012 09:11:46 AM) (Source: 0) (User: )
Description:


Microsoft Office Sessions:
=========================
Error: (10/17/2012 00:59:12 PM) (Source: COM+)(User: )
Description: (DtcGetTransactionManagerEx(): hr = 0x8004d027)

Error: (10/17/2012 00:59:12 PM) (Source: MSDTC Client)(User: )
Description: d:\comxp_sp3\com\com1x\dtc\dtc\msdtcprx\src\dtcinit.cpp:215, Pid: 2412
No Callstack,
CmdLine: C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235}

Error: (10/17/2012 10:59:23 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 42570375

Error: (10/17/2012 10:59:23 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 42570375

Error: (10/17/2012 10:59:23 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/16/2012 11:09:55 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1985

Error: (10/16/2012 11:09:55 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1985

Error: (10/16/2012 11:09:55 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/16/2012 08:58:12 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabThe data is invalid.

Error: (10/16/2012 06:42:23 PM) (Source: COM+)(User: )
Description: (DtcGetTransactionManagerEx(): hr = 0x8004d027)


=========================== Installed Programs ============================

3ivx MPEG-4 5.0.3 (remove only) (Version: 5.0.3)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Adobe AIR (Version: 3.3.0.3670)
Adobe Community Help (Version: 3.4.980)
Adobe Download Assistant (Version: 1.0.6)
Adobe Flash Player 10 ActiveX (Version: 10.3.181.34)
Adobe Flash Player 11 Plugin (Version: 11.1.102.55)
Adobe Reader 9 (Version: 9.0.0)
Alive WMA MP3 Recorder v3.6.0.2
Amazon MP3 Downloader 1.0.15 (Version: 1.0.15)
Amazon MP3 Uploader (Version: 1.0.8)
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
AT&T U-verse Setup
AuthenTec Fingerprint Sensor Minimum Install (Version: 7.8.1.0)
AVG Free 8.5
AviSynth 2.5
biolsp patch (Version: 01.00.02.0005)
Bonjour (Version: 3.0.0.10)
Browser Address Error Redirector (Version: 1.00.0000)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Conexant HDA D330 MDC V.92 Modem
Dell Drivers MSI (Version: 01.00.00.0010)
Dell Embassy Trust Suite by Wave Systems (Version: 02.01.00.026)
Dell Touchpad (Version: 7.1.102.7)
Digital Line Detect (Version: 1.21)
Document Manager Lite (Version: 06.06.00.066)
Dropbox (Version: 1.4.7)
EMBASSY Security Center (Version: 03.06.00.031)
EMBASSY Security Setup (Version: 03.06.00.027)
EMBASSY Trust Suite by Wave Systems (Version: 02.01.01.25)
ESC Home Page Plugin (Version: 03.01.00.018)
ESET Online Scanner v3
Gemalto (Version: 01.00.00.0010)
GemSafe Standard Edition 5.1 (Version: 5.10.000.007)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.4.3230.2052)
Google Update Helper (Version: 1.3.21.123)
High Definition Audio Driver Package - KB835221 (Version: 20040219.000000)
Intel® Graphics Media Accelerator Driver
Intel® PROSet/Wireless Software (Version: 11.01.0000)
IntelliSonic Speech Enhancement (Version: 2.1.37)
iTunes (Version: 10.6.3.25)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
Java™ 6 Update 5 (Version: 1.6.0.50)
Kaboodle IE Toolbar (Version: 1.0.0)
KODAK EASYSHARE Gallery Upload ActiveX Control
Malwarebytes Anti-Malware version 1.65.0.1400 (Version: 1.65.0.1400)
mCore (Version: 9.24.0000)
mDrWiFi (Version: 9.24.0000)
mHlpDell (Version: 9.24.0000)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft National Language Support Downlevel APIs
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
mIWA (Version: 9.24.0000)
mLogView (Version: 9.24.0000)
mMHouse (Version: 9.24.0000)
Modem Diagnostic Tool (Version: 1.0.20.0)
MotoHelper MergeModules (Version: 1.2.0)
Mozilla Firefox 16.0.1 (x86 en-US) (Version: 16.0.1)
Mozilla Maintenance Service (Version: 16.0.1)
mPfMgr (Version: 9.24.0000)
mPfWiz (Version: 9.24.0000)
mProSafe (Version: 9.00.0000)
mSCfg (Version: 9.24.0000)
mSSO (Version: 9.24.0000)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 6.0 Parser (KB933579) (Version: 6.10.1200.0)
mWlsSafe (Version: 9.00.0000)
mWMI (Version: 9.24.0000)
mZConfig (Version: 9.24.0000)
NetWaiting (Version: 2.5.44)
NTRU TCG Software Stack (Version: 2.1.25)
PasswordSaver (Version: 7.0.0.0)
Pazera Free MOV to AVI Converter 1.4 (Version: 1.4)
PC Auto Backup (Version: 1.1.1.9)
PC Tools Firewall Plus 7.0 (Version: 7.0)
PL-2303 USB-to-Serial
PowerDVD (Version: 7.0)
Preboot Manager (Version: 2.0.1.2)
PrimoPDF (Version: 4.1.0.9)
Private Information Manager (Version: 06.01.00.023)
QuickSet (Version: 8.3.17)
QuickTime (Version: 7.55.90.70)
RealPlayer
SAMSUNG Intelli-studio
Secure Update (Version: 05.04.00.010)
Security Wizards (Version: 01.04.00.014)
Software Assist (Version: 1.20.150.150)
Spybot - Search & Destroy (Version: 1.6.0)
Trusted Drive Manager (Version: 2.1.1.2)
tsp patch (Version: 01.00.00.0000)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2661254-v2) (Version: 2)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB2736233) (Version: 1)
Update for Windows XP (KB2749655) (Version: 1)
Update for Windows XP (KB951072-v2) (Version: 2)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB955839) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
upekmsi (Version: 02.00.03.0000)
Wave Infrastructure Installer (Version: 05.00.01.0050)
Wave Support Software (Version: 05.07.00.026)
WebFldrs XP (Version: 9.50.7523)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 7 (Version: 20070813.185237)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format 11 runtime
Windows Media Player 11
Windows Rights Management Client Backwards Compatibility SP2 (Version: 5.2.70)
Windows Rights Management Client with Service Pack 2 (Version: 5.2.70)
Windows XP Service Pack 3 (Version: 20080414.031525)

