Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with Win32/Sirefef.ER and getting continous AVG threat detected popups


  • This topic is locked This topic is locked
36 replies to this topic

#1 anders98

anders98

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:58 PM

Posted 06 March 2012 - 12:03 PM

Hi there and thanks in advance for your help. The machine in question is running Windows Vista Home Premium with Service Pack 2. A friend asked me to look at her computer over the weekend because she was getting AVG Threat Detection pop-ups every time she booted her machine and as soon as she clicked on the "Move to Vault" option, another window would immediately pop-up. This cycle continued every time she clicked on one of the options in the window. I ran scans with Malwarebytes and SUPERAntispyware and successfully cleaned up the following:
- RootKit.ZeroAccess.H
- Backdoor.bot
- Trojan.Agent
- Backdoor.Agent.H
- Hijacker.Tubby
- Zugo

SUPERAntispyware, Malwarebytes and AVG are now all coming back with clean scans, however, I still get the "Threat detected" popups when starting the computer up. This time, the threat indicated is Win32/Sirefef.ER. I'm not sure where else to go from here, so thought I'd ask the experts :)

I followed the prep steps for this forum but was unsuccessful at the following:
- Enabling Windows Firewall. Tried in both normal startup and safe mode and the error I get in both is "Due to an unidentified problem, Windows cannot display Windows Firewall settings." I have isolated the machine from my network since I can't enable the firewall.
- Running GMER. Tried in both normal startup and safe mode. In normal mode, I let the program run overnight but it hung up on the following directory "..\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5". Tried running it in safe mode, but the first time it unexpectedly shutdown after a few seconds of scanning and the 2nd time, the machine blue screened immediately upon launching the program. As a side note, I tried to delete the "Content.IE5" directory since those files aren't needed but I get error messages on some of the files saying they have moved and can't be located so I can't completely delete that directory.

DDS log info below:
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 7.0.6002.18005 BrowserJavaVersion: 1.6.0_31
Run by MFamily at 17:00:55 on 2012-03-05
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.3317.2051 [GMT -7:00]
.
AV: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\PROGRA~1\AVG\AVG2012\avgrsx.exe
C:\Program Files\AVG\AVG2012\avgcsrvx.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG2012\avgwdsvc.exe
C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Flip Video\FlipShare\FlipShareService.exe
C:\Windows\system32\svchost.exe -k hpdevmgmt
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Windows\System32\svchost.exe -k HPZ12
C:\Program Files\Trend Micro\OKAVAgent\OKAVAgent.exe
C:\Windows\System32\svchost.exe -k HPZ12
c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\10.0.6\ToolbarUpdater.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files\AVG\AVG2012\avgnsx.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Lenovo\Healthcare\HealthCare.exe
C:\Program Files\Lenovo\VeriFaceIII\PManage.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Common Files\aol\1229737310\ee\aolsoftware.exe
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
C:\Program Files\Babylon\Babylon-Pro\Babylon.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Program Files\Ask.com\Updater\Updater.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\Program Files\Real\RealPlayer\Update\realsched.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
C:\Program Files\Southwest Airlines\Ding\Ding.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Windows\system32\SearchProtocolHost.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Windows\system32\FirewallControlPanel.exe
C:\Windows\System32\mobsync.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = about:blank
uSearch Page = hxxp://us.rd.yahoo.com/customize/ie/defaults/sp/msgr9/*http://www.yahoo.com
uSearch Bar = hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.html
mStart Page = hxxp://www.yahoo.com/
mDefault_Page_URL = hxxp://www.yahoo.com/
mDefault_Search_URL = hxxp://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.com
mSearch Page = hxxp://us.rd.yahoo.com/customize/ie/defaults/sp/msgr9/*http://www.yahoo.com
mSearch Bar = hxxp://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.html
uInternet Settings,ProxyOverride = *.local
uSearchURL,(Default) = hxxp://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.com
uURLSearchHooks: UrlSearchHook Class: {00000000-6e41-4fd3-8538-502f5495e5fc} - c:\program files\ask.com\GenericAskToolbar.dll
uURLSearchHooks: H - No File
mURLSearchHooks: IAOLTBSearch Class: {ea756889-2338-43db-8f07-d1ca6fb9c90d} - c:\program files\aol toolbar\aoltb.dll
mURLSearchHooks: H - No File
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\progra~1\yahoo!\companion\installs\cpn\yt.dll
BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\program files\hp\digital imaging\smart web printing\hpswp_printenhancer.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\programdata\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg2012\avgssie.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: AOL Toolbar Loader: {7c554162-8cb7-45a4-b8f4-8ea1c75885f9} - c:\program files\aol toolbar\aoltb.dll
BHO: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\10.0.0.7\AVG Secure Search_toolbar.dll
BHO: Babylon IE plugin: {9cfaccb6-2f3f-4177-94ea-0d2b72d384c1} - c:\program files\babylon\babylon-pro\utils\BabylonIEPI.dll
BHO: Windows Live Toolbar Helper: {bdbd1dad-c946-4a17-adc1-64b5b4ff55d0} - c:\program files\windows live toolbar\msntb.dll
BHO: 1 (0x1) - No File
BHO: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\progra~1\yahoo!\companion\installs\cpn\YTSingleInstance.dll
BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
TB: Windows Live Toolbar: {bdad1dad-c946-4a17-adc1-64b5b4ff55d0} - c:\program files\windows live toolbar\msntb.dll
TB: AOL Toolbar: {de9c389f-3316-41a7-809b-aa305ed9d922} - c:\program files\aol toolbar\aoltb.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\progra~1\yahoo!\companion\installs\cpn\yt.dll
TB: {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
TB: Ask Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll
TB: AVG Security Toolbar: {95b7759c-8c7f-4bf1-b163-73684a933233} - c:\program files\avg secure search\10.0.0.7\AVG Secure Search_toolbar.dll
TB: {A057A204-BACC-4D26-9990-79A187E2698E} - No File
TB: {CE18769B-C7FA-42D2-860D-17C4662C70AD} - No File
{e7df6bff-55a5-4eb7-a673-4ed3e9456d39}
EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
uRun: [Messenger (Yahoo!)] "c:\program files\yahoo!\messenger\YahooMessenger.exe" -quiet
uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe
uRun: [LDM] c:\program files\logitech\desktop messenger\8876480\program\LogitechDesktopMessenger.exe
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
mRun: [Unattend0000000001{630DEC53-CECA-49A3-896C-B064A4DC05AA}] c:\windows\test.bat
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [Healthcare] c:\program files\lenovo\healthcare\HealthCare.exe /hide
mRun: [VeriFaceManager] c:\program files\lenovo\verifaceiii\PManage.exe
mRun: [SetDefaultSCR] c:\program files\lenovo\lenovo screensaver\SetDefaultSCR.exe
mRun: [zBrowser Launcher] c:\program files\logitech\itouch\iTouch.exe
mRun: [HostManager] c:\program files\common files\aol\1229737310\ee\AOLSoftware.exe
mRun: [VirtualCloneDrive] "c:\program files\elaborate bytes\virtualclonedrive\VCDDaemon.exe" /s
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
mRun: [LogitechQuickCamRibbon] "c:\program files\logitech\logitech webcam software\LWS.exe" /hide
mRun: [Babylon Client] c:\program files\babylon\babylon-pro\Babylon.exe -AutoStart
mRun: [AVG_TRAY] "c:\program files\avg\avg2012\avgtray.exe"
mRun: [QwestTouchPointAgent] "c:\program files\qwest\desktop\QwestTouchPointAgent.exe" /autostart
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [<NO NAME>]
mRun: [ApnUpdater] "c:\program files\ask.com\updater\Updater.exe"
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [vProt] "c:\program files\avg secure search\vprot.exe"
mRun: [ROC_roc_dec12] "c:\program files\avg secure search\ROC_roc_dec12.exe" /PROMPT /CMPID=roc_dec12
mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
StartupFolder: c:\users\mfamil~1\appdata\roaming\micros~1\windows\startm~1\programs\startup\ding!.lnk - c:\program files\southwest airlines\ding\Ding.exe
StartupFolder: c:\users\mfamil~1\appdata\roaming\micros~1\windows\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\kodake~1.lnk - c:\program files\kodak\kodak easyshare software\bin\EasyShare.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\logite~1.lnk - c:\program files\logitech\desktop messenger\8876480\program\LDMConf.exe
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: &AOL Toolbar Search - c:\programdata\aol\ietoolbar\resources\en-us\local\search.html
IE: &Windows Live Search - c:\program files\windows live toolbar\msntb.dll/search.htm
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: Translate this web page with Babylon - c:\program files\babylon\babylon-pro\utils\BabylonIEPI.dll/ActionTU.htm
IE: Translate with Babylon - c:\program files\babylon\babylon-pro\utils\BabylonIEPI.dll/Action.htm
IE: {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - res://c:\program files\babylon\babylon-pro\utils\BabylonIEPI.dll/ActionTU.htm
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hp\digital imaging\smart web printing\hpswp_BHO.dll
LSP: mswsock.dll
Trusted Zone: intuit.com\ttlc
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
TCP: DhcpNameServer = 192.168.0.1 205.171.2.65
TCP: Interfaces\{5E5335D4-1F75-4D27-826B-CD8FA4130D91} : DhcpNameServer = 192.168.0.1 205.171.2.65
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\logitech\desktop messenger\8876480\program\GAPlugProtocol-8876480.dll
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg2012\avgpp.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\common files\avg secure search\viprotocolinstaller\10.0.6\ViProtocol.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
Notify: igfxcui - igfxdev.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\mfamily\appdata\roaming\mozilla\firefox\profiles\wklws6lo.default\
FF - prefs.js: keyword.URL - hxxp://isearch.avg.com/search?cid=%7B3b1f9850-2839-4d6d-9309-a62011e77636%7D&mid=be043e32bb0a4a11bbda8b7ff239b634-5e83f66162739ff482293624dcf35e7bcc69f6f4&ds=AVG&v=10.0.0.7&lang=en&pr=fr&d=2011-12-26%2019%3A29%3A25&sap=ku&q=
FF - plugin: c:\program files\adobe\reader 9.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\google\update\1.3.21.99\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\java\jre6\bin\plugin2\npdeployJava1.dll
FF - plugin: c:\program files\java\jre6\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\4.1.10111.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npCouponPrinter.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdnu.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npMozCouponPrinter.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npunagi2.dll
FF - plugin: c:\program files\viewpoint\viewpoint experience technology\npViewpoint.dll
FF - plugin: c:\program files\virtual earth 3d\npVE3D.dll
FF - plugin: c:\program files\wildtangent games\app\browserintegration\registered\3\NP_wtapp.dll
FF - plugin: c:\programdata\real\realplayer\browserrecordplugin\mozillaplugins\nprpchromebrowserrecordext.dll
FF - plugin: c:\programdata\real\realplayer\browserrecordplugin\mozillaplugins\nprphtml5videoshim.dll
FF - plugin: c:\users\mfamily\appdata\roaming\move networks\plugins\npqmp071505000010.dll
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2011-7-11 23120]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2011-9-13 32592]
R0 WinI2C-DDC;WinI2C-DDC Kernel Mode Driver;c:\windows\system32\drivers\ddcdrv.sys [2008-10-17 13680]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2011-10-7 230608]
R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2011-8-8 40016]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2011-7-11 295248]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2011-8-11 116608]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg2012\AVGIDSAgent.exe [2011-10-12 4433248]
R2 avgwd;AVG WatchDog;c:\program files\avg\avg2012\avgwdsvc.exe [2011-8-2 192776]
R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-20 21504]
R2 OKAV Agent Service;OKAV Agent Service;c:\program files\trend micro\okavagent\OKAVAgent.exe [2008-6-4 66824]
R2 regi;regi;c:\windows\system32\drivers\regi.sys [2007-4-17 11032]
R2 vToolbarUpdater;vToolbarUpdater;c:\program files\common files\avg secure search\vtoolbarupdater\10.0.6\ToolbarUpdater.exe [2012-1-16 909152]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [2011-7-11 134736]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [2011-7-11 24272]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [2011-10-4 16720]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2012-3-5 40776]
S2 avg7alrt;Lxby_device;c:\windows\system32\svchost.exe -k netsvcs [2008-1-20 21504]
S2 avg7rsxp;Enecbpth;c:\windows\system32\svchost.exe -k netsvcs [2008-1-20 21504]
S2 avgarcln;RT25USBAP;c:\windows\system32\svchost.exe -k netsvcs [2008-1-20 21504]
S2 avgfwsrv;Pilogsrv;c:\windows\system32\svchost.exe -k netsvcs [2008-1-20 21504]
S2 caisafe;Ptilink;c:\windows\system32\svchost.exe -k netsvcs [2008-1-20 21504]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 fssfltr;Smapint;c:\windows\system32\svchost.exe -k netsvcs [2008-1-20 21504]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2012-1-26 136176]
S2 iksysflt;Ptserial;c:\windows\system32\svchost.exe -k netsvcs [2008-1-20 21504]
S2 mbr;Pdlnemsg;c:\windows\system32\svchost.exe -k netsvcs [2008-1-20 21504]
S2 mfebopk;Aw_host;c:\windows\system32\svchost.exe -k netsvcs [2008-1-20 21504]
S2 mirrorv3;Iaantmon;c:\windows\system32\svchost.exe -k netsvcs [2008-1-20 21504]
S2 MpFilter;Pae_avs;c:\windows\system32\svchost.exe -k netsvcs [2008-1-20 21504]
S2 nod32krn;TMHIDSRV;c:\windows\system32\svchost.exe -k netsvcs [2008-1-20 21504]
S2 pavprsrv;Cam5603C;c:\windows\system32\svchost.exe -k netsvcs [2008-1-20 21504]
S2 pavreport;Mclogmanagerservice;c:\windows\system32\svchost.exe -k netsvcs [2008-1-20 21504]
S2 RAPIProtocol;Se58nd5;c:\windows\system32\svchost.exe -k netsvcs [2008-1-20 21504]
S2 symantecantibotfilter;VAIOMediaPlatform-PhotoServer-HTTP;c:\windows\system32\svchost.exe -k netsvcs [2008-1-20 21504]
S2 TeamViewer;S24eventmonitor;c:\windows\system32\svchost.exe -k netsvcs [2008-1-20 21504]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\avg\avg10\toolbar\ToolbarBroker.exe [2011-5-24 167264]
S3 GamesAppService;GamesAppService;c:\program files\wildtangent games\app\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2012-1-26 136176]
S3 McComponentHostService;McAfee Security Scan Component Host Service;"c:\program files\mcafee security scan\2.0.181\mcchsvc.exe" --> c:\program files\mcafee security scan\2.0.181\McCHSvc.exe [?]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== Created Last 30 ================
.
2012-03-05 23:41:49 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2012-03-04 08:30:03 -------- d-----w- c:\users\mfamily\appdata\roaming\SUPERAntiSpyware.com
2012-03-04 08:29:18 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2012-03-04 08:29:18 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-02-25 17:53:21 -------- d-----w- c:\users\mfamily\appdata\local\Vivitar Experience Image Manager
2012-02-25 17:53:15 -------- d-----w- c:\programdata\Vivitar
2012-02-25 17:52:35 60273 ----a-w- c:\windows\system32\pthreadGC2.dll
2012-02-25 17:52:35 57344 ----a-w- c:\windows\system32\ff_vfw.dll
2012-02-25 17:52:33 -------- d-----w- c:\program files\ffdshow
2012-02-25 17:52:01 -------- d-----w- c:\program files\Vivitar Experience Image Manager
2012-02-19 17:25:20 479232 ----a-w- c:\program files\mozilla firefox\msvcm80.dll
2012-02-19 17:25:20 43992 ----a-w- c:\program files\mozilla firefox\mozutils.dll
2012-02-19 17:25:19 626688 ----a-w- c:\program files\mozilla firefox\msvcr80.dll
2012-02-19 17:25:19 548864 ----a-w- c:\program files\mozilla firefox\msvcp80.dll
2012-02-05 14:19:55 0 --sha-w- c:\windows\system32\dds_trash_log.cmd
.
==================== Find3M ====================
.
2012-03-03 15:37:40 83456 ----a-w- c:\windows\system32\drivers\serial.sys
2012-02-19 17:23:45 472808 ----a-w- c:\windows\system32\deployJava1.dll
2012-02-19 17:20:16 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-01-12 19:52:56 2044416 ----a-w- c:\windows\system32\win32k.sys
2011-12-16 15:59:20 834048 ----a-w- c:\windows\system32\wininet.dll
2011-12-16 14:11:42 389632 ----a-w- c:\windows\system32\html.iec
2011-12-16 13:46:35 1383424 ----a-w- c:\windows\system32\mshtml.tlb
2011-12-14 16:17:47 680448 ----a-w- c:\windows\system32\msvcrt.dll
2011-12-10 22:24:06 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
.
============= FINISH: 17:04:56.81 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:10:58 PM

Posted 06 March 2012 - 12:06 PM

Hello and Welcome to the forums!

My name is Gringo and I'll be glad to help you with your computer problems.

Somethings to remember while we are working together.

  • Do not run any other tool untill instructed to do so!
  • please Do not Attach logs or put in code boxes.
  • Tell me about any problems that have occurred during the fix.
  • Tell me of any other symptoms you may be having as these can help also.
  • Do not run anything while running a fix.
  • Do not run any other tool untill instructed to do so!


Click on the Watch Topic Button and select Immediate Notification and click on proceed, this will help you to get notified faster when I have replied and make the cleaning process faster.

Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links.
Link 1
Link 2
Link 3
1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#3 anders98

anders98
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:58 PM

Posted 06 March 2012 - 05:01 PM

Thanks for your quick response, Gringo. I have run ComboFix in both normal mode and safe mode, and in both cases, I have let it run for about an hour but it remains on the screen that says "Scanning for infected files...This typically doesn't take more than 10 minutes However, scan times for badly infected machines may easily double". I disabled AVG before I started the scan, but of course, I can only do it for 15 minutes at a time before it starts up again, so not sure if that's what's causing the issue. Does it make sense to remove AVG completely for now until we get everything cleaned up?

Thanks for your help!

#4 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:10:58 PM

Posted 06 March 2012 - 05:12 PM

Greetings

I want you to run these next,

tdsskiller:

Please read carefully and follow these steps.
  • Download TDSSKiller and save it to your Desktop.
  • doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

Please download aswMBR to your desktop.
  • Double click the aswMBR.exe icon to run it
  • it will ask to download extra definitions - ALLOW IT
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

If you have any problems running either one come back and let me know

please reply with the reports from TDSSKiller and aswMBR

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#5 anders98

anders98
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:58 PM

Posted 06 March 2012 - 10:18 PM

TDSSKiller ran without issue and came back clean. Log from that run is below. aswMBR ran for about 45 minutes and then I got a Windows error saying that the program stopped working unexpectedly and Windows had to close the program. I tried running in safe mode and the same thing happened. It looks like it failed at the same place both times - scanning something in the Temporary Internet Files directory under %UserProfile%\appdata\local directory. I was unable to retrive a log from either of those runs.

