Can't block them, so I'm worried that I might be infected.
Windows 7 64-bit operating system, Service Pack 1.
Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.
Text ads in browser/ can't download any antivirus/malware programs
Started by
Y2Krj
, Nov 03 2012 10:59 AM
12 replies to this topic
#1
Y2Krj
-
- Members
-
- 15 posts
Member
Posted 03 November 2012 - 10:59 AM
Recently got a surge of text ads throughout my Chrome browser. I even got them in this forum.
Can't block them, so I'm worried that I might be infected.
Windows 7 64-bit operating system, Service Pack 1.
Can't block them, so I'm worried that I might be infected.
Windows 7 64-bit operating system, Service Pack 1.
Edited by Y2Krj, 03 November 2012 - 12:00 PM.
Back to top- BC Ads
- BleepingComputer.com
#2
narenxp
-
- BC Advisor
-
- 16,365 posts
Forum Addict
- Gender:Male
- Location:India
Posted 03 November 2012 - 12:31 PM
Download
TDSSkiller
Launch it.Click on change parameters-Select TDLFS file system
Click on "Scan".Please post the LOG report(log file should be in your C drive)
Do not change the default options on scan results
Download
aswMBR
Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log
Post the log results here.If you get crashes in normal mode,run it in safemode with networking
Download
ESET online scanner
Install it
Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats
Export the list to desktop,copy the contents of the text file in your reply
TDSSkiller
Launch it.Click on change parameters-Select TDLFS file system
Click on "Scan".Please post the LOG report(log file should be in your C drive)
Do not change the default options on scan results
Download
aswMBR
Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log
Post the log results here.If you get crashes in normal mode,run it in safemode with networking
Download
ESET online scanner
Install it
Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats
Export the list to desktop,copy the contents of the text file in your reply
#3
Y2Krj
-
- Members
-
- 15 posts
Member
Posted 03 November 2012 - 03:59 PM
TDSSKiller Log
10:41:22.0770 6660 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
10:41:23.0226 6660
============================================================
10:41:23.0226 6660 Current date / time: 2012/11/03 10:41:23.0226
10:41:23.0226 6660 SystemInfo:
10:41:23.0226 6660
10:41:23.0226 6660 OS Version: 6.1.7601 ServicePack: 1.0
10:41:23.0226 6660 Product type: Workstation
10:41:23.0226 6660 ComputerName: Y2KRJ
10:41:23.0226 6660 UserName: Kyle
10:41:23.0226 6660 Windows directory: C:\Windows
10:41:23.0226 6660 System windows directory: C:\Windows
10:41:23.0226 6660 Running under WOW64
10:41:23.0226 6660 Processor architecture: Intel x64
10:41:23.0226 6660 Number of processors: 4
10:41:23.0226 6660 Page size: 0x1000
10:41:23.0226 6660 Boot type: Normal boot
10:41:23.0226 6660
============================================================
10:41:23.0640 6660 Drive \Device\Harddisk0\DR0 - Size: 0xE8D4A50000 (931.32
Gb), SectorSize: 0x200, Cylinders: 0x1DAE8, SectorsPerTrack: 0x3F,
TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:41:23.0663 6660
============================================================
10:41:23.0663 6660 \Device\Harddisk0\DR0:
10:41:23.0664 6660 MBR partitions:
10:41:23.0664 6660 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA
0x800, BlocksNum 0x32000
10:41:23.0664 6660 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA
0x32800, BlocksNum 0x72FE0800
10:41:23.0664 6660 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA
0x73013000, BlocksNum 0x1691800
10:41:23.0664 6660
============================================================
10:41:23.0715 6660 C: <-> \Device\Harddisk0\DR0\Partition2
10:41:23.0868 6660 D: <-> \Device\Harddisk0\DR0\Partition3
10:41:23.0868 6660
============================================================
10:41:23.0868 6660 Initialize success
10:41:23.0868 6660
============================================================
10:41:29.0291 3400
============================================================
10:41:29.0291 3400 Scan started
10:41:29.0291 3400 Mode: Manual;
10:41:29.0291 3400
============================================================
10:41:30.0553 3400 ================ Scan system memory
========================
10:41:30.0554 3400 System memory - ok
10:41:30.0554 3400 ================ Scan services
=============================
10:41:30.0670 3400 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:
\Windows\system32\drivers\1394ohci.sys
10:41:30.0673 3400 1394ohci - ok
10:41:30.0707 3400 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:
\Windows\system32\drivers\ACPI.sys
10:41:30.0711 3400 ACPI - ok
10:41:30.0750 3400 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:
\Windows\system32\drivers\acpipmi.sys
10:41:30.0856 3400 AcpiPmi - ok
10:41:31.0536 3400 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:
\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:41:31.0536 3400 AdobeARMservice - ok
10:41:31.0871 3400 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:
\Windows\system32\DRIVERS\adp94xx.sys
10:41:32.0178 3400 adp94xx - ok
10:41:32.0257 3400 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:
\Windows\system32\DRIVERS\adpahci.sys
10:41:32.0264 3400 adpahci - ok
10:41:32.0311 3400 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:
\Windows\system32\DRIVERS\adpu320.sys
10:41:32.0314 3400 adpu320 - ok
10:41:32.0356 3400 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:
\Windows\System32\aelupsvc.dll
10:41:32.0357 3400 AeLookupSvc - ok
10:41:32.0550 3400 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:
\Windows\system32\drivers\afd.sys
10:41:32.0572 3400 AFD - ok
10:41:32.0624 3400 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:
\Windows\system32\drivers\agp440.sys
10:41:32.0634 3400 agp440 - ok
10:41:32.0675 3400 [ AA3F73CCBF498BD56800F840D75E40E4 ] ahcix64s C:
\Windows\system32\DRIVERS\ahcix64s.sys
10:41:32.0676 3400 ahcix64s - ok
10:41:32.0708 3400 [ 3290D6946B5E30E70414990574883DDB ] ALG C:
\Windows\System32\alg.exe
10:41:32.0709 3400 ALG - ok
10:41:32.0746 3400 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:
\Windows\system32\drivers\aliide.sys
10:41:32.0755 3400 aliide - ok
10:41:32.0814 3400 [ B3E801135E0C81733542C14D9AA8120A ] Alpham1 C:
\Windows\system32\DRIVERS\Alpham164.sys
10:41:32.0830 3400 Alpham1 - ok
10:41:32.0884 3400 [ 6493983FEDBC49D9112703ECE9B251FE ] Alpham2 C:
\Windows\system32\DRIVERS\Alpham264.sys
10:41:32.0898 3400 Alpham2 - ok
10:41:33.0046 3400 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:
\Windows\system32\drivers\amdide.sys
10:41:33.0070 3400 amdide - ok
10:41:33.0137 3400 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:
\Windows\system32\DRIVERS\amdiox64.sys
10:41:33.0165 3400 amdiox64 - ok
10:41:33.0235 3400 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:
\Windows\system32\DRIVERS\amdk8.sys
10:41:33.0249 3400 AmdK8 - ok
10:41:34.0347 3400 [ 0B45C18B0F3EE996D25BAA4E74884B83 ] amdkmdag C:
\Windows\system32\DRIVERS\atikmdag.sys
10:41:34.0499 3400 amdkmdag - ok
10:41:34.0548 3400 [ 0E57258E5CC4CC7A9A9A877AFDF0CEC6 ] amdkmdap C:
\Windows\system32\DRIVERS\atikmpag.sys
10:41:34.0562 3400 amdkmdap - ok
10:41:34.0597 3400 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:
\Windows\system32\DRIVERS\amdppm.sys
10:41:34.0598 3400 AmdPPM - ok
10:41:34.0639 3400 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:
\Windows\system32\drivers\amdsata.sys
10:41:34.0642 3400 amdsata - ok
10:41:34.0689 3400 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:
\Windows\system32\DRIVERS\amdsbs.sys
10:41:34.0702 3400 amdsbs - ok
10:41:34.0742 3400 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:
\Windows\system32\drivers\amdxata.sys
10:41:34.0743 3400 amdxata - ok
10:41:34.0933 3400 [ 2B8D1C23D204C0E70EFF48A3FFA1C67B ] AMD_RAIDXpert C:
\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe
10:41:34.0934 3400 AMD_RAIDXpert - ok
10:41:35.0080 3400 AODDriver4.0 - ok
10:41:35.0127 3400 [ 89A69C3F2F319B43379399547526D952 ] AppID C:
\Windows\system32\drivers\appid.sys
10:41:35.0130 3400 AppID - ok
10:41:35.0209 3400 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:
\Windows\System32\appidsvc.dll
10:41:35.0230 3400 AppIDSvc - ok
10:41:35.0299 3400 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:
\Windows\System32\appinfo.dll
10:41:35.0324 3400 Appinfo - ok
10:41:35.0534 3400 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support
\AppleMobileDeviceService.exe
10:41:35.0535 3400 Apple Mobile Device - ok
10:41:35.0638 3400 [ C484F8CEB1717C540242531DB7845C4E ] arc C:
\Windows\system32\DRIVERS\arc.sys
10:41:35.0641 3400 arc - ok
10:41:35.0696 3400 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:
\Windows\system32\DRIVERS\arcsas.sys
10:41:35.0699 3400 arcsas - ok
10:41:35.0785 3400 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:
\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:41:35.0785 3400 aspnet_state - ok
10:41:35.0829 3400 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:
\Windows\system32\DRIVERS\asyncmac.sys
10:41:35.0830 3400 AsyncMac - ok
10:41:35.0881 3400 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:
\Windows\system32\drivers\atapi.sys
10:41:35.0889 3400 atapi - ok
10:41:35.0982 3400 [ B4421D8CDADC441F76BA39532A3E3414 ] athr C:
\Windows\system32\DRIVERS\athrx.sys
10:41:36.0056 3400 athr - ok
10:41:36.0101 3400 [ 77C149E6D702737B2E372DEE166FAEF8 ] AtiHdmiService C:
\Windows\system32\drivers\AtiHdmi.sys
10:41:36.0104 3400 AtiHdmiService - ok
10:41:36.0280 3400 [ 0B45C18B0F3EE996D25BAA4E74884B83 ] atikmdag C:
\Windows\system32\DRIVERS\atikmdag.sys
10:41:36.0335 3400 atikmdag - ok
10:41:36.0415 3400 [ 7C5D273E29DCC5505469B299C6F29163 ] AtiPcie C:
\Windows\system32\DRIVERS\AtiPcie.sys
10:41:36.0449 3400 AtiPcie - ok
10:41:36.0516 3400 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder
C:\Windows\System32\Audiosrv.dll
10:41:36.0531 3400 AudioEndpointBuilder - ok
10:41:36.0539 3400 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:
\Windows\System32\Audiosrv.dll
10:41:36.0543 3400 AudioSrv - ok
10:41:36.0954 3400 [ F1CA8ED683D6945EFDC4492AB60B1460 ] AVP C:
\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe
10:41:36.0955 3400 AVP - ok
10:41:36.0988 3400 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:
\Windows\System32\AxInstSV.dll
10:41:36.0990 3400 AxInstSV - ok
10:41:37.0290 3400 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:
\Windows\system32\DRIVERS\bxvbda.sys
10:41:37.0298 3400 b06bdrv - ok
10:41:37.0449 3400 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:
\Windows\system32\DRIVERS\b57nd60a.sys
10:41:37.0464 3400 b57nd60a - ok
10:41:37.0523 3400 [ 01A24B415926BB5F772DBE12459D97DE ] BBSvc C:
\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
10:41:37.0525 3400 BBSvc - ok
10:41:37.0727 3400 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:
\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
10:41:37.0728 3400 BBUpdate - ok
10:41:37.0761 3400 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:
\Windows\System32\bdesvc.dll
10:41:37.0762 3400 BDESVC - ok
10:41:37.0770 3400 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:
\Windows\system32\drivers\Beep.sys
10:41:37.0778 3400 Beep - ok
10:41:37.0822 3400 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:
\Windows\System32\bfe.dll
10:41:37.0829 3400 BFE - ok
10:41:37.0867 3400 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:
\Windows\system32\qmgr.dll
10:41:37.0901 3400 BITS - ok
10:41:37.0916 3400 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:
\Windows\system32\DRIVERS\blbdrive.sys
10:41:37.0918 3400 blbdrive - ok
10:41:37.0949 3400 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:
\Program Files\Bonjour\mDNSResponder.exe
10:41:37.0951 3400 Bonjour Service - ok
10:41:37.0984 3400 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:
\Windows\system32\DRIVERS\bowser.sys
10:41:37.0986 3400 bowser - ok
10:41:38.0027 3400 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:
\Windows\system32\DRIVERS\BrFiltLo.sys
10:41:38.0034 3400 BrFiltLo - ok
10:41:38.0089 3400 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:
\Windows\system32\DRIVERS\BrFiltUp.sys
10:41:38.0091 3400 BrFiltUp - ok
10:41:38.0138 3400 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:
\Windows\System32\browser.dll
10:41:38.0139 3400 Browser - ok
10:41:38.0188 3400 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:
\Windows\System32\Drivers\Brserid.sys
10:41:38.0193 3400 Brserid - ok
10:41:38.0212 3400 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:
\Windows\System32\Drivers\BrSerWdm.sys
10:41:38.0214 3400 BrSerWdm - ok
10:41:38.0270 3400 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:
\Windows\System32\Drivers\BrUsbMdm.sys
10:41:38.0277 3400 BrUsbMdm - ok
10:41:38.0332 3400 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:
\Windows\System32\Drivers\BrUsbSer.sys
10:41:38.0333 3400 BrUsbSer - ok
10:41:38.0352 3400 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:
\Windows\system32\DRIVERS\bthmodem.sys
10:41:38.0354 3400 BTHMODEM - ok
10:41:38.0385 3400 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:
\Windows\system32\bthserv.dll
10:41:38.0386 3400 bthserv - ok
10:41:38.0440 3400 [ B8BD2BB284668C84865658C77574381A ] cdfs C:
\Windows\system32\DRIVERS\cdfs.sys
10:41:38.0449 3400 cdfs - ok
10:41:38.0562 3400 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:
\Windows\system32\DRIVERS\cdrom.sys
10:41:38.0572 3400 cdrom - ok
10:41:38.0648 3400 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:
\Windows\System32\certprop.dll
10:41:38.0668 3400 CertPropSvc - ok
10:41:38.0695 3400 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:
\Windows\system32\DRIVERS\circlass.sys
10:41:38.0709 3400 circlass - ok
10:41:38.0779 3400 [ FF60401F1C659CA2ED4BAE85D3FD14DA ] CISVC C:
\Windows\system32\CISVC.EXE
10:41:38.0780 3400 CISVC - ok
10:41:38.0925 3400 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:
\Windows\system32\CLFS.sys
10:41:38.0967 3400 CLFS - ok
10:41:39.0035 3400 [ D88040F816FDA31C3B466F0FA0918F29 ]
clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework
\v2.0.50727\mscorsvw.exe
10:41:39.0036 3400 clr_optimization_v2.0.50727_32 - ok
10:41:39.0230 3400 [ D1CEEA2B47CB998321C579651CE3E4F8 ]
clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET
\Framework64\v2.0.50727\mscorsvw.exe
10:41:39.0231 3400 clr_optimization_v2.0.50727_64 - ok
10:41:39.0438 3400 [ C5A75EB48E2344ABDC162BDA79E16841 ]
clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework
\v4.0.30319\mscorsvw.exe
10:41:39.0439 3400 clr_optimization_v4.0.30319_32 - ok
10:41:39.0448 3400 [ C6F9AF94DCD58122A4D7E89DB6BED29D ]
clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET
\Framework64\v4.0.30319\mscorsvw.exe
10:41:39.0450 3400 clr_optimization_v4.0.30319_64 - ok
10:41:39.0485 3400 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:
\Windows\system32\DRIVERS\CmBatt.sys
10:41:39.0487 3400 CmBatt - ok
10:41:39.0538 3400 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:
\Windows\system32\drivers\cmdide.sys
10:41:39.0547 3400 cmdide - ok
10:41:39.0586 3400 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:
\Windows\system32\Drivers\cng.sys
10:41:39.0602 3400 CNG - ok
10:41:39.0631 3400 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:
\Windows\system32\DRIVERS\compbatt.sys
10:41:39.0639 3400 Compbatt - ok
10:41:39.0672 3400 [ 59D203C3F46F3CA536ECAC0E084CD887 ] CompFilter64 C:
\Windows\system32\DRIVERS\lvbflt64.sys
10:41:39.0673 3400 CompFilter64 - ok
10:41:39.0707 3400 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:
\Windows\system32\drivers\CompositeBus.sys
10:41:39.0709 3400 CompositeBus - ok
10:41:39.0712 3400 COMSysApp - ok
10:41:39.0748 3400 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:
\Windows\system32\DRIVERS\crcdisk.sys
10:41:39.0757 3400 crcdisk - ok
10:41:39.0808 3400 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:
\Windows\system32\cryptsvc.dll
10:41:39.0811 3400 CryptSvc - ok
10:41:39.0987 3400 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:
\Windows\system32\rpcss.dll
10:41:40.0009 3400 DcomLaunch - ok
10:41:40.0159 3400 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:
\Windows\System32\defragsvc.dll
10:41:40.0185 3400 defragsvc - ok
10:41:40.0255 3400 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:
\Windows\system32\Drivers\dfsc.sys
10:41:40.0290 3400 DfsC - ok
10:41:40.0458 3400 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:
\Windows\system32\dhcpcore.dll
10:41:40.0478 3400 Dhcp - ok
10:41:40.0533 3400 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:
\Windows\system32\drivers\discache.sys
10:41:40.0551 3400 discache - ok
10:41:40.0622 3400 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:
\Windows\system32\DRIVERS\disk.sys
10:41:40.0654 3400 Disk - ok
10:41:40.0743 3400 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:
\Windows\System32\dnsrslvr.dll
10:41:40.0761 3400 Dnscache - ok
10:41:40.0868 3400 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:
\Windows\System32\dot3svc.dll
10:41:40.0891 3400 dot3svc - ok
10:41:40.0991 3400 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:
\Windows\system32\dps.dll
10:41:41.0009 3400 DPS - ok
10:41:41.0078 3400 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:
\Windows\system32\drivers\drmkaud.sys
10:41:41.0092 3400 drmkaud - ok
10:41:41.0145 3400 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:
\Windows\System32\drivers\dxgkrnl.sys
10:41:41.0157 3400 DXGKrnl - ok
10:41:41.0179 3400 EagleX64 - ok
10:41:41.0201 3400 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:
\Windows\System32\eapsvc.dll
10:41:41.0203 3400 EapHost - ok
10:41:41.0275 3400 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:
\Windows\system32\DRIVERS\evbda.sys
10:41:41.0314 3400 ebdrv - ok
10:41:41.0352 3400 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:
\Windows\System32\lsass.exe
10:41:41.0353 3400 EFS - ok
10:41:41.0409 3400 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:
\Windows\ehome\ehRecvr.exe
10:41:41.0413 3400 ehRecvr - ok
10:41:41.0433 3400 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:
\Windows\ehome\ehsched.exe
10:41:41.0434 3400 ehSched - ok
10:41:41.0488 3400 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:
\Windows\system32\DRIVERS\elxstor.sys
10:41:41.0497 3400 elxstor - ok
10:41:41.0545 3400 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:
\Windows\system32\drivers\errdev.sys
10:41:41.0547 3400 ErrDev - ok
10:41:41.0646 3400 [ 932C05033053ADA2404FD836C9AB2C70 ]
EuMusDesignVirtualAudioCableWdm C:\Windows\system32\DRIVERS\vrtaucbl.sys
10:41:41.0649 3400 EuMusDesignVirtualAudioCableWdm - ok
10:41:41.0868 3400 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:
\Windows\system32\es.dll
10:41:41.0873 3400 EventSystem - ok
10:41:41.0971 3400 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:
\Windows\system32\drivers\exfat.sys
10:41:41.0992 3400 exfat - ok
10:41:42.0049 3400 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:
\Windows\system32\drivers\fastfat.sys
10:41:42.0065 3400 fastfat - ok
10:41:42.0336 3400 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:
\Windows\system32\fxssvc.exe
10:41:42.0356 3400 Fax - ok
10:41:42.0376 3400 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:
\Windows\system32\DRIVERS\fdc.sys
10:41:42.0395 3400 fdc - ok
10:41:42.0433 3400 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:
\Windows\system32\fdPHost.dll
10:41:42.0434 3400 fdPHost - ok
10:41:42.0477 3400 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:
\Windows\system32\fdrespub.dll
10:41:42.0502 3400 FDResPub - ok
10:41:42.0559 3400 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:
\Windows\system32\drivers\fileinfo.sys
10:41:42.0574 3400 FileInfo - ok
10:41:42.0602 3400 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:
\Windows\system32\drivers\filetrace.sys
10:41:42.0603 3400 Filetrace - ok
10:41:42.0639 3400 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:
\Windows\system32\DRIVERS\flpydisk.sys
10:41:42.0647 3400 flpydisk - ok
10:41:42.0681 3400 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:
\Windows\system32\drivers\fltmgr.sys
10:41:42.0696 3400 FltMgr - ok
10:41:42.0735 3400 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:
\Windows\system32\FntCache.dll
10:41:42.0746 3400 FontCache - ok
10:41:42.0793 3400 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:
\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:41:42.0794 3400 FontCache3.0.0.0 - ok
10:41:42.0812 3400 [ D43703496149971890703B4B1B723EAC ] FsDepends C:
\Windows\system32\drivers\FsDepends.sys
10:41:42.0814 3400 FsDepends - ok
10:41:42.0853 3400 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:
\Windows\system32\DRIVERS\fssfltr.sys
10:41:42.0855 3400 fssfltr - ok
10:41:42.0970 3400 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:
\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
10:41:42.0978 3400 fsssvc - ok
10:41:42.0999 3400 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:
\Windows\system32\drivers\Fs_Rec.sys
10:41:43.0008 3400 Fs_Rec - ok
10:41:43.0034 3400 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:
\Windows\system32\DRIVERS\fvevol.sys
10:41:43.0038 3400 fvevol - ok
10:41:43.0078 3400 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:
\Windows\system32\DRIVERS\gagp30kx.sys
10:41:43.0080 3400 gagp30kx - ok
10:41:43.0359 3400 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:
\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:41:43.0393 3400 GEARAspiWDM - ok
10:41:43.0708 3400 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:
\Windows\System32\gpsvc.dll
10:41:43.0731 3400 gpsvc - ok
10:41:44.0049 3400 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:
\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:41:44.0051 3400 gupdate - ok
10:41:44.0077 3400 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:
\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:41:44.0078 3400 gupdatem - ok
10:41:44.0330 3400 [ 408DDD80EEDE47175F6844817B90213E ] gusvc C:
\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
10:41:44.0331 3400 gusvc - ok
10:41:44.0373 3400 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:
\Windows\system32\drivers\hcw85cir.sys
10:41:44.0388 3400 hcw85cir - ok
10:41:44.0663 3400 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:
\Windows\system32\drivers\HdAudio.sys
10:41:44.0682 3400 HdAudAddService - ok
10:41:44.0728 3400 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:
\Windows\system32\DRIVERS\HDAudBus.sys
10:41:44.0730 3400 HDAudBus - ok
10:41:44.0794 3400 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:
\Windows\system32\DRIVERS\HidBatt.sys
10:41:44.0818 3400 HidBatt - ok
10:41:44.0845 3400 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:
\Windows\system32\DRIVERS\hidbth.sys
10:41:44.0848 3400 HidBth - ok
10:41:44.0905 3400 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:
\Windows\system32\DRIVERS\hidir.sys
10:41:44.0907 3400 HidIr - ok
10:41:44.0945 3400 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:
\Windows\System32\hidserv.dll
10:41:44.0946 3400 hidserv - ok
10:41:44.0974 3400 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:
\Windows\system32\DRIVERS\hidusb.sys
10:41:44.0983 3400 HidUsb - ok
10:41:45.0015 3400 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:
\Windows\system32\kmsvc.dll
10:41:45.0017 3400 hkmsvc - ok
10:41:45.0062 3400 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:
\Windows\system32\ListSvc.dll
10:41:45.0065 3400 HomeGroupListener - ok
10:41:45.0096 3400 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:
\Windows\system32\provsvc.dll
10:41:45.0100 3400 HomeGroupProvider - ok
10:41:45.0116 3400 HP Health Check Service - ok
10:41:45.0141 3400 hpqwmiex - ok
10:41:45.0180 3400 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:
\Windows\system32\drivers\HpSAMD.sys
10:41:45.0183 3400 HpSAMD - ok
10:41:45.0226 3400 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:
\Windows\system32\drivers\HTTP.sys
10:41:45.0247 3400 HTTP - ok
10:41:45.0283 3400 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:
\Windows\system32\drivers\hwpolicy.sys
10:41:45.0291 3400 hwpolicy - ok
10:41:45.0335 3400 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:
\Windows\system32\drivers\i8042prt.sys
10:41:45.0344 3400 i8042prt - ok
10:41:45.0400 3400 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:
\Windows\system32\drivers\iaStorV.sys
10:41:45.0407 3400 iaStorV - ok
10:41:45.0440 3400 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:
\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation
\infocard.exe
10:41:45.0444 3400 idsvc - ok
10:41:45.0491 3400 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:
\Windows\system32\DRIVERS\iirsp.sys
10:41:45.0493 3400 iirsp - ok
10:41:45.0546 3400 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:
\Windows\System32\ikeext.dll
10:41:45.0555 3400 IKEEXT - ok
10:41:46.0658 3400 [ 3C4B4EE54FEBB09F7E9F58776DE96DCA ] IntcAzAudAddService
C:\Windows\system32\drivers\RTKVHD64.sys
10:41:46.0781 3400 IntcAzAudAddService - ok
10:41:46.0798 3400 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:
\Windows\system32\drivers\intelide.sys
10:41:46.0806 3400 intelide - ok
10:41:46.0828 3400 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:
\Windows\system32\DRIVERS\intelppm.sys
10:41:46.0830 3400 intelppm - ok
10:41:46.0861 3400 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:
\Windows\system32\ipbusenum.dll
10:41:46.0863 3400 IPBusEnum - ok
10:41:46.0908 3400 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:
\Windows\system32\DRIVERS\ipfltdrv.sys
10:41:46.0917 3400 IpFilterDriver - ok
10:41:47.0065 3400 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:
\Windows\System32\iphlpsvc.dll
10:41:47.0072 3400 iphlpsvc - ok
10:41:47.0112 3400 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:
\Windows\system32\drivers\IPMIDrv.sys
10:41:47.0114 3400 IPMIDRV - ok
10:41:47.0166 3400 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:
\Windows\system32\drivers\ipnat.sys
10:41:47.0168 3400 IPNAT - ok
10:41:47.0236 3400 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:
\Program Files\iPod\bin\iPodService.exe
10:41:47.0240 3400 iPod Service - ok
10:41:47.0270 3400 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:
\Windows\system32\drivers\irenum.sys
10:41:47.0272 3400 IRENUM - ok
10:41:47.0309 3400 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:
\Windows\system32\drivers\isapnp.sys
10:41:47.0317 3400 isapnp - ok
10:41:47.0367 3400 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:
\Windows\system32\drivers\msiscsi.sys
10:41:47.0371 3400 iScsiPrt - ok
10:41:47.0402 3400 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:
\Windows\system32\DRIVERS\kbdclass.sys
10:41:47.0411 3400 kbdclass - ok
10:41:47.0454 3400 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:
\Windows\system32\DRIVERS\kbdhid.sys
10:41:47.0463 3400 kbdhid - ok
10:41:47.0473 3400 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:
\Windows\system32\lsass.exe
10:41:47.0474 3400 KeyIso - ok
10:41:47.0514 3400 [ 8B5219318DF5895ABD230C373F2DF18A ] kl1 C:
\Windows\system32\DRIVERS\kl1.sys
10:41:47.0521 3400 kl1 - ok
10:41:47.0956 3400 [ 8191BB24F61EBCAF84719993C7F7B5C6 ] KLIF C:
\Windows\system32\DRIVERS\klif.sys
10:41:47.0966 3400 KLIF - ok
10:41:48.0003 3400 [ 9BD99E1AB3F664120AB95C35F9EC1EB0 ] KLIM6 C:
\Windows\system32\DRIVERS\klim6.sys
10:41:48.0005 3400 KLIM6 - ok
10:41:48.0144 3400 [ 2C43FD500522EF3B8C283A5846B7FC41 ] klkbdflt C:
\Windows\system32\DRIVERS\klkbdflt.sys
10:41:48.0172 3400 klkbdflt - ok
10:41:48.0202 3400 [ 70A6D2E292017EC47949696F51ABE18D ] klmouflt C:
\Windows\system32\DRIVERS\klmouflt.sys
10:41:48.0209 3400 klmouflt - ok
10:41:48.0235 3400 [ FFC0501A1EA742406F1904A0CFE3BFE2 ] kltdi C:
\Windows\system32\DRIVERS\kltdi.sys
10:41:48.0266 3400 kltdi - ok
10:41:48.0314 3400 [ 185D21CB8F10CFB351FF65DA88C18BC9 ] kneps C:
\Windows\system32\DRIVERS\kneps.sys
10:41:48.0327 3400 kneps - ok
10:41:48.0406 3400 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:
\Windows\system32\Drivers\ksecdd.sys
10:41:48.0441 3400 KSecDD - ok
10:41:48.0552 3400 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:
\Windows\system32\Drivers\ksecpkg.sys
10:41:48.0608 3400 KSecPkg - ok
10:41:48.0677 3400 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:
\Windows\system32\drivers\ksthunk.sys
10:41:48.0705 3400 ksthunk - ok
10:41:48.0866 3400 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:
\Windows\system32\msdtckrm.dll
10:41:48.0892 3400 KtmRm - ok
10:41:48.0926 3400 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:
\Windows\System32\srvsvc.dll
10:41:48.0930 3400 LanmanServer - ok
10:41:48.0956 3400 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:
\Windows\System32\wkssvc.dll
10:41:48.0959 3400 LanmanWorkstation - ok
10:41:48.0984 3400 [ 3C46290F7A5D45BA6EF32C248E22AA69 ] Lbd C:
\Windows\system32\DRIVERS\Lbd.sys
10:41:48.0987 3400 Lbd - ok
10:41:49.0005 3400 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:
\Windows\system32\DRIVERS\lltdio.sys
10:41:49.0007 3400 lltdio - ok
10:41:49.0034 3400 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:
\Windows\System32\lltdsvc.dll
10:41:49.0038 3400 lltdsvc - ok
10:41:49.0055 3400 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:
\Windows\System32\lmhsvc.dll
10:41:49.0062 3400 lmhosts - ok
10:41:49.0105 3400 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:
\Windows\system32\DRIVERS\lsi_fc.sys
10:41:49.0107 3400 LSI_FC - ok
10:41:49.0161 3400 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:
\Windows\system32\DRIVERS\lsi_sas.sys
10:41:49.0163 3400 LSI_SAS - ok
10:41:49.0185 3400 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:
\Windows\system32\DRIVERS\lsi_sas2.sys
10:41:49.0195 3400 LSI_SAS2 - ok
10:41:49.0209 3400 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:
\Windows\system32\DRIVERS\lsi_scsi.sys
10:41:49.0212 3400 LSI_SCSI - ok
10:41:49.0234 3400 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:
\Windows\system32\drivers\luafv.sys
10:41:49.0236 3400 luafv - ok
10:41:49.0274 3400 [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2M64 C:
\Windows\system32\DRIVERS\LVPr2M64.sys
10:41:49.0275 3400 LVPr2M64 - ok
10:41:49.0278 3400 [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2Mon C:
\Windows\system32\DRIVERS\LVPr2M64.sys
10:41:49.0279 3400 LVPr2Mon - ok
10:41:49.0315 3400 [ 0C85B2B6FB74B36A251792D45E0EF860 ] LVRS64 C:
\Windows\system32\DRIVERS\lvrs64.sys
10:41:49.0331 3400 LVRS64 - ok
10:41:49.0435 3400 [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64 C:
\Windows\system32\DRIVERS\lvuvc64.sys
10:41:49.0501 3400 LVUVC64 - ok
10:41:49.0531 3400 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:
\Windows\system32\Mcx2Svc.dll
10:41:49.0533 3400 Mcx2Svc - ok
10:41:49.0558 3400 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:
\Windows\system32\DRIVERS\megasas.sys
10:41:49.0567 3400 megasas - ok
10:41:49.0673 3400 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:
\Windows\system32\DRIVERS\MegaSR.sys
10:41:49.0688 3400 MegaSR - ok
10:41:49.0719 3400 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:
\Windows\system32\mmcss.dll
10:41:49.0721 3400 MMCSS - ok
10:41:49.0759 3400 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:
\Windows\system32\drivers\modem.sys
10:41:49.0761 3400 Modem - ok
10:41:49.0824 3400 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:
\Windows\system32\DRIVERS\monitor.sys
10:41:49.0850 3400 monitor - ok
10:41:49.0923 3400 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:
\Windows\system32\DRIVERS\mouclass.sys
10:41:49.0952 3400 mouclass - ok
10:41:49.0976 3400 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:
\Windows\system32\DRIVERS\mouhid.sys
10:41:49.0977 3400 mouhid - ok
10:41:50.0003 3400 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:
\Windows\system32\drivers\mountmgr.sys
10:41:50.0013 3400 mountmgr - ok
10:41:50.0042 3400 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:
\Windows\system32\drivers\mpio.sys
10:41:50.0046 3400 mpio - ok
10:41:50.0065 3400 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:
\Windows\system32\drivers\mpsdrv.sys
10:41:50.0099 3400 mpsdrv - ok
10:41:50.0150 3400 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:
\Windows\system32\mpssvc.dll
10:41:50.0158 3400 MpsSvc - ok
10:41:50.0199 3400 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:
\Windows\system32\drivers\mrxdav.sys
10:41:50.0210 3400 MRxDAV - ok
10:41:50.0251 3400 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:
\Windows\system32\DRIVERS\mrxsmb.sys
10:41:50.0254 3400 mrxsmb - ok
10:41:50.0279 3400 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:
\Windows\system32\DRIVERS\mrxsmb10.sys
10:41:50.0282 3400 mrxsmb10 - ok
10:41:50.0300 3400 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:
\Windows\system32\DRIVERS\mrxsmb20.sys
10:41:50.0302 3400 mrxsmb20 - ok
10:41:50.0340 3400 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:
\Windows\system32\drivers\msahci.sys
10:41:50.0349 3400 msahci - ok
10:41:50.0409 3400 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:
\Windows\system32\drivers\msdsm.sys
10:41:50.0412 3400 msdsm - ok
10:41:50.0437 3400 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:
\Windows\System32\msdtc.exe
10:41:50.0440 3400 MSDTC - ok
10:41:50.0458 3400 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:
\Windows\system32\drivers\Msfs.sys
10:41:50.0466 3400 Msfs - ok
10:41:50.0469 3400 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:
\Windows\System32\drivers\mshidkmdf.sys
10:41:50.0477 3400 mshidkmdf - ok
10:41:50.0508 3400 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:
\Windows\system32\drivers\msisadrv.sys
10:41:50.0515 3400 msisadrv - ok
10:41:50.0545 3400 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:
\Windows\system32\iscsiexe.dll
10:41:50.0547 3400 MSiSCSI - ok
10:41:50.0551 3400 msiserver - ok
10:41:50.0579 3400 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:
\Windows\system32\drivers\MSKSSRV.sys
10:41:50.0587 3400 MSKSSRV - ok
10:41:50.0643 3400 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:
\Windows\system32\drivers\MSPCLOCK.sys
10:41:50.0651 3400 MSPCLOCK - ok
10:41:50.0664 3400 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:
\Windows\system32\drivers\MSPQM.sys
10:41:50.0665 3400 MSPQM - ok
10:41:50.0800 3400 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:
\Windows\system32\drivers\MsRPC.sys
10:41:50.0836 3400 MsRPC - ok
10:41:50.0867 3400 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:
\Windows\system32\drivers\mssmbios.sys
10:41:50.0868 3400 mssmbios - ok
10:41:50.0892 3400 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:
\Windows\system32\drivers\MSTEE.sys
10:41:50.0917 3400 MSTEE - ok
10:41:50.0927 3400 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:
\Windows\system32\DRIVERS\MTConfig.sys
10:41:50.0928 3400 MTConfig - ok
10:41:50.0971 3400 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:
\Windows\system32\Drivers\mup.sys
10:41:50.0992 3400 Mup - ok
10:41:51.0241 3400 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:
\Windows\system32\qagentRT.dll
10:41:51.0273 3400 napagent - ok
10:41:51.0436 3400 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:
\Windows\system32\DRIVERS\nwifi.sys
10:41:51.0464 3400 NativeWifiP - ok
10:41:51.0879 3400 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:
\Windows\system32\drivers\ndis.sys
10:41:51.0889 3400 NDIS - ok
10:41:51.0970 3400 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:
\Windows\system32\DRIVERS\ndiscap.sys
10:41:51.0993 3400 NdisCap - ok
10:41:52.0028 3400 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:
\Windows\system32\DRIVERS\ndistapi.sys
10:41:52.0061 3400 NdisTapi - ok
10:41:52.0108 3400 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:
\Windows\system32\DRIVERS\ndisuio.sys
10:41:52.0118 3400 Ndisuio - ok
10:41:52.0262 3400 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:
\Windows\system32\DRIVERS\ndiswan.sys
10:41:52.0293 3400 NdisWan - ok
10:41:52.0374 3400 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:
\Windows\system32\drivers\NDProxy.sys
10:41:52.0409 3400 NDProxy - ok
10:41:52.0439 3400 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:
\Windows\system32\DRIVERS\netbios.sys
10:41:52.0459 3400 NetBIOS - ok
10:41:52.0577 3400 [ 09594D1089C523423B32A4229263F068 ] NetBT C:
\Windows\system32\DRIVERS\netbt.sys
10:41:52.0611 3400 NetBT - ok
10:41:52.0639 3400 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:
\Windows\system32\lsass.exe
10:41:52.0641 3400 Netlogon - ok
10:41:52.0681 3400 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:
\Windows\System32\netman.dll
10:41:52.0686 3400 Netman - ok
10:41:52.0716 3400 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:
\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:41:52.0717 3400 NetMsmqActivator - ok
10:41:52.0722 3400 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:
\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:41:52.0723 3400 NetPipeActivator - ok
10:41:52.0737 3400 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:
\Windows\System32\netprofm.dll
10:41:52.0743 3400 netprofm - ok
10:41:52.0749 3400 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:
\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:41:52.0750 3400 NetTcpActivator - ok
10:41:52.0755 3400 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:
\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:41:52.0757 3400 NetTcpPortSharing - ok
10:41:52.0790 3400 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:
\Windows\system32\DRIVERS\nfrd960.sys
10:41:52.0792 3400 nfrd960 - ok
10:41:52.0835 3400 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:
\Windows\System32\nlasvc.dll
10:41:52.0839 3400 NlaSvc - ok
10:41:52.0851 3400 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:
\Windows\system32\drivers\Npfs.sys
10:41:52.0860 3400 Npfs - ok
10:41:52.0866 3400 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:
\Windows\system32\nsisvc.dll
10:41:52.0874 3400 nsi - ok
10:41:52.0884 3400 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:
\Windows\system32\drivers\nsiproxy.sys
10:41:52.0886 3400 nsiproxy - ok
10:41:52.0937 3400 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:
\Windows\system32\drivers\Ntfs.sys
10:41:52.0969 3400 Ntfs - ok
10:41:52.0985 3400 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:
\Windows\system32\drivers\Null.sys
10:41:52.0987 3400 Null - ok
10:41:53.0014 3400 [ 102806B360D0E6BC6E55BF47EF655D43 ] NVHDA C:
\Windows\system32\drivers\nvhda64v.sys
10:41:53.0018 3400 NVHDA - ok
10:41:53.0258 3400 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm C:
\Windows\system32\DRIVERS\nvlddmkm.sys
10:42:09.0893 6416
============================================================
10:42:09.0893 6416 Scan started
10:42:09.0893 6416 Mode: Manual; TDLFS;
10:42:09.0893 6416
============================================================
10:42:10.0484 6416 ================ Scan system memory
========================
10:42:10.0484 6416 System memory - ok
10:42:10.0485 6416 ================ Scan services
=============================
10:42:10.0591 6416 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:
\Windows\system32\drivers\1394ohci.sys
10:42:10.0592 6416 1394ohci - ok
10:42:10.0636 6416 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:
\Windows\system32\drivers\ACPI.sys
10:42:10.0638 6416 ACPI - ok
10:42:10.0671 6416 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:
\Windows\system32\drivers\acpipmi.sys
10:42:10.0671 6416 AcpiPmi - ok
10:42:11.0134 6416 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:
\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:42:11.0135 6416 AdobeARMservice - ok