========================= Memory info: ===================================

Percentage of memory in use: 44%
Total physical RAM: 2037.9 MB
Available physical RAM: 1134.44 MB
Total Pagefile: 3930.61 MB
Available Pagefile: 3145.45 MB
Total Virtual: 2047.88 MB
Available Virtual: 1970.7 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:74.41 GB) (Free:14.28 GB) NTFS

========================= Users: ========================================

User accounts for \\D630-02

Administrator Allyson Guest
HelpAssistant SUPPORT_388945a0

========================= Restore Points ==================================

24-07-2012 18:19:24 System Checkpoint
25-07-2012 18:56:57 System Checkpoint
30-07-2012 14:29:08 System Checkpoint
03-08-2012 16:09:49 System Checkpoint
04-08-2012 14:17:20 Software Distribution Service 3.0
06-08-2012 01:45:26 System Checkpoint
07-08-2012 14:38:29 System Checkpoint
09-08-2012 15:58:47 System Checkpoint
14-08-2012 21:20:33 System Checkpoint
14-08-2012 22:50:19 Installed Pinnacle VideoSpin.
17-08-2012 20:06:47 Software Distribution Service 3.0
17-08-2012 21:25:36 Removed Pinnacle Studio 15.
17-08-2012 21:32:18 Removed Pinnacle Studio 15 Ultimate Plugins.
22-08-2012 20:55:54 System Checkpoint
10-09-2012 13:34:38 System Checkpoint
11-09-2012 21:11:40 System Checkpoint
13-09-2012 15:08:39 Software Distribution Service 3.0
18-09-2012 18:04:25 System Checkpoint
20-09-2012 15:28:52 System Checkpoint
20-09-2012 16:44:29 Removed Broadcom ASF Management Applications.
20-09-2012 16:45:24 Removed Broadcom Management Programs.
20-09-2012 16:47:01 Removed EPSON Scan Assistant
20-09-2012 16:47:08 Removed Attach To Email
20-09-2012 16:47:15 Removed Epson Event Manager
20-09-2012 16:47:46 Removed EpsonNet Setup
20-09-2012 17:03:07 Removed Pinnacle Video Driver.
20-09-2012 17:04:37 Removed Pinnacle VideoSpin.
25-09-2012 07:11:43 System Checkpoint
25-09-2012 08:00:46 Software Distribution Service 3.0
26-09-2012 13:58:01 System Checkpoint
27-09-2012 22:25:05 Installed Windows Internet Explorer 8.
28-09-2012 17:32:57 Software Distribution Service 3.0
30-09-2012 19:21:15 System Checkpoint
01-10-2012 21:11:06 System Checkpoint
07-10-2012 17:37:52 System Checkpoint
10-10-2012 16:10:04 System Checkpoint
11-10-2012 14:17:35 Software Distribution Service 3.0
15-10-2012 23:00:34 System Checkpoint
17-10-2012 00:34:09 System Checkpoint

**** End of log ****

#9 allysonm125

allysonm125
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:07:12 PM

Posted 17 October 2012 - 01:20 PM

Farbar Service Scanner Version: 07-10-2012
Ran by Allyson (administrator) on 17-10-2012 at 13:19:21
Running from "C:\Documents and Settings\Allyson\Desktop"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
AegisP(8) AvgTdiX(86) Gpc(6) IPSec(4) NetBT(5) pctgntdi(10) pctNdisMP(9) PSched(7) Tcpip(3)
0x0B000000040000000100000002000000030000000A000000560000000500000006000000070000000800000009000000
IpSec Tag value is correct.

**** End of log ****

#10 allysonm125

allysonm125
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:07:12 PM

Posted 17 October 2012 - 01:25 PM

# AdwCleaner v2.005 - Logfile created 10/17/2012 at 13:21:25
# Updated 14/10/2012 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Allyson - D630-02
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Allyson\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\DOCUME~1\Allyson\LOCALS~1\Temp\AskSearch
Folder Deleted : C:\Documents and Settings\All Users\Application Data\Tarma Installer
Folder Deleted : C:\Documents and Settings\All Users\Application Data\Trymedia
Folder Deleted : C:\Documents and Settings\All Users\Application Data\WeCareReminder
Folder Deleted : C:\Documents and Settings\Allyson\Application Data\OpenCandy

***** [Registry] *****

Key Deleted : HKCU\Software\Cr_Installer
Key Deleted : HKCU\Software\Crossrider
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\wecarereminder
Key Deleted : HKCU\Software\Zugo
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{25514C64-8321-494E-BD3E-3DBAB3F8CEBA}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0003026.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0003026.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0003026.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0003026.Sandbox.1
Key Deleted : HKLM\SOFTWARE\Classes\RewardsArcade.FBApi
Key Deleted : HKLM\SOFTWARE\Classes\RewardsArcade.FBApi.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Key Deleted : HKLM\Software\Tarma Installer
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Mozilla Firefox v16.0.1 (en-US)

Profile name : default
File : C:\Documents and Settings\Allyson\Application Data\Mozilla\Firefox\Profiles\6708lcfy.default\prefs.js

C:\Documents and Settings\Allyson\Application Data\Mozilla\Firefox\Profiles\6708lcfy.default\user.js ... Deleted !