TDDSKiller log:
15:41:53.0988 3764 TDSS rootkit removing tool 2.7.19.0 Mar 5 2012 11:23:39
15:41:54.0003 3764 ============================================================
15:41:54.0003 3764 Current date / time: 2012/03/06 15:41:54.0003
15:41:54.0003 3764 SystemInfo:
15:41:54.0003 3764
15:41:54.0003 3764 OS Version: 6.0.6002 ServicePack: 2.0
15:41:54.0003 3764 Product type: Workstation
15:41:54.0003 3764 ComputerName: MFAMILY-PC
15:41:54.0003 3764 UserName: MFamily
15:41:54.0003 3764 Windows directory: C:\Windows
15:41:54.0003 3764 System windows directory: C:\Windows
15:41:54.0003 3764 Processor architecture: Intel x86
15:41:54.0003 3764 Number of processors: 2
15:41:54.0003 3764 Page size: 0x1000
15:41:54.0003 3764 Boot type: Normal boot
15:41:54.0003 3764 ============================================================
15:41:57.0622 3764 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
15:41:57.0638 3764 Drive \Device\Harddisk5\DR5 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:41:58.0012 3764 \Device\Harddisk0\DR0:
15:41:58.0044 3764 MBR used
15:41:58.0044 3764 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x37F7398F
15:41:58.0044 3764 \Device\Harddisk5\DR5:
15:41:58.0059 3764 MBR used
15:41:58.0059 3764 \Device\Harddisk5\DR5\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xDF93782
15:41:58.0215 3764 Initialize success
15:41:58.0215 3764 ============================================================
15:42:09.0244 4028 ============================================================
15:42:09.0244 4028 Scan started
15:42:09.0244 4028 Mode: Manual;
15:42:09.0244 4028 ============================================================
15:42:16.0639 4028 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
15:42:16.0717 4028 ACPI - ok
15:42:17.0060 4028 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
15:42:17.0107 4028 adp94xx - ok
15:42:17.0278 4028 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
15:42:17.0294 4028 adpahci - ok
15:42:17.0544 4028 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
15:42:17.0606 4028 adpu160m - ok
15:42:18.0183 4028 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
15:42:18.0214 4028 adpu320 - ok
15:42:18.0511 4028 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
15:42:18.0558 4028 AFD - ok
15:42:19.0119 4028 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
15:42:19.0135 4028 agp440 - ok
15:42:19.0182 4028 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
15:42:19.0197 4028 aic78xx - ok
15:42:19.0572 4028 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
15:42:19.0603 4028 aliide - ok
15:42:19.0868 4028 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
15:42:19.0884 4028 amdagp - ok
15:42:20.0086 4028 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
15:42:20.0086 4028 amdide - ok
15:42:20.0164 4028 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
15:42:20.0164 4028 AmdK7 - ok
15:42:20.0258 4028 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
15:42:20.0305 4028 AmdK8 - ok
15:42:20.0445 4028 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
15:42:20.0508 4028 arc - ok
15:42:20.0710 4028 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
15:42:20.0726 4028 arcsas - ok
15:42:20.0929 4028 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
15:42:20.0929 4028 AsyncMac - ok
15:42:21.0085 4028 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
15:42:21.0085 4028 atapi - ok
15:42:21.0631 4028 AVGIDSDriver (4cbb56fbc9c0cbc517e6e3a6889ebddc) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
15:42:21.0631 4028 AVGIDSDriver - ok
15:42:21.0958 4028 AVGIDSEH (459bce188232e2fe6152423efef65d76) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
15:42:21.0958 4028 AVGIDSEH - ok
15:42:22.0021 4028 AVGIDSFilter (91d9abe7e88eac7c167cba4ed4d983bf) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
15:42:22.0021 4028 AVGIDSFilter - ok
15:42:22.0083 4028 AVGIDSShim (3fc2714e185c04308215d46730d41a94) C:\Windows\system32\DRIVERS\AVGIDSShim.Sys
15:42:22.0083 4028 AVGIDSShim - ok
15:42:22.0114 4028 Avgldx86 (bf8118cd5e2255387b715b534d64acd1) C:\Windows\system32\DRIVERS\avgldx86.sys
15:42:22.0114 4028 Avgldx86 - ok
15:42:22.0192 4028 Avgmfx86 (1c77ef67f196466adc9924cb288afe87) C:\Windows\system32\DRIVERS\avgmfx86.sys
15:42:22.0192 4028 Avgmfx86 - ok
15:42:22.0426 4028 Avgrkx86 (f2038ed7284b79dcef581468121192a9) C:\Windows\system32\DRIVERS\avgrkx86.sys
15:42:22.0426 4028 Avgrkx86 - ok
15:42:22.0660 4028 Avgtdix (a6d562b612216d8d02a35ebeb92366bd) C:\Windows\system32\DRIVERS\avgtdix.sys
15:42:22.0676 4028 Avgtdix - ok
15:42:23.0160 4028 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
15:42:23.0191 4028 Beep - ok
15:42:23.0347 4028 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
15:42:23.0347 4028 blbdrive - ok
15:42:23.0581 4028 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
15:42:23.0596 4028 bowser - ok
15:42:23.0643 4028 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
15:42:23.0643 4028 BrFiltLo - ok
15:42:23.0721 4028 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
15:42:23.0721 4028 BrFiltUp - ok
15:42:24.0018 4028 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
15:42:24.0049 4028 Brserid - ok
15:42:24.0220 4028 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
15:42:24.0252 4028 BrSerWdm - ok
15:42:24.0642 4028 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
15:42:24.0673 4028 BrUsbMdm - ok
15:42:25.0328 4028 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
15:42:25.0375 4028 BrUsbSer - ok
15:42:25.0827 4028 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
15:42:25.0843 4028 BTHMODEM - ok
15:42:29.0212 4028 catchme - ok
15:42:29.0821 4028 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
15:42:29.0868 4028 cdfs - ok
15:42:29.0977 4028 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
15:42:30.0055 4028 cdrom - ok
15:42:30.0148 4028 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
15:42:30.0180 4028 circlass - ok
15:42:30.0289 4028 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
15:42:30.0351 4028 CLFS - ok
15:42:30.0835 4028 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
15:42:30.0866 4028 cmdide - ok
15:42:31.0303 4028 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
15:42:31.0318 4028 Compbatt - ok
15:42:32.0005 4028 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
15:42:32.0005 4028 crcdisk - ok
15:42:32.0083 4028 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
15:42:32.0083 4028 Crusoe - ok
15:42:32.0426 4028 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
15:42:32.0473 4028 DfsC - ok
15:42:32.0566 4028 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
15:42:32.0566 4028 disk - ok
15:42:32.0816 4028 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
15:42:32.0816 4028 Dot4 - ok
15:42:33.0222 4028 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
15:42:33.0253 4028 Dot4Print - ok
15:42:33.0658 4028 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
15:42:33.0721 4028 dot4usb - ok
15:42:33.0939 4028 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
15:42:33.0970 4028 drmkaud - ok
15:42:34.0158 4028 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
15:42:34.0173 4028 DXGKrnl - ok
15:42:34.0532 4028 E100B (5e72c8fbba5e949995ceb4d25656f904) C:\Windows\system32\DRIVERS\e100b325.sys
15:42:34.0532 4028 E100B - ok
15:42:34.0766 4028 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
15:42:34.0797 4028 E1G60 - ok
15:42:35.0265 4028 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
15:42:35.0281 4028 Ecache - ok
15:42:35.0889 4028 ElbyCDIO (28cb0b64134ad62c2acf77db8501a619) C:\Windows\system32\Drivers\ElbyCDIO.sys
15:42:35.0889 4028 ElbyCDIO - ok
15:42:36.0139 4028 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
15:42:36.0248 4028 elxstor - ok
15:42:36.0716 4028 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
15:42:36.0763 4028 ErrDev - ok
15:42:37.0122 4028 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
15:42:37.0153 4028 exfat - ok
15:42:37.0699 4028 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
15:42:37.0730 4028 fastfat - ok
15:42:38.0011 4028 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
15:42:38.0042 4028 fdc - ok
15:42:38.0136 4028 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
15:42:38.0151 4028 FileInfo - ok
15:42:38.0416 4028 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
15:42:38.0416 4028 Filetrace - ok
15:42:38.0822 4028 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
15:42:38.0853 4028 flpydisk - ok
15:42:39.0150 4028 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
15:42:39.0196 4028 FltMgr - ok
15:42:39.0774 4028 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
15:42:39.0820 4028 Fs_Rec - ok
15:42:39.0992 4028 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
15:42:39.0992 4028 gagp30kx - ok
15:42:40.0335 4028 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:42:40.0335 4028 GEARAspiWDM - ok
15:42:40.0647 4028 grmnusb (cd007d03a9284bfe67d49c01213132bf) C:\Windows\system32\drivers\grmnusb.sys
15:42:40.0663 4028 grmnusb - ok
15:42:40.0850 4028 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
15:42:40.0881 4028 HdAudAddService - ok
15:42:41.0068 4028 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
15:42:41.0115 4028 HDAudBus - ok
15:42:41.0599 4028 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
15:42:41.0630 4028 HidBth - ok
15:42:41.0739 4028 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
15:42:41.0864 4028 HidIr - ok
15:42:42.0332 4028 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
15:42:42.0363 4028 HidUsb - ok
15:42:42.0722 4028 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
15:42:42.0738 4028 HpCISSs - ok
15:42:43.0549 4028 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
15:42:43.0596 4028 HTTP - ok
15:42:44.0095 4028 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
15:42:44.0110 4028 i2omp - ok
15:42:44.0251 4028 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
15:42:44.0266 4028 i8042prt - ok
15:42:44.0360 4028 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
15:42:44.0391 4028 iaStorV - ok
15:42:45.0218 4028 igfx (038815297078d236d8cc064c295a74c6) C:\Windows\system32\DRIVERS\igdkmd32.sys
15:42:45.0436 4028 igfx - ok
15:42:47.0121 4028 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
15:42:47.0152 4028 iirsp - ok
15:42:48.0588 4028 IntcAzAudAddService (58628f232a00a3149d7cc7708c521499) C:\Windows\system32\drivers\RTKVHDA.sys
15:42:48.0603 4028 IntcAzAudAddService - ok
15:42:49.0227 4028 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
15:42:49.0227 4028 intelide - ok
15:42:49.0399 4028 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
15:42:49.0414 4028 intelppm - ok
15:42:49.0758 4028 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:42:49.0773 4028 IpFilterDriver - ok
15:42:49.0820 4028 IpInIp - ok
15:42:50.0210 4028 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
15:42:50.0241 4028 IPMIDRV - ok
15:42:50.0584 4028 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
15:42:50.0616 4028 IPNAT - ok
15:42:50.0865 4028 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
15:42:50.0881 4028 IRENUM - ok
15:42:51.0115 4028 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
15:42:51.0146 4028 isapnp - ok
15:42:51.0333 4028 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
15:42:51.0333 4028 iScsiPrt - ok
15:42:51.0723 4028 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
15:42:51.0754 4028 iteatapi - ok
15:42:51.0801 4028 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
15:42:51.0801 4028 iteraid - ok
15:42:52.0051 4028 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
15:42:52.0051 4028 kbdclass - ok
15:42:52.0191 4028 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
15:42:52.0269 4028 kbdhid - ok
15:42:52.0800 4028 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
15:42:52.0800 4028 KSecDD - ok
15:42:53.0346 4028 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
15:42:53.0377 4028 lltdio - ok
15:42:53.0502 4028 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
15:42:53.0517 4028 LSI_FC - ok
15:42:53.0564 4028 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
15:42:53.0595 4028 LSI_SAS - ok
15:42:53.0720 4028 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
15:42:53.0736 4028 LSI_SCSI - ok
15:42:53.0798 4028 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
15:42:53.0798 4028 luafv - ok
15:42:53.0907 4028 LVcKap - ok
15:42:53.0985 4028 LVMVDrv - ok
15:42:54.0141 4028 LVPr2Mon (1a7db7a00a4b0d8da24cd691a4547291) C:\Windows\system32\Drivers\LVPr2Mon.sys
15:42:54.0141 4028 LVPr2Mon - ok
15:42:55.0093 4028 LVRS (87ecce893d8aec5a9337b917742d339c) C:\Windows\system32\DRIVERS\lvrs.sys
15:42:55.0155 4028 LVRS - ok
15:42:55.0358 4028 LVUSBSta (6ad3f5275f117f08c12eab2233a9e3fb) C:\Windows\system32\drivers\lvusbsta.sys
15:42:55.0358 4028 LVUSBSta - ok
15:42:55.0452 4028 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
15:42:55.0452 4028 megasas - ok
15:42:55.0498 4028 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
15:42:55.0498 4028 MegaSR - ok
15:42:55.0592 4028 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
15:42:55.0608 4028 Modem - ok
15:42:55.0639 4028 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
15:42:55.0639 4028 monitor - ok
15:42:55.0670 4028 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
15:42:55.0670 4028 mouclass - ok
15:42:55.0701 4028 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
15:42:55.0701 4028 mouhid - ok
15:42:55.0717 4028 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
15:42:55.0717 4028 MountMgr - ok
15:42:55.0764 4028 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
15:42:55.0826 4028 mpio - ok
15:42:55.0873 4028 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
15:42:55.0904 4028 mpsdrv - ok
15:42:55.0951 4028 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
15:42:55.0982 4028 Mraid35x - ok
15:42:56.0044 4028 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
15:42:56.0044 4028 MRxDAV - ok
15:42:56.0216 4028 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
15:42:56.0216 4028 mrxsmb - ok
15:42:56.0263 4028 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:42:56.0294 4028 mrxsmb10 - ok
15:42:56.0325 4028 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:42:56.0325 4028 mrxsmb20 - ok
15:42:56.0356 4028 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
15:42:56.0356 4028 msahci - ok
15:42:56.0419 4028 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
15:42:56.0419 4028 msdsm - ok
15:42:56.0746 4028 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
15:42:56.0746 4028 Msfs - ok
15:42:56.0793 4028 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
15:42:56.0793 4028 msisadrv - ok
15:42:56.0856 4028 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
15:42:56.0856 4028 MSKSSRV - ok
15:42:56.0902 4028 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
15:42:56.0918 4028 MSPCLOCK - ok
15:42:56.0934 4028 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
15:42:56.0934 4028 MSPQM - ok
15:42:57.0027 4028 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
15:42:57.0027 4028 MsRPC - ok
15:42:57.0058 4028 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
15:42:57.0058 4028 mssmbios - ok
15:42:57.0121 4028 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
15:42:57.0152 4028 MSTEE - ok
15:42:57.0246 4028 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
15:42:57.0261 4028 Mup - ok
15:42:57.0370 4028 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
15:42:57.0402 4028 NativeWifiP - ok
15:42:57.0464 4028 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
15:42:57.0480 4028 NDIS - ok
15:42:57.0542 4028 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
15:42:57.0558 4028 NdisTapi - ok
15:42:57.0604 4028 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
15:42:57.0714 4028 Ndisuio - ok
15:42:57.0776 4028 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
15:42:57.0792 4028 NdisWan - ok
15:42:57.0870 4028 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
15:42:57.0870 4028 NDProxy - ok
15:42:57.0901 4028 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
15:42:57.0901 4028 NetBIOS - ok
15:42:58.0010 4028 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
15:42:58.0010 4028 netbt - ok
15:42:58.0072 4028 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
15:42:58.0088 4028 nfrd960 - ok
15:42:58.0291 4028 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
15:42:58.0306 4028 Npfs - ok
15:42:58.0369 4028 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
15:42:58.0384 4028 nsiproxy - ok
15:42:58.0509 4028 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
15:42:58.0525 4028 Ntfs - ok
15:42:58.0556 4028 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
15:42:58.0556 4028 ntrigdigi - ok
15:42:58.0587 4028 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
15:42:58.0587 4028 Null - ok
15:42:58.0634 4028 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
15:42:58.0634 4028 nvraid - ok
15:42:58.0650 4028 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
15:42:58.0650 4028 nvstor - ok
15:42:58.0681 4028 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
15:42:58.0696 4028 nv_agp - ok
15:42:58.0712 4028 NwlnkFlt - ok
15:42:58.0728 4028 NwlnkFwd - ok
15:42:58.0977 4028 ohci1394 (790e27c3db53410b40ff9ef2fd10a1d9) C:\Windows\system32\DRIVERS\ohci1394.sys
15:42:58.0977 4028 ohci1394 - ok
15:42:59.0055 4028 Parport (8a79fdf04a73428597e2caf9d0d67850) C:\Windows\system32\DRIVERS\parport.sys
15:42:59.0055 4028 Parport - ok
15:42:59.0102 4028 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
15:42:59.0118 4028 partmgr - ok
15:42:59.0164 4028 Parvdm (6c580025c81caf3ae9e3617c22cad00e) C:\Windows\system32\DRIVERS\parvdm.sys
15:42:59.0164 4028 Parvdm - ok
15:42:59.0242 4028 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
15:42:59.0274 4028 pci - ok
15:42:59.0305 4028 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
15:42:59.0305 4028 pciide - ok
15:42:59.0336 4028 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
15:42:59.0336 4028 pcmcia - ok
15:42:59.0476 4028 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
15:42:59.0648 4028 PEAUTH - ok
15:42:59.0898 4028 pepifilter (b20f958b207e6aaac5f70d04dd2c30d8) C:\Windows\system32\DRIVERS\lv302af.sys
15:43:00.0054 4028 pepifilter - ok
15:43:00.0397 4028 PID_08A0 (6b310de726e1a0defd66718a7f79b5d2) C:\Windows\system32\DRIVERS\LV302AV.SYS
15:43:00.0412 4028 PID_08A0 - ok
15:43:00.0584 4028 PID_PEPI (dd184d9adfe2a8a21741dbdfe9e22f5c) C:\Windows\system32\DRIVERS\LV302V32.SYS
15:43:00.0646 4028 PID_PEPI - ok
15:43:00.0896 4028 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
15:43:00.0927 4028 PptpMiniport - ok
15:43:00.0943 4028 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
15:43:00.0974 4028 Processor - ok
15:43:01.0192 4028 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
15:43:01.0224 4028 PSched - ok
15:43:01.0302 4028 PxHelp20 (b572ed0c3e6165643fa116af20425a54) C:\Windows\system32\DRIVERS\PxHelp20.sys
15:43:01.0302 4028 PxHelp20 - ok
15:43:01.0395 4028 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
15:43:01.0426 4028 ql2300 - ok
15:43:01.0458 4028 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
15:43:01.0473 4028 ql40xx - ok
15:43:01.0551 4028 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
15:43:01.0551 4028 QWAVEdrv - ok
15:43:01.0567 4028 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
15:43:01.0582 4028 RasAcd - ok
15:43:01.0598 4028 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
15:43:01.0598 4028 Rasl2tp - ok
15:43:01.0692 4028 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
15:43:01.0692 4028 RasPppoe - ok
15:43:01.0832 4028 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
15:43:01.0863 4028 RasSstp - ok
15:43:01.0972 4028 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
15:43:01.0988 4028 rdbss - ok
15:43:02.0066 4028 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
15:43:02.0082 4028 RDPCDD - ok
15:43:02.0128 4028 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
15:43:02.0128 4028 rdpdr - ok
15:43:02.0144 4028 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
15:43:02.0144 4028 RDPENCDD - ok
15:43:02.0206 4028 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
15:43:02.0222 4028 RDPWD - ok
15:43:02.0347 4028 regi (001b4278407f4303efc902a2b16f2453) C:\Windows\system32\drivers\regi.sys
15:43:02.0347 4028 regi - ok
15:43:02.0534 4028 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
15:43:02.0565 4028 rspndr - ok
15:43:02.0815 4028 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
15:43:02.0815 4028 SASDIFSV - ok
15:43:02.0862 4028 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
15:43:02.0862 4028 SASKUTIL - ok
15:43:03.0049 4028 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
15:43:03.0080 4028 sbp2port - ok
15:43:03.0470 4028 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
15:43:03.0501 4028 secdrv - ok
15:43:03.0735 4028 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
15:43:03.0735 4028 Serenum - ok
15:43:03.0766 4028 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
15:43:03.0766 4028 Serial - ok
15:43:03.0813 4028 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
15:43:03.0829 4028 sermouse - ok
15:43:03.0891 4028 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
15:43:03.0907 4028 sffdisk - ok
15:43:03.0969 4028 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
15:43:03.0969 4028 sffp_mmc - ok
15:43:04.0016 4028 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
15:43:04.0016 4028 sffp_sd - ok
15:43:04.0047 4028 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
15:43:04.0047 4028 sfloppy - ok
15:43:04.0141 4028 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
15:43:04.0156 4028 sisagp - ok
15:43:04.0219 4028 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
15:43:04.0219 4028 SiSRaid2 - ok
15:43:04.0250 4028 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
15:43:04.0250 4028 SiSRaid4 - ok
15:43:04.0344 4028 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
15:43:04.0344 4028 Smb - ok
15:43:04.0453 4028 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
15:43:04.0453 4028 spldr - ok
15:43:04.0687 4028 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
15:43:04.0687 4028 srv - ok
15:43:04.0718 4028 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
15:43:04.0718 4028 srv2 - ok
15:43:04.0796 4028 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
15:43:04.0796 4028 srvnet - ok
15:43:04.0890 4028 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
15:43:04.0890 4028 swenum - ok
15:43:04.0921 4028 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
15:43:04.0936 4028 Symc8xx - ok
15:43:04.0952 4028 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
15:43:04.0952 4028 Sym_hi - ok
15:43:04.0983 4028 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
15:43:04.0983 4028 Sym_u3 - ok
15:43:05.0358 4028 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
15:43:05.0358 4028 Tcpip - ok
15:43:05.0919 4028 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
15:43:05.0935 4028 Tcpip6 - ok
15:43:06.0028 4028 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
15:43:06.0044 4028 tcpipreg - ok
15:43:06.0091 4028 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
15:43:06.0122 4028 TDPIPE - ok
15:43:06.0138 4028 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
15:43:06.0138 4028 TDTCP - ok
15:43:06.0231 4028 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
15:43:06.0262 4028 tdx - ok
15:43:06.0387 4028 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
15:43:06.0387 4028 TermDD - ok
15:43:06.0512 4028 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
15:43:06.0528 4028 tssecsrv - ok
15:43:06.0559 4028 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
15:43:06.0559 4028 tunmp - ok
15:43:06.0606 4028 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
15:43:06.0621 4028 tunnel - ok
15:43:06.0668 4028 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
15:43:06.0684 4028 uagp35 - ok
15:43:06.0777 4028 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
15:43:06.0793 4028 udfs - ok
15:43:06.0902 4028 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
15:43:06.0918 4028 uliagpkx - ok
15:43:06.0933 4028 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
15:43:06.0949 4028 uliahci - ok
15:43:06.0964 4028 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
15:43:06.0964 4028 UlSata - ok
15:43:06.0996 4028 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
15:43:06.0996 4028 ulsata2 - ok
15:43:07.0042 4028 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
15:43:07.0058 4028 umbus - ok
15:43:07.0167 4028 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
15:43:07.0167 4028 USBAAPL - ok
15:43:07.0214 4028 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
15:43:07.0214 4028 usbaudio - ok
15:43:07.0386 4028 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
15:43:07.0417 4028 usbccgp - ok
15:43:07.0464 4028 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
15:43:07.0510 4028 usbcir - ok
15:43:07.0588 4028 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
15:43:07.0588 4028 usbehci - ok
15:43:07.0620 4028 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
15:43:07.0620 4028 usbhub - ok
15:43:07.0682 4028 usbohci (7bdb7b0e7d45ac0402d78b90789ef47c) C:\Windows\system32\DRIVERS\usbohci.sys
15:43:07.0682 4028 usbohci - ok
15:43:07.0713 4028 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
15:43:07.0729 4028 usbprint - ok
15:43:07.0760 4028 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
15:43:07.0760 4028 usbscan - ok
15:43:07.0885 4028 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:43:07.0916 4028 USBSTOR - ok
15:43:08.0041 4028 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
15:43:08.0056 4028 usbuhci - ok
15:43:08.0181 4028 VClone (9bf2ea54e5ed5acdf96f1dec84c117c4) C:\Windows\system32\DRIVERS\VClone.sys
15:43:08.0181 4028 VClone - ok
15:43:08.0212 4028 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
15:43:08.0212 4028 vga - ok
15:43:08.0259 4028 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
15:43:08.0259 4028 VgaSave - ok
15:43:08.0290 4028 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
15:43:08.0290 4028 viaagp - ok
15:43:08.0337 4028 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
15:43:08.0353 4028 ViaC7 - ok
15:43:08.0384 4028 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
15:43:08.0400 4028 viaide - ok
15:43:08.0431 4028 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
15:43:08.0431 4028 volmgr - ok
15:43:08.0509 4028 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
15:43:08.0509 4028 volmgrx - ok
15:43:08.0587 4028 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
15:43:08.0618 4028 volsnap - ok
15:43:08.0680 4028 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
15:43:08.0712 4028 vsmraid - ok
15:43:09.0148 4028 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
15:43:09.0211 4028 WacomPen - ok
15:43:09.0242 4028 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
15:43:09.0258 4028 Wanarp - ok
15:43:09.0273 4028 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
15:43:09.0273 4028 Wanarpv6 - ok
15:43:09.0304 4028 wanatw (0a716c08cb13c3a8f4f51e882dbf7416) C:\Windows\system32\DRIVERS\wanatw4.sys
15:43:09.0304 4028 wanatw - ok
15:43:09.0445 4028 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
15:43:09.0476 4028 Wd - ok
15:43:09.0601 4028 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
15:43:09.0616 4028 Wdf01000 - ok
15:43:09.0788 4028 WinI2C-DDC (808797b2b9094574b042b66569b5a7b0) C:\Windows\system32\drivers\DDCDrv.sys
15:43:09.0788 4028 WinI2C-DDC - ok
15:43:09.0975 4028 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
15:43:10.0022 4028 WmiAcpi - ok
15:43:10.0147 4028 WpdUsb (0cec23084b51b8288099eb710224e955) C:\Windows\system32\DRIVERS\wpdusb.sys
15:43:10.0162 4028 WpdUsb - ok
15:43:10.0225 4028 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
15:43:10.0240 4028 ws2ifsl - ok
15:43:10.0334 4028 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
15:43:10.0334 4028 WUDFRd - ok
15:43:10.0428 4028 yukonwlh (7d1f3b131d503ef43ee594b5a2b9b427) C:\Windows\system32\DRIVERS\yk60x86.sys
15:43:10.0443 4028 yukonwlh - ok
15:43:10.0506 4028 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
15:43:10.0584 4028 \Device\Harddisk0\DR0 - ok
15:43:10.0584 4028 MBR (0x1B8) (0cf8af38bcedb0bc19a1c4485c4c9e66) \Device\Harddisk5\DR5
15:43:11.0161 4028 \Device\Harddisk5\DR5 - ok
15:43:11.0208 4028 Boot (0x1200) (21798ffc81b6f152fb2cdf0864ee09ce) \Device\Harddisk0\DR0\Partition0
15:43:11.0223 4028 \Device\Harddisk0\DR0\Partition0 - ok
15:43:11.0270 4028 Boot (0x1200) (4a764c7a5695081e2e8811e302593781) \Device\Harddisk5\DR5\Partition0
15:43:11.0270 4028 \Device\Harddisk5\DR5\Partition0 - ok
15:43:11.0270 4028 ============================================================
15:43:11.0270 4028 Scan finished
15:43:11.0270 4028 ============================================================
15:43:11.0270 4592 Detected object count: 0
15:43:11.0270 4592 Actual detected object count: 0

#6 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:10:58 PM

Posted 06 March 2012 - 10:26 PM

For x32 (x86) bit systems download Farbar Recovery Scan Tool and save it to a flash drive.


Plug the flashdrive into the infected PC.

Enter System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:
  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
  • Use the arrow keys to select the Repair your computer menu item.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account an click Next.

To enter System Recovery Options by using Windows installation disc:
  • Insert the installation disc.
  • Restart your computer.
  • If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
  • Click Repair your computer.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account and click Next.

On the System Recovery Options menu you will get the following options:
Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Command Prompt
[*]Select Command Prompt
[*]In the command window type in notepad and press Enter.
[*]The notepad opens. Under File menu select Open.
[*]Select "Computer" and find your flash drive letter and close the notepad.
[*]In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter
Note: Replace letter e with the drive letter of your flash drive.
[*]The tool will start to run.
[*]When the tool opens click Yes to disclaimer.
[*]Press Scan button.
[*]It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.[/list]
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#7 anders98

anders98
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:58 PM

Posted 08 March 2012 - 12:45 PM

Hi there, I am still here, but have been busy with my "day job", so will run through this today and will get the results back to you as soon as I can. Thanks!

#8 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:10:58 PM

Posted 08 March 2012 - 08:37 PM

Thank you for letting me know :thumbup2:


gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#9 anders98

anders98
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:58 PM

Posted 08 March 2012 - 10:52 PM

Ok, I had to go the installation disc route because "Repair your computer" wasn't an option in the Advanced Boot options. I used the Windows installation disc that came with this machine (a Lenovo) and interestingly enough, they've set it up so that it asks you for your keyboard language and then what operating system you want to repair, but instead of giving you the System Recovery options, it just automatically runs the repair program...interesting. Anyway, I just let it run since killing it might have done more harm than good, and after it finished successfully and rebooted, I am no longer getting the "AVG Threat Detected" popups and scans using AVG and Malwarebytes both come back clean. I THINK repair must have killed whatever it was, but I found another install disc and was able to correctly get into the System Recovery Options to go ahead and run Farbar just to be safe. The log is attached, so if you see anything else, let me know.

Thanks for your help!

Farbar log:
Scan result of Farbar Recovery Scan Tool (FRST written by farbar) Version: 07-03-2012 01
Ran by SYSTEM at 08-03-2012 20:21:27
Running from I:\Virus Removal stuff
Windows Vista ™ Home Premium (X86) OS Language: English(US)
The current controlset is ControlSet003

========================== Registry (Whitelisted) =============

HKLM\...\Run: [Unattend0000000001{630DEC53-CECA-49A3-896C-B064A4DC05AA}] C:\Windows\test.bat [x]
HKLM\...\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe [141848 2007-09-18] (Intel Corporation)
HKLM\...\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe [154136 2007-09-18] (Intel Corporation)
HKLM\...\Run: [Persistence] C:\Windows\system32\igfxpers.exe [129560 2007-09-18] (Intel Corporation)
HKLM\...\Run: [RtHDVCpl] RtHDVCpl.exe [x]
HKLM\...\Run: [Healthcare] C:\Program Files\Lenovo\Healthcare\HealthCare.exe /hide [466944 2008-02-23] (skyware)
HKLM\...\Run: [VeriFaceManager] C:\Program Files\Lenovo\VeriFaceIII\PManage.exe [2916352 2008-10-17] ()
HKLM\...\Run: [SetDefaultSCR] C:\Program Files\Lenovo\Lenovo Screensaver\SetDefaultSCR.exe [98304 2008-08-07] (Lenovo)
HKLM\...\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe [631362 2002-11-23] (Logitech Inc.)
HKLM\...\Run: [HostManager] C:\Program Files\Common Files\AOL\1229737310\ee\AOLSoftware.exe [41800 2010-03-07] (AOL Inc.)
HKLM\...\Run: [VirtualCloneDrive] "C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s [52168 2008-06-29] (Elaborate Bytes AG)
HKLM\...\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [49152 2007-03-11] (Hewlett-Packard Co.)
HKLM\...\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" [31072 2008-10-25] (Microsoft Corporation)
HKLM\...\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide [2793304 2009-10-14] ()
HKLM\...\Run: [Babylon Client] C:\Program Files\Babylon\Babylon-Pro\Babylon.exe -AutoStart [3824056 2010-08-10] (Babylon Ltd.)
HKLM\...\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe" [2416480 2012-01-24] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [QwestTouchPointAgent] "C:\Program Files\Qwest\Desktop\QwestTouchPointAgent.exe" /autostart [45992 2010-08-26] (Qwest Communications)
HKLM\...\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime [421888 2011-07-05] (Apple Inc.)
HKLM\...\Run: [] [x]
HKLM\...\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe" [1391272 2012-01-03] (Ask)
HKLM\...\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59240 2011-09-27] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" [421736 2011-11-12] (Apple Inc.)
HKLM\...\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe" [939872 2012-01-16] ()
HKLM\...\Run: [ROC_roc_dec12] "C:\Program Files\AVG Secure Search\ROC_roc_dec12.exe" /PROMPT /CMPID=roc_dec12 [928096 2012-01-16] ()
HKLM\...\Run: [TkBellExe] "c:\program files\real\realplayer\Update\realsched.exe" -osboot [296056 2012-01-26] (RealNetworks, Inc.)
HKLM\...\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" [254696 2012-01-18] (Sun Microsystems, Inc.)
HKLM\...\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [37296 2012-01-03] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [843712 2012-01-02] (Adobe Systems Incorporated)
HKU\Default\...\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter [x]
HKU\Default User\...\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter [x]
HKU\MFamily\...\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter [x]
HKU\MFamily\...\Run: [Messenger (Yahoo!)] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet [4363504 2009-03-18] (Yahoo! Inc.)
HKU\MFamily\...\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe [125952 2008-01-20] (Microsoft Corporation)
HKU\MFamily\...\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [36864 2010-08-23] (Logitech)
HKU\MFamily\...\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe [202240 2008-01-20] (Microsoft Corporation)
HKU\MFamily\...\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [4617600 2012-01-20] (SUPERAntiSpyware.com)
HKU\MFamily\...\Policies\system: [disableregistrytools] 0
Winlogon\Notify\!SASWinLogon: C:\program files\SUPERAntiSpyware\SASWINLO.DLL [X]
Winlogon\Notify\igfxcui: igfxdev.dll (Intel Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 205.171.2.65