10:42:11.0463 6416 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:
\Windows\system32\DRIVERS\adp94xx.sys
10:42:11.0466 6416 adp94xx - ok
10:42:11.0631 6416 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:
\Windows\system32\DRIVERS\adpahci.sys
10:42:11.0633 6416 adpahci - ok
10:42:11.0764 6416 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:
\Windows\system32\DRIVERS\adpu320.sys
10:42:11.0765 6416 adpu320 - ok
10:42:11.0854 6416 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:
\Windows\System32\aelupsvc.dll
10:42:11.0855 6416 AeLookupSvc - ok
10:42:12.0071 6416 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:
\Windows\system32\drivers\afd.sys
10:42:12.0073 6416 AFD - ok
10:42:12.0156 6416 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:
\Windows\system32\drivers\agp440.sys
10:42:12.0156 6416 agp440 - ok
10:42:12.0208 6416 [ AA3F73CCBF498BD56800F840D75E40E4 ] ahcix64s C:
\Windows\system32\DRIVERS\ahcix64s.sys
10:42:12.0209 6416 ahcix64s - ok
10:42:12.0219 6416 [ 3290D6946B5E30E70414990574883DDB ] ALG C:
\Windows\System32\alg.exe
10:42:12.0219 6416 ALG - ok
10:42:12.0257 6416 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:
\Windows\system32\drivers\aliide.sys
10:42:12.0257 6416 aliide - ok
10:42:12.0313 6416 [ B3E801135E0C81733542C14D9AA8120A ] Alpham1 C:
\Windows\system32\DRIVERS\Alpham164.sys
10:42:12.0313 6416 Alpham1 - ok
10:42:12.0361 6416 [ 6493983FEDBC49D9112703ECE9B251FE ] Alpham2 C:
\Windows\system32\DRIVERS\Alpham264.sys
10:42:12.0362 6416 Alpham2 - ok
10:42:12.0379 6416 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:
\Windows\system32\drivers\amdide.sys
10:42:12.0379 6416 amdide - ok
10:42:12.0425 6416 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:
\Windows\system32\DRIVERS\amdiox64.sys
10:42:12.0425 6416 amdiox64 - ok
10:42:12.0479 6416 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:
\Windows\system32\DRIVERS\amdk8.sys
10:42:12.0480 6416 AmdK8 - ok
10:42:12.0702 6416 [ 0B45C18B0F3EE996D25BAA4E74884B83 ] amdkmdag C:
\Windows\system32\DRIVERS\atikmdag.sys
10:42:12.0760 6416 amdkmdag - ok
10:42:12.0892 6416 [ 0E57258E5CC4CC7A9A9A877AFDF0CEC6 ] amdkmdap C:
\Windows\system32\DRIVERS\atikmpag.sys
10:42:12.0894 6416 amdkmdap - ok
10:42:12.0941 6416 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:
\Windows\system32\DRIVERS\amdppm.sys
10:42:12.0942 6416 AmdPPM - ok
10:42:13.0017 6416 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:
\Windows\system32\drivers\amdsata.sys
10:42:13.0018 6416 amdsata - ok
10:42:13.0133 6416 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:
\Windows\system32\DRIVERS\amdsbs.sys
10:42:13.0134 6416 amdsbs - ok
10:42:13.0219 6416 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:
\Windows\system32\drivers\amdxata.sys
10:42:13.0219 6416 amdxata - ok
10:42:13.0454 6416 [ 2B8D1C23D204C0E70EFF48A3FFA1C67B ] AMD_RAIDXpert C:
\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe
10:42:13.0455 6416 AMD_RAIDXpert - ok
10:42:13.0627 6416 AODDriver4.0 - ok
10:42:13.0693 6416 [ 89A69C3F2F319B43379399547526D952 ] AppID C:
\Windows\system32\drivers\appid.sys
10:42:13.0694 6416 AppID - ok
10:42:13.0775 6416 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:
\Windows\System32\appidsvc.dll
10:42:13.0775 6416 AppIDSvc - ok
10:42:13.0865 6416 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:
\Windows\System32\appinfo.dll
10:42:13.0866 6416 Appinfo - ok
10:42:14.0066 6416 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support
\AppleMobileDeviceService.exe
10:42:14.0067 6416 Apple Mobile Device - ok
10:42:14.0154 6416 [ C484F8CEB1717C540242531DB7845C4E ] arc C:
\Windows\system32\DRIVERS\arc.sys
10:42:14.0155 6416 arc - ok
10:42:14.0184 6416 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:
\Windows\system32\DRIVERS\arcsas.sys
10:42:14.0185 6416 arcsas - ok
10:42:14.0351 6416 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:
\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:42:14.0351 6416 aspnet_state - ok
10:42:14.0395 6416 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:
\Windows\system32\DRIVERS\asyncmac.sys
10:42:14.0396 6416 AsyncMac - ok
10:42:14.0447 6416 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:
\Windows\system32\drivers\atapi.sys
10:42:14.0448 6416 atapi - ok
10:42:14.0550 6416 [ B4421D8CDADC441F76BA39532A3E3414 ] athr C:
\Windows\system32\DRIVERS\athrx.sys
10:42:14.0568 6416 athr - ok
10:42:14.0612 6416 [ 77C149E6D702737B2E372DEE166FAEF8 ] AtiHdmiService C:
\Windows\system32\drivers\AtiHdmi.sys
10:42:14.0613 6416 AtiHdmiService - ok
10:42:14.0825 6416 [ 0B45C18B0F3EE996D25BAA4E74884B83 ] atikmdag C:
\Windows\system32\DRIVERS\atikmdag.sys
10:42:14.0888 6416 atikmdag - ok
10:42:15.0003 6416 [ 7C5D273E29DCC5505469B299C6F29163 ] AtiPcie C:
\Windows\system32\DRIVERS\AtiPcie.sys
10:42:15.0004 6416 AtiPcie - ok
10:42:15.0332 6416 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder
C:\Windows\System32\Audiosrv.dll
10:42:15.0336 6416 AudioEndpointBuilder - ok
10:42:15.0360 6416 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:
\Windows\System32\Audiosrv.dll
10:42:15.0363 6416 AudioSrv - ok
10:42:15.0559 6416 [ F1CA8ED683D6945EFDC4492AB60B1460 ] AVP C:
\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe
10:42:15.0560 6416 AVP - ok
10:42:15.0610 6416 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:
\Windows\System32\AxInstSV.dll
10:42:15.0611 6416 AxInstSV - ok
10:42:15.0841 6416 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:
\Windows\system32\DRIVERS\bxvbda.sys
10:42:15.0844 6416 b06bdrv - ok
10:42:15.0926 6416 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:
\Windows\system32\DRIVERS\b57nd60a.sys
10:42:15.0928 6416 b57nd60a - ok
10:42:15.0988 6416 [ 01A24B415926BB5F772DBE12459D97DE ] BBSvc C:
\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
10:42:15.0989 6416 BBSvc - ok
10:42:16.0014 6416 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:
\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
10:42:16.0016 6416 BBUpdate - ok
10:42:16.0037 6416 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:
\Windows\System32\bdesvc.dll
10:42:16.0038 6416 BDESVC - ok
10:42:16.0046 6416 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:
\Windows\system32\drivers\Beep.sys
10:42:16.0047 6416 Beep - ok
10:42:16.0087 6416 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:
\Windows\System32\bfe.dll
10:42:16.0091 6416 BFE - ok
10:42:16.0132 6416 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:
\Windows\system32\qmgr.dll
10:42:16.0137 6416 BITS - ok
10:42:16.0159 6416 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:
\Windows\system32\DRIVERS\blbdrive.sys
10:42:16.0159 6416 blbdrive - ok
10:42:16.0191 6416 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:
\Program Files\Bonjour\mDNSResponder.exe
10:42:16.0194 6416 Bonjour Service - ok
10:42:16.0227 6416 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:
\Windows\system32\DRIVERS\bowser.sys
10:42:16.0228 6416 bowser - ok
10:42:16.0270 6416 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:
\Windows\system32\DRIVERS\BrFiltLo.sys
10:42:16.0270 6416 BrFiltLo - ok
10:42:16.0321 6416 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:
\Windows\system32\DRIVERS\BrFiltUp.sys
10:42:16.0322 6416 BrFiltUp - ok
10:42:16.0369 6416 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:
\Windows\System32\browser.dll
10:42:16.0370 6416 Browser - ok
10:42:16.0420 6416 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:
\Windows\System32\Drivers\Brserid.sys
10:42:16.0422 6416 Brserid - ok
10:42:16.0433 6416 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:
\Windows\System32\Drivers\BrSerWdm.sys
10:42:16.0434 6416 BrSerWdm - ok
10:42:16.0480 6416 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:
\Windows\System32\Drivers\BrUsbMdm.sys
10:42:16.0480 6416 BrUsbMdm - ok
10:42:16.0497 6416 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:
\Windows\System32\Drivers\BrUsbSer.sys
10:42:16.0497 6416 BrUsbSer - ok
10:42:16.0548 6416 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:
\Windows\system32\DRIVERS\bthmodem.sys
10:42:16.0549 6416 BTHMODEM - ok
10:42:16.0583 6416 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:
\Windows\system32\bthserv.dll
10:42:16.0584 6416 bthserv - ok
10:42:16.0628 6416 [ B8BD2BB284668C84865658C77574381A ] cdfs C:
\Windows\system32\DRIVERS\cdfs.sys
10:42:16.0629 6416 cdfs - ok
10:42:16.0728 6416 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:
\Windows\system32\DRIVERS\cdrom.sys
10:42:16.0730 6416 cdrom - ok
10:42:16.0802 6416 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:
\Windows\System32\certprop.dll
10:42:16.0803 6416 CertPropSvc - ok
10:42:16.0838 6416 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:
\Windows\system32\DRIVERS\circlass.sys
10:42:16.0838 6416 circlass - ok
10:42:16.0911 6416 [ FF60401F1C659CA2ED4BAE85D3FD14DA ] CISVC C:
\Windows\system32\CISVC.EXE
10:42:16.0912 6416 CISVC - ok
10:42:17.0079 6416 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:
\Windows\system32\CLFS.sys
10:42:17.0081 6416 CLFS - ok
10:42:17.0344 6416 [ D88040F816FDA31C3B466F0FA0918F29 ]
clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework
\v2.0.50727\mscorsvw.exe
10:42:17.0345 6416 clr_optimization_v2.0.50727_32 - ok
10:42:17.0528 6416 [ D1CEEA2B47CB998321C579651CE3E4F8 ]
clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET
\Framework64\v2.0.50727\mscorsvw.exe
10:42:17.0529 6416 clr_optimization_v2.0.50727_64 - ok
10:42:17.0769 6416 [ C5A75EB48E2344ABDC162BDA79E16841 ]
clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework
\v4.0.30319\mscorsvw.exe
10:42:17.0771 6416 clr_optimization_v4.0.30319_32 - ok
10:42:17.0882 6416 [ C6F9AF94DCD58122A4D7E89DB6BED29D ]
clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET
\Framework64\v4.0.30319\mscorsvw.exe
10:42:17.0883 6416 clr_optimization_v4.0.30319_64 - ok
10:42:17.0928 6416 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:
\Windows\system32\DRIVERS\CmBatt.sys
10:42:17.0929 6416 CmBatt - ok
10:42:18.0003 6416 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:
\Windows\system32\drivers\cmdide.sys
10:42:18.0004 6416 cmdide - ok
10:42:18.0051 6416 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:
\Windows\system32\Drivers\cng.sys
10:42:18.0053 6416 CNG - ok
10:42:18.0073 6416 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:
\Windows\system32\DRIVERS\compbatt.sys
10:42:18.0074 6416 Compbatt - ok
10:42:18.0103 6416 [ 59D203C3F46F3CA536ECAC0E084CD887 ] CompFilter64 C:
\Windows\system32\DRIVERS\lvbflt64.sys
10:42:18.0104 6416 CompFilter64 - ok
10:42:18.0139 6416 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:
\Windows\system32\drivers\CompositeBus.sys
10:42:18.0139 6416 CompositeBus - ok
10:42:18.0142 6416 COMSysApp - ok
10:42:18.0180 6416 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:
\Windows\system32\DRIVERS\crcdisk.sys
10:42:18.0180 6416 crcdisk - ok
10:42:18.0218 6416 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:
\Windows\system32\cryptsvc.dll
10:42:18.0219 6416 CryptSvc - ok
10:42:18.0264 6416 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:
\Windows\system32\rpcss.dll
10:42:18.0267 6416 DcomLaunch - ok
10:42:18.0291 6416 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:
\Windows\System32\defragsvc.dll
10:42:18.0293 6416 defragsvc - ok
10:42:18.0320 6416 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:
\Windows\system32\Drivers\dfsc.sys
10:42:18.0321 6416 DfsC - ok
10:42:18.0356 6416 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:
\Windows\system32\dhcpcore.dll
10:42:18.0358 6416 Dhcp - ok
10:42:18.0376 6416 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:
\Windows\system32\drivers\discache.sys
10:42:18.0377 6416 discache - ok
10:42:18.0410 6416 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:
\Windows\system32\DRIVERS\disk.sys
10:42:18.0410 6416 Disk - ok
10:42:18.0442 6416 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:
\Windows\System32\dnsrslvr.dll
10:42:18.0443 6416 Dnscache - ok
10:42:18.0477 6416 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:
\Windows\System32\dot3svc.dll
10:42:18.0479 6416 dot3svc - ok
10:42:18.0612 6416 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:
\Windows\system32\dps.dll
10:42:18.0614 6416 DPS - ok
10:42:18.0699 6416 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:
\Windows\system32\drivers\drmkaud.sys
10:42:18.0699 6416 drmkaud - ok
10:42:18.0899 6416 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:
\Windows\System32\drivers\dxgkrnl.sys
10:42:18.0904 6416 DXGKrnl - ok
10:42:18.0908 6416 EagleX64 - ok
10:42:18.0989 6416 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:
\Windows\System32\eapsvc.dll
10:42:18.0990 6416 EapHost - ok
10:42:19.0614 6416 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:
\Windows\system32\DRIVERS\evbda.sys
10:42:19.0630 6416 ebdrv - ok
10:42:19.0661 6416 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:
\Windows\System32\lsass.exe
10:42:19.0662 6416 EFS - ok
10:42:19.0718 6416 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:
\Windows\ehome\ehRecvr.exe
10:42:19.0722 6416 ehRecvr - ok
10:42:19.0743 6416 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:
\Windows\ehome\ehsched.exe
10:42:19.0744 6416 ehSched - ok
10:42:19.0797 6416 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:
\Windows\system32\DRIVERS\elxstor.sys
10:42:19.0800 6416 elxstor - ok
10:42:19.0843 6416 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:
\Windows\system32\drivers\errdev.sys
10:42:19.0844 6416 ErrDev - ok
10:42:19.0880 6416 [ 932C05033053ADA2404FD836C9AB2C70 ]
EuMusDesignVirtualAudioCableWdm C:\Windows\system32\DRIVERS\vrtaucbl.sys
10:42:19.0881 6416 EuMusDesignVirtualAudioCableWdm - ok
10:42:19.0911 6416 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:
\Windows\system32\es.dll
10:42:19.0913 6416 EventSystem - ok
10:42:19.0958 6416 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:
\Windows\system32\drivers\exfat.sys
10:42:19.0960 6416 exfat - ok
10:42:19.0980 6416 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:
\Windows\system32\drivers\fastfat.sys
10:42:19.0982 6416 fastfat - ok
10:42:20.0023 6416 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:
\Windows\system32\fxssvc.exe
10:42:20.0027 6416 Fax - ok
10:42:20.0052 6416 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:
\Windows\system32\DRIVERS\fdc.sys
10:42:20.0053 6416 fdc - ok
10:42:20.0098 6416 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:
\Windows\system32\fdPHost.dll
10:42:20.0099 6416 fdPHost - ok
10:42:20.0142 6416 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:
\Windows\system32\fdrespub.dll
10:42:20.0143 6416 FDResPub - ok
10:42:20.0180 6416 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:
\Windows\system32\drivers\fileinfo.sys
10:42:20.0181 6416 FileInfo - ok
10:42:20.0222 6416 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:
\Windows\system32\drivers\filetrace.sys
10:42:20.0223 6416 Filetrace - ok
10:42:20.0304 6416 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:
\Windows\system32\DRIVERS\flpydisk.sys
10:42:20.0304 6416 flpydisk - ok
10:42:20.0458 6416 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:
\Windows\system32\drivers\fltmgr.sys
10:42:20.0459 6416 FltMgr - ok
10:42:20.0711 6416 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:
\Windows\system32\FntCache.dll
10:42:20.0717 6416 FontCache - ok
10:42:20.0880 6416 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:
\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:42:20.0881 6416 FontCache3.0.0.0 - ok
10:42:20.0933 6416 [ D43703496149971890703B4B1B723EAC ] FsDepends C:
\Windows\system32\drivers\FsDepends.sys
10:42:20.0933 6416 FsDepends - ok
10:42:21.0007 6416 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:
\Windows\system32\DRIVERS\fssfltr.sys
10:42:21.0008 6416 fssfltr - ok
10:42:21.0948 6416 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:
\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
10:42:21.0956 6416 fsssvc - ok
10:42:21.0998 6416 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:
\Windows\system32\drivers\Fs_Rec.sys
10:42:21.0998 6416 Fs_Rec - ok
10:42:22.0021 6416 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:
\Windows\system32\DRIVERS\fvevol.sys
10:42:22.0023 6416 fvevol - ok
10:42:22.0099 6416 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:
\Windows\system32\DRIVERS\gagp30kx.sys
10:42:22.0100 6416 gagp30kx - ok
10:42:22.0179 6416 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:
\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:42:22.0180 6416 GEARAspiWDM - ok
10:42:22.0273 6416 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:
\Windows\System32\gpsvc.dll
10:42:22.0277 6416 gpsvc - ok
10:42:22.0338 6416 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:
\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:42:22.0339 6416 gupdate - ok
10:42:22.0343 6416 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:
\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:42:22.0344 6416 gupdatem - ok
10:42:22.0385 6416 [ 408DDD80EEDE47175F6844817B90213E ] gusvc C:
\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
10:42:22.0386 6416 gusvc - ok
10:42:22.0416 6416 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:
\Windows\system32\drivers\hcw85cir.sys
10:42:22.0416 6416 hcw85cir - ok
10:42:22.0466 6416 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:
\Windows\system32\drivers\HdAudio.sys
10:42:22.0468 6416 HdAudAddService - ok
10:42:22.0504 6416 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:
\Windows\system32\DRIVERS\HDAudBus.sys
10:42:22.0505 6416 HDAudBus - ok
10:42:22.0537 6416 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:
\Windows\system32\DRIVERS\HidBatt.sys
10:42:22.0537 6416 HidBatt - ok
10:42:22.0551 6416 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:
\Windows\system32\DRIVERS\hidbth.sys
10:42:22.0552 6416 HidBth - ok
10:42:22.0604 6416 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:
\Windows\system32\DRIVERS\hidir.sys
10:42:22.0604 6416 HidIr - ok
10:42:22.0688 6416 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:
\Windows\System32\hidserv.dll
10:42:22.0689 6416 hidserv - ok
10:42:22.0806 6416 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:
\Windows\system32\DRIVERS\hidusb.sys
10:42:22.0807 6416 HidUsb - ok
10:42:22.0914 6416 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:
\Windows\system32\kmsvc.dll
10:42:22.0915 6416 hkmsvc - ok
10:42:23.0071 6416 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:
\Windows\system32\ListSvc.dll
10:42:23.0074 6416 HomeGroupListener - ok
10:42:23.0173 6416 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:
\Windows\system32\provsvc.dll
10:42:23.0175 6416 HomeGroupProvider - ok
10:42:23.0270 6416 HP Health Check Service - ok
10:42:23.0386 6416 hpqwmiex - ok
10:42:23.0469 6416 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:
\Windows\system32\drivers\HpSAMD.sys
10:42:23.0470 6416 HpSAMD - ok
10:42:23.0791 6416 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:
\Windows\system32\drivers\HTTP.sys
10:42:23.0795 6416 HTTP - ok
10:42:23.0881 6416 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:
\Windows\system32\drivers\hwpolicy.sys
10:42:23.0882 6416 hwpolicy - ok
10:42:23.0978 6416 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:
\Windows\system32\drivers\i8042prt.sys
10:42:23.0979 6416 i8042prt - ok
10:42:24.0223 6416 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:
\Windows\system32\drivers\iaStorV.sys
10:42:24.0226 6416 iaStorV - ok
10:42:24.0673 6416 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:
\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation
\infocard.exe
10:42:24.0678 6416 idsvc - ok
10:42:24.0711 6416 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:
\Windows\system32\DRIVERS\iirsp.sys
10:42:24.0712 6416 iirsp - ok
10:42:24.0767 6416 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:
\Windows\System32\ikeext.dll
10:42:24.0772 6416 IKEEXT - ok
10:42:24.0832 6416 [ 3C4B4EE54FEBB09F7E9F58776DE96DCA ] IntcAzAudAddService
C:\Windows\system32\drivers\RTKVHD64.sys
10:42:24.0844 6416 IntcAzAudAddService - ok
10:42:24.0874 6416 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:
\Windows\system32\drivers\intelide.sys
10:42:24.0874 6416 intelide - ok
10:42:24.0893 6416 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:
\Windows\system32\DRIVERS\intelppm.sys
10:42:24.0894 6416 intelppm - ok
10:42:24.0926 6416 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:
\Windows\system32\ipbusenum.dll
10:42:24.0927 6416 IPBusEnum - ok
10:42:24.0973 6416 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:
\Windows\system32\DRIVERS\ipfltdrv.sys
10:42:24.0974 6416 IpFilterDriver - ok
10:42:25.0017 6416 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:
\Windows\System32\iphlpsvc.dll
10:42:25.0020 6416 iphlpsvc - ok
10:42:25.0055 6416 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:
\Windows\system32\drivers\IPMIDrv.sys
10:42:25.0056 6416 IPMIDRV - ok
10:42:25.0109 6416 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:
\Windows\system32\drivers\ipnat.sys
10:42:25.0110 6416 IPNAT - ok
10:42:25.0449 6416 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:
\Program Files\iPod\bin\iPodService.exe
10:42:25.0453 6416 iPod Service - ok
10:42:25.0480 6416 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:
\Windows\system32\drivers\irenum.sys
10:42:25.0480 6416 IRENUM - ok
10:42:25.0552 6416 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:
\Windows\system32\drivers\isapnp.sys
10:42:25.0552 6416 isapnp - ok
10:42:25.0621 6416 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:
\Windows\system32\drivers\msiscsi.sys
10:42:25.0622 6416 iScsiPrt - ok
10:42:25.0700 6416 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:
\Windows\system32\DRIVERS\kbdclass.sys
10:42:25.0701 6416 kbdclass - ok
10:42:25.0775 6416 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:
\Windows\system32\DRIVERS\kbdhid.sys
10:42:25.0776 6416 kbdhid - ok
10:42:25.0816 6416 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:
\Windows\system32\lsass.exe
10:42:25.0817 6416 KeyIso - ok
10:42:26.0066 6416 [ 8B5219318DF5895ABD230C373F2DF18A ] kl1 C:
\Windows\system32\DRIVERS\kl1.sys
10:42:26.0069 6416 kl1 - ok
10:42:26.0461 6416 [ 8191BB24F61EBCAF84719993C7F7B5C6 ] KLIF C:
\Windows\system32\DRIVERS\klif.sys
10:42:26.0464 6416 KLIF - ok
10:42:26.0490 6416 [ 9BD99E1AB3F664120AB95C35F9EC1EB0 ] KLIM6 C:
\Windows\system32\DRIVERS\klim6.sys
10:42:26.0490 6416 KLIM6 - ok
10:42:26.0498 6416 [ 2C43FD500522EF3B8C283A5846B7FC41 ] klkbdflt C:
\Windows\system32\DRIVERS\klkbdflt.sys
10:42:26.0498 6416 klkbdflt - ok
10:42:26.0511 6416 [ 70A6D2E292017EC47949696F51ABE18D ] klmouflt C:
\Windows\system32\DRIVERS\klmouflt.sys
10:42:26.0512 6416 klmouflt - ok
10:42:26.0522 6416 [ FFC0501A1EA742406F1904A0CFE3BFE2 ] kltdi C:
\Windows\system32\DRIVERS\kltdi.sys
10:42:26.0523 6416 kltdi - ok
10:42:26.0535 6416 [ 185D21CB8F10CFB351FF65DA88C18BC9 ] kneps C:
\Windows\system32\DRIVERS\kneps.sys
10:42:26.0536 6416 kneps - ok
10:42:26.0616 6416 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:
\Windows\system32\Drivers\ksecdd.sys
10:42:26.0617 6416 KSecDD - ok
10:42:26.0645 6416 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:
\Windows\system32\Drivers\ksecpkg.sys
10:42:26.0647 6416 KSecPkg - ok
10:42:26.0665 6416 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:
\Windows\system32\drivers\ksthunk.sys
10:42:26.0665 6416 ksthunk - ok
10:42:26.0687 6416 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:
\Windows\system32\msdtckrm.dll
10:42:26.0690 6416 KtmRm - ok
10:42:26.0713 6416 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:
\Windows\System32\srvsvc.dll
10:42:26.0716 6416 LanmanServer - ok
10:42:26.0743 6416 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:
\Windows\System32\wkssvc.dll
10:42:26.0745 6416 LanmanWorkstation - ok
10:42:26.0850 6416 [ 3C46290F7A5D45BA6EF32C248E22AA69 ] Lbd C:
\Windows\system32\DRIVERS\Lbd.sys
10:42:26.0851 6416 Lbd - ok
10:42:26.0903 6416 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:
\Windows\system32\DRIVERS\lltdio.sys
10:42:26.0904 6416 lltdio - ok
10:42:27.0088 6416 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:
\Windows\System32\lltdsvc.dll
10:42:27.0091 6416 lltdsvc - ok
10:42:27.0142 6416 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:
\Windows\System32\lmhsvc.dll
10:42:27.0143 6416 lmhosts - ok
10:42:27.0226 6416 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:
\Windows\system32\DRIVERS\lsi_fc.sys
10:42:27.0226 6416 LSI_FC - ok
10:42:27.0326 6416 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:
\Windows\system32\DRIVERS\lsi_sas.sys
10:42:27.0327 6416 LSI_SAS - ok
10:42:27.0367 6416 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:
\Windows\system32\DRIVERS\lsi_sas2.sys
10:42:27.0368 6416 LSI_SAS2 - ok
10:42:27.0418 6416 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:
\Windows\system32\DRIVERS\lsi_scsi.sys
10:42:27.0419 6416 LSI_SCSI - ok
10:42:27.0499 6416 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:
\Windows\system32\drivers\luafv.sys
10:42:27.0500 6416 luafv - ok
10:42:27.0583 6416 [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2M64 C:
\Windows\system32\DRIVERS\LVPr2M64.sys
10:42:27.0584 6416 LVPr2M64 - ok
10:42:27.0598 6416 [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2Mon C:
\Windows\system32\DRIVERS\LVPr2M64.sys
10:42:27.0599 6416 LVPr2Mon - ok
10:42:27.0924 6416 [ 0C85B2B6FB74B36A251792D45E0EF860 ] LVRS64 C:
\Windows\system32\DRIVERS\lvrs64.sys
10:42:27.0926 6416 LVRS64 - ok
10:42:29.0344 6416 [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64 C:
\Windows\system32\DRIVERS\lvuvc64.sys
10:42:29.0367 6416 LVUVC64 - ok
10:42:29.0396 6416 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:
\Windows\system32\Mcx2Svc.dll
10:42:29.0397 6416 Mcx2Svc - ok
10:42:29.0423 6416 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:
\Windows\system32\DRIVERS\megasas.sys
10:42:29.0423 6416 megasas - ok
10:42:29.0471 6416 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:
\Windows\system32\DRIVERS\MegaSR.sys
10:42:29.0473 6416 MegaSR - ok
10:42:29.0506 6416 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:
\Windows\system32\mmcss.dll
10:42:29.0508 6416 MMCSS - ok
10:42:29.0546 6416 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:
\Windows\system32\drivers\modem.sys
10:42:29.0547 6416 Modem - ok
10:42:29.0644 6416 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:
\Windows\system32\DRIVERS\monitor.sys
10:42:29.0645 6416 monitor - ok
10:42:29.0678 6416 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:
\Windows\system32\DRIVERS\mouclass.sys
10:42:29.0679 6416 mouclass - ok
10:42:29.0686 6416 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:
\Windows\system32\DRIVERS\mouhid.sys
10:42:29.0687 6416 mouhid - ok
10:42:29.0713 6416 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:
\Windows\system32\drivers\mountmgr.sys
10:42:29.0714 6416 mountmgr - ok
10:42:29.0753 6416 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:
\Windows\system32\drivers\mpio.sys
10:42:29.0754 6416 mpio - ok
10:42:29.0776 6416 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:
\Windows\system32\drivers\mpsdrv.sys
10:42:29.0777 6416 mpsdrv - ok
10:42:29.0815 6416 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:
\Windows\system32\mpssvc.dll
10:42:29.0820 6416 MpsSvc - ok
10:42:29.0873 6416 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:
\Windows\system32\drivers\mrxdav.sys
10:42:29.0874 6416 MRxDAV - ok
10:42:29.0984 6416 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:
\Windows\system32\DRIVERS\mrxsmb.sys
10:42:29.0985 6416 mrxsmb - ok
10:42:30.0105 6416 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:
\Windows\system32\DRIVERS\mrxsmb10.sys
10:42:30.0107 6416 mrxsmb10 - ok
10:42:30.0132 6416 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:
\Windows\system32\DRIVERS\mrxsmb20.sys
10:42:30.0133 6416 mrxsmb20 - ok
10:42:30.0217 6416 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:
\Windows\system32\drivers\msahci.sys
10:42:30.0218 6416 msahci - ok
10:42:30.0316 6416 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:
\Windows\system32\drivers\msdsm.sys
10:42:30.0317 6416 msdsm - ok
10:42:30.0366 6416 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:
\Windows\System32\msdtc.exe
10:42:30.0368 6416 MSDTC - ok
10:42:30.0446 6416 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:
\Windows\system32\drivers\Msfs.sys
10:42:30.0446 6416 Msfs - ok
10:42:30.0484 6416 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:
\Windows\System32\drivers\mshidkmdf.sys
10:42:30.0485 6416 mshidkmdf - ok
10:42:30.0552 6416 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:
\Windows\system32\drivers\msisadrv.sys
10:42:30.0552 6416 msisadrv - ok
10:42:30.0611 6416 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:
\Windows\system32\iscsiexe.dll
10:42:30.0613 6416 MSiSCSI - ok
10:42:30.0616 6416 msiserver - ok
10:42:30.0656 6416 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:
\Windows\system32\drivers\MSKSSRV.sys
10:42:30.0657 6416 MSKSSRV - ok
10:42:30.0698 6416 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:
\Windows\system32\drivers\MSPCLOCK.sys
10:42:30.0698 6416 MSPCLOCK - ok
10:42:30.0730 6416 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:
\Windows\system32\drivers\MSPQM.sys
10:42:30.0730 6416 MSPQM - ok
10:42:30.0899 6416 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:
\Windows\system32\drivers\MsRPC.sys
10:42:30.0901 6416 MsRPC - ok
10:42:30.0965 6416 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:
\Windows\system32\drivers\mssmbios.sys
10:42:30.0966 6416 mssmbios - ok
10:42:31.0002 6416 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:
\Windows\system32\drivers\MSTEE.sys
10:42:31.0002 6416 MSTEE - ok
10:42:31.0015 6416 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:
\Windows\system32\DRIVERS\MTConfig.sys
10:42:31.0015 6416 MTConfig - ok
10:42:31.0048 6416 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:
\Windows\system32\Drivers\mup.sys
10:42:31.0049 6416 Mup - ok
10:42:31.0084 6416 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:
\Windows\system32\qagentRT.dll
10:42:31.0088 6416 napagent - ok
10:42:31.0113 6416 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:
\Windows\system32\DRIVERS\nwifi.sys
10:42:31.0115 6416 NativeWifiP - ok
10:42:31.0148 6416 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:
\Windows\system32\drivers\ndis.sys
10:42:31.0152 6416 NDIS - ok
10:42:31.0180 6416 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:
\Windows\system32\DRIVERS\ndiscap.sys
10:42:31.0181 6416 NdisCap - ok
10:42:31.0205 6416 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:
\Windows\system32\DRIVERS\ndistapi.sys
10:42:31.0206 6416 NdisTapi - ok
10:42:31.0241 6416 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:
\Windows\system32\DRIVERS\ndisuio.sys
10:42:31.0242 6416 Ndisuio - ok
10:42:31.0273 6416 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:
\Windows\system32\DRIVERS\ndiswan.sys
10:42:31.0274 6416 NdisWan - ok
10:42:31.0295 6416 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:
\Windows\system32\drivers\NDProxy.sys
10:42:31.0296 6416 NDProxy - ok
10:42:31.0305 6416 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:
\Windows\system32\DRIVERS\netbios.sys
10:42:31.0305 6416 NetBIOS - ok
10:42:31.0332 6416 [ 09594D1089C523423B32A4229263F068 ] NetBT C:
\Windows\system32\DRIVERS\netbt.sys
10:42:31.0333 6416 NetBT - ok
10:42:31.0383 6416 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:
\Windows\system32\lsass.exe
10:42:31.0384 6416 Netlogon - ok
10:42:31.0547 6416 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:
\Windows\System32\netman.dll
10:42:31.0550 6416 Netman - ok
10:42:31.0638 6416 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:
\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:42:31.0639 6416 NetMsmqActivator - ok
10:42:31.0660 6416 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:
\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:42:31.0662 6416 NetPipeActivator - ok
10:42:31.0826 6416 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:
\Windows\System32\netprofm.dll
10:42:31.0829 6416 netprofm - ok
10:42:31.0849 6416 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:
\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:42:31.0850 6416 NetTcpActivator - ok
10:42:31.0855 6416 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:
\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:42:31.0856 6416 NetTcpPortSharing - ok
10:42:31.0878 6416 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:
\Windows\system32\DRIVERS\nfrd960.sys
10:42:31.0879 6416 nfrd960 - ok
10:42:32.0012 6416 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:
\Windows\System32\nlasvc.dll
10:42:32.0015 6416 NlaSvc - ok
10:42:32.0083 6416 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:
\Windows\system32\drivers\Npfs.sys
10:42:32.0084 6416 Npfs - ok
10:42:32.0165 6416 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:
\Windows\system32\nsisvc.dll
10:42:32.0167 6416 nsi - ok
10:42:32.0206 6416 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:
\Windows\system32\drivers\nsiproxy.sys
10:42:32.0206 6416 nsiproxy - ok
10:42:32.0792 6416 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:
\Windows\system32\drivers\Ntfs.sys
10:42:32.0800 6416 Ntfs - ok
10:42:32.0829 6416 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:
\Windows\system32\drivers\Null.sys
10:42:32.0830 6416 Null - ok
10:42:32.0990 6416 [ 102806B360D0E6BC6E55BF47EF655D43 ] NVHDA C:
\Windows\system32\drivers\nvhda64v.sys
10:42:32.0991 6416 NVHDA - ok
10:42:33.0447 6416 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm C:
\Windows\system32\DRIVERS\nvlddmkm.sys
10:42:33.0514 6416 nvlddmkm - ok
10:42:33.0593 6416 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:
\Windows\system32\drivers\nvraid.sys
10:42:33.0596 6416 nvraid - ok
10:42:33.0697 6416 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:
\Windows\system32\drivers\nvstor.sys
10:42:33.0720 6416 nvstor - ok
10:42:34.0353 6416 [ DDFAFCE89A5C93D04712B86F94E9FCBA ] nvsvc C:
\Windows\system32\nvvsvc.exe
10:42:34.0423 6416 nvsvc - ok
10:42:35.0282 6416 [ 84E035225474E48CD3A6A3CE52332095 ] nvUpdatusService C:
\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
10:42:35.0288 6416 nvUpdatusService - ok
10:42:35.0330 6416 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:
\Windows\system32\drivers\nv_agp.sys
10:42:35.0343 6416 nv_agp - ok
10:42:35.0454 6416 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:
\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
10:42:35.0456 6416 odserv - ok
10:42:35.0501 6416 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:
\Windows\system32\drivers\ohci1394.sys
10:42:35.0510 6416 ohci1394 - ok
10:42:35.0540 6416 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:
\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:42:35.0541 6416 ose - ok
10:42:35.0565 6416 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:
\Windows\system32\pnrpsvc.dll
10:42:35.0589 6416 p2pimsvc - ok
10:42:35.0631 6416 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:
\Windows\system32\p2psvc.dll
10:42:35.0656 6416 p2psvc - ok
10:42:35.0712 6416 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:
\Windows\system32\DRIVERS\parport.sys
10:42:35.0737 6416 Parport - ok
10:42:35.0811 6416 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:
\Windows\system32\drivers\partmgr.sys
10:42:35.0832 6416 partmgr - ok
10:42:35.0923 6416 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:
\Windows\System32\pcasvc.dll
10:42:35.0951 6416 PcaSvc - ok
10:42:36.0087 6416 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:
\Windows\system32\drivers\pci.sys
10:42:36.0127 6416 pci - ok
10:42:36.0177 6416 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:
\Windows\system32\drivers\pciide.sys
10:42:36.0185 6416 pciide - ok
10:42:36.0357 6416 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:
\Windows\system32\DRIVERS\pcmcia.sys
10:42:36.0364 6416 pcmcia - ok
10:42:36.0437 6416 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:
\Windows\system32\drivers\pcw.sys
10:42:36.0467 6416 pcw - ok
10:42:36.0726 6416 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:
\Windows\system32\drivers\peauth.sys
10:42:36.0743 6416 PEAUTH - ok
10:42:36.0828 6416 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:
\Windows\SysWow64\perfhost.exe
10:42:36.0830 6416 PerfHost - ok
10:42:36.0886 6416 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:
\Windows\system32\pla.dll
10:42:36.0901 6416 pla - ok
10:42:36.0939 6416 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:
\Windows\system32\umpnpmgr.dll
10:42:36.0945 6416 PlugPlay - ok
10:42:36.0954 6416 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:
\Windows\system32\pnrpauto.dll
10:42:36.0956 6416 PNRPAutoReg - ok
10:42:36.0976 6416 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:
\Windows\system32\pnrpsvc.dll
10:42:36.0979 6416 PNRPsvc - ok
10:42:36.0997 6416 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:
\Windows\System32\ipsecsvc.dll
10:42:37.0002 6416 PolicyAgent - ok
10:42:37.0036 6416 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:
\Windows\system32\umpo.dll
10:42:37.0039 6416 Power - ok
10:42:37.0061 6416 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:
\Windows\system32\DRIVERS\raspptp.sys
10:42:37.0069 6416 PptpMiniport - ok
10:42:37.0107 6416 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:
\Windows\system32\DRIVERS\processr.sys
10:42:37.0109 6416 Processor - ok
10:42:37.0156 6416 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:
\Windows\system32\profsvc.dll
10:42:37.0160 6416 ProfSvc - ok
10:42:37.0172 6416 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:
\Windows\system32\lsass.exe
10:42:37.0173 6416 ProtectedStorage - ok
10:42:37.0216 6416 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:
\Windows\system32\DRIVERS\pacer.sys
10:42:37.0227 6416 Psched - ok
10:42:37.0295 6416 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:
\Windows\system32\DRIVERS\ql2300.sys
10:42:37.0321 6416 ql2300 - ok
10:42:37.0362 6416 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:
\Windows\system32\DRIVERS\ql40xx.sys
10:42:37.0365 6416 ql40xx - ok
10:42:37.0412 6416 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:
\Windows\system32\qwave.dll
10:42:37.0416 6416 QWAVE - ok
10:42:37.0491 6416 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:
\Windows\system32\drivers\qwavedrv.sys
10:42:37.0530 6416 QWAVEdrv - ok
10:42:37.0563 6416 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:
\Windows\system32\DRIVERS\rasacd.sys
10:42:37.0578 6416 RasAcd - ok
10:42:37.0611 6416 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:
\Windows\system32\DRIVERS\AgileVpn.sys
10:42:37.0650 6416 RasAgileVpn - ok
10:42:37.0694 6416 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:
\Windows\System32\rasauto.dll
10:42:37.0719 6416 RasAuto - ok
10:42:37.0787 6416 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:
\Windows\system32\DRIVERS\rasl2tp.sys
10:42:37.0804 6416 Rasl2tp - ok
10:42:37.0953 6416 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:
\Windows\System32\rasmans.dll
10:42:37.0971 6416 RasMan - ok
10:42:37.0996 6416 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:
\Windows\system32\DRIVERS\raspppoe.sys
10:42:38.0030 6416 RasPppoe - ok
10:42:38.0056 6416 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:
\Windows\system32\DRIVERS\rassstp.sys
10:42:38.0059 6416 RasSstp - ok
10:42:38.0095 6416 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:
\Windows\system32\DRIVERS\rdbss.sys
10:42:38.0107 6416 rdbss - ok
10:42:38.0134 6416 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:
\Windows\system32\DRIVERS\rdpbus.sys
10:42:38.0157 6416 rdpbus - ok
10:42:38.0181 6416 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:
\Windows\system32\DRIVERS\RDPCDD.sys
10:42:38.0203 6416 RDPCDD - ok
10:42:38.0232 6416 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:
\Windows\system32\drivers\rdpencdd.sys
10:42:38.0234 6416 RDPENCDD - ok
10:42:38.0240 6416 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:
\Windows\system32\drivers\rdprefmp.sys
10:42:38.0248 6416 RDPREFMP - ok
10:42:38.0345 6416 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:
\Windows\system32\drivers\rdpvideominiport.sys
10:42:38.0372 6416 RdpVideoMiniport - ok
10:42:38.0416 6416 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:
\Windows\system32\drivers\RDPWD.sys
10:42:38.0428 6416 RDPWD - ok
10:42:38.0464 6416 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:
\Windows\system32\drivers\rdyboost.sys
10:42:38.0476 6416 rdyboost - ok
10:42:38.0507 6416 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:
\Windows\System32\mprdim.dll
10:42:38.0509 6416 RemoteAccess - ok
10:42:38.0525 6416 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:
\Windows\system32\regsvc.dll
10:42:38.0528 6416 RemoteRegistry - ok
10:42:38.0536 6416 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:
\Windows\System32\RpcEpMap.dll
10:42:38.0538 6416 RpcEptMapper - ok
10:42:38.0567 6416 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:
\Windows\system32\locator.exe
10:42:38.0568 6416 RpcLocator - ok
10:42:38.0607 6416 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:
\Windows\system32\rpcss.dll
10:42:38.0611 6416 RpcSs - ok
10:42:38.0630 6416 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:
\Windows\system32\DRIVERS\rspndr.sys
10:42:38.0640 6416 rspndr - ok
10:42:38.0681 6416 [ AFC12DFA4C7B089673AD67402CA19EDB ] RTL8167 C:
\Windows\system32\DRIVERS\Rt64win7.sys
10:42:38.0698 6416 RTL8167 - ok
10:42:38.0744 6416 [ AA427B7E5B71EC537475DF4AE662AB44 ] SAlphamHid C:
\Windows\system32\DRIVERS\SAlpham64.sys
10:42:38.0753 6416 SAlphamHid - ok
10:42:38.0782 6416 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:
\Windows\system32\lsass.exe
10:42:38.0784 6416 SamSs - ok
10:42:38.0817 6416 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:
\Windows\system32\drivers\sbp2port.sys
10:42:38.0820 6416 sbp2port - ok
10:42:38.0856 6416 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:
\Windows\System32\SCardSvr.dll
10:42:38.0859 6416 SCardSvr - ok
10:42:38.0885 6416 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:
\Windows\system32\DRIVERS\scfilter.sys
10:42:38.0887 6416 scfilter - ok
10:42:38.0921 6416 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:
\Windows\system32\schedsvc.dll
10:42:38.0933 6416 Schedule - ok
10:42:38.0967 6416 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:
\Windows\System32\certprop.dll
10:42:38.0968 6416 SCPolicySvc - ok
10:42:38.0996 6416 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:
\Windows\System32\SDRSVC.dll
10:42:39.0000 6416 SDRSVC - ok
10:42:39.0072 6416 [ 16B44D246835EAC156F8DAF0AA4F530C ]
SeagateDashboardService C:\Program Files (x86)\Seagate\Seagate Dashboard
\SeagateDashboardService.exe
10:42:39.0073 6416 SeagateDashboardService - ok
10:42:39.0137 6416 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:
\Windows\system32\drivers\secdrv.sys
10:42:39.0144 6416 secdrv - ok
10:42:39.0174 6416 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:
\Windows\system32\seclogon.dll
10:42:39.0176 6416 seclogon - ok
10:42:39.0234 6416 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:
\Windows\system32\sens.dll
10:42:39.0255 6416 SENS - ok
10:42:39.0283 6416 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:
\Windows\system32\sensrsvc.dll
10:42:39.0306 6416 SensrSvc - ok
10:42:39.0362 6416 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:
\Windows\system32\DRIVERS\serenum.sys
10:42:39.0385 6416 Serenum - ok
10:42:39.0457 6416 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:
\Windows\system32\DRIVERS\serial.sys
10:42:39.0483 6416 Serial - ok
10:42:39.0553 6416 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:
\Windows\system32\DRIVERS\sermouse.sys
10:42:39.0572 6416 sermouse - ok
10:42:39.0619 6416 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:
\Windows\system32\sessenv.dll
10:42:39.0622 6416 SessionEnv - ok
10:42:39.0656 6416 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:
\Windows\system32\drivers\sffdisk.sys
10:42:39.0658 6416 sffdisk - ok
10:42:39.0709 6416 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:
\Windows\system32\drivers\sffp_mmc.sys
10:42:39.0736 6416 sffp_mmc - ok
10:42:39.0756 6416 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:
\Windows\system32\drivers\sffp_sd.sys
10:42:39.0758 6416 sffp_sd - ok
10:42:39.0815 6416 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:
\Windows\system32\DRIVERS\sfloppy.sys
10:42:39.0823 6416 sfloppy - ok
10:42:40.0006 6416 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:
\Windows\System32\ipnathlp.dll
10:42:40.0026 6416 SharedAccess - ok
10:42:40.0245 6416 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:
\Windows\System32\shsvcs.dll
10:42:40.0269 6416 ShellHWDetection - ok
10:42:40.0336 6416 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:
\Windows\system32\DRIVERS\SiSRaid2.sys
10:42:40.0359 6416 SiSRaid2 - ok
10:42:40.0408 6416 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:
\Windows\system32\DRIVERS\sisraid4.sys
10:42:40.0411 6416 SiSRaid4 - ok
10:42:40.0540 6416 [ 753D254205E0A62100A050BD8B458D06 ] Skype C2C Service C:
\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
10:42:40.0555 6416 Skype C2C Service - ok
10:42:40.0610 6416 [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate C:
\Program Files (x86)\Skype\Updater\Updater.exe
10:42:40.0612 6416 SkypeUpdate - ok
10:42:40.0667 6416 [ DD0443BC6CC78A19FD399817F8C51401 ] SmartDefragDriver C:
\Windows\system32\Drivers\SmartDefragDriver.sys
10:42:40.0676 6416 SmartDefragDriver - ok
10:42:40.0718 6416 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:
\Windows\system32\DRIVERS\smb.sys
10:42:40.0720 6416 Smb - ok
10:42:40.0762 6416 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:
\Windows\System32\snmptrap.exe
10:42:40.0765 6416 SNMPTRAP - ok
10:42:40.0794 6416 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:
\Windows\system32\drivers\spldr.sys
10:42:40.0795 6416 spldr - ok
10:42:40.0825 6416 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:
\Windows\System32\spoolsv.exe
10:42:40.0832 6416 Spooler - ok
10:42:40.0993 6416 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:
\Windows\system32\sppsvc.exe
10:42:41.0040 6416 sppsvc - ok
10:42:41.0063 6416 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:
\Windows\system32\sppuinotify.dll
10:42:41.0066 6416 sppuinotify - ok
10:42:41.0107 6416 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:
\Windows\system32\DRIVERS\srv.sys
10:42:41.0140 6416 srv - ok
10:42:41.0167 6416 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:
\Windows\system32\DRIVERS\srv2.sys
10:42:41.0173 6416 srv2 - ok
10:42:41.0235 6416 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:
\Windows\system32\DRIVERS\srvnet.sys
10:42:41.0269 6416 srvnet - ok
10:42:41.0301 6416 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:
\Windows\System32\ssdpsrv.dll
10:42:41.0320 6416 SSDPSRV - ok
10:42:41.0348 6416 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:
\Windows\system32\sstpsvc.dll
10:42:41.0350 6416 SstpSvc - ok
10:42:41.0386 6416 Steam Client Service - ok
10:42:41.0804 6416 [ F0359F7CE712D69ACEF0886BDB4792ED ] Stereo Service C:
\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
10:42:41.0806 6416 Stereo Service - ok
10:42:41.0881 6416 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:
\Windows\system32\DRIVERS\stexstor.sys
10:42:41.0903 6416 stexstor - ok
10:42:42.0138 6416 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:
\Windows\System32\wiaservc.dll
10:42:42.0161 6416 stisvc - ok
10:42:42.0231 6416 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:
\Windows\system32\drivers\swenum.sys
10:42:42.0245 6416 swenum - ok
10:42:42.0408 6416 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:
\Windows\System32\swprv.dll
10:42:42.0436 6416 swprv - ok
10:42:43.0059 6416 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:
\Windows\system32\sysmain.dll
10:42:43.0077 6416 SysMain - ok
10:42:43.0123 6416 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService
C:\Windows\System32\TabSvc.dll
10:42:43.0126 6416 TabletInputService - ok
10:42:43.0163 6416 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:
\Windows\System32\tapisrv.dll
10:42:43.0168 6416 TapiSrv - ok
10:42:43.0216 6416 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:
\Windows\System32\tbssvc.dll
10:42:43.0218 6416 TBS - ok
10:42:43.0260 6416 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:
\Windows\system32\drivers\tcpip.sys
10:42:43.0301 6416 Tcpip - ok
10:42:43.0324 6416 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:
\Windows\system32\DRIVERS\tcpip.sys
10:42:43.0333 6416 TCPIP6 - ok
10:42:43.0373 6416 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:
\Windows\system32\drivers\tcpipreg.sys
10:42:43.0376 6416 tcpipreg - ok
10:42:43.0415 6416 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:
\Windows\system32\drivers\tdpipe.sys
10:42:43.0417 6416 TDPIPE - ok
10:42:43.0456 6416 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:
\Windows\system32\drivers\tdtcp.sys
10:42:43.0458 6416 TDTCP - ok
10:42:43.0490 6416 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:
\Windows\system32\DRIVERS\tdx.sys
10:42:43.0493 6416 tdx - ok
10:42:43.0520 6416 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:
\Windows\system32\drivers\termdd.sys
10:42:43.0523 6416 TermDD - ok
10:42:43.0566 6416 [ 2E648163254233755035B46DD7B89123 ] TermService C:
\Windows\System32\termsrv.dll
10:42:43.0587 6416 TermService - ok
10:42:43.0614 6416 [ F0344071948D1A1FA732231785A0664C ] Themes C:
\Windows\system32\themeservice.dll
10:42:43.0616 6416 Themes - ok
10:42:43.0728 6416 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:
\Windows\system32\mmcss.dll
10:42:43.0730 6416 THREADORDER - ok
10:42:43.0777 6416 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:
\Windows\System32\trkwks.dll
10:42:43.0780 6416 TrkWks - ok
10:42:43.0985 6416 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:
\Windows\servicing\TrustedInstaller.exe
10:42:43.0987 6416 TrustedInstaller - ok
10:42:44.0074 6416 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:
\Windows\system32\DRIVERS\tssecsrv.sys
10:42:44.0109 6416 tssecsrv - ok
10:42:44.0189 6416 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:
\Windows\system32\drivers\tsusbflt.sys
10:42:44.0217 6416 TsUsbFlt - ok
10:42:44.0286 6416 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:
\Windows\system32\DRIVERS\tunnel.sys
10:42:44.0322 6416 tunnel - ok
10:42:44.0395 6416 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:
\Windows\system32\DRIVERS\uagp35.sys
10:42:44.0408 6416 uagp35 - ok
10:42:44.0517 6416 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:
\Windows\system32\DRIVERS\udfs.sys
10:42:44.0532 6416 udfs - ok
10:42:44.0562 6416 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:
\Windows\system32\UI0Detect.exe
10:42:44.0564 6416 UI0Detect - ok
10:42:44.0611 6416 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:
\Windows\system32\drivers\uliagpkx.sys
10:42:44.0613 6416 uliagpkx - ok
10:42:44.0693 6416 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:
\Windows\system32\DRIVERS\umbus.sys
10:42:44.0712 6416 umbus - ok
10:42:44.0770 6416 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:
\Windows\system32\DRIVERS\umpass.sys
10:42:44.0791 6416 UmPass - ok
10:42:44.0878 6416 [ 67A95B9D129ED5399E7965CD09CF30E7 ] UMVPFSrv C:
\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
10:42:44.0880 6416 UMVPFSrv - ok
10:42:44.0901 6416 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:
\Windows\System32\upnphost.dll
10:42:44.0906 6416 upnphost - ok
10:42:44.0930 6416 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:
\Windows\system32\Drivers\usbaapl64.sys
10:42:44.0939 6416 USBAAPL64 - ok
10:42:44.0968 6416 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:
\Windows\system32\drivers\usbaudio.sys
10:42:44.0979 6416 usbaudio - ok
10:42:45.0010 6416 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:
\Windows\system32\DRIVERS\usbccgp.sys
10:42:45.0020 6416 usbccgp - ok
10:42:45.0060 6416 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:
\Windows\system32\drivers\usbcir.sys
10:42:45.0068 6416 usbcir - ok
10:42:45.0106 6416 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:
\Windows\system32\DRIVERS\usbehci.sys
10:42:45.0108 6416 usbehci - ok
10:42:45.0136 6416 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:
\Windows\system32\DRIVERS\usbhub.sys
10:42:45.0142 6416 usbhub - ok
10:42:45.0227 6416 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:
\Windows\system32\DRIVERS\usbohci.sys
10:42:45.0253 6416 usbohci - ok
10:42:45.0327 6416 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:
\Windows\system32\DRIVERS\usbprint.sys
10:42:45.0357 6416 usbprint - ok
10:42:45.0394 6416 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:
\Windows\system32\DRIVERS\usbscan.sys
10:42:45.0403 6416 usbscan - ok
10:42:45.0486 6416 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:
\Windows\system32\DRIVERS\USBSTOR.SYS
10:42:45.0509 6416 USBSTOR - ok
10:42:45.0563 6416 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:
\Windows\system32\DRIVERS\usbuhci.sys
10:42:45.0582 6416 usbuhci - ok
10:42:45.0648 6416 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:
\Windows\System32\uxsms.dll
10:42:45.0668 6416 UxSms - ok
10:42:45.0693 6416 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:
\Windows\system32\lsass.exe
10:42:45.0694 6416 VaultSvc - ok
10:42:45.0787 6416 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:
\Windows\system32\drivers\vdrvroot.sys
10:42:45.0815 6416 vdrvroot - ok
10:42:45.0865 6416 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:
\Windows\System32\vds.exe
10:42:45.0872 6416 vds - ok
10:42:45.0964 6416 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:
\Windows\system32\DRIVERS\vgapnp.sys
10:42:45.0978 6416 vga - ok
10:42:45.0998 6416 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:
\Windows\System32\drivers\vga.sys
10:42:46.0017 6416 VgaSave - ok
10:42:46.0073 6416 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:
\Windows\system32\drivers\vhdmp.sys
10:42:46.0095 6416 vhdmp - ok
10:42:46.0146 6416 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:
\Windows\system32\drivers\viaide.sys
10:42:46.0147 6416 viaide - ok
10:42:46.0186 6416 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:
\Windows\system32\drivers\volmgr.sys
10:42:46.0196 6416 volmgr - ok
10:42:46.0248 6416 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:
\Windows\system32\drivers\volmgrx.sys
10:42:46.0253 6416 volmgrx - ok
10:42:46.0292 6416 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:
\Windows\system32\drivers\volsnap.sys
10:42:46.0306 6416 volsnap - ok
10:42:46.0352 6416 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:
\Windows\system32\DRIVERS\vsmraid.sys
10:42:46.0355 6416 vsmraid - ok
10:42:46.0424 6416 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:
\Windows\system32\vssvc.exe
10:42:46.0457 6416 VSS - ok
10:42:46.0508 6416 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:
\Windows\system32\DRIVERS\vwifibus.sys
10:42:46.0509 6416 vwifibus - ok
10:42:46.0514 6416 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:
\Windows\system32\DRIVERS\vwififlt.sys
10:42:46.0516 6416 vwififlt - ok
10:42:46.0553 6416 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:
\Windows\system32\w32time.dll
10:42:46.0558 6416 W32Time - ok
10:42:46.0604 6416 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:
\Windows\system32\DRIVERS\wacompen.sys
10:42:46.0613 6416 WacomPen - ok
10:42:46.0618 6416 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:
\Windows\system32\DRIVERS\wanarp.sys
10:42:46.0621 6416 WANARP - ok
10:42:46.0626 6416 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:
\Windows\system32\DRIVERS\wanarp.sys
10:42:46.0626 6416 Wanarpv6 - ok
10:42:46.0703 6416 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:
\Windows\system32\Wat\WatAdminSvc.exe
10:42:46.0716 6416 WatAdminSvc - ok
10:42:47.0295 6416 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:
\Windows\system32\wbengine.exe
10:42:47.0325 6416 wbengine - ok
10:42:47.0359 6416 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:
\Windows\System32\wbiosrvc.dll
10:42:47.0363 6416 WbioSrvc - ok
10:42:47.0391 6416 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:
\Windows\System32\wcncsvc.dll
10:42:47.0413 6416 wcncsvc - ok
10:42:47.0438 6416 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:
\Windows\System32\WcsPlugInService.dll
10:42:47.0440 6416 WcsPlugInService - ok
10:42:47.0479 6416 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:
\Windows\system32\DRIVERS\wd.sys
10:42:47.0481 6416 Wd - ok
10:42:47.0531 6416 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:
\Windows\system32\drivers\Wdf01000.sys
10:42:47.0538 6416 Wdf01000 - ok
10:42:47.0555 6416 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:
\Windows\system32\wdi.dll
10:42:47.0558 6416 WdiServiceHost - ok
10:42:47.0563 6416 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:
\Windows\system32\wdi.dll
10:42:47.0565 6416 WdiSystemHost - ok
10:42:47.0599 6416 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:
\Windows\System32\webclnt.dll
10:42:47.0603 6416 WebClient - ok
10:42:47.0618 6416 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:
\Windows\system32\wecsvc.dll
10:42:47.0622 6416 Wecsvc - ok
10:42:47.0628 6416 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:
\Windows\System32\wercplsupport.dll
10:42:47.0630 6416 wercplsupport - ok
10:42:47.0649 6416 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:
\Windows\System32\WerSvc.dll
10:42:47.0651 6416 WerSvc - ok
10:42:47.0659 6416 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:
\Windows\system32\DRIVERS\wfplwf.sys
10:42:47.0661 6416 WfpLwf - ok
10:42:47.0689 6416 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:
\Windows\system32\drivers\wimmount.sys
10:42:47.0690 6416 WIMMount - ok
10:42:47.0740 6416 WinDefend - ok
10:42:47.0751 6416 WinHttpAutoProxySvc - ok
10:42:47.0925 6416 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:
\Windows\system32\wbem\WMIsvc.dll
10:42:47.0927 6416 Winmgmt - ok
10:42:48.0035 6416 [ 0C0195C48B6B8582FA6F6373032118DA ] WinRing0_1_2_0 C:
\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys
10:42:48.0035 6416 WinRing0_1_2_0 - ok
10:42:48.0098 6416 [ BCB1310604AA415C4508708975B3931E ] WinRM C:
\Windows\system32\WsmSvc.dll
10:42:48.0141 6416 WinRM - ok
10:42:48.0194 6416 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:
\Windows\system32\DRIVERS\WinUsb.sys
10:42:48.0202 6416 WinUsb - ok
10:42:48.0471 6416 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:
\Windows\System32\wlansvc.dll
10:42:48.0493 6416 Wlansvc - ok
10:42:48.0703 6416 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:
\Program Files\Windows Live\Mesh\wlcrasvc.exe
10:42:48.0704 6416 wlcrasvc - ok
10:42:49.0712 6416 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:
\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:42:49.0724 6416 wlidsvc - ok
10:42:49.0835 6416 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:
\Windows\system32\drivers\wmiacpi.sys
10:42:49.0860 6416 WmiAcpi - ok
10:42:49.0910 6416 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:
\Windows\system32\wbem\WmiApSrv.exe
10:42:49.0912 6416 wmiApSrv - ok
10:42:49.0946 6416 WMPNetworkSvc - ok
10:42:49.0973 6416 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:
\Windows\System32\wpcsvc.dll
10:42:49.0975 6416 WPCSvc - ok
10:42:50.0005 6416 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:
\Windows\system32\wpdbusenum.dll
10:42:50.0008 6416 WPDBusEnum - ok
10:42:50.0031 6416 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:
\Windows\system32\drivers\ws2ifsl.sys
10:42:50.0032 6416 ws2ifsl - ok
10:42:50.0040 6416 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:
\Windows\system32\wscsvc.dll
10:42:50.0042 6416 wscsvc - ok
10:42:50.0047 6416 WSearch - ok
10:42:50.0122 6416 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:
\Windows\system32\wuaueng.dll
10:42:50.0176 6416 wuauserv - ok
10:42:50.0202 6416 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:
\Windows\system32\drivers\WudfPf.sys
10:42:50.0205 6416 WudfPf - ok
10:42:50.0276 6416 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:
\Windows\system32\DRIVERS\WUDFRd.sys
10:42:50.0288 6416 WUDFRd - ok
10:42:50.0321 6416 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:
\Windows\System32\WUDFSvc.dll
10:42:50.0324 6416 wudfsvc - ok
10:42:50.0359 6416 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:
\Windows\System32\wwansvc.dll
10:42:50.0384 6416 WwanSvc - ok
10:42:50.0461 6416 [ 2EE48CFCE7CA8E0DB4C44C7476C0943B ] xusb21 C:
\Windows\system32\DRIVERS\xusb21.sys
10:42:50.0470 6416 xusb21 - ok
10:42:50.0480 6416 ================ Scan global
===============================
10:42:50.0535 6416 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows
\system32\basesrv.dll
10:42:50.0641 6416 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows
\system32\winsrv.dll
10:42:50.0666 6416 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows
\system32\winsrv.dll
10:42:50.0734 6416 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows
\system32\sxssrv.dll
10:42:50.0797 6416 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows
\system32\services.exe
10:42:50.0801 6416 [Global] - ok
10:42:50.0802 6416 ================ Scan MBR
==================================
10:42:50.0815 6416 [ 7E47294038F58C4CEA4D3608194686EF ] \Device\Harddisk0\DR0
10:42:51.0045 6416 \Device\Harddisk0\DR0 - ok
10:42:51.0046 6416 ================ Scan VBR
==================================
10:42:51.0048 6416 [ 926E463016806F92A651F41545D72DCB ] \Device
\Harddisk0\DR0\Partition1
10:42:51.0049 6416 \Device\Harddisk0\DR0\Partition1 - ok
10:42:51.0104 6416 [ 6CFCBB00E507AB3C47C25B24DF064293 ] \Device
\Harddisk0\DR0\Partition2
10:42:51.0105 6416 \Device\Harddisk0\DR0\Partition2 - ok
10:42:51.0140 6416 [ 1762F9FF5891736FB3A49E20BF98A7A0 ] \Device
\Harddisk0\DR0\Partition3
10:42:51.0141 6416 \Device\Harddisk0\DR0\Partition3 - ok
10:42:51.0141 6416
============================================================
10:42:51.0141 6416 Scan finished
10:42:51.0141 6416
============================================================
10:42:51.0147 5732 Detected object count: 0
10:42:51.0147 5732 Actual detected object count: 0
aswMBR Log
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-11-03 11:18:12
-----------------------------
11:18:12.031 OS Version: Windows x64 6.1.7601 Service Pack 1
11:18:12.031 Number of processors: 4 586 0x402
11:18:12.031 ComputerName: Y2KRJ UserName: Kyle
11:18:13.185 Initialize success
11:18:21.484 AVAST engine defs: 12110300
11:18:23.949 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000062
11:18:23.949 Disk 0 Vendor: WDC_____ 01.0 Size: 953674MB BusType: 8
11:18:23.980 Disk 0 MBR read successfully
11:18:23.980 Disk 0 MBR scan
11:18:23.980 Disk 0 unknown MBR code
11:18:23.996 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB
offset 2048
11:18:24.011 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 942017 MB
offset 206848
11:18:24.043 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 11555 MB
offset 1929457664
11:18:24.089 Disk 0 scanning C:\Windows\system32\drivers
11:18:36.741 Service scanning
11:18:57.754 Modules scanning
11:18:57.754 Disk 0 trace - called modules:
11:18:57.785 ntoskrnl.exe CLASSPNP.SYS disk.sys storport.sys hal.dll
ahcix64s.sys
11:18:57.801 1 nt!IofCallDriver -> \Device\Harddisk0\DR0
[0xfffffa8008288060]
11:18:57.801 3 CLASSPNP.SYS[fffff88001a0143f] -> nt!IofCallDriver ->
\Device\00000062[0xfffffa80074ce9c0]
11:18:59.423 AVAST engine scan C:\Windows
11:19:02.231 AVAST engine scan C:\Windows\system32
11:22:02.427 AVAST engine scan C:\Windows\system32\drivers
11:22:21.491 AVAST engine scan C:\Users\Kyle
11:54:31.638 AVAST engine scan C:\ProgramData
11:59:08.998 Scan finished successfully
12:29:24.827 Disk 0 MBR has been saved successfully to "C:\Users\Kyle
\Desktop\MBR.dat"
12:29:24.831 The log file has been saved successfully to "C:\Users\Kyle
\Desktop\aswMBR.txt"
ESET Log
C:\ProgramData\Tarma Installer\{2E1037EA-038A-425F-86B9-
6CD19B8497E9}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application
cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows
\Temporary Internet Files\Content.IE5\0PS72R2M\WECPSetup[1].exe a variant of
Win32/InstallCore.W application cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows
\Temporary Internet Files\Content.IE5\0PS72R2M\WECPSetup[2].exe a variant of
Win32/InstallCore.W application cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows
\Temporary Internet Files\Content.IE5\FZG8CKJ5\WECPSetup[1].exe a variant of
Win32/InstallCore.W application cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows
\Temporary Internet Files\Content.IE5\FZG8CKJ5\WECPSetup[2].exe a variant of
Win32/InstallCore.W application cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows
\Temporary Internet Files\Content.IE5\LIXMVQOA\WECPSetup[1].exe a variant of
Win32/InstallCore.W application cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows
\Temporary Internet Files\Content.IE5\LIXMVQOA\WECPSetup[2].exe a variant of
Win32/InstallCore.W application cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows
\Temporary Internet Files\Content.IE5\LIXMVQOA\WECPSetup[3].exe a variant of
Win32/InstallCore.W application cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows
\Temporary Internet Files\Content.IE5\LIXMVQOA\WECPSetup[4].exe a variant of
Win32/InstallCore.W application cleaned by deleting - quarantined
10:41:22.0770 6660 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
10:41:23.0226 6660
============================================================
10:41:23.0226 6660 Current date / time: 2012/11/03 10:41:23.0226
10:41:23.0226 6660 SystemInfo:
10:41:23.0226 6660
10:41:23.0226 6660 OS Version: 6.1.7601 ServicePack: 1.0
10:41:23.0226 6660 Product type: Workstation
10:41:23.0226 6660 ComputerName: Y2KRJ
10:41:23.0226 6660 UserName: Kyle
10:41:23.0226 6660 Windows directory: C:\Windows
10:41:23.0226 6660 System windows directory: C:\Windows
10:41:23.0226 6660 Running under WOW64
10:41:23.0226 6660 Processor architecture: Intel x64
10:41:23.0226 6660 Number of processors: 4
10:41:23.0226 6660 Page size: 0x1000
10:41:23.0226 6660 Boot type: Normal boot
10:41:23.0226 6660
============================================================
10:41:23.0640 6660 Drive \Device\Harddisk0\DR0 - Size: 0xE8D4A50000 (931.32
Gb), SectorSize: 0x200, Cylinders: 0x1DAE8, SectorsPerTrack: 0x3F,
TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:41:23.0663 6660
============================================================
10:41:23.0663 6660 \Device\Harddisk0\DR0:
10:41:23.0664 6660 MBR partitions:
10:41:23.0664 6660 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA
0x800, BlocksNum 0x32000
10:41:23.0664 6660 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA
0x32800, BlocksNum 0x72FE0800
10:41:23.0664 6660 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA
0x73013000, BlocksNum 0x1691800
10:41:23.0664 6660
============================================================
10:41:23.0715 6660 C: <-> \Device\Harddisk0\DR0\Partition2
10:41:23.0868 6660 D: <-> \Device\Harddisk0\DR0\Partition3
10:41:23.0868 6660
============================================================
10:41:23.0868 6660 Initialize success
10:41:23.0868 6660
============================================================
10:41:29.0291 3400
============================================================
10:41:29.0291 3400 Scan started
10:41:29.0291 3400 Mode: Manual;
10:41:29.0291 3400
============================================================
10:41:30.0553 3400 ================ Scan system memory
========================
10:41:30.0554 3400 System memory - ok
10:41:30.0554 3400 ================ Scan services
=============================
10:41:30.0670 3400 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:
\Windows\system32\drivers\1394ohci.sys
10:41:30.0673 3400 1394ohci - ok
10:41:30.0707 3400 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:
\Windows\system32\drivers\ACPI.sys
10:41:30.0711 3400 ACPI - ok
10:41:30.0750 3400 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:
\Windows\system32\drivers\acpipmi.sys
10:41:30.0856 3400 AcpiPmi - ok
10:41:31.0536 3400 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:
\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:41:31.0536 3400 AdobeARMservice - ok
10:41:31.0871 3400 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:
\Windows\system32\DRIVERS\adp94xx.sys
10:41:32.0178 3400 adp94xx - ok
10:41:32.0257 3400 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:
\Windows\system32\DRIVERS\adpahci.sys
10:41:32.0264 3400 adpahci - ok
10:41:32.0311 3400 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:
\Windows\system32\DRIVERS\adpu320.sys
10:41:32.0314 3400 adpu320 - ok
10:41:32.0356 3400 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:
\Windows\System32\aelupsvc.dll
10:41:32.0357 3400 AeLookupSvc - ok
10:41:32.0550 3400 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:
\Windows\system32\drivers\afd.sys
10:41:32.0572 3400 AFD - ok
10:41:32.0624 3400 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:
\Windows\system32\drivers\agp440.sys
10:41:32.0634 3400 agp440 - ok
10:41:32.0675 3400 [ AA3F73CCBF498BD56800F840D75E40E4 ] ahcix64s C:
\Windows\system32\DRIVERS\ahcix64s.sys
10:41:32.0676 3400 ahcix64s - ok
10:41:32.0708 3400 [ 3290D6946B5E30E70414990574883DDB ] ALG C:
\Windows\System32\alg.exe
10:41:32.0709 3400 ALG - ok
10:41:32.0746 3400 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:
\Windows\system32\drivers\aliide.sys
10:41:32.0755 3400 aliide - ok
10:41:32.0814 3400 [ B3E801135E0C81733542C14D9AA8120A ] Alpham1 C:
\Windows\system32\DRIVERS\Alpham164.sys
10:41:32.0830 3400 Alpham1 - ok
10:41:32.0884 3400 [ 6493983FEDBC49D9112703ECE9B251FE ] Alpham2 C:
\Windows\system32\DRIVERS\Alpham264.sys
10:41:32.0898 3400 Alpham2 - ok
10:41:33.0046 3400 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:
\Windows\system32\drivers\amdide.sys
10:41:33.0070 3400 amdide - ok
10:41:33.0137 3400 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:
\Windows\system32\DRIVERS\amdiox64.sys
10:41:33.0165 3400 amdiox64 - ok
10:41:33.0235 3400 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:
\Windows\system32\DRIVERS\amdk8.sys
10:41:33.0249 3400 AmdK8 - ok
10:41:34.0347 3400 [ 0B45C18B0F3EE996D25BAA4E74884B83 ] amdkmdag C:
\Windows\system32\DRIVERS\atikmdag.sys
10:41:34.0499 3400 amdkmdag - ok
10:41:34.0548 3400 [ 0E57258E5CC4CC7A9A9A877AFDF0CEC6 ] amdkmdap C:
\Windows\system32\DRIVERS\atikmpag.sys
10:41:34.0562 3400 amdkmdap - ok
10:41:34.0597 3400 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:
\Windows\system32\DRIVERS\amdppm.sys
10:41:34.0598 3400 AmdPPM - ok
10:41:34.0639 3400 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:
\Windows\system32\drivers\amdsata.sys
10:41:34.0642 3400 amdsata - ok
10:41:34.0689 3400 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:
\Windows\system32\DRIVERS\amdsbs.sys
10:41:34.0702 3400 amdsbs - ok
10:41:34.0742 3400 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:
\Windows\system32\drivers\amdxata.sys
10:41:34.0743 3400 amdxata - ok
10:41:34.0933 3400 [ 2B8D1C23D204C0E70EFF48A3FFA1C67B ] AMD_RAIDXpert C:
\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe
10:41:34.0934 3400 AMD_RAIDXpert - ok
10:41:35.0080 3400 AODDriver4.0 - ok
10:41:35.0127 3400 [ 89A69C3F2F319B43379399547526D952 ] AppID C:
\Windows\system32\drivers\appid.sys
10:41:35.0130 3400 AppID - ok
10:41:35.0209 3400 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:
\Windows\System32\appidsvc.dll
10:41:35.0230 3400 AppIDSvc - ok
10:41:35.0299 3400 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:
\Windows\System32\appinfo.dll
10:41:35.0324 3400 Appinfo - ok
10:41:35.0534 3400 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support
\AppleMobileDeviceService.exe
10:41:35.0535 3400 Apple Mobile Device - ok
10:41:35.0638 3400 [ C484F8CEB1717C540242531DB7845C4E ] arc C:
\Windows\system32\DRIVERS\arc.sys
10:41:35.0641 3400 arc - ok
10:41:35.0696 3400 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:
\Windows\system32\DRIVERS\arcsas.sys
10:41:35.0699 3400 arcsas - ok
10:41:35.0785 3400 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:
\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:41:35.0785 3400 aspnet_state - ok
10:41:35.0829 3400 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:
\Windows\system32\DRIVERS\asyncmac.sys
10:41:35.0830 3400 AsyncMac - ok
10:41:35.0881 3400 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:
\Windows\system32\drivers\atapi.sys
10:41:35.0889 3400 atapi - ok
10:41:35.0982 3400 [ B4421D8CDADC441F76BA39532A3E3414 ] athr C:
\Windows\system32\DRIVERS\athrx.sys
10:41:36.0056 3400 athr - ok
10:41:36.0101 3400 [ 77C149E6D702737B2E372DEE166FAEF8 ] AtiHdmiService C:
\Windows\system32\drivers\AtiHdmi.sys
10:41:36.0104 3400 AtiHdmiService - ok
10:41:36.0280 3400 [ 0B45C18B0F3EE996D25BAA4E74884B83 ] atikmdag C:
\Windows\system32\DRIVERS\atikmdag.sys
10:41:36.0335 3400 atikmdag - ok
10:41:36.0415 3400 [ 7C5D273E29DCC5505469B299C6F29163 ] AtiPcie C:
\Windows\system32\DRIVERS\AtiPcie.sys
10:41:36.0449 3400 AtiPcie - ok
10:41:36.0516 3400 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder
C:\Windows\System32\Audiosrv.dll
10:41:36.0531 3400 AudioEndpointBuilder - ok
10:41:36.0539 3400 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:
\Windows\System32\Audiosrv.dll
10:41:36.0543 3400 AudioSrv - ok
10:41:36.0954 3400 [ F1CA8ED683D6945EFDC4492AB60B1460 ] AVP C:
\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe
10:41:36.0955 3400 AVP - ok
10:41:36.0988 3400 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:
\Windows\System32\AxInstSV.dll
10:41:36.0990 3400 AxInstSV - ok
10:41:37.0290 3400 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:
\Windows\system32\DRIVERS\bxvbda.sys
10:41:37.0298 3400 b06bdrv - ok
10:41:37.0449 3400 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:
\Windows\system32\DRIVERS\b57nd60a.sys
10:41:37.0464 3400 b57nd60a - ok
10:41:37.0523 3400 [ 01A24B415926BB5F772DBE12459D97DE ] BBSvc C:
\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
10:41:37.0525 3400 BBSvc - ok
10:41:37.0727 3400 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:
\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
10:41:37.0728 3400 BBUpdate - ok
10:41:37.0761 3400 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:
\Windows\System32\bdesvc.dll
10:41:37.0762 3400 BDESVC - ok
10:41:37.0770 3400 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:
\Windows\system32\drivers\Beep.sys
10:41:37.0778 3400 Beep - ok
10:41:37.0822 3400 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:
\Windows\System32\bfe.dll
10:41:37.0829 3400 BFE - ok
10:41:37.0867 3400 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:
\Windows\system32\qmgr.dll
10:41:37.0901 3400 BITS - ok
10:41:37.0916 3400 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:
\Windows\system32\DRIVERS\blbdrive.sys
10:41:37.0918 3400 blbdrive - ok
10:41:37.0949 3400 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:
\Program Files\Bonjour\mDNSResponder.exe
10:41:37.0951 3400 Bonjour Service - ok
10:41:37.0984 3400 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:
\Windows\system32\DRIVERS\bowser.sys
10:41:37.0986 3400 bowser - ok
10:41:38.0027 3400 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:
\Windows\system32\DRIVERS\BrFiltLo.sys
10:41:38.0034 3400 BrFiltLo - ok
10:41:38.0089 3400 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:
\Windows\system32\DRIVERS\BrFiltUp.sys
10:41:38.0091 3400 BrFiltUp - ok
10:41:38.0138 3400 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:
\Windows\System32\browser.dll
10:41:38.0139 3400 Browser - ok
10:41:38.0188 3400 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:
\Windows\System32\Drivers\Brserid.sys
10:41:38.0193 3400 Brserid - ok
10:41:38.0212 3400 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:
\Windows\System32\Drivers\BrSerWdm.sys
10:41:38.0214 3400 BrSerWdm - ok
10:41:38.0270 3400 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:
\Windows\System32\Drivers\BrUsbMdm.sys
10:41:38.0277 3400 BrUsbMdm - ok
10:41:38.0332 3400 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:
\Windows\System32\Drivers\BrUsbSer.sys
10:41:38.0333 3400 BrUsbSer - ok
10:41:38.0352 3400 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:
\Windows\system32\DRIVERS\bthmodem.sys
10:41:38.0354 3400 BTHMODEM - ok
10:41:38.0385 3400 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:
\Windows\system32\bthserv.dll
10:41:38.0386 3400 bthserv - ok
10:41:38.0440 3400 [ B8BD2BB284668C84865658C77574381A ] cdfs C:
\Windows\system32\DRIVERS\cdfs.sys
10:41:38.0449 3400 cdfs - ok
10:41:38.0562 3400 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:
\Windows\system32\DRIVERS\cdrom.sys
10:41:38.0572 3400 cdrom - ok
10:41:38.0648 3400 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:
\Windows\System32\certprop.dll
10:41:38.0668 3400 CertPropSvc - ok
10:41:38.0695 3400 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:
\Windows\system32\DRIVERS\circlass.sys
10:41:38.0709 3400 circlass - ok
10:41:38.0779 3400 [ FF60401F1C659CA2ED4BAE85D3FD14DA ] CISVC C:
\Windows\system32\CISVC.EXE
10:41:38.0780 3400 CISVC - ok
10:41:38.0925 3400 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:
\Windows\system32\CLFS.sys
10:41:38.0967 3400 CLFS - ok
10:41:39.0035 3400 [ D88040F816FDA31C3B466F0FA0918F29 ]
clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework
\v2.0.50727\mscorsvw.exe
10:41:39.0036 3400 clr_optimization_v2.0.50727_32 - ok
10:41:39.0230 3400 [ D1CEEA2B47CB998321C579651CE3E4F8 ]
clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET
\Framework64\v2.0.50727\mscorsvw.exe
10:41:39.0231 3400 clr_optimization_v2.0.50727_64 - ok
10:41:39.0438 3400 [ C5A75EB48E2344ABDC162BDA79E16841 ]
clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework
\v4.0.30319\mscorsvw.exe
10:41:39.0439 3400 clr_optimization_v4.0.30319_32 - ok
10:41:39.0448 3400 [ C6F9AF94DCD58122A4D7E89DB6BED29D ]
clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET
\Framework64\v4.0.30319\mscorsvw.exe
10:41:39.0450 3400 clr_optimization_v4.0.30319_64 - ok
10:41:39.0485 3400 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:
\Windows\system32\DRIVERS\CmBatt.sys
10:41:39.0487 3400 CmBatt - ok
10:41:39.0538 3400 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:
\Windows\system32\drivers\cmdide.sys
10:41:39.0547 3400 cmdide - ok
10:41:39.0586 3400 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:
\Windows\system32\Drivers\cng.sys
10:41:39.0602 3400 CNG - ok
10:41:39.0631 3400 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:
\Windows\system32\DRIVERS\compbatt.sys
10:41:39.0639 3400 Compbatt - ok
10:41:39.0672 3400 [ 59D203C3F46F3CA536ECAC0E084CD887 ] CompFilter64 C:
\Windows\system32\DRIVERS\lvbflt64.sys
10:41:39.0673 3400 CompFilter64 - ok
10:41:39.0707 3400 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:
\Windows\system32\drivers\CompositeBus.sys
10:41:39.0709 3400 CompositeBus - ok
10:41:39.0712 3400 COMSysApp - ok
10:41:39.0748 3400 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:
\Windows\system32\DRIVERS\crcdisk.sys
10:41:39.0757 3400 crcdisk - ok
10:41:39.0808 3400 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:
\Windows\system32\cryptsvc.dll
10:41:39.0811 3400 CryptSvc - ok
10:41:39.0987 3400 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:
\Windows\system32\rpcss.dll
10:41:40.0009 3400 DcomLaunch - ok
10:41:40.0159 3400 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:
\Windows\System32\defragsvc.dll
10:41:40.0185 3400 defragsvc - ok
10:41:40.0255 3400 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:
\Windows\system32\Drivers\dfsc.sys
10:41:40.0290 3400 DfsC - ok
10:41:40.0458 3400 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:
\Windows\system32\dhcpcore.dll
10:41:40.0478 3400 Dhcp - ok
10:41:40.0533 3400 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:
\Windows\system32\drivers\discache.sys
10:41:40.0551 3400 discache - ok
10:41:40.0622 3400 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:
\Windows\system32\DRIVERS\disk.sys
10:41:40.0654 3400 Disk - ok
10:41:40.0743 3400 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:
\Windows\System32\dnsrslvr.dll
10:41:40.0761 3400 Dnscache - ok
10:41:40.0868 3400 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:
\Windows\System32\dot3svc.dll
10:41:40.0891 3400 dot3svc - ok
10:41:40.0991 3400 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:
\Windows\system32\dps.dll
10:41:41.0009 3400 DPS - ok
10:41:41.0078 3400 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:
\Windows\system32\drivers\drmkaud.sys
10:41:41.0092 3400 drmkaud - ok
10:41:41.0145 3400 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:
\Windows\System32\drivers\dxgkrnl.sys
10:41:41.0157 3400 DXGKrnl - ok
10:41:41.0179 3400 EagleX64 - ok
10:41:41.0201 3400 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:
\Windows\System32\eapsvc.dll
10:41:41.0203 3400 EapHost - ok
10:41:41.0275 3400 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:
\Windows\system32\DRIVERS\evbda.sys
10:41:41.0314 3400 ebdrv - ok
10:41:41.0352 3400 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:
\Windows\System32\lsass.exe
10:41:41.0353 3400 EFS - ok
10:41:41.0409 3400 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:
\Windows\ehome\ehRecvr.exe
10:41:41.0413 3400 ehRecvr - ok
10:41:41.0433 3400 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:
\Windows\ehome\ehsched.exe
10:41:41.0434 3400 ehSched - ok
10:41:41.0488 3400 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:
\Windows\system32\DRIVERS\elxstor.sys
10:41:41.0497 3400 elxstor - ok
10:41:41.0545 3400 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:
\Windows\system32\drivers\errdev.sys
10:41:41.0547 3400 ErrDev - ok
10:41:41.0646 3400 [ 932C05033053ADA2404FD836C9AB2C70 ]
EuMusDesignVirtualAudioCableWdm C:\Windows\system32\DRIVERS\vrtaucbl.sys
10:41:41.0649 3400 EuMusDesignVirtualAudioCableWdm - ok
10:41:41.0868 3400 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:
\Windows\system32\es.dll
10:41:41.0873 3400 EventSystem - ok
10:41:41.0971 3400 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:
\Windows\system32\drivers\exfat.sys
10:41:41.0992 3400 exfat - ok
10:41:42.0049 3400 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:
\Windows\system32\drivers\fastfat.sys
10:41:42.0065 3400 fastfat - ok
10:41:42.0336 3400 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:
\Windows\system32\fxssvc.exe
10:41:42.0356 3400 Fax - ok
10:41:42.0376 3400 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:
\Windows\system32\DRIVERS\fdc.sys
10:41:42.0395 3400 fdc - ok
10:41:42.0433 3400 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:
\Windows\system32\fdPHost.dll
10:41:42.0434 3400 fdPHost - ok
10:41:42.0477 3400 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:
\Windows\system32\fdrespub.dll
10:41:42.0502 3400 FDResPub - ok
10:41:42.0559 3400 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:
\Windows\system32\drivers\fileinfo.sys
10:41:42.0574 3400 FileInfo - ok
10:41:42.0602 3400 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:
\Windows\system32\drivers\filetrace.sys
10:41:42.0603 3400 Filetrace - ok
10:41:42.0639 3400 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:
\Windows\system32\DRIVERS\flpydisk.sys
10:41:42.0647 3400 flpydisk - ok
10:41:42.0681 3400 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:
\Windows\system32\drivers\fltmgr.sys
10:41:42.0696 3400 FltMgr - ok
10:41:42.0735 3400 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:
\Windows\system32\FntCache.dll
10:41:42.0746 3400 FontCache - ok
10:41:42.0793 3400 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:
\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:41:42.0794 3400 FontCache3.0.0.0 - ok
10:41:42.0812 3400 [ D43703496149971890703B4B1B723EAC ] FsDepends C:
\Windows\system32\drivers\FsDepends.sys
10:41:42.0814 3400 FsDepends - ok
10:41:42.0853 3400 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:
\Windows\system32\DRIVERS\fssfltr.sys
10:41:42.0855 3400 fssfltr - ok
10:41:42.0970 3400 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:
\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
10:41:42.0978 3400 fsssvc - ok
10:41:42.0999 3400 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:
\Windows\system32\drivers\Fs_Rec.sys
10:41:43.0008 3400 Fs_Rec - ok
10:41:43.0034 3400 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:
\Windows\system32\DRIVERS\fvevol.sys
10:41:43.0038 3400 fvevol - ok
10:41:43.0078 3400 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:
\Windows\system32\DRIVERS\gagp30kx.sys
10:41:43.0080 3400 gagp30kx - ok
10:41:43.0359 3400 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:
\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:41:43.0393 3400 GEARAspiWDM - ok
10:41:43.0708 3400 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:
\Windows\System32\gpsvc.dll
10:41:43.0731 3400 gpsvc - ok
10:41:44.0049 3400 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:
\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:41:44.0051 3400 gupdate - ok
10:41:44.0077 3400 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:
\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:41:44.0078 3400 gupdatem - ok
10:41:44.0330 3400 [ 408DDD80EEDE47175F6844817B90213E ] gusvc C:
\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
10:41:44.0331 3400 gusvc - ok
10:41:44.0373 3400 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:
\Windows\system32\drivers\hcw85cir.sys
10:41:44.0388 3400 hcw85cir - ok
10:41:44.0663 3400 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:
\Windows\system32\drivers\HdAudio.sys
10:41:44.0682 3400 HdAudAddService - ok
10:41:44.0728 3400 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:
\Windows\system32\DRIVERS\HDAudBus.sys
10:41:44.0730 3400 HDAudBus - ok
10:41:44.0794 3400 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:
\Windows\system32\DRIVERS\HidBatt.sys
10:41:44.0818 3400 HidBatt - ok
10:41:44.0845 3400 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:
\Windows\system32\DRIVERS\hidbth.sys
10:41:44.0848 3400 HidBth - ok
10:41:44.0905 3400 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:
\Windows\system32\DRIVERS\hidir.sys
10:41:44.0907 3400 HidIr - ok
10:41:44.0945 3400 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:
\Windows\System32\hidserv.dll
10:41:44.0946 3400 hidserv - ok
10:41:44.0974 3400 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:
\Windows\system32\DRIVERS\hidusb.sys
10:41:44.0983 3400 HidUsb - ok
10:41:45.0015 3400 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:
\Windows\system32\kmsvc.dll
10:41:45.0017 3400 hkmsvc - ok
10:41:45.0062 3400 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:
\Windows\system32\ListSvc.dll
10:41:45.0065 3400 HomeGroupListener - ok
10:41:45.0096 3400 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:
\Windows\system32\provsvc.dll
10:41:45.0100 3400 HomeGroupProvider - ok
10:41:45.0116 3400 HP Health Check Service - ok
10:41:45.0141 3400 hpqwmiex - ok
10:41:45.0180 3400 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:
\Windows\system32\drivers\HpSAMD.sys
10:41:45.0183 3400 HpSAMD - ok
10:41:45.0226 3400 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:
\Windows\system32\drivers\HTTP.sys
10:41:45.0247 3400 HTTP - ok
10:41:45.0283 3400 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:
\Windows\system32\drivers\hwpolicy.sys
10:41:45.0291 3400 hwpolicy - ok
10:41:45.0335 3400 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:
\Windows\system32\drivers\i8042prt.sys
10:41:45.0344 3400 i8042prt - ok
10:41:45.0400 3400 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:
\Windows\system32\drivers\iaStorV.sys
10:41:45.0407 3400 iaStorV - ok
10:41:45.0440 3400 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:
\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation
\infocard.exe
10:41:45.0444 3400 idsvc - ok
10:41:45.0491 3400 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:
\Windows\system32\DRIVERS\iirsp.sys
10:41:45.0493 3400 iirsp - ok
10:41:45.0546 3400 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:
\Windows\System32\ikeext.dll
10:41:45.0555 3400 IKEEXT - ok
10:41:46.0658 3400 [ 3C4B4EE54FEBB09F7E9F58776DE96DCA ] IntcAzAudAddService
C:\Windows\system32\drivers\RTKVHD64.sys
10:41:46.0781 3400 IntcAzAudAddService - ok
10:41:46.0798 3400 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:
\Windows\system32\drivers\intelide.sys
10:41:46.0806 3400 intelide - ok
10:41:46.0828 3400 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:
\Windows\system32\DRIVERS\intelppm.sys
10:41:46.0830 3400 intelppm - ok
10:41:46.0861 3400 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:
\Windows\system32\ipbusenum.dll
10:41:46.0863 3400 IPBusEnum - ok
10:41:46.0908 3400 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:
\Windows\system32\DRIVERS\ipfltdrv.sys
10:41:46.0917 3400 IpFilterDriver - ok
10:41:47.0065 3400 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:
\Windows\System32\iphlpsvc.dll
10:41:47.0072 3400 iphlpsvc - ok
10:41:47.0112 3400 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:
\Windows\system32\drivers\IPMIDrv.sys
10:41:47.0114 3400 IPMIDRV - ok
10:41:47.0166 3400 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:
\Windows\system32\drivers\ipnat.sys
10:41:47.0168 3400 IPNAT - ok
10:41:47.0236 3400 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:
\Program Files\iPod\bin\iPodService.exe
10:41:47.0240 3400 iPod Service - ok
10:41:47.0270 3400 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:
\Windows\system32\drivers\irenum.sys
10:41:47.0272 3400 IRENUM - ok
10:41:47.0309 3400 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:
\Windows\system32\drivers\isapnp.sys
10:41:47.0317 3400 isapnp - ok
10:41:47.0367 3400 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:
\Windows\system32\drivers\msiscsi.sys
10:41:47.0371 3400 iScsiPrt - ok
10:41:47.0402 3400 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:
\Windows\system32\DRIVERS\kbdclass.sys
10:41:47.0411 3400 kbdclass - ok
10:41:47.0454 3400 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:
\Windows\system32\DRIVERS\kbdhid.sys
10:41:47.0463 3400 kbdhid - ok
10:41:47.0473 3400 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:
\Windows\system32\lsass.exe
10:41:47.0474 3400 KeyIso - ok
10:41:47.0514 3400 [ 8B5219318DF5895ABD230C373F2DF18A ] kl1 C:
\Windows\system32\DRIVERS\kl1.sys
10:41:47.0521 3400 kl1 - ok
10:41:47.0956 3400 [ 8191BB24F61EBCAF84719993C7F7B5C6 ] KLIF C:
\Windows\system32\DRIVERS\klif.sys
10:41:47.0966 3400 KLIF - ok
10:41:48.0003 3400 [ 9BD99E1AB3F664120AB95C35F9EC1EB0 ] KLIM6 C:
\Windows\system32\DRIVERS\klim6.sys
10:41:48.0005 3400 KLIM6 - ok
10:41:48.0144 3400 [ 2C43FD500522EF3B8C283A5846B7FC41 ] klkbdflt C:
\Windows\system32\DRIVERS\klkbdflt.sys
10:41:48.0172 3400 klkbdflt - ok
10:41:48.0202 3400 [ 70A6D2E292017EC47949696F51ABE18D ] klmouflt C:
\Windows\system32\DRIVERS\klmouflt.sys
10:41:48.0209 3400 klmouflt - ok
10:41:48.0235 3400 [ FFC0501A1EA742406F1904A0CFE3BFE2 ] kltdi C:
\Windows\system32\DRIVERS\kltdi.sys
10:41:48.0266 3400 kltdi - ok
10:41:48.0314 3400 [ 185D21CB8F10CFB351FF65DA88C18BC9 ] kneps C:
\Windows\system32\DRIVERS\kneps.sys
10:41:48.0327 3400 kneps - ok
10:41:48.0406 3400 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:
\Windows\system32\Drivers\ksecdd.sys
10:41:48.0441 3400 KSecDD - ok
10:41:48.0552 3400 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:
\Windows\system32\Drivers\ksecpkg.sys
10:41:48.0608 3400 KSecPkg - ok
10:41:48.0677 3400 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:
\Windows\system32\drivers\ksthunk.sys
10:41:48.0705 3400 ksthunk - ok
10:41:48.0866 3400 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:
\Windows\system32\msdtckrm.dll
10:41:48.0892 3400 KtmRm - ok
10:41:48.0926 3400 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:
\Windows\System32\srvsvc.dll
10:41:48.0930 3400 LanmanServer - ok
10:41:48.0956 3400 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:
\Windows\System32\wkssvc.dll
10:41:48.0959 3400 LanmanWorkstation - ok
10:41:48.0984 3400 [ 3C46290F7A5D45BA6EF32C248E22AA69 ] Lbd C:
\Windows\system32\DRIVERS\Lbd.sys
10:41:48.0987 3400 Lbd - ok
10:41:49.0005 3400 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:
\Windows\system32\DRIVERS\lltdio.sys
10:41:49.0007 3400 lltdio - ok
10:41:49.0034 3400 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:
\Windows\System32\lltdsvc.dll
10:41:49.0038 3400 lltdsvc - ok
10:41:49.0055 3400 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:
\Windows\System32\lmhsvc.dll
10:41:49.0062 3400 lmhosts - ok
10:41:49.0105 3400 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:
\Windows\system32\DRIVERS\lsi_fc.sys
10:41:49.0107 3400 LSI_FC - ok
10:41:49.0161 3400 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:
\Windows\system32\DRIVERS\lsi_sas.sys
10:41:49.0163 3400 LSI_SAS - ok
10:41:49.0185 3400 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:
\Windows\system32\DRIVERS\lsi_sas2.sys
10:41:49.0195 3400 LSI_SAS2 - ok
10:41:49.0209 3400 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:
\Windows\system32\DRIVERS\lsi_scsi.sys
10:41:49.0212 3400 LSI_SCSI - ok
10:41:49.0234 3400 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:
\Windows\system32\drivers\luafv.sys
10:41:49.0236 3400 luafv - ok
10:41:49.0274 3400 [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2M64 C:
\Windows\system32\DRIVERS\LVPr2M64.sys
10:41:49.0275 3400 LVPr2M64 - ok
10:41:49.0278 3400 [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2Mon C:
\Windows\system32\DRIVERS\LVPr2M64.sys
10:41:49.0279 3400 LVPr2Mon - ok
10:41:49.0315 3400 [ 0C85B2B6FB74B36A251792D45E0EF860 ] LVRS64 C:
\Windows\system32\DRIVERS\lvrs64.sys
10:41:49.0331 3400 LVRS64 - ok
10:41:49.0435 3400 [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64 C:
\Windows\system32\DRIVERS\lvuvc64.sys
10:41:49.0501 3400 LVUVC64 - ok
10:41:49.0531 3400 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:
\Windows\system32\Mcx2Svc.dll
10:41:49.0533 3400 Mcx2Svc - ok
10:41:49.0558 3400 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:
\Windows\system32\DRIVERS\megasas.sys
10:41:49.0567 3400 megasas - ok
10:41:49.0673 3400 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:
\Windows\system32\DRIVERS\MegaSR.sys
10:41:49.0688 3400 MegaSR - ok
10:41:49.0719 3400 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:
\Windows\system32\mmcss.dll
10:41:49.0721 3400 MMCSS - ok
10:41:49.0759 3400 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:
\Windows\system32\drivers\modem.sys
10:41:49.0761 3400 Modem - ok
10:41:49.0824 3400 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:
\Windows\system32\DRIVERS\monitor.sys
10:41:49.0850 3400 monitor - ok
10:41:49.0923 3400 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:
\Windows\system32\DRIVERS\mouclass.sys
10:41:49.0952 3400 mouclass - ok
10:41:49.0976 3400 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:
\Windows\system32\DRIVERS\mouhid.sys
10:41:49.0977 3400 mouhid - ok
10:41:50.0003 3400 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:
\Windows\system32\drivers\mountmgr.sys
10:41:50.0013 3400 mountmgr - ok
10:41:50.0042 3400 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:
\Windows\system32\drivers\mpio.sys
10:41:50.0046 3400 mpio - ok
10:41:50.0065 3400 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:
\Windows\system32\drivers\mpsdrv.sys
10:41:50.0099 3400 mpsdrv - ok
10:41:50.0150 3400 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:
\Windows\system32\mpssvc.dll
10:41:50.0158 3400 MpsSvc - ok
10:41:50.0199 3400 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:
\Windows\system32\drivers\mrxdav.sys
10:41:50.0210 3400 MRxDAV - ok
10:41:50.0251 3400 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:
\Windows\system32\DRIVERS\mrxsmb.sys
10:41:50.0254 3400 mrxsmb - ok
10:41:50.0279 3400 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:
\Windows\system32\DRIVERS\mrxsmb10.sys
10:41:50.0282 3400 mrxsmb10 - ok
10:41:50.0300 3400 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:
\Windows\system32\DRIVERS\mrxsmb20.sys
10:41:50.0302 3400 mrxsmb20 - ok
10:41:50.0340 3400 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:
\Windows\system32\drivers\msahci.sys
10:41:50.0349 3400 msahci - ok
10:41:50.0409 3400 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:
\Windows\system32\drivers\msdsm.sys
10:41:50.0412 3400 msdsm - ok
10:41:50.0437 3400 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:
\Windows\System32\msdtc.exe
10:41:50.0440 3400 MSDTC - ok
10:41:50.0458 3400 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:
\Windows\system32\drivers\Msfs.sys
10:41:50.0466 3400 Msfs - ok
10:41:50.0469 3400 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:
\Windows\System32\drivers\mshidkmdf.sys
10:41:50.0477 3400 mshidkmdf - ok
10:41:50.0508 3400 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:
\Windows\system32\drivers\msisadrv.sys
10:41:50.0515 3400 msisadrv - ok
10:41:50.0545 3400 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:
\Windows\system32\iscsiexe.dll
10:41:50.0547 3400 MSiSCSI - ok
10:41:50.0551 3400 msiserver - ok
10:41:50.0579 3400 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:
\Windows\system32\drivers\MSKSSRV.sys
10:41:50.0587 3400 MSKSSRV - ok
10:41:50.0643 3400 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:
\Windows\system32\drivers\MSPCLOCK.sys
10:41:50.0651 3400 MSPCLOCK - ok
10:41:50.0664 3400 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:
\Windows\system32\drivers\MSPQM.sys
10:41:50.0665 3400 MSPQM - ok
10:41:50.0800 3400 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:
\Windows\system32\drivers\MsRPC.sys
10:41:50.0836 3400 MsRPC - ok
10:41:50.0867 3400 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:
\Windows\system32\drivers\mssmbios.sys
10:41:50.0868 3400 mssmbios - ok
10:41:50.0892 3400 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:
\Windows\system32\drivers\MSTEE.sys
10:41:50.0917 3400 MSTEE - ok
10:41:50.0927 3400 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:
\Windows\system32\DRIVERS\MTConfig.sys
10:41:50.0928 3400 MTConfig - ok
10:41:50.0971 3400 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:
\Windows\system32\Drivers\mup.sys
10:41:50.0992 3400 Mup - ok
10:41:51.0241 3400 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:
\Windows\system32\qagentRT.dll
10:41:51.0273 3400 napagent - ok
10:41:51.0436 3400 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:
\Windows\system32\DRIVERS\nwifi.sys
10:41:51.0464 3400 NativeWifiP - ok
10:41:51.0879 3400 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:
\Windows\system32\drivers\ndis.sys
10:41:51.0889 3400 NDIS - ok
10:41:51.0970 3400 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:
\Windows\system32\DRIVERS\ndiscap.sys
10:41:51.0993 3400 NdisCap - ok
10:41:52.0028 3400 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:
\Windows\system32\DRIVERS\ndistapi.sys
10:41:52.0061 3400 NdisTapi - ok
10:41:52.0108 3400 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:
\Windows\system32\DRIVERS\ndisuio.sys
10:41:52.0118 3400 Ndisuio - ok
10:41:52.0262 3400 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:
\Windows\system32\DRIVERS\ndiswan.sys
10:41:52.0293 3400 NdisWan - ok
10:41:52.0374 3400 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:
\Windows\system32\drivers\NDProxy.sys
10:41:52.0409 3400 NDProxy - ok
10:41:52.0439 3400 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:
\Windows\system32\DRIVERS\netbios.sys
10:41:52.0459 3400 NetBIOS - ok
10:41:52.0577 3400 [ 09594D1089C523423B32A4229263F068 ] NetBT C:
\Windows\system32\DRIVERS\netbt.sys
10:41:52.0611 3400 NetBT - ok
10:41:52.0639 3400 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:
\Windows\system32\lsass.exe
10:41:52.0641 3400 Netlogon - ok
10:41:52.0681 3400 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:
\Windows\System32\netman.dll
10:41:52.0686 3400 Netman - ok
10:41:52.0716 3400 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:
\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:41:52.0717 3400 NetMsmqActivator - ok
10:41:52.0722 3400 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:
\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:41:52.0723 3400 NetPipeActivator - ok
10:41:52.0737 3400 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:
\Windows\System32\netprofm.dll
10:41:52.0743 3400 netprofm - ok
10:41:52.0749 3400 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:
\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:41:52.0750 3400 NetTcpActivator - ok
10:41:52.0755 3400 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:
\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:41:52.0757 3400 NetTcpPortSharing - ok
10:41:52.0790 3400 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:
\Windows\system32\DRIVERS\nfrd960.sys
10:41:52.0792 3400 nfrd960 - ok
10:41:52.0835 3400 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:
\Windows\System32\nlasvc.dll
10:41:52.0839 3400 NlaSvc - ok
10:41:52.0851 3400 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:
\Windows\system32\drivers\Npfs.sys
10:41:52.0860 3400 Npfs - ok
10:41:52.0866 3400 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:
\Windows\system32\nsisvc.dll
10:41:52.0874 3400 nsi - ok
10:41:52.0884 3400 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:
\Windows\system32\drivers\nsiproxy.sys
10:41:52.0886 3400 nsiproxy - ok
10:41:52.0937 3400 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:
\Windows\system32\drivers\Ntfs.sys
10:41:52.0969 3400 Ntfs - ok
10:41:52.0985 3400 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:
\Windows\system32\drivers\Null.sys
10:41:52.0987 3400 Null - ok
10:41:53.0014 3400 [ 102806B360D0E6BC6E55BF47EF655D43 ] NVHDA C:
\Windows\system32\drivers\nvhda64v.sys
10:41:53.0018 3400 NVHDA - ok
10:41:53.0258 3400 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm C:
\Windows\system32\DRIVERS\nvlddmkm.sys
10:42:09.0893 6416
============================================================
10:42:09.0893 6416 Scan started
10:42:09.0893 6416 Mode: Manual; TDLFS;
10:42:09.0893 6416
============================================================
10:42:10.0484 6416 ================ Scan system memory
========================
10:42:10.0484 6416 System memory - ok
10:42:10.0485 6416 ================ Scan services
=============================
10:42:10.0591 6416 [ A87D604AEA360176311474C87A63BB88 ] 1394ohci C:
\Windows\system32\drivers\1394ohci.sys
10:42:10.0592 6416 1394ohci - ok
10:42:10.0636 6416 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI C:
\Windows\system32\drivers\ACPI.sys
10:42:10.0638 6416 ACPI - ok
10:42:10.0671 6416 [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi C:
\Windows\system32\drivers\acpipmi.sys
10:42:10.0671 6416 AcpiPmi - ok
10:42:11.0134 6416 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:
\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:42:11.0135 6416 AdobeARMservice - ok
10:42:11.0463 6416 [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx C:
\Windows\system32\DRIVERS\adp94xx.sys
10:42:11.0466 6416 adp94xx - ok
10:42:11.0631 6416 [ 597F78224EE9224EA1A13D6350CED962 ] adpahci C:
\Windows\system32\DRIVERS\adpahci.sys
10:42:11.0633 6416 adpahci - ok
10:42:11.0764 6416 [ E109549C90F62FB570B9540C4B148E54 ] adpu320 C:
\Windows\system32\DRIVERS\adpu320.sys
10:42:11.0765 6416 adpu320 - ok
10:42:11.0854 6416 [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc C:
\Windows\System32\aelupsvc.dll
10:42:11.0855 6416 AeLookupSvc - ok
10:42:12.0071 6416 [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD C:
\Windows\system32\drivers\afd.sys
10:42:12.0073 6416 AFD - ok
10:42:12.0156 6416 [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440 C:
\Windows\system32\drivers\agp440.sys
10:42:12.0156 6416 agp440 - ok
10:42:12.0208 6416 [ AA3F73CCBF498BD56800F840D75E40E4 ] ahcix64s C:
\Windows\system32\DRIVERS\ahcix64s.sys
10:42:12.0209 6416 ahcix64s - ok
10:42:12.0219 6416 [ 3290D6946B5E30E70414990574883DDB ] ALG C:
\Windows\System32\alg.exe
10:42:12.0219 6416 ALG - ok
10:42:12.0257 6416 [ 5812713A477A3AD7363C7438CA2EE038 ] aliide C:
\Windows\system32\drivers\aliide.sys
10:42:12.0257 6416 aliide - ok
10:42:12.0313 6416 [ B3E801135E0C81733542C14D9AA8120A ] Alpham1 C:
\Windows\system32\DRIVERS\Alpham164.sys
10:42:12.0313 6416 Alpham1 - ok
10:42:12.0361 6416 [ 6493983FEDBC49D9112703ECE9B251FE ] Alpham2 C:
\Windows\system32\DRIVERS\Alpham264.sys
10:42:12.0362 6416 Alpham2 - ok
10:42:12.0379 6416 [ 1FF8B4431C353CE385C875F194924C0C ] amdide C:
\Windows\system32\drivers\amdide.sys
10:42:12.0379 6416 amdide - ok
10:42:12.0425 6416 [ 6A2EEB0C4133B20773BB3DD0B7B377B4 ] amdiox64 C:
\Windows\system32\DRIVERS\amdiox64.sys
10:42:12.0425 6416 amdiox64 - ok
10:42:12.0479 6416 [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8 C:
\Windows\system32\DRIVERS\amdk8.sys
10:42:12.0480 6416 AmdK8 - ok
10:42:12.0702 6416 [ 0B45C18B0F3EE996D25BAA4E74884B83 ] amdkmdag C:
\Windows\system32\DRIVERS\atikmdag.sys
10:42:12.0760 6416 amdkmdag - ok
10:42:12.0892 6416 [ 0E57258E5CC4CC7A9A9A877AFDF0CEC6 ] amdkmdap C:
\Windows\system32\DRIVERS\atikmpag.sys
10:42:12.0894 6416 amdkmdap - ok
10:42:12.0941 6416 [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM C:
\Windows\system32\DRIVERS\amdppm.sys
10:42:12.0942 6416 AmdPPM - ok
10:42:13.0017 6416 [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata C:
\Windows\system32\drivers\amdsata.sys
10:42:13.0018 6416 amdsata - ok
10:42:13.0133 6416 [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs C:
\Windows\system32\DRIVERS\amdsbs.sys
10:42:13.0134 6416 amdsbs - ok
10:42:13.0219 6416 [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata C:
\Windows\system32\drivers\amdxata.sys
10:42:13.0219 6416 amdxata - ok
10:42:13.0454 6416 [ 2B8D1C23D204C0E70EFF48A3FFA1C67B ] AMD_RAIDXpert C:
\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe
10:42:13.0455 6416 AMD_RAIDXpert - ok
10:42:13.0627 6416 AODDriver4.0 - ok
10:42:13.0693 6416 [ 89A69C3F2F319B43379399547526D952 ] AppID C:
\Windows\system32\drivers\appid.sys
10:42:13.0694 6416 AppID - ok
10:42:13.0775 6416 [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc C:
\Windows\System32\appidsvc.dll
10:42:13.0775 6416 AppIDSvc - ok
10:42:13.0865 6416 [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo C:
\Windows\System32\appinfo.dll
10:42:13.0866 6416 Appinfo - ok
10:42:14.0066 6416 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support
\AppleMobileDeviceService.exe
10:42:14.0067 6416 Apple Mobile Device - ok
10:42:14.0154 6416 [ C484F8CEB1717C540242531DB7845C4E ] arc C:
\Windows\system32\DRIVERS\arc.sys
10:42:14.0155 6416 arc - ok
10:42:14.0184 6416 [ 019AF6924AEFE7839F61C830227FE79C ] arcsas C:
\Windows\system32\DRIVERS\arcsas.sys
10:42:14.0185 6416 arcsas - ok
10:42:14.0351 6416 [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state C:
\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
10:42:14.0351 6416 aspnet_state - ok
10:42:14.0395 6416 [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac C:
\Windows\system32\DRIVERS\asyncmac.sys
10:42:14.0396 6416 AsyncMac - ok
10:42:14.0447 6416 [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi C:
\Windows\system32\drivers\atapi.sys
10:42:14.0448 6416 atapi - ok
10:42:14.0550 6416 [ B4421D8CDADC441F76BA39532A3E3414 ] athr C:
\Windows\system32\DRIVERS\athrx.sys
10:42:14.0568 6416 athr - ok
10:42:14.0612 6416 [ 77C149E6D702737B2E372DEE166FAEF8 ] AtiHdmiService C:
\Windows\system32\drivers\AtiHdmi.sys
10:42:14.0613 6416 AtiHdmiService - ok
10:42:14.0825 6416 [ 0B45C18B0F3EE996D25BAA4E74884B83 ] atikmdag C:
\Windows\system32\DRIVERS\atikmdag.sys
10:42:14.0888 6416 atikmdag - ok
10:42:15.0003 6416 [ 7C5D273E29DCC5505469B299C6F29163 ] AtiPcie C:
\Windows\system32\DRIVERS\AtiPcie.sys
10:42:15.0004 6416 AtiPcie - ok
10:42:15.0332 6416 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder
C:\Windows\System32\Audiosrv.dll
10:42:15.0336 6416 AudioEndpointBuilder - ok
10:42:15.0360 6416 [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv C:
\Windows\System32\Audiosrv.dll
10:42:15.0363 6416 AudioSrv - ok
10:42:15.0559 6416 [ F1CA8ED683D6945EFDC4492AB60B1460 ] AVP C:
\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 2013\avp.exe
10:42:15.0560 6416 AVP - ok
10:42:15.0610 6416 [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV C:
\Windows\System32\AxInstSV.dll
10:42:15.0611 6416 AxInstSV - ok
10:42:15.0841 6416 [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv C:
\Windows\system32\DRIVERS\bxvbda.sys
10:42:15.0844 6416 b06bdrv - ok
10:42:15.0926 6416 [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a C:
\Windows\system32\DRIVERS\b57nd60a.sys
10:42:15.0928 6416 b57nd60a - ok
10:42:15.0988 6416 [ 01A24B415926BB5F772DBE12459D97DE ] BBSvc C:
\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE
10:42:15.0989 6416 BBSvc - ok
10:42:16.0014 6416 [ 785DE7ABDA13309D6065305542829E76 ] BBUpdate C:
\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
10:42:16.0016 6416 BBUpdate - ok
10:42:16.0037 6416 [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC C:
\Windows\System32\bdesvc.dll
10:42:16.0038 6416 BDESVC - ok
10:42:16.0046 6416 [ 16A47CE2DECC9B099349A5F840654746 ] Beep C:
\Windows\system32\drivers\Beep.sys
10:42:16.0047 6416 Beep - ok
10:42:16.0087 6416 [ 82974D6A2FD19445CC5171FC378668A4 ] BFE C:
\Windows\System32\bfe.dll
10:42:16.0091 6416 BFE - ok
10:42:16.0132 6416 [ 1EA7969E3271CBC59E1730697DC74682 ] BITS C:
\Windows\system32\qmgr.dll
10:42:16.0137 6416 BITS - ok
10:42:16.0159 6416 [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive C:
\Windows\system32\DRIVERS\blbdrive.sys
10:42:16.0159 6416 blbdrive - ok
10:42:16.0191 6416 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:
\Program Files\Bonjour\mDNSResponder.exe
10:42:16.0194 6416 Bonjour Service - ok
10:42:16.0227 6416 [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser C:
\Windows\system32\DRIVERS\bowser.sys
10:42:16.0228 6416 bowser - ok
10:42:16.0270 6416 [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo C:
\Windows\system32\DRIVERS\BrFiltLo.sys
10:42:16.0270 6416 BrFiltLo - ok
10:42:16.0321 6416 [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp C:
\Windows\system32\DRIVERS\BrFiltUp.sys
10:42:16.0322 6416 BrFiltUp - ok
10:42:16.0369 6416 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser C:
\Windows\System32\browser.dll
10:42:16.0370 6416 Browser - ok
10:42:16.0420 6416 [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid C:
\Windows\System32\Drivers\Brserid.sys
10:42:16.0422 6416 Brserid - ok
10:42:16.0433 6416 [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm C:
\Windows\System32\Drivers\BrSerWdm.sys
10:42:16.0434 6416 BrSerWdm - ok
10:42:16.0480 6416 [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm C:
\Windows\System32\Drivers\BrUsbMdm.sys
10:42:16.0480 6416 BrUsbMdm - ok
10:42:16.0497 6416 [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer C:
\Windows\System32\Drivers\BrUsbSer.sys
10:42:16.0497 6416 BrUsbSer - ok
10:42:16.0548 6416 [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM C:
\Windows\system32\DRIVERS\bthmodem.sys
10:42:16.0549 6416 BTHMODEM - ok
10:42:16.0583 6416 [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv C:
\Windows\system32\bthserv.dll
10:42:16.0584 6416 bthserv - ok
10:42:16.0628 6416 [ B8BD2BB284668C84865658C77574381A ] cdfs C:
\Windows\system32\DRIVERS\cdfs.sys
10:42:16.0629 6416 cdfs - ok
10:42:16.0728 6416 [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom C:
\Windows\system32\DRIVERS\cdrom.sys
10:42:16.0730 6416 cdrom - ok
10:42:16.0802 6416 [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc C:
\Windows\System32\certprop.dll
10:42:16.0803 6416 CertPropSvc - ok
10:42:16.0838 6416 [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass C:
\Windows\system32\DRIVERS\circlass.sys
10:42:16.0838 6416 circlass - ok
10:42:16.0911 6416 [ FF60401F1C659CA2ED4BAE85D3FD14DA ] CISVC C:
\Windows\system32\CISVC.EXE
10:42:16.0912 6416 CISVC - ok
10:42:17.0079 6416 [ FE1EC06F2253F691FE36217C592A0206 ] CLFS C:
\Windows\system32\CLFS.sys
10:42:17.0081 6416 CLFS - ok
10:42:17.0344 6416 [ D88040F816FDA31C3B466F0FA0918F29 ]
clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework
\v2.0.50727\mscorsvw.exe
10:42:17.0345 6416 clr_optimization_v2.0.50727_32 - ok
10:42:17.0528 6416 [ D1CEEA2B47CB998321C579651CE3E4F8 ]
clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET
\Framework64\v2.0.50727\mscorsvw.exe
10:42:17.0529 6416 clr_optimization_v2.0.50727_64 - ok
10:42:17.0769 6416 [ C5A75EB48E2344ABDC162BDA79E16841 ]
clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework
\v4.0.30319\mscorsvw.exe
10:42:17.0771 6416 clr_optimization_v4.0.30319_32 - ok
10:42:17.0882 6416 [ C6F9AF94DCD58122A4D7E89DB6BED29D ]
clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET
\Framework64\v4.0.30319\mscorsvw.exe
10:42:17.0883 6416 clr_optimization_v4.0.30319_64 - ok
10:42:17.0928 6416 [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt C:
\Windows\system32\DRIVERS\CmBatt.sys
10:42:17.0929 6416 CmBatt - ok
10:42:18.0003 6416 [ E19D3F095812725D88F9001985B94EDD ] cmdide C:
\Windows\system32\drivers\cmdide.sys
10:42:18.0004 6416 cmdide - ok
10:42:18.0051 6416 [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG C:
\Windows\system32\Drivers\cng.sys
10:42:18.0053 6416 CNG - ok
10:42:18.0073 6416 [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt C:
\Windows\system32\DRIVERS\compbatt.sys
10:42:18.0074 6416 Compbatt - ok
10:42:18.0103 6416 [ 59D203C3F46F3CA536ECAC0E084CD887 ] CompFilter64 C:
\Windows\system32\DRIVERS\lvbflt64.sys
10:42:18.0104 6416 CompFilter64 - ok
10:42:18.0139 6416 [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus C:
\Windows\system32\drivers\CompositeBus.sys
10:42:18.0139 6416 CompositeBus - ok
10:42:18.0142 6416 COMSysApp - ok
10:42:18.0180 6416 [ 1C827878A998C18847245FE1F34EE597 ] crcdisk C:
\Windows\system32\DRIVERS\crcdisk.sys
10:42:18.0180 6416 crcdisk - ok
10:42:18.0218 6416 [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc C:
\Windows\system32\cryptsvc.dll
10:42:18.0219 6416 CryptSvc - ok
10:42:18.0264 6416 [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch C:
\Windows\system32\rpcss.dll
10:42:18.0267 6416 DcomLaunch - ok
10:42:18.0291 6416 [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc C:
\Windows\System32\defragsvc.dll
10:42:18.0293 6416 defragsvc - ok
10:42:18.0320 6416 [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC C:
\Windows\system32\Drivers\dfsc.sys
10:42:18.0321 6416 DfsC - ok
10:42:18.0356 6416 [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp C:
\Windows\system32\dhcpcore.dll
10:42:18.0358 6416 Dhcp - ok
10:42:18.0376 6416 [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache C:
\Windows\system32\drivers\discache.sys
10:42:18.0377 6416 discache - ok
10:42:18.0410 6416 [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk C:
\Windows\system32\DRIVERS\disk.sys
10:42:18.0410 6416 Disk - ok
10:42:18.0442 6416 [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache C:
\Windows\System32\dnsrslvr.dll
10:42:18.0443 6416 Dnscache - ok
10:42:18.0477 6416 [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc C:
\Windows\System32\dot3svc.dll
10:42:18.0479 6416 dot3svc - ok
10:42:18.0612 6416 [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS C:
\Windows\system32\dps.dll
10:42:18.0614 6416 DPS - ok
10:42:18.0699 6416 [ 9B19F34400D24DF84C858A421C205754 ] drmkaud C:
\Windows\system32\drivers\drmkaud.sys
10:42:18.0699 6416 drmkaud - ok
10:42:18.0899 6416 [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl C:
\Windows\System32\drivers\dxgkrnl.sys
10:42:18.0904 6416 DXGKrnl - ok
10:42:18.0908 6416 EagleX64 - ok
10:42:18.0989 6416 [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost C:
\Windows\System32\eapsvc.dll
10:42:18.0990 6416 EapHost - ok
10:42:19.0614 6416 [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv C:
\Windows\system32\DRIVERS\evbda.sys
10:42:19.0630 6416 ebdrv - ok
10:42:19.0661 6416 [ C118A82CD78818C29AB228366EBF81C3 ] EFS C:
\Windows\System32\lsass.exe
10:42:19.0662 6416 EFS - ok
10:42:19.0718 6416 [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr C:
\Windows\ehome\ehRecvr.exe
10:42:19.0722 6416 ehRecvr - ok
10:42:19.0743 6416 [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched C:
\Windows\ehome\ehsched.exe
10:42:19.0744 6416 ehSched - ok
10:42:19.0797 6416 [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor C:
\Windows\system32\DRIVERS\elxstor.sys
10:42:19.0800 6416 elxstor - ok
10:42:19.0843 6416 [ 34A3C54752046E79A126E15C51DB409B ] ErrDev C:
\Windows\system32\drivers\errdev.sys
10:42:19.0844 6416 ErrDev - ok
10:42:19.0880 6416 [ 932C05033053ADA2404FD836C9AB2C70 ]
EuMusDesignVirtualAudioCableWdm C:\Windows\system32\DRIVERS\vrtaucbl.sys
10:42:19.0881 6416 EuMusDesignVirtualAudioCableWdm - ok
10:42:19.0911 6416 [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem C:
\Windows\system32\es.dll
10:42:19.0913 6416 EventSystem - ok
10:42:19.0958 6416 [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat C:
\Windows\system32\drivers\exfat.sys
10:42:19.0960 6416 exfat - ok
10:42:19.0980 6416 [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat C:
\Windows\system32\drivers\fastfat.sys
10:42:19.0982 6416 fastfat - ok
10:42:20.0023 6416 [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax C:
\Windows\system32\fxssvc.exe
10:42:20.0027 6416 Fax - ok
10:42:20.0052 6416 [ D765D19CD8EF61F650C384F62FAC00AB ] fdc C:
\Windows\system32\DRIVERS\fdc.sys
10:42:20.0053 6416 fdc - ok
10:42:20.0098 6416 [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost C:
\Windows\system32\fdPHost.dll
10:42:20.0099 6416 fdPHost - ok
10:42:20.0142 6416 [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub C:
\Windows\system32\fdrespub.dll
10:42:20.0143 6416 FDResPub - ok
10:42:20.0180 6416 [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo C:
\Windows\system32\drivers\fileinfo.sys
10:42:20.0181 6416 FileInfo - ok
10:42:20.0222 6416 [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace C:
\Windows\system32\drivers\filetrace.sys
10:42:20.0223 6416 Filetrace - ok
10:42:20.0304 6416 [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk C:
\Windows\system32\DRIVERS\flpydisk.sys
10:42:20.0304 6416 flpydisk - ok
10:42:20.0458 6416 [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr C:
\Windows\system32\drivers\fltmgr.sys
10:42:20.0459 6416 FltMgr - ok
10:42:20.0711 6416 [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache C:
\Windows\system32\FntCache.dll
10:42:20.0717 6416 FontCache - ok
10:42:20.0880 6416 [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:
\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:42:20.0881 6416 FontCache3.0.0.0 - ok
10:42:20.0933 6416 [ D43703496149971890703B4B1B723EAC ] FsDepends C:
\Windows\system32\drivers\FsDepends.sys
10:42:20.0933 6416 FsDepends - ok
10:42:21.0007 6416 [ 07DA62C960DDCCC2D35836AEAB4FC578 ] fssfltr C:
\Windows\system32\DRIVERS\fssfltr.sys
10:42:21.0008 6416 fssfltr - ok
10:42:21.0948 6416 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:
\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
10:42:21.0956 6416 fsssvc - ok
10:42:21.0998 6416 [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec C:
\Windows\system32\drivers\Fs_Rec.sys
10:42:21.0998 6416 Fs_Rec - ok
10:42:22.0021 6416 [ 1F7B25B858FA27015169FE95E54108ED ] fvevol C:
\Windows\system32\DRIVERS\fvevol.sys
10:42:22.0023 6416 fvevol - ok
10:42:22.0099 6416 [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx C:
\Windows\system32\DRIVERS\gagp30kx.sys
10:42:22.0100 6416 gagp30kx - ok
10:42:22.0179 6416 [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM C:
\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:42:22.0180 6416 GEARAspiWDM - ok
10:42:22.0273 6416 [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc C:
\Windows\System32\gpsvc.dll
10:42:22.0277 6416 gpsvc - ok
10:42:22.0338 6416 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:
\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:42:22.0339 6416 gupdate - ok
10:42:22.0343 6416 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:
\Program Files (x86)\Google\Update\GoogleUpdate.exe
10:42:22.0344 6416 gupdatem - ok
10:42:22.0385 6416 [ 408DDD80EEDE47175F6844817B90213E ] gusvc C:
\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
10:42:22.0386 6416 gusvc - ok
10:42:22.0416 6416 [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir C:
\Windows\system32\drivers\hcw85cir.sys
10:42:22.0416 6416 hcw85cir - ok
10:42:22.0466 6416 [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:
\Windows\system32\drivers\HdAudio.sys
10:42:22.0468 6416 HdAudAddService - ok
10:42:22.0504 6416 [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus C:
\Windows\system32\DRIVERS\HDAudBus.sys
10:42:22.0505 6416 HDAudBus - ok
10:42:22.0537 6416 [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt C:
\Windows\system32\DRIVERS\HidBatt.sys
10:42:22.0537 6416 HidBatt - ok
10:42:22.0551 6416 [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth C:
\Windows\system32\DRIVERS\hidbth.sys
10:42:22.0552 6416 HidBth - ok
10:42:22.0604 6416 [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr C:
\Windows\system32\DRIVERS\hidir.sys
10:42:22.0604 6416 HidIr - ok
10:42:22.0688 6416 [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv C:
\Windows\System32\hidserv.dll
10:42:22.0689 6416 hidserv - ok
10:42:22.0806 6416 [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb C:
\Windows\system32\DRIVERS\hidusb.sys
10:42:22.0807 6416 HidUsb - ok
10:42:22.0914 6416 [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc C:
\Windows\system32\kmsvc.dll
10:42:22.0915 6416 hkmsvc - ok
10:42:23.0071 6416 [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:
\Windows\system32\ListSvc.dll
10:42:23.0074 6416 HomeGroupListener - ok
10:42:23.0173 6416 [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:
\Windows\system32\provsvc.dll
10:42:23.0175 6416 HomeGroupProvider - ok
10:42:23.0270 6416 HP Health Check Service - ok
10:42:23.0386 6416 hpqwmiex - ok
10:42:23.0469 6416 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD C:
\Windows\system32\drivers\HpSAMD.sys
10:42:23.0470 6416 HpSAMD - ok
10:42:23.0791 6416 [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP C:
\Windows\system32\drivers\HTTP.sys
10:42:23.0795 6416 HTTP - ok
10:42:23.0881 6416 [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy C:
\Windows\system32\drivers\hwpolicy.sys
10:42:23.0882 6416 hwpolicy - ok
10:42:23.0978 6416 [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt C:
\Windows\system32\drivers\i8042prt.sys
10:42:23.0979 6416 i8042prt - ok
10:42:24.0223 6416 [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV C:
\Windows\system32\drivers\iaStorV.sys
10:42:24.0226 6416 iaStorV - ok
10:42:24.0673 6416 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc C:
\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation
\infocard.exe
10:42:24.0678 6416 idsvc - ok
10:42:24.0711 6416 [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp C:
\Windows\system32\DRIVERS\iirsp.sys
10:42:24.0712 6416 iirsp - ok
10:42:24.0767 6416 [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT C:
\Windows\System32\ikeext.dll
10:42:24.0772 6416 IKEEXT - ok
10:42:24.0832 6416 [ 3C4B4EE54FEBB09F7E9F58776DE96DCA ] IntcAzAudAddService
C:\Windows\system32\drivers\RTKVHD64.sys
10:42:24.0844 6416 IntcAzAudAddService - ok
10:42:24.0874 6416 [ F00F20E70C6EC3AA366910083A0518AA ] intelide C:
\Windows\system32\drivers\intelide.sys
10:42:24.0874 6416 intelide - ok
10:42:24.0893 6416 [ ADA036632C664CAA754079041CF1F8C1 ] intelppm C:
\Windows\system32\DRIVERS\intelppm.sys
10:42:24.0894 6416 intelppm - ok
10:42:24.0926 6416 [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum C:
\Windows\system32\ipbusenum.dll
10:42:24.0927 6416 IPBusEnum - ok
10:42:24.0973 6416 [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver C:
\Windows\system32\DRIVERS\ipfltdrv.sys
10:42:24.0974 6416 IpFilterDriver - ok
10:42:25.0017 6416 [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc C:
\Windows\System32\iphlpsvc.dll
10:42:25.0020 6416 iphlpsvc - ok
10:42:25.0055 6416 [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV C:
\Windows\system32\drivers\IPMIDrv.sys
10:42:25.0056 6416 IPMIDRV - ok
10:42:25.0109 6416 [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT C:
\Windows\system32\drivers\ipnat.sys
10:42:25.0110 6416 IPNAT - ok
10:42:25.0449 6416 [ 6E50CFA46527B39015B750AAD161C5CC ] iPod Service C:
\Program Files\iPod\bin\iPodService.exe
10:42:25.0453 6416 iPod Service - ok
10:42:25.0480 6416 [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM C:
\Windows\system32\drivers\irenum.sys
10:42:25.0480 6416 IRENUM - ok
10:42:25.0552 6416 [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp C:
\Windows\system32\drivers\isapnp.sys
10:42:25.0552 6416 isapnp - ok
10:42:25.0621 6416 [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt C:
\Windows\system32\drivers\msiscsi.sys
10:42:25.0622 6416 iScsiPrt - ok
10:42:25.0700 6416 [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass C:
\Windows\system32\DRIVERS\kbdclass.sys
10:42:25.0701 6416 kbdclass - ok
10:42:25.0775 6416 [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid C:
\Windows\system32\DRIVERS\kbdhid.sys
10:42:25.0776 6416 kbdhid - ok
10:42:25.0816 6416 [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso C:
\Windows\system32\lsass.exe
10:42:25.0817 6416 KeyIso - ok
10:42:26.0066 6416 [ 8B5219318DF5895ABD230C373F2DF18A ] kl1 C:
\Windows\system32\DRIVERS\kl1.sys
10:42:26.0069 6416 kl1 - ok
10:42:26.0461 6416 [ 8191BB24F61EBCAF84719993C7F7B5C6 ] KLIF C:
\Windows\system32\DRIVERS\klif.sys
10:42:26.0464 6416 KLIF - ok
10:42:26.0490 6416 [ 9BD99E1AB3F664120AB95C35F9EC1EB0 ] KLIM6 C:
\Windows\system32\DRIVERS\klim6.sys
10:42:26.0490 6416 KLIM6 - ok
10:42:26.0498 6416 [ 2C43FD500522EF3B8C283A5846B7FC41 ] klkbdflt C:
\Windows\system32\DRIVERS\klkbdflt.sys
10:42:26.0498 6416 klkbdflt - ok
10:42:26.0511 6416 [ 70A6D2E292017EC47949696F51ABE18D ] klmouflt C:
\Windows\system32\DRIVERS\klmouflt.sys
10:42:26.0512 6416 klmouflt - ok
10:42:26.0522 6416 [ FFC0501A1EA742406F1904A0CFE3BFE2 ] kltdi C:
\Windows\system32\DRIVERS\kltdi.sys
10:42:26.0523 6416 kltdi - ok
10:42:26.0535 6416 [ 185D21CB8F10CFB351FF65DA88C18BC9 ] kneps C:
\Windows\system32\DRIVERS\kneps.sys
10:42:26.0536 6416 kneps - ok
10:42:26.0616 6416 [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD C:
\Windows\system32\Drivers\ksecdd.sys
10:42:26.0617 6416 KSecDD - ok
10:42:26.0645 6416 [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg C:
\Windows\system32\Drivers\ksecpkg.sys
10:42:26.0647 6416 KSecPkg - ok
10:42:26.0665 6416 [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk C:
\Windows\system32\drivers\ksthunk.sys
10:42:26.0665 6416 ksthunk - ok
10:42:26.0687 6416 [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm C:
\Windows\system32\msdtckrm.dll
10:42:26.0690 6416 KtmRm - ok
10:42:26.0713 6416 [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer C:
\Windows\System32\srvsvc.dll
10:42:26.0716 6416 LanmanServer - ok
10:42:26.0743 6416 [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:
\Windows\System32\wkssvc.dll
10:42:26.0745 6416 LanmanWorkstation - ok
10:42:26.0850 6416 [ 3C46290F7A5D45BA6EF32C248E22AA69 ] Lbd C:
\Windows\system32\DRIVERS\Lbd.sys
10:42:26.0851 6416 Lbd - ok
10:42:26.0903 6416 [ 1538831CF8AD2979A04C423779465827 ] lltdio C:
\Windows\system32\DRIVERS\lltdio.sys
10:42:26.0904 6416 lltdio - ok
10:42:27.0088 6416 [ C1185803384AB3FEED115F79F109427F ] lltdsvc C:
\Windows\System32\lltdsvc.dll
10:42:27.0091 6416 lltdsvc - ok
10:42:27.0142 6416 [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts C:
\Windows\System32\lmhsvc.dll
10:42:27.0143 6416 lmhosts - ok
10:42:27.0226 6416 [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC C:
\Windows\system32\DRIVERS\lsi_fc.sys
10:42:27.0226 6416 LSI_FC - ok
10:42:27.0326 6416 [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS C:
\Windows\system32\DRIVERS\lsi_sas.sys
10:42:27.0327 6416 LSI_SAS - ok
10:42:27.0367 6416 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2 C:
\Windows\system32\DRIVERS\lsi_sas2.sys
10:42:27.0368 6416 LSI_SAS2 - ok
10:42:27.0418 6416 [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI C:
\Windows\system32\DRIVERS\lsi_scsi.sys
10:42:27.0419 6416 LSI_SCSI - ok
10:42:27.0499 6416 [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv C:
\Windows\system32\drivers\luafv.sys
10:42:27.0500 6416 luafv - ok
10:42:27.0583 6416 [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2M64 C:
\Windows\system32\DRIVERS\LVPr2M64.sys
10:42:27.0584 6416 LVPr2M64 - ok
10:42:27.0598 6416 [ B3944D06EB4B64D57BD7E5FE89415F58 ] LVPr2Mon C:
\Windows\system32\DRIVERS\LVPr2M64.sys
10:42:27.0599 6416 LVPr2Mon - ok
10:42:27.0924 6416 [ 0C85B2B6FB74B36A251792D45E0EF860 ] LVRS64 C:
\Windows\system32\DRIVERS\lvrs64.sys
10:42:27.0926 6416 LVRS64 - ok
10:42:29.0344 6416 [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64 C:
\Windows\system32\DRIVERS\lvuvc64.sys
10:42:29.0367 6416 LVUVC64 - ok
10:42:29.0396 6416 [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc C:
\Windows\system32\Mcx2Svc.dll
10:42:29.0397 6416 Mcx2Svc - ok
10:42:29.0423 6416 [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas C:
\Windows\system32\DRIVERS\megasas.sys
10:42:29.0423 6416 megasas - ok
10:42:29.0471 6416 [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR C:
\Windows\system32\DRIVERS\MegaSR.sys
10:42:29.0473 6416 MegaSR - ok
10:42:29.0506 6416 [ E40E80D0304A73E8D269F7141D77250B ] MMCSS C:
\Windows\system32\mmcss.dll
10:42:29.0508 6416 MMCSS - ok
10:42:29.0546 6416 [ 800BA92F7010378B09F9ED9270F07137 ] Modem C:
\Windows\system32\drivers\modem.sys
10:42:29.0547 6416 Modem - ok
10:42:29.0644 6416 [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor C:
\Windows\system32\DRIVERS\monitor.sys
10:42:29.0645 6416 monitor - ok
10:42:29.0678 6416 [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass C:
\Windows\system32\DRIVERS\mouclass.sys
10:42:29.0679 6416 mouclass - ok
10:42:29.0686 6416 [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid C:
\Windows\system32\DRIVERS\mouhid.sys
10:42:29.0687 6416 mouhid - ok
10:42:29.0713 6416 [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr C:
\Windows\system32\drivers\mountmgr.sys
10:42:29.0714 6416 mountmgr - ok
10:42:29.0753 6416 [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio C:
\Windows\system32\drivers\mpio.sys
10:42:29.0754 6416 mpio - ok
10:42:29.0776 6416 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv C:
\Windows\system32\drivers\mpsdrv.sys
10:42:29.0777 6416 mpsdrv - ok
10:42:29.0815 6416 [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc C:
\Windows\system32\mpssvc.dll
10:42:29.0820 6416 MpsSvc - ok
10:42:29.0873 6416 [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV C:
\Windows\system32\drivers\mrxdav.sys
10:42:29.0874 6416 MRxDAV - ok
10:42:29.0984 6416 [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb C:
\Windows\system32\DRIVERS\mrxsmb.sys
10:42:29.0985 6416 mrxsmb - ok
10:42:30.0105 6416 [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10 C:
\Windows\system32\DRIVERS\mrxsmb10.sys
10:42:30.0107 6416 mrxsmb10 - ok
10:42:30.0132 6416 [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20 C:
\Windows\system32\DRIVERS\mrxsmb20.sys
10:42:30.0133 6416 mrxsmb20 - ok
10:42:30.0217 6416 [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci C:
\Windows\system32\drivers\msahci.sys
10:42:30.0218 6416 msahci - ok
10:42:30.0316 6416 [ DB801A638D011B9633829EB6F663C900 ] msdsm C:
\Windows\system32\drivers\msdsm.sys
10:42:30.0317 6416 msdsm - ok
10:42:30.0366 6416 [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC C:
\Windows\System32\msdtc.exe
10:42:30.0368 6416 MSDTC - ok
10:42:30.0446 6416 [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs C:
\Windows\system32\drivers\Msfs.sys
10:42:30.0446 6416 Msfs - ok
10:42:30.0484 6416 [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf C:
\Windows\System32\drivers\mshidkmdf.sys
10:42:30.0485 6416 mshidkmdf - ok
10:42:30.0552 6416 [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv C:
\Windows\system32\drivers\msisadrv.sys
10:42:30.0552 6416 msisadrv - ok
10:42:30.0611 6416 [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI C:
\Windows\system32\iscsiexe.dll
10:42:30.0613 6416 MSiSCSI - ok
10:42:30.0616 6416 msiserver - ok
10:42:30.0656 6416 [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV C:
\Windows\system32\drivers\MSKSSRV.sys
10:42:30.0657 6416 MSKSSRV - ok
10:42:30.0698 6416 [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK C:
\Windows\system32\drivers\MSPCLOCK.sys
10:42:30.0698 6416 MSPCLOCK - ok
10:42:30.0730 6416 [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM C:
\Windows\system32\drivers\MSPQM.sys
10:42:30.0730 6416 MSPQM - ok
10:42:30.0899 6416 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC C:
\Windows\system32\drivers\MsRPC.sys
10:42:30.0901 6416 MsRPC - ok
10:42:30.0965 6416 [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios C:
\Windows\system32\drivers\mssmbios.sys
10:42:30.0966 6416 mssmbios - ok
10:42:31.0002 6416 [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE C:
\Windows\system32\drivers\MSTEE.sys
10:42:31.0002 6416 MSTEE - ok
10:42:31.0015 6416 [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig C:
\Windows\system32\DRIVERS\MTConfig.sys
10:42:31.0015 6416 MTConfig - ok
10:42:31.0048 6416 [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup C:
\Windows\system32\Drivers\mup.sys
10:42:31.0049 6416 Mup - ok
10:42:31.0084 6416 [ 582AC6D9873E31DFA28A4547270862DD ] napagent C:
\Windows\system32\qagentRT.dll
10:42:31.0088 6416 napagent - ok
10:42:31.0113 6416 [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP C:
\Windows\system32\DRIVERS\nwifi.sys
10:42:31.0115 6416 NativeWifiP - ok
10:42:31.0148 6416 [ 760E38053BF56E501D562B70AD796B88 ] NDIS C:
\Windows\system32\drivers\ndis.sys
10:42:31.0152 6416 NDIS - ok
10:42:31.0180 6416 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap C:
\Windows\system32\DRIVERS\ndiscap.sys
10:42:31.0181 6416 NdisCap - ok
10:42:31.0205 6416 [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi C:
\Windows\system32\DRIVERS\ndistapi.sys
10:42:31.0206 6416 NdisTapi - ok
10:42:31.0241 6416 [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio C:
\Windows\system32\DRIVERS\ndisuio.sys
10:42:31.0242 6416 Ndisuio - ok
10:42:31.0273 6416 [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan C:
\Windows\system32\DRIVERS\ndiswan.sys
10:42:31.0274 6416 NdisWan - ok
10:42:31.0295 6416 [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy C:
\Windows\system32\drivers\NDProxy.sys
10:42:31.0296 6416 NDProxy - ok
10:42:31.0305 6416 [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS C:
\Windows\system32\DRIVERS\netbios.sys
10:42:31.0305 6416 NetBIOS - ok
10:42:31.0332 6416 [ 09594D1089C523423B32A4229263F068 ] NetBT C:
\Windows\system32\DRIVERS\netbt.sys
10:42:31.0333 6416 NetBT - ok
10:42:31.0383 6416 [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon C:
\Windows\system32\lsass.exe
10:42:31.0384 6416 Netlogon - ok
10:42:31.0547 6416 [ 847D3AE376C0817161A14A82C8922A9E ] Netman C:
\Windows\System32\netman.dll
10:42:31.0550 6416 Netman - ok
10:42:31.0638 6416 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:
\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:42:31.0639 6416 NetMsmqActivator - ok
10:42:31.0660 6416 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:
\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:42:31.0662 6416 NetPipeActivator - ok
10:42:31.0826 6416 [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm C:
\Windows\System32\netprofm.dll
10:42:31.0829 6416 netprofm - ok
10:42:31.0849 6416 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:
\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:42:31.0850 6416 NetTcpActivator - ok
10:42:31.0855 6416 [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:
\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
10:42:31.0856 6416 NetTcpPortSharing - ok
10:42:31.0878 6416 [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960 C:
\Windows\system32\DRIVERS\nfrd960.sys
10:42:31.0879 6416 nfrd960 - ok
10:42:32.0012 6416 [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc C:
\Windows\System32\nlasvc.dll
10:42:32.0015 6416 NlaSvc - ok
10:42:32.0083 6416 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs C:
\Windows\system32\drivers\Npfs.sys
10:42:32.0084 6416 Npfs - ok
10:42:32.0165 6416 [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi C:
\Windows\system32\nsisvc.dll
10:42:32.0167 6416 nsi - ok
10:42:32.0206 6416 [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy C:
\Windows\system32\drivers\nsiproxy.sys
10:42:32.0206 6416 nsiproxy - ok
10:42:32.0792 6416 [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs C:
\Windows\system32\drivers\Ntfs.sys
10:42:32.0800 6416 Ntfs - ok
10:42:32.0829 6416 [ 9899284589F75FA8724FF3D16AED75C1 ] Null C:
\Windows\system32\drivers\Null.sys
10:42:32.0830 6416 Null - ok
10:42:32.0990 6416 [ 102806B360D0E6BC6E55BF47EF655D43 ] NVHDA C:
\Windows\system32\drivers\nvhda64v.sys
10:42:32.0991 6416 NVHDA - ok
10:42:33.0447 6416 [ 5104BAC2DA2A5BDD86AC6B0708B00F06 ] nvlddmkm C:
\Windows\system32\DRIVERS\nvlddmkm.sys
10:42:33.0514 6416 nvlddmkm - ok
10:42:33.0593 6416 [ 0A92CB65770442ED0DC44834632F66AD ] nvraid C:
\Windows\system32\drivers\nvraid.sys
10:42:33.0596 6416 nvraid - ok
10:42:33.0697 6416 [ DAB0E87525C10052BF65F06152F37E4A ] nvstor C:
\Windows\system32\drivers\nvstor.sys
10:42:33.0720 6416 nvstor - ok
10:42:34.0353 6416 [ DDFAFCE89A5C93D04712B86F94E9FCBA ] nvsvc C:
\Windows\system32\nvvsvc.exe
10:42:34.0423 6416 nvsvc - ok
10:42:35.0282 6416 [ 84E035225474E48CD3A6A3CE52332095 ] nvUpdatusService C:
\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
10:42:35.0288 6416 nvUpdatusService - ok
10:42:35.0330 6416 [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp C:
\Windows\system32\drivers\nv_agp.sys
10:42:35.0343 6416 nv_agp - ok
10:42:35.0454 6416 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:
\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
10:42:35.0456 6416 odserv - ok
10:42:35.0501 6416 [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394 C:
\Windows\system32\drivers\ohci1394.sys
10:42:35.0510 6416 ohci1394 - ok
10:42:35.0540 6416 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:
\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
10:42:35.0541 6416 ose - ok
10:42:35.0565 6416 [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc C:
\Windows\system32\pnrpsvc.dll
10:42:35.0589 6416 p2pimsvc - ok
10:42:35.0631 6416 [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc C:
\Windows\system32\p2psvc.dll
10:42:35.0656 6416 p2psvc - ok
10:42:35.0712 6416 [ 0086431C29C35BE1DBC43F52CC273887 ] Parport C:
\Windows\system32\DRIVERS\parport.sys
10:42:35.0737 6416 Parport - ok
10:42:35.0811 6416 [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr C:
\Windows\system32\drivers\partmgr.sys
10:42:35.0832 6416 partmgr - ok
10:42:35.0923 6416 [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc C:
\Windows\System32\pcasvc.dll
10:42:35.0951 6416 PcaSvc - ok
10:42:36.0087 6416 [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci C:
\Windows\system32\drivers\pci.sys
10:42:36.0127 6416 pci - ok
10:42:36.0177 6416 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide C:
\Windows\system32\drivers\pciide.sys
10:42:36.0185 6416 pciide - ok
10:42:36.0357 6416 [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia C:
\Windows\system32\DRIVERS\pcmcia.sys
10:42:36.0364 6416 pcmcia - ok
10:42:36.0437 6416 [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw C:
\Windows\system32\drivers\pcw.sys
10:42:36.0467 6416 pcw - ok
10:42:36.0726 6416 [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH C:
\Windows\system32\drivers\peauth.sys
10:42:36.0743 6416 PEAUTH - ok
10:42:36.0828 6416 [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost C:
\Windows\SysWow64\perfhost.exe
10:42:36.0830 6416 PerfHost - ok
10:42:36.0886 6416 [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla C:
\Windows\system32\pla.dll
10:42:36.0901 6416 pla - ok
10:42:36.0939 6416 [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay C:
\Windows\system32\umpnpmgr.dll
10:42:36.0945 6416 PlugPlay - ok
10:42:36.0954 6416 [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg C:
\Windows\system32\pnrpauto.dll
10:42:36.0956 6416 PNRPAutoReg - ok
10:42:36.0976 6416 [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc C:
\Windows\system32\pnrpsvc.dll
10:42:36.0979 6416 PNRPsvc - ok
10:42:36.0997 6416 [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent C:
\Windows\System32\ipsecsvc.dll
10:42:37.0002 6416 PolicyAgent - ok
10:42:37.0036 6416 [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power C:
\Windows\system32\umpo.dll
10:42:37.0039 6416 Power - ok
10:42:37.0061 6416 [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport C:
\Windows\system32\DRIVERS\raspptp.sys
10:42:37.0069 6416 PptpMiniport - ok
10:42:37.0107 6416 [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor C:
\Windows\system32\DRIVERS\processr.sys
10:42:37.0109 6416 Processor - ok
10:42:37.0156 6416 [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc C:
\Windows\system32\profsvc.dll
10:42:37.0160 6416 ProfSvc - ok
10:42:37.0172 6416 [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:
\Windows\system32\lsass.exe
10:42:37.0173 6416 ProtectedStorage - ok
10:42:37.0216 6416 [ 0557CF5A2556BD58E26384169D72438D ] Psched C:
\Windows\system32\DRIVERS\pacer.sys
10:42:37.0227 6416 Psched - ok
10:42:37.0295 6416 [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300 C:
\Windows\system32\DRIVERS\ql2300.sys
10:42:37.0321 6416 ql2300 - ok
10:42:37.0362 6416 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx C:
\Windows\system32\DRIVERS\ql40xx.sys
10:42:37.0365 6416 ql40xx - ok
10:42:37.0412 6416 [ 906191634E99AEA92C4816150BDA3732 ] QWAVE C:
\Windows\system32\qwave.dll
10:42:37.0416 6416 QWAVE - ok
10:42:37.0491 6416 [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv C:
\Windows\system32\drivers\qwavedrv.sys
10:42:37.0530 6416 QWAVEdrv - ok
10:42:37.0563 6416 [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd C:
\Windows\system32\DRIVERS\rasacd.sys
10:42:37.0578 6416 RasAcd - ok
10:42:37.0611 6416 [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn C:
\Windows\system32\DRIVERS\AgileVpn.sys
10:42:37.0650 6416 RasAgileVpn - ok
10:42:37.0694 6416 [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto C:
\Windows\System32\rasauto.dll
10:42:37.0719 6416 RasAuto - ok
10:42:37.0787 6416 [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp C:
\Windows\system32\DRIVERS\rasl2tp.sys
10:42:37.0804 6416 Rasl2tp - ok
10:42:37.0953 6416 [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan C:
\Windows\System32\rasmans.dll
10:42:37.0971 6416 RasMan - ok
10:42:37.0996 6416 [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe C:
\Windows\system32\DRIVERS\raspppoe.sys
10:42:38.0030 6416 RasPppoe - ok
10:42:38.0056 6416 [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp C:
\Windows\system32\DRIVERS\rassstp.sys
10:42:38.0059 6416 RasSstp - ok
10:42:38.0095 6416 [ 77F665941019A1594D887A74F301FA2F ] rdbss C:
\Windows\system32\DRIVERS\rdbss.sys
10:42:38.0107 6416 rdbss - ok
10:42:38.0134 6416 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus C:
\Windows\system32\DRIVERS\rdpbus.sys
10:42:38.0157 6416 rdpbus - ok
10:42:38.0181 6416 [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD C:
\Windows\system32\DRIVERS\RDPCDD.sys
10:42:38.0203 6416 RDPCDD - ok
10:42:38.0232 6416 [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD C:
\Windows\system32\drivers\rdpencdd.sys
10:42:38.0234 6416 RDPENCDD - ok
10:42:38.0240 6416 [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP C:
\Windows\system32\drivers\rdprefmp.sys
10:42:38.0248 6416 RDPREFMP - ok
10:42:38.0345 6416 [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:
\Windows\system32\drivers\rdpvideominiport.sys
10:42:38.0372 6416 RdpVideoMiniport - ok
10:42:38.0416 6416 [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD C:
\Windows\system32\drivers\RDPWD.sys
10:42:38.0428 6416 RDPWD - ok
10:42:38.0464 6416 [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost C:
\Windows\system32\drivers\rdyboost.sys
10:42:38.0476 6416 rdyboost - ok
10:42:38.0507 6416 [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess C:
\Windows\System32\mprdim.dll
10:42:38.0509 6416 RemoteAccess - ok
10:42:38.0525 6416 [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry C:
\Windows\system32\regsvc.dll
10:42:38.0528 6416 RemoteRegistry - ok
10:42:38.0536 6416 [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper C:
\Windows\System32\RpcEpMap.dll
10:42:38.0538 6416 RpcEptMapper - ok
10:42:38.0567 6416 [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator C:
\Windows\system32\locator.exe
10:42:38.0568 6416 RpcLocator - ok
10:42:38.0607 6416 [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs C:
\Windows\system32\rpcss.dll
10:42:38.0611 6416 RpcSs - ok
10:42:38.0630 6416 [ DDC86E4F8E7456261E637E3552E804FF ] rspndr C:
\Windows\system32\DRIVERS\rspndr.sys
10:42:38.0640 6416 rspndr - ok
10:42:38.0681 6416 [ AFC12DFA4C7B089673AD67402CA19EDB ] RTL8167 C:
\Windows\system32\DRIVERS\Rt64win7.sys
10:42:38.0698 6416 RTL8167 - ok
10:42:38.0744 6416 [ AA427B7E5B71EC537475DF4AE662AB44 ] SAlphamHid C:
\Windows\system32\DRIVERS\SAlpham64.sys
10:42:38.0753 6416 SAlphamHid - ok
10:42:38.0782 6416 [ C118A82CD78818C29AB228366EBF81C3 ] SamSs C:
\Windows\system32\lsass.exe
10:42:38.0784 6416 SamSs - ok
10:42:38.0817 6416 [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port C:
\Windows\system32\drivers\sbp2port.sys
10:42:38.0820 6416 sbp2port - ok
10:42:38.0856 6416 [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr C:
\Windows\System32\SCardSvr.dll
10:42:38.0859 6416 SCardSvr - ok
10:42:38.0885 6416 [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter C:
\Windows\system32\DRIVERS\scfilter.sys
10:42:38.0887 6416 scfilter - ok
10:42:38.0921 6416 [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule C:
\Windows\system32\schedsvc.dll
10:42:38.0933 6416 Schedule - ok
10:42:38.0967 6416 [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc C:
\Windows\System32\certprop.dll
10:42:38.0968 6416 SCPolicySvc - ok
10:42:38.0996 6416 [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC C:
\Windows\System32\SDRSVC.dll
10:42:39.0000 6416 SDRSVC - ok
10:42:39.0072 6416 [ 16B44D246835EAC156F8DAF0AA4F530C ]
SeagateDashboardService C:\Program Files (x86)\Seagate\Seagate Dashboard
\SeagateDashboardService.exe
10:42:39.0073 6416 SeagateDashboardService - ok
10:42:39.0137 6416 [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv C:
\Windows\system32\drivers\secdrv.sys
10:42:39.0144 6416 secdrv - ok
10:42:39.0174 6416 [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon C:
\Windows\system32\seclogon.dll
10:42:39.0176 6416 seclogon - ok
10:42:39.0234 6416 [ C32AB8FA018EF34C0F113BD501436D21 ] SENS C:
\Windows\system32\sens.dll
10:42:39.0255 6416 SENS - ok
10:42:39.0283 6416 [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc C:
\Windows\system32\sensrsvc.dll
10:42:39.0306 6416 SensrSvc - ok
10:42:39.0362 6416 [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum C:
\Windows\system32\DRIVERS\serenum.sys
10:42:39.0385 6416 Serenum - ok
10:42:39.0457 6416 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial C:
\Windows\system32\DRIVERS\serial.sys
10:42:39.0483 6416 Serial - ok
10:42:39.0553 6416 [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse C:
\Windows\system32\DRIVERS\sermouse.sys
10:42:39.0572 6416 sermouse - ok
10:42:39.0619 6416 [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv C:
\Windows\system32\sessenv.dll
10:42:39.0622 6416 SessionEnv - ok
10:42:39.0656 6416 [ A554811BCD09279536440C964AE35BBF ] sffdisk C:
\Windows\system32\drivers\sffdisk.sys
10:42:39.0658 6416 sffdisk - ok
10:42:39.0709 6416 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc C:
\Windows\system32\drivers\sffp_mmc.sys
10:42:39.0736 6416 sffp_mmc - ok
10:42:39.0756 6416 [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd C:
\Windows\system32\drivers\sffp_sd.sys
10:42:39.0758 6416 sffp_sd - ok
10:42:39.0815 6416 [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy C:
\Windows\system32\DRIVERS\sfloppy.sys
10:42:39.0823 6416 sfloppy - ok
10:42:40.0006 6416 [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess C:
\Windows\System32\ipnathlp.dll
10:42:40.0026 6416 SharedAccess - ok
10:42:40.0245 6416 [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:
\Windows\System32\shsvcs.dll
10:42:40.0269 6416 ShellHWDetection - ok
10:42:40.0336 6416 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2 C:
\Windows\system32\DRIVERS\SiSRaid2.sys
10:42:40.0359 6416 SiSRaid2 - ok
10:42:40.0408 6416 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4 C:
\Windows\system32\DRIVERS\sisraid4.sys
10:42:40.0411 6416 SiSRaid4 - ok
10:42:40.0540 6416 [ 753D254205E0A62100A050BD8B458D06 ] Skype C2C Service C:
\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
10:42:40.0555 6416 Skype C2C Service - ok
10:42:40.0610 6416 [ DDAA5F4A6B958FC313EBD02DD925752F ] SkypeUpdate C:
\Program Files (x86)\Skype\Updater\Updater.exe
10:42:40.0612 6416 SkypeUpdate - ok
10:42:40.0667 6416 [ DD0443BC6CC78A19FD399817F8C51401 ] SmartDefragDriver C:
\Windows\system32\Drivers\SmartDefragDriver.sys
10:42:40.0676 6416 SmartDefragDriver - ok
10:42:40.0718 6416 [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb C:
\Windows\system32\DRIVERS\smb.sys
10:42:40.0720 6416 Smb - ok
10:42:40.0762 6416 [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP C:
\Windows\System32\snmptrap.exe
10:42:40.0765 6416 SNMPTRAP - ok
10:42:40.0794 6416 [ B9E31E5CACDFE584F34F730A677803F9 ] spldr C:
\Windows\system32\drivers\spldr.sys
10:42:40.0795 6416 spldr - ok
10:42:40.0825 6416 [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler C:
\Windows\System32\spoolsv.exe
10:42:40.0832 6416 Spooler - ok
10:42:40.0993 6416 [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc C:
\Windows\system32\sppsvc.exe
10:42:41.0040 6416 sppsvc - ok
10:42:41.0063 6416 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify C:
\Windows\system32\sppuinotify.dll
10:42:41.0066 6416 sppuinotify - ok
10:42:41.0107 6416 [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv C:
\Windows\system32\DRIVERS\srv.sys
10:42:41.0140 6416 srv - ok
10:42:41.0167 6416 [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2 C:
\Windows\system32\DRIVERS\srv2.sys
10:42:41.0173 6416 srv2 - ok
10:42:41.0235 6416 [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet C:
\Windows\system32\DRIVERS\srvnet.sys
10:42:41.0269 6416 srvnet - ok
10:42:41.0301 6416 [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV C:
\Windows\System32\ssdpsrv.dll
10:42:41.0320 6416 SSDPSRV - ok
10:42:41.0348 6416 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc C:
\Windows\system32\sstpsvc.dll
10:42:41.0350 6416 SstpSvc - ok
10:42:41.0386 6416 Steam Client Service - ok
10:42:41.0804 6416 [ F0359F7CE712D69ACEF0886BDB4792ED ] Stereo Service C:
\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
10:42:41.0806 6416 Stereo Service - ok
10:42:41.0881 6416 [ F3817967ED533D08327DC73BC4D5542A ] stexstor C:
\Windows\system32\DRIVERS\stexstor.sys
10:42:41.0903 6416 stexstor - ok
10:42:42.0138 6416 [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc C:
\Windows\System32\wiaservc.dll
10:42:42.0161 6416 stisvc - ok
10:42:42.0231 6416 [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum C:
\Windows\system32\drivers\swenum.sys
10:42:42.0245 6416 swenum - ok
10:42:42.0408 6416 [ E08E46FDD841B7184194011CA1955A0B ] swprv C:
\Windows\System32\swprv.dll
10:42:42.0436 6416 swprv - ok
10:42:43.0059 6416 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain C:
\Windows\system32\sysmain.dll
10:42:43.0077 6416 SysMain - ok
10:42:43.0123 6416 [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService
C:\Windows\System32\TabSvc.dll
10:42:43.0126 6416 TabletInputService - ok
10:42:43.0163 6416 [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv C:
\Windows\System32\tapisrv.dll
10:42:43.0168 6416 TapiSrv - ok
10:42:43.0216 6416 [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS C:
\Windows\System32\tbssvc.dll
10:42:43.0218 6416 TBS - ok
10:42:43.0260 6416 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip C:
\Windows\system32\drivers\tcpip.sys
10:42:43.0301 6416 Tcpip - ok
10:42:43.0324 6416 [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6 C:
\Windows\system32\DRIVERS\tcpip.sys
10:42:43.0333 6416 TCPIP6 - ok
10:42:43.0373 6416 [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg C:
\Windows\system32\drivers\tcpipreg.sys
10:42:43.0376 6416 tcpipreg - ok
10:42:43.0415 6416 [ 3371D21011695B16333A3934340C4E7C ] TDPIPE C:
\Windows\system32\drivers\tdpipe.sys
10:42:43.0417 6416 TDPIPE - ok
10:42:43.0456 6416 [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP C:
\Windows\system32\drivers\tdtcp.sys
10:42:43.0458 6416 TDTCP - ok
10:42:43.0490 6416 [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx C:
\Windows\system32\DRIVERS\tdx.sys
10:42:43.0493 6416 tdx - ok
10:42:43.0520 6416 [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD C:
\Windows\system32\drivers\termdd.sys
10:42:43.0523 6416 TermDD - ok
10:42:43.0566 6416 [ 2E648163254233755035B46DD7B89123 ] TermService C:
\Windows\System32\termsrv.dll
10:42:43.0587 6416 TermService - ok
10:42:43.0614 6416 [ F0344071948D1A1FA732231785A0664C ] Themes C:
\Windows\system32\themeservice.dll
10:42:43.0616 6416 Themes - ok
10:42:43.0728 6416 [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER C:
\Windows\system32\mmcss.dll
10:42:43.0730 6416 THREADORDER - ok
10:42:43.0777 6416 [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks C:
\Windows\System32\trkwks.dll
10:42:43.0780 6416 TrkWks - ok
10:42:43.0985 6416 [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:
\Windows\servicing\TrustedInstaller.exe
10:42:43.0987 6416 TrustedInstaller - ok
10:42:44.0074 6416 [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv C:
\Windows\system32\DRIVERS\tssecsrv.sys
10:42:44.0109 6416 tssecsrv - ok
10:42:44.0189 6416 [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt C:
\Windows\system32\drivers\tsusbflt.sys
10:42:44.0217 6416 TsUsbFlt - ok
10:42:44.0286 6416 [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel C:
\Windows\system32\DRIVERS\tunnel.sys
10:42:44.0322 6416 tunnel - ok
10:42:44.0395 6416 [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35 C:
\Windows\system32\DRIVERS\uagp35.sys
10:42:44.0408 6416 uagp35 - ok
10:42:44.0517 6416 [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs C:
\Windows\system32\DRIVERS\udfs.sys
10:42:44.0532 6416 udfs - ok
10:42:44.0562 6416 [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect C:
\Windows\system32\UI0Detect.exe
10:42:44.0564 6416 UI0Detect - ok
10:42:44.0611 6416 [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx C:
\Windows\system32\drivers\uliagpkx.sys
10:42:44.0613 6416 uliagpkx - ok
10:42:44.0693 6416 [ DC54A574663A895C8763AF0FA1FF7561 ] umbus C:
\Windows\system32\DRIVERS\umbus.sys
10:42:44.0712 6416 umbus - ok
10:42:44.0770 6416 [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass C:
\Windows\system32\DRIVERS\umpass.sys
10:42:44.0791 6416 UmPass - ok
10:42:44.0878 6416 [ 67A95B9D129ED5399E7965CD09CF30E7 ] UMVPFSrv C:
\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
10:42:44.0880 6416 UMVPFSrv - ok
10:42:44.0901 6416 [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost C:
\Windows\System32\upnphost.dll
10:42:44.0906 6416 upnphost - ok
10:42:44.0930 6416 [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64 C:
\Windows\system32\Drivers\usbaapl64.sys
10:42:44.0939 6416 USBAAPL64 - ok
10:42:44.0968 6416 [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio C:
\Windows\system32\drivers\usbaudio.sys
10:42:44.0979 6416 usbaudio - ok
10:42:45.0010 6416 [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp C:
\Windows\system32\DRIVERS\usbccgp.sys
10:42:45.0020 6416 usbccgp - ok
10:42:45.0060 6416 [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir C:
\Windows\system32\drivers\usbcir.sys
10:42:45.0068 6416 usbcir - ok
10:42:45.0106 6416 [ C025055FE7B87701EB042095DF1A2D7B ] usbehci C:
\Windows\system32\DRIVERS\usbehci.sys
10:42:45.0108 6416 usbehci - ok
10:42:45.0136 6416 [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub C:
\Windows\system32\DRIVERS\usbhub.sys
10:42:45.0142 6416 usbhub - ok
10:42:45.0227 6416 [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci C:
\Windows\system32\DRIVERS\usbohci.sys
10:42:45.0253 6416 usbohci - ok
10:42:45.0327 6416 [ 73188F58FB384E75C4063D29413CEE3D ] usbprint C:
\Windows\system32\DRIVERS\usbprint.sys
10:42:45.0357 6416 usbprint - ok
10:42:45.0394 6416 [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan C:
\Windows\system32\DRIVERS\usbscan.sys
10:42:45.0403 6416 usbscan - ok
10:42:45.0486 6416 [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR C:
\Windows\system32\DRIVERS\USBSTOR.SYS
10:42:45.0509 6416 USBSTOR - ok
10:42:45.0563 6416 [ 81FB2216D3A60D1284455D511797DB3D ] usbuhci C:
\Windows\system32\DRIVERS\usbuhci.sys
10:42:45.0582 6416 usbuhci - ok
10:42:45.0648 6416 [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms C:
\Windows\System32\uxsms.dll
10:42:45.0668 6416 UxSms - ok
10:42:45.0693 6416 [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc C:
\Windows\system32\lsass.exe
10:42:45.0694 6416 VaultSvc - ok
10:42:45.0787 6416 [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot C:
\Windows\system32\drivers\vdrvroot.sys
10:42:45.0815 6416 vdrvroot - ok
10:42:45.0865 6416 [ 8D6B481601D01A456E75C3210F1830BE ] vds C:
\Windows\System32\vds.exe
10:42:45.0872 6416 vds - ok
10:42:45.0964 6416 [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga C:
\Windows\system32\DRIVERS\vgapnp.sys
10:42:45.0978 6416 vga - ok
10:42:45.0998 6416 [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave C:
\Windows\System32\drivers\vga.sys
10:42:46.0017 6416 VgaSave - ok
10:42:46.0073 6416 [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp C:
\Windows\system32\drivers\vhdmp.sys
10:42:46.0095 6416 vhdmp - ok
10:42:46.0146 6416 [ E5689D93FFE4E5D66C0178761240DD54 ] viaide C:
\Windows\system32\drivers\viaide.sys
10:42:46.0147 6416 viaide - ok
10:42:46.0186 6416 [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr C:
\Windows\system32\drivers\volmgr.sys
10:42:46.0196 6416 volmgr - ok
10:42:46.0248 6416 [ A255814907C89BE58B79EF2F189B843B ] volmgrx C:
\Windows\system32\drivers\volmgrx.sys
