Jump to content


 

Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

btsearch.name google redirect

Started by Reqiuem , Nov 11 2012 01:55 AM

  • Please log in to reply
10 replies to this topic

#1 Reqiuem

Reqiuem

    New Member

  • Members
  • Pip
  • 10 posts

Posted 11 November 2012 - 01:55 AM

When I open chrome, or attempt to search in the omnibox, instead of Google I'm sent to a custom google search with the URL http://search.openmediasoft.com/
I've tried to change google back to the default in the google chrome settings tab, but when I restart, whatever program is causing this sets the search back to the other URL. It seems more tedious than actually threatening, but the constant changing back is rather suspicious, and I'd like to get rid of it. I've run Malwarebytes, but my computer has come up clean.

 

  • BC Ads
  • BleepingComputer.com

#2 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,365 posts
  • Gender:Male
  • Location:India

Posted 11 November 2012 - 05:28 AM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results

Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here.If you get crashes in normal mode,run it in safemode with networking

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#3 Reqiuem

Reqiuem

    New Member

  • Members
  • Pip
  • 10 posts

Posted 12 November 2012 - 01:06 AM

Can't find any place to attach the files so here they are:
TDSS
10:18:19.0296 2688  TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
10:18:19.0748 2688  ============================================================
10:18:19.0748 2688  Current date / time: 2012/11/11 10:18:19.0748
10:18:19.0748 2688  SystemInfo:
10:18:19.0748 2688  
10:18:19.0749 2688  OS Version: 6.1.7601 ServicePack: 1.0
10:18:19.0749 2688  Product type: Workstation
10:18:19.0749 2688  ComputerName: ZARROKK-PC
10:18:19.0749 2688  UserName: Zarrokk
10:18:19.0749 2688  Windows directory: C:\Windows
10:18:19.0749 2688  System windows directory: C:\Windows
10:18:19.0749 2688  Running under WOW64
10:18:19.0749 2688  Processor architecture: Intel x64
10:18:19.0749 2688  Number of processors: 2
10:18:19.0749 2688  Page size: 0x1000
10:18:19.0749 2688  Boot type: Normal boot
10:18:19.0749 2688  ============================================================
10:18:22.0250 2688  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:18:22.0259 2688  ============================================================
10:18:22.0260 2688  \Device\Harddisk0\DR0:
10:18:22.0284 2688  GPT partitions:
10:18:22.0284 2688  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {45B7370E-D4F5-4CC1-A4C0-ECC4D578A8F8}, Name: EFI System Partition, StartLBA 0x28, BlocksNum 0x64000
10:18:22.0284 2688  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {48465300-0000-11AA-AA11-00306543ECAC}, UniqueGUID: {F8258305-43DB-4E56-8590-DB90E9388551}, Name: P1, StartLBA 0x64028, BlocksNum 0x11588BC0
10:18:22.0284 2688  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {942F0D69-246D-4595-9893-0C454B98F3A3}, Name: BOOTCAMP, StartLBA 0x1162D000, BlocksNum 0xBB98800
10:18:22.0284 2688  MBR partitions:
10:18:22.0284 2688  \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0x1162D000, BlocksNum 0xBB98800
10:18:22.0284 2688  ============================================================
10:18:22.0351 2688  C: <-> \Device\Harddisk0\DR0\Partition4
10:18:22.0351 2688  ============================================================
10:18:22.0351 2688  Initialize success
10:18:22.0351 2688  ============================================================
10:18:23.0697 3996  ============================================================
10:18:23.0697 3996  Scan started
10:18:23.0697 3996  Mode: Manual; 
10:18:23.0697 3996  ============================================================
10:18:25.0644 3996  ================ Scan system memory ========================
10:18:25.0644 3996  System memory - ok
10:18:25.0645 3996  ================ Scan services =============================
10:18:26.0433 3996  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
10:18:26.0436 3996  1394ohci - ok
10:18:26.0548 3996  [ 61A581E5481E22A76A88490C57015105 ] ACDaemon        C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
10:18:26.0550 3996  ACDaemon - ok
10:18:26.0594 3996  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
10:18:26.0600 3996  ACPI - ok
10:18:26.0644 3996  [ 12C5274CD87449A2A37A607CDB321922 ] acpials         C:\Windows\system32\DRIVERS\acpials.sys
10:18:26.0645 3996  acpials - ok
10:18:26.0692 3996  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
10:18:26.0692 3996  AcpiPmi - ok
10:18:26.0781 3996  [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
10:18:26.0783 3996  AdobeARMservice - ok
10:18:26.0937 3996  [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
10:18:26.0938 3996  AdobeFlashPlayerUpdateSvc - ok
10:18:26.0996 3996  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
10:18:27.0003 3996  adp94xx - ok
10:18:27.0065 3996  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
10:18:27.0070 3996  adpahci - ok
10:18:27.0090 3996  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
10:18:27.0092 3996  adpu320 - ok
10:18:27.0132 3996  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
10:18:27.0134 3996  AeLookupSvc - ok
10:18:27.0187 3996  [ 6CCD1135320109D6B219F1A6E04AD9F6 ] Afc             C:\Windows\syswow64\drivers\Afc.sys
10:18:27.0188 3996  Afc - ok
10:18:27.0246 3996  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
10:18:27.0252 3996  AFD - ok
10:18:27.0299 3996  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
10:18:27.0301 3996  agp440 - ok
10:18:27.0339 3996  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
10:18:27.0340 3996  ALG - ok
10:18:27.0375 3996  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
10:18:27.0375 3996  aliide - ok
10:18:27.0388 3996  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
10:18:27.0389 3996  amdide - ok
10:18:27.0427 3996  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
10:18:27.0428 3996  AmdK8 - ok
10:18:27.0453 3996  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
10:18:27.0455 3996  AmdPPM - ok
10:18:27.0510 3996  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
10:18:27.0570 3996  amdsata - ok
10:18:27.0597 3996  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
10:18:27.0600 3996  amdsbs - ok
10:18:27.0625 3996  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
10:18:27.0626 3996  amdxata - ok
10:18:27.0703 3996  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
10:18:27.0704 3996  AppID - ok
10:18:27.0734 3996  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
10:18:27.0735 3996  AppIDSvc - ok
10:18:27.0753 3996  [ 3977D4A871CA0D4F2ED1E7DB46829731 ] Appinfo         C:\Windows\System32\appinfo.dll
10:18:27.0755 3996  Appinfo - ok
10:18:27.0841 3996  [ F401929EE0CC92BFE7F15161CA535383 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
10:18:27.0843 3996  Apple Mobile Device - ok
10:18:27.0902 3996  [ F65D10A8637F5EB0C6F7811548B06770 ] AppleBtBc       C:\Windows\system32\DRIVERS\AppleBtBc.sys
10:18:27.0902 3996  AppleBtBc - ok
10:18:27.0944 3996  [ B3D07AC99E35AADD1EEC5669CDC15CC6 ] AppleHFS        C:\Windows\system32\drivers\AppleHFS.sys
10:18:27.0945 3996  AppleHFS - ok
10:18:27.0981 3996  [ 6882A29F98BAD0C7E77D6773B072B462 ] AppleMNT        C:\Windows\system32\drivers\AppleMNT.sys
10:18:27.0982 3996  AppleMNT - ok
10:18:28.0031 3996  [ A0A045A7CC583E1B024ABA3E9B38E2C0 ] applemtm        C:\Windows\system32\DRIVERS\applemtm.sys
10:18:28.0032 3996  applemtm - ok
10:18:28.0067 3996  [ ACEADB1A68DCA39B055C32ABC192197A ] applemtp        C:\Windows\system32\DRIVERS\applemtp.sys
10:18:28.0068 3996  applemtp - ok
10:18:28.0138 3996  [ 0039E9279A22BAA91F4EDEA153BBDAFF ] AppleOSSMgr     C:\Windows\system32\AppleOSSMgr.exe
10:18:28.0141 3996  AppleOSSMgr - ok
10:18:28.0186 3996  [ F3C77C2B1D5613AECF3D75B68B538102 ] AppleTimeSrv    C:\Windows\system32\AppleTimeSrv.exe
10:18:28.0188 3996  AppleTimeSrv - ok
10:18:28.0258 3996  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
10:18:28.0260 3996  arc - ok
10:18:28.0281 3996  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
10:18:28.0283 3996  arcsas - ok
10:18:28.0325 3996  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
10:18:28.0326 3996  AsyncMac - ok
10:18:28.0342 3996  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
10:18:28.0342 3996  atapi - ok
10:18:28.0393 3996  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
10:18:28.0402 3996  AudioEndpointBuilder - ok
10:18:28.0420 3996  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
10:18:28.0423 3996  AudioSrv - ok
10:18:28.0449 3996  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
10:18:28.0451 3996  AxInstSV - ok
10:18:28.0515 3996  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
10:18:28.0521 3996  b06bdrv - ok
10:18:28.0584 3996  [ BFD70BEA3F8398F6B8B44E5CDED3249C ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
10:18:28.0589 3996  b57nd60a - ok
10:18:28.0736 3996  [ 64032CA1644A336BD98ACFA5601E925E ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys
10:18:28.0848 3996  BCM43XX - ok
10:18:28.0911 3996  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
10:18:28.0913 3996  BDESVC - ok
10:18:28.0984 3996  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
10:18:28.0984 3996  Beep - ok
10:18:29.0035 3996  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
10:18:29.0045 3996  BFE - ok
10:18:29.0094 3996  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\system32\qmgr.dll
10:18:29.0107 3996  BITS - ok
10:18:29.0149 3996  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
10:18:29.0169 3996  blbdrive - ok
10:18:29.0311 3996  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
10:18:29.0318 3996  Bonjour Service - ok
10:18:29.0357 3996  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
10:18:29.0359 3996  bowser - ok
10:18:29.0394 3996  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
10:18:29.0394 3996  BrFiltLo - ok
10:18:29.0429 3996  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
10:18:29.0430 3996  BrFiltUp - ok
10:18:29.0470 3996  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
10:18:29.0471 3996  BridgeMP - ok
10:18:29.0524 3996  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
10:18:29.0526 3996  Browser - ok
10:18:29.0552 3996  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
10:18:29.0556 3996  Brserid - ok
10:18:29.0585 3996  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
10:18:29.0586 3996  BrSerWdm - ok
10:18:29.0622 3996  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
10:18:29.0623 3996  BrUsbMdm - ok
10:18:29.0641 3996  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
10:18:29.0642 3996  BrUsbSer - ok
10:18:29.0729 3996  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
10:18:29.0730 3996  BthEnum - ok
10:18:29.0761 3996  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
10:18:29.0762 3996  BTHMODEM - ok
10:18:29.0828 3996  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
10:18:29.0830 3996  BthPan - ok
10:18:29.0855 3996  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
10:18:29.0862 3996  BTHPORT - ok
10:18:29.0907 3996  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
10:18:29.0908 3996  bthserv - ok
10:18:29.0945 3996  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
10:18:29.0947 3996  BTHUSB - ok
10:18:29.0984 3996  catchme - ok
10:18:30.0023 3996  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
10:18:30.0025 3996  cdfs - ok
10:18:30.0061 3996  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
10:18:30.0066 3996  cdrom - ok
10:18:30.0109 3996  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
10:18:30.0111 3996  CertPropSvc - ok
10:18:30.0142 3996  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
10:18:30.0143 3996  circlass - ok
10:18:30.0187 3996  [ 11DA0CCBCE49E7A4C6A4F9F2B4E858F8 ] CirrusFilter    C:\Windows\system32\DRIVERS\CS420x64.sys
10:18:30.0188 3996  CirrusFilter - ok
10:18:30.0213 3996  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
10:18:30.0219 3996  CLFS - ok
10:18:30.0288 3996  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
10:18:30.0309 3996  clr_optimization_v2.0.50727_32 - ok
10:18:30.0428 3996  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
10:18:30.0430 3996  clr_optimization_v2.0.50727_64 - ok
10:18:30.0570 3996  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
10:18:30.0572 3996  clr_optimization_v4.0.30319_32 - ok
10:18:30.0632 3996  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
10:18:30.0635 3996  clr_optimization_v4.0.30319_64 - ok
10:18:30.0699 3996  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
10:18:30.0700 3996  CmBatt - ok
10:18:30.0725 3996  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
10:18:30.0726 3996  cmdide - ok
10:18:30.0780 3996  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
10:18:30.0786 3996  CNG - ok
10:18:30.0833 3996  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
10:18:30.0834 3996  Compbatt - ok
10:18:30.0868 3996  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
10:18:30.0869 3996  CompositeBus - ok
10:18:30.0885 3996  COMSysApp - ok
10:18:30.0907 3996  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
10:18:30.0908 3996  crcdisk - ok
10:18:30.0979 3996  [ 9C01375BE382E834CC26D1B7EAF2C4FE ] CryptSvc        C:\Windows\system32\cryptsvc.dll
10:18:30.0982 3996  CryptSvc - ok
10:18:31.0028 3996  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
10:18:31.0038 3996  DcomLaunch - ok
10:18:31.0087 3996  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
10:18:31.0092 3996  defragsvc - ok
10:18:31.0136 3996  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
10:18:31.0138 3996  DfsC - ok
10:18:31.0185 3996  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
10:18:31.0190 3996  Dhcp - ok
10:18:31.0222 3996  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
10:18:31.0223 3996  discache - ok
10:18:31.0271 3996  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
10:18:31.0273 3996  Disk - ok
10:18:31.0323 3996  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
10:18:31.0326 3996  Dnscache - ok
10:18:31.0364 3996  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
10:18:31.0369 3996  dot3svc - ok
10:18:31.0391 3996  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
10:18:31.0393 3996  DPS - ok
10:18:31.0421 3996  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
10:18:31.0421 3996  drmkaud - ok
10:18:31.0460 3996  [ 46571ED73AE84469DCA53081D33CF3C8 ] dtsoftbus01     C:\Windows\system32\DRIVERS\dtsoftbus01.sys
10:18:31.0464 3996  dtsoftbus01 - ok
10:18:31.0523 3996  [ F5BEE30450E18E6B83A5012C100616FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
10:18:31.0536 3996  DXGKrnl - ok
10:18:31.0581 3996  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
10:18:31.0603 3996  EapHost - ok
10:18:31.0701 3996  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
10:18:31.0793 3996  ebdrv - ok
10:18:31.0839 3996  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
10:18:31.0841 3996  EFS - ok
10:18:31.0922 3996  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
10:18:31.0932 3996  ehRecvr - ok
10:18:31.0945 3996  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
10:18:31.0947 3996  ehSched - ok
10:18:32.0002 3996  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
10:18:32.0009 3996  elxstor - ok
10:18:32.0028 3996  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
10:18:32.0051 3996  ErrDev - ok
10:18:32.0119 3996  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
10:18:32.0125 3996  EventSystem - ok
10:18:32.0168 3996  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
10:18:32.0171 3996  exfat - ok
10:18:32.0219 3996  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
10:18:32.0222 3996  fastfat - ok
10:18:32.0275 3996  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
10:18:32.0287 3996  Fax - ok
10:18:32.0305 3996  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
10:18:32.0306 3996  fdc - ok
10:18:32.0351 3996  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
10:18:32.0353 3996  fdPHost - ok
10:18:32.0364 3996  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
10:18:32.0368 3996  FDResPub - ok
10:18:32.0407 3996  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
10:18:32.0424 3996  FileInfo - ok
10:18:32.0454 3996  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
10:18:32.0455 3996  Filetrace - ok
10:18:32.0587 3996  [ BB0667B0171B632B97EA759515476F07 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
10:18:32.0595 3996  FLEXnet Licensing Service - ok
10:18:32.0613 3996  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
10:18:32.0614 3996  flpydisk - ok
10:18:32.0652 3996  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
10:18:32.0657 3996  FltMgr - ok
10:18:32.0736 3996  [ 5C4CB4086FB83115B153E47ADD961A0C ] FontCache       C:\Windows\system32\FntCache.dll
10:18:32.0752 3996  FontCache - ok
10:18:32.0822 3996  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
10:18:32.0823 3996  FontCache3.0.0.0 - ok
10:18:32.0847 3996  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
10:18:32.0851 3996  FsDepends - ok
10:18:32.0892 3996  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
10:18:32.0893 3996  Fs_Rec - ok
10:18:32.0942 3996  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
10:18:32.0946 3996  fvevol - ok
10:18:32.0979 3996  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
10:18:32.0980 3996  gagp30kx - ok
10:18:33.0029 3996  [ E403AACF8C7BB11375122D2464560311 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:18:33.0030 3996  GEARAspiWDM - ok
10:18:33.0416 3996  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
10:18:33.0464 3996  gpsvc - ok
10:18:33.0510 3996  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
10:18:33.0511 3996  hcw85cir - ok
10:18:33.0569 3996  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
10:18:33.0574 3996  HdAudAddService - ok
10:18:33.0624 3996  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
10:18:33.0626 3996  HDAudBus - ok
10:18:33.0662 3996  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
10:18:33.0663 3996  HidBatt - ok
10:18:33.0684 3996  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
10:18:33.0686 3996  HidBth - ok
10:18:33.0719 3996  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
10:18:33.0720 3996  HidIr - ok
10:18:33.0758 3996  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\System32\hidserv.dll
10:18:33.0760 3996  hidserv - ok
10:18:33.0809 3996  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
10:18:33.0810 3996  HidUsb - ok
10:18:33.0868 3996  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
10:18:33.0871 3996  hkmsvc - ok
10:18:33.0893 3996  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
10:18:33.0897 3996  HomeGroupListener - ok
10:18:33.0936 3996  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
10:18:33.0940 3996  HomeGroupProvider - ok
10:18:33.0973 3996  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
10:18:33.0975 3996  HpSAMD - ok
10:18:34.0008 3996  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
10:18:34.0018 3996  HTTP - ok
10:18:34.0052 3996  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
10:18:34.0053 3996  hwpolicy - ok
10:18:34.0111 3996  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
10:18:34.0113 3996  i8042prt - ok
10:18:34.0175 3996  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
10:18:34.0181 3996  iaStorV - ok
10:18:34.0275 3996  [ DAF66902F08796F9C694901660E5A64A ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
10:18:34.0276 3996  IDriverT - ok
10:18:34.0348 3996  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
10:18:34.0360 3996  idsvc - ok
10:18:34.0408 3996  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
10:18:34.0409 3996  iirsp - ok
10:18:34.0463 3996  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
10:18:34.0478 3996  IKEEXT - ok
10:18:34.0514 3996  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
10:18:34.0515 3996  intelide - ok
10:18:34.0555 3996  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
10:18:34.0556 3996  intelppm - ok
10:18:34.0602 3996  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
10:18:34.0604 3996  IPBusEnum - ok
10:18:34.0635 3996  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:18:34.0637 3996  IpFilterDriver - ok
10:18:34.0672 3996  [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
10:18:34.0680 3996  iphlpsvc - ok
10:18:34.0715 3996  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
10:18:34.0716 3996  IPMIDRV - ok
10:18:34.0742 3996  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
10:18:34.0744 3996  IPNAT - ok
10:18:34.0803 3996  [ A9AB99EE7D39725EAFEC82732D2B3271 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
10:18:34.0815 3996  iPod Service - ok
10:18:34.0865 3996  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
10:18:34.0866 3996  IRENUM - ok
10:18:34.0896 3996  [ A2EA52F7140D9439EF0ECA7A9E2940C9 ] IRRemoteFlt     C:\Windows\system32\DRIVERS\IRFilter.sys
10:18:34.0897 3996  IRRemoteFlt - ok
10:18:34.0931 3996  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
10:18:34.0932 3996  isapnp - ok
10:18:34.0959 3996  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
10:18:34.0963 3996  iScsiPrt - ok
10:18:34.0991 3996  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
10:18:34.0993 3996  kbdclass - ok
10:18:35.0023 3996  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
10:18:35.0024 3996  kbdhid - ok
10:18:35.0095 3996  [ D807B0B9549705D0536458CBBC8A0857 ] KeyAgent        C:\Windows\system32\drivers\KeyAgent.sys
10:18:35.0096 3996  KeyAgent - ok
10:18:35.0118 3996  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
10:18:35.0120 3996  KeyIso - ok
10:18:35.0207 3996  [ C307A605C49D21592B6C9BB41FBE893B ] KeyMagic        C:\Windows\system32\DRIVERS\KeyMagic.sys
10:18:35.0208 3996  KeyMagic - ok
10:18:35.0246 3996  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
10:18:35.0248 3996  KSecDD - ok
10:18:35.0274 3996  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
10:18:35.0276 3996  KSecPkg - ok
10:18:35.0321 3996  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
10:18:35.0322 3996  ksthunk - ok
10:18:35.0361 3996  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
10:18:35.0367 3996  KtmRm - ok
10:18:35.0419 3996  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\System32\srvsvc.dll
10:18:35.0424 3996  LanmanServer - ok
10:18:35.0482 3996  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
10:18:35.0488 3996  LanmanWorkstation - ok
10:18:35.0527 3996  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
10:18:35.0529 3996  lltdio - ok
10:18:35.0581 3996  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
10:18:35.0588 3996  lltdsvc - ok
10:18:35.0613 3996  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
10:18:35.0614 3996  lmhosts - ok
10:18:35.0665 3996  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
10:18:35.0669 3996  LSI_FC - ok
10:18:35.0677 3996  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
10:18:35.0679 3996  LSI_SAS - ok
10:18:35.0720 3996  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
10:18:35.0722 3996  LSI_SAS2 - ok
10:18:35.0737 3996  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
10:18:35.0740 3996  LSI_SCSI - ok
10:18:35.0762 3996  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
10:18:35.0764 3996  luafv - ok
10:18:35.0803 3996  [ 2E08DEE5F6D31FAFA758D42D7DC83884 ] MacHALDriver    C:\Windows\system32\drivers\MacHALDriver.sys
10:18:35.0804 3996  MacHALDriver - ok
10:18:35.0837 3996  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
10:18:35.0839 3996  Mcx2Svc - ok
10:18:35.0864 3996  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
10:18:35.0866 3996  megasas - ok
10:18:35.0908 3996  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
10:18:35.0913 3996  MegaSR - ok
10:18:35.0953 3996  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
10:18:35.0955 3996  MMCSS - ok
10:18:35.0978 3996  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
10:18:35.0980 3996  Modem - ok
10:18:36.0009 3996  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
10:18:36.0010 3996  monitor - ok
10:18:36.0048 3996  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
10:18:36.0050 3996  mouclass - ok
10:18:36.0081 3996  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
10:18:36.0086 3996  mouhid - ok
10:18:36.0127 3996  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
10:18:36.0129 3996  mountmgr - ok
10:18:36.0153 3996  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
10:18:36.0156 3996  mpio - ok
10:18:36.0187 3996  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
10:18:36.0189 3996  mpsdrv - ok
10:18:36.0250 3996  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
10:18:36.0264 3996  MpsSvc - ok
10:18:36.0311 3996  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
10:18:36.0314 3996  MRxDAV - ok
10:18:36.0357 3996  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
10:18:36.0359 3996  mrxsmb - ok
10:18:36.0387 3996  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:18:36.0391 3996  mrxsmb10 - ok
10:18:36.0411 3996  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:18:36.0413 3996  mrxsmb20 - ok
10:18:36.0453 3996  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
10:18:36.0454 3996  msahci - ok
10:18:36.0525 3996  [ 8E46A7BAC823DD82D4FB2A34C3DF4C1D ] MSCSPTISRV      C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
10:18:36.0527 3996  MSCSPTISRV - ok
10:18:36.0547 3996  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
10:18:36.0549 3996  msdsm - ok
10:18:36.0589 3996  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
10:18:36.0592 3996  MSDTC - ok
10:18:36.0620 3996  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
10:18:36.0621 3996  Msfs - ok
10:18:36.0669 3996  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
10:18:36.0670 3996  mshidkmdf - ok
10:18:36.0677 3996  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
10:18:36.0678 3996  msisadrv - ok
10:18:36.0713 3996  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
10:18:36.0716 3996  MSiSCSI - ok
10:18:36.0724 3996  msiserver - ok
10:18:36.0769 3996  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
10:18:36.0770 3996  MSKSSRV - ok
10:18:36.0789 3996  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
10:18:36.0790 3996  MSPCLOCK - ok
10:18:36.0808 3996  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
10:18:36.0809 3996  MSPQM - ok
10:18:36.0853 3996  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
10:18:36.0859 3996  MsRPC - ok
10:18:36.0903 3996  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
10:18:36.0904 3996  mssmbios - ok
10:18:36.0917 3996  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
10:18:36.0919 3996  MSTEE - ok
10:18:36.0939 3996  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
10:18:36.0940 3996  MTConfig - ok
10:18:37.0087 3996  [ 04B41B25CAC82D7A2F7C4FA8975E2817 ] MT_TRACKPAD     C:\Windows\system32\drivers\MT_Trackpad.sys
10:18:37.0088 3996  MT_TRACKPAD - ok
10:18:37.0123 3996  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
10:18:37.0124 3996  Mup - ok
10:18:37.0174 3996  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
10:18:37.0182 3996  napagent - ok
10:18:37.0242 3996  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
10:18:37.0247 3996  NativeWifiP - ok
10:18:37.0346 3996  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
10:18:37.0360 3996  NDIS - ok
10:18:37.0386 3996  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
10:18:37.0388 3996  NdisCap - ok
10:18:37.0432 3996  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
10:18:37.0433 3996  NdisTapi - ok
10:18:37.0464 3996  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
10:18:37.0465 3996  Ndisuio - ok
10:18:37.0488 3996  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
10:18:37.0491 3996  NdisWan - ok
10:18:37.0508 3996  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
10:18:37.0509 3996  NDProxy - ok
10:18:37.0558 3996  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
10:18:37.0559 3996  NetBIOS - ok
10:18:37.0584 3996  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
10:18:37.0589 3996  NetBT - ok
10:18:37.0617 3996  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
10:18:37.0619 3996  Netlogon - ok
10:18:37.0660 3996  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
10:18:37.0665 3996  Netman - ok
10:18:37.0681 3996  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
10:18:37.0689 3996  netprofm - ok
10:18:37.0725 3996  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
10:18:37.0727 3996  NetTcpPortSharing - ok
10:18:37.0778 3996  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
10:18:37.0779 3996  nfrd960 - ok