================================ Services (Whitelisted) ==================

2 !SASCORE; "C:\Program Files\SUPERAntiSpyware\SASCORE.EXE" [116608 2011-08-11] (SUPERAntiSpyware.com)
2 AOL ACS; "C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe" [46640 2006-10-23] (AOL LLC)
3 AVG Security Toolbar Service; C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe [167264 2011-11-10] ()
2 AVGIDSAgent; "C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe" [4433248 2011-10-12] (AVG Technologies CZ, s.r.o.)
2 avgwd; "C:\Program Files\AVG\AVG2012\avgwdsvc.exe" [192776 2011-08-02] (AVG Technologies CZ, s.r.o.)
2 BcmSqlStartupSvc; "C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe" [30312 2009-02-20] (Microsoft Corporation)
2 FlipShare Service; "C:\Program Files\Flip Video\FlipShare\FlipShareService.exe" [460144 2010-09-17] ()
3 GamesAppService; "C:\Program Files\WildTangent Games\App\GamesAppService.exe" [206072 2010-10-12] (WildTangent, Inc.)
2 gupdate; "C:\Program Files\Google\Update\GoogleUpdate.exe" /svc [136176 2012-01-26] (Google Inc.)
3 gupdatem; "C:\Program Files\Google\Update\GoogleUpdate.exe" /medsvc [136176 2012-01-26] (Google Inc.)
2 IntuitUpdateService; "C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe" [13088 2009-09-29] (Intuit Inc.)
2 IviRegMgr; C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe [112152 2007-01-04] (InterVideo)
2 LVPrcSrv; "C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe" [154136 2009-10-06] (Logitech Inc.)
2 OKAV Agent Service; C:\Program Files\Trend Micro\OKAVAgent\OKAVAgent.exe [66824 2008-06-04] (Trend Micro Inc.)
2 vToolbarUpdater; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\10.0.6\ToolbarUpdater.exe [909152 2012-01-16] ()
2 3combootp; C:\Windows\System32\ggsemc.dll [x]
2 3comtftp; C:\Windows\System32\asp.net.dll [x]
2 6to4; C:\Windows\System32\SrvcEPIOMngr.dll [x]
2 a016mdfl; C:\Windows\System32\acs.dll [x]
2 a016mdm; C:\Windows\System32\se44mgmt.dll [x]
2 a016mgmt; C:\Windows\System32\GoBack2K.dll [x]
2 acrotray; C:\Windows\System32\hpt3xx.dll [x]
2 AdfuUd; C:\Windows\System32\rsvchost.dll [x]
2 ADSMService; C:\Windows\System32\btwavdt.dll [x]
2 aexnsclienttransport; C:\Windows\System32\ms_mpu401.dll [x]
2 AFGSp50; C:\Windows\System32\tomcatcws3.dll [x]
2 afs2k; C:\Windows\System32\{a7447300-8075-4b0d-83f1-3d75c8ebc623}.dll [x]
2 alcxsens; C:\Windows\System32\mksupdateint.dll [x]
2 alcxwdm; C:\Windows\System32\epsonbidirectionalservice.dll [x]
2 alertmanager; C:\Windows\System32\winsshd.dll [x]
2 alim1541; C:\Windows\System32\ifxtcs.dll [x]
2 AMDPCI; C:\Windows\System32\db2.dll [x]
2 amoagent; C:\Windows\System32\sansaservice.dll [x]
2 amon; C:\Windows\System32\ATKGFNEXSrv.dll [x]
2 anio; C:\Windows\System32\EU3_USB.dll [x]
2 aolservice; C:\Windows\System32\CTDevice_Srv.dll [x]
2 apfiltrservice; C:\Windows\System32\PPPoEWin.dll [x]
2 application; C:\Windows\System32\EL2000.dll [x]
2 ARCSOFTVIRTUALCAPTURE; C:\Windows\System32\dot4usb.dll [x]
2 asc3550; C:\Windows\System32\mksvirmonsvc.dll [x]
2 ASDR; C:\Windows\System32\bmuservice.dll [x]
2 asp.net_2.0.50727; C:\Windows\System32\iPassPeriodicUpdateService.dll [x]
2 astcc; C:\Windows\System32\clnt_clientman.dll [x]
2 ATIBTCAP; C:\Windows\System32\tnbrlds.dll [x]
2 atitool; C:\Windows\System32\psadd.dll [x]
2 atksgt; C:\Windows\System32\AppnApi.dll [x]
2 atmarpc; C:\Windows\System32\ASMMAP.dll [x]
2 atmeltpm; C:\Windows\System32\arp1394.dll [x]
2 ATNT40K; C:\Windows\System32\cmuda3.dll [x]
2 autocomplete; C:\Windows\System32\puscsrvc.dll [x]
2 AVCamUSB20; C:\Windows\System32\epsonbidirectionalagent.dll [x]
2 AVerBDA; C:\Windows\System32\vaiomediaplatform-videoserver-appserver.dll [x]
2 avg7alrt; C:\Windows\System32\dcevt32.dll [x]
2 avg7rsxp; C:\Windows\System32\TPPWRIF.dll [x]
2 avgarcln; C:\Windows\System32\ersvc.dll [x]
2 avgfwsrv; C:\Windows\System32\avgfwsrv.dll [x]
2 avidsdmservice; C:\Windows\System32\mbackmonitor.dll [x]
2 avpnnic; C:\Windows\System32\tphkdrv.dll [x]
2 avsinc; C:\Windows\System32\dvpapi.dll [x]
2 AX88772; C:\Windows\System32\MSMQ.dll [x]
2 axinstsv; C:\Windows\System32\UMPass.dll [x]
2 axsaki; C:\Windows\System32\XFX_program.dll [x]
2 axsnmsvc; C:\Windows\System32\wmp54gv4svc.dll [x]
2 backupexecdevicemediaservice; C:\Windows\System32\NAL.dll [x]
2 backupexecnamingservice; C:\Windows\System32\P17xfi.dll [x]
2 backuplauncher; C:\Windows\System32\pgpserv.dll [x]
2 BASFND; C:\Windows\System32\idsvc.dll [x]
2 bc_ngn; C:\Windows\System32\nim32.dll [x]
2 bdftdif; C:\Windows\System32\tpsrv.dll [x]
2 bjmcmng; C:\Windows\System32\s716mdfl.dll [x]
2 Blfp; C:\Windows\System32\L8042Kbd.dll [x]
2 blueletscoaudio; C:\Windows\System32\MobilePreInstallerService.dll [x]
2 BlueSoleilCS; C:\Windows\System32\cfgwzsvc.dll [x]
2 bt3cser; C:\Windows\System32\tfsndres.dll [x]
2 bthpan; C:\Windows\System32\PGPsdkDriver.dll [x]
2 btkrnl; C:\Windows\System32\tifsfilter.dll [x]
2 BVRPMPR5; C:\Windows\System32\se2Cnd5.dll [x]
2 bvrp_pci; C:\Windows\System32\websensecpmcommunicationagent.dll [x]
2 C-Dilla; C:\Windows\System32\Udfreadr_xp.dll [x]
2 c-dillacdac11ba; C:\Windows\System32\rpcapd.dll [x]
2 caccprovsp; C:\Windows\System32\prevxagent.dll [x]
2 caisafe; C:\Windows\System32\ql12160.dll [x]
2 ccalib8; C:\Windows\System32\wlankeeper.dll [x]
2 ccsetmgr; C:\Windows\System32\carboncopy32.dll [x]
2 CdaD10BA; C:\Windows\System32\lxcc_device.dll [x]
2 cdudf_xp; C:\Windows\System32\PhilCam8116.dll [x]
2 cdvp; C:\Windows\System32\sglfb.dll [x]
2 centennialclientagent; C:\Windows\System32\pensup.dll [x]
2 cicssfs.scmmc223; C:\Windows\System32\superproserver.dll [x]
2 CiscoVpnInstallService; C:\Windows\System32\naveng.dll [x]
2 clisvc; C:\Windows\System32\forcewarewebinterface.dll [x]
2 clsched; C:\Windows\System32\yats32.dll [x]
2 cm102u32; C:\Windows\System32\se45mdfl.dll [x]
2 cnmpar21; C:\Windows\System32\ctxhttp.dll [x]
2 CoachAud; C:\Windows\System32\tphdexlgsvc.dll [x]
2 compaq_rba; C:\Windows\System32\ATIVXSTW.dll [x]
2 coste; C:\Windows\System32\jsdaemon.dll [x]
2 cportclm; C:\Windows\System32\fastuserswitchingcompatibility.dll [x]
2 cpqrcmc; C:\Windows\System32\quickhealfirewall.dll [x]
2 cqmgserv; C:\Windows\System32\rpskt.dll [x]
2 CTAUDFX.DLL; C:\Windows\System32\se2Dnd5.dll [x]
2 CTAudSvcService; C:\Windows\System32\osanbm.dll [x]
2 ctxhttp; C:\Windows\System32\cvsnt.dll [x]
2 cwafeventrouter; C:\Windows\System32\se2Cunic.dll [x]
2 datunidr; C:\Windows\System32\raidmagt.dll [x]
2 DcCam; C:\Windows\System32\DumaNT.dll [x]
2 dcpflics; C:\Windows\System32\rp_fws.dll [x]
2 dcstor32; C:\Windows\System32\zntport.dll [x]
2 Dell1100_FUService; C:\Windows\System32\FTSER2K.dll [x]
2 digictrl; C:\Windows\System32\FontCache3.0.0.0..dll [x]
2 dimension4; C:\Windows\System32\steamdvr.dll [x]
2 diskeeper; C:\Windows\System32\drvmcdb.dll [x]
2 dlabmfsm; C:\Windows\System32\AmdLLD.dll [x]
2 dlaudf_m; C:\Windows\System32\Xyz777b.dll [x]
2 dlcc_device; C:\Windows\System32\asyncmac.dll [x]
2 dlcq_device; C:\Windows\System32\thotkey.dll [x]
2 DLH5X; C:\Windows\System32\mediaviewer.dll [x]
2 dm1service; C:\Windows\System32\CSDriver.dll [x]
2 DM9102; C:\Windows\System32\cxlpt.dll [x]
2 dmboot; C:\Windows\System32\nsm1mdm.dll [x]
2 dns4meclient; C:\Windows\System32\smbusp.dll [x]
2 downloadmanagerlite; C:\Windows\System32\fcprintservice.dll [x]
2 DSXUSB; C:\Windows\System32\nbservice.dll [x]
2 dtsrvc; C:\Windows\System32\ndasbus.dll [x]
2 DVDVRRdr_xp; C:\Windows\System32\alg.dll [x]
2 EAWDMFD; C:\Windows\System32\btkrnl.dll [x]
2 EL90X; C:\Windows\System32\se2Bunic.dll [x]
2 eliservice; C:\Windows\System32\ccispwdsvc.dll [x]
2 eloggersvc6; C:\Windows\System32\eamon.dll [x]
2 emAudio; C:\Windows\System32\pshost.dll [x]
2 emclisrv; C:\Windows\System32\ipsraidn.dll [x]
2 emitray; C:\Windows\System32\vc8secs.dll [x]
2 emproxy; C:\Windows\System32\SMPLSCSI.dll [x]
2 EntDrv51; C:\Windows\System32\pid_0928.dll [x]
2 enxpsvr; C:\Windows\System32\Spsmqvsm.dll [x]
2 epgspooler; C:\Windows\System32\ctusfsyn.dll [x]
2 epson_pm_rpcv4_01; C:\Windows\System32\tcpip.dll [x]
2 EUSBMSD; C:\Windows\System32\pilogsrv.dll [x]
2 fah@c:+fah+fah-service+fah502-console.exe; C:\Windows\System32\bgs_sdservice.dll [x]
2 fasttx2k; C:\Windows\System32\tnidriver.dll [x]
2 FETNDIS; C:\Windows\System32\atirage3.dll [x]
2 filemon701; C:\Windows\System32\hpqddsvc.dll [x]
2 FINEPIX_PCC; C:\Windows\System32\pcradminserver.dll [x]
2 fireport; C:\Windows\System32\tfsnopio.dll [x]
2 firesvc; C:\Windows\System32\toside.dll [x]
2 framework; C:\Windows\System32\tdtcp.dll [x]
2 Freedom; C:\Windows\System32\wdmaud.dll [x]
2 freepops; C:\Windows\System32\swenum.dll [x]
2 FreeTdi; C:\Windows\System32\wg6n.dll [x]
2 fsbwsys; C:\Windows\System32\NICM.dll [x]
2 fshttps; C:\Windows\System32\useraccess7.dll [x]
2 fsks; C:\Windows\System32\aalogger.dll [x]
2 fsma; C:\Windows\System32\rimmptsk.dll [x]
2 fssfltr; C:\Windows\System32\mskservice.dll [x]
2 FsVga; C:\Windows\System32\TestHandler.dll [x]
2 ftsata2; C:\Windows\System32\btserial.dll [x]
2 FVXSCSI; C:\Windows\System32\tdrpman.dll [x]
2 G400DH; C:\Windows\System32\bgsvcgen.dll [x]
2 gbpoll; C:\Windows\System32\ehstart.dll [x]
2 gdrv; C:\Windows\System32\bthenum.dll [x]
2 gemserv; C:\Windows\System32\PCASp50.dll [x]
2 generichidservice; C:\Windows\System32\cachemanxp.dll [x]
2 giveio; C:\Windows\System32\MagicTune.dll [x]
2 GTPTSER; C:\Windows\System32\ss_bus.dll [x]
2 GTWModem; C:\Windows\System32\videX32.dll [x]
2 guardian2; C:\Windows\System32\StkASSrv.dll [x]
2 ha20x2k; C:\Windows\System32\e100b.dll [x]
2 hcf_msft; C:\Windows\System32\shuttleengine.dll [x]
2 HFACSVC; C:\Windows\System32\hpci.dll [x]
2 hibernation; C:\Windows\System32\ini910u.dll [x]
2 houdinilicenseserver; C:\Windows\System32\brmfrmps.dll [x]
2 hpgate; C:\Windows\System32\SprintRcAppSvc.dll [x]
2 hpzipr12; C:\Windows\System32\MSFWDrv.dll [x]
2 HSFHWALI; C:\Windows\System32\CT20XUT.DLL.dll [x]
2 HSFHWICH; C:\Windows\System32\SWNC8U51.dll [x]
2 hwdatacard; C:\Windows\System32\cpqfcalm.dll [x]
2 iap; C:\Windows\System32\ivscheduler.dll [x]
2 ibmpmdrv; C:\Windows\System32\acdpowerservice.dll [x]
2 ICAM3NT5; C:\Windows\System32\Appn.dll [x]
2 icepack; C:\Windows\System32\DcLps.dll [x]
2 id2scaps; C:\Windows\System32\usprserv.dll [x]
2 ifp800; C:\Windows\System32\prosync1.dll [x]
2 iksysflt; C:\Windows\System32\speakerphone.dll [x]
2 imapi; C:\Windows\System32\ncupdatesvc.dll [x]
2 imaservice; C:\Windows\System32\DevUpper.dll [x]
2 imonnt; C:\Windows\System32\EL90X.dll [x]
2 incdrec; C:\Windows\System32\cdaudio.dll [x]
2 incdrm; C:\Windows\System32\hpci.dll [x]
2 incdsrv; C:\Windows\System32\acpi.dll [x]
2 inotask; C:\Windows\System32\NuidFltr.dll [x]
2 int15; C:\Windows\System32\ssm_mdfl.dll [x]
2 IntelC52; C:\Windows\System32\atimtag.dll [x]
2 IntelC53; C:\Windows\System32\mssqlserveradhelper.dll [x]
2 intelroam; C:\Windows\System32\sysaudio.dll [x]
2 Intels51; C:\Windows\System32\EL2000.dll [x]
2 Invoker; C:\Windows\System32\mapserver6.3.dll [x]
2 iomegaaccess; C:\Windows\System32\cpqdmi.dll [x]
2 IOSLINK; C:\Windows\System32\battc.dll [x]
2 ipodsrv; C:\Windows\System32\ELhid.dll [x]
2 irbus; C:\Windows\System32\DNE.dll [x]
2 irsir; C:\Windows\System32\RecAgent.dll [x]
2 ISAMSvc; C:\Windows\System32\trcboot.dll [x]
2 ivscheduler; C:\Windows\System32\mwagent.dll [x]
2 JiaoIO; C:\Windows\System32\dcstor32.dll [x]
2 jsdaemon; C:\Windows\System32\Si3114r5.dll [x]
2 jtagserver; C:\Windows\System32\sbp2port.dll [x]
2 k750mdm; C:\Windows\System32\se2Cunic.dll [x]
2 kbstuff; C:\Windows\System32\hdaudaddservice.dll [x]
2 keymaestro; C:\Windows\System32\procdd.dll [x]
2 KMW_KBD; C:\Windows\System32\APLMp50.dll [x]
2 KMW_USB; C:\Windows\System32\SaiNtSub.dll [x]
2 konfig; C:\Windows\System32\BTSLBCSP.dll [x]
2 kpfwsvc; C:\Windows\System32\sbservice.dll [x]
2 LHidFilt; C:\Windows\System32\zfdwm.dll [x]
2 licenseservice; C:\Windows\System32\ClntMgmt.sys.dll [x]
2 lmimirr; C:\Windows\System32\pcampr5.dll [x]
2 lmouflt2; C:\Windows\System32\xfactorae1.dll [x]
2 ltck000c; C:\Windows\System32\partmgr.dll [x]
2 lvcomser; C:\Windows\System32\ati2mpaa.dll [x]
2 LVPrcMon; C:\Windows\System32\tsmapip.dll [x]
2 lvuvc; C:\Windows\System32\nimcdlbk.dll [x]
2 LwUsbHid; C:\Windows\System32\wcontrol.dll [x]
2 lxbt_device; C:\Windows\System32\zpnodecollector.dll [x]
2 lxbx_device; C:\Windows\System32\bhmonitorservice.dll [x]
2 lxcj_device; C:\Windows\System32\cavasm.dll [x]
2 lxdmCATSCustConnectService; C:\Windows\System32\{eda5f5d3-9e0f-4f4d-8a13-1d1cf469c9cc}.dll [x]
2 marvinbus; C:\Windows\System32\TBPanel.dll [x]
2 maya70docserver; C:\Windows\System32\yukonwlh.dll [x]
2 ma_cmidi_installerservice; C:\Windows\System32\imonitor.dll [x]
3 McComponentHostService; "C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe" [x]
2 mdmxsdk; C:\Windows\System32\ProcObsrv.dll [x]
2 mediaviewer; C:\Windows\System32\w300mdm.dll [x]
2 meiudf; C:\Windows\System32\vetmonnt.dll [x]
2 Memctl; C:\Windows\System32\symc810.dll [x]
2 merakpop3; C:\Windows\System32\adminserver.dll [x]
2 mfcom; C:\Windows\System32\rasl2tp.dll [x]
2 mfebopk; C:\Windows\System32\EntDrv51.dll [x]
2 mgactrl; C:\Windows\System32\viairda.dll [x]
2 mirrorv3; C:\Windows\System32\HPSLPSVC.dll [x]
2 mlkkbdntdriver; C:\Windows\System32\cm102u32.dll [x]
2 mod7700; C:\Windows\System32\actser.dll [x]
2 monfilt; C:\Windows\System32\oraclewebassistant.dll [x]
2 mozybackup; C:\Windows\System32\w3svc.dll [x]
2 MpFilter; C:\Windows\System32\usbohci.dll [x]
2 MQAC; C:\Windows\System32\AGV.dll [x]
2 MRESP50; C:\Windows\System32\hpdskflt.dll [x]
2 MRV6X32P; C:\Windows\System32\pcdrndisuio.dll [x]
2 mrvw245; C:\Windows\System32\SDdriver.dll [x]
2 MSCamSvc; C:\Windows\System32\ATSWPDRV.dll [x]
2 msftesql; C:\Windows\System32\mskssrv.dll [x]
2 msmpsvc; C:\Windows\System32\klif.dll [x]
2 mssql$microsoftsmlbiz; C:\Windows\System32\se58bus.dll [x]
3 MSSQL$MSSMLBIZ; "c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sMSSMLBIZ [x]
2 mssql$sony_mediamgr; C:\Windows\System32\unrealircd.dll [x]
4 MSSQLServerADHelper; "c:\Program Files\Microsoft SQL Server\90\Shared\sqladhlp90.exe" [x]
2 mssqlserverolapservice; C:\Windows\System32\cobbmservice.dll [x]
2 msvsmon90; C:\Windows\System32\avidstartup.dll [x]
2 MTC0001_ESB; C:\Windows\System32\mctskshd.exe.dll [x]
2 MtxDma0; C:\Windows\System32\null.dll [x]
2 mwlsvc; C:\Windows\System32\HSFHWALI.dll [x]
2 mwsarcpkt; C:\Windows\System32\ati2mtag.dll [x]
2 mwssched; C:\Windows\System32\s116bus.dll [x]
2 MxlW2k; C:\Windows\System32\SecureStorageService.dll [x]
2 n3900; C:\Windows\System32\WmaCVideo32.dll [x]
2 naimagent32; C:\Windows\System32\mpfp.dll [x]
2 nbf; C:\Windows\System32\CnxTrLan.dll [x]
2 NCPro; C:\Windows\System32\qcmerced.dll [x]
2 ncupdatesvc; C:\Windows\System32\mssqlserver.dll [x]
2 ndiscm; C:\Windows\System32\p3.dll [x]
2 Ndisipo; C:\Windows\System32\teefer.dll [x]
2 neokdss; C:\Windows\System32\usbcm.dll [x]
2 netddedsdm; C:\Windows\System32\dlartl_n.dll [x]
2 netdevio; C:\Windows\System32\iviaspi.dll [x]
2 netwg311; C:\Windows\System32\openvpnservice.dll [x]
2 ngdbserv; C:\Windows\System32\aclient.dll [x]
2 nhcDriverDevice; C:\Windows\System32\cs429x.dll [x]
2 NICM; C:\Windows\System32\se45nd5.dll [x]
2 nidomainservice; C:\Windows\System32\FirePM.dll [x]
2 nim32; C:\Windows\System32\rtl8029.dll [x]
2 nimxdfk; C:\Windows\System32\vaiomediaplatform-integratedserver-upnp.dll [x]
2 niorbk; C:\Windows\System32\SE2Ebus.dll [x]
2 NIPALK; C:\Windows\System32\hpzid412.dll [x]
2 nipsvc; C:\Windows\System32\dtscsi.dll [x]
2 nipxirmu; C:\Windows\System32\cpucoolserver.dll [x]
2 nisum; C:\Windows\System32\SMCB000.dll [x]
2 nmwcdcm; C:\Windows\System32\Shockprf.dll [x]
2 nod32krn; C:\Windows\System32\mssql$microsoftbcm.dll [x]
2 npkcrypt; C:\Windows\System32\ghostsec.dll [x]
2 nscirda; C:\Windows\System32\s616unic.dll [x]
2 nsm1bus; C:\Windows\System32\rksample.dll [x]
2 nsvcip; C:\Windows\System32\TuneUp.ProgramStatisticsSvc.dll [x]
2 nsvclog; C:\Windows\System32\MA8032C.dll [x]
2 NTIDrvr; C:\Windows\System32\CAM1210.dll [x]
2 ntmssvc; C:\Windows\System32\hsvcmod.dll [x]
2 ntsecure; C:\Windows\System32\sifilter.dll [x]
2 ntsyslog; C:\Windows\System32\msfwsvc.dll [x]
2 nuvaud2; C:\Windows\System32\lvprcsrv.dll [x]
2 nv; C:\Windows\System32\iviVD.dll [x]
2 nv4; C:\Windows\System32\incdrec.dll [x]
2 nvnetbus; C:\Windows\System32\rrspy.dll [x]
2 nvpvrmon; C:\Windows\System32\wsearch.dll [x]
2 nwcworkstation; C:\Windows\System32\rpcnet.dll [x]
2 nwlnkspx; C:\Windows\System32\pdagent.dll [x]
2 NwSapAgent; C:\Windows\System32\U81xmgmt.dll [x]
2 NWSNS; C:\Windows\System32\splitter.dll [x]
2 NxSysMon; C:\Windows\System32\avcgbfl.dll [x]
2 obvious; C:\Windows\System32\AEADIFilters.dll [x]
2 olapserver; C:\Windows\System32\persfw.dll [x]
2 oracleorahomepagingserver; C:\Windows\System32\SMNDIS5.dll [x]
2 oraclesnmppeerencapsulator; C:\Windows\System32\svchost.dll [x]
2 ossrv; C:\Windows\System32\besclient.dll [x]
2 outpostfirewall; C:\Windows\System32\HWIONT.dll [x]
2 p1131vid; C:\Windows\System32\autocomplete.dll [x]
2 P16X; C:\Windows\System32\cpqfcalm.dll [x]
2 PAR1284; C:\Windows\System32\ABVPN2K.dll [x]
2 pavprsrv; C:\Windows\System32\cxlpt.dll [x]
2 pavreport; C:\Windows\System32\belmonitorservice.dll [x]
2 pcidrv; C:\Windows\System32\vsapint.dll [x]
2 pcouffin; C:\Windows\System32\s217mdm.dll [x]
2 pdlnemsg; C:\Windows\System32\adsexpb.dll [x]
2 pdlnshay; C:\Windows\System32\NsTrcNT.dll [x]
2 pdrframe; C:\Windows\System32\WscNetDr.dll [x]
2 pelusblf; C:\Windows\System32\sit_bus.dll [x]
2 penrendezvous; C:\Windows\System32\amsint.dll [x]
2 perc2; C:\Windows\System32\oracle%oracle_home_service%clientcache80.dll [x]
2 persfw; C:\Windows\System32\usbvm321.dll [x]
2 PGPwded; C:\Windows\System32\eventsystem.dll [x]
2 pid_0928; C:\Windows\System32\spooler.dll [x]
2 pinnacleupdatesvc; C:\Windows\System32\W8335XP.dll [x]
2 pktfilter; C:\Windows\System32\scsk4.dll [x]
2 plscsi; C:\Windows\System32\savrt.dll [x]
2 pmem; C:\Windows\System32\oracle_load_balancer_60_client-forms6i.dll [x]
2 pmshellsrv; C:\Windows\System32\interactivelogon.dll [x]
2 Pnp680r; C:\Windows\System32\6to4.dll [x]
2 pop3d32; C:\Windows\System32\raysat3_4_6_18server.dll [x]
2 portmapper; C:\Windows\System32\pdlnatdl.dll [x]
2 procmon10; C:\Windows\System32\starwindservice.dll [x]
2 protectionservice; C:\Windows\System32\pdlndoem.dll [x]
2 pshost; C:\Windows\System32\addfiltr.dll [x]
2 PTDCVsp; C:\Windows\System32\UsbDiag.dll [x]
2 qcdonner; C:\Windows\System32\dbmanagerscheduler.dll [x]
2 ql1240; C:\Windows\System32\usbcm.dll [x]
2 qmofiltr; C:\Windows\System32\quickbooksdb.dll [x]
2 QPCapSvc; C:\Windows\System32\{95808DC4-FA4A-4c74-92FE-5B863F82066B}.dll [x]
2 quickhealfirewall; C:\Windows\System32\SymIMMP.dll [x]
2 RAPIProtocol; C:\Windows\System32\se59mgmt.dll [x]
2 rasirda; C:\Windows\System32\Defrag32b.dll [x]
2 rbfilter; C:\Windows\System32\webupdate.dll [x]
2 RioS30; C:\Windows\System32\fips.dll [x]
2 RMCAST; C:\Windows\System32\dlaudfam.dll [x]
2 rnadirectory; C:\Windows\System32\upsmonservice.dll [x]
2 ROB_V; C:\Windows\System32\tvtfilter.dll [x]
2 roxliveshare; C:\Windows\System32\sfman.dll [x]
2 roxupnpserver; C:\Windows\System32\z800bus.dll [x]
2 roxwatch; C:\Windows\System32\E1000.dll [x]
2 rp32service; C:\Windows\System32\s3savagemx.dll [x]
2 RR2Ctrl; C:\Windows\System32\symantecantibotwatcher.dll [x]
2 rt73; C:\Windows\System32\drmkaud.dll [x]
2 rtl8023; C:\Windows\System32\cm102u32.dll [x]
2 rtl8185; C:\Windows\System32\ppa3.dll [x]
2 rtl8187Se; C:\Windows\System32\CTMFLT.dll [x]
2 rtm; C:\Windows\System32\pci.dll [x]
2 rtport; C:\Windows\System32\backupexecjobengine.dll [x]
2 rvsinst; C:\Windows\System32\DCamUSBMke2.dll [x]
2 rwbackupsrv; C:\Windows\System32\netddedsdm.dll [x]
2 rxmssync; C:\Windows\System32\oracleorahomedatagatherer.dll [x]
2 s117mdfl; C:\Windows\System32\botcbs.dll [x]
2 s217mdfl; C:\Windows\System32\pcouffin.dll [x]
2 s3savagenb; C:\Windows\System32\Exportit.dll [x]
2 s616mdfl; C:\Windows\System32\aamqdispatcher.dll [x]
2 s616obex; C:\Windows\System32\gdrv.dll [x]
2 s616unic; C:\Windows\System32\MREMPR5.dll [x]
2 s716bus; C:\Windows\System32\lxcd_device.dll [x]
2 SABSVC; C:\Windows\System32\k56.dll [x]
2 SaiClass; C:\Windows\System32\spmgr.dll [x]
2 SaiMini; C:\Windows\System32\z800obex.dll [x]
2 SaiNtBus; C:\Windows\System32\SNP2UVC.dll [x]
2 samfilt; C:\Windows\System32\StickyMesger.dll [x]
2 sandboxu; C:\Windows\System32\keriomailserver.dll [x]
2 sbhooksvc; C:\Windows\System32\ikfilesec.dll [x]
2 sbpci; C:\Windows\System32\SiRemFil.dll [x]
2 scanexplicit; C:\Windows\System32\ScsiPort.dll [x]
2 ScFBPNT2; C:\Windows\System32\s716obex.dll [x]
2 SDdriver; C:\Windows\System32\framework.dll [x]
2 SE27mdm; C:\Windows\System32\SE27mdfl.dll [x]
2 SE27mgmt; C:\Windows\System32\UlSata.dll [x]
2 SE2Dmgmt; C:\Windows\System32\kerbkey.dll [x]
2 se2Dnd5; C:\Windows\System32\serenum.dll [x]
2 SE2Emdm; C:\Windows\System32\tversitymediaserver.dll [x]
2 se44mdfl; C:\Windows\System32\mmc_2K.dll [x]
2 se58bus; C:\Windows\System32\SeratoUsb.dll [x]
2 se59bus; C:\Windows\System32\stylexpservice.dll [x]
2 se59mgmt; C:\Windows\System32\v124.dll [x]
2 se59unic; C:\Windows\System32\Sk9920nt.dll [x]
2 server; C:\Windows\System32\adiusbaw.dll [x]
2 service; C:\Windows\System32\nscirda.dll [x]
2 sfusvc; C:\Windows\System32\pae_1394.dll [x]
2 siside; C:\Windows\System32\pdfcreatormessages.dll [x]
2 sisidex; C:\Windows\System32\IBMTPCHK.dll [x]
2 sisnic; C:\Windows\System32\iaimfp0.dll [x]
2 SlWdmSup; C:\Windows\System32\ALYac_PZSrv.dll [x]
2 smartwiservice; C:\Windows\System32\parallel.dll [x]
2 smbios; C:\Windows\System32\BUFADPT.dll [x]
2 SMCB000; C:\Windows\System32\lmab_device.dll [x]
2 smcservice; C:\Windows\System32\SI3112.dll [x]
2 smserial; C:\Windows\System32\s24trans.dll [x]
2 snoopfreesvc; C:\Windows\System32\suservice.dll [x]
2 sonicatheaterinstallerservice; C:\Windows\System32\JavaQuickStarterService.dll [x]
2 sonicwall_netextender; C:\Windows\System32\symantecantibotagent.dll [x]
2 speakerphone; C:\Windows\System32\datunidr.dll [x]
2 SPLITCAM; C:\Windows\System32\websensecamserver.dll [x]
2 sprtsvc_ddoctorv2; C:\Windows\System32\sptisrv.dll [x]
2 spsslm; C:\Windows\System32\avfilter.dll [x]
2 sqlagent$pinnaclesys; C:\Windows\System32\lvpopflt.dll [x]
2 SQLBrowser; "c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe" [x]
2 sqlserveragent; C:\Windows\System32\JGOGO.dll [x]
2 SQLWriter; "c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe" [x]
2 SrvcTPIOMngr; C:\Windows\System32\symredrv.dll [x]
2 SRVLOC; C:\Windows\System32\FreeTdi.dll [x]
2 ssfs0509; C:\Windows\System32\snpstd2.dll [x]
2 ssidrv; C:\Windows\System32\symlcbrd.dll [x]
2 ssrtln; C:\Windows\System32\array_utility_service4,0,1,3.dll [x]
2 ss_mdfl; C:\Windows\System32\DFUBTUSB.dll [x]
2 steamdvr; C:\Windows\System32\pmounter.dll [x]
2 streamloadservice; C:\Windows\System32\Wuser32.dll [x]
2 stylexphelper; C:\Windows\System32\pccsmcfd.dll [x]
2 svcwrsssdk; C:\Windows\System32\k750obex.dll [x]
2 swupdtmr; C:\Windows\System32\adaptecstoragemanageragent.dll [x]
2 symantecantibotfilter; C:\Windows\System32\pgpsdkservice.dll [x]
2 symmpi; C:\Windows\System32\sym_hi.dll [x]
2 sysaidagent; C:\Windows\System32\sysplant.dll [x]
2 sysaudio; C:\Windows\System32\NetTcpPortSharing.dll [x]
2 sysdown; C:\Windows\System32\ireike.dll [x]
2 sysenforce; C:\Windows\System32\liveupdate.dll [x]
2 sysmgmthp; C:\Windows\System32\puscsrvc.dll [x]
2 szkg; C:\Windows\System32\RDID1007.dll [x]
2 tapvpn; C:\Windows\System32\caisafe.dll [x]
2 tavsvc; C:\Windows\System32\xcomm.dll [x]
2 tb2launch; C:\Windows\System32\SrvcEKIOMngr.dll [x]
2 TcUsb; C:\Windows\System32\pavagente.dll [x]
2 TdmService; C:\Windows\System32\parvdm.dll [x]
2 TeamViewer; C:\Windows\System32\iirsp.dll [x]
2 teefer; C:\Windows\System32\adpu320.dll [x]
2 teefer2; C:\Windows\System32\hidir.dll [x]
2 tfsnifs; C:\Windows\System32\pivotmou.dll [x]
2 tfsnopio; C:\Windows\System32\mfetdik.dll [x]
2 tmcomm; C:\Windows\System32\ageremodemaudio.dll [x]
2 tmxpflt; C:\Windows\System32\LUsbKbd.dll [x]
2 TNaviSrv; C:\Windows\System32\3compxe.dll [x]
2 tosrfcom; C:\Windows\System32\lvsrvlauncher.dll [x]
2 tos_sps32; C:\Windows\System32\se45mdfl.dll [x]
2 tpkd; C:\Windows\System32\vsmon.dll [x]
2 transarcafsdaemon; C:\Windows\System32\spbbcdrv.dll [x]
2 transbaseservice; C:\Windows\System32\s116obex.dll [x]
2 TSHWMDTCP; C:\Windows\System32\enecbpth.dll [x]
2 tsircsrv; C:\Windows\System32\cqmgstor.dll [x]
2 tsmservice; C:\Windows\System32\dnserver32.dll [x]
2 twotrack; C:\Windows\System32\anbmservice.dll [x]
2 U3sHlpDr; C:\Windows\System32\caboagp.dll [x]
2 UMPass; C:\Windows\System32\ovt519.dll [x]
2 unlockerdriver5; C:\Windows\System32\vtserver.dll [x]
2 uphclean; C:\Windows\System32\psched.dll [x]
2 upperdev; C:\Windows\System32\uphclean.dll [x]
2 USA49W2KP; C:\Windows\System32\crystalaps.dll [x]
2 USB28xxBGA; C:\Windows\System32\Cap7134.dll [x]
2 USB28xxOEM; C:\Windows\System32\nabtsfec.dll [x]
2 usbatapi2000; C:\Windows\System32\inspect.dll [x]
2 usbbus; C:\Windows\System32\ADIDTSFiltService.dll [x]
2 USBCCID; C:\Windows\System32\sp_rssrv.dll [x]
2 UsbDiag; C:\Windows\System32\CX23880.dll [x]
2 USBMN1X1; C:\Windows\System32\cdr4_2k.dll [x]
2 usbvm321; C:\Windows\System32\odserv.dll [x]
2 USB_RNDIS; C:\Windows\System32\iwebcal.dll [x]
2 uscbs108; C:\Windows\System32\AtlsAud.dll [x]
2 USR1806V; C:\Windows\System32\nwdls.dll [x]
2 utscsi; C:\Windows\System32\EPOWER.dll [x]
2 UVCFTR; C:\Windows\System32\dhcp.dll [x]
2 UWProSys; C:\Windows\System32\aaksrv.dll [x]
2 vaiomediaplatform-integratedserver-upnp; C:\Windows\System32\ipsraidn.dll [x]
2 VAIOMediaPlatform-PhotoServer-UPnP; C:\Windows\System32\LMouFilt.dll [x]
2 vaiomediaplatform-videoserver-appserver; C:\Windows\System32\NWSNS.dll [x]
2 VC6SecS; C:\Windows\System32\susbser.dll [x]
2 Via4in1; C:\Windows\System32\dvd_2K.dll [x]
2 VIAPFD; C:\Windows\System32\F700imd.dll [x]
2 Video3D; C:\Windows\System32\lanusb.dll [x]
2 VMAUDIO; C:\Windows\System32\abp480n5.dll [x]
2 vmount2; C:\Windows\System32\ntgrip.dll [x]
2 vncdrv; C:\Windows\System32\a016mgmt.dll [x]
2 vpcnets2; C:\Windows\System32\psdvdisk.dll [x]
2 vpctcom; C:\Windows\System32\cbidf2k.dll [x]
2 vpcusb; C:\Windows\System32\iteatapi.dll [x]
2 vrfwsvc; C:\Windows\System32\pcscnsrv.dll [x]
2 vrmonsvc; C:\Windows\System32\btwdins.dll [x]
2 vtserver; C:\Windows\System32\sp_clamsrv.dll [x]
2 vulfnths; C:\Windows\System32\AKSIFDH.dll [x]
2 vvdsvc; C:\Windows\System32\tosrfcom.dll [x]
2 vwd; C:\Windows\System32\iolo_srv.dll [x]
2 vzcdbsvc; C:\Windows\System32\CA561.dll [x]
2 w200bus; C:\Windows\System32\nHancer.dll [x]
2 w200mdm; C:\Windows\System32\symappcore.dll [x]
2 w200obex; C:\Windows\System32\nmwcd.dll [x]
2 w29n51; C:\Windows\System32\dlaudf_m.dll [x]
2 w300bus; C:\Windows\System32\Epiusb.dll [x]
2 w300mdfl; C:\Windows\System32\icm10blk.dll [x]
2 w550bus; C:\Windows\System32\GV600_4.dll [x]
2 W700obex; C:\Windows\System32\atikmdag.dll [x]
2 w70n51; C:\Windows\System32\nsvclog.dll [x]
2 w800bus; C:\Windows\System32\ipfilterdriver.dll [x]
2 w800mdm; C:\Windows\System32\NxFsMon.dll [x]
2 w810obex; C:\Windows\System32\AppnBase.dll [x]
2 wacomvhid; C:\Windows\System32\ZTEusbser6k.dll [x]
2 WacomVKHid; C:\Windows\System32\bcserver.dll [x]
2 webcompserver; C:\Windows\System32\pdcomp.dll [x]
2 webdriveservice; C:\Windows\System32\Usb20Scan.dll [x]
2 websenselogserver; C:\Windows\System32\s116unic.dll [x]
2 winachsx; C:\Windows\System32\hsfhwazl.dll [x]
2 windrvNT; C:\Windows\System32\aeaudio.dll [x]
2 WINIO; C:\Windows\System32\asc3550.dll [x]
2 winss; C:\Windows\System32\P17xfi.dll [x]
2 WinVd32; C:\Windows\System32\pdlnatcm.dll [x]
2 wkscfgsrv; C:\Windows\System32\atinrvxx.dll [x]
2 wlancfg; C:\Windows\System32\kbstuff.dll [x]
2 wlidsvc; C:\Windows\System32\TMBMServer.dll [x]
2 WmHidLo; C:\Windows\System32\vmparport.dll [x]
2 WMIService; C:\Windows\System32\CTSYN.dll [x]
2 WmXlCore; C:\Windows\System32\ErrDev.dll [x]
2 wpsscannersvc; C:\Windows\System32\SE27bus.dll [x]
2 XBCD; C:\Windows\System32\s3psddr.dll [x]
2 xpagentserver; C:\Windows\System32\plsremotesvc.dll [x]
2 XUIF; C:\Windows\System32\pdlnemsg.dll [x]
2 Xyz777s; C:\Windows\System32\cwcwdm.dll [x]
2 z525bus; C:\Windows\System32\cqmghost.dll [x]
2 z525mdm; C:\Windows\System32\MRESP50a64.dll [x]
2 zdeviceservice; C:\Windows\System32\ialm.dll [x]
2 zebrmdfl; C:\Windows\System32\automate6.dll [x]
2 zebrmdm; C:\Windows\System32\wudfrd.dll [x]
2 zenos1; C:\Windows\System32\bridgemp.dll [x]
2 zntport; C:\Windows\System32\WmUsbHid.dll [x]
2 zpsc; C:\Windows\System32\pdlnacom.dll [x]
2 _iomega_active_disk_service_; C:\Windows\System32\smserial.dll [x]
2 {6080a529-897e-4629-a488-aba0c29b635e}; C:\Windows\System32\ALYac_PZSrv.dll [x]
2 {834170a7-af3b-4d34-a757-e05eb29ee96d}; C:\Windows\System32\NICSer_WPC54G.dll [x]