Deleted : user_pref("extensions.crossriderapp3026.3026.InstallationThankYouPage", false);
Deleted : user_pref("extensions.crossriderapp3026.3026.InstallationTime", 1344993368);
Deleted : user_pref("extensions.crossriderapp3026.3026.InstallationUserSettings.searchUserConifrmation", false[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.InstallationUserSettings.setHomepage", false);
Deleted : user_pref("extensions.crossriderapp3026.3026.InstallationUserSettings.setNewTab", false);
Deleted : user_pref("extensions.crossriderapp3026.3026.InstallationUserSettings.setSearch", false);
Deleted : user_pref("extensions.crossriderapp3026.3026.active", true);
Deleted : user_pref("extensions.crossriderapp3026.3026.addressbar", "");
Deleted : user_pref("extensions.crossriderapp3026.3026.backgroundjs", "\n\n//Crossrider\n\nappAPI.request.get([...]
Deleted : user_pref("extensions.crossriderapp3026.3026.backgroundver", 20);
Deleted : user_pref("extensions.crossriderapp3026.3026.can_run_bg_code", true);
Deleted : user_pref("extensions.crossriderapp3026.3026.certdomaininstaller", "");
Deleted : user_pref("extensions.crossriderapp3026.3026.changeprevious", false);
Deleted : user_pref("extensions.crossriderapp3026.3026.cookie.InstallationTime.expiration", "Fri Feb 01 2030 0[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.cookie.InstallationTime.value", "1344993368");
Deleted : user_pref("extensions.crossriderapp3026.3026.cookie.InstallerParams.expiration", "Fri Feb 01 2030 00[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.cookie.aoi.expiration", "Fri Feb 01 2030 00:00:00 GMT-0[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.cookie.aoi.value", "%221345053773%22");
Deleted : user_pref("extensions.crossriderapp3026.3026.cookie.id.expiration", "Fri Feb 01 2030 00:00:00 GMT-05[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.cookie.id.value", "%22d7908c86-1fee-4fd6-8259-2a7d4ede5[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.cookie.lp.ilivid.com.expiration", "Tue Oct 23 2012 16:1[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.cookie.lp.ilivid.com.value", "true");
Deleted : user_pref("extensions.crossriderapp3026.3026.cookie.url.expiration", "Fri Feb 01 2030 00:00:00 GMT-0[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.cookie.url.value", "%22%7C%22");
Deleted : user_pref("extensions.crossriderapp3026.3026.description", "Software Assist is an add on designed to[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.domain", "");
Deleted : user_pref("extensions.crossriderapp3026.3026.enablesearch", false);
Deleted : user_pref("extensions.crossriderapp3026.3026.fbremoteurl", "");
Deleted : user_pref("extensions.crossriderapp3026.3026.group", 0);
Deleted : user_pref("extensions.crossriderapp3026.3026.homepage", "");
Deleted : user_pref("extensions.crossriderapp3026.3026.iframe", false);
Deleted : user_pref("extensions.crossriderapp3026.3026.internaldb.InstallerIdentifiers.expiration", "Fri Feb 0[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.internaldb.InstallerIdentifiers.value", "%7B%22installe[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.internaldb.Resources_appVer.expiration", "Fri Feb 01 20[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.internaldb.Resources_appVer.value", "152");
Deleted : user_pref("extensions.crossriderapp3026.3026.internaldb.Resources_lastVersion.expiration", "Fri Feb [...]
Deleted : user_pref("extensions.crossriderapp3026.3026.internaldb.Resources_lastVersion.value", "0");
Deleted : user_pref("extensions.crossriderapp3026.3026.internaldb.Resources_meta.expiration", "Fri Feb 01 2030[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.internaldb.Resources_meta.value", "%7B%7D");
Deleted : user_pref("extensions.crossriderapp3026.3026.internaldb.Resources_nextCheck.expiration", "Wed Oct 17[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.internaldb.Resources_nextCheck.value", "true");
Deleted : user_pref("extensions.crossriderapp3026.3026.internaldb.Resources_queue.expiration", "Fri Feb 01 203[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.internaldb.Resources_queue.value", "%7B%7D");
Deleted : user_pref("extensions.crossriderapp3026.3026.js", "\n\ntry {\n\njQuery(document).ready(function() {\[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.manifesturl", "");
Deleted : user_pref("extensions.crossriderapp3026.3026.name", "Software Assist");
Deleted : user_pref("extensions.crossriderapp3026.3026.newtab", "");
Deleted : user_pref("extensions.crossriderapp3026.3026.opensearch", "");
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins.plugin_13.code", "(function(a){a.selectedText=f[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins.plugin_13.name", "CrossriderAppUtils");
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins.plugin_13.ver", 2);
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins.plugin_14.code", "if(typeof(appAPI)===\"undefin[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins.plugin_14.name", "CrossriderUtils");
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins.plugin_14.ver", 2);
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins.plugin_15.code", "(function(f){var u={};var e=M[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins.plugin_15.name", "FacebookFFIE");
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins.plugin_15.ver", 1);
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins.plugin_16.code", "(function(f,B){if(typeof(B)==[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins.plugin_16.name", "FFAppAPIWrapper");
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins.plugin_16.ver", 3);
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins.plugin_17.code", "if(typeof window!==\"undefine[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins.plugin_17.name", "jQuery");
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins.plugin_17.ver", 3);
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins.plugin_30.code", "if (!(/^hxxps\\:\\/\\//.test([...]
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins.plugin_30.name", "superfish");
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins.plugin_30.ver", 2);
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins.plugin_47.code", "(function(){appAPI.ready=func[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins.plugin_47.name", "resources_background");
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins.plugin_47.ver", 1);
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins_lists.plugins_0", "17,14,16,47");
Deleted : user_pref("extensions.crossriderapp3026.3026.plugins_lists.plugins_1", "17,14,13,16,15,30");
Deleted : user_pref("extensions.crossriderapp3026.3026.pluginsurl", "hxxp://app-static.crossrider.com/plugin/a[...]
Deleted : user_pref("extensions.crossriderapp3026.3026.pluginsversion", 11);
Deleted : user_pref("extensions.crossriderapp3026.3026.publisher", "Image Zoom");
Deleted : user_pref("extensions.crossriderapp3026.3026.searchstatus", 0);
Deleted : user_pref("extensions.crossriderapp3026.3026.setnewtab", false);
Deleted : user_pref("extensions.crossriderapp3026.3026.settingsurl", "");
Deleted : user_pref("extensions.crossriderapp3026.3026.thankyou", "");
Deleted : user_pref("extensions.crossriderapp3026.3026.updateinterval", 360);
Deleted : user_pref("extensions.crossriderapp3026.3026.ver", 152);
Deleted : user_pref("extensions.crossriderapp3026.adsOldValue", -1);
Deleted : user_pref("extensions.crossriderapp3026.apps", "3026");
Deleted : user_pref("extensions.crossriderapp3026.bic", "1392b71ddf29b9184bf99ea46066f4d8");
Deleted : user_pref("extensions.crossriderapp3026.cid", 3026);
Deleted : user_pref("extensions.crossriderapp3026.firstrun", false);
Deleted : user_pref("extensions.crossriderapp3026.hadappinstalled", true);
Deleted : user_pref("extensions.crossriderapp3026.installationdate", 1345053646);
Deleted : user_pref("extensions.crossriderapp3026.lastcheck", 22508160);
Deleted : user_pref("extensions.crossriderapp3026.lastcheckitem", 22508300);
Deleted : user_pref("extensions.crossriderapp3026.modetype", "production");
Deleted : user_pref("extensions.enabledAddons", "{20a82645-c095-46ed-80e3-08825760534b}:0.0.0,crossriderapp302[...]