10:18:37.0828 3996  [ 1EE99A89CC788ADA662441D1E9830529 ] NlaSvc          C:\Windows\System32\nlasvc.dll
10:18:37.0833 3996  NlaSvc - ok
10:18:37.0851 3996  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
10:18:37.0854 3996  Npfs - ok
10:18:37.0879 3996  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
10:18:37.0881 3996  nsi - ok
10:18:37.0896 3996  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
10:18:37.0897 3996  nsiproxy - ok
10:18:37.0987 3996  [ E453ACF4E7D44E5530B5D5F2B9CA8563 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
10:18:38.0011 3996  Ntfs - ok
10:18:38.0043 3996  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
10:18:38.0044 3996  Null - ok
10:18:38.0087 3996  [ 786DB821BFD57C0551DBBE4F75384A7D ] nusb3hub        C:\Windows\system32\drivers\nusb3hub.sys
10:18:38.0088 3996  nusb3hub - ok
10:18:38.0127 3996  [ DAA8005CAF745042BB427A1ED7433354 ] nusb3xhc        C:\Windows\system32\drivers\nusb3xhc.sys
10:18:38.0130 3996  nusb3xhc - ok
10:18:38.0221 3996  [ E20ABD5B229760158F753CA90B97E090 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
10:18:38.0265 3996  NVHDA - ok
10:18:38.0796 3996  [ 4A05684DA143D35F67431C0C5246BC29 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
10:18:39.0121 3996  nvlddmkm - ok
10:18:39.0171 3996  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
10:18:39.0174 3996  nvraid - ok
10:18:39.0235 3996  [ 61A59FB62864EB3F32D24985A505CE03 ] nvsmu           C:\Windows\system32\DRIVERS\nvsmu.sys
10:18:39.0236 3996  nvsmu - ok
10:18:39.0280 3996  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
10:18:39.0283 3996  nvstor - ok
10:18:39.0334 3996  [ 528E6E96492FA403951AFFD3F30134DE ] nvsvc           C:\Windows\system32\nvvsvc.exe
10:18:39.0339 3996  nvsvc - ok
10:18:39.0411 3996  [ 7E22DE30E222BFDFCEC7E77032BAF3CD ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
10:18:39.0442 3996  nvUpdatusService - ok
10:18:39.0465 3996  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
10:18:39.0467 3996  nv_agp - ok
10:18:39.0475 3996  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
10:18:39.0477 3996  ohci1394 - ok
10:18:39.0523 3996  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
10:18:39.0528 3996  p2pimsvc - ok
10:18:39.0550 3996  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
10:18:39.0559 3996  p2psvc - ok
10:18:39.0629 3996  [ 753A8F339F231D2B857E2CCD51A6E6CA ] PACSPTISVR      C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
10:18:39.0643 3996  PACSPTISVR - ok
10:18:39.0680 3996  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
10:18:39.0682 3996  Parport - ok
10:18:39.0721 3996  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
10:18:39.0723 3996  partmgr - ok
10:18:39.0762 3996  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
10:18:39.0765 3996  PcaSvc - ok
10:18:39.0781 3996  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
10:18:39.0832 3996  pci - ok
10:18:39.0849 3996  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
10:18:39.0850 3996  pciide - ok
10:18:39.0884 3996  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
10:18:39.0889 3996  pcmcia - ok
10:18:39.0911 3996  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
10:18:39.0912 3996  pcw - ok
10:18:39.0966 3996  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
10:18:39.0977 3996  PEAUTH - ok
10:18:40.0075 3996  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
10:18:40.0077 3996  PerfHost - ok
10:18:40.0177 3996  [ 6CC2AC7172F4AA215DB3FA3D5DB0F90E ] PhyMem          C:\Program Files\PowerPlanAssistant\ppa_x64.sys
10:18:40.0178 3996  PhyMem - ok
10:18:40.0249 3996  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
10:18:40.0273 3996  pla - ok
10:18:40.0326 3996  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
10:18:40.0333 3996  PlugPlay - ok
10:18:40.0360 3996  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
10:18:40.0362 3996  PNRPAutoReg - ok
10:18:40.0390 3996  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
10:18:40.0392 3996  PNRPsvc - ok
10:18:40.0441 3996  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
10:18:40.0448 3996  PolicyAgent - ok
10:18:40.0483 3996  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
10:18:40.0488 3996  Power - ok
10:18:40.0523 3996  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
10:18:40.0525 3996  PptpMiniport - ok
10:18:40.0543 3996  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
10:18:40.0544 3996  Processor - ok
10:18:40.0581 3996  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
10:18:40.0585 3996  ProfSvc - ok
10:18:40.0595 3996  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
10:18:40.0596 3996  ProtectedStorage - ok
10:18:40.0670 3996  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
10:18:40.0672 3996  Psched - ok
10:18:40.0705 3996  [ 5D6C8E778F0218FCD2CCA0EFBC9766CA ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
10:18:40.0706 3996  PxHlpa64 - ok
10:18:40.0784 3996  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
10:18:40.0808 3996  ql2300 - ok
10:18:40.0844 3996  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
10:18:40.0846 3996  ql40xx - ok
10:18:40.0892 3996  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
10:18:40.0896 3996  QWAVE - ok
10:18:40.0907 3996  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
10:18:40.0908 3996  QWAVEdrv - ok
10:18:40.0933 3996  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
10:18:40.0934 3996  RasAcd - ok
10:18:40.0979 3996  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
10:18:40.0980 3996  RasAgileVpn - ok
10:18:40.0997 3996  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
10:18:41.0000 3996  RasAuto - ok
10:18:41.0018 3996  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
10:18:41.0022 3996  Rasl2tp - ok
10:18:41.0057 3996  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
10:18:41.0064 3996  RasMan - ok
10:18:41.0101 3996  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
10:18:41.0103 3996  RasPppoe - ok
10:18:41.0146 3996  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
10:18:41.0148 3996  RasSstp - ok
10:18:41.0173 3996  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
10:18:41.0178 3996  rdbss - ok
10:18:41.0201 3996  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
10:18:41.0202 3996  rdpbus - ok
10:18:41.0242 3996  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
10:18:41.0243 3996  RDPCDD - ok
10:18:41.0256 3996  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
10:18:41.0257 3996  RDPENCDD - ok
10:18:41.0303 3996  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
10:18:41.0304 3996  RDPREFMP - ok
10:18:41.0352 3996  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
10:18:41.0355 3996  RDPWD - ok
10:18:41.0415 3996  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
10:18:41.0419 3996  rdyboost - ok
10:18:41.0458 3996  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
10:18:41.0460 3996  RemoteAccess - ok
10:18:41.0496 3996  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
10:18:41.0500 3996  RemoteRegistry - ok
10:18:41.0544 3996  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
10:18:41.0547 3996  RFCOMM - ok
10:18:41.0562 3996  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
10:18:41.0565 3996  RpcEptMapper - ok
10:18:41.0595 3996  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
10:18:41.0597 3996  RpcLocator - ok
10:18:41.0629 3996  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
10:18:41.0633 3996  RpcSs - ok
10:18:41.0672 3996  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
10:18:41.0674 3996  rspndr - ok
10:18:41.0695 3996  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
10:18:41.0696 3996  SamSs - ok
10:18:41.0723 3996  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
10:18:41.0725 3996  sbp2port - ok
10:18:41.0774 3996  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
10:18:41.0778 3996  SCardSvr - ok
10:18:41.0792 3996  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
10:18:41.0793 3996  scfilter - ok
10:18:41.0828 3996  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
10:18:41.0845 3996  Schedule - ok
10:18:41.0910 3996  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
10:18:41.0910 3996  SCPolicySvc - ok
10:18:41.0947 3996  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
10:18:41.0950 3996  SDRSVC - ok
10:18:42.0006 3996  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
10:18:42.0008 3996  secdrv - ok
10:18:42.0022 3996  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
10:18:42.0024 3996  seclogon - ok
10:18:42.0039 3996  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\system32\sens.dll
10:18:42.0042 3996  SENS - ok
10:18:42.0089 3996  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
10:18:42.0091 3996  SensrSvc - ok
10:18:42.0127 3996  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
10:18:42.0128 3996  Serenum - ok
10:18:42.0157 3996  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
10:18:42.0159 3996  Serial - ok
10:18:42.0186 3996  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
10:18:42.0220 3996  sermouse - ok
10:18:42.0265 3996  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
10:18:42.0268 3996  SessionEnv - ok
10:18:42.0275 3996  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
10:18:42.0277 3996  sffdisk - ok
10:18:42.0303 3996  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
10:18:42.0304 3996  sffp_mmc - ok
10:18:42.0316 3996  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
10:18:42.0318 3996  sffp_sd - ok
10:18:42.0326 3996  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
10:18:42.0327 3996  sfloppy - ok
10:18:42.0371 3996  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
10:18:42.0377 3996  SharedAccess - ok
10:18:42.0400 3996  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
10:18:42.0408 3996  ShellHWDetection - ok
10:18:42.0440 3996  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
10:18:42.0442 3996  SiSRaid2 - ok
10:18:42.0480 3996  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
10:18:42.0482 3996  SiSRaid4 - ok
10:18:42.0568 3996  [ A37740568718F245E818D0C5575B9AA9 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
10:18:42.0570 3996  SkypeUpdate - ok
10:18:42.0598 3996  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
10:18:42.0600 3996  Smb - ok
10:18:42.0642 3996  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
10:18:42.0644 3996  SNMPTRAP - ok
10:18:42.0689 3996  [ 977AAA4398D7D6FA65D973F5B3F54E40 ] SonicStage Back-End Service C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe
10:18:42.0691 3996  SonicStage Back-End Service - ok
10:18:42.0719 3996  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
10:18:42.0720 3996  spldr - ok
10:18:42.0765 3996  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
10:18:42.0776 3996  Spooler - ok
10:18:42.0892 3996  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
10:18:42.0984 3996  sppsvc - ok
10:18:43.0007 3996  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
10:18:43.0010 3996  sppuinotify - ok
10:18:43.0039 3996  [ E3E6C96B0EF4492C3C8FD0DEEF4E35A1 ] SPTISRV         C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe
10:18:43.0041 3996  SPTISRV - ok
10:18:43.0083 3996  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
10:18:43.0092 3996  srv - ok
10:18:43.0114 3996  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
10:18:43.0120 3996  srv2 - ok
10:18:43.0142 3996  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
10:18:43.0144 3996  srvnet - ok
10:18:43.0184 3996  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
10:18:43.0188 3996  SSDPSRV - ok
10:18:43.0211 3996  [ 756E371B3B86A3D3039926D32EAC0E8D ] SSScsiSV        C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe
10:18:43.0212 3996  SSScsiSV - ok
10:18:43.0242 3996  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
10:18:43.0245 3996  SstpSvc - ok
10:18:43.0267 3996  Steam Client Service - ok
10:18:43.0299 3996  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
10:18:43.0300 3996  stexstor - ok
10:18:43.0363 3996  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
10:18:43.0372 3996  stisvc - ok
10:18:43.0384 3996  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
10:18:43.0385 3996  swenum - ok
10:18:43.0439 3996  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
10:18:43.0448 3996  swprv - ok
10:18:43.0504 3996  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
10:18:43.0533 3996  SysMain - ok
10:18:43.0599 3996  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
10:18:43.0602 3996  TabletInputService - ok
10:18:43.0827 3996  [ C4C20CFA4F42E9B7454E895C5C47BCD3 ] TabletServicePen C:\Program Files\Tablet\Pen\Pen_Tablet.exe
10:18:43.0973 3996  TabletServicePen - ok
10:18:44.0021 3996  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
10:18:44.0029 3996  TapiSrv - ok
10:18:44.0041 3996  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
10:18:44.0044 3996  TBS - ok
10:18:44.0126 3996  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
10:18:44.0159 3996  Tcpip - ok
10:18:44.0214 3996  [ F782CAD3CEDBB3F9FFE3BF2775D92DDC ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
10:18:44.0227 3996  TCPIP6 - ok
10:18:44.0273 3996  [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
10:18:44.0275 3996  tcpipreg - ok
10:18:44.0291 3996  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
10:18:44.0295 3996  TDPIPE - ok
10:18:44.0338 3996  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
10:18:44.0341 3996  TDTCP - ok
10:18:44.0369 3996  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
10:18:44.0371 3996  tdx - ok
10:18:44.0410 3996  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
10:18:44.0411 3996  TermDD - ok
10:18:44.0464 3996  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
10:18:44.0474 3996  TermService - ok
10:18:44.0490 3996  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
10:18:44.0493 3996  Themes - ok
10:18:44.0531 3996  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
10:18:44.0533 3996  THREADORDER - ok
10:18:44.0591 3996  [ 7625DCF246E488E523DC1F64C38ABDA2 ] TouchServicePen C:\Program Files\Tablet\Pen\Pen_TouchService.exe
10:18:44.0598 3996  TouchServicePen - ok
10:18:44.0697 3996  [ 6257446EF7ACCF676C8BE386F9B4F67F ] trackpad_plus_plus_x64 C:\Windows\system32\DRIVERS\trackpad_plus_plus_x64.sys
10:18:44.0698 3996  trackpad_plus_plus_x64 - ok
10:18:44.0736 3996  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
10:18:44.0770 3996  TrkWks - ok
10:18:44.0833 3996  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
10:18:44.0836 3996  TrustedInstaller - ok
10:18:44.0861 3996  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
10:18:44.0862 3996  tssecsrv - ok
10:18:44.0901 3996  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
10:18:44.0902 3996  TsUsbFlt - ok
10:18:44.0925 3996  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
10:18:44.0926 3996  TsUsbGD - ok
10:18:44.0969 3996  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
10:18:44.0972 3996  tunnel - ok
10:18:44.0998 3996  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
10:18:45.0000 3996  uagp35 - ok
10:18:45.0118 3996  [ F7DF6654663AD07DAB615A7AF513D90C ] UCManSvc        C:\Program Files (x86)\SoftDenchi\UCManSvc.exe
10:18:45.0121 3996  UCManSvc - ok
10:18:45.0148 3996  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
10:18:45.0152 3996  udfs - ok
10:18:45.0216 3996  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
10:18:45.0218 3996  UI0Detect - ok
10:18:45.0230 3996  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
10:18:45.0231 3996  uliagpkx - ok
10:18:45.0268 3996  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
10:18:45.0269 3996  umbus - ok
10:18:45.0307 3996  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
10:18:45.0308 3996  UmPass - ok
10:18:45.0363 3996  [ 8F387A1CC015A3F5020700C657A0FC85 ] UnsignedThemes  C:\Windows\UnsignedThemesSvc.exe
10:18:45.0364 3996  UnsignedThemes - ok
10:18:45.0398 3996  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
10:18:45.0404 3996  upnphost - ok
10:18:45.0475 3996  [ FB251567F41BC61988B26731DEC19E4B ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
10:18:45.0476 3996  USBAAPL64 - ok
10:18:45.0530 3996  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
10:18:45.0532 3996  usbccgp - ok
10:18:45.0558 3996  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
10:18:45.0560 3996  usbcir - ok
10:18:45.0597 3996  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
10:18:45.0599 3996  usbehci - ok
10:18:45.0619 3996  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
10:18:45.0626 3996  usbhub - ok
10:18:45.0645 3996  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
10:18:45.0646 3996  usbohci - ok
10:18:45.0671 3996  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
10:18:45.0672 3996  usbprint - ok
10:18:45.0725 3996  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
10:18:45.0727 3996  usbscan - ok
10:18:45.0750 3996  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:18:45.0755 3996  USBSTOR - ok
10:18:45.0784 3996  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
10:18:45.0786 3996  usbuhci - ok
10:18:45.0826 3996  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
10:18:45.0829 3996  usbvideo - ok
10:18:45.0874 3996  [ 297EE9C666FC8BB96A232DB0DDBA1E49 ] uxpatch         C:\Windows\system32\drivers\uxpatch.sys
10:18:45.0875 3996  uxpatch - ok
10:18:45.0908 3996  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
10:18:45.0911 3996  UxSms - ok
10:18:45.0929 3996  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
10:18:45.0930 3996  VaultSvc - ok
10:18:45.0972 3996  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
10:18:45.0976 3996  vdrvroot - ok
10:18:46.0019 3996  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
10:18:46.0030 3996  vds - ok
10:18:46.0059 3996  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
10:18:46.0060 3996  vga - ok
10:18:46.0074 3996  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
10:18:46.0076 3996  VgaSave - ok
10:18:46.0097 3996  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
10:18:46.0100 3996  vhdmp - ok
10:18:46.0169 3996  [ BE1A073F1315E79125450AB6A8DC2F0C ] vhidmini        C:\Windows\system32\DRIVERS\vjoy.sys
10:18:46.0170 3996  vhidmini - ok
10:18:46.0211 3996  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
10:18:46.0212 3996  viaide - ok
10:18:46.0238 3996  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
10:18:46.0242 3996  volmgr - ok
10:18:46.0270 3996  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
10:18:46.0277 3996  volmgrx - ok
10:18:46.0298 3996  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
10:18:46.0302 3996  volsnap - ok
10:18:46.0335 3996  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
10:18:46.0338 3996  vsmraid - ok
10:18:46.0403 3996  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
10:18:46.0428 3996  VSS - ok
10:18:46.0441 3996  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
10:18:46.0442 3996  vwifibus - ok
10:18:46.0483 3996  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
10:18:46.0484 3996  vwififlt - ok
10:18:46.0528 3996  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
10:18:46.0534 3996  W32Time - ok
10:18:46.0586 3996  [ E04D43C7D1641E95D35CAE6086C7E350 ] wacommousefilter C:\Windows\system32\DRIVERS\wacommousefilter.sys
10:18:46.0630 3996  wacommousefilter - ok
10:18:46.0649 3996  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
10:18:46.0650 3996  WacomPen - ok
10:18:46.0677 3996  [ EC1CEB237E365330C1FCFC4876AA0AC0 ] wacomvhid       C:\Windows\system32\DRIVERS\wacomvhid.sys
10:18:46.0678 3996  wacomvhid - ok
10:18:46.0778 3996  [ 788FE050FF7601088783C95C83313E56 ] wampapache      c:\wamp\bin\apache\apache2.2.22\bin\httpd.exe
10:18:46.0778 3996  wampapache - ok
10:18:46.0812 3996  wampmysqld - ok
10:18:46.0884 3996  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
10:18:46.0886 3996  WANARP - ok
10:18:46.0898 3996  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
10:18:46.0899 3996  Wanarpv6 - ok
10:18:46.0982 3996  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
10:18:46.0999 3996  WatAdminSvc - ok
10:18:47.0072 3996  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
10:18:47.0094 3996  wbengine - ok
10:18:47.0118 3996  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
10:18:47.0123 3996  WbioSrvc - ok
10:18:47.0161 3996  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
10:18:47.0168 3996  wcncsvc - ok
10:18:47.0179 3996  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
10:18:47.0182 3996  WcsPlugInService - ok
10:18:47.0238 3996  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
10:18:47.0239 3996  Wd - ok
10:18:47.0288 3996  [ A3D04EBF5227886029B4532F20D026F7 ] WDC_SAM         C:\Windows\system32\DRIVERS\wdcsam64.sys
10:18:47.0289 3996  WDC_SAM - ok
10:18:47.0413 3996  [ 1AE37B32FBDD81A912FA9D681DD9B697 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
10:18:47.0428 3996  Wdf01000 - ok
10:18:47.0470 3996  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
10:18:47.0487 3996  WdiServiceHost - ok
10:18:47.0498 3996  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
10:18:47.0500 3996  WdiSystemHost - ok
10:18:47.0577 3996  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
10:18:47.0588 3996  WebClient - ok
10:18:47.0682 3996  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
10:18:47.0711 3996  Wecsvc - ok
10:18:47.0797 3996  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
10:18:47.0845 3996  wercplsupport - ok
10:18:48.0006 3996  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
10:18:48.0117 3996  WerSvc - ok
10:18:48.0526 3996  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
10:18:48.0568 3996  WfpLwf - ok
10:18:48.0655 3996  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
10:18:48.0656 3996  WIMMount - ok
10:18:48.0720 3996  WinDefend - ok
10:18:48.0728 3996  WinHttpAutoProxySvc - ok
10:18:48.0854 3996  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
10:18:48.0867 3996  Winmgmt - ok
10:18:49.0349 3996  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
10:18:49.0423 3996  WinRM - ok
10:18:49.0604 3996  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
10:18:49.0654 3996  Wlansvc - ok
10:18:49.0688 3996  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
10:18:49.0690 3996  WmiAcpi - ok
10:18:49.0735 3996  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
10:18:49.0739 3996  wmiApSrv - ok
10:18:49.0805 3996  WMPNetworkSvc - ok
10:18:49.0880 3996  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
10:18:49.0899 3996  WPCSvc - ok
10:18:49.0934 3996  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
10:18:49.0945 3996  WPDBusEnum - ok
10:18:50.0065 3996  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
10:18:50.0086 3996  ws2ifsl - ok
10:18:50.0187 3996  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\system32\wscsvc.dll
10:18:50.0235 3996  wscsvc - ok
10:18:50.0244 3996  WSearch - ok
10:18:50.0831 3996  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
10:18:50.0904 3996  wuauserv - ok
10:18:50.0952 3996  [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
10:18:50.0966 3996  WudfPf - ok
10:18:51.0063 3996  [ CF8D590BE3373029D57AF80914190682 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
10:18:51.0075 3996  WUDFRd - ok
10:18:51.0149 3996  [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
10:18:51.0152 3996  wudfsvc - ok
10:18:51.0174 3996  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
10:18:51.0199 3996  WwanSvc - ok
10:18:51.0259 3996  ================ Scan global ===============================
10:18:51.0298 3996  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
10:18:51.0356 3996  [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
10:18:51.0401 3996  [ F46BBAAC1C4980F4D0DD463F190A42D3 ] C:\Windows\system32\winsrv.dll
10:18:51.0435 3996  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
10:18:51.0575 3996  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
10:18:51.0585 3996  [Global] - ok
10:18:51.0587 3996  ================ Scan MBR ==================================
10:18:51.0630 3996  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
10:18:52.0183 3996  \Device\Harddisk0\DR0 - ok
10:18:52.0183 3996  ================ Scan VBR ==================================
10:18:52.0218 3996  [ D5F93CDBED5FEEA3A8ECDD61CC8F1D08 ] \Device\Harddisk0\DR0\Partition1
10:18:52.0219 3996  \Device\Harddisk0\DR0\Partition1 - ok
10:18:52.0272 3996  [ 85ACDA496EE5C3428A6849C5E264D9CF ] \Device\Harddisk0\DR0\Partition2
10:18:52.0272 3996  \Device\Harddisk0\DR0\Partition2 - ok
10:18:52.0304 3996  [ 9DE8919803958F0282085D893097F857 ] \Device\Harddisk0\DR0\Partition3
10:18:52.0358 3996  \Device\Harddisk0\DR0\Partition3 - ok
10:18:52.0365 3996  [ 9DE8919803958F0282085D893097F857 ] \Device\Harddisk0\DR0\Partition4
10:18:52.0366 3996  \Device\Harddisk0\DR0\Partition4 - ok
10:18:52.0371 3996  ============================================================
10:18:52.0371 3996  Scan finished
10:18:52.0371 3996  ============================================================
10:18:52.0392 6312  Detected object count: 0
10:18:52.0392 6312  Actual detected object count: 0
10:20:20.0536 1704  Deinitialize success
aswMBR
aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2012-11-11 10:20:29
-----------------------------
10:20:29.393    OS Version: Windows x64 6.1.7601 Service Pack 1
10:20:29.393    Number of processors: 2 586 0x170A
10:20:29.394    ComputerName: ZARROKK-PC  UserName: Zarrokk
10:20:29.983    Initialize success
10:22:30.227    AVAST engine defs: 12111100
10:22:35.214    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
10:22:35.221    Disk 0 Vendor: Hitachi_HTS545025B9SA02 PB2AC60W Size: 238475MB BusType: 3
10:22:35.320    Disk 0 MBR read successfully
10:22:35.322    Disk 0 MBR scan
10:22:35.365    Disk 0 Windows 7 default MBR code
10:22:35.384    Disk 0 Partition 1 00     EE          GPT               200 MB offset 1
10:22:35.417    Disk 0 Partition 2 00     AF   HFS / HFS+            142097 MB offset 409640
10:22:35.448    Disk 0 Partition 3 80 (A) 07    HPFS/NTFS NTFS        96049 MB offset 291688448
10:22:35.493    Disk 0 scanning C:\Windows\system32\drivers
10:23:00.433    Service scanning
10:23:50.708    Modules scanning
10:23:51.093    Disk 0 trace - called modules:
10:23:51.121    ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys 
10:23:51.125    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004be9060]
10:23:51.130    3 CLASSPNP.SYS[fffff8800199943f] -> nt!IofCallDriver -> [0xfffffa80048bd520]
10:23:51.134    5 ACPI.sys[fffff88000d777a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80047b8060]
10:23:53.357    AVAST engine scan C:\Windows
10:23:56.324    AVAST engine scan C:\Windows\system32
10:27:18.188    AVAST engine scan C:\Windows\system32\drivers
10:27:31.024    AVAST engine scan C:\Users\Zarrokk
10:34:31.034    AVAST engine scan C:\ProgramData
10:48:36.101    Scan finished successfully
10:59:56.061    Disk 0 MBR has been saved successfully to "C:\Users\Zarrokk\Desktop\MBR.dat"
10:59:56.070    The log file has been saved successfully to "C:\Users\Zarrokk\Desktop\aswMBR.txt"
ESET
C:\Users\Zarrokk\Downloads\cbsidlm-tr1_7-Flash_Compiler__Decompiler-SEO2-10317140 (1).exe	Win32/DownloadAdmin.D application	cleaned by deleting - quarantined
C:\Users\Zarrokk\Downloads\cbsidlm-tr1_7-Flash_Compiler__Decompiler-SEO2-10317140.exe	Win32/DownloadAdmin.D application	cleaned by deleting - quarantined
C:\Users\Zarrokk\Downloads\iLividSetupV1 (1).exe	Win32/Toolbar.SearchSuite application	cleaned by deleting - quarantined
C:\Users\Zarrokk\Downloads\iLividSetupV1 (2).exe	Win32/Toolbar.SearchSuite application	cleaned by deleting - quarantined
C:\Users\Zarrokk\Downloads\iLividSetupV1.exe	Win32/Toolbar.SearchSuite application	cleaned by deleting - quarantined
C:\Users\Zarrokk\Downloads\installer_navicat_for_mysql_10_1_3_English.exe	Win32/Toolbar.Babylon application	cleaned by deleting - quarantined
C:\Users\Zarrokk\Downloads\SoftonicDownloader_for_color-cop.exe	Win32/SoftonicDownloader.C application	cleaned by deleting - quarantined
C:\Users\Zarrokk\Downloads\SoftonicDownloader_for_dofus (1).exe	a variant of Win32/SoftonicDownloader.E application	cleaned by deleting - quarantined
C:\Users\Zarrokk\Downloads\SoftonicDownloader_for_dofus.exe	a variant of Win32/SoftonicDownloader.E application	cleaned by deleting - quarantined
C:\Users\Zarrokk\Downloads\SoftonicDownloader_pour_navicat.exe	a variant of Win32/SoftonicDownloader.E application	cleaned by deleting - quarantined
C:\Users\Zarrokk\Downloads\video_downloader.exe	a variant of Win32/InstallCore.T application	cleaned by deleting - quarantined
C:\Users\Zarrokk\Downloads\zlash_downloader_133.exe	a variant of Win32/YourFileDownloader application	cleaned by deleting - quarantined