========================== Drivers (Whitelisted) =============

3 AVGIDSDriver; C:\Windows\System32\DRIVERS\AVGIDSDriver.Sys [134736 2011-07-11] (AVG Technologies CZ, s.r.o. )
0 AVGIDSEH; C:\Windows\System32\DRIVERS\AVGIDSEH.Sys [23120 2011-07-11] (AVG Technologies CZ, s.r.o. )
3 AVGIDSFilter; C:\Windows\System32\DRIVERS\AVGIDSFilter.Sys [24272 2011-07-11] (AVG Technologies CZ, s.r.o. )
3 AVGIDSShim; C:\Windows\System32\DRIVERS\AVGIDSShim.Sys [16720 2011-10-04] (AVG Technologies CZ, s.r.o. )
1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [230608 2011-10-07] (AVG Technologies CZ, s.r.o.)
1 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [40016 2011-08-08] (AVG Technologies CZ, s.r.o.)
0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [32592 2011-09-13] (AVG Technologies CZ, s.r.o.)
1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [295248 2011-07-11] (AVG Technologies CZ, s.r.o.)
1 ElbyCDIO; C:\Windows\System32\Drivers\ElbyCDIO.sys [24392 2008-07-21] (Elaborate Bytes AG)
3 grmnusb; C:\Windows\System32\drivers\grmnusb.sys [7296 2003-09-23] (GARMIN Corp.)
3 LVPr2Mon; C:\Windows\System32\Drivers\LVPr2Mon.sys [25752 2009-10-06] ()
3 LVRS; C:\Windows\System32\DRIVERS\lvrs.sys [265496 2009-04-30] (Logitech Inc.)
3 LVUSBSta; C:\Windows\System32\drivers\lvusbsta.sys [38960 2006-06-22] (Logitech Inc.)
4 Mraid35x; C:\Windows\System32\drivers\mraid35x.sys [33384 2006-11-02] (LSI Logic Corporation)
3 pepifilter; C:\Windows\System32\DRIVERS\lv302af.sys [13976 2009-04-30] (Logitech Inc.)
3 PID_08A0; C:\Windows\System32\DRIVERS\LV302AV.SYS [720176 2006-06-22] (Logitech Inc.)
3 PID_PEPI; C:\Windows\System32\DRIVERS\LV302V32.SYS [2687512 2009-04-30] (Logitech Inc.)
2 regi; C:\Windows\System32\drivers\regi.sys [11032 2007-04-17] (InterVideo)
1 SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
1 SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
4 SiSRaid2; C:\Windows\System32\drivers\sisraid2.sys [41016 2008-01-20] (Microsoft Corporation)
4 UlSata; C:\Windows\System32\drivers\ulsata.sys [98408 2006-11-02] (Promise Technology, Inc.)
4 ulsata2; C:\Windows\System32\drivers\ulsata2.sys [115816 2008-01-20] (Promise Technology, Inc.)
3 VClone; C:\Windows\System32\DRIVERS\VClone.sys [29184 2008-09-24] (Elaborate Bytes AG)
3 wanatw; C:\Windows\System32\DRIVERS\wanatw4.sys [33588 2006-11-29] (America Online, Inc.)
0 WinI2C-DDC; C:\Windows\System32\drivers\DDCDrv.sys [13680 2008-02-14] (Nicomsoft Ltd.)
3 catchme; \??\C:\Users\MIERAF~1\AppData\Local\Temp\catchme.sys [x]
3 IpInIp; C:\Windows\System32\DRIVERS\ipinip.sys [x]
3 LVcKap; C:\Windows\System32\DRIVERS\LVcKap.sys [x]
3 LVMVDrv; C:\Windows\System32\DRIVERS\LVMVDrv.sys [x]
3 NwlnkFlt; C:\Windows\System32\DRIVERS\nwlnkflt.sys [x]
3 NwlnkFwd; C:\Windows\System32\DRIVERS\nwlnkfwd.sys [x]

========================== NetSvcs (Whitelisted) ===========
NETSVC: netdevio
NETSVC: bthpan
NETSVC: oraclesnmppeerencapsulator
NETSVC: tmcomm
NETSVC: RR2Ctrl
NETSVC: eloggersvc6
NETSVC: gbpoll
NETSVC: fssfltr
NETSVC: AdfuUd
NETSVC: SE27mgmt
NETSVC: konfig
NETSVC: SrvcTPIOMngr
NETSVC: mwlsvc
NETSVC: avsinc
NETSVC: teefer2
NETSVC: ltck000c
NETSVC: vulfnths
NETSVC: w200obex
NETSVC: hpzipr12
NETSVC: cqmgserv
NETSVC: transbaseservice
NETSVC: netwg311
NETSVC: roxupnpserver
NETSVC: procmon10
NETSVC: imapi
NETSVC: vpcusb
NETSVC: DcCam
NETSVC: ncupdatesvc
NETSVC: rasirda
NETSVC: rnadirectory
NETSVC: twotrack
NETSVC: zenos1
NETSVC: 3comtftp
NETSVC: maya70docserver
NETSVC: alim1541
NETSVC: MQAC
NETSVC: WINIO
NETSVC: PTDCVsp
NETSVC: WinVd32
NETSVC: perc2
NETSVC: gdrv
NETSVC: freepops
NETSVC: nipsvc
NETSVC: monfilt
NETSVC: EntDrv51
NETSVC: incdrm
NETSVC: dlcc_device
NETSVC: CTAudSvcService
NETSVC: nim32
NETSVC: wkscfgsrv
NETSVC: mssqlserverolapservice
NETSVC: neokdss
NETSVC: MpFilter
NETSVC: scanexplicit
NETSVC: TcUsb
NETSVC: mssql$microsoftsmlbiz
NETSVC: transarcafsdaemon
NETSVC: rvsinst
NETSVC: ngdbserv
NETSVC: ssfs0509
NETSVC: apfiltrservice
NETSVC: netddedsdm
NETSVC: zebrmdm
NETSVC: UWProSys
NETSVC: ndiscm
NETSVC: cpqrcmc
NETSVC: z525bus
NETSVC: tosrfcom
NETSVC: tpkd
NETSVC: uphclean
NETSVC: LwUsbHid
NETSVC: USB28xxBGA
NETSVC: meiudf
NETSVC: sbhooksvc
NETSVC: mfebopk
NETSVC: cnmpar21
NETSVC: cicssfs.scmmc223
NETSVC: olapserver
NETSVC: jtagserver
NETSVC: se59bus
NETSVC: sqlagent$pinnaclesys
NETSVC: qmofiltr
NETSVC: lvcomser
NETSVC: Ndisipo
NETSVC: nsm1bus
NETSVC: aexnsclienttransport
NETSVC: MtxDma0
NETSVC: TdmService
NETSVC: avg7alrt
NETSVC: zebrmdfl
NETSVC: upperdev
NETSVC: service
NETSVC: Freedom
NETSVC: iksysflt
NETSVC: portmapper
NETSVC: irsir
NETSVC: EAWDMFD
NETSVC: incdsrv
NETSVC: P16X
NETSVC: asp.net_2.0.50727
NETSVC: persfw
NETSVC: MRV6X32P
NETSVC: tfsnopio
NETSVC: nv
NETSVC: usbbus
NETSVC: k750mdm
NETSVC: ISAMSvc
NETSVC: pcidrv
NETSVC: webdriveservice
NETSVC: w800bus
NETSVC: NTIDrvr
NETSVC: anio
NETSVC: hpgate
NETSVC: rtl8185
NETSVC: fsks
NETSVC: s616unic
NETSVC: sonicwall_netextender
NETSVC: webcompserver
NETSVC: teefer
NETSVC: epson_pm_rpcv4_01
NETSVC: dimension4
NETSVC: dlaudf_m
NETSVC: Via4in1
NETSVC: qcdonner
NETSVC: mrvw245
NETSVC: mediaviewer
NETSVC: nvnetbus
NETSVC: Memctl
NETSVC: ibmpmdrv
NETSVC: ELmon
NETSVC: vmount2
NETSVC: hcf_msft
NETSVC: tsircsrv
NETSVC: p1131vid
NETSVC: SDdriver
NETSVC: eliservice
NETSVC: sfusvc
NETSVC: LHidFilt
NETSVC: autocomplete
NETSVC: CiscoVpnInstallService
NETSVC: pdlnshay
NETSVC: enxpsvr
NETSVC: ARCSOFTVIRTUALCAPTURE
NETSVC: RMCAST
NETSVC: rxmssync
NETSVC: dlcq_device
NETSVC: gemserv
NETSVC: mssql$sony_mediamgr
NETSVC: nhcDriverDevice
NETSVC: bdftdif
NETSVC: id2scaps
NETSVC: wlancfg
NETSVC: MxlW2k
NETSVC: firesvc
NETSVC: rtl8187Se
NETSVC: astcc
NETSVC: quickhealfirewall
NETSVC: SlWdmSup
NETSVC: nsvcip
NETSVC: NICM
NETSVC: se59unic
NETSVC: fasttx2k
NETSVC: SaiClass
NETSVC: alcxwdm
NETSVC: a016mdfl
NETSVC: rtl8023
NETSVC: pshost
NETSVC: W700obex
NETSVC: avidsdmservice
NETSVC: NCPro
NETSVC: w300mdfl
NETSVC: mirrorv3
NETSVC: ntsyslog
NETSVC: w29n51
NETSVC: nipxirmu
NETSVC: aolservice
NETSVC: pmem
NETSVC: tmxpflt
NETSVC: VAIOMediaPlatform-PhotoServer-UPnP
NETSVC: pdrframe
NETSVC: cwafeventrouter
NETSVC: SaiNtBus
NETSVC: nisum
NETSVC: ROB_V
NETSVC: dcstor32
NETSVC: HFACSVC
NETSVC: alertmanager
NETSVC: compaq_rba
NETSVC: tsmservice
NETSVC: acrotray
NETSVC: lxbx_device
NETSVC: ssrtln
NETSVC: KMW_USB
NETSVC: smbios
NETSVC: keymaestro
NETSVC: nsvclog
NETSVC: SE2Dmgmt
NETSVC: se44mdfl
NETSVC: hwdatacard
NETSVC: USB_RNDIS
NETSVC: ScFBPNT2
NETSVC: TSHWMDTCP
NETSVC: w70n51
NETSVC: lxbt_device
NETSVC: rp32service
NETSVC: sysaidagent
NETSVC: ossrv
NETSVC: UMPass
NETSVC: vrfwsvc
NETSVC: epgspooler
NETSVC: s616obex
NETSVC: clsched
NETSVC: BlueSoleilCS
NETSVC: MRESP50
NETSVC: axinstsv
NETSVC: IntelC53
NETSVC: sandboxu
NETSVC: VMAUDIO
NETSVC: giveio
NETSVC: sprtsvc_ddoctorv2
NETSVC: clisvc
NETSVC: Video3D
NETSVC: zdeviceservice
NETSVC: pmshellsrv
NETSVC: symmpi
NETSVC: msvsmon90
NETSVC: CTAUDFX.DLL
NETSVC: ql1240
NETSVC: DVDVRRdr_xp
NETSVC: outpostfirewall
NETSVC: mfcom
NETSVC: caccprovsp
NETSVC: tb2launch
NETSVC: iomegaaccess
NETSVC: kbstuff
NETSVC: avpnnic
NETSVC: AFGSp50
NETSVC: dns4meclient
NETSVC: ATIBTCAP
NETSVC: asc3550
NETSVC: ATNT40K
NETSVC: sbpci
NETSVC: atmeltpm
NETSVC: Pnp680r
NETSVC: lmimirr
NETSVC: s716bus
NETSVC: alcxsens
NETSVC: HSFHWALI
NETSVC: XUIF
NETSVC: merakpop3
NETSVC: atitool
NETSVC: a016mgmt
NETSVC: tos_sps32
NETSVC: stylexphelper
NETSVC: nidomainservice
NETSVC: Invoker
NETSVC: UVCFTR
NETSVC: application
NETSVC: mod7700
NETSVC: avg7rsxp
NETSVC: fshttps
NETSVC: BASFND
NETSVC: pavprsrv
NETSVC: mwssched
NETSVC: vzcdbsvc
NETSVC: rtm
NETSVC: fsma
NETSVC: vncdrv
NETSVC: s3savagenb
NETSVC: USA49W2KP
NETSVC: pcouffin
NETSVC: ASDR
NETSVC: steamdvr
NETSVC: LVPrcMon
NETSVC: nvpvrmon
NETSVC: VIAPFD
NETSVC: WMIService
NETSVC: PGPwded
NETSVC: JiaoIO
NETSVC: digictrl
NETSVC: _iomega_active_disk_service_
NETSVC: nmwcdcm
NETSVC: DLH5X
NETSVC: mgactrl
NETSVC: wlidsvc
NETSVC: iap
NETSVC: unlockerdriver5
NETSVC: z525mdm
NETSVC: XBCD
NETSVC: SE27mdm
NETSVC: generichidservice
NETSVC: ss_mdfl
NETSVC: samfilt
NETSVC: tavsvc
NETSVC: imonnt
NETSVC: ccsetmgr
NETSVC: emproxy
NETSVC: USBCCID
NETSVC: rt73
NETSVC: emclisrv
NETSVC: w200mdm
NETSVC: winss
NETSVC: guardian2
NETSVC: SE2Emdm
NETSVC: ma_cmidi_installerservice
NETSVC: swupdtmr
NETSVC: symantecantibotfilter
NETSVC: cdvp
NETSVC: roxwatch
NETSVC: ccalib8
NETSVC: usbvm321
NETSVC: ivscheduler
NETSVC: nv4
NETSVC: emitray
NETSVC: NWSNS
NETSVC: nscirda
NETSVC: Xyz777s
NETSVC: speakerphone
NETSVC: EUSBMSD
NETSVC: amoagent
NETSVC: winachsx
NETSVC: dcpflics
NETSVC: FINEPIX_PCC
NETSVC: diskeeper
NETSVC: SABSVC
NETSVC: mdmxsdk
NETSVC: AX88772
NETSVC: SaiMini
NETSVC: wacomvhid
NETSVC: sqlserveragent
NETSVC: axsnmsvc
NETSVC: G400DH
NETSVC: IOSLINK
NETSVC: se2Dnd5
NETSVC: s616mdfl
NETSVC: sysmgmthp
NETSVC: inotask
NETSVC: ipodsrv
NETSVC: MSCamSvc
NETSVC: pdlnemsg
NETSVC: vaiomediaplatform-videoserver-appserver
NETSVC: msftesql
NETSVC: FsVga
NETSVC: hibernation
NETSVC: WmXlCore
NETSVC: smartwiservice
NETSVC: mwsarcpkt
NETSVC: kpfwsvc
NETSVC: NIPALK
NETSVC: ctxhttp
NETSVC: pop3d32
NETSVC: roxliveshare
NETSVC: dmboot
NETSVC: atksgt
NETSVC: FETNDIS
NETSVC: PAR1284
NETSVC: sonicatheaterinstallerservice
NETSVC: CdaD10BA
NETSVC: xpagentserver
NETSVC: 3combootp
NETSVC: USB28xxOEM
NETSVC: vwd
NETSVC: pavreport
NETSVC: a016mdm
NETSVC: RioS30
NETSVC: houdinilicenseserver
NETSVC: GTWModem
NETSVC: imaservice
NETSVC: avgfwsrv
NETSVC: FreeTdi
NETSVC: rtport
NETSVC: w300bus
NETSVC: ifp800
NETSVC: s217mdfl
NETSVC: nimxdfk
NETSVC: dlabmfsm
NETSVC: w800mdm
NETSVC: dm1service
NETSVC: nwlnkspx
NETSVC: ntsvcmgr
NETSVC: AMDPCI
NETSVC: avgarcln
NETSVC: windrvNT
NETSVC: pelusblf
NETSVC: cdudf_xp
NETSVC: tapvpn
NETSVC: licenseservice
NETSVC: nbf
NETSVC: spsslm
NETSVC: snoopfreesvc
NETSVC: DSXUSB
NETSVC: U3sHlpDr
NETSVC: vrmonsvc
NETSVC: cm102u32
NETSVC: HSFHWICH
NETSVC: lxcj_device
NETSVC: jsdaemon
NETSVC: Blfp
NETSVC: NxSysMon
NETSVC: ha20x2k
NETSVC: SPLITCAM
NETSVC: sysdown
NETSVC: QPCapSvc
NETSVC: se58bus
NETSVC: AVCamUSB20
NETSVC: smcservice
NETSVC: msmpsvc
NETSVC: utscsi
NETSVC: USBMN1X1
NETSVC: centennialclientagent
NETSVC: ssidrv
NETSVC: lvuvc
NETSVC: plscsi
NETSVC: btkrnl
NETSVC: Intels51
NETSVC: {834170a7-af3b-4d34-a757-e05eb29ee96d}
NETSVC: RAPIProtocol
NETSVC: KMW_KBD
NETSVC: caisafe
NETSVC: lmouflt2
NETSVC: bvrp_pci
NETSVC: C-Dilla
NETSVC: filemon701
NETSVC: smserial
NETSVC: ftsata2
NETSVC: protectionservice
NETSVC: pinnacleupdatesvc
NETSVC: BVRPMPR5
NETSVC: SRVLOC
NETSVC: intelroam
NETSVC: dtsrvc
NETSVC: n3900
NETSVC: pid_0928
NETSVC: lxdmCATSCustConnectService
NETSVC: rbfilter
NETSVC: TeamViewer
NETSVC: sisnic
NETSVC: mlkkbdntdriver
NETSVC: bt3cser
NETSVC: vvdsvc
NETSVC: niorbk
NETSVC: afs2k
NETSVC: framework
NETSVC: fsbwsys
NETSVC: CoachAud
NETSVC: atmarpc
NETSVC: UsbDiag
NETSVC: int15
NETSVC: amon
NETSVC: oracleorahomepagingserver
NETSVC: szkg
NETSVC: USR1806V
NETSVC: c-dillacdac11ba
NETSVC: marvinbus
NETSVC: backupexecdevicemediaservice
NETSVC: se59mgmt
NETSVC: AVerBDA
NETSVC: blueletscoaudio
NETSVC: emAudio
NETSVC: naimagent32
NETSVC: vpctcom
NETSVC: psasrv
NETSVC: usbatapi2000
NETSVC: irbus
NETSVC: EL90X
NETSVC: backuplauncher
NETSVC: incdrec
NETSVC: wpsscannersvc
NETSVC: icepack
NETSVC: vtserver
NETSVC: uscbs108
NETSVC: TNaviSrv
NETSVC: w810obex
NETSVC: vaiomediaplatform-integratedserver-upnp
NETSVC: bjmcmng
NETSVC: pktfilter
NETSVC: coste
NETSVC: sysaudio
NETSVC: SMCB000
NETSVC: siside
NETSVC: tfsnifs
NETSVC: bc_ngn
NETSVC: datunidr
NETSVC: w550bus
NETSVC: vpcnets2
NETSVC: cportclm
NETSVC: npkcrypt
NETSVC: zpsc
NETSVC: penrendezvous
NETSVC: w200bus
NETSVC: IntelC52
NETSVC: ICAM3NT5
NETSVC: WmHidLo
NETSVC: streamloadservice
NETSVC: fah@c:+fah+fah-service+fah502-console.exe
NETSVC: rwbackupsrv
NETSVC: MTC0001_ESB
NETSVC: obvious
NETSVC: GTPTSER
NETSVC: FVXSCSI
NETSVC: ntsecure
NETSVC: server
NETSVC: s117mdfl
NETSVC: sisidex
NETSVC: DM9102
NETSVC: svcwrsssdk
NETSVC: nuvaud2
NETSVC: backupexecnamingservice
NETSVC: Dell1100_FUService
NETSVC: sysenforce
NETSVC: zntport
NETSVC: nod32krn
NETSVC: {6080a529-897e-4629-a488-aba0c29b635e}
NETSVC: mozybackup
NETSVC: axsaki
NETSVC: downloadmanagerlite
NETSVC: VC6SecS
NETSVC: fireport
NETSVC: ADSMService
NETSVC: mbr
NETSVC: websenselogserver
NETSVC: WacomVKHid