*************************

AdwCleaner[S1].txt - [11855 octets] - [17/10/2012 13:21:25]

########## EOF - C:\AdwCleaner[S1].txt - [11916 octets] ##########

#11 allysonm125

allysonm125
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:07:12 PM

Posted 17 October 2012 - 02:03 PM

I ran the Junkware Removal Tool and attempted to post the results. However, I get the message "You have posted a message with more emoticons that this board allows. Please reduce the number of emoticons you've added to the message"
Let me know what I should do...or I can email it to you.
Thanks,
Allyson

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:12 PM

Posted 17 October 2012 - 04:43 PM

Not needed

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#13 allysonm125

allysonm125
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:07:12 PM

Posted 18 October 2012 - 10:09 PM

Rkill 2.4.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 10/18/2012 10:08:26 PM in x86 mode.
Windows Version: Microsoft Windows XP Service Pack 3

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* C:\WINDOWS\system32\KADxMain.exe (PID: 1240) [WD-HEUR]

1 proccess terminated!

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Firewall Disabled

[HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = dword:00000000

Checking Windows Service Integrity:

* MSDTC [Missing Service]

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* HOSTS file entries found:

127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 www.1001namen.com
127.0.0.1 1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 100sexlinks.com

20 out of 9949 HOSTS entries shown.
Please review HOSTS file for further entries.

Program finished at: 10/18/2012 10:09:09 PM
Execution time: 0 hours(s), 0 minute(s), and 43 seconds(s)