#4 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,365 posts
  • Gender:Male
  • Location:India

Posted 12 November 2012 - 07:04 AM

Download

Malwarebytes

Install,update and run a full scan

Click on Show results.Right click on the list ,select all and remove them.

Post the generated log here

Download

mini toolbox

Checkmark following boxes:

Flush DNS
Report IE Proxy Settings
Reset IE Proxy Settings
Report FF Proxy Settings
Reset FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List restore points

Click Go and post the result.

Download

Farbar service scanner

Checkmark all the boxes

Click on "Scan".
Please copy and paste the log to your reply.

Download

adware cleaner

Launch it click on Delete

A log should be generated after scan ,post it here

Download

Junkware removal tool

For vista and windows 7 right click on the tool and select run as administrator

After scan gets completed,post the generated log here.

#5 Reqiuem

Reqiuem

    New Member

  • Members
  • Pip
  • 10 posts

Posted 12 November 2012 - 02:56 PM

Mbam
Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org

Database version: v2012.11.12.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Zarrokk :: ZARROKK-PC [administrator]

11/12/2012 10:55:40 AM
mbam-log-2012-11-12 (10-55-40).txt

Scan type: Full scan (C:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 458379
Time elapsed: 51 minute(s), 

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
Farbar
Farbar Service Scanner Version: 09-11-2012
Ran by Zarrokk (administrator) on 12-11-2012 at 10:54:05
Running from "C:\Users\Zarrokk\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy: 
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy: 
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy: 
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****
wCleaner
wCleaner v2.007 - Logfile created 11/12/2012 at 10:41:39
# Updated 06/11/2012 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Zarrokk - ZARROKK-PC
# Boot Mode : Normal
# Running from : C:\Users\Zarrokk\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\Program Files (x86)\Viral_Tube
Folder Deleted : C:\Users\Zarrokk\AppData\LocalLow\Viral_Tube
Folder Deleted : C:\Users\Zarrokk\AppData\LocalLow\Vuze_Remote
Folder Deleted : C:\Users\Zarrokk\AppData\LocalLow\Vuze_Remote

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\Viral_Tube
Key Deleted : HKCU\Software\AppDataLow\Software\Vuze_Remote
Key Deleted : HKCU\Software\ilivid
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{93C338DE-5FB5-4FB5-AB4E-0EEDC0BD9F3A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{93C338DE-5FB5-4FB5-AB4E-0EEDC0BD9F3A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Deleted : HKCU\Software\Somoto Toolbar
Key Deleted : HKCU\Software\wecarereminder
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4FBBF769-ECEB-420A-B536-133B1D505C36}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\IEHelperv2.5.0.DLL
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0004493.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0004493.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0004493.Sandbox.1
Key Deleted : HKLM\SOFTWARE\Classes\IEHelperv250.WeCareReminder
Key Deleted : HKLM\SOFTWARE\Classes\IEHelperv250.WeCareReminder.1
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2504091
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3150609
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6A4BCABA-C437-4C76-A54E-AF31B8A76CB9}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B12920CF-BE13-4C09-890D-1B6EFFFE2FBE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{51D7490A-D9C7-47DF-91F3-23FB36D5204B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{E30ED111-BD63-48C2-A6CB-AB3C9FFFB07C}
Key Deleted : HKLM\Software\Viral_Tube
Key Deleted : HKLM\Software\Vuze_Remote
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{51D7490A-D9C7-47DF-91F3-23FB36D5204B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{93C338DE-5FB5-4FB5-AB4E-0EEDC0BD9F3A}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E30ED111-BD63-48C2-A6CB-AB3C9FFFB07C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F773BB94-6C19-4643-A570-0E429103D1C3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{F773BB94-6C19-4643-A570-0E429103D1C3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{401F109E-C866-42A2-9C88-5F1D09E1890E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{43F716E2-4237-4638-898C-EF11BB78C69E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9E8CCE5A-FD73-4F05-AFC9-E62319063527}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AC5B6CDA-8F90-4740-9A8C-28AC5D3C73FE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DB39F767-0CF9-452F-AB3A-EFA5AE886649}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\ilivid
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Viral_Tube Toolbar
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Vuze_Remote Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC1AC828-BB47-4361-AFB5-96EEE259DD87}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4F12-8568-69135F087DB0}
Key Deleted : HKU\S-1-5-21-1314334504-1386473340-3554175909-1003\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{93C338DE-5FB5-4FB5-AB4E-0EEDC0BD9F3A}]

***** [Internet Browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Registry is clean.

-\\ Google Chrome v23.0.1271.64

File : C:\Users\Zarrokk\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [4783 octets] - [12/11/2012 10:41:39]

########## EOF - C:\AdwCleaner[S1].txt - [4843 octets] ##########
Minitoolbox
MiniToolBox by Farbar  Version: 10-11-2012 02
Ran by Zarrokk (administrator) on 12-11-2012 at 10:54:30
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ============================== 

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Broadcom 802.11n Network Adapter = Wireless Network Connection (Connected)
Broadcom NetXtreme Gigabit Ethernet = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Zarrokk-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Bluetooth Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : 5C-59-48-CE-68-0D
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Broadcom 802.11n Network Adapter
   Physical Address. . . . . . . . . : 78-CA-39-B0-19-78
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::493d:b977:87a6:9b34%12(Preferred) 
   IPv4 Address. . . . . . . . . . . : 10.0.0.3(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Monday, November 12, 2012 10:46:16 AM
   Lease Expires . . . . . . . . . . : Tuesday, November 13, 2012 10:46:16 AM
   Default Gateway . . . . . . . . . : 10.0.0.1
   DHCP Server . . . . . . . . . . . : 10.0.0.1
   DHCPv6 IAID . . . . . . . . . . . : 226019897
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-77-1C-96-C4-2C-03-2F-C5-4A
   DNS Servers . . . . . . . . . . . : 10.0.0.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Broadcom NetXtreme Gigabit Ethernet
   Physical Address. . . . . . . . . : C4-2C-03-2F-C5-4A
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:953c:287c:d010:bc9a:2be8(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::287c:d010:bc9a:2be8%19(Preferred) 
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{35524A1D-BC64-4F51-88F6-8751D453B4E5}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable ISATAP Interface {1A4DE7DF-0185-4CB1-899C-BD2F121E17D6}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  10.0.0.1

Name:    google.com
Addresses:  2607:f8b0:4004:803::1006
	  74.125.228.110
	  74.125.228.97
	  74.125.228.102
	  74.125.228.101
	  74.125.228.104
	  74.125.228.96
	  74.125.228.105
	  74.125.228.100
	  74.125.228.103
	  74.125.228.99
	  74.125.228.98


Pinging google.com [74.125.228.98] with 32 bytes of data:
Reply from 74.125.228.98: bytes=32 time=89ms TTL=53
Reply from 74.125.228.98: bytes=32 time=90ms TTL=53

Ping statistics for 74.125.228.98:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 89ms, Maximum = 90ms, Average = 89ms
Server:  UnKnown
Address:  10.0.0.1

Name:    yahoo.com
Addresses:  98.138.253.109
	  98.139.183.24
	  72.30.38.140


Pinging yahoo.com [72.30.38.140] with 32 bytes of data:
Reply from 72.30.38.140: bytes=32 time=32ms TTL=53
Reply from 72.30.38.140: bytes=32 time=110ms TTL=53

Ping statistics for 72.30.38.140:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 32ms, Maximum = 110ms, Average = 71ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 14...5c 59 48 ce 68 0d ......Bluetooth Device (Personal Area Network)
 12...78 ca 39 b0 19 78 ......Broadcom 802.11n Network Adapter
 11...c4 2c 03 2f c5 4a ......Broadcom NetXtreme Gigabit Ethernet
  1...........................Software Loopback Interface 1
 19...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
 20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0         10.0.0.1         10.0.0.3     25
         10.0.0.0    255.255.255.0         On-link          10.0.0.3    281
         10.0.0.3  255.255.255.255         On-link          10.0.0.3    281
       10.0.0.255  255.255.255.255         On-link          10.0.0.3    281
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link          10.0.0.3    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link          10.0.0.3    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 19     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 19     58 2001::/32                On-link
 19    306 2001:0:9d38:953c:287c:d010:bc9a:2be8/128
                                    On-link
 12    281 fe80::/64                On-link
 19    306 fe80::/64                On-link
 19    306 fe80::287c:d010:bc9a:2be8/128
                                    On-link
 12    281 fe80::493d:b977:87a6:9b34/128
                                    On-link
  1    306 ff00::/8                 On-link
 19    306 ff00::/8                 On-link
 12    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/12/2012 10:47:45 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/12/2012 10:46:19 AM) (Source: Bonjour Service) (User: )
Description: Local Hostname Zarrokk-PC.local already in use; will try Zarrokk-PC-2.local instead

Error: (11/12/2012 10:46:19 AM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister    4 Zarrokk-PC.local. Addr 10.0.0.3

Error: (11/12/2012 10:46:19 AM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Received from 10.0.0.2:5353    4 Zarrokk-PC.local. Addr 10.0.0.2

Error: (11/12/2012 09:06:20 AM) (Source: Bonjour Service) (User: )
Description: Local Hostname Zarrokk-PC.local already in use; will try Zarrokk-PC-2.local instead

Error: (11/12/2012 09:06:20 AM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister    4 Zarrokk-PC.local. Addr 10.0.0.3

Error: (11/12/2012 09:06:20 AM) (Source: Bonjour Service) (User: )
Description: mDNSCoreReceiveResponse: Received from 10.0.0.2:5353    4 Zarrokk-PC.local. Addr 10.0.0.2

Error: (11/12/2012 09:06:17 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 35534423

Error: (11/12/2012 09:06:17 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 35534423

Error: (11/12/2012 09:06:17 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second


System errors:
=============
Error: (11/12/2012 10:46:17 AM) (Source: NetBT) (User: )
Description: The name "ZARROKK-PC     :20" could not be registered on the interface with IP address 10.0.0.3.
The computer with the IP address 10.0.0.2 did not allow the name to be claimed by
this computer.

Error: (11/12/2012 10:46:17 AM) (Source: NetBT) (User: )
Description: The name "ZARROKK-PC     :0" could not be registered on the interface with IP address 10.0.0.3.
The computer with the IP address 10.0.0.2 did not allow the name to be claimed by
this computer.

Error: (11/12/2012 10:46:17 AM) (Source: Server) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{35524A1D-BC64-4F51-88F6-8751D453B4E5} because another computer on the network has the same name.  The server could not start.

Error: (11/12/2012 09:16:45 AM) (Source: NetBT) (User: )
Description: The name "ZARROKK-PC     :0" could not be registered on the interface with IP address 10.0.0.3.
The computer with the IP address 10.0.0.2 did not allow the name to be claimed by
this computer.

Error: (11/12/2012 09:16:44 AM) (Source: NetBT) (User: )
Description: The name "ZARROKK-PC     :0" could not be registered on the interface with IP address 10.0.0.3.
The computer with the IP address 10.0.0.2 did not allow the name to be claimed by
this computer.

Error: (11/12/2012 09:06:19 AM) (Source: NetBT) (User: )
Description: The name "ZARROKK-PC     :20" could not be registered on the interface with IP address 10.0.0.3.
The computer with the IP address 10.0.0.2 did not allow the name to be claimed by
this computer.

Error: (11/12/2012 09:06:19 AM) (Source: NetBT) (User: )
Description: The name "ZARROKK-PC     :0" could not be registered on the interface with IP address 10.0.0.3.
The computer with the IP address 10.0.0.2 did not allow the name to be claimed by
this computer.

Error: (11/12/2012 09:06:19 AM) (Source: Server) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{35524A1D-BC64-4F51-88F6-8751D453B4E5} because another computer on the network has the same name.  The server could not start.

Error: (11/12/2012 09:06:14 AM) (Source: Tcpip) (User: )
Description: The system detected an address conflict for IP address 10.0.0.2 with the system
having network hardware address 78-2B-CB-AA-7A-0F. Network operations on this system may
be disrupted as a result.