============ One Month Created Files and Folders ==============

2012-03-08 16:04 - 2012-03-08 16:04 - 0000000 ____D C:\Users\All Users\WindowsSearch
2012-03-08 16:04 - 2012-03-08 16:04 - 0000000 ____D C:\ProgramData\WindowsSearch
2012-03-08 15:51 - 2012-03-08 15:02 - 3479494656 __ASH C:\hiberfil.sys
2012-03-08 15:37 - 2012-03-08 15:37 - 0000000 ____D C:\Users\All Users\MFAData
2012-03-08 15:37 - 2012-03-08 15:37 - 0000000 ____D C:\ProgramData\MFAData
2012-03-08 15:31 - 2012-03-08 15:37 - 0000000 ____D C:\Users\All Users\Microsoft Help
2012-03-08 15:31 - 2012-03-08 15:37 - 0000000 ____D C:\ProgramData\Microsoft Help
2012-03-08 15:28 - 2012-03-08 15:28 - 0000000 ____D C:\Users\All Users\LogiShrd
2012-03-08 15:28 - 2012-03-08 15:28 - 0000000 ____D C:\ProgramData\LogiShrd
2012-03-08 15:27 - 2012-03-08 15:27 - 0000000 ____D C:\Users\All Users\Intuit
2012-03-08 15:27 - 2012-03-08 15:27 - 0000000 ____D C:\ProgramData\Intuit
2012-03-08 15:26 - 2012-03-08 15:26 - 0000000 ____D C:\Users\All Users\Qwest
2012-03-08 15:26 - 2012-03-08 15:26 - 0000000 ____D C:\ProgramData\Qwest
2012-03-08 15:25 - 2012-03-08 19:14 - 0000000 ____D C:\Users\All Users\Babylon
2012-03-08 15:25 - 2012-03-08 19:14 - 0000000 ____D C:\ProgramData\Babylon
2012-03-08 15:25 - 2012-03-08 15:25 - 0000000 ____D C:\Users\All Users\SUPERAntiSpyware.com
2012-03-08 15:25 - 2012-03-08 15:25 - 0000000 ____D C:\Users\All Users\Real
2012-03-08 15:25 - 2012-03-08 15:25 - 0000000 ____D C:\Users\All Users\Adobe
2012-03-08 15:25 - 2012-03-08 15:25 - 0000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2012-03-08 15:25 - 2012-03-08 15:25 - 0000000 ____D C:\ProgramData\Real
2012-03-08 15:25 - 2012-03-08 15:25 - 0000000 ____D C:\ProgramData\Adobe
2012-03-08 15:23 - 2012-03-08 15:52 - 0000000 ____D C:\Users\All Users\AVG2012
2012-03-08 15:23 - 2012-03-08 15:52 - 0000000 ____D C:\ProgramData\AVG2012
2012-03-08 15:23 - 2012-03-08 15:26 - 0000000 ____D C:\Users\All Users\AOL
2012-03-08 15:23 - 2012-03-08 15:26 - 0000000 ____D C:\ProgramData\AOL
2012-03-08 15:23 - 2012-03-08 15:23 - 0011990 ____A C:\Windows\System32\commonpriv.log
2012-03-08 15:23 - 2012-03-08 15:23 - 0000000 ____D C:\Users\All Users\Apple
2012-03-08 15:23 - 2012-03-08 15:23 - 0000000 ____D C:\ProgramData\Apple
2012-03-08 15:23 - 2012-03-08 15:23 - 0000000 ____A C:\Windows\System32\commonpriv.log.lock
2012-03-08 09:51 - 2012-03-08 15:15 - 0000000 ____D C:\Windows.old.000
2012-03-07 11:45 - 2012-03-08 16:46 - 0000000 ____D C:\Windows.old
2012-03-06 14:45 - 2012-03-06 14:34 - 4730880 ____A (AVAST Software) C:\Users\MFamily\Desktop\aswMBR.exe
2012-03-06 14:41 - 2012-03-06 14:45 - 0076252 ____A C:\TDSSKiller.2.7.19.0_06.03.2012_15.41.53_log.txt
2012-03-06 14:41 - 2012-03-06 14:34 - 2063920 ____A (Kaspersky Lab ZAO) C:\Users\MFamily\Desktop\tdsskiller.exe
2012-03-06 12:45 - 2012-03-06 12:47 - 0000000 ___SD C:\ComboFix
2012-03-06 11:09 - 2012-03-06 11:09 - 0000000 ____D C:\Windows\ERDNT
2012-03-06 11:09 - 2012-03-06 11:09 - 0000000 ____D C:\Qoobox
2012-03-06 11:09 - 2011-06-25 22:45 - 0256000 ____A C:\Windows\PEV.exe
2012-03-06 11:09 - 2010-11-07 09:20 - 0208896 ____A C:\Windows\MBR.exe
2012-03-06 11:09 - 2009-04-19 20:56 - 0060416 ____A (NirSoft) C:\Windows\NIRCMD.exe
2012-03-06 11:09 - 2000-08-30 16:00 - 0518144 ____A (SteelWerX) C:\Windows\SWREG.exe
2012-03-06 11:09 - 2000-08-30 16:00 - 0406528 ____A (SteelWerX) C:\Windows\SWSC.exe
2012-03-06 11:09 - 2000-08-30 16:00 - 0098816 ____A C:\Windows\sed.exe
2012-03-06 11:09 - 2000-08-30 16:00 - 0080412 ____A C:\Windows\grep.exe
2012-03-06 11:09 - 2000-08-30 16:00 - 0068096 ____A C:\Windows\zip.exe
2012-03-06 09:59 - 2012-03-06 09:55 - 4427148 ___RA (Swearware) C:\Users\MFamily\Desktop\ComboFix.exe
2012-03-06 08:41 - 2012-03-06 08:41 - 0134496 ____A C:\Windows\Minidump\Mini030612-01.dmp
2012-03-06 08:40 - 2012-03-06 08:40 - 153165146 ____A C:\Windows\MEMORY.DMP
2012-03-05 16:14 - 2012-03-05 16:14 - 0000000 ____D C:\Users\MFamily\Desktop\gmer
2012-03-05 16:14 - 2012-03-05 15:49 - 0294216 ____A C:\Users\MFamily\Desktop\gmer.zip
2012-03-05 16:00 - 2012-03-05 15:48 - 0607260 ___RA (Swearware) C:\Users\MFamily\Desktop\dds.scr
2012-03-05 15:59 - 2012-03-05 16:00 - 0000486 ____A C:\Users\MFamily\Desktop\defogger_disable.log
2012-03-05 15:59 - 2012-03-05 15:59 - 0000000 ____A C:\Users\MFamily\defogger_reenable
2012-03-05 15:59 - 2012-03-05 15:47 - 0050477 ____A C:\Users\MFamily\Desktop\Defogger.exe
2012-03-05 14:54 - 2012-03-05 14:54 - 1069025 ____A C:\Users\MFamily\Desktop\Errorscreenshot.docx
2012-03-04 00:30 - 2012-03-04 00:30 - 0000000 ____D C:\Users\MFamily\Application Data\SUPERAntiSpyware.com
2012-03-04 00:30 - 2012-03-04 00:30 - 0000000 ____D C:\Users\MFamily\AppData\Roaming\SUPERAntiSpyware.com
2012-03-04 00:29 - 2012-03-04 00:30 - 0000000 ____D C:\Program Files\SUPERAntiSpyware
2012-03-04 00:29 - 2012-03-04 00:29 - 0001800 ____A C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2012-03-04 00:28 - 2012-03-04 00:28 - 15125536 ____A (SUPERAntiSpyware.com) C:\Users\MFamily\Desktop\SUPERAntiSpyware.exe
2012-03-03 23:44 - 2012-03-03 23:44 - 0000051 __ASH C:\Windows\System32\config\desktop.ini
2012-03-01 05:38 - 2012-03-01 05:38 - 4332332 ___RA C:\Users\MFamily\My Documents\QDATA Backup_2012-03-01_063832.mbf
2012-03-01 05:38 - 2012-03-01 05:38 - 4332332 ___RA C:\Users\MFamily\Documents\QDATA Backup_2012-03-01_063832.mbf
2012-02-29 17:32 - 2012-02-29 17:32 - 4407914 ___RA C:\Users\MFamily\My Documents\QDATA Backup_2012-02-29_183155.mbf
2012-02-29 17:32 - 2012-02-29 17:32 - 4407914 ___RA C:\Users\MFamily\Documents\QDATA Backup_2012-02-29_183155.mbf
2012-02-27 13:50 - 2012-02-27 13:50 - 0770149 ____A C:\Users\MFamily\My Documents\01012012013120126087.pdf
2012-02-27 13:50 - 2012-02-27 13:50 - 0770149 ____A C:\Users\MFamily\Documents\01012012013120126087.pdf
2012-02-26 12:22 - 2012-03-06 07:57 - 0000348 ____A C:\Windows\Tasks\At54.job
2012-02-26 12:22 - 2012-03-06 07:57 - 0000348 ____A C:\Windows\Tasks\At52.job
2012-02-26 12:22 - 2012-03-06 07:57 - 0000348 ____A C:\Windows\Tasks\At50.job
2012-02-26 12:22 - 2012-03-06 07:57 - 0000346 ____A C:\Windows\Tasks\At53.job
2012-02-26 12:22 - 2012-03-06 07:57 - 0000346 ____A C:\Windows\Tasks\At51.job
2012-02-26 12:22 - 2012-03-06 07:57 - 0000346 ____A C:\Windows\Tasks\At49.job
2012-02-26 10:36 - 2012-02-26 10:36 - 4208922 ___RA C:\Users\MFamily\My Documents\QDATA Backup_2012-02-26_113640.mbf
2012-02-26 10:36 - 2012-02-26 10:36 - 4208922 ___RA C:\Users\MFamily\Documents\QDATA Backup_2012-02-26_113640.mbf
2012-02-26 09:14 - 2012-02-26 09:14 - 0339711 ____A C:\Users\MFamily\My Documents\022320127918.pdf
2012-02-26 09:14 - 2012-02-26 09:14 - 0339711 ____A C:\Users\MFamily\Documents\022320127918.pdf
2012-02-25 09:53 - 2012-02-25 17:03 - 0000000 ____D C:\Users\MFamily\Local Settings\Vivitar Experience Image Manager
2012-02-25 09:53 - 2012-02-25 17:03 - 0000000 ____D C:\Users\MFamily\Local Settings\Application Data\Vivitar Experience Image Manager
2012-02-25 09:53 - 2012-02-25 17:03 - 0000000 ____D C:\Users\MFamily\Application Data\vlc
2012-02-25 09:53 - 2012-02-25 17:03 - 0000000 ____D C:\Users\MFamily\AppData\Roaming\vlc
2012-02-25 09:53 - 2012-02-25 17:03 - 0000000 ____D C:\Users\MFamily\AppData\Local\Vivitar Experience Image Manager
2012-02-25 09:53 - 2012-02-25 09:53 - 0001877 ____A C:\Users\MFamily\Desktop\Vivitar Experience Image Manager.lnk
2012-02-25 09:52 - 2012-02-25 09:52 - 0000000 ____D C:\Program Files\Vivitar Experience Image Manager
2012-02-25 09:52 - 2012-02-25 09:52 - 0000000 ____D C:\Program Files\ffdshow
2012-02-25 09:52 - 2008-12-17 18:22 - 0057344 ____A C:\Windows\System32\ff_vfw.dll
2012-02-25 09:52 - 2008-12-11 12:26 - 0060273 ____A (Open Source Software community project) C:\Windows\System32\pthreadGC2.dll
2012-02-23 19:10 - 2012-02-23 19:10 - 0001887 ____A C:\Users\Public\Desktop\Adobe Reader 9.lnk
2012-02-19 09:33 - 2012-02-19 09:33 - 0015053 ____A C:\Users\MFamily\My Documents\ING Saver ID.docx
2012-02-19 09:33 - 2012-02-19 09:33 - 0015053 ____A C:\Users\MFamily\Documents\ING Saver ID.docx
2012-02-19 09:24 - 2012-02-19 09:23 - 0157472 ____A (Sun Microsystems, Inc.) C:\Windows\System32\javaws.exe
2012-02-19 09:24 - 2012-02-19 09:23 - 0149280 ____A (Sun Microsystems, Inc.) C:\Windows\System32\javaw.exe
2012-02-19 09:24 - 2012-02-19 09:23 - 0149280 ____A (Sun Microsystems, Inc.) C:\Windows\System32\java.exe
2012-02-15 16:17 - 2012-01-12 11:52 - 2044416 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2012-02-15 16:17 - 2011-12-16 07:59 - 1176576 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2012-02-15 16:17 - 2011-12-16 07:59 - 0834048 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2012-02-15 16:17 - 2011-12-16 07:59 - 0106496 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2012-02-15 16:17 - 2011-12-16 07:57 - 0671232 ____A (Microsoft Corporation) C:\Windows\System32\mstime.dll
2012-02-15 16:17 - 2011-12-16 07:56 - 6089728 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2012-02-15 16:17 - 2011-12-16 07:56 - 3618304 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2012-02-15 16:17 - 2011-12-16 07:56 - 0478208 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2012-02-15 16:17 - 2011-12-16 07:56 - 0471040 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2012-02-15 16:17 - 2011-12-16 07:56 - 0380928 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2012-02-15 16:17 - 2011-12-16 07:56 - 0270336 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2012-02-15 16:17 - 2011-12-16 07:56 - 0193024 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2012-02-15 16:17 - 2011-12-16 07:56 - 0180736 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2012-02-15 16:17 - 2011-12-16 07:56 - 0027648 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2012-02-15 16:17 - 2011-12-16 06:11 - 0389632 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2012-02-15 16:17 - 2011-12-16 05:46 - 1383424 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2012-02-15 16:17 - 2011-12-14 08:17 - 0680448 ____A (Microsoft Corporation) C:\Windows\System32\msvcrt.dll
2012-02-09 11:11 - 2012-02-09 11:11 - 0229816 ____A C:\Users\MFamily\Downloads\hbexport (2).ofx
2012-02-09 11:11 - 2012-02-09 11:11 - 0229816 ____A C:\Users\MFamily\Downloads\hbexport (1).ofx