10:42:46.0253 6416 volmgrx - ok
10:42:46.0292 6416 [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap C:
\Windows\system32\drivers\volsnap.sys
10:42:46.0306 6416 volsnap - ok
10:42:46.0352 6416 [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid C:
\Windows\system32\DRIVERS\vsmraid.sys
10:42:46.0355 6416 vsmraid - ok
10:42:46.0424 6416 [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS C:
\Windows\system32\vssvc.exe
10:42:46.0457 6416 VSS - ok
10:42:46.0508 6416 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus C:
\Windows\system32\DRIVERS\vwifibus.sys
10:42:46.0509 6416 vwifibus - ok
10:42:46.0514 6416 [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt C:
\Windows\system32\DRIVERS\vwififlt.sys
10:42:46.0516 6416 vwififlt - ok
10:42:46.0553 6416 [ 1C9D80CC3849B3788048078C26486E1A ] W32Time C:
\Windows\system32\w32time.dll
10:42:46.0558 6416 W32Time - ok
10:42:46.0604 6416 [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen C:
\Windows\system32\DRIVERS\wacompen.sys
10:42:46.0613 6416 WacomPen - ok
10:42:46.0618 6416 [ 356AFD78A6ED4457169241AC3965230C ] WANARP C:
\Windows\system32\DRIVERS\wanarp.sys
10:42:46.0621 6416 WANARP - ok
10:42:46.0626 6416 [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6 C:
\Windows\system32\DRIVERS\wanarp.sys
10:42:46.0626 6416 Wanarpv6 - ok
10:42:46.0703 6416 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc C:
\Windows\system32\Wat\WatAdminSvc.exe
10:42:46.0716 6416 WatAdminSvc - ok
10:42:47.0295 6416 [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine C:
\Windows\system32\wbengine.exe
10:42:47.0325 6416 wbengine - ok
10:42:47.0359 6416 [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc C:
\Windows\System32\wbiosrvc.dll
10:42:47.0363 6416 WbioSrvc - ok
10:42:47.0391 6416 [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc C:
\Windows\System32\wcncsvc.dll
10:42:47.0413 6416 wcncsvc - ok
10:42:47.0438 6416 [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:
\Windows\System32\WcsPlugInService.dll
10:42:47.0440 6416 WcsPlugInService - ok
10:42:47.0479 6416 [ 72889E16FF12BA0F235467D6091B17DC ] Wd C:
\Windows\system32\DRIVERS\wd.sys
10:42:47.0481 6416 Wd - ok
10:42:47.0531 6416 [ 441BD2D7B4F98134C3A4F9FA570FD250 ] Wdf01000 C:
\Windows\system32\drivers\Wdf01000.sys
10:42:47.0538 6416 Wdf01000 - ok
10:42:47.0555 6416 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost C:
\Windows\system32\wdi.dll
10:42:47.0558 6416 WdiServiceHost - ok
10:42:47.0563 6416 [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost C:
\Windows\system32\wdi.dll
10:42:47.0565 6416 WdiSystemHost - ok
10:42:47.0599 6416 [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient C:
\Windows\System32\webclnt.dll
10:42:47.0603 6416 WebClient - ok
10:42:47.0618 6416 [ C749025A679C5103E575E3B48E092C43 ] Wecsvc C:
\Windows\system32\wecsvc.dll
10:42:47.0622 6416 Wecsvc - ok
10:42:47.0628 6416 [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport C:
\Windows\System32\wercplsupport.dll
10:42:47.0630 6416 wercplsupport - ok
10:42:47.0649 6416 [ 6D137963730144698CBD10F202E9F251 ] WerSvc C:
\Windows\System32\WerSvc.dll
10:42:47.0651 6416 WerSvc - ok
10:42:47.0659 6416 [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf C:
\Windows\system32\DRIVERS\wfplwf.sys
10:42:47.0661 6416 WfpLwf - ok
10:42:47.0689 6416 [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount C:
\Windows\system32\drivers\wimmount.sys
10:42:47.0690 6416 WIMMount - ok
10:42:47.0740 6416 WinDefend - ok
10:42:47.0751 6416 WinHttpAutoProxySvc - ok
10:42:47.0925 6416 [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt C:
\Windows\system32\wbem\WMIsvc.dll
10:42:47.0927 6416 Winmgmt - ok
10:42:48.0035 6416 [ 0C0195C48B6B8582FA6F6373032118DA ] WinRing0_1_2_0 C:
\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys
10:42:48.0035 6416 WinRing0_1_2_0 - ok
10:42:48.0098 6416 [ BCB1310604AA415C4508708975B3931E ] WinRM C:
\Windows\system32\WsmSvc.dll
10:42:48.0141 6416 WinRM - ok
10:42:48.0194 6416 [ FE88B288356E7B47B74B13372ADD906D ] WinUsb C:
\Windows\system32\DRIVERS\WinUsb.sys
10:42:48.0202 6416 WinUsb - ok
10:42:48.0471 6416 [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc C:
\Windows\System32\wlansvc.dll
10:42:48.0493 6416 Wlansvc - ok
10:42:48.0703 6416 [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc C:
\Program Files\Windows Live\Mesh\wlcrasvc.exe
10:42:48.0704 6416 wlcrasvc - ok
10:42:49.0712 6416 [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc C:
\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
10:42:49.0724 6416 wlidsvc - ok
10:42:49.0835 6416 [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi C:
\Windows\system32\drivers\wmiacpi.sys
10:42:49.0860 6416 WmiAcpi - ok
10:42:49.0910 6416 [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv C:
\Windows\system32\wbem\WmiApSrv.exe
10:42:49.0912 6416 wmiApSrv - ok
10:42:49.0946 6416 WMPNetworkSvc - ok
10:42:49.0973 6416 [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc C:
\Windows\System32\wpcsvc.dll
10:42:49.0975 6416 WPCSvc - ok
10:42:50.0005 6416 [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum C:
\Windows\system32\wpdbusenum.dll
10:42:50.0008 6416 WPDBusEnum - ok
10:42:50.0031 6416 [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl C:
\Windows\system32\drivers\ws2ifsl.sys
10:42:50.0032 6416 ws2ifsl - ok
10:42:50.0040 6416 [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc C:
\Windows\system32\wscsvc.dll
10:42:50.0042 6416 wscsvc - ok
10:42:50.0047 6416 WSearch - ok
10:42:50.0122 6416 [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv C:
\Windows\system32\wuaueng.dll
10:42:50.0176 6416 wuauserv - ok
10:42:50.0202 6416 [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf C:
\Windows\system32\drivers\WudfPf.sys
10:42:50.0205 6416 WudfPf - ok
10:42:50.0276 6416 [ CF8D590BE3373029D57AF80914190682 ] WUDFRd C:
\Windows\system32\DRIVERS\WUDFRd.sys
10:42:50.0288 6416 WUDFRd - ok
10:42:50.0321 6416 [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc C:
\Windows\System32\WUDFSvc.dll
10:42:50.0324 6416 wudfsvc - ok
10:42:50.0359 6416 [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc C:
\Windows\System32\wwansvc.dll
10:42:50.0384 6416 WwanSvc - ok
10:42:50.0461 6416 [ 2EE48CFCE7CA8E0DB4C44C7476C0943B ] xusb21 C:
\Windows\system32\DRIVERS\xusb21.sys
10:42:50.0470 6416 xusb21 - ok
10:42:50.0480 6416 ================ Scan global
===============================
10:42:50.0535 6416 [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows
\system32\basesrv.dll
10:42:50.0641 6416 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows
\system32\winsrv.dll
10:42:50.0666 6416 [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows
\system32\winsrv.dll
10:42:50.0734 6416 [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows
\system32\sxssrv.dll
10:42:50.0797 6416 [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows
\system32\services.exe
10:42:50.0801 6416 [Global] - ok
10:42:50.0802 6416 ================ Scan MBR
==================================
10:42:50.0815 6416 [ 7E47294038F58C4CEA4D3608194686EF ] \Device\Harddisk0\DR0
10:42:51.0045 6416 \Device\Harddisk0\DR0 - ok
10:42:51.0046 6416 ================ Scan VBR
==================================
10:42:51.0048 6416 [ 926E463016806F92A651F41545D72DCB ] \Device
\Harddisk0\DR0\Partition1
10:42:51.0049 6416 \Device\Harddisk0\DR0\Partition1 - ok
10:42:51.0104 6416 [ 6CFCBB00E507AB3C47C25B24DF064293 ] \Device
\Harddisk0\DR0\Partition2
10:42:51.0105 6416 \Device\Harddisk0\DR0\Partition2 - ok
10:42:51.0140 6416 [ 1762F9FF5891736FB3A49E20BF98A7A0 ] \Device
\Harddisk0\DR0\Partition3
10:42:51.0141 6416 \Device\Harddisk0\DR0\Partition3 - ok
10:42:51.0141 6416
============================================================
10:42:51.0141 6416 Scan finished
10:42:51.0141 6416
============================================================
10:42:51.0147 5732 Detected object count: 0
10:42:51.0147 5732 Actual detected object count: 0
aswMBR Log
aswMBR version 0.9.9.1665 Copyright© 2011 AVAST Software
Run date: 2012-11-03 11:18:12
-----------------------------
11:18:12.031 OS Version: Windows x64 6.1.7601 Service Pack 1
11:18:12.031 Number of processors: 4 586 0x402
11:18:12.031 ComputerName: Y2KRJ UserName: Kyle
11:18:13.185 Initialize success
11:18:21.484 AVAST engine defs: 12110300
11:18:23.949 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000062
11:18:23.949 Disk 0 Vendor: WDC_____ 01.0 Size: 953674MB BusType: 8
11:18:23.980 Disk 0 MBR read successfully
11:18:23.980 Disk 0 MBR scan
11:18:23.980 Disk 0 unknown MBR code
11:18:23.996 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB
offset 2048
11:18:24.011 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 942017 MB
offset 206848
11:18:24.043 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 11555 MB
offset 1929457664
11:18:24.089 Disk 0 scanning C:\Windows\system32\drivers
11:18:36.741 Service scanning
11:18:57.754 Modules scanning
11:18:57.754 Disk 0 trace - called modules:
11:18:57.785 ntoskrnl.exe CLASSPNP.SYS disk.sys storport.sys hal.dll
ahcix64s.sys
11:18:57.801 1 nt!IofCallDriver -> \Device\Harddisk0\DR0
[0xfffffa8008288060]
11:18:57.801 3 CLASSPNP.SYS[fffff88001a0143f] -> nt!IofCallDriver ->
\Device\00000062[0xfffffa80074ce9c0]
11:18:59.423 AVAST engine scan C:\Windows
11:19:02.231 AVAST engine scan C:\Windows\system32
11:22:02.427 AVAST engine scan C:\Windows\system32\drivers
11:22:21.491 AVAST engine scan C:\Users\Kyle
11:54:31.638 AVAST engine scan C:\ProgramData
11:59:08.998 Scan finished successfully
12:29:24.827 Disk 0 MBR has been saved successfully to "C:\Users\Kyle
\Desktop\MBR.dat"
12:29:24.831 The log file has been saved successfully to "C:\Users\Kyle
\Desktop\aswMBR.txt"
ESET Log
C:\ProgramData\Tarma Installer\{2E1037EA-038A-425F-86B9-
6CD19B8497E9}\_Setupx.dll a variant of Win32/Adware.Yontoo.B application
cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows
\Temporary Internet Files\Content.IE5\0PS72R2M\WECPSetup[1].exe a variant of
Win32/InstallCore.W application cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows
\Temporary Internet Files\Content.IE5\0PS72R2M\WECPSetup[2].exe a variant of
Win32/InstallCore.W application cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows
\Temporary Internet Files\Content.IE5\FZG8CKJ5\WECPSetup[1].exe a variant of
Win32/InstallCore.W application cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows
\Temporary Internet Files\Content.IE5\FZG8CKJ5\WECPSetup[2].exe a variant of
Win32/InstallCore.W application cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows
\Temporary Internet Files\Content.IE5\LIXMVQOA\WECPSetup[1].exe a variant of
Win32/InstallCore.W application cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows
\Temporary Internet Files\Content.IE5\LIXMVQOA\WECPSetup[2].exe a variant of
Win32/InstallCore.W application cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows
\Temporary Internet Files\Content.IE5\LIXMVQOA\WECPSetup[3].exe a variant of
Win32/InstallCore.W application cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows
\Temporary Internet Files\Content.IE5\LIXMVQOA\WECPSetup[4].exe a variant of
Win32/InstallCore.W application cleaned by deleting - quarantined
#4
narenxp
-
- BC Advisor
-
- 16,365 posts
Forum Addict
- Gender:Male
- Location:India
Posted 03 November 2012 - 04:05 PM
Download
Malwarebytes
Install,update and run a full scan
Click on Show results.Right click on the list ,select all and remove them.
Post the generated log here
Download
mini toolbox
Checkmark following boxes:
Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points
Click Go and post the result.
Download
Farbar service scanner
Checkmark all the boxes
Click on "Scan".
Please copy and paste the log to your reply.
Download
adware cleaner
Launch it click on Delete
A log should be generated after scan ,post it here
Download
Junkware removal tool
For vista and windows 7 right click on the tool and select run as administrator
After scan gets completed,post the generated log here.
Malwarebytes
Install,update and run a full scan
Click on Show results.Right click on the list ,select all and remove them.
Post the generated log here
Download
mini toolbox
Checkmark following boxes:
Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points
Click Go and post the result.
Download
Farbar service scanner
Checkmark all the boxes
Click on "Scan".
Please copy and paste the log to your reply.
Download
adware cleaner
Launch it click on Delete
A log should be generated after scan ,post it here
Download
Junkware removal tool
For vista and windows 7 right click on the tool and select run as administrator
After scan gets completed,post the generated log here.
#5
Y2Krj
-
- Members
-
- 15 posts
Member
Posted 04 November 2012 - 12:11 AM
MBAM Logs
Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org
Database version: v2012.11.03.08
Windows 7 Service Pack 1 x64 NTFS (Safe Mode/Networking)
Internet Explorer 9.0.8112.16421
Kyle :: Y2KRJ [administrator]
11/3/2012 2:06:48 PM
mbam-log-2012-11-03 (14-06-48).txt
Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 454343
Time elapsed: 56 minute(s), 49 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
Mini Toolbox Logs
MiniToolBox by Farbar Version: 23-07-2012
Ran by Kyle (administrator) on 03-11-2012 at 15:05:28
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Network
***************************************************************************
========================= Flush DNS: ===================================
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
========================= IE Proxy Settings: ==============================
Proxy is not enabled.
No Proxy Server is set.
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= FF Proxy Settings: ==============================
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
========================= Hosts content: =================================
127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
There are 15091 more lines starting with "127.0.0.1"
========================= IP Configuration: ================================
Realtek PCIe GBE Family Controller = Local Area Connection (Connected)
Qualcomm Atheros 802.11 a/b/g/n Dualband Wireless Network Module = Wireless Network Connection (Media disconnected)
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Local Area Connection" nexthop=192.168.1.1 publish=Yes
add address name="Local Area Connection" address=192.168.1.10 mask=255.255.255.0
popd
# End of IPv4 configuration
Windows IP Configuration
Host Name . . . . . . . . . . . . : Y2Krj
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
Wireless LAN adapter Wireless Network Connection:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Qualcomm Atheros 802.11 a/b/g/n Dualband Wireless Network Module
Physical Address. . . . . . . . . : 00-26-82-4C-CA-53
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : F4-CE-46-2E-47-BE
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::2d2d:60da:776a:32a7%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.10(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 236497157
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-E2-17-0E-F4-CE-46-2E-47-BE
DNS Servers . . . . . . . . . . . : 8.8.8.8
8.8.4.4
NetBIOS over Tcpip. . . . . . . . : Enabled
Tunnel adapter isatap.{5F14A3FE-3EFC-453A-B61C-B837A2B1C3FE}:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Tunnel adapter Local Area Connection* 9:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: google-public-dns-a.google.com
Address: 8.8.8.8
Name: google.com
Addresses: 2001:4860:4007:801::1007
74.125.224.206
74.125.224.194
74.125.224.193
74.125.224.195
74.125.224.196
74.125.224.199
74.125.224.197
74.125.224.198
74.125.224.200
74.125.224.201
74.125.224.192
Pinging google.com [74.125.224.206] with 32 bytes of data:
Reply from 74.125.224.206: bytes=32 time=24ms TTL=55
Reply from 74.125.224.206: bytes=32 time=23ms TTL=55
Ping statistics for 74.125.224.206:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 23ms, Maximum = 24ms, Average = 23ms
Server: google-public-dns-a.google.com
Address: 8.8.8.8
Name: yahoo.com
Addresses: 98.139.183.24
98.138.253.109
72.30.38.140
Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=495ms TTL=52
Reply from 98.139.183.24: bytes=32 time=595ms TTL=52
Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 495ms, Maximum = 595ms, Average = 545ms
Server: google-public-dns-a.google.com
Address: 8.8.8.8
Name: bleepingcomputer.com
Address: 208.43.87.2
Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Request timed out.
Request timed out.
Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...00 26 82 4c ca 53 ......Qualcomm Atheros 802.11 a/b/g/n Dualband Wireless Network Module
10...f4 ce 46 2e 47 be ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.10 276
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.10 276
192.168.1.10 255.255.255.255 On-link 192.168.1.10 276
192.168.1.255 255.255.255.255 On-link 192.168.1.10 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.10 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.10 276
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 192.168.1.1 Default
===========================================================================
IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
10 276 fe80::/64 On-link
10 276 fe80::2d2d:60da:776a:32a7/128
On-link
1 306 ff00::/8 On-link
10 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
========================= Event log errors: ===============================
Application errors:
==================
Error: (11/03/2012 00:30:36 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (11/01/2012 09:33:19 AM) (Source: Application Error) (User: )
Description: Faulting application name: iTunes.exe, version: 10.7.0.21, time stamp: 0x504d85d9
Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp: 0x4ec49b8f
Exception code: 0xc0000005
Fault offset: 0x0002e41b
Faulting process id: 0x7fc
Faulting application start time: 0xiTunes.exe0
Faulting application path: iTunes.exe1
Faulting module path: iTunes.exe2
Report Id: iTunes.exe3
Error: (10/31/2012 00:30:29 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0"1".
Dependent Assembly Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
Error: (10/30/2012 00:30:25 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0"1".
Dependent Assembly Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
Error: (10/29/2012 08:09:36 PM) (Source: Application Error) (User: )
Description: Faulting application name: XSplit.Core.exe, version: 1.1.1209.601, time stamp: 0x504889f1
Faulting module name: VHMediaCOM.dll, version: 2.0.0.143, time stamp: 0x503cbb30
Exception code: 0xc0000005
Fault offset: 0x000686b6
Faulting process id: 0x%9
Faulting application start time: 0xXSplit.Core.exe0
Faulting application path: XSplit.Core.exe1
Faulting module path: XSplit.Core.exe2
Report Id: XSplit.Core.exe3
Error: (10/27/2012 00:30:46 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0"1".
Dependent Assembly Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
Error: (10/26/2012 00:46:59 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0"1".
Dependent Assembly Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
Error: (10/25/2012 08:42:14 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0"1".
Dependent Assembly Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
Error: (10/24/2012 00:41:34 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0"1".
Dependent Assembly Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
Error: (10/23/2012 09:27:17 AM) (Source: Application Hang) (User: )
Description: The program iTunes.exe version 10.7.0.21 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 14dc
Start Time: 01cdb13b1c2a4c42
Termination Time: 70
Application Path: C:\Program Files (x86)\iTunes\iTunes.exe
Report Id:
System errors:
=============
Error: (11/03/2012 03:03:14 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068
Error: (11/03/2012 03:03:14 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068
Error: (11/03/2012 03:03:14 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068
Error: (11/03/2012 03:01:08 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068
Error: (11/03/2012 03:01:08 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068
Error: (11/03/2012 03:01:08 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068
Error: (11/03/2012 02:56:08 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068
Error: (11/03/2012 02:56:08 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068
Error: (11/03/2012 02:56:08 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068
Error: (11/03/2012 02:54:00 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068
Microsoft Office Sessions:
=========================
Error: (06/02/2011 01:04:41 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 10 seconds with 0 seconds of active time. This session ended with a crash.
=========================== Installed Programs ============================
Update for Microsoft Office 2007 (KB2508958)
µTorrent (Version: 3.1.0)
Acrobat.com (Version: 2.1.0)
Acrobat.com (Version: 2.1.0.0)
Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.1.102.63)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.1.102.63)
Adobe Reader X (10.1.4) (Version: 10.1.4)
AMD Catalyst Install Manager (Version: 8.0.873.0)
Antares Autotune Evo VST RTAS v6.0.9
Any Video Converter 3.4.0
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
Audacity 1.2.6
Bing Bar (Version: 7.0.850.0)
Bonjour (Version: 3.0.0.10)
CameraHelperMsi (Version: 13.50.854.0)
Catalyst Control Center InstallProxy (Version: 2009.0908.2225.38429)
Catalyst Control Center InstallProxy (Version: 2012.0405.2205.37728)
CCleaner (Version: 3.24)
Combined Community Codec Pack 2011-11-11 (Version: 2011.11.11.0)
ComicRack v0.9.146 (Version: v0.9.146)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
CoreAAC Audio Decoder (remove only)
D3DX10 (Version: 15.4.2368.0902)
DFOLauncher
Diablo III (Version: 1.0.4.11327)
DirectVobSub (remove only)
DirectX for Managed Code Update (Summer 2004) (Version: 9.02.2904)
EA SPORTS Game Face Browser Plugin 1.5.3.0 (Version: 1.5.3.0)
erLT (Version: 1.20.138.34)
ESET Online Scanner v3
FINAL FANTASY VII (Version: 1.0)
Game Booster 3 (Version: 3.4)
Google Chrome (Version: 22.0.1229.94)
Google Talk Plugin (Version: 3.10.2.10212)
Google Update Helper (Version: 1.3.21.123)
Google Updater (Version: 2.4.2432.1652)
Hardware Diagnostic Tools (Version: 6.0.5247.34)
HP Customer Experience Enhancements (Version: 6.0.1.3)
HP Odometer (Version: 2.10.0000)
HP Support Information (Version: 10.1.0002)
IMinent Toolbar (Version: 3.26.0)
iTunes (Version: 10.7.0.21)
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 26 (64-bit) (Version: 6.0.260)
Java™ 6 Update 29 (Version: 6.0.290)
JavaFX 2.1.1 (Version: 2.1.1)
Junk Mail filter update (Version: 15.4.3502.0922)
K-Lite Codec Pack 5.2.0 (64-bit) (Version: 5.2.0)
Kaspersky Anti-Virus 2013 (Version: 13.0.1.4190)
LADSPA_plugins-win-0.4.15
Logitech Vid HD (Version: 7.2 (7240))
Logitech Webcam Software (Version: 2.30)
LWS Facebook (Version: 13.50.854.0)
LWS Gallery (Version: 13.50.854.0)
LWS Help_main (Version: 13.50.862.0)
LWS Launcher (Version: 13.50.859.0)
LWS Motion Detection (Version: 13.30.1395.0)
LWS Pictures And Video (Version: 13.50.861.0)
LWS Twitter (Version: 13.30.1346.0)
LWS Video Mask Maker (Version: 13.30.1379.0)
LWS VideoEffects (Version: 13.30.1379.0)
LWS Webcam Software (Version: 13.31.1038.0)
LWS WLM Plugin (Version: 1.30.1201.0)
LWS YouTube Plugin (Version: 13.31.1038.0)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
Matroska Pack
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft .NET Framework 4 Extended (Version: 4.0.30320)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Live Search Toolbar (Version: 3.0.566.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 60 day trial
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
MP3 Skype Recorder (Version: 3.1.3)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MyFreeCodec
NVIDIA 3D Vision Controller Driver (Version: 280.19)
NVIDIA 3D Vision Controller Driver 301.42 (Version: 301.42)
NVIDIA 3D Vision Driver 306.97 (Version: 306.97)
NVIDIA Control Panel 306.97 (Version: 306.97)
NVIDIA Graphics Driver 306.97 (Version: 306.97)
NVIDIA HD Audio Driver 1.3.16.0 (Version: 1.3.16.0)
NVIDIA Install Application (Version: 2.1002.85.551)
NVIDIA PhysX (Version: 9.12.0213)
NVIDIA PhysX System Software 9.12.0213 (Version: 9.12.0213)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.0697)
NVIDIA Update 1.10.8 (Version: 1.10.8)
NVIDIA Update Components (Version: 1.10.8)
Orban/Coding Technologies AAC/aacPlus Player Plugin™ 1.0
Plants vs. Zombies
PlayReady PC Runtime amd64 (Version: 1.3.0)
Pop Buddy 5.7
Project64 1.6 (Version: 1.6)
QuickTime (Version: 7.72.80.56)
RAIDXpert (Version: 3.2.1540.5)
Raptr
Real Alternative 2.0.2 (Version: 2.0.2)
Realtek High Definition Audio Driver (Version: 6.0.1.6196)
Recovery Manager (Version: 5.5.2216)
RPG Maker VX (Version: 1.02)
RPG Maker VX RTP (Version: 1.02)
runtime64 (Version: 1.0.0)
Seagate Dashboard (Version: 1.1.0.1421)
Sid Meier's Civilization V
Skype Click to Call (Version: 6.2.10687)
Skype™ 5.10 (Version: 5.10.116)
Smart Defrag 2 (Version: 2.6)
Spotify (Version: 0.8.5.1333.g822e0de8)
StarCraft
Steam (Version: 1.0.0.0)
TuxGuitar (Version: 1.2)
Unity Web Player (Version: )
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update Service (Version: 4.1.0)
Veetle TV 0.9.18 (Version: 0.9.18)
Ventrilo Client for Windows x64 (Version: 3.0.5.0)
Virtual Audio Cable 4.10
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
Visual C++ 8.0 Runtime Setup Package (x64) (Version: 9.0.0.623)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
VLC media player 2.0.1 (Version: 2.0.1)
VST Bridge 1.1
Warcraft III
Windows Essentials Media Codec Pack 3.4 [64-Bit] (Version: 3.4)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinPatrol (Version: 20.5.2011.0)
WinRAR archiver
Xfire (remove only)
XSplit (Version: 1.1.1209.0601)
========================= Memory info: ===================================
Percentage of memory in use: 25%
Total physical RAM: 8183.89 MB
Available physical RAM: 6110.52 MB
Total Pagefile: 16365.97 MB
Available Pagefile: 14547 MB
Total Virtual: 4095.88 MB
Available Virtual: 3984.39 MB
========================= Partitions: =====================================
1 Drive c: (C://) (Fixed) (Total:919.94 GB) (Free:630.52 GB) NTFS
2 Drive d: (FACTORY_IMAGE) (Fixed) (Total:11.28 GB) (Free:0.47 GB) NTFS
========================= Users: ========================================
User accounts for \\Y2KRJ
Administrator Guest Kyle
Mcx1-Y2KRJ UpdatusUser
========================= Restore Points ==================================
**** End of log ****
Farbar Logs
Farbar Service Scanner Version: 03-11-2012
Ran by Kyle (administrator) on 03-11-2012 at 15:10:20
Running from "C:\Users\Kyle\Desktop"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Network
****************************************************************
Internet Services:
============
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.
Windows Firewall:
=============
Firewall Disabled Policy:
==================
System Restore:
============
SDRSVC Service is not running. Checking service configuration:
The start type of SDRSVC service is OK.
The ImagePath of SDRSVC service is OK.
The ServiceDll of SDRSVC service is OK.
VSS Service is not running. Checking service configuration:
The start type of VSS service is OK.
The ImagePath of VSS service is OK.
System Restore Disabled Policy:
========================
Action Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is OK.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.
Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.
BITS Service is not running. Checking service configuration:
The start type of BITS service is set to Demand. The default start type is Auto.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.
EventSystem Service is not running. Checking service configuration:
The start type of EventSystem service is OK.
The ImagePath of EventSystem service is OK.
The ServiceDll of EventSystem service is OK.
Windows Autoupdate Disabled Policy:
============================
Windows Defender:
==============
Other Services:
==============
File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
**** End of log ****
AdwCleaner Log
# AdwCleaner v2.006 - Logfile created 11/03/2012 at 15:11:30
# Updated 30/10/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Kyle - Y2KRJ
# Boot Mode : Safe mode with networking
# Running from : C:\Users\Kyle\Desktop\adwcleaner.exe
# Option [Delete]
***** [Services] *****
***** [Files / Folders] *****
File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\IMinent toolbar
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Users\Kyle\AppData\Local\APN
Folder Deleted : C:\Users\Kyle\AppData\LocalLow\Conduit
***** [Registry] *****
Key Deleted : HKCU\Software\AppDataLow\Software
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\IGearSettings
Key Deleted : HKCU\Software\Iminent
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\incredibar.com
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler
Key Deleted : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Features\482AA67AD25E6E74E9F48BD5FBE8533C
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Products\482AA67AD25E6E74E9F48BD5FBE8533C
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1
Key Deleted : HKLM\SOFTWARE\Classes\TBSB01620.IEToolbar
Key Deleted : HKLM\SOFTWARE\Classes\TBSB01620.IEToolbar.1
Key Deleted : HKLM\SOFTWARE\Classes\TBSB01620.TBSB01620
Key Deleted : HKLM\SOFTWARE\Classes\TBSB01620.TBSB01620.3
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.TBSB01620
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.TBSB01620.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
Key Deleted : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook
Key Deleted : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook.1
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\incredibar.com
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{58124A0B-DC32-4180-9BFF-E0E21AE34026}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4BD8E034-E0F4-4509-A753-467A8E854CD8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Deleted : HKLM\SOFTWARE\Software
Key Deleted : HKLM\SOFTWARE\Tarma Installer
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
***** [Internet Browsers] *****
-\\ Internet Explorer v9.0.8112.16421
[OK] Registry is clean.
-\\ Google Chrome v22.0.1229.94
File : C:\Users\Kyle\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] File is clean.
*************************
AdwCleaner[S2].txt - [10194 octets] - [03/11/2012 15:11:30]
########## EOF - C:\AdwCleaner[S2].txt - [10255 octets] ##########
JRT Logs
Junkware Removal Tool (JRT) by Thisisu
Version: 2.6.0 (11.03.2012)
OS: Windows 7 Home Premium x64
Ran by Kyle on Sat 11/03/2012 at 21:55:46.48
Blog: http://thisisudax.blogspot.com
**************************************************************
*** Services: 0 Detections
*** Registry Values: 0 Detections
*** Registry Keys: 0 Detections
*** Files: 0 Detections
*** Folders: 0 Detections
*** Event Viewer Logs - Cleared
**************************************************************
Scan was completed on Sat 11/03/2012 at 22:08:22.70
End of Report
Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org
Database version: v2012.11.03.08
Windows 7 Service Pack 1 x64 NTFS (Safe Mode/Networking)
Internet Explorer 9.0.8112.16421
Kyle :: Y2KRJ [administrator]
11/3/2012 2:06:48 PM
mbam-log-2012-11-03 (14-06-48).txt
Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 454343
Time elapsed: 56 minute(s), 49 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
Mini Toolbox Logs
MiniToolBox by Farbar Version: 23-07-2012
Ran by Kyle (administrator) on 03-11-2012 at 15:05:28
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Network
***************************************************************************
========================= Flush DNS: ===================================
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
========================= IE Proxy Settings: ==============================
Proxy is not enabled.
No Proxy Server is set.
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= FF Proxy Settings: ==============================
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
========================= Hosts content: =================================
127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
There are 15091 more lines starting with "127.0.0.1"
========================= IP Configuration: ================================
Realtek PCIe GBE Family Controller = Local Area Connection (Connected)
Qualcomm Atheros 802.11 a/b/g/n Dualband Wireless Network Module = Wireless Network Connection (Media disconnected)
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Local Area Connection" nexthop=192.168.1.1 publish=Yes
add address name="Local Area Connection" address=192.168.1.10 mask=255.255.255.0
popd
# End of IPv4 configuration
Windows IP Configuration
Host Name . . . . . . . . . . . . : Y2Krj
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
Wireless LAN adapter Wireless Network Connection:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Qualcomm Atheros 802.11 a/b/g/n Dualband Wireless Network Module
Physical Address. . . . . . . . . : 00-26-82-4C-CA-53
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
Physical Address. . . . . . . . . : F4-CE-46-2E-47-BE
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::2d2d:60da:776a:32a7%10(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.10(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 236497157
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-E2-17-0E-F4-CE-46-2E-47-BE
DNS Servers . . . . . . . . . . . : 8.8.8.8
8.8.4.4
NetBIOS over Tcpip. . . . . . . . : Enabled
Tunnel adapter isatap.{5F14A3FE-3EFC-453A-B61C-B837A2B1C3FE}:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Tunnel adapter Local Area Connection* 9:
Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: google-public-dns-a.google.com
Address: 8.8.8.8
Name: google.com
Addresses: 2001:4860:4007:801::1007
74.125.224.206
74.125.224.194
74.125.224.193
74.125.224.195
74.125.224.196
74.125.224.199
74.125.224.197
74.125.224.198
74.125.224.200
74.125.224.201
74.125.224.192
Pinging google.com [74.125.224.206] with 32 bytes of data:
Reply from 74.125.224.206: bytes=32 time=24ms TTL=55
Reply from 74.125.224.206: bytes=32 time=23ms TTL=55
Ping statistics for 74.125.224.206:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 23ms, Maximum = 24ms, Average = 23ms
Server: google-public-dns-a.google.com
Address: 8.8.8.8
Name: yahoo.com
Addresses: 98.139.183.24
98.138.253.109
72.30.38.140
Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=495ms TTL=52
Reply from 98.139.183.24: bytes=32 time=595ms TTL=52
Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 495ms, Maximum = 595ms, Average = 545ms
Server: google-public-dns-a.google.com
Address: 8.8.8.8
Name: bleepingcomputer.com
Address: 208.43.87.2
Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Request timed out.
Request timed out.
Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
11...00 26 82 4c ca 53 ......Qualcomm Atheros 802.11 a/b/g/n Dualband Wireless Network Module
10...f4 ce 46 2e 47 be ......Realtek PCIe GBE Family Controller
1...........................Software Loopback Interface 1
16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.10 276
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.10 276
192.168.1.10 255.255.255.255 On-link 192.168.1.10 276
192.168.1.255 255.255.255.255 On-link 192.168.1.10 276
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.10 276
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.10 276
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
0.0.0.0 0.0.0.0 192.168.1.1 Default
===========================================================================
IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
10 276 fe80::/64 On-link
10 276 fe80::2d2d:60da:776a:32a7/128
On-link
1 306 ff00::/8 On-link
10 276 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
========================= Event log errors: ===============================
Application errors:
==================
Error: (11/03/2012 00:30:36 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Error: (11/01/2012 09:33:19 AM) (Source: Application Error) (User: )
Description: Faulting application name: iTunes.exe, version: 10.7.0.21, time stamp: 0x504d85d9
Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp: 0x4ec49b8f
Exception code: 0xc0000005
Fault offset: 0x0002e41b
Faulting process id: 0x7fc
Faulting application start time: 0xiTunes.exe0
Faulting application path: iTunes.exe1
Faulting module path: iTunes.exe2
Report Id: iTunes.exe3
Error: (10/31/2012 00:30:29 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0"1".
Dependent Assembly Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
Error: (10/30/2012 00:30:25 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0"1".
Dependent Assembly Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
Error: (10/29/2012 08:09:36 PM) (Source: Application Error) (User: )
Description: Faulting application name: XSplit.Core.exe, version: 1.1.1209.601, time stamp: 0x504889f1
Faulting module name: VHMediaCOM.dll, version: 2.0.0.143, time stamp: 0x503cbb30
Exception code: 0xc0000005
Fault offset: 0x000686b6
Faulting process id: 0x%9
Faulting application start time: 0xXSplit.Core.exe0
Faulting application path: XSplit.Core.exe1
Faulting module path: XSplit.Core.exe2
Report Id: XSplit.Core.exe3
Error: (10/27/2012 00:30:46 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0"1".
Dependent Assembly Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
Error: (10/26/2012 00:46:59 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0"1".
Dependent Assembly Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
Error: (10/25/2012 08:42:14 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0"1".
Dependent Assembly Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
Error: (10/24/2012 00:41:34 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0"1".
Dependent Assembly Native.XSplitBroadcaster.exe,type="win32",version="1.0.0.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.
Error: (10/23/2012 09:27:17 AM) (Source: Application Hang) (User: )
Description: The program iTunes.exe version 10.7.0.21 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.
Process ID: 14dc
Start Time: 01cdb13b1c2a4c42
Termination Time: 70
Application Path: C:\Program Files (x86)\iTunes\iTunes.exe
Report Id:
System errors:
=============
Error: (11/03/2012 03:03:14 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068
Error: (11/03/2012 03:03:14 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068
Error: (11/03/2012 03:03:14 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068
Error: (11/03/2012 03:01:08 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068
Error: (11/03/2012 03:01:08 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068
Error: (11/03/2012 03:01:08 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068
Error: (11/03/2012 02:56:08 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068
Error: (11/03/2012 02:56:08 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068
Error: (11/03/2012 02:56:08 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068
Error: (11/03/2012 02:54:00 PM) (Source: Service Control Manager) (User: )
Description: The Computer Browser service depends on the Server service which failed to start because of the following error:
%%1068
Microsoft Office Sessions:
=========================
Error: (06/02/2011 01:04:41 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 10 seconds with 0 seconds of active time. This session ended with a crash.