Error: (11/12/2012 09:06:05 AM) (Source: DCOM) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}


Microsoft Office Sessions:
=========================
Error: (11/12/2012 10:47:45 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (11/12/2012 10:46:19 AM) (Source: Bonjour Service)(User: )
Description: Local Hostname Zarrokk-PC.local already in use; will try Zarrokk-PC-2.local instead

Error: (11/12/2012 10:46:19 AM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister    4 Zarrokk-PC.local. Addr 10.0.0.3

Error: (11/12/2012 10:46:19 AM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: Received from 10.0.0.2:5353    4 Zarrokk-PC.local. Addr 10.0.0.2

Error: (11/12/2012 09:06:20 AM) (Source: Bonjour Service)(User: )
Description: Local Hostname Zarrokk-PC.local already in use; will try Zarrokk-PC-2.local instead

Error: (11/12/2012 09:06:20 AM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: ProbeCount 2; will deregister    4 Zarrokk-PC.local. Addr 10.0.0.3

Error: (11/12/2012 09:06:20 AM) (Source: Bonjour Service)(User: )
Description: mDNSCoreReceiveResponse: Received from 10.0.0.2:5353    4 Zarrokk-PC.local. Addr 10.0.0.2

Error: (11/12/2012 09:06:17 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 35534423

Error: (11/12/2012 09:06:17 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 35534423

Error: (11/12/2012 09:06:17 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second


CodeIntegrity Errors:
===================================
  Date: 2012-11-10 12:35:54.024
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\trackpad_plus_plus_x64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-10 12:35:53.992
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\trackpad_plus_plus_x64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-07 20:25:56.118
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-07 20:25:56.087
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-07 20:25:56.071
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-07 20:25:56.040
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-04-14 04:32:59.999
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-04-14 04:32:59.999
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

3.4.0.9271.1
ABBYY FineReader 6.0 Sprint (Version: 6.00.1395.4512)
Adobe AIR (Version: 3.4.0.2710)
Adobe Flash Player 11 ActiveX (Version: 11.5.502.110)
Adobe Flash Player 11 Plugin (Version: 11.5.502.110)
Adobe Reader X (10.1.2) (Version: 10.1.2)
Adobe SWF Investigator (Version: 0.6.3)
Apple Application Support (Version: 2.1.9)
Apple Mobile Device Support (Version: 5.2.0.6)
Apple Software Update (Version: 2.1.3.127)
ArcSoft MediaImpression
ATI Catalyst Install Manager (Version: 3.0.708.0)
Bamboo (Version: 5.2.5-5)
Bamboo Dock (Version: 4.0)
Bamboo Dock (Version: 4.0.0)
Bamboo Tablets Tutorial (Version: 3.0.20)
Bonjour (Version: 3.0.0.10)
Boot Camp Services (Version: 4.0.4033)
Borderlands 2
Bytescout Movies Extractor Scout (Version: 3.18)
CCleaner (Version: 3.24)
Coupon Companion (Version: 1.24.151.151)
Curse Client (Version: 5.1.1.502)
CWA Reminder by We-Care.com v4.1.17.3 (Version: 4.1.17.3)
DAEMON Tools Lite (Version: 4.45.2.0287)
Decompile Flash Free Version 2.1.3.20
Dexpot (Version: 1.6.4)
Diablo II
Dofus 1.28.0 (Version: 1.28.0)
Dota 2
Driver Manager (Version: 7)
DVD or CD Sharing (Version: 1.4.0.4)
eMule
Epson Copy Utility 3.5 (Version: 3.5.0.0)
Epson Event Manager (Version: 2.30.01)
EPSON Perfection V30/V300 Photo Scanner Driver Update
EPSON Scan
ESET Online Scanner v3
Flash Decompiler Trillix (Version: 5.3)
FlashDevelop 3.3.4 (Version: 3.3.4-RTM)
FlashDigger Plus
foobar2000 v1.1.13 (Version: 1.1.13)
Google Chrome (Version: 23.0.1271.64)
Gtk# 2.10 Runtime (Version: 2.10.4)
ImgBurn (Version: 2.5.7.0)
inSSIDer (Version: 2.1.5)
iTunes (Version: 10.6.3.25)
J2SE Runtime Environment 5.0 Update 21 (Version: 1.5.0.210)
Java 7 Update 7 (64-bit) (Version: 7.0.70)
Java Auto Updater (Version: 2.0.6.1)
Java(TM) 6 Update 30 (Version: 6.0.300)
Java(TM) 7 (64-bit) (Version: 7.0.0)
join.me (Version: 1.2.1.374)
Katawa Shoujo
Magic ISO Maker v5.5 (build 0281)
Malwarebytes Anti-Malware version 1.65.1.1000 (Version: 1.65.1.1000)
Manga Studio EX 4.0
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MiniBuilder (Version: 1.1.2-alpha)
MiniBuilder (Version: 1.1.2)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NVIDIA 3D Vision Driver 285.62 (Version: 285.62)
NVIDIA Control Panel 285.62 (Version: 285.62)
NVIDIA Display Control Panel (Version: 6.14.12.6141)
NVIDIA Drivers (Version: 1.10.62.40)
NVIDIA Graphics Driver 285.62 (Version: 285.62)
NVIDIA Install Application (Version: 2.1002.46.235)
NVIDIA PhysX (Version: 9.11.0621)
NVIDIA PhysX System Software 9.11.0621 (Version: 9.11.0621)
NVIDIA Update 1.5.20 (Version: 1.5.20)
NVIDIA Update Components (Version: 1.5.20)
Open Dialect (Version: 0.6.0)
OpenMG Limited Patch 4.7-07-14-05-01
OpenMG Secure Module 4.7.00 (Version: 4.7.00.12140)
osu! (Version: 0.0.0.0)
PJP's JoyIDs
PlanetSide 2 Beta
Power Plan Assistant version 3.0b (Version: 3.0b)
PremiumSoft Navicat Premium 10.1 (Version: 10.1.6)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer
Realtek High Definition Audio Driver (Version: 6.0.1.5936)
RealUpgrade 1.1 (Version: 1.1.0)
Resource Hacker Version 3.6.0
Roblox for Zarrokk
Rosetta Stone Version 3 (Version: 3.3.5.2)
SdRt4200 (Version: 4.2.8.0)
SE|PY ActionScript Editor 1.5.3.6
Sins of a Solar Empire
Sins of a Solar Empire (Version: 1.00.00)
Skype(TM) 5.10 (Version: 5.10.116)
SonicStage 4.3 (Version: 4.3)
Sothink SWF Decompiler (Version: 7.1)
Sothink SWF Editor (Version: 1.3)
Sothink SWF Quicker (Version: 5.4)
Star Wars: The Old Republic (Version: 1.00)
Steam (Version: 1.0.0.0)
STEINS;GATE (Version: 1.00.000)
SWFSOFT Flash Compiler & Decompiler
Taskbar Hide
Team Fortress 2
TreeSize Free V2.7 (Version: 2.7)
Unlocker 1.9.1-x64 (Version: 1.9.1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
UxStyle Core Beta (Version: 0.2.1.1)
VJoy 1.2
VJoy Virtual Joystick Driver 1.2
Vuze (Version: 4.7)
Vuze Trial FileBulldog Toolbar
WampServer 2.2
WebTablet FB Plugin (Version: 2.0.0.1)
WebTablet IE Plugin (Version: 1.1.0.12)
WebTablet Netscape Plugin (Version: 1.1.0.10)
Winamp (Version: 5.63 )
Winamp Detector Plug-in (Version: 1.0.0.1)
Windows Driver Package - Apple Inc. (AppleUSBEthernet) Net  (01/11/2008 3.10.3.9) (Version: 01/11/2008 3.10.3.9)
Windows Driver Package - Apple Inc. (AppleUSBEthernet) Net  (02/01/2008 3.10.3.10) (Version: 02/01/2008 3.10.3.10)
Windows Driver Package - Apple Inc. Apple Bluetooth (01/19/2009 2.1.2.1) (Version: 01/19/2009 2.1.2.1)
Windows Driver Package - Apple Inc. Apple Bluetooth (03/01/2010 3.0.0.5) (Version: 03/01/2010 3.0.0.5)
Windows Driver Package - Apple Inc. Apple Bluetooth Enabler (06/27/2007 2.0.0.1) (Version: 06/27/2007 2.0.0.1)
Windows Driver Package - Apple Inc. Apple Broadcom Bluetooth (03/01/2010 3.1.0.3) (Version: 03/01/2010 3.1.0.3)
Windows Driver Package - Apple Inc. Apple Broadcom Bluetooth (10/05/2010 3.2.0.1) (Version: 10/05/2010 3.2.0.1)
Windows Driver Package - Apple Inc. Apple Built-in iSight (10/25/2007 2.0.1.0) (Version: 10/25/2007 2.0.1.0)
Windows Driver Package - Apple Inc. Apple Display (01/23/2009 3.0.0.0) (Version: 01/23/2009 3.0.0.0)
Windows Driver Package - Apple Inc. Apple IR Receiver (02/21/2008 2.0.4.0) (Version: 02/21/2008 2.0.4.0)
Windows Driver Package - Apple Inc. Apple Keyboard (01/12/2010 3.1.0.2) (Version: 01/12/2010 3.1.0.2)
Windows Driver Package - Apple Inc. Apple Keyboard (03/05/2009 3.0.0.0) (Version: 03/05/2009 3.0.0.0)
Windows Driver Package - Apple Inc. Apple Keyboard (05/05/2011 4.0.0.1) (Version: 05/05/2011 4.0.0.1)
Windows Driver Package - Apple Inc. Apple Multitouch (02/11/2010 3.1.0.0) (Version: 02/11/2010 3.1.0.0)
Windows Driver Package - Apple Inc. Apple Multitouch (03/25/2009 2.1.2.112) (Version: 03/25/2009 2.1.2.112)
Windows Driver Package - Apple Inc. Apple Multitouch (05/05/2011 4.0.0.1) (Version: 05/05/2011 4.0.0.1)
Windows Driver Package - Apple Inc. Apple Multitouch (09/10/2009 3.0.0.0) (Version: 09/10/2009 3.0.0.0)
Windows Driver Package - Apple Inc. Apple Multitouch (10/05/2010 3.2.0.1) (Version: 10/05/2010 3.2.0.1)
Windows Driver Package - Apple Inc. Apple Multitouch Mouse (02/11/2010 3.1.0.0) (Version: 02/11/2010 3.1.0.0)
Windows Driver Package - Apple Inc. Apple Multitouch Mouse (03/25/2009 2.1.2.112) (Version: 03/25/2009 2.1.2.112)
Windows Driver Package - Apple Inc. Apple Multitouch Mouse (05/05/2011 4.0.0.1) (Version: 05/05/2011 4.0.0.1)
Windows Driver Package - Apple Inc. Apple Multitouch Mouse (10/05/2010 3.2.0.1) (Version: 10/05/2010 3.2.0.1)
Windows Driver Package - Apple Inc. Apple ODD (01/17/2008 2.0.2.2) (Version: 01/17/2008 2.0.2.2)
Windows Driver Package - Apple Inc. Apple ODD (05/17/2010 3.1.0.0) (Version: 05/17/2010 3.1.0.0)
Windows Driver Package - Apple Inc. Apple System Device (04/05/2011 3.2.0.8) (Version: 04/05/2011 3.2.0.8)
Windows Driver Package - Apple Inc. Apple Trackpad (03/05/2009 3.0.0.0) (Version: 03/05/2009 3.0.0.0)
Windows Driver Package - Apple Inc. Apple Trackpad (07/13/2009 3.0.0.1) (Version: 07/13/2009 3.0.0.1)
Windows Driver Package - Apple Inc. Apple Trackpad Enabler (02/19/2009 3.0.0.0) (Version: 02/19/2009 3.0.0.0)
Windows Driver Package - Apple Inc. Apple Trackpad Enabler (07/13/2009 3.0.0.1) (Version: 07/13/2009 3.0.0.1)
Windows Driver Package - Apple Inc. Apple Wireless Mouse (06/01/2011 4.0.0.1) (Version: 06/01/2011 4.0.0.1)
Windows Driver Package - Apple Inc. Apple Wireless Mouse (11/30/2009 3.0.0.6) (Version: 11/30/2009 3.0.0.6)
Windows Driver Package - Apple Inc. Apple Wireless Trackpad (01/17/2011 3.2.0.0) (Version: 01/17/2011 3.2.0.0)
Windows Driver Package - Apple Inc. Apple Wireless Trackpad (08/24/2010 3.1.0.7) (Version: 08/24/2010 3.1.0.7)
Windows Driver Package - Apple Inc. System  (08/22/2008 2.1.1.1) (Version: 08/22/2008 2.1.1.1)
Windows Driver Package - Atheros Communications Inc. (athr) Net  (11/13/2010 9.2.0.113) (Version: 11/13/2010 9.2.0.113)
Windows Driver Package - Broadcom (b57nd60a) Net  (12/02/2010 14.4.2.2) (Version: 12/02/2010 14.4.2.2)
Windows Driver Package - Broadcom (BCM43XX) Net  (04/06/2011 5.100.198.22) (Version: 04/06/2011 5.100.198.22)
Windows Driver Package - Broadcom (BCM43XX) Net  (10/22/2008 5.10.38.26) (Version: 10/22/2008 5.10.38.26)
Windows Driver Package - Broadcom Corporation (bScsiSDa) SDHost  (01/18/2011 1.0.0.220) (Version: 01/18/2011 1.0.0.220)
Windows Driver Package - Cirrus Logic, Inc. (CirrusFilter) MEDIA  (04/29/2009 6.6001.1.8) (Version: 04/29/2009 6.6001.1.8)
Windows Driver Package - Cirrus Logic, Inc. (CirrusFilter) MEDIA  (07/22/2009 6.6001.1.13) (Version: 07/22/2009 6.6001.1.13)
Windows Driver Package - Cirrus Logic, Inc. (CirrusFilter) MEDIA  (12/03/2010 6.6001.1.30) (Version: 12/03/2010 6.6001.1.30)
Windows Driver Package - Intel (e1express) Net  (02/06/2008 9.12.17.0) (Version: 02/06/2008 9.12.17.0)
Windows Driver Package - Intel (e1express) Net  (03/26/2010 9.13.41.0) (Version: 03/26/2010 9.13.41.0)
Windows Driver Package - Intel (E1G60) Net  (01/08/2008 8.3.9.0) (Version: 01/08/2008 8.3.9.0)
Windows Driver Package - Intel (e1kexpress) Net  (04/12/2010 11.6.92.0) (Version: 04/12/2010 11.6.92.0)
Windows Driver Package - Intel (e1kexpress) Net  (07/22/2008 10.3.45.0) (Version: 07/22/2008 10.3.45.0)
Windows Driver Package - Intel (e1qexpress) Net  (08/05/2008 10.3.49.0) (Version: 08/05/2008 10.3.49.0)
Windows Driver Package - Intel (e1qexpress) Net  (12/04/2009 11.4.7.0) (Version: 12/04/2009 11.4.7.0)
Windows Driver Package - Intel (e1rexpress) Net  (01/07/2010 11.4.16.0) (Version: 01/07/2010 11.4.16.0)
Windows Driver Package - Intel (e1yexpress) Net  (04/07/2010 10.1.9.0) (Version: 04/07/2010 10.1.9.0)
Windows Driver Package - Intel (e1yexpress) Net  (07/16/2008 9.52.10.0) (Version: 07/16/2008 9.52.10.0)
Windows Driver Package - Intel Net  (02/06/2008 9.12.18.0) (Version: 02/06/2008 9.12.18.0)
Windows Driver Package - Intel Net  (06/13/2008 9.52.9.0) (Version: 06/13/2008 9.52.9.0)
Windows Driver Package - Intel Net  (07/22/2008 10.3.45.0) (Version: 07/22/2008 10.3.45.0)
Windows Driver Package - Intel Net  (08/05/2008 10.3.49.0) (Version: 08/05/2008 10.3.49.0)
Windows Driver Package - Intel Net  (11/07/2007 8.10.1.0) (Version: 11/07/2007 8.10.1.0)
Windows Driver Package - Intel System  (07/20/2007 1.2.76.0) (Version: 07/20/2007 1.2.76.0)
Windows Driver Package - Marvell (yukonx64) Net  (12/06/2007 10.51.1.3) (Version: 12/06/2007 10.51.1.3)
Windows Driver Package - Vladimir Plenskiy Software (trackpad_plus_plus_x64) Mouse  (10/24/2012 2.3.4.0) (Version: 10/24/2012 2.3.4.0)
WinRAR 4.10 (32-bit) (Version: 4.10.0)
World of Warcraft (Version: 5.0.5.16057)
World of Warcraft Beta (Version: )
Xiph.Org Open Codecs 0.85.17777 (Version: 0.85.17777)
Zlash 1.0

========================= Memory info: ===================================

Percentage of memory in use: 43%
Total physical RAM: 3830.6 MB
Available physical RAM: 2171.62 MB
Total Pagefile: 7659.39 MB
Available Pagefile: 5777.49 MB
Total Virtual: 4095.88 MB
Available Virtual: 3953.5 MB

========================= Partitions: =====================================

1 Drive c: (BOOTCAMP) (Fixed) (Total:93.8 GB) (Free:11.82 GB) NTFS
3 Drive e: (Macintosh HD) (Fixed) (Total:138.77 GB) (Free:25.69 GB) HFS

========================= Users: ========================================

User accounts for \\ZARROKK-PC

Administrator            Guest                    UpdatusUser              
Yuki                     Zarrokk                  

========================= Restore Points ==================================

11-11-2012 06:16:47 Removed Java 7 Update 7 (64-bit)

**** End of log ****

#6 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,365 posts
  • Gender:Male
  • Location:India

Posted 12 November 2012 - 08:54 PM

Junkware removal tool log?