============ 3 Months Modified Files and Folders ===============

2012-03-08 20:21 - 2012-03-08 20:21 - 0000000 ____D C:\FRST
2012-03-08 19:14 - 2012-03-08 15:25 - 0000000 ____D C:\Users\All Users\Babylon
2012-03-08 19:14 - 2012-03-08 15:25 - 0000000 ____D C:\ProgramData\Babylon
2012-03-08 19:14 - 2008-10-17 20:22 - 0607018 ____A C:\FaceProv.log
2012-03-08 19:14 - 2008-10-17 19:54 - 1567735 ____A C:\Windows\WindowsUpdate.log
2012-03-08 19:14 - 2006-11-02 05:01 - 0032612 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2012-03-08 19:14 - 2006-11-02 05:01 - 0000006 ___AH C:\Windows\Tasks\SA.DAT
2012-03-08 19:14 - 2006-11-02 04:47 - 0003344 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2012-03-08 19:14 - 2006-11-02 04:47 - 0003344 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2012-03-08 19:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At42.job
2012-03-08 19:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At41.job
2012-03-08 18:41 - 2008-10-17 20:12 - 0000270 ____A C:\Windows\Tasks\Check Updates for Windows Live Toolbar.job
2012-03-08 18:31 - 2012-01-26 06:21 - 0000898 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2012-03-08 18:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At40.job
2012-03-08 18:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At39.job
2012-03-08 17:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At38.job
2012-03-08 17:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At37.job
2012-03-08 16:47 - 2006-11-02 03:18 - 0000000 ____D C:\Windows.Vista
2012-03-08 16:46 - 2012-03-07 11:45 - 0000000 ____D C:\Windows.old
2012-03-08 16:31 - 2012-01-26 06:21 - 0000894 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2012-03-08 16:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At36.job
2012-03-08 16:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At35.job
2012-03-08 16:04 - 2012-03-08 16:04 - 0000000 ____D C:\Users\All Users\WindowsSearch
2012-03-08 16:04 - 2012-03-08 16:04 - 0000000 ____D C:\ProgramData\WindowsSearch
2012-03-08 15:52 - 2012-03-08 15:23 - 0000000 ____D C:\Users\All Users\AVG2012
2012-03-08 15:52 - 2012-03-08 15:23 - 0000000 ____D C:\ProgramData\AVG2012
2012-03-08 15:40 - 2010-10-25 05:06 - 0000000 ____D C:\Windows\System32\Drivers\AVG
2012-03-08 15:37 - 2012-03-08 15:37 - 0000000 ____D C:\Users\All Users\MFAData
2012-03-08 15:37 - 2012-03-08 15:37 - 0000000 ____D C:\ProgramData\MFAData
2012-03-08 15:37 - 2012-03-08 15:31 - 0000000 ____D C:\Users\All Users\Microsoft Help
2012-03-08 15:37 - 2012-03-08 15:31 - 0000000 ____D C:\ProgramData\Microsoft Help
2012-03-08 15:37 - 2008-12-19 18:22 - 0000000 ___HD C:\Config.Msi
2012-03-08 15:28 - 2012-03-08 15:28 - 0000000 ____D C:\Users\All Users\LogiShrd
2012-03-08 15:28 - 2012-03-08 15:28 - 0000000 ____D C:\ProgramData\LogiShrd
2012-03-08 15:27 - 2012-03-08 15:27 - 0000000 ____D C:\Users\All Users\Intuit
2012-03-08 15:27 - 2012-03-08 15:27 - 0000000 ____D C:\ProgramData\Intuit
2012-03-08 15:26 - 2012-03-08 15:26 - 0000000 ____D C:\Users\All Users\Qwest
2012-03-08 15:26 - 2012-03-08 15:26 - 0000000 ____D C:\ProgramData\Qwest
2012-03-08 15:26 - 2012-03-08 15:23 - 0000000 ____D C:\Users\All Users\AOL
2012-03-08 15:26 - 2012-03-08 15:23 - 0000000 ____D C:\ProgramData\AOL
2012-03-08 15:25 - 2012-03-08 15:25 - 0000000 ____D C:\Users\All Users\SUPERAntiSpyware.com
2012-03-08 15:25 - 2012-03-08 15:25 - 0000000 ____D C:\Users\All Users\Real
2012-03-08 15:25 - 2012-03-08 15:25 - 0000000 ____D C:\Users\All Users\Adobe
2012-03-08 15:25 - 2012-03-08 15:25 - 0000000 ____D C:\ProgramData\SUPERAntiSpyware.com
2012-03-08 15:25 - 2012-03-08 15:25 - 0000000 ____D C:\ProgramData\Real
2012-03-08 15:25 - 2012-03-08 15:25 - 0000000 ____D C:\ProgramData\Adobe
2012-03-08 15:25 - 2006-11-02 03:17 - 0000000 __SHD C:\$Recycle.Bin
2012-03-08 15:23 - 2012-03-08 15:23 - 0011990 ____A C:\Windows\System32\commonpriv.log
2012-03-08 15:23 - 2012-03-08 15:23 - 0000000 ____D C:\Users\All Users\Apple
2012-03-08 15:23 - 2012-03-08 15:23 - 0000000 ____D C:\ProgramData\Apple
2012-03-08 15:23 - 2012-03-08 15:23 - 0000000 ____A C:\Windows\System32\commonpriv.log.lock
2012-03-08 15:15 - 2012-03-08 09:51 - 0000000 ____D C:\Windows.old.000
2012-03-08 15:02 - 2012-03-08 15:51 - 3479494656 __ASH C:\hiberfil.sys
2012-03-08 14:56 - 2006-11-02 03:18 - 0000000 ___RD C:\Users.Vista
2012-03-08 10:47 - 2008-03-13 13:49 - 0008192 __RAS C:\BOOTSECT.BAK
2012-03-07 10:26 - 2011-12-30 11:14 - 0683898 ____A C:\Windows\ntbtlog.txt
2012-03-06 14:45 - 2012-03-06 14:41 - 0076252 ____A C:\TDSSKiller.2.7.19.0_06.03.2012_15.41.53_log.txt
2012-03-06 14:34 - 2012-03-06 14:45 - 4730880 ____A (AVAST Software) C:\Users\MFamily\Desktop\aswMBR.exe
2012-03-06 14:34 - 2012-03-06 14:41 - 2063920 ____A (Kaspersky Lab ZAO) C:\Users\MFamily\Desktop\tdsskiller.exe
2012-03-06 14:34 - 2008-01-20 18:47 - 0173864 ____A C:\Windows\PFRO.log
2012-03-06 14:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At32.job
2012-03-06 14:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At31.job
2012-03-06 13:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At30.job
2012-03-06 13:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At29.job
2012-03-06 12:47 - 2012-03-06 12:45 - 0000000 ___SD C:\ComboFix
2012-03-06 12:29 - 2006-11-02 02:33 - 0769200 ____A C:\Windows\System32\PerfStringBackup.INI
2012-03-06 11:09 - 2012-03-06 11:09 - 0000000 ____D C:\Windows\ERDNT
2012-03-06 11:09 - 2012-03-06 11:09 - 0000000 ____D C:\Qoobox
2012-03-06 10:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At24.job
2012-03-06 10:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At23.job
2012-03-06 09:55 - 2012-03-06 09:59 - 4427148 ___RA (Swearware) C:\Users\MFamily\Desktop\ComboFix.exe
2012-03-06 08:41 - 2012-03-06 08:41 - 0134496 ____A C:\Windows\Minidump\Mini030612-01.dmp
2012-03-06 08:41 - 2010-12-30 13:55 - 0000000 ____D C:\Windows\Minidump
2012-03-06 08:40 - 2012-03-06 08:40 - 153165146 ____A C:\Windows\MEMORY.DMP
2012-03-06 08:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At20.job
2012-03-06 08:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At19.job
2012-03-06 07:57 - 2012-02-26 12:22 - 0000348 ____A C:\Windows\Tasks\At54.job
2012-03-06 07:57 - 2012-02-26 12:22 - 0000348 ____A C:\Windows\Tasks\At52.job
2012-03-06 07:57 - 2012-02-26 12:22 - 0000348 ____A C:\Windows\Tasks\At50.job
2012-03-06 07:57 - 2012-02-26 12:22 - 0000346 ____A C:\Windows\Tasks\At53.job
2012-03-06 07:57 - 2012-02-26 12:22 - 0000346 ____A C:\Windows\Tasks\At51.job
2012-03-06 07:57 - 2012-02-26 12:22 - 0000346 ____A C:\Windows\Tasks\At49.job
2012-03-06 07:57 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At48.job
2012-03-06 07:57 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At46.job
2012-03-06 07:57 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At47.job
2012-03-06 07:57 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At45.job
2012-03-06 07:57 - 2012-02-04 05:28 - 0000348 ____A C:\Windows\Tasks\At8.job
2012-03-06 07:57 - 2012-02-04 05:28 - 0000348 ____A C:\Windows\Tasks\At6.job
2012-03-06 07:57 - 2012-02-04 05:28 - 0000348 ____A C:\Windows\Tasks\At4.job
2012-03-06 07:57 - 2012-02-04 05:28 - 0000348 ____A C:\Windows\Tasks\At2.job
2012-03-06 07:57 - 2012-02-04 05:28 - 0000346 ____A C:\Windows\Tasks\At7.job
2012-03-06 07:57 - 2012-02-04 05:28 - 0000346 ____A C:\Windows\Tasks\At5.job
2012-03-06 07:57 - 2012-02-04 05:28 - 0000346 ____A C:\Windows\Tasks\At3.job
2012-03-06 07:57 - 2012-02-04 05:28 - 0000346 ____A C:\Windows\Tasks\At1.job
2012-03-05 20:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At44.job
2012-03-05 20:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At43.job
2012-03-05 16:14 - 2012-03-05 16:14 - 0000000 ____D C:\Users\MFamily\Desktop\gmer
2012-03-05 16:00 - 2012-03-05 15:59 - 0000486 ____A C:\Users\MFamily\Desktop\defogger_disable.log
2012-03-05 15:59 - 2012-03-05 15:59 - 0000000 ____A C:\Users\MFamily\defogger_reenable
2012-03-05 15:59 - 2008-12-19 22:04 - 0000000 ____D C:\users\MFamily
2012-03-05 15:49 - 2012-03-05 16:14 - 0294216 ____A C:\Users\MFamily\Desktop\gmer.zip
2012-03-05 15:48 - 2012-03-05 16:00 - 0607260 ___RA (Swearware) C:\Users\MFamily\Desktop\dds.scr
2012-03-05 15:47 - 2012-03-05 15:59 - 0050477 ____A C:\Users\MFamily\Desktop\Defogger.exe
2012-03-05 15:16 - 2010-05-22 12:37 - 0000000 ____D C:\Users\MFamily\Desktop\MINE!
2012-03-05 14:54 - 2012-03-05 14:54 - 1069025 ____A C:\Users\MFamily\Desktop\Errorscreenshot.docx
2012-03-05 12:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At28.job
2012-03-05 12:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At27.job
2012-03-05 11:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At26.job
2012-03-05 11:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At25.job
2012-03-05 08:50 - 2011-06-21 18:20 - 0001356 ____A C:\Users\MFamily\Local Settings\d3d9caps.dat
2012-03-05 08:50 - 2011-06-21 18:20 - 0001356 ____A C:\Users\MFamily\Local Settings\Application Data\d3d9caps.dat
2012-03-05 08:50 - 2011-06-21 18:20 - 0001356 ____A C:\Users\MFamily\AppData\Local\d3d9caps.dat
2012-03-04 19:46 - 2006-11-02 03:18 - 0000000 ___SD C:\Windows\Downloaded Program Files
2012-03-04 00:30 - 2012-03-04 00:30 - 0000000 ____D C:\Users\MFamily\Application Data\SUPERAntiSpyware.com
2012-03-04 00:30 - 2012-03-04 00:30 - 0000000 ____D C:\Users\MFamily\AppData\Roaming\SUPERAntiSpyware.com
2012-03-04 00:30 - 2012-03-04 00:29 - 0000000 ____D C:\Program Files\SUPERAntiSpyware
2012-03-04 00:29 - 2012-03-04 00:29 - 0001800 ____A C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2012-03-04 00:28 - 2012-03-04 00:28 - 15125536 ____A (SUPERAntiSpyware.com) C:\Users\MFamily\Desktop\SUPERAntiSpyware.exe
2012-03-03 23:44 - 2012-03-03 23:44 - 0000051 __ASH C:\Windows\System32\config\desktop.ini
2012-03-03 19:19 - 2008-12-19 22:05 - 0000000 ____D C:\Users\MFamily\AppData\LocalLow
2012-03-03 19:11 - 2010-07-22 15:37 - 0000000 ____D C:\Users\MFamily\Application Data\HPAppData
2012-03-03 19:11 - 2010-07-22 15:37 - 0000000 ____D C:\Users\MFamily\AppData\Roaming\HPAppData
2012-03-03 14:11 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At18.job
2012-03-03 13:50 - 2006-11-02 03:18 - 0000000 ____D C:\Windows\ModemLogs
2012-03-03 07:37 - 2008-01-20 18:23 - 0083456 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\serial.sys
2012-03-03 07:29 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At16.job
2012-03-03 07:29 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At14.job
2012-03-03 07:29 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At12.job
2012-03-03 07:29 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At10.job
2012-03-03 07:29 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At17.job
2012-03-03 07:29 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At15.job
2012-03-03 07:29 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At13.job
2012-03-03 07:29 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At11.job
2012-03-03 07:29 - 2012-02-04 05:28 - 0000346 ____A C:\Windows\Tasks\At9.job
2012-03-03 00:18 - 2012-02-05 06:19 - 0000000 __ASH C:\Windows\System32\dds_trash_log.cmd
2012-03-02 22:23 - 2010-09-20 16:27 - 0108032 ____A C:\Users\MFamily\Local Settings\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-03-02 22:23 - 2010-09-20 16:27 - 0108032 ____A C:\Users\MFamily\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-03-02 22:23 - 2010-09-20 16:27 - 0108032 ____A C:\Users\MFamily\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-03-02 20:06 - 2006-11-02 03:18 - 0000000 ____D C:\Windows\tracing
2012-03-02 17:54 - 2010-10-13 11:40 - 0008809 ____A C:\Users\MFamily\Application Data\Cabos.plist
2012-03-02 17:54 - 2010-10-13 11:40 - 0008809 ____A C:\Users\MFamily\AppData\Roaming\Cabos.plist
2012-03-02 17:54 - 2010-10-13 10:14 - 0000000 ____D C:\Users\MFamily\Application Data\Cabos
2012-03-02 17:54 - 2010-10-13 10:14 - 0000000 ____D C:\Users\MFamily\AppData\Roaming\Cabos
2012-03-02 15:16 - 2011-12-30 11:54 - 0000000 ____D C:\Program Files\Malwarebytes' Anti-Malware
2012-03-02 13:36 - 2011-03-12 13:41 - 0000000 ____D C:\Program Files\Search Toolbar
2012-03-01 05:38 - 2012-03-01 05:38 - 4332332 ___RA C:\Users\MFamily\My Documents\QDATA Backup_2012-03-01_063832.mbf
2012-03-01 05:38 - 2012-03-01 05:38 - 4332332 ___RA C:\Users\MFamily\Documents\QDATA Backup_2012-03-01_063832.mbf
2012-03-01 05:38 - 2008-12-26 17:18 - 16654336 ____A C:\Users\MFamily\My Documents\QDATA.mny
2012-03-01 05:38 - 2008-12-26 17:18 - 16654336 ____A C:\Users\MFamily\Documents\QDATA.mny
2012-02-29 17:32 - 2012-02-29 17:32 - 4407914 ___RA C:\Users\MFamily\My Documents\QDATA Backup_2012-02-29_183155.mbf
2012-02-29 17:32 - 2012-02-29 17:32 - 4407914 ___RA C:\Users\MFamily\Documents\QDATA Backup_2012-02-29_183155.mbf
2012-02-29 15:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At34.job
2012-02-29 15:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At33.job
2012-02-29 09:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At22.job
2012-02-29 09:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At21.job
2012-02-28 16:26 - 2011-02-15 16:27 - 0000000 ____D C:\Program Files\Common Files\Symantec Shared
2012-02-27 14:19 - 2011-03-12 09:48 - 0000000 ____D C:\Users\MFamily\Application Data\FrostWire
2012-02-27 14:19 - 2011-03-12 09:48 - 0000000 ____D C:\Users\MFamily\AppData\Roaming\FrostWire
2012-02-27 13:50 - 2012-02-27 13:50 - 0770149 ____A C:\Users\MFamily\My Documents\01012012013120126087.pdf
2012-02-27 13:50 - 2012-02-27 13:50 - 0770149 ____A C:\Users\MFamily\Documents\01012012013120126087.pdf
2012-02-27 06:38 - 2008-12-19 21:49 - 8708096 ___RA C:\Users\Public\Documents\ESBK.mbb
2012-02-27 06:38 - 2008-12-19 21:49 - 4411392 ___RA C:\Users\Public\Documents\ESBK.mb
2012-02-26 10:36 - 2012-02-26 10:36 - 4208922 ___RA C:\Users\MFamily\My Documents\QDATA Backup_2012-02-26_113640.mbf
2012-02-26 10:36 - 2012-02-26 10:36 - 4208922 ___RA C:\Users\MFamily\Documents\QDATA Backup_2012-02-26_113640.mbf
2012-02-26 09:14 - 2012-02-26 09:14 - 0339711 ____A C:\Users\MFamily\My Documents\022320127918.pdf
2012-02-26 09:14 - 2012-02-26 09:14 - 0339711 ____A C:\Users\MFamily\Documents\022320127918.pdf
2012-02-25 17:03 - 2012-02-25 09:53 - 0000000 ____D C:\Users\MFamily\Local Settings\Vivitar Experience Image Manager
2012-02-25 17:03 - 2012-02-25 09:53 - 0000000 ____D C:\Users\MFamily\Local Settings\Application Data\Vivitar Experience Image Manager
2012-02-25 17:03 - 2012-02-25 09:53 - 0000000 ____D C:\Users\MFamily\Application Data\vlc
2012-02-25 17:03 - 2012-02-25 09:53 - 0000000 ____D C:\Users\MFamily\AppData\Roaming\vlc
2012-02-25 17:03 - 2012-02-25 09:53 - 0000000 ____D C:\Users\MFamily\AppData\Local\Vivitar Experience Image Manager
2012-02-25 09:53 - 2012-02-25 09:53 - 0001877 ____A C:\Users\MFamily\Desktop\Vivitar Experience Image Manager.lnk
2012-02-25 09:52 - 2012-02-25 09:52 - 0000000 ____D C:\Program Files\Vivitar Experience Image Manager
2012-02-25 09:52 - 2012-02-25 09:52 - 0000000 ____D C:\Program Files\ffdshow
2012-02-24 20:38 - 2008-12-19 21:39 - 0000414 ____A C:\Windows\Tasks\EasyShare Registration Task.job
2012-02-23 19:10 - 2012-02-23 19:10 - 0001887 ____A C:\Users\Public\Desktop\Adobe Reader 9.lnk
2012-02-23 19:10 - 2010-10-28 04:10 - 0000000 ____D C:\Program Files\Common Files\Adobe
2012-02-23 19:09 - 2008-12-20 13:05 - 0000000 ____D C:\Users\MFamily\Local Settings\Application Data\Adobe
2012-02-23 19:09 - 2008-12-20 13:05 - 0000000 ____D C:\Users\MFamily\Local Settings\Adobe
2012-02-23 19:09 - 2008-12-20 13:05 - 0000000 ____D C:\Users\MFamily\AppData\Local\Adobe
2012-02-21 20:07 - 2008-12-26 17:37 - 0000000 ____D C:\Program Files\Mozilla Firefox
2012-02-19 09:33 - 2012-02-19 09:33 - 0015053 ____A C:\Users\MFamily\My Documents\ING Saver ID.docx
2012-02-19 09:33 - 2012-02-19 09:33 - 0015053 ____A C:\Users\MFamily\Documents\ING Saver ID.docx
2012-02-19 09:24 - 2009-02-14 17:22 - 0000000 ____D C:\Program Files\Common Files\Java
2012-02-19 09:23 - 2012-02-19 09:24 - 0157472 ____A (Sun Microsystems, Inc.) C:\Windows\System32\javaws.exe
2012-02-19 09:23 - 2012-02-19 09:24 - 0149280 ____A (Sun Microsystems, Inc.) C:\Windows\System32\javaw.exe
2012-02-19 09:23 - 2012-02-19 09:24 - 0149280 ____A (Sun Microsystems, Inc.) C:\Windows\System32\java.exe
2012-02-19 09:23 - 2010-05-19 15:23 - 0472808 ____A (Sun Microsystems, Inc.) C:\Windows\System32\deployJava1.dll
2012-02-19 09:20 - 2011-06-15 03:36 - 0414368 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2012-02-17 05:32 - 2012-01-26 06:21 - 0001971 ____A C:\Users\Public\Desktop\Google Chrome.lnk
2012-02-17 05:26 - 2006-11-02 03:18 - 0000000 ____D C:\Windows\Microsoft.NET
2012-02-17 05:16 - 2006-11-02 04:37 - 0000000 ___RD C:\Users\Public\Recorded TV
2012-02-17 05:14 - 2012-02-06 16:31 - 0000000 ____D C:\Users\MFamily\Desktop\Baseball
2012-02-17 05:13 - 2011-10-23 18:36 - 0000000 ____D C:\Users\MFamily\Desktop\Mom's!
2012-02-17 04:41 - 2006-11-02 04:47 - 0398088 ____A C:\Windows\System32\FNTCACHE.DAT
2012-02-17 04:38 - 2010-09-08 15:36 - 0000000 ____D C:\Program Files\Microsoft Silverlight
2012-02-15 17:23 - 2006-11-02 02:24 - 52550552 ____A (Microsoft Corporation) C:\Windows\System32\mrt.exe
2012-02-09 11:11 - 2012-02-09 11:11 - 0229816 ____A C:\Users\MFamily\Downloads\hbexport (2).ofx
2012-02-09 11:11 - 2012-02-09 11:11 - 0229816 ____A C:\Users\MFamily\Downloads\hbexport (1).ofx
2012-02-06 16:38 - 2012-02-06 16:38 - 0018357 ____A C:\Users\MFamily\My Documents\LentenReflection2012.docx
2012-02-06 16:38 - 2012-02-06 16:38 - 0018357 ____A C:\Users\MFamily\Documents\LentenReflection2012.docx
2012-02-04 08:59 - 2012-02-04 08:59 - 1169013 ____A C:\Users\MFamily\Downloads\HoltAPRG_08_C26_Final (2).docx
2012-02-04 08:57 - 2012-02-04 08:57 - 1169013 ____A C:\Users\MFamily\Downloads\HoltAPRG_08_C26_Final (1).docx
2012-02-04 08:54 - 2012-02-04 08:54 - 1169013 ____A C:\Users\MFamily\Downloads\HoltAPRG_08_C26_Final.docx
2012-02-01 19:30 - 2008-12-26 17:30 - 0000000 ____D C:\Users\MFamily\My Documents\My Scans
2012-02-01 19:30 - 2008-12-26 17:30 - 0000000 ____D C:\Users\MFamily\Documents\My Scans
2012-02-01 16:36 - 2012-02-01 16:36 - 0038573 ____A C:\Users\MFamily\My Documents\october2011.zip
2012-02-01 16:36 - 2012-02-01 16:36 - 0038573 ____A C:\Users\MFamily\Documents\october2011.zip
2012-02-01 16:36 - 2012-02-01 16:36 - 0000000 ____D C:\Users\MFamily\My Documents\october2011
2012-02-01 16:36 - 2012-02-01 16:36 - 0000000 ____D C:\Users\MFamily\Documents\october2011
2012-02-01 08:45 - 2011-12-26 18:29 - 0000842 ____A C:\Users\Public\Desktop\AVG 2012.lnk
2012-01-29 12:21 - 2011-07-24 18:56 - 0000000 ____D C:\Users\MFamily\Desktop\Front Range
2012-01-29 12:18 - 2012-01-29 12:18 - 0035043 ____A C:\Users\MFamily\Downloads\ECE101ObservationIdentificationForm original.rtf
2012-01-29 12:18 - 2012-01-29 12:18 - 0035043 ____A C:\Users\MFamily\Downloads\ECE101ObservationIdentificationForm original (1).rtf
2012-01-29 12:09 - 2012-01-29 12:09 - 0051637 ____A C:\Users\MFamily\Downloads\SiteID-1.rtf
2012-01-28 09:16 - 2012-01-28 09:16 - 0770013 ____A C:\Users\MFamily\My Documents\12012011123020116087.pdf
2012-01-28 09:16 - 2012-01-28 09:16 - 0770013 ____A C:\Users\MFamily\Documents\12012011123020116087.pdf
2012-01-27 11:26 - 2012-01-27 11:25 - 3571075 ____A C:\Users\MFamily\Downloads\Lykke_Li_-_I_Know_Places_(DJSB_Remix).mp3
2012-01-26 06:31 - 2012-01-26 06:31 - 0000846 ____A C:\Users\Public\Desktop\Mozilla Firefox.lnk
2012-01-26 06:31 - 2008-12-26 17:37 - 0000000 ____D C:\Users\MFamily\Application Data\Mozilla
2012-01-26 06:31 - 2008-12-26 17:37 - 0000000 ____D C:\Users\MFamily\AppData\Roaming\Mozilla
2012-01-26 06:28 - 2012-01-26 06:21 - 0000000 ____D C:\Users\MFamily\Application Data\Real
2012-01-26 06:28 - 2012-01-26 06:21 - 0000000 ____D C:\Users\MFamily\AppData\Roaming\Real