#14 allysonm125

allysonm125
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:07:12 PM

Posted 18 October 2012 - 10:12 PM

"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "00PCTFW" "PC Tools Firewall GUI" "PC Tools" "c:\program files\pc tools firewall plus\firewallgui.exe"
+ "Adobe Reader Speed Launcher" "Adobe Acrobat SpeedLauncher" "Adobe Systems Incorporated" "c:\program files\adobe\reader 9.0\reader\reader_sl.exe"
+ "Apoint" "Alps Pointing-device Driver" "Alps Electric Co., Ltd." "c:\program files\delltpad\apoint.exe"
+ "APSDaemon" "Apple Push" "Apple Inc." "c:\program files\common files\apple\apple application support\apsdaemon.exe"
+ "AVG8_TRAY" "AVG Tray Monitor" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg8\avgtray.exe"
+ "Dell QuickSet" "QuickSet" "Dell Inc." "c:\program files\dell\quickset\quickset.exe"
+ "ECenter" " " " " "c:\dell\e-center\eulalauncher.exe"
+ "HotKeysCmds" "hkcmd Module" "Intel Corporation" "c:\windows\system32\hkcmd.exe"
+ "IgfxTray" "igfxTray Module" "Intel Corporation" "c:\windows\system32\igfxtray.exe"
+ "IntelWireless" "Intel Framework MFC Application" "Intel Corporation" "c:\program files\intel\wireless\bin\ifrmewrk.exe"
+ "IntelZeroConfig" "ZeroCfgSvc MFC Application" "Intel Corporation" "c:\program files\intel\wireless\bin\zcfgsvc.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files\itunes\ituneshelper.exe"
+ "KADxMain" "IntelliSonic Systray Control (KADxMain)" "Knowles Acoustics" "c:\windows\system32\kadxmain.exe"
+ "PDVDDXSrv" "CyberLink PowerDVD Resident Program" "CyberLink Corp." "c:\program files\cyberlink\powerdvd dx\pdvddxsrv.exe"
+ "Persistence" "persistence Module" "Intel Corporation" "c:\windows\system32\igfxpers.exe"
+ "QuickTime Task" "QuickTime Task" "Apple Inc." "c:\program files\quicktime\qttask.exe"
+ "SecureUpgrade" "Check For Later Product Line " "Wave Systems Corp." "c:\program files\wave systems corp\secureupgrade.exe"
+ "SigmatelSysTrayApp" "Sigmatel Audio system tray application" "SigmaTel, Inc." "c:\program files\sigmatel\c-major audio\wdm\stsystra.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files\common files\java\java update\jusched.exe"
+ "TkBellExe" "RealNetworks Scheduler" "RealNetworks, Inc." "c:\program files\common files\real\update_ob\realsched.exe"
+ "WavXMgr" "WavX Document Manager Application" "Wave Systems Corp." "c:\program files\wave systems corp\services manager\docmgr\bin\wavxdocmgr.exe"
"C:\Documents and Settings\All Users\Start Menu\Programs\Startup" "" "" ""
+ "Digital Line Detect.lnk" "Digital Line Detection" "Avanquest Software " "c:\program files\digital line detect\dlg.exe"
+ "PC Auto Backup.lnk" "AutoBackup" "Samsung" "c:\program files\samsung\pc auto backup\autobackup.exe"
"C:\Documents and Settings\Allyson\Start Menu\Programs\Startup" "" "" ""
+ "Dropbox.lnk" "Dropbox" "Dropbox, Inc." "c:\documents and settings\allyson\application data\dropbox\bin\dropbox.exe"
+ "ZooskMessenger.lnk" "" "" "File not found: C:\Program Files\ZooskMessenger\ZooskMessenger.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Address Book 6" "Outlook Express Setup Library" "Microsoft Corporation" "c:\program files\outlook express\setup50.exe"
+ "Microsoft Outlook Express 6" "Outlook Express Setup Library" "Microsoft Corporation" "c:\program files\outlook express\setup50.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "HLBackupScheduler" "" "" "File not found: C:\Program Files\Verizon V CAST Media Manager\V CAST Backup Scheduler.exe"
+ "ISUSPM" "Macrovision Software Manager" "Macrovision Corporation" "c:\program files\common files\installshield\updateservice\isuspm.exe"
+ "swg" "GoogleToolbarNotifier" "Google Inc." "c:\program files\google\googletoolbarnotifier\googletoolbarnotifier.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office11\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "linkscanner" "Safe Search pluggable protocol" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg8\avgpp.dll"
+ "ms-itss" "Microsoft® InfoTech Storage System Library" "Microsoft Corporation" "c:\program files\common files\microsoft shared\information retrieval\msitss.dll"
+ "mso-offdap" "Microsoft Office XP Web Components" "Microsoft Corporation" "c:\program files\common files\microsoft shared\web components\10\owc10.dll"
+ "mso-offdap11" "Microsoft Office Web Components 2003" "Microsoft Corporation" "c:\program files\common files\microsoft shared\web components\11\owc11.dll"
"HKCU\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components" "" "" ""
+ "0" "" "" "File not found: About:Home"
"HKCU\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\documents and settings\allyson\application data\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "AVG8 Shell Extension" "AVG Shell Extension" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg8\avgse.dll"
+ "EncryptDocMgr" "ContextMenuItem Module" "Wave Systems Corp." "c:\program files\wave systems corp\services manager\docmgr\bin\contextmenuitem.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
"HKCU\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\documents and settings\allyson\application data\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "EncryptDocMgr" "ContextMenuItem Module" "Wave Systems Corp." "c:\program files\wave systems corp\services manager\docmgr\bin\contextmenuitem.dll"
"HKCU\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "DropboxExt" "Dropbox Shell Extension" "Dropbox, Inc." "c:\documents and settings\allyson\application data\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "igfxcui" "igfxpph Module" "Intel Corporation" "c:\windows\system32\igfxpph.dll"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "AVG8 Shell Extension" "AVG Shell Extension" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg8\avgse.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" ""
+ "DropboxExt1" "Dropbox Shell Extension" "Dropbox, Inc." "c:\documents and settings\allyson\application data\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt2" "Dropbox Shell Extension" "Dropbox, Inc." "c:\documents and settings\allyson\application data\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt3" "Dropbox Shell Extension" "Dropbox, Inc." "c:\documents and settings\allyson\application data\dropbox\bin\dropboxext.14.dll"
+ "DropboxExt4" "Dropbox Shell Extension" "Dropbox, Inc." "c:\documents and settings\allyson\application data\dropbox\bin\dropboxext.14.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "AVG Safe Search" "Safe Search for Internet Explorer" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg8\avgssie.dll"