Download

http://www.bleepingcomputer.com/download/rkill/

Run it and after scan finishes,post the contents of RKILL log located on the desktop here


Download

Autoruns

Extract and launch autoruns.exe

Allow the scan to get finished

Now click on FILE-SAVE

Filename:Autoruns.txt
Save as :Text

Paste the contents of text here

#7 Reqiuem

Reqiuem

    New Member

  • Members
  • Pip
  • 10 posts

Posted 13 November 2012 - 01:07 AM

Sorry about that, heres the junkware removal log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 3.0.4 (11.12.2012)
OS: Windows 7 Home Premium x64
Ran by Zarrokk on 11/12/2012 Mon at 10:55:15.04
Blog: http://thisisudax.blogspot.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Zarrokk\appdata\locallow\somototoolbar"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 11/12/2012 Mon at 11:00:23.73
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Rkill
Rkill 2.4.5 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2012 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 11/12/2012 10:02:58 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * C:\Users\Zarrokk\AppData\Local\Temp\Rar$EXa0.055\autoruns.exe (PID: 5260) [T-HEUR]

1 proccess terminated!

Possibly Patched Files.

 * C:\Windows\Explorer.EXE

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * Windows Firewall Disabled

   [HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
   "EnableFirewall" = dword:00000000

Checking Windows Service Integrity: 

 * No issues found.

Searching for Missing Digital Signatures: 

 * C:\Windows\explorer.exe [NoSig]
 +-> C:\Windows\ERDNT\cache86\explorer.exe : 2,871,808 : 02/24/2011 10:19 PM : 332feab1435662fc6c672e25beb37be3 [Pos Repl]
 +-> C:\Windows\SysWOW64\explorer.exe : 2,616,320 : 02/24/2011 09:30 PM : 8b88ebbb05a0e56b7dcc708498c02b3e [Pos Repl]
 +-> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_afdaac81905bf900\explorer.exe : 2,872,320 : 11/20/2010 07:24 PM : ac4c51eb24aa95b77f705ab159189e24 [Pos Repl]
 +-> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_afa79dc39081d0ba\explorer.exe : 2,871,808 : 02/24/2011 10:19 PM : 332feab1435662fc6c672e25beb37be3 [Pos Repl]
 +-> C:\Windows\winsxs\amd64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_b0333b22a99da332\explorer.exe : 2,871,808 : 02/25/2011 10:14 PM : 3b69712041f3d63605529bd66dc00c48 [Pos Repl]
 +-> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_ba2f56d3c4bcbafb\explorer.exe : 2,616,320 : 11/20/2010 07:24 PM : 40d777b7a95e00593eb1568c68514493 [Pos Repl]
 +-> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_b9fc4815c4e292b5\explorer.exe : 2,616,320 : 02/24/2011 09:30 PM : 8b88ebbb05a0e56b7dcc708498c02b3e [Pos Repl]
 +-> C:\Windows\winsxs\wow64_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_ba87e574ddfe652d\explorer.exe : 2,616,320 : 02/25/2011 09:19 PM : 0fb9c74046656d1579a64660ad67b746 [Pos Repl]

Checking HOSTS File: 

 * HOSTS file entries found: 