2012-01-26 06:27 - 2012-01-26 06:27 - 0198832 ____A (RealNetworks, Inc.) C:\Windows\System32\rmoc3260.dll
2012-01-26 06:27 - 2012-01-26 06:27 - 0006656 ____A (RealNetworks, Inc.) C:\Windows\System32\pndx5016.dll
2012-01-26 06:27 - 2012-01-26 06:27 - 0005632 ____A (RealNetworks, Inc.) C:\Windows\System32\pndx5032.dll
2012-01-26 06:27 - 2012-01-26 06:27 - 0000847 ____A C:\Users\Public\Desktop\RealPlayer.lnk
2012-01-26 06:27 - 2012-01-26 06:27 - 0000000 ____D C:\Program Files\Common Files\xing shared
2012-01-26 06:27 - 2012-01-26 06:22 - 0272896 ____A (Progressive Networks) C:\Windows\System32\pncrt.dll
2012-01-26 06:27 - 2012-01-26 06:21 - 0000000 ____D C:\Program Files\Real
2012-01-26 06:23 - 2012-01-26 06:20 - 0000000 ____D C:\Users\MFamily\Local Settings\Google
2012-01-26 06:23 - 2012-01-26 06:20 - 0000000 ____D C:\Users\MFamily\Local Settings\Application Data\Google
2012-01-26 06:23 - 2012-01-26 06:20 - 0000000 ____D C:\Users\MFamily\AppData\Local\Google
2012-01-26 06:22 - 2012-01-26 06:22 - 0000000 ____D C:\Users\MFamily\Local Settings\Real
2012-01-26 06:22 - 2012-01-26 06:22 - 0000000 ____D C:\Users\MFamily\Local Settings\Application Data\Real
2012-01-26 06:22 - 2012-01-26 06:22 - 0000000 ____D C:\Users\MFamily\AppData\Local\Real
2012-01-26 06:21 - 2012-01-26 06:20 - 0000000 ____D C:\Program Files\Google
2012-01-26 06:19 - 2012-01-26 06:18 - 0507338 ____A C:\Users\MFamily\Downloads\Firefox.exe
2012-01-25 19:54 - 2008-10-17 20:03 - 0000000 ____D C:\Program Files\Microsoft Office
2012-01-17 12:45 - 2012-01-17 12:45 - 3985380 ____A C:\Users\MFamily\My Documents\5ofHeartsInvite.pdf
2012-01-17 12:45 - 2012-01-17 12:45 - 3985380 ____A C:\Users\MFamily\Documents\5ofHeartsInvite.pdf
2012-01-16 13:22 - 2011-12-12 08:39 - 0000000 ____D C:\Program Files\AVG Secure Search
2012-01-15 09:26 - 2012-01-03 16:12 - 0019439 ____A C:\Users\MFamily\My Documents\saintreportjack.docx
2012-01-15 09:26 - 2012-01-03 16:12 - 0019439 ____A C:\Users\MFamily\Documents\saintreportjack.docx
2012-01-14 18:54 - 2011-04-08 20:50 - 0000000 ____D C:\Users\MFamily\Desktop\Booster Club
2012-01-12 18:20 - 2011-03-12 09:45 - 0000000 ____D C:\Program Files\Ask.com
2012-01-12 11:52 - 2012-02-15 16:17 - 2044416 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys
2011-12-30 11:55 - 2011-12-30 11:55 - 0000906 ____A C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2011-12-30 11:54 - 2011-12-30 11:54 - 0000000 ____D C:\Users\MFamily\Application Data\Malwarebytes
2011-12-30 11:54 - 2011-12-30 11:54 - 0000000 ____D C:\Users\MFamily\AppData\Roaming\Malwarebytes
2011-12-30 11:53 - 2011-12-30 11:53 - 9852544 ____A (Malwarebytes Corporation ) C:\Users\MFamily\Downloads\mbam-setup-1.51.2.1300.exe
2011-12-30 11:50 - 2011-12-30 11:24 - 1008120 ____A C:\Users\MFamily\Downloads\rkill.com
2011-12-30 11:33 - 2011-12-30 09:46 - 0014920 __ASH C:\Users\MFamily\Local Settings\Application Data\81136517y4m8
2011-12-30 11:33 - 2011-12-30 09:46 - 0014920 __ASH C:\Users\MFamily\Local Settings\81136517y4m8
2011-12-30 11:33 - 2011-12-30 09:46 - 0014920 __ASH C:\Users\MFamily\AppData\Local\81136517y4m8
2011-12-30 09:54 - 2011-01-01 15:53 - 6565525 ____A C:\Users\MFamily\Downloads\Timberland - Bounce (Feat.Dr.Dre, Missy & Justin Timberlake).mp3
2011-12-30 09:54 - 2011-01-01 15:52 - 2912523 ____A C:\Users\MFamily\Downloads\Timbaland ft. Keri Hilson - I Like You Just The Way You Are.mp3
2011-12-30 09:54 - 2010-10-27 13:04 - 6595757 ____A C:\Users\MFamily\Downloads\Willow Smith - Whip My Hair (Feat. Nicki Minaj) (Remix) - 321HipHop.com.mp3
2011-12-30 09:53 - 2010-12-20 09:53 - 8285195 ____A C:\Users\MFamily\Downloads\The Bloody Beetroots feat. Steve Aoki - Warp 1.9.mp3
2011-12-30 09:53 - 2010-12-19 17:13 - 8285195 ____A C:\Users\MFamily\Downloads\The Bloody Beetroots feat. Steve Aoki - Warp 1.9(1).mp3
2011-12-30 09:53 - 2010-11-20 14:18 - 6519051 ____A C:\Users\MFamily\Downloads\The Ready Set - Love Like Woe - NewJams.net.mp3
2011-12-30 09:53 - 2010-11-06 20:03 - 5049084 ____A C:\Users\MFamily\Downloads\The Black Keys - Tighten Up WR.mp3
2011-12-30 09:52 - 2011-02-23 15:13 - 5114800 ____A C:\Users\MFamily\Downloads\The Black Keys - Brothers - 01 - Everlasting Light.mp3
2011-12-30 09:52 - 2011-01-01 15:45 - 7874809 ____A C:\Users\MFamily\Downloads\Tech N9ne-Sex out South.mp3
2011-12-30 09:44 - 2011-12-30 09:44 - 0012901 __ASH C:\Users\MFamily\Downloads\AlbumArt_{B16C818D-E8E3-4B9B-9645-0B417B7B1215}_Large.jpg
2011-12-30 09:44 - 2011-12-30 09:44 - 0003160 __ASH C:\Users\MFamily\Downloads\AlbumArt_{B16C818D-E8E3-4B9B-9645-0B417B7B1215}_Small.jpg
2011-12-30 09:44 - 2011-12-14 16:18 - 0012901 __ASH C:\Users\MFamily\Downloads\Folder.jpg
2011-12-30 09:44 - 2011-12-14 16:18 - 0003160 __ASH C:\Users\MFamily\Downloads\AlbumArtSmall.jpg
2011-12-30 09:43 - 2011-12-14 16:19 - 0007443 __ASH C:\Users\MFamily\Downloads\AlbumArt_{CE3D377F-3069-4C47-90AD-43020456D2E0}_Large.jpg
2011-12-30 09:42 - 2011-12-30 09:42 - 0006401 __ASH C:\Users\MFamily\Downloads\AlbumArt_{7A051CB0-F684-44C2-8C30-D5C996B5101F}_Large.jpg
2011-12-30 09:42 - 2011-12-30 09:42 - 0001903 __ASH C:\Users\MFamily\Downloads\AlbumArt_{7A051CB0-F684-44C2-8C30-D5C996B5101F}_Small.jpg
2011-12-30 09:42 - 2011-12-14 16:19 - 0002109 __ASH C:\Users\MFamily\Downloads\AlbumArt_{CE3D377F-3069-4C47-90AD-43020456D2E0}_Small.jpg
2011-12-30 09:41 - 2011-12-30 09:41 - 0009916 __ASH C:\Users\MFamily\Downloads\AlbumArt_{F7747CB8-EB18-4A74-8512-39C5BEBDC52D}_Large.jpg
2011-12-30 09:41 - 2011-12-30 09:41 - 0007795 __ASH C:\Users\MFamily\Downloads\AlbumArt_{EF1E396C-78B5-4066-B93A-70E065AEFBFC}_Large.jpg
2011-12-30 09:41 - 2011-12-30 09:41 - 0002366 __ASH C:\Users\MFamily\Downloads\AlbumArt_{EF1E396C-78B5-4066-B93A-70E065AEFBFC}_Small.jpg
2011-12-30 09:41 - 2011-02-09 20:51 - 4890624 ____A C:\Users\MFamily\Downloads\Snow Patrol - Set The Fire To The Third Bar.mp3
2011-12-30 09:41 - 2010-12-26 14:16 - 6018477 ____A C:\Users\MFamily\Downloads\Such Great Heights.mp3
2011-12-30 09:41 - 2010-10-14 09:22 - 6658176 ____A C:\Users\MFamily\Downloads\Step Up Soundtrack - 04 - Petey Pablo - Show Me The Money.mp3
2011-12-30 09:40 - 2011-12-30 09:41 - 0002561 __ASH C:\Users\MFamily\Downloads\AlbumArt_{F7747CB8-EB18-4A74-8512-39C5BEBDC52D}_Small.jpg
2011-12-30 09:40 - 2011-12-30 09:40 - 0010177 __ASH C:\Users\MFamily\Downloads\AlbumArt_{F14BCFD8-62E5-4020-B735-AADE5593B58A}_Large.jpg
2011-12-30 09:40 - 2011-02-11 15:47 - 5458800 ____A C:\Users\MFamily\Downloads\Skillet - Collide.mp3
2011-12-30 09:40 - 2010-11-30 20:44 - 2002320 ____A C:\Users\MFamily\Downloads\Rob Thomas - Someday.mp3
2011-12-30 09:40 - 2010-11-30 20:40 - 5980116 ____A C:\Users\MFamily\Downloads\Rob Thomas - Streetcorner Symphony.mp3
2011-12-30 09:39 - 2011-12-30 09:40 - 0002570 __ASH C:\Users\MFamily\Downloads\AlbumArt_{F14BCFD8-62E5-4020-B735-AADE5593B58A}_Small.jpg
2011-12-30 09:39 - 2011-12-30 09:39 - 0007215 __ASH C:\Users\MFamily\Downloads\AlbumArt_{E2CE659C-681B-4D0A-8BA0-510D7E5345D3}_Large.jpg
2011-12-30 09:39 - 2011-01-25 15:28 - 4142237 ____A C:\Users\MFamily\Downloads\Rihanna - Umbrella ft. Jay-Z.mp3
2011-12-30 09:39 - 2011-01-01 15:46 - 4894440 ____A C:\Users\MFamily\Downloads\Portishead - Glory Box.mp3
2011-12-30 09:39 - 2010-12-20 09:56 - 5464024 ____A C:\Users\MFamily\Downloads\Ratatat - Loud Pipes.mp3
2011-12-30 09:39 - 2010-11-06 19:53 - 6595900 ____A C:\Users\MFamily\Downloads\Rihanna-Whats_My_Name_(Feat_Drake).mp3
2011-12-30 09:38 - 2011-12-30 09:39 - 0001925 __ASH C:\Users\MFamily\Downloads\AlbumArt_{E2CE659C-681B-4D0A-8BA0-510D7E5345D3}_Small.jpg
2011-12-30 09:38 - 2011-01-23 19:10 - 6253638 ____A C:\Users\MFamily\Downloads\Passion Pit - Moth's Wings.mp3
2011-12-30 09:38 - 2011-01-16 12:34 - 2632880 ____A C:\Users\MFamily\Downloads\Paramore - Misery Business(1).mp3
2011-12-30 09:38 - 2011-01-01 15:44 - 7751827 ____A C:\Users\MFamily\Downloads\Newcleus- Jam On It.mp3
2011-12-30 09:38 - 2010-12-19 17:13 - 2840955 ____A C:\Users\MFamily\Downloads\Owl City - Hello Seattle.mp3
2011-12-30 09:38 - 2010-12-18 12:48 - 3540073 ____A C:\Users\MFamily\Downloads\Phoenix - Lasso.mp3
2011-12-30 09:38 - 2010-11-06 19:52 - 8209430 ____A C:\Users\MFamily\Downloads\P!nk (Pink) - Raise Your Glass [2010-Single][MJN].mp3
2011-12-30 09:37 - 2011-12-30 09:37 - 0012229 __ASH C:\Users\MFamily\Downloads\AlbumArt_{27F99066-247E-4A24-B206-F1E0D0AFA5C1}_Large.jpg
2011-12-30 09:37 - 2011-12-30 09:37 - 0002877 __ASH C:\Users\MFamily\Downloads\AlbumArt_{27F99066-247E-4A24-B206-F1E0D0AFA5C1}_Small.jpg
2011-12-30 09:37 - 2011-02-23 15:30 - 3629533 ____A C:\Users\MFamily\Downloads\New Boyz - Back Seat (feat. Dev) (Prod By The Cataracs).mp3
2011-12-30 09:36 - 2011-12-30 09:37 - 0014156 __ASH C:\Users\MFamily\Downloads\AlbumArt_{D1006935-0869-4E78-9904-29B295BFD87F}_Large.jpg
2011-12-30 09:36 - 2011-12-30 09:37 - 0003338 __ASH C:\Users\MFamily\Downloads\AlbumArt_{D1006935-0869-4E78-9904-29B295BFD87F}_Small.jpg
2011-12-30 09:36 - 2011-12-30 08:29 - 0012374 __ASH C:\Users\MFamily\Downloads\AlbumArt_{2FE16BBC-27AF-437F-AC7A-482F64BB0F6C}_Large.jpg
2011-12-30 09:36 - 2011-12-30 08:29 - 0002909 __ASH C:\Users\MFamily\Downloads\AlbumArt_{2FE16BBC-27AF-437F-AC7A-482F64BB0F6C}_Small.jpg
2011-12-30 09:35 - 2011-12-30 09:35 - 0001303 __ASH C:\Users\MFamily\Downloads\AlbumArt_{14C49D1B-9A25-4EC2-BA1F-009C5A9EAA7C}_Large.jpg
2011-12-30 09:35 - 2011-12-30 09:35 - 0000727 __ASH C:\Users\MFamily\Downloads\AlbumArt_{14C49D1B-9A25-4EC2-BA1F-009C5A9EAA7C}_Small.jpg
2011-12-30 09:34 - 2011-12-30 09:34 - 0006627 __ASH C:\Users\MFamily\Downloads\AlbumArt_{BE83396C-E517-4C4A-AE98-BBBFFBA17D02}_Large.jpg
2011-12-30 09:34 - 2011-12-30 09:34 - 0001784 __ASH C:\Users\MFamily\Downloads\AlbumArt_{BE83396C-E517-4C4A-AE98-BBBFFBA17D02}_Small.jpg
2011-12-30 09:34 - 2011-12-30 08:29 - 0006082 __ASH C:\Users\MFamily\Downloads\AlbumArt_{D751BF5E-5370-4342-9D78-06D36039D003}_Large.jpg
2011-12-30 09:34 - 2011-12-30 08:29 - 0001951 __ASH C:\Users\MFamily\Downloads\AlbumArt_{D751BF5E-5370-4342-9D78-06D36039D003}_Small.jpg
2011-12-30 09:32 - 2011-12-30 09:32 - 0006921 __ASH C:\Users\MFamily\Downloads\AlbumArt_{866F7EC7-163A-4791-BB41-8081A3C9DF2B}_Large.jpg
2011-12-30 09:32 - 2011-12-30 09:32 - 0002043 __ASH C:\Users\MFamily\Downloads\AlbumArt_{866F7EC7-163A-4791-BB41-8081A3C9DF2B}_Small.jpg
2011-12-30 09:32 - 2011-12-30 08:36 - 0008249 __ASH C:\Users\MFamily\Downloads\AlbumArt_{09A96546-3621-4EC9-A2BC-2B0C041777B0}_Large.jpg
2011-12-30 09:32 - 2011-12-30 08:36 - 0002340 __ASH C:\Users\MFamily\Downloads\AlbumArt_{09A96546-3621-4EC9-A2BC-2B0C041777B0}_Small.jpg
2011-12-30 09:31 - 2011-12-30 09:32 - 0009537 __ASH C:\Users\MFamily\Downloads\AlbumArt_{03EB957C-E46A-4F58-864E-A5645AB70D9D}_Large.jpg
2011-12-30 09:31 - 2011-12-30 09:32 - 0002468 __ASH C:\Users\MFamily\Downloads\AlbumArt_{03EB957C-E46A-4F58-864E-A5645AB70D9D}_Small.jpg
2011-12-30 09:30 - 2011-12-30 09:30 - 0008960 __ASH C:\Users\MFamily\Downloads\AlbumArt_{A95FD52B-1E8C-4013-9B9F-100474E5D8CF}_Large.jpg
2011-12-30 09:30 - 2011-12-30 09:30 - 0002258 __ASH C:\Users\MFamily\Downloads\AlbumArt_{A95FD52B-1E8C-4013-9B9F-100474E5D8CF}_Small.jpg
2011-12-30 09:29 - 2011-12-30 09:29 - 0019950 __ASH C:\Users\MFamily\Downloads\AlbumArt_{F8612E2A-C5FB-41D1-B4CA-45108CBACD0B}_Large.jpg
2011-12-30 09:29 - 2011-12-30 09:29 - 0008576 __ASH C:\Users\MFamily\Downloads\AlbumArt_{1BB812D1-5161-4A21-9581-92C1BDF93052}_Large.jpg
2011-12-30 09:29 - 2011-12-30 09:29 - 0007903 __ASH C:\Users\MFamily\Downloads\AlbumArt_{B9126DA6-7754-47F8-AEB2-27AA21795E92}_Large.jpg
2011-12-30 09:29 - 2011-12-30 09:29 - 0003575 __ASH C:\Users\MFamily\Downloads\AlbumArt_{F8612E2A-C5FB-41D1-B4CA-45108CBACD0B}_Small.jpg
2011-12-30 09:29 - 2011-12-30 09:29 - 0002523 __ASH C:\Users\MFamily\Downloads\AlbumArt_{1BB812D1-5161-4A21-9581-92C1BDF93052}_Small.jpg
2011-12-30 09:29 - 2011-12-30 09:29 - 0001406 __ASH C:\Users\MFamily\Downloads\AlbumArt_{B9126DA6-7754-47F8-AEB2-27AA21795E92}_Small.jpg
2011-12-30 09:28 - 2011-12-30 09:28 - 0009888 __ASH C:\Users\MFamily\Downloads\AlbumArt_{4AD6704F-72D6-40F7-B23D-6C83823E85A6}_Large.jpg
2011-12-30 09:28 - 2011-12-30 09:28 - 0009525 __ASH C:\Users\MFamily\Downloads\AlbumArt_{72234A8D-F919-4B64-922E-BA6860130DA5}_Large.jpg
2011-12-30 09:28 - 2011-12-30 09:28 - 0002633 __ASH C:\Users\MFamily\Downloads\AlbumArt_{4AD6704F-72D6-40F7-B23D-6C83823E85A6}_Small.jpg
2011-12-30 09:28 - 2011-12-30 09:28 - 0002612 __ASH C:\Users\MFamily\Downloads\AlbumArt_{72234A8D-F919-4B64-922E-BA6860130DA5}_Small.jpg
2011-12-30 09:26 - 2011-12-30 09:26 - 0017018 __ASH C:\Users\MFamily\Downloads\AlbumArt_{E3CA0CDC-F6D5-4A0C-987D-F3D09F6BF2E9}_Large.jpg
2011-12-30 09:26 - 2011-12-30 09:26 - 0003365 __ASH C:\Users\MFamily\Downloads\AlbumArt_{E3CA0CDC-F6D5-4A0C-987D-F3D09F6BF2E9}_Small.jpg
2011-12-30 09:26 - 2011-03-11 15:29 - 8925533 ____A C:\Users\MFamily\Downloads\Mike Posner ft Lil Wayne - Bow Chicka Wow Wow Rem - HipHopEarly t3409.mp3
2011-12-30 09:26 - 2011-02-23 15:32 - 4941877 ____A C:\Users\MFamily\Downloads\Metro Station - Shake it [35F13BAE].mp3
2011-12-30 09:26 - 2011-01-23 18:56 - 2330584 ____A C:\Users\MFamily\Downloads\Never Shout Never- Trouble.mp3
2011-12-30 09:26 - 2010-12-18 13:07 - 9106697 ____A C:\Users\MFamily\Downloads\Mann Feat. 50 Cent - Buzzin (Remix).mp3
2011-12-30 09:26 - 2010-11-20 14:13 - 3868658 ____A C:\Users\MFamily\Downloads\Moby - Porcelain.mp3
2011-12-30 09:25 - 2011-12-30 09:25 - 0011696 __ASH C:\Users\MFamily\Downloads\AlbumArt_{221A2017-FB00-4D98-BEE8-3F7B982DE5C3}_Large.jpg
2011-12-30 09:25 - 2011-12-30 09:25 - 0003089 __ASH C:\Users\MFamily\Downloads\AlbumArt_{221A2017-FB00-4D98-BEE8-3F7B982DE5C3}_Small.jpg
2011-12-30 09:25 - 2010-12-21 08:21 - 5329949 ____A C:\Users\MFamily\Downloads\local natives - 01 - wide eyes(3).mp3
2011-12-30 09:25 - 2010-12-19 17:06 - 8023348 ____A C:\Users\MFamily\Downloads\Lil Jon ft. Ying Yang Twins - Get Low.mp3
2011-12-30 09:25 - 2010-11-20 10:04 - 4911669 ____A C:\Users\MFamily\Downloads\M.I.A. - Paper Planes.mp3
2011-12-30 09:25 - 2010-10-27 13:03 - 8234725 ____A C:\Users\MFamily\Downloads\Ke$ha - We R Who We R.mp3
2011-12-30 09:24 - 2011-12-30 09:24 - 0003479 __ASH C:\Users\MFamily\Downloads\AlbumArt_{A37ABF42-6049-4A28-B33C-A72BAA2B88A1}_Large.jpg
2011-12-30 09:24 - 2011-12-30 09:24 - 0001344 __ASH C:\Users\MFamily\Downloads\AlbumArt_{A37ABF42-6049-4A28-B33C-A72BAA2B88A1}_Small.jpg
2011-12-30 09:24 - 2011-01-23 19:16 - 8890804 ____A C:\Users\MFamily\Downloads\Justin Timberlake - LoveStoned.mp3
2011-12-30 09:23 - 2011-12-30 09:23 - 0007944 __ASH C:\Users\MFamily\Downloads\AlbumArt_{2BACE875-429D-43EB-90CF-155C56EBA2A2}_Large.jpg
2011-12-30 09:23 - 2011-12-30 09:23 - 0002179 __ASH C:\Users\MFamily\Downloads\AlbumArt_{2BACE875-429D-43EB-90CF-155C56EBA2A2}_Small.jpg
2011-12-30 09:22 - 2011-12-30 09:23 - 0009143 __ASH C:\Users\MFamily\Downloads\AlbumArt_{5AF53A47-ABD2-4F07-AACC-4090C359E79D}_Large.jpg
2011-12-30 09:22 - 2011-12-30 09:23 - 0002486 __ASH C:\Users\MFamily\Downloads\AlbumArt_{5AF53A47-ABD2-4F07-AACC-4090C359E79D}_Small.jpg
2011-12-30 09:21 - 2011-12-30 09:21 - 0007169 __ASH C:\Users\MFamily\Downloads\AlbumArt_{85F25970-5BE0-4FF7-ACEC-C4C8B9AB44B4}_Large.jpg
2011-12-30 09:21 - 2011-12-30 09:21 - 0001859 __ASH C:\Users\MFamily\Downloads\AlbumArt_{85F25970-5BE0-4FF7-ACEC-C4C8B9AB44B4}_Small.jpg
2011-12-30 09:20 - 2011-12-30 09:20 - 0014743 __ASH C:\Users\MFamily\Downloads\AlbumArt_{F975520E-1239-40C8-B654-5EA3916B4570}_Large.jpg
2011-12-30 09:20 - 2011-12-30 09:20 - 0003023 __ASH C:\Users\MFamily\Downloads\AlbumArt_{F975520E-1239-40C8-B654-5EA3916B4570}_Small.jpg
2011-12-30 09:19 - 2011-12-30 09:19 - 0011577 __ASH C:\Users\MFamily\Downloads\AlbumArt_{176413FA-8ACE-42BE-8879-94053342F4F1}_Large.jpg
2011-12-30 09:18 - 2011-12-30 09:19 - 0002619 __ASH C:\Users\MFamily\Downloads\AlbumArt_{176413FA-8ACE-42BE-8879-94053342F4F1}_Small.jpg
2011-12-30 09:15 - 2011-12-30 08:29 - 0012893 __ASH C:\Users\MFamily\Downloads\AlbumArt_{05EA33E2-D701-4096-B648-DAF1C52E8D4E}_Large.jpg
2011-12-30 09:15 - 2011-12-30 08:29 - 0003076 __ASH C:\Users\MFamily\Downloads\AlbumArt_{05EA33E2-D701-4096-B648-DAF1C52E8D4E}_Small.jpg
2011-12-30 09:13 - 2011-02-17 10:56 - 6149490 ____A C:\Users\MFamily\Downloads\John Mayer - Dreaming with a Broken Heart.mp3
2011-12-30 09:13 - 2011-02-11 15:48 - 5397880 ____A C:\Users\MFamily\Downloads\Jay Sean - Hit The Lights (Ft. Lil Wayne) (Tagged) {uHitz.com}.mp3
2011-12-30 09:13 - 2011-02-11 15:48 - 3181643 ____A C:\Users\MFamily\Downloads\John Mayer - Waiting On The World To Change.mp3
2011-12-30 09:13 - 2011-02-11 15:46 - 3988671 ____A C:\Users\MFamily\Downloads\Howie Day- Collide.mp3
2011-12-30 09:12 - 2011-12-30 09:12 - 0007313 __ASH C:\Users\MFamily\Downloads\AlbumArt_{D6D6FADC-B55A-4C8B-A639-5F5D428D9770}_Large.jpg
2011-12-30 09:12 - 2011-01-25 15:25 - 3849574 ____A C:\Users\MFamily\Downloads\Glee - 4 Minutes.mp3
2011-12-30 09:12 - 2010-12-03 15:23 - 5026444 ____A C:\Users\MFamily\Downloads\Florence & The Machine - Dog Days Are Over.mp3
2011-12-30 09:11 - 2011-12-30 09:12 - 0002198 __ASH C:\Users\MFamily\Downloads\AlbumArt_{D6D6FADC-B55A-4C8B-A639-5F5D428D9770}_Small.jpg
2011-12-30 09:11 - 2011-01-23 19:03 - 4308992 ____A C:\Users\MFamily\Downloads\Fleetwood Mac - The Chain.mp3
2011-12-30 09:10 - 2011-12-30 08:28 - 0004084 __ASH C:\Users\MFamily\Downloads\AlbumArt_{D6CCF8DC-ECAD-46C7-B1DF-EB9DB71FEB5A}_Large.jpg
2011-12-30 09:10 - 2011-12-30 08:28 - 0001452 __ASH C:\Users\MFamily\Downloads\AlbumArt_{D6CCF8DC-ECAD-46C7-B1DF-EB9DB71FEB5A}_Small.jpg
2011-12-30 09:10 - 2010-11-25 19:05 - 9246286 ____A C:\Users\MFamily\Downloads\Enrique Iglesias Feat. Ludacris - Tonight (Radio Rip) ( 2o1o ) [ www.MzHipHop.com ].mp3
2011-12-30 09:09 - 2011-02-09 20:38 - 10965553 ____A C:\Users\MFamily\Downloads\Emalkay - When I Look At You.mp3
2011-12-30 09:09 - 2010-12-18 13:13 - 4705523 ____A C:\Users\MFamily\Downloads\Eminem - Without Me.mp3
2011-12-30 09:08 - 2011-12-30 09:08 - 0006922 __ASH C:\Users\MFamily\Downloads\AlbumArt_{A52B35D7-FFCC-4FD3-98F3-70C3AA805A02}_Large.jpg
2011-12-30 09:08 - 2011-12-30 09:08 - 0002274 __ASH C:\Users\MFamily\Downloads\AlbumArt_{A52B35D7-FFCC-4FD3-98F3-70C3AA805A02}_Small.jpg
2011-12-30 09:06 - 2011-12-30 09:06 - 0008399 __ASH C:\Users\MFamily\Downloads\AlbumArt_{203FEB22-9BD3-4198-8B8F-35C78188406D}_Large.jpg
2011-12-30 09:06 - 2011-12-30 09:06 - 0002205 __ASH C:\Users\MFamily\Downloads\AlbumArt_{203FEB22-9BD3-4198-8B8F-35C78188406D}_Small.jpg
2011-12-30 09:06 - 2011-02-09 20:34 - 4638680 ____A C:\Users\MFamily\Downloads\Colbie Caillat - I Do.mp3
2011-12-30 09:05 - 2011-12-30 09:05 - 0011119 __ASH C:\Users\MFamily\Downloads\AlbumArt_{8449F55C-EC6E-4A9E-A146-C4735D1E5555}_Large.jpg
2011-12-30 09:05 - 2011-12-30 09:05 - 0002445 __ASH C:\Users\MFamily\Downloads\AlbumArt_{8449F55C-EC6E-4A9E-A146-C4735D1E5555}_Small.jpg
2011-12-30 09:04 - 2011-12-30 09:04 - 0012701 __ASH C:\Users\MFamily\Downloads\AlbumArt_{04156DA7-F118-4EA0-BD3A-5F6F4071033F}_Large.jpg
2011-12-30 09:04 - 2011-12-30 09:04 - 0009632 __ASH C:\Users\MFamily\Downloads\AlbumArt_{4AB8827D-EA0E-4A2E-B8B2-77BE178BEEBA}_Large.jpg
2011-12-30 09:04 - 2011-12-30 09:04 - 0002977 __ASH C:\Users\MFamily\Downloads\AlbumArt_{04156DA7-F118-4EA0-BD3A-5F6F4071033F}_Small.jpg
2011-12-30 09:03 - 2011-12-30 09:04 - 0002629 __ASH C:\Users\MFamily\Downloads\AlbumArt_{4AB8827D-EA0E-4A2E-B8B2-77BE178BEEBA}_Small.jpg
2011-12-30 09:03 - 2011-12-30 09:03 - 0014743 __ASH C:\Users\MFamily\Downloads\AlbumArt_{89465C07-C7B0-4C58-B10B-97A64742E4F2}_Large.jpg
2011-12-30 09:03 - 2011-12-30 09:03 - 0003023 __ASH C:\Users\MFamily\Downloads\AlbumArt_{89465C07-C7B0-4C58-B10B-97A64742E4F2}_Small.jpg
2011-12-30 09:02 - 2011-12-14 16:41 - 0011134 __ASH C:\Users\MFamily\Downloads\AlbumArt_{EBF9A281-2212-4F27-BA5D-93C804A7E816}_Large.jpg
2011-12-30 09:02 - 2011-12-14 16:41 - 0002706 __ASH C:\Users\MFamily\Downloads\AlbumArt_{EBF9A281-2212-4F27-BA5D-93C804A7E816}_Small.jpg