=========================== Installed Programs ============================
Update for Microsoft Office 2007 (KB2508958)
µTorrent (Version: 3.1.0)
Acrobat.com (Version: 2.1.0)
Acrobat.com (Version: 2.1.0.0)
Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 11 ActiveX 64-bit (Version: 11.1.102.63)
Adobe Flash Player 11 Plugin 64-bit (Version: 11.1.102.63)
Adobe Reader X (10.1.4) (Version: 10.1.4)
AMD Catalyst Install Manager (Version: 8.0.873.0)
Antares Autotune Evo VST RTAS v6.0.9
Any Video Converter 3.4.0
Apple Application Support (Version: 2.2.2)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
Audacity 1.2.6
Bing Bar (Version: 7.0.850.0)
Bonjour (Version: 3.0.0.10)
CameraHelperMsi (Version: 13.50.854.0)
Catalyst Control Center InstallProxy (Version: 2009.0908.2225.38429)
Catalyst Control Center InstallProxy (Version: 2012.0405.2205.37728)
CCleaner (Version: 3.24)
Combined Community Codec Pack 2011-11-11 (Version: 2011.11.11.0)
ComicRack v0.9.146 (Version: v0.9.146)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
CoreAAC Audio Decoder (remove only)
D3DX10 (Version: 15.4.2368.0902)
DFOLauncher
Diablo III (Version: 1.0.4.11327)
DirectVobSub (remove only)
DirectX for Managed Code Update (Summer 2004) (Version: 9.02.2904)
EA SPORTS Game Face Browser Plugin 1.5.3.0 (Version: 1.5.3.0)
erLT (Version: 1.20.138.34)
ESET Online Scanner v3
FINAL FANTASY VII (Version: 1.0)
Game Booster 3 (Version: 3.4)
Google Chrome (Version: 22.0.1229.94)
Google Talk Plugin (Version: 3.10.2.10212)
Google Update Helper (Version: 1.3.21.123)
Google Updater (Version: 2.4.2432.1652)
Hardware Diagnostic Tools (Version: 6.0.5247.34)
HP Customer Experience Enhancements (Version: 6.0.1.3)
HP Odometer (Version: 2.10.0000)
HP Support Information (Version: 10.1.0002)
IMinent Toolbar (Version: 3.26.0)
iTunes (Version: 10.7.0.21)
Java 7 Update 9 (Version: 7.0.90)
Java Auto Updater (Version: 2.1.9.0)
Java™ 6 Update 26 (64-bit) (Version: 6.0.260)
Java™ 6 Update 29 (Version: 6.0.290)
JavaFX 2.1.1 (Version: 2.1.1)
Junk Mail filter update (Version: 15.4.3502.0922)
K-Lite Codec Pack 5.2.0 (64-bit) (Version: 5.2.0)
Kaspersky Anti-Virus 2013 (Version: 13.0.1.4190)
LADSPA_plugins-win-0.4.15
Logitech Vid HD (Version: 7.2 (7240))
Logitech Webcam Software (Version: 2.30)
LWS Facebook (Version: 13.50.854.0)
LWS Gallery (Version: 13.50.854.0)
LWS Help_main (Version: 13.50.862.0)
LWS Launcher (Version: 13.50.859.0)
LWS Motion Detection (Version: 13.30.1395.0)
LWS Pictures And Video (Version: 13.50.861.0)
LWS Twitter (Version: 13.30.1346.0)
LWS Video Mask Maker (Version: 13.30.1379.0)
LWS VideoEffects (Version: 13.30.1379.0)
LWS Webcam Software (Version: 13.31.1038.0)
LWS WLM Plugin (Version: 1.30.1201.0)
LWS YouTube Plugin (Version: 13.31.1038.0)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
Matroska Pack
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30320)
Microsoft .NET Framework 4 Extended (Version: 4.0.30320)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Live Search Toolbar (Version: 3.0.566.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 60 day trial
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
MP3 Skype Recorder (Version: 3.1.3)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MyFreeCodec
NVIDIA 3D Vision Controller Driver (Version: 280.19)
NVIDIA 3D Vision Controller Driver 301.42 (Version: 301.42)
NVIDIA 3D Vision Driver 306.97 (Version: 306.97)
NVIDIA Control Panel 306.97 (Version: 306.97)
NVIDIA Graphics Driver 306.97 (Version: 306.97)
NVIDIA HD Audio Driver 1.3.16.0 (Version: 1.3.16.0)
NVIDIA Install Application (Version: 2.1002.85.551)
NVIDIA PhysX (Version: 9.12.0213)
NVIDIA PhysX System Software 9.12.0213 (Version: 9.12.0213)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.0697)
NVIDIA Update 1.10.8 (Version: 1.10.8)
NVIDIA Update Components (Version: 1.10.8)
Orban/Coding Technologies AAC/aacPlus Player Plugin™ 1.0
Plants vs. Zombies
PlayReady PC Runtime amd64 (Version: 1.3.0)
Pop Buddy 5.7
Project64 1.6 (Version: 1.6)
QuickTime (Version: 7.72.80.56)
RAIDXpert (Version: 3.2.1540.5)
Raptr
Real Alternative 2.0.2 (Version: 2.0.2)
Realtek High Definition Audio Driver (Version: 6.0.1.6196)
Recovery Manager (Version: 5.5.2216)
RPG Maker VX (Version: 1.02)
RPG Maker VX RTP (Version: 1.02)
runtime64 (Version: 1.0.0)
Seagate Dashboard (Version: 1.1.0.1421)
Sid Meier's Civilization V
Skype Click to Call (Version: 6.2.10687)
Skype™ 5.10 (Version: 5.10.116)
Smart Defrag 2 (Version: 2.6)
Spotify (Version: 0.8.5.1333.g822e0de8)
StarCraft
Steam (Version: 1.0.0.0)
TuxGuitar (Version: 1.2)
Unity Web Player (Version: )
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2473228) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update Service (Version: 4.1.0)
Veetle TV 0.9.18 (Version: 0.9.18)
Ventrilo Client for Windows x64 (Version: 3.0.5.0)
Virtual Audio Cable 4.10
Visual C++ 2008 x86 Runtime - (v9.0.30729) (Version: 9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (Version: 9.0.30729.01)
Visual C++ 8.0 Runtime Setup Package (x64) (Version: 9.0.0.623)
Visual Studio 2008 x64 Redistributables (Version: 10.0.0.2)
VLC media player 2.0.1 (Version: 2.0.1)
VST Bridge 1.1
Warcraft III
Windows Essentials Media Codec Pack 3.4 [64-Bit] (Version: 3.4)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
WinPatrol (Version: 20.5.2011.0)
WinRAR archiver
Xfire (remove only)
XSplit (Version: 1.1.1209.0601)
========================= Memory info: ===================================
Percentage of memory in use: 25%
Total physical RAM: 8183.89 MB
Available physical RAM: 6110.52 MB
Total Pagefile: 16365.97 MB
Available Pagefile: 14547 MB
Total Virtual: 4095.88 MB
Available Virtual: 3984.39 MB
========================= Partitions: =====================================
1 Drive c: (C://) (Fixed) (Total:919.94 GB) (Free:630.52 GB) NTFS
2 Drive d: (FACTORY_IMAGE) (Fixed) (Total:11.28 GB) (Free:0.47 GB) NTFS
========================= Users: ========================================
User accounts for \\Y2KRJ
Administrator Guest Kyle
Mcx1-Y2KRJ UpdatusUser
========================= Restore Points ==================================
**** End of log ****
Farbar Logs
Farbar Service Scanner Version: 03-11-2012
Ran by Kyle (administrator) on 03-11-2012 at 15:10:20
Running from "C:\Users\Kyle\Desktop"
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Network
****************************************************************
Internet Services:
============
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.
Windows Firewall:
=============
Firewall Disabled Policy:
==================
System Restore:
============
SDRSVC Service is not running. Checking service configuration:
The start type of SDRSVC service is OK.
The ImagePath of SDRSVC service is OK.
The ServiceDll of SDRSVC service is OK.
VSS Service is not running. Checking service configuration:
The start type of VSS service is OK.
The ImagePath of VSS service is OK.
System Restore Disabled Policy:
========================
Action Center:
============
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is OK.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.
Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.
BITS Service is not running. Checking service configuration:
The start type of BITS service is set to Demand. The default start type is Auto.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.
EventSystem Service is not running. Checking service configuration:
The start type of EventSystem service is OK.
The ImagePath of EventSystem service is OK.
The ServiceDll of EventSystem service is OK.
Windows Autoupdate Disabled Policy:
============================
Windows Defender:
==============
Other Services:
==============
File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
**** End of log ****
AdwCleaner Log
# AdwCleaner v2.006 - Logfile created 11/03/2012 at 15:11:30
# Updated 30/10/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Kyle - Y2KRJ
# Boot Mode : Safe mode with networking
# Running from : C:\Users\Kyle\Desktop\adwcleaner.exe
# Option [Delete]
***** [Services] *****
***** [Files / Folders] *****
File Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\IMinent toolbar
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Users\Kyle\AppData\Local\APN
Folder Deleted : C:\Users\Kyle\AppData\LocalLow\Conduit
***** [Registry] *****
Key Deleted : HKCU\Software\AppDataLow\Software
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\IGearSettings
Key Deleted : HKCU\Software\Iminent
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\incredibar.com
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE
Key Deleted : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler
Key Deleted : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Features\482AA67AD25E6E74E9F48BD5FBE8533C
Key Deleted : HKLM\SOFTWARE\Classes\Installer\Products\482AA67AD25E6E74E9F48BD5FBE8533C
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils
Key Deleted : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper
Key Deleted : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1
Key Deleted : HKLM\SOFTWARE\Classes\TBSB01620.IEToolbar
Key Deleted : HKLM\SOFTWARE\Classes\TBSB01620.IEToolbar.1
Key Deleted : HKLM\SOFTWARE\Classes\TBSB01620.TBSB01620
Key Deleted : HKLM\SOFTWARE\Classes\TBSB01620.TBSB01620.3
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.TBSB01620
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar3.TBSB01620.1
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E}
Key Deleted : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook
Key Deleted : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook.1
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\incredibar.com
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{58124A0B-DC32-4180-9BFF-E0E21AE34026}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{977AE9CC-AF83-45E8-9E03-E2798216E2D5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4BD8E034-E0F4-4509-A753-467A8E854CD8}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A76AA284-E52D-47E6-9E4F-B85DBF8E35C3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IMBoosterARP
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Deleted : HKLM\SOFTWARE\Software
Key Deleted : HKLM\SOFTWARE\Tarma Installer
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
***** [Internet Browsers] *****
-\\ Internet Explorer v9.0.8112.16421
[OK] Registry is clean.
-\\ Google Chrome v22.0.1229.94
File : C:\Users\Kyle\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] File is clean.
*************************
AdwCleaner[S2].txt - [10194 octets] - [03/11/2012 15:11:30]
########## EOF - C:\AdwCleaner[S2].txt - [10255 octets] ##########
JRT Logs
Junkware Removal Tool (JRT) by Thisisu
Version: 2.6.0 (11.03.2012)
OS: Windows 7 Home Premium x64
Ran by Kyle on Sat 11/03/2012 at 21:55:46.48
Blog: http://thisisudax.blogspot.com
**************************************************************
*** Services: 0 Detections
*** Registry Values: 0 Detections
*** Registry Keys: 0 Detections
*** Files: 0 Detections
*** Folders: 0 Detections
*** Event Viewer Logs - Cleared
**************************************************************
Scan was completed on Sat 11/03/2012 at 22:08:22.70
End of Report
#6
narenxp
-
- BC Advisor
-
- 16,365 posts
Forum Addict
- Gender:Male
- Location:India
Posted 04 November 2012 - 12:27 AM
Please run malwarebytes,Adware cleaner and junkware tool in normal mode and post the logs
Download
http://www.bleepingcomputer.com/download/rkill/
Run it and after scan finishes,post the contents of RKILL log located on the desktop here
Download
Autoruns
Extract and launch autoruns.exe
Allow the scan to get finished
Now click on FILE-SAVE
Filename:Autoruns.txt
Save as :Text
Paste the contents of text here
Download
http://www.bleepingcomputer.com/download/rkill/
Run it and after scan finishes,post the contents of RKILL log located on the desktop here
Download
Autoruns
Extract and launch autoruns.exe
Allow the scan to get finished
Now click on FILE-SAVE
Filename:Autoruns.txt
Save as :Text
Paste the contents of text here
#7
supermaltese
-
- Members
-
- 28 posts
Member
Posted 04 November 2012 - 09:01 AM
Try using the AVG Rescue CD, found at http://www.avg.com/us-en/avg-rescue-cd-download
Since you suspect an infection, you'll want to burn it to a CD using a computer you feel confident is NOT infected. Put it into the CD/DVD drive and boot to it from the infected computer.
You can use, AVG, McAfee, CA, Kaspersky, but I would stay away from any other name brand of security software. That, of course, is subject to change every year.
Since you suspect an infection, you'll want to burn it to a CD using a computer you feel confident is NOT infected. Put it into the CD/DVD drive and boot to it from the infected computer.
You can use, AVG, McAfee, CA, Kaspersky, but I would stay away from any other name brand of security software. That, of course, is subject to change every year.
#8
Y2Krj
-
- Members
-
- 15 posts
Member
Posted 04 November 2012 - 09:51 AM
MBAM Logs
Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org
Database version: v2012.11.03.08
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Kyle :: Y2KRJ [administrator]
11/3/2012 10:31:18 PM
mbam-log-2012-11-03 (22-31-18).txt
Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 455324
Time elapsed: 1 hour(s), 5 minute(s), 54 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
AdwCleaner Logs
# AdwCleaner v2.006 - Logfile created 11/04/2012 at 07:24:57
# Updated 30/10/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Kyle - Y2KRJ
# Boot Mode : Normal
# Running from : C:\Users\Kyle\Desktop\adwcleaner.exe
# Option [Delete]
***** [Services] *****
***** [Files / Folders] *****
***** [Registry] *****
***** [Internet Browsers] *****
-\\ Internet Explorer v9.0.8112.16421
[OK] Registry is clean.
-\\ Google Chrome v22.0.1229.94
File : C:\Users\Kyle\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] File is clean.
*************************
AdwCleaner[S2].txt - [10279 octets] - [03/11/2012 15:11:30]
AdwCleaner[S3].txt - [711 octets] - [04/11/2012 07:24:57]
########## EOF - C:\AdwCleaner[S3].txt - [770 octets] ##########
JRT Logs
Junkware Removal Tool (JRT) by Thisisu
Version: 2.6.0 (11.03.2012)
OS: Windows 7 Home Premium x64
Ran by Kyle on Sun 11/04/2012 at 7:33:27.58
Blog: http://thisisudax.blogspot.com
**************************************************************
*** Services: 0 Detections
*** Registry Values: 0 Detections
*** Registry Keys: 0 Detections
*** Files: 0 Detections
*** Folders: 0 Detections
*** Event Viewer Logs - Cleared
**************************************************************
Scan was completed on Sun 11/04/2012 at 7:44:14.31
End of Report
Rkill Logs
Rkill 2.4.4 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html
Program started at: 11/04/2012 07:45:35 AM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1
Checking for Windows services to stop:
* No malware services found to stop.
Checking for processes to terminate:
* C:\Windows\SysWOW64\WinMsgBalloonServer.exe (PID: 1080) [WD-HEUR]
* C:\Windows\SysWOW64\WinMsgBalloonClient.exe (PID: 2104) [WD-HEUR]
2 proccesses terminated!
Checking Registry for malware related settings:
* No issues found in the Registry.
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
Performing miscellaneous checks:
* No issues found.
Checking Windows Service Integrity:
* gpsvc => %windir%\system32\svchost.exe -k GPSvcGroup [Incorrect ImagePath]
Searching for Missing Digital Signatures:
* No issues found.
Checking HOSTS File:
* Cannot edit the HOSTS file.
* Permissions Fixed. Administrators can now edit the HOSTS file.
* HOSTS file entries found:
127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
20 out of 15111 HOSTS entries shown.
Please review HOSTS file for further entries.
Program finished at: 11/04/2012 07:46:19 AM
Execution time: 0 hours(s), 0 minute(s), and 43 seconds(s)
AutoRuns logs
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "PC-Doctor for Windows localizer" "Hardware Diagnostic Tools Localizer" "PC-Doctor, Inc." "c:\program files\pc-doctor for windows\localizer.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "AVP" "Kaspersky Anti-Virus" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\avp.exe"
+ "hpsysdrv" "hpsysdrv" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp odometer\hpsysdrv.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files (x86)\itunes\ituneshelper.exe"
+ "LWS" "Logitech Webcam Software" "Logitech Inc." "c:\program files (x86)\logitech\lws\webcam software\lws.exe"
+ "QuickTime Task" "QuickTime Task" "Apple Inc." "c:\program files (x86)\quicktime\qttask.exe"
+ "Seagate Dashboard" "Memeo Dashboard Launcher" "" "c:\program files (x86)\seagate\seagate dashboard\memeolauncher.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe"
+ "WinPatrol" "WinPatrol System Monitor" "BillP Studios" "c:\program files (x86)\billp studios\winpatrol\winpatrol.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "bitlord.exe" "" "" "c:\program files (x86)\bitlord 2\bitlord files\bitlord.exe"
+ "Google Update" "Google Installer" "Google Inc." "c:\users\kyle\appdata\local\google\update\googleupdate.exe"
+ "MP3 Skype Recorder" "MP3 Skype Recorder" "Alexander Nikiforov" "c:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe"
+ "Raptr" "Raptr Desktop App" "Raptr, Inc" "c:\program files (x86)\raptr\raptrstub.exe"
+ "Skype" "Skype " "Skype Technologies S.A." "c:\program files (x86)\skype\phone\skype.exe"
+ "Spotify Web Helper" "SpotifyWebHelper" "Spotify Ltd" "c:\users\kyle\appdata\roaming\spotify\data\spotifywebhelper.exe"
+ "uTorrent" "µTorrent" "BitTorrent, Inc." "c:\program files (x86)\utorrent\utorrent.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "skype-ie-addon-data" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Kaspersky Anti-Virus" "Windows Shell Extension" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\shellex.dll"
+ "WinRAR" "" "" "c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Kaspersky Anti-Virus" "Windows Shell Extension" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\shellex.dll"
+ "WinRAR32" "" "" "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "GB3ContextMenu" "Game Booster v3 Context Menu" "IObit" "c:\program files (x86)\iobit\game booster 3\gbv3contextmenu.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "Kaspersky Anti-Virus" "Windows Shell Extension" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\shellex.dll"
+ "WinRAR" "" "" "c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "Kaspersky Anti-Virus" "Windows Shell Extension" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\shellex.dll"
+ "WinRAR32" "" "" "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
+ "NvCplDesktopContext" "" "NVIDIA Corporation" "c:\windows\system32\nvshext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "Haali Column Provider" "" "" "c:\program files (x86)\essentials codec pack\haali\mmfinfo.dll"
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "Kaspersky Anti-Virus" "Windows Shell Extension" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\shellex.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "WinRAR" "" "" "c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "Kaspersky Anti-Virus" "Windows Shell Extension" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\shellex.dll"
+ "WinRAR32" "" "" "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Content Blocker Plugin" "Content Blocker Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\ieext\contentblocker\ie_content_blocker_plugin.dll"
+ "Google Toolbar Notifier BHO" "GoogleToolbarNotifier" "Google Inc." "c:\program files\google\googletoolbarnotifier\5.2.4204.1700\swg64.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files\java\jre6\bin\jp2ssv.dll"
+ "Skype add-on for Internet Explorer" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
+ "URL Advisor Plugin" "URL Advisor Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\ieext\urladvisor\klwtbbho.dll"
+ "Virtual Keyboard Plugin" "Virtual Keyboard Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\ieext\virtualkeyboard\ie_virtual_keyboard_plugin.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Content Blocker Plugin" "Content Blocker Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\ieext\contentblocker\ie_content_blocker_plugin.dll"
+ "Google Toolbar Notifier BHO" "GoogleToolbarNotifier" "Google Inc." "c:\program files (x86)\google\googletoolbarnotifier\5.2.4204.1700\swg.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\ssv.dll"
+ "Skype Browser Helper" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "URL Advisor Plugin" "URL Advisor Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\ieext\urladvisor\klwtbbho.dll"
+ "Virtual Keyboard Plugin" "Virtual Keyboard Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\ieext\virtualkeyboard\ie_virtual_keyboard_plugin.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
+ "Windows Live Messenger Companion Helper" "Windows Live Messenger Companion Core" "Microsoft Corporation" "c:\program files (x86)\windows live\companion\companioncore.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "Skype Click to Call" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
+ "URLs check" "URL Advisor Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\ieext\urladvisor\klwtbbho.dll"
+ "Virtual Keyboard" "Virtual Keyboard Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\ieext\virtualkeyboard\ie_virtual_keyboard_plugin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "&Blog This in Windows Live Writer" "Windows Live Writer Blog This Extension" "Microsoft Corporation" "c:\program files (x86)\windows live\writer\writerbrowserextension.dll"
+ "Messenger Companion (Ctrl+Shift+C)" "Windows Live Messenger Companion Core" "Microsoft Corporation" "c:\program files (x86)\windows live\companion\companioncore.dll"
+ "S&end to OneNote" "Microsoft Office OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\onbttnie.dll"
+ "Skype Click to Call" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "URLs check" "URL Advisor Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\ieext\urladvisor\klwtbbho.dll"
+ "Virtual Keyboard" "Virtual Keyboard Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\ieext\virtualkeyboard\ie_virtual_keyboard_plugin.dll"
"Task Scheduler" "" "" ""
+ "\Apple\AppleSoftwareUpdate" "Apple Software Update" "Apple Inc." "c:\program files (x86)\apple software update\softwareupdate.exe"
+ "\CCleanerSkipUAC" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner.exe"
+ "\Game_Booster_AutoUpdate" "Helps you update Game Booster to latest version." "IObit" "c:\program files (x86)\iobit\game booster 3\autoupdate.exe"
+ "\Game_Booster_Startup" "Game Booster" "IObit" "c:\program files (x86)\iobit\game booster 3\gbtray.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-724460522-147270881-3841151141-1001Core" "Google Installer" "Google Inc." "c:\users\kyle\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-724460522-147270881-3841151141-1001UA" "Google Installer" "Google Inc." "c:\users\kyle\appdata\local\google\update\googleupdate.exe"
+ "\HPCeeScheduleForKyle" "HP Ceement" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp ceement\hpcee.exe"
+ "\Microsoft\Windows Defender\MP Scheduled Scan" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\windows defender\mpcmdrun.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\PCDRScheduledMaintenance" "Hardware Diagnostic Tools" "PC-Doctor, Inc." "c:\program files\pc-doctor for windows\pcdrcui.exe"
+ "\RecoveryCDWin7" "" "" "File not found: C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe"
+ "\RunAsStdUser Task for VeohWebPlayer" "" "" "File not found: C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"
+ "\SidebarExecute" "Windows Desktop Gadgets" "Microsoft Corporation" "c:\program files\windows sidebar\sidebar.exe"
+ "\SmartDefrag_Schedule" "Smart Defrag v2" "IObit" "c:\program files (x86)\iobit\smart defrag 2\smartdefrag.exe"
+ "\SmartDefrag_Startup" "Smart Defrag v2" "IObit" "c:\program files (x86)\iobit\smart defrag 2\smartdefrag.exe"
+ "\SmartDefragUpdate" "SmartDefrag Updater" "IObit" "c:\program files (x86)\iobit\smart defrag 2\autoupdate.exe"
+ "\Spybot - Search & Destroy - Scheduled Task" "" "" "File not found: C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe"
+ "\Spybot - Search & Destroy Updater - Scheduled Task" "" "" "File not found: C:\Program Files (x86)\Spybot - Search & Destroy\SDUpdate.exe"
+ "\{0F52B06B-CC47-4B7E-8EF4-30C1D3FB41B3}" "Warcraft III" "Blizzard Entertainment" "c:\program files (x86)\warcraft iii\warcraft iii.exe"
+ "\{19B6FCEB-EB24-4FC4-B12F-05E090979A51}" "" "" "File not found: C:\Users\Kyle\Desktop\Games\RoMs\Rom Collection\Complete Emulator Collection\Gameboy Advanced Emulator\Gameboy Advanced.exe"
+ "\{1F1B925E-6001-4C5E-AF81-A13AF0A6DED8}" "Skype " "Skype Technologies S.A." "c:\program files (x86)\skype\phone\skype.exe"
+ "\{3735986E-1751-4121-BFE9-C47D02E8CFF8}" "Skype " "Skype Technologies S.A." "c:\program files (x86)\skype\phone\skype.exe"
+ "\{46E2DAD0-EB63-4B04-A135-B6CF5986708C}" "" "" "File not found: C:\Program Files (x86)\LucasArts\Star Wars Empire at War\LaunchEAW.exe"
+ "\{796A9EB8-FF2B-4F3E-8DAA-D9D964742EFB}" "" "" "File not found: C:\Program Files (x86)\LucasArts\Star Wars Empire at War\LaunchEAW.exe"
+ "\{80226E75-856C-4C76-B81D-E74E6391E8D7}" "" "" "File not found: C:\Program Files (x86)\LucasArts\Star Wars Empire at War\LaunchEAW.exe"
+ "\{9A1214EB-1916-4503-AA0F-C408A469F659}" "" "" "File not found: C:\Program Files (x86)\LucasArts\Star Wars Empire at War\LaunchEAW.exe"
+ "\{AC936357-6B5C-44F8-B948-A6F0B2B582B7}" "" "" "File not found: C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe"
+ "\{B7AC7AAA-BAF7-4A99-B9E4-E38978E1F0D0}" "Skype " "Skype Technologies S.A." "c:\program files (x86)\skype\phone\skype.exe"
+ "\{C3C7BCBF-8F76-44E6-ACF7-813D5FA08294}" "Google Chrome" "Google Inc." "c:\users\kyle\appdata\local\google\chrome\application\chrome.exe"
+ "\{D0EC36AF-3001-47E4-9DED-CF39B4D7EB0B}" "Skype " "Skype Technologies S.A." "c:\program files (x86)\skype\phone\skype.exe"
+ "\{E20986FD-76AA-4337-8BBE-9C5C4E5C2349}" "" "" "File not found: C:\Users\Kyle\Desktop\Games\RoMs\Rom Collection\Complete Emulator Collection\Gameboy Advanced Emulator\Gameboy Advanced.exe"
+ "\{F4CD3FC5-8491-4B98-9BFC-F82AE06E8C0F}" "" "" "File not found: C:\Program Files (x86)\LucasArts\Star Wars Empire at War\LaunchEAW.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"
+ "AMD_RAIDXpert" "AMD RAIDXpert Server" "AMD" "c:\program files (x86)\amd\raidxpert\bin\raidxpertservice.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "AVP" "Provides computer protection against viruses, dangerous software, network attacks, internet fraud and spam." "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\avp.exe"
+ "BBSvc" "Keeps Bing Bar up-to-date. Disabling this service might prevent updates and expose your computer to security vulnerabilities or functional flaws in Bing Bar." "Microsoft Corporation." "c:\program files (x86)\microsoft\bingbar\bbsvc.exe"
+ "BBUpdate" "Enables the detection, download and installation of up-to-date configuration files for Bing Bar. Also provides server communication for the customer experience improvement program. Stopping or disabling this service may prevent you from getting the latest updates for Bing Bar, which may expose your computer to security vulnerabilities or functional flaws in the Bing Bar." "Microsoft Corporation" "c:\program files (x86)\microsoft\bingbar\seaport.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "fsssvc" "This service enables Family Safety on the computer. If this service is not running, Family Safety will not work." "Microsoft Corporation" "c:\program files (x86)\windows live\family safety\fsssvc.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gusvc" "Google Updater keeps your Google software up to date. If Google Updater Service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work." "Google" "c:\program files (x86)\google\common\google updater\googleupdaterservice.exe"
+ "HP Health Check Service" "HP Health Check Service" "" "File not found: C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe"
+ "hpqwmiex" "" "" "File not found: C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "nvsvc" "Provides system and desktop level support to the NVIDIA display driver" "NVIDIA Corporation" "c:\windows\system32\nvvsvc.exe"
+ "nvUpdatusService" "NVIDIA Settings Update Manager service, used to check new updates from NVIDIA server." "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\nvidia update core\daemonu.exe"
+ "odserv" "Run portions of Microsoft Office Diagnostics." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\office12\odserv.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "SeagateDashboardService" "Dashboard for Memeo applications" "Memeo" "c:\program files (x86)\seagate\seagate dashboard\seagatedashboardservice.exe"
+ "Skype C2C Service" "Skype Click to Call Update Service" "Skype Technologies S.A." "c:\programdata\skype\toolbars\skype c2c service\c2c_service.exe"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe"
+ "Steam Client Service" "Steam Client Service monitors and updates Steam content" "Valve Corporation" "c:\program files (x86)\common files\steam\steamservice.exe"
+ "Stereo Service" "Provides system support for NVIDIA Stereoscopic 3D driver" "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe"
+ "UMVPFSrv" "UMVPF is a user mode Logitech driver" "Logitech Inc." "c:\program files (x86)\common files\logishrd\lvmvfm\umvpfsrv.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "ahcix64s" "AMD AHCI Compatible Controller Driver for Windows - AMD64 platform" "Advanced Micro Devices, Inc" "c:\windows\system32\drivers\ahcix64s.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "Alpham1" "ZBoard Keyboards driver" "Ideazon Corporation" "c:\windows\system32\drivers\alpham164.sys"
+ "Alpham2" "MM ZBoard Keyboards driver" "Ideazon Corporation" "c:\windows\system32\drivers\alpham264.sys"
+ "amdiox64" "AMD IO Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdiox64.sys"
+ "amdkmdag" "ATI Radeon Kernel Mode Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "amdkmdap" "AMD multi-vendor Miniport Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmpag.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "AODDriver4.0" "" "" "File not found: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "athr" "Qualcomm Atheros Extensible Wireless LAN device driver" "Qualcomm Atheros Communications, Inc." "c:\windows\system32\drivers\athrx.sys"
+ "AtiHdmiService" "ATI High Definition Audio Function Driver" "ATI Technologies, Inc." "c:\windows\system32\drivers\atihdmi.sys"
+ "atikmdag" "ATI Radeon Kernel Mode Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "AtiPcie" "AMD PCIE Filter Driver for ATI PCIE chipset" "Advanced Micro Devices Inc." "c:\windows\system32\drivers\atipcie.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "CompFilter64" "Logitech USB Video Class Filter Driver" "Logitech Inc." "c:\windows\system32\drivers\lvbflt64.sys"
+ "EagleX64" "" "" "File not found: C:\Windows\system32\drivers\EagleX64.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "EuMusDesignVirtualAudioCableWdm" "Kernel-mode WDM driver" "Eugene V. Muzychenko" "c:\windows\system32\drivers\vrtaucbl.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhd64.sys"
+ "kl1" "Kaspersky Unified Driver" "Kaspersky Lab ZAO" "c:\windows\system32\drivers\kl1.sys"
+ "KLIF" "Kaspersky Lab Interceptor and Filter" "Kaspersky Lab" "c:\windows\system32\drivers\klif.sys"
+ "KLIM6" "Kaspersky Anti-Virus NDIS 6 Filter" "Kaspersky Lab ZAO" "c:\windows\system32\drivers\klim6.sys"
+ "klkbdflt" "Kaspersky Lab Keyboard Class Filter" "Kaspersky Lab" "c:\windows\system32\drivers\klkbdflt.sys"
+ "klmouflt" "Kaspersky Lab Mouse Class Filter" "Kaspersky Lab" "c:\windows\system32\drivers\klmouflt.sys"
+ "kltdi" "Network filtering component" "Kaspersky Lab" "c:\windows\system32\drivers\kltdi.sys"
+ "kneps" "KNEPS Power" "Kaspersky Lab" "c:\windows\system32\drivers\kneps.sys"
+ "Lbd" "Ad-Aware mini-filter driver" "Lavasoft AB" "c:\windows\system32\drivers\lbd.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "LVPr2M64" "Logitech LVPr2M64 Driver" "Logitech Inc." "c:\windows\system32\drivers\lvpr2m64.sys"
+ "LVPr2Mon" "Logitech LVPr2M64 Driver" "Logitech Inc." "c:\windows\system32\drivers\lvpr2m64.sys"
+ "LVRS64" "Logitech Kernel Audio Improvement Filter Driver" "Logitech Inc." "c:\windows\system32\drivers\lvrs64.sys"
+ "LVUVC64" "Logitech USB Video Class Driver" "Logitech Inc." "c:\windows\system32\drivers\lvuvc64.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "NVHDA" "NVIDIA HDMI Audio Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvhda64v.sys"
+ "nvlddmkm" "NVIDIA Windows Kernel Mode Driver, Version 306.97 " "NVIDIA Corporation" "c:\windows\system32\drivers\nvlddmkm.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RTL8167" "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver " "Realtek " "c:\windows\system32\drivers\rt64win7.sys"
+ "SAlphamHid" "SteelSeries HID Driver" "SteelSeries Corporation" "c:\windows\system32\drivers\salpham64.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "SmartDefragDriver" "File driver of SmartDefrag" "" "c:\windows\system32\drivers\smartdefragdriver.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "USBAAPL64" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl64.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
+ "WinRing0_1_2_0" "WinRing0" "OpenLibSys.org" "c:\program files (x86)\iobit\game booster 3\driver\winring0x64.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "VIDC.FFDS" "" "" "c:\windows\system32\ff_vfw.dll"
+ "vidc.i420" "Video Codec" "Logitech Inc." "c:\windows\system32\lvcod64.dll"
+ "VIDC.LAGS" "Lagarith" " " "c:\windows\system32\lagarith.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "msacm.l3codecp" "MPEG Audio Layer-3 Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codecp.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
+ "VIDC.FFDS" "" "" "c:\program files (x86)\combined community codec pack\filters\ffdshow\ff_vfw.dll"
+ "vidc.i420" "Video Codec" "Logitech Inc." "c:\windows\syswow64\lvcodec2.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "AC3File" "" "" "c:\program files\k-lite codec pack x64\filters\ac3file64.ax"
+ "DirectVobSub" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "MPC-HC Team" "c:\program files\k-lite codec pack x64\filters\vsfilter.dll"
+ "DirectVobSub (auto-loading version)" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "MPC-HC Team" "c:\program files\k-lite codec pack x64\filters\vsfilter.dll"
+ "ffdshow Audio Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack x64\ffdshow\ffdshow.ax"
+ "ffdshow Audio Processor" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack x64\ffdshow\ffdshow.ax"
+ "ffdshow DXVA Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack x64\ffdshow\ffdshow.ax"
+ "ffdshow raw video filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack x64\ffdshow\ffdshow.ax"
+ "ffdshow subtitles filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack x64\ffdshow\ffdshow.ax"
+ "ffdshow Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack x64\ffdshow\ffdshow.ax"
+ "LAV Audio Decoder" "LAV Audio Decoder - DirectShow Audio Decoder" "1f0.de - Hendrik Leppkes" "c:\program files\k-lite codec pack x64\filters\lav\lavaudio.ax"
+ "LAV Splitter" "LAV Splitter - DirectShow Media Splitter" "1f0.de - Hendrik Leppkes" "c:\program files\k-lite codec pack x64\filters\lav\lavsplitter.ax"
+ "LAV Splitter Source" "LAV Splitter - DirectShow Media Splitter" "1f0.de - Hendrik Leppkes" "c:\program files\k-lite codec pack x64\filters\lav\lavsplitter.ax"
+ "LAV Video Decoder" "LAV Video Decoder - DirectShow Video Decoder" "1f0.de - Hendrik Leppkes" "c:\program files\k-lite codec pack x64\filters\lav\lavvideo.ax"
+ "MPC - CDXA Reader" "CDXA Reader Filter" "MPC-HC Team" "c:\program files\k-lite codec pack x64\filters\cdxareader.ax"
+ "MS PR Source Filter" "PlayReady DirectShow Source Filter DLL" "Microsoft Corporation" "c:\program files\playready\prsource.dll"
+ "PlayReady DMO Wrapper" "PlayReady DirectShow DMO Wrapper Filter DLL" "Microsoft Corporation" "c:\program files\playready\prdmowrapper.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "AC3 Decoder Filter" "TODO: <파일 설명>" "TODO: <회사 이름>" "c:\program files (x86)\myfree codec\1.0b beta\ac-3\ac3dx.ax"
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "CoreAAC Audio Decoder" "CoreAAC" "" "c:\windows\syswow64\coreaac.ax"
+ "CoreFLAC Audio Decoder" "CoreFLAC Audio Decoder & Source DirectShow Filter" "-" "c:\program files (x86)\matroska pack\coreflacdecoder.ax"
+ "CoreFLAC Audio Source" "CoreFLAC Audio Decoder & Source DirectShow Filter" "-" "c:\program files (x86)\matroska pack\coreflacdecoder.ax"
+ "DirectVobSub" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "MPC-HC Team" "c:\program files (x86)\combined community codec pack\filters\vsfilter.dll"
+ "DirectVobSub (auto-loading version)" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "MPC-HC Team" "c:\program files (x86)\combined community codec pack\filters\vsfilter.dll"
+ "DivX for Blizzard Decoder Filter" "DivX ™ Decoder Filter" "DivXNetworks, Inc." "c:\program files (x86)\warcraft iii\blizzard.ax"
+ "ffdshow Audio Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\combined community codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow Audio Processor" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\combined community codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow DXVA Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\combined community codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow raw video filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\combined community codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow subtitles filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\combined community codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow VFW decoder helper" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\matroska pack\ffdshow\ffdshow.ax"
+ "ffdshow Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\combined community codec pack\filters\ffdshow\ffdshow.ax"
+ "GPL MPEG-1/2 Decoder" "GPL MPEG-1/2 Decoder Filter for DirectShow" "Peter Wimmer, Gabest" "c:\program files (x86)\matroska pack\gplmpgdec.ax"
+ "Haali Matroska Muxer" "Haali Media Splitter" "" "c:\program files (x86)\combined community codec pack\filters\haali\splitter.ax"
+ "Haali Media Splitter" "Haali Media Splitter" "" "c:\program files (x86)\combined community codec pack\filters\haali\splitter.ax"
+ "Haali Media Splitter (AR)" "Haali Media Splitter" "" "c:\program files (x86)\combined community codec pack\filters\haali\splitter.ax"
+ "Haali Simple Media Splitter" "Haali Media Splitter" "" "c:\program files (x86)\combined community codec pack\filters\haali\splitter.ax"
+ "Haali Video Renderer" "" "" "c:\program files (x86)\combined community codec pack\filters\haali\dxr.dll"
+ "Haali Video Sink" "Haali Media Splitter" "" "c:\program files (x86)\combined community codec pack\filters\haali\splitter.ax"
+ "LAV Audio Decoder" "LAV Audio Decoder - DirectShow Audio Decoder" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\combined community codec pack\filters\lavfilters\lavaudio.ax"
+ "LAV Splitter" "LAV Splitter - DirectShow Media Splitter" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\combined community codec pack\filters\lavfilters\lavsplitter.ax"
+ "LAV Splitter Source" "LAV Splitter - DirectShow Media Splitter" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\combined community codec pack\filters\lavfilters\lavsplitter.ax"
+ "LAV Video Decoder" "LAV Video Decoder - DirectShow Video Decoder" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\combined community codec pack\filters\lavfilters\lavvideo.ax"
+ "Matroska Muxer" "Matroska Muxer" "Gabest" "c:\program files (x86)\matroska pack\matroskamuxer.ax"
+ "MPC - FLV Source (Gabest)" "FLV Splitter" "Gabest" "c:\program files (x86)\essentials codec pack\gabset\flvsplitter.ax"
+ "MPC - FLV Splitter (Gabest)" "FLV Splitter" "Gabest" "c:\program files (x86)\essentials codec pack\gabset\flvsplitter.ax"
+ "MPC - MPEG-2 Video Decoder (Gabest)" "MPEG-2 Decoder Filter for DirectShow" "MPC-HC Team" "c:\program files (x86)\combined community codec pack\filters\mpeg2decfilter.ax"
+ "MyFree Codec Filter" "" "" "c:\program files (x86)\myfree codec\1.0b beta\myfree.ax"
+ "ORBAN-CT AAC/aacPlus Stream Parser" "ORBAN / CT aacPlus Parser 1.1" "" "c:\program files (x86)\orban\aac-aacplus plugin\aacpparser.dll"
+ "RealAudio Decoder" "RealMedia Splitter" "Gabest" "c:\program files (x86)\matroska pack\realmediasplitter.ax"
+ "RealMedia Source" "RealMedia Splitter" "Gabest" "c:\program files (x86)\matroska pack\realmediasplitter.ax"
+ "RealMedia Splitter" "RealMedia Splitter" "Gabest" "c:\program files (x86)\matroska pack\realmediasplitter.ax"
+ "RealVideo Decoder" "RealMedia Splitter" "Gabest" "c:\program files (x86)\matroska pack\realmediasplitter.ax"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "True Audio Decoder" "True Audio DirectShow Decoder" "-" "c:\program files (x86)\matroska pack\ttadsdecoder.ax"
+ "True Audio Splitter" "True Audio DirectShow Splitter" "-" "c:\program files (x86)\matroska pack\ttadssplitter.ax"
+ "VHAudioGain" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\cultures\vhmediacom.dll"
+ "VHCropResize" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\cultures\vhmediacom.dll"
+ "VHDeinterlace" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\cultures\vhmediacom.dll"
+ "VHFrameRateConv" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\cultures\vhmediacom.dll"
+ "VHMixerSource" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\cultures\vhmediacom.dll"
+ "VHMultiReader" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\cultures\vhmediacom.dll"
+ "VHMultiWriter" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\cultures\vhmediacom.dll"
+ "VHSplitProcSource" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\cultures\vhmediacom.dll"
+ "VHYV12Decoder" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\cultures\vhmediacom.dll"
+ "VHYV12Encoder" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\cultures\vhmediacom.dll"
+ "WavPack Audio Decoder" "WavPack Audio DirectShow Decoder" "-" "c:\program files (x86)\matroska pack\wavpackdsdecoder.ax"
+ "WavPack Audio Splitter" "WavPack Audio DirectShow Splitter" "-" "c:\program files (x86)\matroska pack\wavpackdssplitter.ax"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "Xvid MPEG-4 Video Decoder" "" "" "c:\program files (x86)\myfree codec\1.0b beta\xvid-core\xvid.ax"
"HKLM\System\CurrentControlSet\Control\Session Manager\BootExecute" "" "" ""
+ "SmartDefragBootTime.exe" "SmartDefrag" "IObit" "c:\windows\system32\smartdefragboottime.exe"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "WLIDCredentialProvider" "Microsoft® Windows Live ID Credential Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files (x86)\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "PCL hpf3lw73" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpf3lw73.dll"
Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org
Database version: v2012.11.03.08
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Kyle :: Y2KRJ [administrator]
11/3/2012 10:31:18 PM
mbam-log-2012-11-03 (22-31-18).txt
Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 455324
Time elapsed: 1 hour(s), 5 minute(s), 54 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
(end)
AdwCleaner Logs
# AdwCleaner v2.006 - Logfile created 11/04/2012 at 07:24:57
# Updated 30/10/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Kyle - Y2KRJ
# Boot Mode : Normal
# Running from : C:\Users\Kyle\Desktop\adwcleaner.exe
# Option [Delete]
***** [Services] *****
***** [Files / Folders] *****
***** [Registry] *****
***** [Internet Browsers] *****
-\\ Internet Explorer v9.0.8112.16421
[OK] Registry is clean.