  127.0.0.1       localhost

Program finished at: 11/12/2012 10:03:21 PM
Execution time: 0 hours(s), 0 minute(s), and 23 seconds(s)
Autoruns
"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms"	""	""	""
+ "rdpclip"	""	""	"File not found: rdpclip"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run"	""	""	""
+ "Apple_KbdMgr"	"Boot Camp Manager"	"Apple Inc."	"c:\program files\boot camp\bootcamp.exe"
+ "DVD or CD Sharing"	"DVD or CD Sharing Agent"	"Apple Inc."	"c:\program files\dvd or cd sharing\odsagent.exe"
+ "POWER PLAN ASSISTANT"	"Power Plan Assistant Launcher"	""	"c:\program files\powerplanassistant\powerplanassistantlauncher.exe"
+ "TRACKPADPLUSPLUS"	""	""	"File not found: C:\Program Files\TrackpadPlusPlus\Trackpad++ Control Module.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run"	""	""	""
+ "Adobe ARM"	"Adobe Reader and Acrobat Manager"	"Adobe Systems Incorporated"	"c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe"
+ "APSDaemon"	"Apple Push"	"Apple Inc."	"c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe"
+ "ArcSoft Connection Service"	"ArcSoft Connect Daemon"	"ArcSoft Inc."	"c:\program files (x86)\common files\arcsoft\connection service\bin\acdaemon.exe"
+ "BambooCore"	"BambooDock back-end application"	""	"c:\program files (x86)\bamboo dock\bamboocore.exe"
+ "EEventManager"	"EEventManager Application"	"SEIKO EPSON CORPORATION"	"c:\program files (x86)\epson software\event manager\eeventmanager.exe"
+ "iTunesHelper"	"iTunesHelper"	"Apple Inc."	"c:\program files (x86)\itunes\ituneshelper.exe"
+ "TkBellExe"	"RealNetworks Scheduler"	"RealNetworks, Inc."	"c:\program files (x86)\real\realplayer\update\realsched.exe"
"C:\Users\Zarrokk\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup"	""	""	""
+ "CurseClientStartup.ccip"	""	""	"c:\users\zarrokk\appdata\roaming\microsoft\windows\start menu\programs\startup\curseclientstartup.ccip"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components"	""	""	""
+ "Microsoft Windows"	"Windows Mail"	"Microsoft Corporation"	"c:\program files\windows mail\winmail.exe"
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Active Setup\Installed Components"	""	""	""
+ "Microsoft Windows"	"Windows Mail"	"Microsoft Corporation"	"c:\program files (x86)\windows mail\winmail.exe"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run"	""	""	""
+ "DAEMON Tools Lite"	"DAEMON Tools Lite"	"DT Soft Ltd"	"c:\program files (x86)\daemon tools lite\dtlite.exe"
+ "Dexpot"	"Dexpot - Virtual desktops for Windows"	"Dexpot GbR"	"c:\program files (x86)\dexpot\dexpot.exe"
+ "Steam"	"Steam"	"Valve Corporation"	"c:\program files (x86)\steam\steam.exe"
+ "Taskbar Hide"	""	""	"c:\program files (x86)\taskbar hide\taskbar.exe"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers"	""	""	""
+ "MagicISO"	"MagicISO Shell Extension Module"	"MagicISO, Inc."	"c:\program files (x86)\magiciso\misosh64.dll"
+ "WinRAR"	""	""	"c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\*\ShellEx\ContextMenuHandlers"	""	""	""
+ "WinRAR32"	""	""	"c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers"	""	""	""
+ "MBAMShlExt"	"Malwarebytes Anti-Malware"	"Malwarebytes Corporation"	"c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers"	""	""	""
+ "MagicISO"	"MagicISO Shell Extension Module"	"MagicISO, Inc."	"c:\program files (x86)\magiciso\misosh64.dll"
+ "WinRAR"	""	""	"c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\ShellEx\ContextMenuHandlers"	""	""	""
+ "WinRAR32"	""	""	"c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\Directory\Shellex\DragDropHandlers"	""	""	""
+ "WinRAR"	""	""	"c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Shellex\DragDropHandlers"	""	""	""
+ "WinRAR32"	""	""	"c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers"	""	""	""
+ "Gadgets"	"Sidebar droptarget"	"Microsoft Corporation"	"c:\program files\windows sidebar\sbdrop.dll"
+ "NvCplDesktopContext"	""	"NVIDIA Corporation"	"c:\windows\system32\nvshext.dll"
"HKLM\Software\Wow6432Node\Classes\Directory\Background\ShellEx\ContextMenuHandlers"	""	""	""
+ "Gadgets"	"Sidebar droptarget"	"Microsoft Corporation"	"c:\program files (x86)\windows sidebar\sbdrop.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\Shellex\ColumnHandlers"	""	""	""
+ "PDF Shell Extension"	"PDF Shell Extension"	"Adobe Systems, Inc."	"c:\program files (x86)\common files\adobe\acrobat\activex\pdfshell.dll"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers"	""	""	""
+ "MagicISO"	"MagicISO Shell Extension Module"	"MagicISO, Inc."	"c:\program files (x86)\magiciso\misosh64.dll"
+ "MBAMShlExt"	"Malwarebytes Anti-Malware"	"Malwarebytes Corporation"	"c:\program files (x86)\malwarebytes' anti-malware\mbamext.dll"
+ "WinRAR"	""	""	"c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\ContextMenuHandlers"	""	""	""
+ "WinRAR32"	""	""	"c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Classes\Folder\ShellEx\DragDropHandlers"	""	""	""
+ "WinRAR"	""	""	"c:\program files (x86)\winrar\rarext64.dll"
"HKLM\Software\Wow6432Node\Classes\Folder\ShellEx\DragDropHandlers"	""	""	""
+ "WinRAR32"	""	""	"c:\program files (x86)\winrar\rarext.dll"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"	""	""	""
+ "Java(tm) Plug-In 2 SSV Helper"	"Java(TM) Platform SE binary"	"Oracle Corporation"	"c:\program files\java\jre7\bin\jp2ssv.dll"
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects"	""	""	""
+ "YouTube Downloader"	"YouTube Downloader"	"HotSummerWind Software"	"c:\program files (x86)\youtube downloader\youtube downloader.dll"
"HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar"	""	""	""
+ "YouTube Downloader"	"YouTube Downloader"	"HotSummerWind Software"	"c:\program files (x86)\youtube downloader\youtube downloader.dll"
"Task Scheduler"	""	""	""
+ "\Apple\AppleSoftwareUpdate"	"Apple Software Update"	"Apple Inc."	"c:\program files (x86)\apple software update\softwareupdate.exe"
+ "\CCleanerSkipUAC"	"CCleaner"	"Piriform Ltd"	"c:\program files\ccleaner\ccleaner.exe"
+ "\Dexpot\1"	"Dexpot Task Scheduling Helper"	"Dexpot GbR"	"c:\program files (x86)\dexpot\autodex.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-1314334504-1386473340-3554175909-1001Core"	"Google Installer"	"Google Inc."	"c:\users\zarrokk\appdata\local\google\update\googleupdate.exe"
+ "\GoogleUpdateTaskUserS-1-5-21-1314334504-1386473340-3554175909-1001UA"	"Google Installer"	"Google Inc."	"c:\users\zarrokk\appdata\local\google\update\googleupdate.exe"
+ "\Microsoft\Windows Defender\MP Scheduled Scan"	"Microsoft Malware Protection Command Line Utility"	"Microsoft Corporation"	"c:\program files\windows defender\mpcmdrun.exe"
+ "\Microsoft\Windows Defender\MpIdleTask"	"Microsoft Malware Protection Command Line Utility"	"Microsoft Corporation"	"c:\program files\windows defender\mpcmdrun.exe"
+ "\Microsoft\Windows\NetTrace\GatherNetworkInfo"	""	""	"c:\windows\system32\gathernetworkinfo.vbs"
+ "\Microsoft\Windows\TabletPC\InputPersonalization"	""	""	"File not found: C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\InputPersonalization.exe"
+ "\Microsoft\Windows\Windows Media Sharing\UpdateLibrary"	"Windows Media Player Network Sharing Service Configuration Application"	"Microsoft Corporation"	"c:\program files\windows media player\wmpnscfg.exe"
+ "\PowerPlanAssistantLibrary\PowerPlanAssistantStart"	"Power Plan Assistant"	"www.powerplan7.com"	"c:\program files\powerplanassistant\powerplanassistant.exe"
+ "\RealUpgradeLogonTaskS-1-5-21-1314334504-1386473340-3554175909-1001"	"RealUpgrade Launcher"	"RealNetworks, Inc."	"c:\program files (x86)\real\realupgrade\realupgrade.exe"
+ "\RealUpgradeScheduledTaskS-1-5-21-1314334504-1386473340-3554175909-1001"	"RealUpgrade Launcher"	"RealNetworks, Inc."	"c:\program files (x86)\real\realupgrade\realupgrade.exe"
+ "\TrackpadPlusPlusLibrary\TrackpadPlusPlusStart"	""	""	"File not found: C:\Program Files\TrackpadPlusPlus\Trackpad++ Control Module Initializer.exe"
+ "\{14933BEE-779B-4460-8ACE-6BA1FC09C94D}"	"OpenDialect"	"Open Dialect Developers"	"c:\program files (x86)\open dialect developers\open dialect\opendialect.exe"
+ "\{59570EB3-F2DE-4014-BC26-4D4C77B842AF}"	""	""	"File not found: F:\NeverwinterNights\NWN\nwn.exe"
+ "\{5A8BF503-3811-4516-83E1-784B08D27563}"	""	""	"File not found: F:\NeverwinterNights\NWN\nwmain.exe"
+ "\{7081296E-73BD-4C8A-B884-403A3EB86C95}"	""	""	"File not found: F:\NeverwinterNights\NWN\nwn.exe"
+ "\{7FA2BE6A-05E0-485B-B342-559530122362}"	""	""	"e:\boot camp\drivers\apple\applebluetoothenablerinstaller.exe"
+ "\{889E2D6B-1495-4390-B6A3-648DFFF1FDB2}"	""	""	"e:\boot camp\drivers\apple\applebluetoothenablerinstaller.exe"
+ "\{8B8F76B0-6ED3-4361-99A4-9D6E122D14B9}"	""	""	"File not found: F:\NeverwinterNights\NWN\nwn.exe"
+ "\{AEE2927E-91C2-4F26-A954-EFD6C0D05665}"	""	""	"File not found: C:\Program Files (x86)\Diablo II\Diablo II.exe"
+ "\{F5101979-4E69-4B90-9F3B-F4FF16DDAE4D}"	"Google Chrome"	"Google Inc."	"c:\users\zarrokk\appdata\local\google\chrome\application\chrome.exe"
"HKLM\System\CurrentControlSet\Services"	""	""	""
+ "ACDaemon"	"ArcSoft Connect Service"	"ArcSoft Inc."	"c:\program files (x86)\common files\arcsoft\connection service\bin\acservice.exe"
+ "AdobeARMservice"	"Adobe Acrobat Updater keeps your Adobe software up to date."	"Adobe Systems Incorporated"	"c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe"
+ "AdobeFlashPlayerUpdateSvc"	"This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes."	"Adobe Systems Incorporated"	"c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe"
+ "Apple Mobile Device"	"Provides the interface to Apple mobile devices."	"Apple Inc."	"c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe"
+ "AppleOSSMgr"	"Provides support for switching between Mac OS X and Windows"	""	"c:\windows\system32\appleossmgr.exe"
+ "AppleTimeSrv"	"Maintains time and date when switching between Mac OS X and Windows"	"Apple Inc."	"c:\windows\system32\appletimesrv.exe"
+ "Bonjour Service"	"Enables hardware devices and software services to automatically configure themselves on the network and advertise their presence."	"Apple Inc."	"c:\program files\bonjour\mdnsresponder.exe"
+ "FLEXnet Licensing Service"	"This service performs licensing functions on behalf of FLEXnet enabled products."	"Acresso Software Inc."	"c:\program files (x86)\common files\macrovision shared\flexnet publisher\fnplicensingservice.exe"
+ "IDriverT"	"Provides support for the Running Object Table for InstallShield Drivers"	"Macrovision Corporation"	"c:\program files (x86)\common files\installshield\driver\1150\intel 32\idrivert.exe"
+ "iPod Service"	"iPod hardware management services"	"Apple Inc."	"c:\program files\ipod\bin\ipodservice.exe"
+ "MSCSPTISRV"	"MSCSPTISRV Module"	"Sony Corporation"	"c:\program files (x86)\common files\sony shared\avlib\mscsptisrv.exe"
+ "nvsvc"	"Provides system and desktop level support to the NVIDIA display driver"	"NVIDIA Corporation"	"c:\windows\system32\nvvsvc.exe"
+ "nvUpdatusService"	"NVIDIA Settings Update Manager service, used to check new updates from NVIDIA server."	"NVIDIA Corporation"	"c:\program files (x86)\nvidia corporation\nvidia updatus\daemonu.exe"
+ "PACSPTISVR"	"PACSPTISVR Module"	""	"c:\program files (x86)\common files\sony shared\avlib\pacsptisvr.exe"
+ "SkypeUpdate"	"Enables the detection, download and installation of updates for Skype."	"Skype Technologies"	"c:\program files (x86)\skype\updater\updater.exe"
+ "SonicStage Back-End Service"	"SonicStage Back-End Service Module"	"Sony Corporation"	"c:\program files (x86)\common files\sony shared\avlib\ssbesvc.exe"
+ "SPTISRV"	"SPTISRV Module"	"Sony Corporation"	"c:\program files (x86)\common files\sony shared\avlib\sptisrv.exe"
+ "SSScsiSV"	"SonicStage Scsi I/F Server"	"Sony Corporation"	"c:\program files (x86)\common files\sony shared\avlib\ssscsisv.exe"
+ "Steam Client Service"	"Steam Client Service monitors and updates Steam content"	"Valve Corporation"	"c:\program files (x86)\common files\steam\steamservice.exe"
+ "TabletServicePen"	"Tablet Service for consumer driver"	"Wacom Technology, Corp."	"c:\program files\tablet\pen\pen_tablet.exe"
+ "TouchServicePen"	"Touch Service"	"Wacom Technology, Corp."	"c:\program files\tablet\pen\pen_touchservice.exe"
+ "UCManSvc"	"ソフト電池マネージャ"	"Paltiosoft Inc."	"c:\program files (x86)\softdenchi\ucmansvc.exe"
+ "UnsignedThemes"	"Enables the use of unsigned themes."	"The Within Network, LLC"	"c:\windows\unsignedthemessvc.exe"
+ "wampapache"	"Apache/2.2.22 (Win64) PHP/5.3.13"	"Apache Software Foundation"	"c:\wamp\bin\apache\apache2.2.22\bin\httpd.exe"
+ "wampmysqld"	""	""	"c:\wamp\bin\mysql\mysql5.5.24\bin\mysqld.exe"
+ "WinDefend"	"Protection against spyware and potentially unwanted software"	"Microsoft Corporation"	"c:\program files\windows defender\mpsvc.dll"
+ "WMPNetworkSvc"	"Shares Windows Media Player libraries to other networked players and media devices using Universal Plug and Play"	"Microsoft Corporation"	"c:\program files\windows media player\wmpnetwk.exe"
"HKLM\System\CurrentControlSet\Services"	""	""	""
+ "adp94xx"	"Adaptec Windows SAS/SATA Storport Driver"	"Adaptec, Inc."	"c:\windows\system32\drivers\adp94xx.sys"
+ "adpahci"	"Adaptec Windows SATA Storport Driver"	"Adaptec, Inc."	"c:\windows\system32\drivers\adpahci.sys"
+ "adpu320"	"Adaptec StorPort Ultra320 SCSI Driver (X64)"	"Adaptec, Inc."	"c:\windows\system32\drivers\adpu320.sys"
+ "Afc"	"Arcsoft(R) ASPI Shell"	"Arcsoft, Inc."	"c:\windows\syswow64\drivers\afc.sys"
+ "aliide"	"ALi mini IDE Driver"	"Acer Laboratories Inc."	"c:\windows\system32\drivers\aliide.sys"
+ "amdsata"	"AHCI 1.2 Device Driver"	"Advanced Micro Devices"	"c:\windows\system32\drivers\amdsata.sys"
+ "amdsbs"	"AMD Technology AHCI Compatible Controller Driver for Windows - AMD64 platform"	"AMD Technologies Inc."	"c:\windows\system32\drivers\amdsbs.sys"
+ "amdxata"	"Storage Filter Driver"	"Advanced Micro Devices"	"c:\windows\system32\drivers\amdxata.sys"
+ "AppleBtBc"	"Apple Broadcom Bluetooth"	"Apple Inc."	"c:\windows\system32\drivers\applebtbc.sys"
+ "AppleHFS"	"Apple HFS"	"Apple Inc."	"c:\windows\system32\drivers\applehfs.sys"
+ "AppleMNT"	"Apple Mount Manager"	"Apple Inc."	"c:\windows\system32\drivers\applemnt.sys"
+ "applemtm"	"Apple Multitouch Mouse Driver"	"Apple Inc."	"c:\windows\system32\drivers\applemtm.sys"
+ "applemtp"	"Apple Multitouch Trackpad Driver"	"Apple Inc."	"c:\windows\system32\drivers\applemtp.sys"
+ "arc"	"Adaptec RAID Storport Driver"	"Adaptec, Inc."	"c:\windows\system32\drivers\arc.sys"
+ "arcsas"	"Adaptec SAS RAID WS03 Driver"	"Adaptec, Inc."	"c:\windows\system32\drivers\arcsas.sys"
+ "b06bdrv"	"Broadcom NetXtreme II GigE VBD"	"Broadcom Corporation"	"c:\windows\system32\drivers\bxvbda.sys"
+ "b57nd60a"	"Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver."	"Broadcom Corporation"	"c:\windows\system32\drivers\b57nd60a.sys"
+ "BCM43XX"	"Broadcom 802.11 Network Adapter wireless driver"	"Broadcom Corporation"	"c:\windows\system32\drivers\bcmwl664.sys"
+ "BrFiltLo"	"Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver"	"Brother Industries, Ltd."	"c:\windows\system32\drivers\brfiltlo.sys"
+ "BrFiltUp"	"Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver"	"Brother Industries, Ltd."	"c:\windows\system32\drivers\brfiltup.sys"
+ "Brserid"	"Brotehr Serial I/F Driver (WDM)"	"Brother Industries Ltd."	"c:\windows\system32\drivers\brserid.sys"
+ "BrSerWdm"	"Brother Serial driver (WDM version)"	"Brother Industries Ltd."	"c:\windows\system32\drivers\brserwdm.sys"
+ "BrUsbMdm"	"Brother USB MDM Driver "	"Brother Industries Ltd."	"c:\windows\system32\drivers\brusbmdm.sys"
+ "BrUsbSer"	"Brother USB Serial Driver"	"Brother Industries Ltd."	"c:\windows\system32\drivers\brusbser.sys"
+ "catchme"	""	""	"File not found: C:\ComboFix\catchme.sys"
+ "CirrusFilter"	"Hdaudio.sys Customization Filter  "	"Cirrus Logic"	"c:\windows\system32\drivers\cs420x64.sys"
+ "cmdide"	"CMD PCI IDE Bus Driver"	"CMD Technology, Inc."	"c:\windows\system32\drivers\cmdide.sys"
+ "dtsoftbus01"	"DAEMON Tools Virtual Bus Driver"	"DT Soft Ltd"	"c:\windows\system32\drivers\dtsoftbus01.sys"
+ "ebdrv"	"Broadcom NetXtreme II 10 GigE VBD"	"Broadcom Corporation"	"c:\windows\system32\drivers\evbda.sys"
+ "elxstor"	"Storport Miniport Driver for LightPulse HBAs"	"Emulex"	"c:\windows\system32\drivers\elxstor.sys"
+ "GEARAspiWDM"	"CD DVD Filter"	"GEAR Software Inc."	"c:\windows\system32\drivers\gearaspiwdm.sys"
+ "hcw85cir"	"Hauppauge WinTV 885 Consumer IR Driver for eHome"	"Hauppauge Computer Works, Inc."	"c:\windows\system32\drivers\hcw85cir.sys"
+ "HpSAMD"	"Smart Array SAS/SATA Controller Media Driver"	"Hewlett-Packard Company"	"c:\windows\system32\drivers\hpsamd.sys"
+ "iaStorV"	"Intel Matrix Storage Manager driver - x64"	"Intel Corporation"	"c:\windows\system32\drivers\iastorv.sys"