+ "CBrowserHelperObject Object" "BAE.dll" "Dell Inc." "c:\program files\dell\bae\bae.dll"
+ "Google Toolbar Helper" "Google Toolbar" "Google Inc." "c:\program files\google\google toolbar\googletoolbar_32.dll"
+ "Google Toolbar Notifier BHO" "GoogleToolbarNotifier" "Google Inc." "c:\program files\google\googletoolbarnotifier\5.7.7529.1424\swg.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files\java\jre6\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files\java\jre6\bin\ssv.dll"
+ "JQSIEStartDetectorImpl Class" "Java™ Quick Starter binary" "Sun Microsystems, Inc." "c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll"
+ "KTBho Class" "Kaboodle Toolbar" "" "c:\program files\kaboodle\kaboodle ie toolbar\ktbar.dll"
+ "RealPlayer Download and Record Plugin for Internet Explorer" "RealPlayer Download and Record Plugin" "RealPlayer" "c:\program files\real\realplayer\rpbrowserrecordplugin.dll"
+ "Software Assist" "" "" "File not found: C:\Program Files\Software Assist\Software Assist.dll"
+ "Spybot-S&D IE Protection" "SBSD IE Protection" "Safer Networking Limited" "c:\program files\spybot - search & destroy\sdhelper.dll"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" ""
+ "Google Toolbar" "Google Toolbar" "Google Inc." "c:\program files\google\google toolbar\googletoolbar_32.dll"
+ "Kaboodle Toolbar" "Kaboodle Toolbar" "" "c:\program files\kaboodle\kaboodle ie toolbar\ktbar.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "Spybot - Search & Destroy Configuration" "SBSD IE Protection" "Safer Networking Limited" "c:\program files\spybot - search & destroy\sdhelper.dll"
+ "Windows Messenger" "Windows Messenger" "Microsoft Corporation" "c:\program files\messenger\msmsgs.exe"
"Task Scheduler" "" "" ""
+ "AppleSoftwareUpdate.job" "Apple Software Update" "Apple Inc." "c:\program files\apple software update\softwareupdate.exe"
+ "GoogleUpdateTaskMachineCore.job" "Google Installer" "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "GoogleUpdateTaskMachineUA.job" "Google Installer" "Google Inc." "c:\program files\google\update\googleupdate.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "avg8emc" "AVG E-Mail Scanner" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg8\avgemc.exe"
+ "avg8wd" "AVG Watchdog Service" "AVG Technologies CZ, s.r.o." "c:\program files\avg\avg8\avgwdsvc.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "EvtEng" "Manages the event trace messages for all the components of Intel® PROSet/Wireless software." "Intel Corporation" "c:\program files\intel\wireless\bin\evteng.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe"
+ "gusvc" "Google Updater keeps your Google software up to date. If Google Updater Service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work." "Google" "c:\program files\google\common\google updater\googleupdaterservice.exe"
+ "IDriverT" "Provides support for the Running Object Table for InstallShield Drivers" "Macrovision Corporation" "c:\program files\common files\installshield\driver\1050\intel 32\idrivert.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "JavaQuickStarterService" "Prefetches JRE files for faster startup of Java applets and applications" "Sun Microsystems, Inc." "c:\program files\java\jre6\bin\jqs.exe"
+ "MBAMScheduler" "Malwarebytes Anti-Malware scheduler" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamscheduler.exe"
+ "MBAMService" "Malwarebytes Anti-Malware service" "Malwarebytes Corporation" "c:\program files\malwarebytes' anti-malware\mbamservice.exe"
+ "McciCMService" "mcci+McciCMService" "Alcatel-Lucent" "c:\program files\common files\motive\mccicmservice.exe"
+ "MDM" "Supports local and remote debugging for Visual Studio and script debuggers. If this service is stopped, the debuggers will not function properly." "Microsoft Corporation" "c:\program files\common files\microsoft shared\vs7debug\mdm.exe"
+ "MozillaMaintenance" "The Mozilla Maintenance Service ensures that you have the latest and most secure version of Mozilla Firefox on your computer. Keeping Firefox up to date is very important for your online security, and Mozilla strongly recommends that you keep this service enabled." "Mozilla Foundation" "c:\program files\mozilla maintenance service\maintenanceservice.exe"
+ "NICCONFIGSVC" "Configure your Internal Network Card power management settings." "Dell Inc." "c:\program files\dell\quickset\nicconfigsvc.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files\common files\microsoft shared\source engine\ose.exe"
+ "PCToolsFirewallPlus" "PC Tools Firewall Plus service" "PC Tools" "c:\program files\pc tools firewall plus\fwservice.exe"
+ "RegSrvc" "Intel® PROSet/Wireless Registry Service" "Intel Corporation" "c:\program files\intel\wireless\bin\regsrvc.exe"
+ "RoxLiveShare9" "Allows remote users to view through WEB browsers your authorized multimedia content managed by Roxio Media Manager9." "" "File not found: C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe"
+ "S24EventMonitor" "Wireless Management Service for Intel® PROSet/Wireless" "Intel Corporation " "c:\program files\intel\wireless\bin\s24evmon.exe"
+ "SecureStorageService" "Secure Storage Service" "Wave Systems Corp." "c:\program files\wave systems corp\secure storage manager\securestorageservice.exe"
+ "STacSV" "Manages SigmaTel Audio Universal Jack configurations." "SigmaTel, Inc." "c:\windows\system32\stacsv.exe"
+ "tcsd_win32.exe" "TCS service for accessing the TPM" "" "c:\program files\ntru cryptosystems\ntru tcg software stack\bin\tcsd_win32.exe"
+ "TdmService" "Tdm Service" "Wave Systems Corp." "c:\program files\wave systems corp\trusted drive manager\tdmservice.exe"
+ "WaveEnrollmentService" "WaveEnrollemntService" "Wave Systems Corp." "c:\program files\wave systems corp\authentication manager\waveenrollmentservice.exe"
+ "WiselinkPro" "WiselinkPro" "Samsung" "c:\program files\samsung\pc auto backup\wiselinkpro.exe"
+ "WLANKEEPER" "Provides Single Sign On (SSO) functionality." "Intel® Corporation" "c:\program files\intel\wireless\bin\wlkeeper.exe"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AegisP" "AEGIS Protocol (IEEE 802.1x) v3.7.4.0" "Cisco Systems, Inc." "c:\windows\system32\drivers\aegisp.sys"
+ "ApfiltrService" "Alps Touch Pad Driver" "Alps Electric Co., Ltd." "c:\windows\system32\drivers\apfiltr.sys"
+ "APPDRV" "App Support Driver" "Dell Inc" "c:\windows\system32\drivers\appdrv.sys"
+ "AvgLdx86" "AVG AVI Loader Driver" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgldx86.sys"
+ "AvgMfx86" "AVG Resident Shield Minifilter Driver" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgmfx86.sys"