-\\ Google Chrome v22.0.1229.94
File : C:\Users\Kyle\AppData\Local\Google\Chrome\User Data\Default\Preferences
[OK] File is clean.
*************************
AdwCleaner[S2].txt - [10279 octets] - [03/11/2012 15:11:30]
AdwCleaner[S3].txt - [711 octets] - [04/11/2012 07:24:57]
########## EOF - C:\AdwCleaner[S3].txt - [770 octets] ##########
JRT Logs
Junkware Removal Tool (JRT) by Thisisu
Version: 2.6.0 (11.03.2012)
OS: Windows 7 Home Premium x64
Ran by Kyle on Sun 11/04/2012 at 7:33:27.58
Blog: http://thisisudax.blogspot.com
**************************************************************
*** Services: 0 Detections
*** Registry Values: 0 Detections
*** Registry Keys: 0 Detections
*** Files: 0 Detections
*** Folders: 0 Detections
*** Event Viewer Logs - Cleared
**************************************************************
Scan was completed on Sun 11/04/2012 at 7:44:14.31
End of Report
Rkill Logs
Rkill 2.4.4 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html
Program started at: 11/04/2012 07:45:35 AM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1
Checking for Windows services to stop:
* No malware services found to stop.
Checking for processes to terminate:
* C:\Windows\SysWOW64\WinMsgBalloonServer.exe (PID: 1080) [WD-HEUR]
* C:\Windows\SysWOW64\WinMsgBalloonClient.exe (PID: 2104) [WD-HEUR]
2 proccesses terminated!
Checking Registry for malware related settings:
* No issues found in the Registry.
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
Performing miscellaneous checks:
* No issues found.
Checking Windows Service Integrity:
* gpsvc => %windir%\system32\svchost.exe -k GPSvcGroup [Incorrect ImagePath]
Searching for Missing Digital Signatures:
* No issues found.
Checking HOSTS File:
* Cannot edit the HOSTS file.
* Permissions Fixed. Administrators can now edit the HOSTS file.
* HOSTS file entries found:
127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
20 out of 15111 HOSTS entries shown.
Please review HOSTS file for further entries.
Program finished at: 11/04/2012 07:46:19 AM
Execution time: 0 hours(s), 0 minute(s), and 43 seconds(s)
AutoRuns logs
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "PC-Doctor for Windows localizer" "Hardware Diagnostic Tools Localizer" "PC-Doctor, Inc." "c:\program files\pc-doctor for windows\localizer.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "AVP" "Kaspersky Anti-Virus" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\avp.exe"
+ "hpsysdrv" "hpsysdrv" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp odometer\hpsysdrv.exe"
+ "iTunesHelper" "iTunesHelper" "Apple Inc." "c:\program files (x86)\itunes\ituneshelper.exe"
+ "LWS" "Logitech Webcam Software" "Logitech Inc." "c:\program files (x86)\logitech\lws\webcam software\lws.exe"
+ "QuickTime Task" "QuickTime Task" "Apple Inc." "c:\program files (x86)\quicktime\qttask.exe"
+ "Seagate Dashboard" "Memeo Dashboard Launcher" "" "c:\program files (x86)\seagate\seagate dashboard\memeolauncher.exe"
+ "SunJavaUpdateSched" "Java™ Update Scheduler" "Sun Microsystems, Inc." "c:\program files (x86)\common files\java\java update\jusched.exe"
+ "WinPatrol" "WinPatrol System Monitor" "BillP Studios" "c:\program files (x86)\billp studios\winpatrol\winpatrol.exe"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components" "" "" ""
+ "Microsoft Windows" "Windows Mail" "Microsoft Corporation" "c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" ""
+ "bitlord.exe" "" "" "c:\program files (x86)\bitlord 2\bitlord files\bitlord.exe"
+ "Google Update" "Google Installer" "Google Inc." "c:\users\kyle\appdata\local\google\update\googleupdate.exe"
+ "MP3 Skype Recorder" "MP3 Skype Recorder" "Alexander Nikiforov" "c:\program files (x86)\mp3 skype recorder\mp3 skype recorder.exe"
+ "Raptr" "Raptr Desktop App" "Raptr, Inc" "c:\program files (x86)\raptr\raptrstub.exe"
+ "Skype" "Skype " "Skype Technologies S.A." "c:\program files (x86)\skype\phone\skype.exe"
+ "Spotify Web Helper" "SpotifyWebHelper" "Spotify Ltd" "c:\users\kyle\appdata\roaming\spotify\data\spotifywebhelper.exe"
+ "uTorrent" "µTorrent" "BitTorrent, Inc." "c:\program files (x86)\utorrent\utorrent.exe"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" ""
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" ""
+ "skype-ie-addon-data" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Kaspersky Anti-Virus" "Windows Shell Extension" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\shellex.dll"
+ "WinRAR" "" "" "c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers" "" "" ""
+ "Kaspersky Anti-Virus" "Windows Shell Extension" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\shellex.dll"
+ "WinRAR32" "" "" "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" ""
+ "GB3ContextMenu" "Game Booster v3 Context Menu" "IObit" "c:\program files (x86)\iobit\game booster 3\gbv3contextmenu.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "Kaspersky Anti-Virus" "Windows Shell Extension" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\shellex.dll"
+ "WinRAR" "" "" "c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" ""
+ "Kaspersky Anti-Virus" "Windows Shell Extension" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\shellex.dll"
+ "WinRAR32" "" "" "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\DragDropHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files\windows sidebar\sbdrop.dll"
+ "NvCplDesktopContext" "" "NVIDIA Corporation" "c:\windows\system32\nvshext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" ""
+ "Gadgets" "Sidebar droptarget" "Microsoft Corporation" "c:\program files (x86)\windows sidebar\sbdrop.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers" "" "" ""
+ "Haali Column Provider" "" "" "c:\program files (x86)\essentials codec pack\haali\mmfinfo.dll"
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "Kaspersky Anti-Virus" "Windows Shell Extension" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\shellex.dll"
+ "MBAMShlExt" "Malwarebytes Anti-Malware" "Malwarebytes Corporation" "c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "WinRAR" "" "" "c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" ""
+ "Kaspersky Anti-Virus" "Windows Shell Extension" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\shellex.dll"
+ "WinRAR32" "" "" "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR" "" "" "c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers" "" "" ""
+ "WinRAR32" "" "" "c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Content Blocker Plugin" "Content Blocker Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\ieext\contentblocker\ie_content_blocker_plugin.dll"
+ "Google Toolbar Notifier BHO" "GoogleToolbarNotifier" "Google Inc." "c:\program files\google\googletoolbarnotifier\5.2.4204.1700\swg64.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Sun Microsystems, Inc." "c:\program files\java\jre6\bin\jp2ssv.dll"
+ "Skype add-on for Internet Explorer" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
+ "URL Advisor Plugin" "URL Advisor Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\ieext\urladvisor\klwtbbho.dll"
+ "Virtual Keyboard Plugin" "Virtual Keyboard Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\ieext\virtualkeyboard\ie_virtual_keyboard_plugin.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" ""
+ "Adobe PDF Link Helper" "Adobe PDF Helper for Internet Explorer" "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\acrobat\activex\acroiehelpershim.dll"
+ "Content Blocker Plugin" "Content Blocker Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\ieext\contentblocker\ie_content_blocker_plugin.dll"
+ "Google Toolbar Notifier BHO" "GoogleToolbarNotifier" "Google Inc." "c:\program files (x86)\google\googletoolbarnotifier\5.2.4204.1700\swg.dll"
+ "Java™ Plug-In 2 SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\jp2ssv.dll"
+ "Java™ Plug-In SSV Helper" "Java™ Platform SE binary" "Oracle Corporation" "c:\program files (x86)\java\jre7\bin\ssv.dll"
+ "Skype Browser Helper" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "URL Advisor Plugin" "URL Advisor Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\ieext\urladvisor\klwtbbho.dll"
+ "Virtual Keyboard Plugin" "Virtual Keyboard Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\ieext\virtualkeyboard\ie_virtual_keyboard_plugin.dll"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll"
+ "Windows Live Messenger Companion Helper" "Windows Live Messenger Companion Core" "Microsoft Corporation" "c:\program files (x86)\windows live\companion\companioncore.dll"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "Skype Click to Call" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer x64\skypeieplugin.dll"
+ "URLs check" "URL Advisor Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\ieext\urladvisor\klwtbbho.dll"
+ "Virtual Keyboard" "Virtual Keyboard Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\x64\ieext\virtualkeyboard\ie_virtual_keyboard_plugin.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Extensions" "" "" ""
+ "&Blog This in Windows Live Writer" "Windows Live Writer Blog This Extension" "Microsoft Corporation" "c:\program files (x86)\windows live\writer\writerbrowserextension.dll"
+ "Messenger Companion (Ctrl+Shift+C)" "Windows Live Messenger Companion Core" "Microsoft Corporation" "c:\program files (x86)\windows live\companion\companioncore.dll"
+ "S&end to OneNote" "Microsoft Office OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files (x86)\microsoft office\office12\onbttnie.dll"
+ "Skype Click to Call" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files (x86)\skype\toolbars\internet explorer\skypeieplugin.dll"
+ "URLs check" "URL Advisor Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\ieext\urladvisor\klwtbbho.dll"
+ "Virtual Keyboard" "Virtual Keyboard Plugin" "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\ieext\virtualkeyboard\ie_virtual_keyboard_plugin.dll"
"Task Scheduler" "" "" ""
+ "\Apple\AppleSoftwareUpdate" "Apple Software Update" "Apple Inc." "c:\program files (x86)\apple software update\softwareupdate.exe"
+ "\CCleanerSkipUAC" "CCleaner" "Piriform Ltd" "c:\program files\ccleaner\ccleaner.exe"
+ "\Game_Booster_AutoUpdate" "Helps you update Game Booster to latest version." "IObit" "c:\program files (x86)\iobit\game booster 3\autoupdate.exe"
+ "\Game_Booster_Startup" "Game Booster" "IObit" "c:\program files (x86)\iobit\game booster 3\gbtray.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-724460522-147270881-3841151141-1001Core" "Google Installer" "Google Inc." "c:\users\kyle\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-724460522-147270881-3841151141-1001UA" "Google Installer" "Google Inc." "c:\users\kyle\appdata\local\google\update\googleupdate.exe"
+ "\HPCeeScheduleForKyle" "HP Ceement" "Hewlett-Packard" "c:\program files (x86)\hewlett-packard\hp ceement\hpcee.exe"
+ "\Microsoft\Windows Defender\MP Scheduled Scan" "Microsoft Malware Protection Command Line Utility" "Microsoft Corporation" "c:\program files\windows defender\mpcmdrun.exe"
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files (x86)\windows live\soxe\wlsoxe.dll"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo" "" "" "c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary" "Windows Media Player Network Sharing Service Configuration Application" "Microsoft Corporation" "c:\program files\windows media player\wmpnscfg.exe"
+ "\PCDRScheduledMaintenance" "Hardware Diagnostic Tools" "PC-Doctor, Inc." "c:\program files\pc-doctor for windows\pcdrcui.exe"
+ "\RecoveryCDWin7" "" "" "File not found: C:\Program Files (x86)\Hewlett-Packard\HP Setup\RemEngine.exe"
+ "\RunAsStdUser Task for VeohWebPlayer" "" "" "File not found: C:\Program Files (x86)\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"
+ "\SidebarExecute" "Windows Desktop Gadgets" "Microsoft Corporation" "c:\program files\windows sidebar\sidebar.exe"
+ "\SmartDefrag_Schedule" "Smart Defrag v2" "IObit" "c:\program files (x86)\iobit\smart defrag 2\smartdefrag.exe"
+ "\SmartDefrag_Startup" "Smart Defrag v2" "IObit" "c:\program files (x86)\iobit\smart defrag 2\smartdefrag.exe"
+ "\SmartDefragUpdate" "SmartDefrag Updater" "IObit" "c:\program files (x86)\iobit\smart defrag 2\autoupdate.exe"
+ "\Spybot - Search & Destroy - Scheduled Task" "" "" "File not found: C:\Program Files (x86)\Spybot - Search & Destroy\SpybotSD.exe"
+ "\Spybot - Search & Destroy Updater - Scheduled Task" "" "" "File not found: C:\Program Files (x86)\Spybot - Search & Destroy\SDUpdate.exe"
+ "\{0F52B06B-CC47-4B7E-8EF4-30C1D3FB41B3}" "Warcraft III" "Blizzard Entertainment" "c:\program files (x86)\warcraft iii\warcraft iii.exe"
+ "\{19B6FCEB-EB24-4FC4-B12F-05E090979A51}" "" "" "File not found: C:\Users\Kyle\Desktop\Games\RoMs\Rom Collection\Complete Emulator Collection\Gameboy Advanced Emulator\Gameboy Advanced.exe"
+ "\{1F1B925E-6001-4C5E-AF81-A13AF0A6DED8}" "Skype " "Skype Technologies S.A." "c:\program files (x86)\skype\phone\skype.exe"
+ "\{3735986E-1751-4121-BFE9-C47D02E8CFF8}" "Skype " "Skype Technologies S.A." "c:\program files (x86)\skype\phone\skype.exe"
+ "\{46E2DAD0-EB63-4B04-A135-B6CF5986708C}" "" "" "File not found: C:\Program Files (x86)\LucasArts\Star Wars Empire at War\LaunchEAW.exe"
+ "\{796A9EB8-FF2B-4F3E-8DAA-D9D964742EFB}" "" "" "File not found: C:\Program Files (x86)\LucasArts\Star Wars Empire at War\LaunchEAW.exe"
+ "\{80226E75-856C-4C76-B81D-E74E6391E8D7}" "" "" "File not found: C:\Program Files (x86)\LucasArts\Star Wars Empire at War\LaunchEAW.exe"
+ "\{9A1214EB-1916-4503-AA0F-C408A469F659}" "" "" "File not found: C:\Program Files (x86)\LucasArts\Star Wars Empire at War\LaunchEAW.exe"
+ "\{AC936357-6B5C-44F8-B948-A6F0B2B582B7}" "" "" "File not found: C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe"
+ "\{B7AC7AAA-BAF7-4A99-B9E4-E38978E1F0D0}" "Skype " "Skype Technologies S.A." "c:\program files (x86)\skype\phone\skype.exe"
+ "\{C3C7BCBF-8F76-44E6-ACF7-813D5FA08294}" "Google Chrome" "Google Inc." "c:\users\kyle\appdata\local\google\chrome\application\chrome.exe"
+ "\{D0EC36AF-3001-47E4-9DED-CF39B4D7EB0B}" "Skype " "Skype Technologies S.A." "c:\program files (x86)\skype\phone\skype.exe"
+ "\{E20986FD-76AA-4337-8BBE-9C5C4E5C2349}" "" "" "File not found: C:\Users\Kyle\Desktop\Games\RoMs\Rom Collection\Complete Emulator Collection\Gameboy Advanced Emulator\Gameboy Advanced.exe"
+ "\{F4CD3FC5-8491-4B98-9BFC-F82AE06E8C0F}" "" "" "File not found: C:\Program Files (x86)\LucasArts\Star Wars Empire at War\LaunchEAW.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"
+ "AMD_RAIDXpert" "AMD RAIDXpert Server" "AMD" "c:\program files (x86)\amd\raidxpert\bin\raidxpertservice.exe"
+ "Apple Mobile Device" "Provides the interface to Apple mobile devices." "Apple Inc." "c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "AVP" "Provides computer protection against viruses, dangerous software, network attacks, internet fraud and spam." "Kaspersky Lab ZAO" "c:\program files (x86)\kaspersky lab\kaspersky anti-virus 2013\avp.exe"
+ "BBSvc" "Keeps Bing Bar up-to-date. Disabling this service might prevent updates and expose your computer to security vulnerabilities or functional flaws in Bing Bar." "Microsoft Corporation." "c:\program files (x86)\microsoft\bingbar\bbsvc.exe"
+ "BBUpdate" "Enables the detection, download and installation of up-to-date configuration files for Bing Bar. Also provides server communication for the customer experience improvement program. Stopping or disabling this service may prevent you from getting the latest updates for Bing Bar, which may expose your computer to security vulnerabilities or functional flaws in the Bing Bar." "Microsoft Corporation" "c:\program files (x86)\microsoft\bingbar\seaport.exe"
+ "Bonjour Service" "Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence." "Apple Inc." "c:\program files\bonjour\mdnsresponder.exe"
+ "fsssvc" "This service enables Family Safety on the computer. If this service is not running, Family Safety will not work." "Microsoft Corporation" "c:\program files (x86)\windows live\family safety\fsssvc.exe"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files (x86)\google\update\googleupdate.exe"
+ "gusvc" "Google Updater keeps your Google software up to date. If Google Updater Service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work." "Google" "c:\program files (x86)\google\common\google updater\googleupdaterservice.exe"
+ "HP Health Check Service" "HP Health Check Service" "" "File not found: C:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe"
+ "hpqwmiex" "" "" "File not found: C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe"
+ "iPod Service" "iPod hardware management services" "Apple Inc." "c:\program files\ipod\bin\ipodservice.exe"
+ "nvsvc" "Provides system and desktop level support to the NVIDIA display driver" "NVIDIA Corporation" "c:\windows\system32\nvvsvc.exe"
+ "nvUpdatusService" "NVIDIA Settings Update Manager service, used to check new updates from NVIDIA server." "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\nvidia update core\daemonu.exe"
+ "odserv" "Run portions of Microsoft Office Diagnostics." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\office12\odserv.exe"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files (x86)\common files\microsoft shared\source engine\ose.exe"
+ "SeagateDashboardService" "Dashboard for Memeo applications" "Memeo" "c:\program files (x86)\seagate\seagate dashboard\seagatedashboardservice.exe"
+ "Skype C2C Service" "Skype Click to Call Update Service" "Skype Technologies S.A." "c:\programdata\skype\toolbars\skype c2c service\c2c_service.exe"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files (x86)\skype\updater\updater.exe"
+ "Steam Client Service" "Steam Client Service monitors and updates Steam content" "Valve Corporation" "c:\program files (x86)\common files\steam\steamservice.exe"
+ "Stereo Service" "Provides system support for NVIDIA Stereoscopic 3D driver" "NVIDIA Corporation" "c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe"
+ "UMVPFSrv" "UMVPF is a user mode Logitech driver" "Logitech Inc." "c:\program files (x86)\common files\logishrd\lvmvfm\umvpfsrv.exe"
+ "WinDefend" "Protection against spyware and potentially unwanted software" "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe"
+ "WMPNetworkSvc" "Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play" "Microsoft Corporation" "c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services" "" "" ""
+ "adp94xx" "Adaptec Windows SAS/SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci" "Adaptec Windows SATA Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\adpahci.sys"
+ "adpu320" "Adaptec StorPort Ultra320 SCSI Driver (X64)" "Adaptec, Inc." "c:\windows\system32\drivers\adpu320.sys"
+ "ahcix64s" "AMD AHCI Compatible Controller Driver for Windows - AMD64 platform" "Advanced Micro Devices, Inc" "c:\windows\system32\drivers\ahcix64s.sys"
+ "aliide" "ALi mini IDE Driver" "Acer Laboratories Inc." "c:\windows\system32\drivers\aliide.sys"
+ "Alpham1" "ZBoard Keyboards driver" "Ideazon Corporation" "c:\windows\system32\drivers\alpham164.sys"
+ "Alpham2" "MM ZBoard Keyboards driver" "Ideazon Corporation" "c:\windows\system32\drivers\alpham264.sys"
+ "amdiox64" "AMD IO Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdiox64.sys"
+ "amdkmdag" "ATI Radeon Kernel Mode Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "amdkmdap" "AMD multi-vendor Miniport Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmpag.sys"
+ "amdsata" "AHCI 1.2 Device Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs" "AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform" "AMD Technologies Inc." "c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata" "Storage Filter Driver" "Advanced Micro Devices" "c:\windows\system32\drivers\amdxata.sys"
+ "AODDriver4.0" "" "" "File not found: C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys"
+ "arc" "Adaptec RAID Storport Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arc.sys"
+ "arcsas" "Adaptec SAS RAID WS03 Driver" "Adaptec, Inc." "c:\windows\system32\drivers\arcsas.sys"
+ "athr" "Qualcomm Atheros Extensible Wireless LAN device driver" "Qualcomm Atheros Communications, Inc." "c:\windows\system32\drivers\athrx.sys"
+ "AtiHdmiService" "ATI High Definition Audio Function Driver" "ATI Technologies, Inc." "c:\windows\system32\drivers\atihdmi.sys"
+ "atikmdag" "ATI Radeon Kernel Mode Driver" "Advanced Micro Devices, Inc." "c:\windows\system32\drivers\atikmdag.sys"
+ "AtiPcie" "AMD PCIE Filter Driver for ATI PCIE chipset" "Advanced Micro Devices Inc." "c:\windows\system32\drivers\atipcie.sys"
+ "b06bdrv" "Broadcom NetXtreme II GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60a.sys"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid" "Brotehr Serial I/F Driver (WDM)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm" "Brother Serial driver (WDM version)" "Brother Industries Ltd." "c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm" "Brother USB MDM Driver " "Brother Industries Ltd." "c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys"
+ "cmdide" "CMD PCI IDE Bus Driver" "CMD Technology, Inc." "c:\windows\system32\drivers\cmdide.sys"
+ "CompFilter64" "Logitech USB Video Class Filter Driver" "Logitech Inc." "c:\windows\system32\drivers\lvbflt64.sys"
+ "EagleX64" "" "" "File not found: C:\Windows\system32\drivers\EagleX64.sys"
+ "ebdrv" "Broadcom NetXtreme II 10 GigE VBD" "Broadcom Corporation" "c:\windows\system32\drivers\evbda.sys"
+ "elxstor" "Storport Miniport Driver for LightPulse HBAs" "Emulex" "c:\windows\system32\drivers\elxstor.sys"
+ "EuMusDesignVirtualAudioCableWdm" "Kernel-mode WDM driver" "Eugene V. Muzychenko" "c:\windows\system32\drivers\vrtaucbl.sys"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys"
+ "hcw85cir" "Hauppauge WinTV 885 Consumer IR Driver for eHome" "Hauppauge Computer Works, Inc." "c:\windows\system32\drivers\hcw85cir.sys"
+ "HpSAMD" "Smart Array SAS/SATA Controller Media Driver" "Hewlett-Packard Company" "c:\windows\system32\drivers\hpsamd.sys"
+ "iaStorV" "Intel Matrix Storage Manager driver - x64" "Intel Corporation" "c:\windows\system32\drivers\iastorv.sys"
+ "iirsp" "Intel/ICP Raid Storport Driver" "Intel Corp./ICP vortex GmbH" "c:\windows\system32\drivers\iirsp.sys"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhd64.sys"
+ "kl1" "Kaspersky Unified Driver" "Kaspersky Lab ZAO" "c:\windows\system32\drivers\kl1.sys"
+ "KLIF" "Kaspersky Lab Interceptor and Filter" "Kaspersky Lab" "c:\windows\system32\drivers\klif.sys"
+ "KLIM6" "Kaspersky Anti-Virus NDIS 6 Filter" "Kaspersky Lab ZAO" "c:\windows\system32\drivers\klim6.sys"
+ "klkbdflt" "Kaspersky Lab Keyboard Class Filter" "Kaspersky Lab" "c:\windows\system32\drivers\klkbdflt.sys"
+ "klmouflt" "Kaspersky Lab Mouse Class Filter" "Kaspersky Lab" "c:\windows\system32\drivers\klmouflt.sys"
+ "kltdi" "Network filtering component" "Kaspersky Lab" "c:\windows\system32\drivers\kltdi.sys"
+ "kneps" "KNEPS Power" "Kaspersky Lab" "c:\windows\system32\drivers\kneps.sys"
+ "Lbd" "Ad-Aware mini-filter driver" "Lavasoft AB" "c:\windows\system32\drivers\lbd.sys"
+ "LSI_FC" "LSI Fusion-MPT FC Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS" "LSI Fusion-MPT SAS Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2" "LSI SAS Gen2 Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI" "LSI Fusion-MPT SCSI Driver (StorPort)" "LSI Corporation" "c:\windows\system32\drivers\lsi_scsi.sys"
+ "LVPr2M64" "Logitech LVPr2M64 Driver" "Logitech Inc." "c:\windows\system32\drivers\lvpr2m64.sys"
+ "LVPr2Mon" "Logitech LVPr2M64 Driver" "Logitech Inc." "c:\windows\system32\drivers\lvpr2m64.sys"
+ "LVRS64" "Logitech Kernel Audio Improvement Filter Driver" "Logitech Inc." "c:\windows\system32\drivers\lvrs64.sys"
+ "LVUVC64" "Logitech USB Video Class Driver" "Logitech Inc." "c:\windows\system32\drivers\lvuvc64.sys"
+ "megasas" "MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64" "LSI Corporation" "c:\windows\system32\drivers\megasas.sys"
+ "MegaSR" "LSI MegaRAID Software RAID Driver" "LSI Corporation, Inc." "c:\windows\system32\drivers\megasr.sys"
+ "nfrd960" "IBM ServeRAID Controller Driver" "IBM Corporation" "c:\windows\system32\drivers\nfrd960.sys"
+ "NVHDA" "NVIDIA HDMI Audio Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvhda64v.sys"
+ "nvlddmkm" "NVIDIA Windows Kernel Mode Driver, Version 306.97 " "NVIDIA Corporation" "c:\windows\system32\drivers\nvlddmkm.sys"
+ "nvraid" "NVIDIA® nForce™ RAID Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvraid.sys"
+ "nvstor" "NVIDIA® nForce™ Sata Performance Driver" "NVIDIA Corporation" "c:\windows\system32\drivers\nvstor.sys"
+ "ql2300" "QLogic Fibre Channel Stor Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx" "QLogic iSCSI Storport Miniport Driver" "QLogic Corporation" "c:\windows\system32\drivers\ql40xx.sys"
+ "RTL8167" "Realtek 8136/8168/8169 NDIS 6.20 64-bit Driver " "Realtek " "c:\windows\system32\drivers\rt64win7.sys"
+ "SAlphamHid" "SteelSeries HID Driver" "SteelSeries Corporation" "c:\windows\system32\drivers\salpham64.sys"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys"
+ "SiSRaid2" "SiS RAID Stor Miniport Driver" "Silicon Integrated Systems Corp." "c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4" "SiS AHCI Stor-Miniport Driver" "Silicon Integrated Systems" "c:\windows\system32\drivers\sisraid4.sys"
+ "SmartDefragDriver" "File driver of SmartDefrag" "" "c:\windows\system32\drivers\smartdefragdriver.sys"
+ "stexstor" "Promise SuperTrak EX Series Driver for Windows " "Promise Technology" "c:\windows\system32\drivers\stexstor.sys"
+ "USBAAPL64" "Apple Mobile Device USB Driver" "Apple, Inc." "c:\windows\system32\drivers\usbaapl64.sys"
+ "viaide" "VIA Generic PCI IDE Bus Driver" "VIA Technologies, Inc." "c:\windows\system32\drivers\viaide.sys"
+ "vsmraid" "VIA RAID DRIVER FOR AMD-X86-64" "VIA Technologies Inc.,Ltd" "c:\windows\system32\drivers\vsmraid.sys"
+ "WinRing0_1_2_0" "WinRing0" "OpenLibSys.org" "c:\program files (x86)\iobit\game booster 3\driver\winring0x64.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm"
+ "VIDC.FFDS" "" "" "c:\windows\system32\ff_vfw.dll"
+ "vidc.i420" "Video Codec" "Logitech Inc." "c:\windows\system32\lvcod64.dll"
+ "VIDC.LAGS" "Lagarith" " " "c:\windows\system32\lagarith.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" ""
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codeca.acm"
+ "msacm.l3codecp" "MPEG Audio Layer-3 Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\syswow64\l3codecp.acm"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\syswow64\iccvid.dll"
+ "VIDC.FFDS" "" "" "c:\program files (x86)\combined community codec pack\filters\ffdshow\ff_vfw.dll"
+ "vidc.i420" "Video Codec" "Logitech Inc." "c:\windows\syswow64\lvcodec2.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "AC3File" "" "" "c:\program files\k-lite codec pack x64\filters\ac3file64.ax"
+ "DirectVobSub" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "MPC-HC Team" "c:\program files\k-lite codec pack x64\filters\vsfilter.dll"
+ "DirectVobSub (auto-loading version)" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "MPC-HC Team" "c:\program files\k-lite codec pack x64\filters\vsfilter.dll"
+ "ffdshow Audio Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack x64\ffdshow\ffdshow.ax"
+ "ffdshow Audio Processor" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack x64\ffdshow\ffdshow.ax"
+ "ffdshow DXVA Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack x64\ffdshow\ffdshow.ax"
+ "ffdshow raw video filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack x64\ffdshow\ffdshow.ax"
+ "ffdshow subtitles filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack x64\ffdshow\ffdshow.ax"
+ "ffdshow Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files\k-lite codec pack x64\ffdshow\ffdshow.ax"
+ "LAV Audio Decoder" "LAV Audio Decoder - DirectShow Audio Decoder" "1f0.de - Hendrik Leppkes" "c:\program files\k-lite codec pack x64\filters\lav\lavaudio.ax"
+ "LAV Splitter" "LAV Splitter - DirectShow Media Splitter" "1f0.de - Hendrik Leppkes" "c:\program files\k-lite codec pack x64\filters\lav\lavsplitter.ax"
+ "LAV Splitter Source" "LAV Splitter - DirectShow Media Splitter" "1f0.de - Hendrik Leppkes" "c:\program files\k-lite codec pack x64\filters\lav\lavsplitter.ax"
+ "LAV Video Decoder" "LAV Video Decoder - DirectShow Video Decoder" "1f0.de - Hendrik Leppkes" "c:\program files\k-lite codec pack x64\filters\lav\lavvideo.ax"
+ "MPC - CDXA Reader" "CDXA Reader Filter" "MPC-HC Team" "c:\program files\k-lite codec pack x64\filters\cdxareader.ax"
+ "MS PR Source Filter" "PlayReady DirectShow Source Filter DLL" "Microsoft Corporation" "c:\program files\playready\prsource.dll"
+ "PlayReady DMO Wrapper" "PlayReady DirectShow DMO Wrapper Filter DLL" "Microsoft Corporation" "c:\program files\playready\prdmowrapper.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" ""
+ "AC3 Decoder Filter" "TODO: <파일 설명>" "TODO: <회사 이름>" "c:\program files (x86)\myfree codec\1.0b beta\ac-3\ac3dx.ax"
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "CoreAAC Audio Decoder" "CoreAAC" "" "c:\windows\syswow64\coreaac.ax"
+ "CoreFLAC Audio Decoder" "CoreFLAC Audio Decoder & Source DirectShow Filter" "-" "c:\program files (x86)\matroska pack\coreflacdecoder.ax"
+ "CoreFLAC Audio Source" "CoreFLAC Audio Decoder & Source DirectShow Filter" "-" "c:\program files (x86)\matroska pack\coreflacdecoder.ax"
+ "DirectVobSub" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "MPC-HC Team" "c:\program files (x86)\combined community codec pack\filters\vsfilter.dll"
+ "DirectVobSub (auto-loading version)" "VobSub & TextSub filter for DirectShow/VirtualDub/Avisynth" "MPC-HC Team" "c:\program files (x86)\combined community codec pack\filters\vsfilter.dll"
+ "DivX for Blizzard Decoder Filter" "DivX ™ Decoder Filter" "DivXNetworks, Inc." "c:\program files (x86)\warcraft iii\blizzard.ax"
+ "ffdshow Audio Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\combined community codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow Audio Processor" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\combined community codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow DXVA Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\combined community codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow raw video filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\combined community codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow subtitles filter" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\combined community codec pack\filters\ffdshow\ffdshow.ax"
+ "ffdshow VFW decoder helper" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\matroska pack\ffdshow\ffdshow.ax"
+ "ffdshow Video Decoder" "DirectShow and VFW video and audio decoding/encoding/processing filter" "" "c:\program files (x86)\combined community codec pack\filters\ffdshow\ffdshow.ax"
+ "GPL MPEG-1/2 Decoder" "GPL MPEG-1/2 Decoder Filter for DirectShow" "Peter Wimmer, Gabest" "c:\program files (x86)\matroska pack\gplmpgdec.ax"
+ "Haali Matroska Muxer" "Haali Media Splitter" "" "c:\program files (x86)\combined community codec pack\filters\haali\splitter.ax"
+ "Haali Media Splitter" "Haali Media Splitter" "" "c:\program files (x86)\combined community codec pack\filters\haali\splitter.ax"
+ "Haali Media Splitter (AR)" "Haali Media Splitter" "" "c:\program files (x86)\combined community codec pack\filters\haali\splitter.ax"
+ "Haali Simple Media Splitter" "Haali Media Splitter" "" "c:\program files (x86)\combined community codec pack\filters\haali\splitter.ax"
+ "Haali Video Renderer" "" "" "c:\program files (x86)\combined community codec pack\filters\haali\dxr.dll"
+ "Haali Video Sink" "Haali Media Splitter" "" "c:\program files (x86)\combined community codec pack\filters\haali\splitter.ax"
+ "LAV Audio Decoder" "LAV Audio Decoder - DirectShow Audio Decoder" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\combined community codec pack\filters\lavfilters\lavaudio.ax"
+ "LAV Splitter" "LAV Splitter - DirectShow Media Splitter" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\combined community codec pack\filters\lavfilters\lavsplitter.ax"
+ "LAV Splitter Source" "LAV Splitter - DirectShow Media Splitter" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\combined community codec pack\filters\lavfilters\lavsplitter.ax"
+ "LAV Video Decoder" "LAV Video Decoder - DirectShow Video Decoder" "1f0.de - Hendrik Leppkes" "c:\program files (x86)\combined community codec pack\filters\lavfilters\lavvideo.ax"
+ "Matroska Muxer" "Matroska Muxer" "Gabest" "c:\program files (x86)\matroska pack\matroskamuxer.ax"
+ "MPC - FLV Source (Gabest)" "FLV Splitter" "Gabest" "c:\program files (x86)\essentials codec pack\gabset\flvsplitter.ax"
+ "MPC - FLV Splitter (Gabest)" "FLV Splitter" "Gabest" "c:\program files (x86)\essentials codec pack\gabset\flvsplitter.ax"
+ "MPC - MPEG-2 Video Decoder (Gabest)" "MPEG-2 Decoder Filter for DirectShow" "MPC-HC Team" "c:\program files (x86)\combined community codec pack\filters\mpeg2decfilter.ax"
+ "MyFree Codec Filter" "" "" "c:\program files (x86)\myfree codec\1.0b beta\myfree.ax"
+ "ORBAN-CT AAC/aacPlus Stream Parser" "ORBAN / CT aacPlus Parser 1.1" "" "c:\program files (x86)\orban\aac-aacplus plugin\aacpparser.dll"
+ "RealAudio Decoder" "RealMedia Splitter" "Gabest" "c:\program files (x86)\matroska pack\realmediasplitter.ax"
+ "RealMedia Source" "RealMedia Splitter" "Gabest" "c:\program files (x86)\matroska pack\realmediasplitter.ax"
+ "RealMedia Splitter" "RealMedia Splitter" "Gabest" "c:\program files (x86)\matroska pack\realmediasplitter.ax"
+ "RealVideo Decoder" "RealMedia Splitter" "Gabest" "c:\program files (x86)\matroska pack\realmediasplitter.ax"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "True Audio Decoder" "True Audio DirectShow Decoder" "-" "c:\program files (x86)\matroska pack\ttadsdecoder.ax"
+ "True Audio Splitter" "True Audio DirectShow Splitter" "-" "c:\program files (x86)\matroska pack\ttadssplitter.ax"
+ "VHAudioGain" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\cultures\vhmediacom.dll"
+ "VHCropResize" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\cultures\vhmediacom.dll"
+ "VHDeinterlace" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\cultures\vhmediacom.dll"
+ "VHFrameRateConv" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\cultures\vhmediacom.dll"
+ "VHMixerSource" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\cultures\vhmediacom.dll"
+ "VHMultiReader" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\cultures\vhmediacom.dll"
+ "VHMultiWriter" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\cultures\vhmediacom.dll"
+ "VHSplitProcSource" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\cultures\vhmediacom.dll"
+ "VHYV12Decoder" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\cultures\vhmediacom.dll"
+ "VHYV12Encoder" "VHMediaLib COM implementation" "SplitmediaLabs Limited" "c:\program files (x86)\splitmedialabs\xsplit\cultures\vhmediacom.dll"
+ "WavPack Audio Decoder" "WavPack Audio DirectShow Decoder" "-" "c:\program files (x86)\matroska pack\wavpackdsdecoder.ax"
+ "WavPack Audio Splitter" "WavPack Audio DirectShow Splitter" "-" "c:\program files (x86)\matroska pack\wavpackdssplitter.ax"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files (x86)\windows live\photo gallery\wlxvafilt.dll"
+ "Xvid MPEG-4 Video Decoder" "" "" "c:\program files (x86)\myfree codec\1.0b beta\xvid-core\xvid.ax"
"HKLM\System\CurrentControlSet\Control\Session Manager\BootExecute" "" "" ""
+ "SmartDefragBootTime.exe" "SmartDefrag" "IObit" "c:\windows\system32\smartdefragboottime.exe"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" ""
+ "WLIDCredentialProvider" "Microsoft® Windows Live ID Credential Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidcredprov.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files (x86)\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64" "" "" ""
+ "mdnsNSP" "Bonjour Namespace Provider" "Apple Inc." "c:\program files\bonjour\mdnsnsp.dll"
+ "WindowsLive Local NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
+ "WindowsLive NSP" "Microsoft® Windows Live ID Namespace Provider" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" ""
+ "PCL hpf3lw73" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpf3lw73.dll"
#9
narenxp
-
- BC Advisor
-
- 16,365 posts
Forum Addict
- Gender:Male
- Location:India
#10
Y2Krj
-
- Members
-
- 15 posts
Member
#11
narenxp
-
- BC Advisor
-
- 16,365 posts
Forum Addict
- Gender:Male
- Location:India
Posted 04 November 2012 - 10:28 AM
Export bookmarks from google chrome using this guide
http://support.google.com/chrome/bin/answer.py?hl=en&answer=96816
Uninstall google chrome,make sure to checkmark Also delete browsing data option
Reinstall chrome and check your web pages.
Let me know how it goes.
http://support.google.com/chrome/bin/answer.py?hl=en&answer=96816
Uninstall google chrome,make sure to checkmark Also delete browsing data option
Reinstall chrome and check your web pages.
Let me know how it goes.
#12
Y2Krj
-
- Members
-
- 15 posts
Member
Posted 04 November 2012 - 10:30 AM
I just uninstalled the FBPhotoZoom Extension from my Chrome and the ads have disappeared. Seems like that caused the problem in the first place.
#13
narenxp
-
- BC Advisor
-
- 16,365 posts
Forum Addict
- Gender:Male
- Location:India
Posted 04 November 2012 - 10:38 AM
Thankyou for letting me know
Remove temporary and junk files
Download
TFC
Launch it,it will close all running programs
click on START,it should ask for reboot.If TFC locks up the system,run it in safemode
Create a new restore point
Follow this guide to turn off and turn on your restore points
XP- http://support.microsoft.com/kb/310405
Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off
Turn off your system restore-It deletes old infected restore points
Turn on system restore and create a new restore point
Update JAVA and Flash player
Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here
http://java.com/en/
Update your flash player
Antivirus recommendations
Update your antivirus frequently.Two free antivirus that i would suggest are
Microsoft security essentials or Avast.You can select either one of them.
If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.
Informative guides that could prevent you from being infected again
How did I get infected?
http://www.bleepingcomputer.com/forums/topic2520.html
Best Practices for Safe Computing - Prevention of Malware Infection
http://www.bleepingcomputer.com/forums/topic407147.html
Simple and easy ways to keep your computer safe and secure on the Internet
http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/
Safe surfing
Remove temporary and junk files
Download
TFC
Launch it,it will close all running programs
click on START,it should ask for reboot.If TFC locks up the system,run it in safemode
Create a new restore point
Follow this guide to turn off and turn on your restore points
XP- http://support.microsoft.com/kb/310405
Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off
Turn off your system restore-It deletes old infected restore points
Turn on system restore and create a new restore point
Update JAVA and Flash player
Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here
http://java.com/en/
Update your flash player
Antivirus recommendations
Update your antivirus frequently.Two free antivirus that i would suggest are
Microsoft security essentials or Avast.You can select either one of them.
If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.
Informative guides that could prevent you from being infected again
How did I get infected?
http://www.bleepingcomputer.com/forums/topic2520.html
Best Practices for Safe Computing - Prevention of Malware Infection
http://www.bleepingcomputer.com/forums/topic407147.html
Simple and easy ways to keep your computer safe and secure on the Internet
http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/
Safe surfing
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