+ "iirsp"	"Intel/ICP Raid Storport Driver"	"Intel Corp./ICP vortex GmbH"	"c:\windows\system32\drivers\iirsp.sys"
+ "IRRemoteFlt"	"IR Receiver Driver"	"Apple Inc."	"c:\windows\system32\drivers\irfilter.sys"
+ "KeyAgent"	"Apple KeyAgent Driver"	"Apple Inc."	"c:\windows\system32\drivers\keyagent.sys"
+ "KeyMagic"	"Apple Keyboard Driver"	"Apple Inc."	"c:\windows\system32\drivers\keymagic.sys"
+ "LSI_FC"	"LSI Fusion-MPT FC Driver (StorPort)"	"LSI Corporation"	"c:\windows\system32\drivers\lsi_fc.sys"
+ "LSI_SAS"	"LSI Fusion-MPT SAS Driver (StorPort)"	"LSI Corporation"	"c:\windows\system32\drivers\lsi_sas.sys"
+ "LSI_SAS2"	"LSI SAS Gen2 Driver (StorPort)"	"LSI Corporation"	"c:\windows\system32\drivers\lsi_sas2.sys"
+ "LSI_SCSI"	"LSI Fusion-MPT SCSI Driver (StorPort)"	"LSI Corporation"	"c:\windows\system32\drivers\lsi_scsi.sys"
+ "MacHALDriver"	"Mac HAL Driver"	"Apple Inc."	"c:\windows\system32\drivers\machaldriver.sys"
+ "megasas"	"MEGASAS RAID Controller Driver for Windows 7\Server 2008 R2 for x64"	"LSI Corporation"	"c:\windows\system32\drivers\megasas.sys"
+ "MegaSR"	"LSI MegaRAID Software RAID Driver"	"LSI Corporation, Inc."	"c:\windows\system32\drivers\megasr.sys"
+ "MT_TRACKPAD"	"MT_Trackpad Filter Driver"	"n/a"	"c:\windows\system32\drivers\mt_trackpad.sys"
+ "nfrd960"	"IBM ServeRAID Controller Driver"	"IBM Corporation"	"c:\windows\system32\drivers\nfrd960.sys"
+ "nusb3hub"	"USB 3.0 Hub Driver"	"Renesas Electronics Corporation"	"c:\windows\system32\drivers\nusb3hub.sys"
+ "nusb3xhc"	"USB 3.0 Host Controller Driver"	"Renesas Electronics Corporation"	"c:\windows\system32\drivers\nusb3xhc.sys"
+ "NVHDA"	"NVIDIA HDMI Audio Driver"	"NVIDIA Corporation"	"c:\windows\system32\drivers\nvhda64v.sys"
+ "nvlddmkm"	"NVIDIA Windows Kernel Mode Driver, Version 261.41 "	"NVIDIA Corporation"	"c:\windows\system32\drivers\nvlddmkm.sys"
+ "nvraid"	"NVIDIA® nForce(TM) RAID Driver"	"NVIDIA Corporation"	"c:\windows\system32\drivers\nvraid.sys"
+ "nvsmu"	"NVIDIA nForce(TM) SMU Microcontroller Driver"	"NVIDIA Corporation"	"c:\windows\system32\drivers\nvsmu.sys"
+ "nvstor"	"NVIDIA® nForce(TM) Sata Performance Driver"	"NVIDIA Corporation"	"c:\windows\system32\drivers\nvstor.sys"
+ "PhyMem"	""	""	"c:\program files\powerplanassistant\ppa_x64.sys"
+ "PxHlpa64"	"Px Engine Device Driver for 64-bit Windows"	"Sonic Solutions"	"c:\windows\system32\drivers\pxhlpa64.sys"
+ "ql2300"	"QLogic Fibre Channel Stor Miniport Driver"	"QLogic Corporation"	"c:\windows\system32\drivers\ql2300.sys"
+ "ql40xx"	"QLogic iSCSI Storport Miniport Driver"	"QLogic Corporation"	"c:\windows\system32\drivers\ql40xx.sys"
+ "secdrv"	"Macrovision SECURITY Driver"	"Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K."	"c:\windows\system32\drivers\secdrv.sys"
+ "Serial"	"Brotehr Serial I/F Driver (WDM)"	"Brother Industries Ltd."	"c:\windows\system32\drivers\serial.sys"
+ "SiSRaid2"	"SiS RAID Stor Miniport Driver"	"Silicon Integrated Systems Corp."	"c:\windows\system32\drivers\sisraid2.sys"
+ "SiSRaid4"	"SiS AHCI Stor-Miniport Driver"	"Silicon Integrated Systems"	"c:\windows\system32\drivers\sisraid4.sys"
+ "stexstor"	"Promise  SuperTrak EX Series Driver for Windows "	"Promise Technology"	"c:\windows\system32\drivers\stexstor.sys"
+ "trackpad_plus_plus_x64"	"Mouse Filter Driver"	"Windows (R) Win 7 DDK provider"	"c:\windows\system32\drivers\trackpad_plus_plus_x64.sys"
+ "USBAAPL64"	"Apple Mobile Device USB Driver"	"Apple, Inc."	"c:\windows\system32\drivers\usbaapl64.sys"
+ "uxpatch"	""	""	"c:\windows\system32\drivers\uxpatch.sys"
+ "vhidmini"	"VJoy Virtual Joystick Driver"	"Headsoft"	"c:\windows\system32\drivers\vjoy.sys"
+ "viaide"	"VIA Generic PCI IDE Bus Driver"	"VIA Technologies, Inc."	"c:\windows\system32\drivers\viaide.sys"
+ "vsmraid"	"VIA RAID DRIVER FOR AMD-X86-64"	"VIA Technologies Inc.,Ltd"	"c:\windows\system32\drivers\vsmraid.sys"
+ "wacommousefilter"	"Wacom Mouse Filter Driver"	"Wacom Technology"	"c:\windows\system32\drivers\wacommousefilter.sys"
+ "wacomvhid"	"Virtual Hid Device"	"Wacom Technology"	"c:\windows\system32\drivers\wacomvhid.sys"
+ "WDC_SAM"	"Manages WD external storage products."	"Western Digital Technologies"	"c:\windows\system32\drivers\wdcsam64.sys"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32"	""	""	""
+ "msacm.l3acm"	"MPEG Layer-3 Audio Codec for MSACM"	"Fraunhofer Institut Integrierte Schaltungen IIS"	"c:\windows\system32\l3codeca.acm"
"HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Drivers32"	""	""	""
+ "msacm.l3acm"	"MPEG Layer-3 Audio Codec for MSACM"	"Fraunhofer Institut Integrierte Schaltungen IIS"	"c:\windows\syswow64\l3codeca.acm"
+ "vidc.cvid"	"Cinepak® Codec"	"Radius Inc."	"c:\windows\syswow64\iccvid.dll"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance"	""	""	""
+ "Theora Encode Filter"	""	""	"c:\program files (x86)\xiph.org\open codecs\x64\dsftheoraencoder.dll"
+ "WebM Muxer Filter"	"WebM Multiplexer Filter"	"Google"	"c:\program files (x86)\xiph.org\open codecs\x64\webmmux.dll"
+ "WebM Splitter Filter"	"Webm Splitter Filter"	"Google"	"c:\program files (x86)\xiph.org\open codecs\x64\webmsplit.dll"
+ "WebM VP8 Decoder Filter"	"WebM VP8 Decoder Filter"	"Google"	"c:\program files (x86)\xiph.org\open codecs\x64\vp8decoder.dll"
+ "WebM VP8 Encoder Filter"	"WebM VP8 Encoder Filter"	"Google"	"c:\program files (x86)\xiph.org\open codecs\x64\vp8encoder.dll"
+ "Xiph.Org FLAC Decoder"	""	""	"c:\program files (x86)\xiph.org\open codecs\x64\dsfflacdecoder.dll"
+ "Xiph.Org FLAC Encoder"	""	""	"c:\program files (x86)\xiph.org\open codecs\x64\dsfflacencoder.dll"
+ "Xiph.Org Native FLAC Decoder"	""	""	"c:\program files (x86)\xiph.org\open codecs\x64\dsfnativeflacsource.dll"
+ "Xiph.Org Ogg Demuxer"	""	""	"c:\program files (x86)\xiph.org\open codecs\x64\dsfoggdemux2.dll"
+ "Xiph.Org Ogg Muxer"	""	""	"c:\program files (x86)\xiph.org\open codecs\x64\dsfoggmux.dll"
+ "Xiph.Org Speex Decoder"	""	""	"c:\program files (x86)\xiph.org\open codecs\x64\dsfspeexdecoder.dll"
+ "Xiph.Org Speex Encoder"	""	""	"c:\program files (x86)\xiph.org\open codecs\x64\dsfspeexencoder.dll"
+ "Xiph.Org Theora Decoder"	""	""	"c:\program files (x86)\xiph.org\open codecs\x64\dsftheoradecoder.dll"
+ "Xiph.Org Vorbis Decoder"	""	""	"c:\program files (x86)\xiph.org\open codecs\x64\dsfvorbisdecoder.dll"
+ "Xiph.Org Vorbis Encoder"	""	""	"c:\program files (x86)\xiph.org\open codecs\x64\dsfvorbisencoder.dll"
"HKLM\Software\Wow6432Node\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance"	""	""	""
+ "ArcGetDataSample"	"ArcGetDataSample"	"arcsoft"	"c:\program files (x86)\common files\arcsoft\mpeg engine\arcgetdatasample.ax"
+ "ArcPutDataSample"	"ArcGetDataSample"	"arcsoft"	"c:\program files (x86)\common files\arcsoft\mpeg engine\arcputdatasample.ax"
+ "ArcSoft 3GP Splitter"	"ArcSoft 3GP/3G2 Splitter Filter "	"ArcSoft Co. "	"c:\program files (x86)\common files\arcsoft\mpeg engine\3gpsplitter.ax"
+ "ArcSoft AMR/AAC Reader"	"ArcSoft AMR/AAC Reader"	"ArcSoft"	"c:\program files (x86)\common files\arcsoft\mpeg engine\amraacreader.ax"
+ "ArcSoft Audio Decoder"	"ArcSoft Audio Decoder"	"ArcSoft Inc."	"c:\program files (x86)\common files\arcsoft\mpeg engine\asaudio.ax"
+ "ArcSoft Avi Writer Filter"	"ArcSoft AVI Writer Filter"	"ArcSoft Inc."	"c:\program files (x86)\common files\arcsoft\mpeg engine\uaviwriter.ax"
+ "ArcSoft Convert DVD Filter"	"ConvertDVDFilter"	"ArcSoft, Inc."	"c:\program files (x86)\common files\arcsoft\mpeg engine\convertdvdfilter.ax"
+ "ArcSoft Deinterlace"	"deinterlace"	"ArcSoft"	"c:\program files (x86)\common files\arcsoft\mpeg engine\deinterlace.ax"
+ "Arcsoft Frame Player Source"	""	""	"c:\program files (x86)\common files\arcsoft\mpeg engine\fpsource.ax"
+ "ArcSoft H.264 Splitter"	"ArcSoft H.264 Splitter (Filter)"	"Arcsoft"	"c:\program files (x86)\common files\arcsoft\mpeg engine\h264splitter.ax"
+ "ArcSoft H263 Encoder"	"ArcSoft H263 Encoder Filter"	"ArcSoft Co. (hangzhou, PRC)"	"c:\program files (x86)\common files\arcsoft\mpeg engine\h263encoder.ax"
+ "ArcSoft L3 Decoder"	"ArcACMDecoder"	"ArcSoft, Inc."	"c:\program files (x86)\common files\arcsoft\mpeg engine\arcl3decoder.ax"
+ "ArcSoft L3 Encoder"	"ArcACMEncoder"	"ArcSoft Inc."	"c:\program files (x86)\common files\arcsoft\mpeg engine\arcl3encoder.ax"
+ "Arcsoft LPCM Decoder"	"LPCM Decoder"	"ArcSoft"	"c:\program files (x86)\common files\arcsoft\mpeg engine\lpcmdec.ax"
+ "ArcSoft MP4 Splitter"	"ArcSoft MP4 Splitter Filter"	"ArcSoft Co. (hangzhou, PRC)"	"c:\program files (x86)\common files\arcsoft\mpeg engine\mp4splitter.ax"
+ "ArcSoft MP4Muxer"	"ArcSoft 3GP/3G2 Muxer Filter"	"ArcSoft"	"c:\program files (x86)\common files\arcsoft\mpeg engine\u3gpmux.ax"
+ "ArcSoft MP4Muxer"	"ArcSoft MP4 Muxer Filter"	"ArcSoft Inc."	"c:\program files (x86)\common files\arcsoft\mpeg engine\mp4muxer.ax"
+ "ArcSoft MPEG Audio Decoder"	"ArcSoft Audio Decoder"	"ArcSoft Inc."	"c:\program files (x86)\common files\arcsoft\mpeg engine\mpgaudio.ax"
+ "ArcSoft Mpeg Encoder Filter"	""	"ArcSoft"	"c:\program files (x86)\common files\arcsoft\mpeg engine\arcmpegcodec.ax"
+ "ArcSoft Mpeg Mplex Filter"	"MplexFilter"	"ArcSoft Inc."	"c:\program files (x86)\common files\arcsoft\mpeg engine\arcmplexfilter.ax"
+ "Arcsoft Mpeg Mplex Filter"	"MplexFilter"	"ArcSoft Inc."	"c:\program files (x86)\common files\arcsoft\mpeg engine\mplexfilter.ax"
+ "ArcSoft MPEG Splitter"	"MPGSplitter Filter"	"ArcSoft, Inc."	"c:\program files (x86)\common files\arcsoft\mpeg engine\arcspl.ax"
+ "Arcsoft Mpeg2Audio Encoder"	"Mpeg2AudioEncoder"	"ArcSoft Inc."	"c:\program files (x86)\common files\arcsoft\mpeg engine\mpeg2audioencoder.ax"
+ "ArcSoft MPEG4 Decoder"	"ArcSoft H.263 Video Decoder (Filter)"	"Arcsoft"	"c:\program files (x86)\common files\arcsoft\mpeg engine\h263dec.ax"
+ "ArcSoft Null Render"	"NULL Render"	"ArcSoft Inc."	"c:\program files (x86)\common files\arcsoft\mpeg engine\arcnullrender.ax"
+ "ArcSoft QCELP 13K Encoder"	"ArcSoft QCELP 13K Encoder"	"ArcSoft"	"c:\program files (x86)\common files\arcsoft\mpeg engine\qcelpencoder.ax"
+ "Arcsoft QCELPDecoder"	"ArcSoft QCELP Decoder"	"ArcSoft"	"c:\program files (x86)\common files\arcsoft\mpeg engine\qcelpdecoder.ax"
+ "ArcSoft RealMedia Audio Decoder"	"RealAudioDecoder"	"ArcSoft"	"c:\program files (x86)\common files\arcsoft\mpeg engine\realaudiodecoder.ax"
+ "ArcSoft RealMedia Splitter"	"RealMediaSplitter"	"Arcsoft, Inc."	"c:\program files (x86)\common files\arcsoft\mpeg engine\realmediasplitter.ax"
+ "ArcSoft RealMedia Video Decoder"	"RealVideoDecoder"	"ArcSoft"	"c:\program files (x86)\common files\arcsoft\mpeg engine\realvideodecoder.ax"
+ "Arcsoft Source Buffer Filter"	"Device Source Buffer Filter"	"ArcSoft Inc."	"c:\program files (x86)\common files\arcsoft\mpeg engine\srcbuffer.ax"
+ "ArcSoft TimeShift2.0 Client Filter"	"Timeshift2.0 Filter"	"Arcsoft Inc."	"c:\program files (x86)\common files\arcsoft\mpeg engine\timeshift2.ax"
+ "ArcSoft TimeShift2.0 Server Filter"	"Timeshift2.0 Filter"	"Arcsoft Inc."	"c:\program files (x86)\common files\arcsoft\mpeg engine\timeshift2.ax"
+ "ArcSoft TS Stream"	"MPGSplitter Filter"	"ArcSoft, Inc."	"c:\program files (x86)\common files\arcsoft\mpeg engine\arctsspl.ax"
+ "ArcSoft Video Decoder"	"ArcSoft Video Decoder"	"ArcSoft Inc."	"c:\program files (x86)\common files\arcsoft\mpeg engine\asvid.ax"
+ "ArcSoft VideoEffect"	"Arcsoft Video Effect Filter 1.0"	"Arcsoft Corporation"	"c:\program files (x86)\common files\arcsoft\mpeg engine\arcvideoeffect.ax"
+ "Arcsoft WMV/ASF Splitter"	"ArcWmvSpl"	"Arcsoft, Inc."	"c:\program files (x86)\common files\arcsoft\mpeg engine\arcwmvspl.ax"
+ "File Dump"	"FileDump DLL"	"ArcSoft Inc."	"c:\program files (x86)\common files\arcsoft\mpeg engine\filedump.ax"
+ "File Source (Soft-denchi.)"	"SdMedia direct-show-filter Module"	"Paltiosoft Inc."	"c:\program files (x86)\softdenchi\sdmedia.ax"
+ "OMG TRANSFORM"	"OmgTransform Filter "	"Sony Corporation"	"c:\program files (x86)\common files\sony shared\openmg\omgtrans.ax"
+ "OmgDsee Filter"	""	""	"c:\program files (x86)\common files\sony shared\openmg\omgdseefilter.ax"
+ "OmgGenericSrcFilter"	"OmgGenericSrcFilter"	"Sony Corporation"	"c:\program files (x86)\common files\sony shared\openmg\omggenericsrcfilter.ax"
+ "OmgMP4Decoder2"	"OmgMP4Decoder2"	"Sony Corporation"	"c:\program files (x86)\common files\sony shared\openmg\omgmp4decoder2.ax"
+ "OmgPushSrc"	"OmgPushSrc"	"Sony Corporation"	"c:\program files (x86)\common files\sony shared\openmg\omgpushsrc.ax"
+ "OpenMG Async. File Source"	"OpenMG Async. File Source"	"Sony Corporation"	"c:\program files (x86)\common files\sony shared\avlib\omgafs.ax"
+ "OpenMG Audio Decrypt"	"OpenMG Decrypt Filter"	"Sony Corporation"	"c:\program files (x86)\common files\sony shared\openmg\omgdec.ax"
+ "OpenMG OmgSource Filter"	"OpenMG OmgSource Filter"	"Sony Corporation"	"c:\program files (x86)\common files\sony shared\openmg\omgsrc.ax"
+ "RealPlayer Audio Filter"	"Audio Filter Plugin"	"RealNetworks, Inc."	"c:\program files (x86)\real\realplayer\rdsf3260.dll"
+ "RealPlayer Transcode Filter"	"Audio Filter Plugin"	"RealNetworks, Inc."	"c:\program files (x86)\real\realplayer\rdsf3260.dll"
+ "RealPlayer Video Filter"	"Audio Filter Plugin"	"RealNetworks, Inc."	"c:\program files (x86)\real\realplayer\rdsf3260.dll"
+ "SAL Input Converter"	"SAL Input Converter Source Filter"	"Sony Corporation"	"c:\program files (x86)\common files\sony shared\openmg\saliconv.ax"
+ "SAL Output Converter"	"SAL Output Converter RendererFilter"	"Sony Corporation"	"c:\program files (x86)\common files\sony shared\openmg\saloconv.ax"
+ "Seamless Play"	"Seamless-Play Filter (Sample)"	"Sony Corporation"	"c:\program files (x86)\common files\sony shared\openmg\seamlessfilter.ax"
+ "Snapshot"	"Arcsoft Snapshot Filter 1.0"	"Arcsoft Corporation"	"c:\program files (x86)\common files\arcsoft\mpeg engine\arcsnap.ax"
+ "Sony Audio CD Source Filter"	"OpenMG CdSource Filter"	"Sony Corporation"	"c:\program files (x86)\common files\sony shared\avlib\cdsrc.ax"
+ "SonyMSAConv"	"OpenMG Converter Filter"	"Sony Corporation"	"c:\program files (x86)\common files\sony shared\avlib\sonycdsrcwriter.ax"
+ "SonyMSAConv"	"OpenMG Converter Filter"	"Sony Corporation"	"c:\program files (x86)\common files\sony shared\avlib\sonymsaconverter3.ax"
+ "SonyWavWriter"	"SonyWavWriter"	"Sony Corporation"	"c:\program files (x86)\common files\sony shared\avlib\sonywavwriter.ax"
+ "Theora Encode Filter"	""	""	"c:\program files (x86)\xiph.org\open codecs\dsftheoraencoder.dll"
+ "WebM Muxer Filter"	"WebM Multiplexer Filter"	"Google"	"c:\program files (x86)\xiph.org\open codecs\webmmux.dll"
+ "WebM Splitter Filter"	"Webm Splitter Filter"	"Google"	"c:\program files (x86)\xiph.org\open codecs\webmsplit.dll"
+ "WebM VP8 Decoder Filter"	"WebM VP8 Decoder Filter"	"Google"	"c:\program files (x86)\xiph.org\open codecs\vp8decoder.dll"
+ "WebM VP8 Encoder Filter"	"WebM VP8 Encoder Filter"	"Google"	"c:\program files (x86)\xiph.org\open codecs\vp8encoder.dll"
+ "Xiph.Org FLAC Decoder"	""	""	"c:\program files (x86)\xiph.org\open codecs\dsfflacdecoder.dll"
+ "Xiph.Org FLAC Encoder"	""	""	"c:\program files (x86)\xiph.org\open codecs\dsfflacencoder.dll"
+ "Xiph.Org Native FLAC Decoder"	""	""	"c:\program files (x86)\xiph.org\open codecs\dsfnativeflacsource.dll"
+ "Xiph.Org Ogg Demuxer"	""	""	"c:\program files (x86)\xiph.org\open codecs\dsfoggdemux2.dll"
+ "Xiph.Org Ogg Muxer"	""	""	"c:\program files (x86)\xiph.org\open codecs\dsfoggmux.dll"
+ "Xiph.Org Speex Decoder"	""	""	"c:\program files (x86)\xiph.org\open codecs\dsfspeexdecoder.dll"
+ "Xiph.Org Speex Encoder"	""	""	"c:\program files (x86)\xiph.org\open codecs\dsfspeexencoder.dll"
+ "Xiph.Org Theora Decoder"	""	""	"c:\program files (x86)\xiph.org\open codecs\dsftheoradecoder.dll"
+ "Xiph.Org Vorbis Decoder"	""	""	"c:\program files (x86)\xiph.org\open codecs\dsfvorbisdecoder.dll"
+ "Xiph.Org Vorbis Encoder"	""	""	"c:\program files (x86)\xiph.org\open codecs\dsfvorbisencoder.dll"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\Appinit_Dlls"	""	""	""
+ "C:\PROGRA~2\SEARCH~1\Datamngr\x64\datamngr.dll C:\PROGRA~2\SEARCH~1\Datamngr\x64\IEBHO.dll"	""	""	"File not found: C:\PROGRA~2\SEARCH~1\Datamngr\x64\datamngr.dll C:\PROGRA~2\SEARCH~1\Datamngr\x64\IEBHO.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries"	""	""	""
+ "mdnsNSP"	"Bonjour Namespace Provider"	"Apple Inc."	"c:\program files (x86)\bonjour\mdnsnsp.dll"
"HKLM\System\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries64"	""	""	""
+ "mdnsNSP"	"Bonjour Namespace Provider"	"Apple Inc."	"c:\program files\bonjour\mdnsnsp.dll"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors"	""	""	""
+ "PCL hpz3lw71"	"LanguageMonitor"	"Hewlett-Packard Corporation"	"c:\windows\system32\hpz3lw71.dll"