+ "AvgTdiX" "AVG Network connection watcher" "AVG Technologies CZ, s.r.o." "c:\windows\system32\drivers\avgtdix.sys"
+ "b57w2k" "Broadcom NetXtreme Gigabit Ethernet NDIS5.1 Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57xp32.sys"
+ "BTCFilterService" "" "" "File not found: system32\DRIVERS\motfilt.sys"
+ "Changer" "" "" "File not found: C:\WINDOWS\System32\Drivers\Changer.sys"
+ "DXEC01" "dxec01.sys" "Knowles Acoustics" "c:\windows\system32\drivers\dxec01.sys"
+ "E100B" "NDIS 5 driver" "Intel Corporation" "c:\windows\system32\drivers\e100b325.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "guardian2" "O2Micro USB CCID SmartCard Reader" "O2Micro" "c:\windows\system32\drivers\oz776.sys"
+ "HDAudBus" "High Definition Audio Bus Driver v1.0a" "Windows ® Server 2003 DDK provider" "c:\windows\system32\drivers\hdaudbus.sys"
+ "HSF_DPV" "HSF_DP driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\hsf_dpv.sys"
+ "HSFHWAZL" "HSF_HWAZL WDM driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\hsfhwazl.sys"
+ "ialm" "Intel Graphics Miniport Driver" "Intel Corporation" "c:\windows\system32\drivers\igxpmp32.sys"
+ "lbrtfdc" "" "" "File not found: C:\WINDOWS\System32\Drivers\lbrtfdc.sys"
+ "MarvinBus" "Pinnacle Marvin Discrete Bus Enumerator" "Pinnacle Systems GmbH" "c:\windows\system32\drivers\marvinbus.sys"
+ "MBAMProtector" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\windows\system32\drivers\mbam.sys"
+ "mdmxsdk" "Diagnostic Interface x86 Driver" "Conexant" "c:\windows\system32\drivers\mdmxsdk.sys"
+ "motccgp" "" "" "File not found: system32\DRIVERS\motccgp.sys"
+ "motccgpfl" "" "" "File not found: system32\DRIVERS\motccgpfl.sys"
+ "motmodem" "" "" "File not found: system32\DRIVERS\motmodem.sys"
+ "MotoSwitchService" "" "" "File not found: system32\DRIVERS\motswch.sys"
+ "Motousbnet" "" "" "File not found: system32\DRIVERS\Motousbnet.sys"
+ "motusbdevice" "" "" "File not found: system32\DRIVERS\motusbdevice.sys"
+ "MREMP50" "PCAUSA NDIS 5.0 MPR Protocol Driver" "Printing Communications Assoc., Inc. (PCAUSA)" "c:\program files\common files\motive\mremp50.sys"
+ "MRESP50" "PCAUSA NDIS 5.0 SPR Protocol Driver" "Printing Communications Assoc., Inc. (PCAUSA)" "c:\program files\common files\motive\mresp50.sys"
+ "NETw4x32" "Intel® Wireless WiFi Link Driver" "Intel Corporation" "c:\windows\system32\drivers\netw4x32.sys"
+ "nv" "NVIDIA Compatible Windows 2000 Miniport Driver, Version 56.73 " "NVIDIA Corporation" "c:\windows\system32\drivers\nv4_mini.sys"
+ "PBADRV" "PBADRV" "Dell Inc" "c:\windows\system32\drivers\pbadrv.sys"
+ "PCIDump" "" "" "File not found: C:\WINDOWS\System32\Drivers\PCIDump.sys"
+ "PCTAppEvent" "PC Tools App Monitor Driver" "PC Tools" "c:\windows\system32\drivers\pctappevent.sys"
+ "PCTFW-PacketFilter" "PC Tools NDIS - Packet Filter" "PC Tools" "c:\windows\system32\drivers\pctndis-packetfilter.sys"
+ "pctgntdi" "PC Tools Generic TDI Driver" "PC Tools" "c:\windows\system32\drivers\pctgntdi.sys"
+ "pctNdis" "PC Tools NDIS Driver" "PC Tools" "c:\windows\system32\drivers\pctndis.sys"
+ "pctNdisMP" "PC Tools NDIS Driver" "PC Tools" "c:\windows\system32\drivers\pctndis.sys"
+ "pctplfw" "PC Tools FW Plugin Driver" "PC Tools" "c:\windows\system32\drivers\pctplfw.sys"
+ "PDCOMP" "" "" "File not found: C:\WINDOWS\System32\Drivers\PDCOMP.sys"
+ "PDFRAME" "" "" "File not found: C:\WINDOWS\System32\Drivers\PDFRAME.sys"
+ "PDRELI" "" "" "File not found: C:\WINDOWS\System32\Drivers\PDRELI.sys"
+ "PDRFRAME" "" "" "File not found: C:\WINDOWS\System32\Drivers\PDRFRAME.sys"
+ "Ptilink" "Direct Parallel Link Driver" "Parallel Technologies, Inc." "c:\windows\system32\drivers\ptilink.sys"
+ "RimUsb" "" "" "File not found: System32\Drivers\RimUsb.sys"
+ "RimVSerPort" "RIM Virtual Serial Driver" "Research in Motion Ltd" "c:\windows\system32\drivers\rimserial.sys"
+ "s24trans" "WLAN Transport" "Intel Corporation" "c:\windows\system32\drivers\s24trans.sys"
+ "Secdrv" "SafeDisc driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "Ser2pl" "USB-to-Serial Cable Driver" "Prolific Technology Inc." "c:\windows\system32\drivers\ser2pl.sys"
+ "STHDA" "NDRC" "SigmaTel, Inc." "c:\windows\system32\drivers\sthda.sys"
+ "USBAAPL" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl.sys"
+ "WaveFDE" "WaveFDE Device Driver" "Windows ® Codename Longhorn DDK provider" "c:\windows\system32\drivers\wavefde.sys"
+ "WavxDMgr" "Document Manager Driver" "Wave Systems Corp." "c:\windows\system32\drivers\wavxdmgr.sys"
+ "WDICA" "" "" "File not found: C:\WINDOWS\System32\Drivers\WDICA.sys"
+ "winachsf" "HSF_CNXT driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\hsf_cnxt.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.iac2" "Indeo® audio software" "Intel Corporation" "c:\windows\system32\iac25_32.ax"
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "msacm.sl_anet" "Audio codec for MS ACM" "Sipro Lab Telecom Inc." "c:\windows\system32\sl_anet.acm"
+ "msacm.trspch" "DSP Group TrueSpeech™ Audio Codec for MSACM V3.50" "DSP GROUP, INC." "c:\windows\system32\tssoft32.acm"
+ "vidc.3IV2" "3ivx MPEG-4 5.0.3 Video for Windows Codec" "3ivx Technologies Pty. Ltd." "c:\windows\system32\3ivxvfwcodec.dll"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\system32\iccvid.dll"
+ "vidc.iv31" "" "" "c:\windows\system32\ir32_32.dll"
+ "vidc.iv32" "" "" "c:\windows\system32\ir32_32.dll"
+ "vidc.iv41" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax"
+ "vidc.iv50" "Intel Indeo® video 5.10" "Intel Corporation" "c:\windows\system32\ir50_32.dll"
"HKLM\Software\Classes\Filter" "" "" ""
+ "Indeo® video 4.4 Compression Filter" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Compression Filter" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Decompression Filter" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax"
+ "Indeo® video 4.4 Decompression Filter" "Intel Indeo® Video 4.5" "Intel Corporation" "c:\windows\system32\ir41_32.ax"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "3ivx Decoder Filter" "3ivx MPEG-4 5.0.3 DirectShow Video Decoder" "3ivx Technologies Pty. Ltd." "c:\program files\3ivx\3ivx mpeg-4 5.0.3\3ivxdsvideodecoder.ax"
+ "3ivx Media Muxer" "3ivx MPEG-4 5.0.3 DirectShow Media Muxer" "3ivx Technologies Pty. Ltd." "c:\program files\3ivx\3ivx mpeg-4 5.0.3\3ivxdsmediamux.ax"
+ "3ivx Media Splitter" "3ivx MPEG-4 5.0.3 DirectShow Media Splitter" "3ivx Technologies Pty. Ltd." "c:\program files\3ivx\3ivx mpeg-4 5.0.3\3ivxdsmediasplitter.ax"
+ "3ivx MPEG-4 Video Encoder" "3ivx MPEG-4 5.0.3 Video for Windows Codec" "3ivx Technologies Pty. Ltd." "c:\program files\3ivx\3ivx mpeg-4 5.0.3\3ivxdsvideoencoder.ax"
+ "9x8Resize" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "ACELP.net Audio Decoder" "ACELP.net Audio Decoder" "Sipro Lab Telecom Inc." "c:\windows\system32\acelpdec.ax"
+ "Allocator Fix" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Bitmap" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "CyberLink Audio Decoder" "CyberLink Audio Decoder Filter" "CyberLink Corp." "c:\program files\cyberlink\powerdvd dx\kernel\movie\claud.ax"
+ "CyberLink Audio Effect" "CyberLink Audio Effect Filter" "CyberLink Corporation" "c:\program files\cyberlink\powerdvd dx\kernel\movie\claudfx.ax"
+ "CyberLink Audio Wizard" "CyberLink Audio Wizard Filter" "CyberLink Corp." "c:\program files\cyberlink\powerdvd dx\kernel\movie\claudwizard.ax"
+ "CyberLink AudioCD Filter" "CyberLink AudioCD Filter" "CyberLink Corp." "c:\program files\cyberlink\powerdvd dx\kernel\movie\claudiocd.ax"
+ "CyberLink Demultiplexer" "MPEG-2 Dempltiplexer" "CyberLink Corp." "c:\program files\cyberlink\powerdvd dx\kernel\movie\cldemuxer.ax"
+ "CyberLink DVD Navigator" "CyberLink DVD Navigation Filter" "CyberLink Corp." "c:\program files\cyberlink\powerdvd dx\kernel\movie\clnavx.ax"
+ "CyberLink Line21 Decoder Filter" "CyberLink Line21 Decoder Filter" "CyberLink Corp." "c:\program files\cyberlink\powerdvd dx\kernel\movie\clline21.ax"
+ "CyberLink MPEG-4 Splitter" "CyberLink MPEG-4 Splitter" "CyberLink Corp." "c:\program files\cyberlink\powerdvd dx\kernel\movie\clm4splt.ax"
+ "Cyberlink SubTitle Importor" "CLSubTitle.ax" "CyberLink Corp." "c:\program files\cyberlink\powerdvd dx\kernel\movie\clsubtitle.ax"
+ "CyberLink TimeStretch Filter" "CLAuTS.ax" "CyberLink Corp." "c:\program files\cyberlink\powerdvd dx\kernel\movie\clauts.ax"
+ "CyberLink Video Effect" "CLVidFx" "CyberLink" "c:\program files\cyberlink\powerdvd dx\kernel\movie\clvidfx.ax"
+ "CyberLink Video/SP Decoder" "CyberLink Video/SP Filter" "CyberLink Corp." "c:\program files\cyberlink\powerdvd dx\kernel\movie\clvsd.ax"
+ "DivX Video Encoder (3ivx)" "3ivx MPEG-4 5.0.3 Video for Windows Codec" "3ivx Technologies Pty. Ltd." "c:\program files\3ivx\3ivx mpeg-4 5.0.3\3ivxdsvideoencoder.ax"
+ "Frame Eater" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Indeo® audio software" "Indeo® audio software" "Intel Corporation" "c:\windows\system32\iac25_32.ax"
+ "Indeo® video 5.10 Compression Filter" "Intel Indeo® video 5.10" "Intel Corporation" "c:\windows\system32\ir50_32.dll"
+ "Indeo® video 5.10 Decompression Filter" "Intel Indeo® video 5.10" "Intel Corporation" "c:\windows\system32\ir50_32.dll"
+ "MPEG Layer-3 Decoder" "MPEG Layer-3 Audio Decoder" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codecx.ax"
+ "RealPlayer Audio Filter" "Audio Filter Plugin" "RealNetworks, Inc." "c:\program files\real\realplayer\rdsf3260.dll"
+ "RealPlayer Transcode Filter" "Audio Filter Plugin" "RealNetworks, Inc." "c:\program files\real\realplayer\rdsf3260.dll"
+ "RealPlayer Video Filter" "Audio Filter Plugin" "RealNetworks, Inc." "c:\program files\real\realplayer\rdsf3260.dll"
+ "Record Queue" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Samsung AAC Decoding Filter" "AAC Decoder Filter Dll" "Pixtree, Inc." "c:\program files\samsung\intelli-studio\filters\pxtraacd.dll"
+ "Samsung AAC Encoder Filter" "AAC Encoder Filter Dll" "Pixtree, Inc." "c:\program files\samsung\intelli-studio\filters\pxtraace.dll"
+ "Samsung AVI Muxer" "AviMuxer" "" "c:\program files\samsung\intelli-studio\filters\ssavimux.dll"
+ "Samsung H264 Decoder" "HTH264Dec1" "Honest Technology" "c:\program files\samsung\intelli-studio\filters\pxtrvdf.dll"
+ "Samsung H264 Encoding Filter" "Pixtree h264 video encoder dshow filter" "PIXTREE, Inc." "c:\program files\samsung\intelli-studio\filters\pxtrvef.dll"
+ "Samsung MJPEG Decoder" "HTH264Dec1" "Honest Technology" "c:\program files\samsung\intelli-studio\filters\pxtrvdf.dll"
+ "Samsung MJPEG Encoder" "HTMJpegEncoder Dynamic Link Library" "Honest Technology" "c:\program files\samsung\intelli-studio\filters\ssmjpgen.dll"
+ "Samsung MP4 Muxer Filter" "" "" "c:\program files\samsung\intelli-studio\filters\ssmp4mux.ax"
+ "Samsung MPEG-4 Splitter Filter" "Pixtree MP4 Splitter Filter" "Pixtree, Inc." "c:\program files\samsung\intelli-studio\filters\pxtrmp4s.dll"
+ "Samsung Video Encoder (3ivx)" "3ivx MPEG-4 5.0.3 Video for Windows Codec" "3ivx Technologies Pty. Ltd." "c:\program files\3ivx\3ivx mpeg-4 5.0.3\3ivxdsvideoencoder.ax"
+ "ShotDetect" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "Stetch" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WIA Stream Snapshot Filter" "WIA Stream Snapshot Filter" "MyCompanyName" "c:\windows\system32\wiasf.ax"
+ "WM VIH2 Fix" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Audio Analyzer" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Black Frame Generator" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT DirectX Transform Wrapper" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT DV Extract Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT FormatConversion" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Import Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Interlacer" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Log Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT MuxDeMux Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Sample Info Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Screen capture Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Switch Filter" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Renderer" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Virtual Source" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
+ "WMT Volume" "Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" ""
+ "avgrsstarter" "AVG Resident Shield Starter" "AVG Technologies CZ, s.r.o." "c:\windows\system32\avgrsstx.dll"
+ "gemsafe" "Dynamic Link Library " "Gemplus" "c:\program files\gemplus\gemsafe libraries\bin\wleventnotify.dll"
+ "igfxcui" "igfxdev Module" "Intel Corporation" "c:\windows\system32\igfxdev.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "EPSON NX510 Series 32MonitorBA" "EPSON Bi-directional Monitor x86" "SEIKO EPSON CORPORATION" "c:\windows\system32\e_flbfia.dll"
+ "PrimoMon" "" "" "c:\windows\system32\primomonnt.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Lsa\Authentication Packages" "" "" ""
+ "wvauth" "Authentication Package" "Wave Systems Corp." "c:\windows\system32\wvauth.dll"

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:08:12 PM

Posted 18 October 2012 - 10:14 PM

Any current issues?




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users