#8 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,365 posts
  • Gender:Male
  • Location:India

Posted 13 November 2012 - 01:11 AM

Click on startmenu and type

cmd

Right click on it,select run as administrator and run this command

sfc /scanfile=c:\windows\explorer.exe

After scan finishes

Restart the PC after scan and post the new RKILL log

Let me know if you still have redirects

#9 Reqiuem

Reqiuem

    New Member

  • Members
  • Pip
  • 10 posts

Posted 13 November 2012 - 11:58 AM

One of the programs got it, thanks so much for the help!

#10 narenxp

narenxp

    Forum Addict

  • BC Advisor
  • PipPipPipPipPipPip
  • 16,365 posts
  • Gender:Male
  • Location:India

Posted 13 November 2012 - 08:58 PM

That looks good

Remove temporary and junk files

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot.If TFC locks up the system,run it in safemode


Create a new restore point

Follow this guide to turn off and turn on your restore points

XP- http://support.microsoft.com/kb/310405

Vista & windows 7- http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off

Turn off your system restore-It deletes old infected restore points

Turn on system restore and create a new restore point

Update JAVA and Flash player

Uninstall old version of java from control panel-Add or remove programs.Download the latest version from here

http://java.com/en/

Update your flash player

Antivirus recommendations

Update your antivirus frequently.Two free antivirus that i would suggest are

Microsoft security essentials or Avast.You can select either one of them.

If you have a paid one,make sure to update it frequently.Do not use multiple security softwares.

Informative guides that could prevent you from being infected again

How did I get infected?

http://www.bleepingcomputer.com/forums/topic2520.html

Best Practices for Safe Computing - Prevention of Malware Infection

http://www.bleepingcomputer.com/forums/topic407147.html

Simple and easy ways to keep your computer safe and secure on the Internet

http://www.bleepingcomputer.com/tutorials/keep-your-computer-safe-online/

Safe surfing :)

#11 sawas

sawas

    New Member

  • Members
  • Pip
  • 1 posts

Posted 22 December 2012 - 12:00 PM

I had the same problem with IE.
I followed the instructions and got rid of it.

Thank you!!!
Back to Am I infected? What do I do?


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users


  1. BleepingComputer.com
  2. Security
  3. Am I infected? What do I do?
  4. Privacy Policy
  5. Rules ·