2011-12-30 09:01 - 2011-12-30 09:01 - 0008472 __ASH C:\Users\MFamily\Downloads\AlbumArt_{0506735A-0782-43AF-83D4-183D77BDE75E}_Large.jpg
2011-12-30 09:01 - 2011-12-30 09:01 - 0002611 __ASH C:\Users\MFamily\Downloads\AlbumArt_{0506735A-0782-43AF-83D4-183D77BDE75E}_Small.jpg
2011-12-30 09:01 - 2011-01-09 13:33 - 9717507 ____A C:\Users\MFamily\Downloads\Chris Brown - Yeah 3X.mp3
2011-12-30 09:01 - 2010-11-30 20:45 - 5763088 ____A C:\Users\MFamily\Downloads\Carlos Santana & Rob Thomas - Smooth.mp3
2011-12-30 09:00 - 2011-02-11 15:55 - 3231747 ____A C:\Users\MFamily\Downloads\50 Cent - Outta Control.mp3
2011-12-30 09:00 - 2011-02-09 20:35 - 9195740 ____A C:\Users\MFamily\Downloads\Adele - Rolling In The Deep.mp3
2011-12-30 09:00 - 2011-01-16 12:35 - 9232929 ____A C:\Users\MFamily\Downloads\Britney Spears - Hold It Against Me [2011-Single][MJN] [89D212D8].mp3
2011-12-30 09:00 - 2010-11-25 19:05 - 7442912 ____A C:\Users\MFamily\Downloads\Black Eyed Peas - The Time (The Dirty Bit).mp3
2011-12-30 08:59 - 2011-02-23 15:14 - 7635710 ____A C:\Users\MFamily\Downloads\11. Adele - Someone Like You.mp3
2011-12-30 08:59 - 2011-02-11 15:57 - 9197904 ____A C:\Users\MFamily\Downloads\12-kid cudi-make her say (ft. kanye west & common).mp3
2011-12-30 08:59 - 2011-02-09 20:32 - 6843883 ____A C:\Users\MFamily\Downloads\106 - Mumford And Sons - The Cave.mp3
2011-12-30 08:59 - 2010-12-18 13:13 - 10022913 ____A C:\Users\MFamily\Downloads\11-Lil Wayne Ft. Nicki Minaj-Knockout.mp3
2011-12-30 08:59 - 2010-11-21 11:50 - 11233741 ____A C:\Users\MFamily\Downloads\114 Black Eyed Peas - One Tribe.mp3
2011-12-30 08:58 - 2011-03-11 15:28 - 5579031 ____A C:\Users\MFamily\Downloads\06-bruno_mars-marry_you.mp3
2011-12-30 08:58 - 2011-02-17 11:00 - 10318791 ____A C:\Users\MFamily\Downloads\05-White Blank Page.mp3
2011-12-30 08:58 - 2011-02-09 20:33 - 6218443 ____A C:\Users\MFamily\Downloads\09. Count On Me.mp3
2011-12-30 08:58 - 2010-12-15 13:14 - 7441592 ____A C:\Users\MFamily\Downloads\05-T.I. - That's All She Wrote Ft. Eminem (Produced By Dr. Luke)-RGF.mp3
2011-12-30 08:56 - 2011-12-30 08:56 - 0011446 __ASH C:\Users\MFamily\Downloads\AlbumArt_{97CE01D2-E860-4C14-904D-0E1243338B26}_Large.jpg
2011-12-30 08:56 - 2011-12-30 08:56 - 0011070 __ASH C:\Users\MFamily\Downloads\AlbumArt_{E9603941-A532-4671-AC76-5CC01067EA85}_Large.jpg
2011-12-30 08:56 - 2011-12-30 08:56 - 0002932 __ASH C:\Users\MFamily\Downloads\AlbumArt_{E9603941-A532-4671-AC76-5CC01067EA85}_Small.jpg
2011-12-30 08:55 - 2011-12-30 08:56 - 0003005 __ASH C:\Users\MFamily\Downloads\AlbumArt_{97CE01D2-E860-4C14-904D-0E1243338B26}_Small.jpg
2011-12-30 08:52 - 2011-12-30 08:52 - 0008786 __ASH C:\Users\MFamily\Downloads\AlbumArt_{DB21C491-F240-47E1-9068-453AA236D0B8}_Large.jpg
2011-12-30 08:52 - 2011-12-30 08:52 - 0002282 __ASH C:\Users\MFamily\Downloads\AlbumArt_{DB21C491-F240-47E1-9068-453AA236D0B8}_Small.jpg
2011-12-30 08:49 - 2011-12-30 08:49 - 0006195 __ASH C:\Users\MFamily\Downloads\AlbumArt_{A6972968-704B-4DA4-8386-D60CF8B7AC99}_Large.jpg
2011-12-30 08:49 - 2011-12-30 08:49 - 0001974 __ASH C:\Users\MFamily\Downloads\AlbumArt_{A6972968-704B-4DA4-8386-D60CF8B7AC99}_Small.jpg
2011-12-30 08:47 - 2011-12-30 08:47 - 0005012 __ASH C:\Users\MFamily\Downloads\AlbumArt_{98A6EB4E-6602-47B8-A768-A04776436E71}_Large.jpg
2011-12-30 08:47 - 2011-12-30 08:47 - 0001790 __ASH C:\Users\MFamily\Downloads\AlbumArt_{98A6EB4E-6602-47B8-A768-A04776436E71}_Small.jpg
2011-12-30 08:46 - 2011-12-30 08:46 - 0012506 __ASH C:\Users\MFamily\Downloads\AlbumArt_{9598667B-F31D-4CD9-8BAD-89765EFE59EC}_Large.jpg
2011-12-30 08:46 - 2011-12-30 08:46 - 0002955 __ASH C:\Users\MFamily\Downloads\AlbumArt_{9598667B-F31D-4CD9-8BAD-89765EFE59EC}_Small.jpg
2011-12-30 08:44 - 2011-12-30 08:44 - 0009891 __ASH C:\Users\MFamily\Downloads\AlbumArt_{6F7F79EF-89DD-443F-839B-71B7CB96D158}_Large.jpg
2011-12-30 08:44 - 2011-12-30 08:44 - 0002376 __ASH C:\Users\MFamily\Downloads\AlbumArt_{6F7F79EF-89DD-443F-839B-71B7CB96D158}_Small.jpg
2011-12-30 08:44 - 2011-12-14 16:41 - 0009295 __ASH C:\Users\MFamily\Downloads\AlbumArt_{CC6CA72E-BFB8-4162-919D-D011E9EBA6F1}_Large.jpg
2011-12-30 08:44 - 2011-12-14 16:41 - 0002414 __ASH C:\Users\MFamily\Downloads\AlbumArt_{CC6CA72E-BFB8-4162-919D-D011E9EBA6F1}_Small.jpg
2011-12-30 08:43 - 2011-12-30 08:43 - 0006342 __ASH C:\Users\MFamily\Downloads\AlbumArt_{1FC34C5D-8CE5-4843-93F6-AF1C0532C0A6}_Large.jpg
2011-12-30 08:43 - 2011-12-30 08:43 - 0001998 __ASH C:\Users\MFamily\Downloads\AlbumArt_{1FC34C5D-8CE5-4843-93F6-AF1C0532C0A6}_Small.jpg
2011-12-30 08:43 - 2011-12-30 08:31 - 0011783 __ASH C:\Users\MFamily\Downloads\AlbumArt_{D6F09626-29C9-45CE-9F65-53D86C7071E1}_Large.jpg
2011-12-30 08:43 - 2011-12-30 08:31 - 0002752 __ASH C:\Users\MFamily\Downloads\AlbumArt_{D6F09626-29C9-45CE-9F65-53D86C7071E1}_Small.jpg
2011-12-30 08:42 - 2011-12-30 08:42 - 0004939 __ASH C:\Users\MFamily\Downloads\AlbumArt_{ADAF66C3-3AB3-423D-B06B-1CA502E82BCB}_Large.jpg
2011-12-30 08:42 - 2011-12-30 08:42 - 0001727 __ASH C:\Users\MFamily\Downloads\AlbumArt_{ADAF66C3-3AB3-423D-B06B-1CA502E82BCB}_Small.jpg
2011-12-30 08:41 - 2011-12-30 08:42 - 0006316 __ASH C:\Users\MFamily\Downloads\AlbumArt_{5329031C-6611-4BB4-AE12-E7E7E6DF4A95}_Large.jpg
2011-12-30 08:41 - 2011-12-30 08:42 - 0002058 __ASH C:\Users\MFamily\Downloads\AlbumArt_{5329031C-6611-4BB4-AE12-E7E7E6DF4A95}_Small.jpg
2011-12-30 08:41 - 2011-02-11 15:52 - 7970503 ____A C:\Users\MFamily\Downloads\La Roux - I'm Not Your Toy.mp3
2011-12-30 08:41 - 2011-01-23 19:03 - 5493248 ____A C:\Users\MFamily\Downloads\Pink - Funhouse - 12 - Glitter In The Air.mp3
2011-12-30 08:41 - 2010-12-19 17:14 - 9967372 ____A C:\Users\MFamily\Downloads\Lil Wayne ft. Nicki Minaj - KnockOut(1).mp3
2011-12-30 08:41 - 2010-12-19 17:06 - 9967372 ____A C:\Users\MFamily\Downloads\Lil Wayne ft. Nicki Minaj - KnockOut.mp3
2011-12-30 08:40 - 2011-12-30 08:40 - 0010118 __ASH C:\Users\MFamily\Downloads\AlbumArt_{AB25B4E9-0A32-4835-B18A-BE56FD634115}_Large.jpg
2011-12-30 08:40 - 2011-12-30 08:40 - 0003847 __ASH C:\Users\MFamily\Downloads\AlbumArt_{914FA47C-71E8-47C9-B6A9-A22F9DD3807A}_Large.jpg
2011-12-30 08:40 - 2011-12-30 08:40 - 0002497 __ASH C:\Users\MFamily\Downloads\AlbumArt_{AB25B4E9-0A32-4835-B18A-BE56FD634115}_Small.jpg
2011-12-30 08:40 - 2011-12-30 08:40 - 0001287 __ASH C:\Users\MFamily\Downloads\AlbumArt_{914FA47C-71E8-47C9-B6A9-A22F9DD3807A}_Small.jpg
2011-12-30 08:40 - 2011-02-11 16:11 - 3967439 ____A C:\Users\MFamily\Downloads\02 Swedish House Mafia - Miami 2 Ibiza (Instrumental).mp3
2011-12-30 08:40 - 2011-02-11 15:56 - 3923262 ____A C:\Users\MFamily\Downloads\04-the_xx-islands.mp3
2011-12-30 08:40 - 2010-10-27 13:10 - 5890027 ____A C:\Users\MFamily\Downloads\01-basement_jaxx-scars.mp3
2011-12-30 08:39 - 2011-12-30 08:39 - 0004194 __ASH C:\Users\MFamily\Downloads\AlbumArt_{22563F9F-F5F0-4824-BE89-9E671B3B4D1C}_Large.jpg
2011-12-30 08:39 - 2011-12-30 08:39 - 0001721 __ASH C:\Users\MFamily\Downloads\AlbumArt_{22563F9F-F5F0-4824-BE89-9E671B3B4D1C}_Small.jpg
2011-12-30 08:39 - 2011-02-09 20:40 - 5785725 ____A C:\Users\MFamily\Downloads\01 - S&M.mp3
2011-12-30 08:39 - 2011-01-25 15:23 - 8138795 ____A C:\Users\MFamily\Downloads\01 - Christina Aguilera - Bionic.mp3
2011-12-30 08:38 - 2011-12-30 08:38 - 0007806 __ASH C:\Users\MFamily\Downloads\AlbumArt_{3653B428-B32C-40D1-B9B3-AA9313413BB4}_Large.jpg
2011-12-30 08:38 - 2011-12-30 08:38 - 0002238 __ASH C:\Users\MFamily\Downloads\AlbumArt_{3653B428-B32C-40D1-B9B3-AA9313413BB4}_Small.jpg
2011-12-30 08:37 - 2011-12-30 08:37 - 0012160 __ASH C:\Users\MFamily\Downloads\AlbumArt_{A5462D20-B3F2-46CF-BB50-CF6B85653D3E}_Large.jpg
2011-12-30 08:37 - 2011-12-30 08:37 - 0002854 __ASH C:\Users\MFamily\Downloads\AlbumArt_{A5462D20-B3F2-46CF-BB50-CF6B85653D3E}_Small.jpg
2011-12-30 08:36 - 2011-12-30 08:36 - 0009975 __ASH C:\Users\MFamily\Downloads\AlbumArt_{3004267C-4EEC-4329-864A-76A59E86C5F8}_Large.jpg
2011-12-30 08:36 - 2011-12-30 08:36 - 0002686 __ASH C:\Users\MFamily\Downloads\AlbumArt_{3004267C-4EEC-4329-864A-76A59E86C5F8}_Small.jpg
2011-12-30 08:31 - 2011-12-30 08:31 - 0012374 __ASH C:\Users\MFamily\Downloads\AlbumArt_{5C307EDE-8241-46AE-B994-DBC97C557051}_Large.jpg
2011-12-30 08:31 - 2011-12-30 08:31 - 0002988 __ASH C:\Users\MFamily\Downloads\AlbumArt_{5C307EDE-8241-46AE-B994-DBC97C557051}_Small.jpg
2011-12-30 08:31 - 2011-12-14 16:20 - 0006480 __ASH C:\Users\MFamily\Downloads\AlbumArt_{00000000-0000-0000-0000-000000000000}_Large.jpg
2011-12-30 08:31 - 2011-12-14 16:20 - 0001963 __ASH C:\Users\MFamily\Downloads\AlbumArt_{00000000-0000-0000-0000-000000000000}_Small.jpg
2011-12-30 08:30 - 2011-12-14 16:21 - 0012002 __ASH C:\Users\MFamily\Downloads\AlbumArt_{87A8F254-F978-4A8C-84C7-20C6080F822D}_Large.jpg
2011-12-30 08:30 - 2011-12-14 16:21 - 0002731 __ASH C:\Users\MFamily\Downloads\AlbumArt_{87A8F254-F978-4A8C-84C7-20C6080F822D}_Small.jpg
2011-12-30 08:30 - 2011-02-11 15:55 - 8348848 ____A C:\Users\MFamily\Downloads\We The Kings - Secret Valentine.mp3
2011-12-30 08:29 - 2011-12-30 08:29 - 0017978 __ASH C:\Users\MFamily\Downloads\AlbumArt_{B0C659C4-F592-4F27-B796-B53FA9EA42A9}_Large.jpg
2011-12-30 08:29 - 2011-12-30 08:29 - 0015210 __ASH C:\Users\MFamily\Downloads\AlbumArt_{B0CB1844-8D5A-41C7-AEB7-C8655A07E5F2}_Large.jpg
2011-12-30 08:29 - 2011-12-30 08:29 - 0014330 __ASH C:\Users\MFamily\Downloads\AlbumArt_{65D59EF5-97F8-4D52-AD95-9FB5418C0649}_Large.jpg
2011-12-30 08:29 - 2011-12-30 08:29 - 0012635 __ASH C:\Users\MFamily\Downloads\AlbumArt_{EE40F33E-CE72-42DD-A6FD-3B94A6A21F34}_Large.jpg
2011-12-30 08:29 - 2011-12-30 08:29 - 0010168 __ASH C:\Users\MFamily\Downloads\AlbumArt_{03DF8AD2-813C-4F97-BD9F-3946A239F850}_Large.jpg
2011-12-30 08:29 - 2011-12-30 08:29 - 0009626 __ASH C:\Users\MFamily\Downloads\AlbumArt_{1EDCFEF0-4E7C-40B6-A8B6-F8C808B2BF13}_Large.jpg
2011-12-30 08:29 - 2011-12-30 08:29 - 0009314 __ASH C:\Users\MFamily\Downloads\AlbumArt_{759E82CB-A994-4BD8-B6AD-CBF96C5CC43B}_Large.jpg
2011-12-30 08:29 - 2011-12-30 08:29 - 0008995 __ASH C:\Users\MFamily\Downloads\AlbumArt_{32ECC8A3-6C0F-4CC1-A27A-423DA8796E50}_Large.jpg
2011-12-30 08:29 - 2011-12-30 08:29 - 0008108 __ASH C:\Users\MFamily\Downloads\AlbumArt_{BC0B06C2-704C-4C17-A29B-1C6816CC2063}_Large.jpg
2011-12-30 08:29 - 2011-12-30 08:29 - 0003800 __ASH C:\Users\MFamily\Downloads\AlbumArt_{B0C659C4-F592-4F27-B796-B53FA9EA42A9}_Small.jpg
2011-12-30 08:29 - 2011-12-30 08:29 - 0003471 __ASH C:\Users\MFamily\Downloads\AlbumArt_{65D59EF5-97F8-4D52-AD95-9FB5418C0649}_Small.jpg
2011-12-30 08:29 - 2011-12-30 08:29 - 0003204 __ASH C:\Users\MFamily\Downloads\AlbumArt_{B0CB1844-8D5A-41C7-AEB7-C8655A07E5F2}_Small.jpg
2011-12-30 08:29 - 2011-12-30 08:29 - 0003079 __ASH C:\Users\MFamily\Downloads\AlbumArt_{EE40F33E-CE72-42DD-A6FD-3B94A6A21F34}_Small.jpg
2011-12-30 08:29 - 2011-12-30 08:29 - 0002589 __ASH C:\Users\MFamily\Downloads\AlbumArt_{03DF8AD2-813C-4F97-BD9F-3946A239F850}_Small.jpg
2011-12-30 08:29 - 2011-12-30 08:29 - 0002482 __ASH C:\Users\MFamily\Downloads\AlbumArt_{1EDCFEF0-4E7C-40B6-A8B6-F8C808B2BF13}_Small.jpg
2011-12-30 08:29 - 2011-12-30 08:29 - 0002241 __ASH C:\Users\MFamily\Downloads\AlbumArt_{759E82CB-A994-4BD8-B6AD-CBF96C5CC43B}_Small.jpg
2011-12-30 08:29 - 2011-12-30 08:29 - 0002129 __ASH C:\Users\MFamily\Downloads\AlbumArt_{32ECC8A3-6C0F-4CC1-A27A-423DA8796E50}_Small.jpg
2011-12-30 08:29 - 2011-12-30 08:29 - 0002126 __ASH C:\Users\MFamily\Downloads\AlbumArt_{BC0B06C2-704C-4C17-A29B-1C6816CC2063}_Small.jpg
2011-12-30 08:29 - 2011-12-14 16:21 - 0011523 __ASH C:\Users\MFamily\Downloads\AlbumArt_{951B40B0-C342-4D00-A463-F4760ECB4D6A}_Large.jpg
2011-12-30 08:29 - 2011-12-14 16:21 - 0010775 __ASH C:\Users\MFamily\Downloads\AlbumArt_{0A64FAF8-818A-4BCF-946E-B9C5A6B1E289}_Large.jpg
2011-12-30 08:29 - 2011-12-14 16:21 - 0008888 __ASH C:\Users\MFamily\Downloads\AlbumArt_{BECA58F5-E174-49D5-9B8B-E08E0BA53845}_Large.jpg
2011-12-30 08:29 - 2011-12-14 16:21 - 0007470 __ASH C:\Users\MFamily\Downloads\AlbumArt_{7030BF8D-A507-4D72-9265-0849AFE084F0}_Large.jpg
2011-12-30 08:29 - 2011-12-14 16:21 - 0002773 __ASH C:\Users\MFamily\Downloads\AlbumArt_{951B40B0-C342-4D00-A463-F4760ECB4D6A}_Small.jpg
2011-12-30 08:29 - 2011-12-14 16:21 - 0002335 __ASH C:\Users\MFamily\Downloads\AlbumArt_{BECA58F5-E174-49D5-9B8B-E08E0BA53845}_Small.jpg
2011-12-30 08:29 - 2011-12-14 16:21 - 0002236 __ASH C:\Users\MFamily\Downloads\AlbumArt_{0A64FAF8-818A-4BCF-946E-B9C5A6B1E289}_Small.jpg
2011-12-30 08:29 - 2011-12-14 16:21 - 0001849 __ASH C:\Users\MFamily\Downloads\AlbumArt_{7030BF8D-A507-4D72-9265-0849AFE084F0}_Small.jpg
2011-12-30 08:29 - 2011-12-14 16:20 - 0009672 __ASH C:\Users\MFamily\Downloads\AlbumArt_{3C2DAF84-4CDF-4EC7-B221-FDDA0BBFA4C3}_Large.jpg
2011-12-30 08:29 - 2011-12-14 16:20 - 0002364 __ASH C:\Users\MFamily\Downloads\AlbumArt_{3C2DAF84-4CDF-4EC7-B221-FDDA0BBFA4C3}_Small.jpg
2011-12-30 08:29 - 2011-02-17 11:00 - 6809744 ____A C:\Users\MFamily\Downloads\Jerrod Niemann - What Do You Want.mp3
2011-12-30 08:29 - 2011-02-17 10:56 - 6149490 ____A C:\Users\MFamily\Downloads\John Mayer Dreaming with a Broken Heart.mp3
2011-12-30 08:29 - 2011-02-11 15:53 - 2806042 ____A C:\Users\MFamily\Downloads\The Turtles-So Happy Together.mp3
2011-12-30 08:29 - 2011-02-11 15:52 - 14015259 ____A C:\Users\MFamily\Downloads\Swedish House Mafia - One (Original Mix).mp3
2011-12-30 08:29 - 2011-02-11 15:49 - 3006937 ____A C:\Users\MFamily\Downloads\Gary Jules - Mad World(1).mp3
2011-12-30 08:29 - 2011-02-11 15:47 - 8293064 ____A C:\Users\MFamily\Downloads\Train - Marry Me.mp3
2011-12-30 08:29 - 2011-01-25 15:29 - 5061301 ____A C:\Users\MFamily\Downloads\Pink - Don't Let Me Get Me.mp3
2011-12-30 08:29 - 2011-01-25 15:25 - 2694053 ____A C:\Users\MFamily\Downloads\The Academy Is... - About A Girl.mp3
2011-12-30 08:29 - 2011-01-23 19:10 - 6183723 ____A C:\Users\MFamily\Downloads\RIHANNA - Pon De Replay (Hey Mr.DJ Turn The Music Up).mp3
2011-12-30 08:29 - 2011-01-23 18:57 - 5851644 ____A C:\Users\MFamily\Downloads\Regina Spektor - Us.mp3
2011-12-30 08:29 - 2011-01-09 13:34 - 4784986 ____A C:\Users\MFamily\Downloads\Plain White T's - Rhythm Of Love - NewJams.net(1).mp3
2011-12-30 08:29 - 2010-12-26 14:21 - 4941878 ____A C:\Users\MFamily\Downloads\Moby - Flower.mp3
2011-12-30 08:29 - 2010-12-26 14:15 - 6483505 ____A C:\Users\MFamily\Downloads\Major Lazer - Pon de Floor (feat. Vybz Kartel).mp3
2011-12-30 08:29 - 2010-12-20 09:52 - 8023908 ____A C:\Users\MFamily\Downloads\Lil John ft. Ying Yang Twins - To the Windows to the Walls.mp3
2011-12-30 08:29 - 2010-12-18 13:07 - 4314971 ____A C:\Users\MFamily\Downloads\Schwayze - Buzzin.mp3
2011-12-30 08:29 - 2010-12-15 13:16 - 7047296 ____A C:\Users\MFamily\Downloads\OneRepublic - Come Home ft. Sara Bareilles.mp3
2011-12-30 08:29 - 2010-11-30 20:45 - 6645008 ____A C:\Users\MFamily\Downloads\Rob thomas-this is how a heart breaks.mp3
2011-12-30 08:29 - 2010-11-24 07:34 - 7521657 ____A C:\Users\MFamily\Downloads\Puff Daddy - I'll Be Missing You.mp3
2011-12-30 08:29 - 2010-11-20 14:17 - 5366107 ____A C:\Users\MFamily\Downloads\Snow Patrol- Chasing Cars.mp3
2011-12-30 08:29 - 2010-11-20 10:13 - 5339515 ____A C:\Users\MFamily\Downloads\The Bled - Porcelain Hearts And Hammers For Teeth.mp3
2011-12-30 08:29 - 2010-11-20 10:06 - 4077073 ____A C:\Users\MFamily\Downloads\Jacks Manequin - Dark Blue.mp3
2011-12-30 08:29 - 2010-11-13 14:52 - 9185371 ____A C:\Users\MFamily\Downloads\Katy Perry - Firework.mp3
2011-12-30 08:29 - 2010-11-06 20:28 - 3027947 ____A C:\Users\MFamily\Downloads\Ingrid Michaelson - The Way I am.mp3
2011-12-30 08:29 - 2010-10-15 10:39 - 7358491 ____A C:\Users\MFamily\Downloads\Tech N9ne - Caribou Lou.mp3
2011-12-30 08:28 - 2011-12-30 08:28 - 0008441 __ASH C:\Users\MFamily\Downloads\AlbumArt_{E9C477E6-4D4D-4BD1-B995-306056495D99}_Large.jpg
2011-12-30 08:28 - 2011-12-30 08:28 - 0007553 __ASH C:\Users\MFamily\Downloads\AlbumArt_{5271F372-114D-45E0-86E7-3BEAD27A5123}_Large.jpg
2011-12-30 08:28 - 2011-12-30 08:28 - 0002500 __ASH C:\Users\MFamily\Downloads\AlbumArt_{E9C477E6-4D4D-4BD1-B995-306056495D99}_Small.jpg
2011-12-30 08:28 - 2011-12-30 08:28 - 0002313 __ASH C:\Users\MFamily\Downloads\AlbumArt_{5271F372-114D-45E0-86E7-3BEAD27A5123}_Small.jpg
2011-12-30 08:28 - 2011-12-14 16:20 - 0008154 __ASH C:\Users\MFamily\Downloads\AlbumArt_{2D7C01C5-B891-4324-918D-4A52FB3F4E9C}_Large.jpg
2011-12-30 08:28 - 2011-12-14 16:20 - 0006325 __ASH C:\Users\MFamily\Downloads\AlbumArt_{E2EC3652-5B11-4FDD-8C74-5731C75D1EE7}_Large.jpg
2011-12-30 08:28 - 2011-12-14 16:20 - 0006193 __ASH C:\Users\MFamily\Downloads\AlbumArt_{D0A07F32-7171-4FF6-AFD8-2C2EF94F72BB}_Large.jpg
2011-12-30 08:28 - 2011-12-14 16:20 - 0002349 __ASH C:\Users\MFamily\Downloads\AlbumArt_{2D7C01C5-B891-4324-918D-4A52FB3F4E9C}_Small.jpg
2011-12-30 08:28 - 2011-12-14 16:20 - 0002027 __ASH C:\Users\MFamily\Downloads\AlbumArt_{D0A07F32-7171-4FF6-AFD8-2C2EF94F72BB}_Small.jpg
2011-12-30 08:28 - 2011-12-14 16:20 - 0001644 __ASH C:\Users\MFamily\Downloads\AlbumArt_{E2EC3652-5B11-4FDD-8C74-5731C75D1EE7}_Small.jpg
2011-12-30 08:05 - 2011-02-23 15:23 - 3826022 ____A C:\Users\MFamily\Downloads\Eric Hutchinson - Rock & Roll.mp3
2011-12-30 08:05 - 2011-01-25 15:27 - 3600694 ____A C:\Users\MFamily\Downloads\Britney Spears ft Madonna - Me Against The Music.mp3
2011-12-30 08:05 - 2011-01-09 13:34 - 3610919 ____A C:\Users\MFamily\Downloads\Cee Lo Green - bleep You.mp3
2011-12-30 08:05 - 2011-01-01 16:00 - 5476031 ____A C:\Users\MFamily\Downloads\Baby Bash feat. Akon - I'm Back [9D450B0D].mp3
2011-12-30 08:05 - 2011-01-01 15:54 - 4977852 ____A C:\Users\MFamily\Downloads\Afro Man - Because I Got High.mp3
2011-12-30 08:05 - 2011-01-01 15:53 - 6600853 ____A C:\Users\MFamily\Downloads\Bounce - Timbaland.mp3
2011-12-30 08:05 - 2011-01-01 15:38 - 6521277 ____A C:\Users\MFamily\Downloads\Eminem ft. Nate Dogg - Shake That.mp3
2011-12-30 08:05 - 2010-12-21 08:25 - 8087284 ____A C:\Users\MFamily\Downloads\07 - Paradise Circus.mp3
2011-12-30 08:05 - 2010-12-20 09:59 - 7019013 ____A C:\Users\MFamily\Downloads\Crystal_castles - Vanished [369B66E0].mp3
2011-12-30 08:05 - 2010-12-18 13:14 - 8496388 ____A C:\Users\MFamily\Downloads\Eminem ft. Pink - Wont back down.mp3
2011-12-30 08:05 - 2010-12-03 15:24 - 8662890 ____A C:\Users\MFamily\Downloads\florence and the machine - 09 - cosmic love.mp3
2011-12-30 08:05 - 2010-11-30 21:04 - 6829207 ____A C:\Users\MFamily\Downloads\Daft Punk - Technologic.mp3
2011-12-30 08:05 - 2010-11-24 07:36 - 5289690 ____A C:\Users\MFamily\Downloads\Black Eyed Peas - END - 15 - Rocking To The Beat.mp3
2011-12-30 08:05 - 2010-11-21 11:54 - 5810179 ____A C:\Users\MFamily\Downloads\Black Eyed Peas - Don't Phunk With My Heart.mp3
2011-12-30 08:05 - 2010-10-27 13:16 - 4677632 ____A C:\Users\MFamily\Downloads\CocoRosie - Werewolf.mp3
2011-12-26 18:26 - 2011-12-26 18:26 - 0000000 ____D C:\Users\MFamily\Application Data\AVG2012
2011-12-26 18:26 - 2011-12-26 18:26 - 0000000 ____D C:\Users\MFamily\AppData\Roaming\AVG2012
2011-12-26 18:20 - 2008-12-26 17:38 - 0000000 ____D C:\Program Files\AVG
2011-12-21 14:52 - 2011-12-21 14:52 - 0015299 ____A C:\Users\MFamily\My Documents\December 22.docx
2011-12-21 14:52 - 2011-12-21 14:52 - 0015299 ____A C:\Users\MFamily\Documents\December 22.docx
2011-12-21 14:52 - 2011-12-21 05:29 - 0000000 ____D C:\Users\MFamily\My Documents\MTVteenletterSpring2012
2011-12-21 14:52 - 2011-12-21 05:29 - 0000000 ____D C:\Users\MFamily\Documents\MTVteenletterSpring2012
2011-12-21 05:29 - 2011-12-21 05:29 - 0028755 ____A C:\Users\MFamily\My Documents\MTVteenletterSpring2012.zip
2011-12-21 05:29 - 2011-12-21 05:29 - 0028755 ____A C:\Users\MFamily\Documents\MTVteenletterSpring2012.zip
2011-12-20 20:03 - 2011-12-20 20:03 - 0028160 ____A C:\Users\MFamily\Desktop\project-and-presentation-important-message.doc
2011-12-19 05:47 - 2011-12-19 05:47 - 4591030 ____A C:\Users\MFamily\Desktop\William Fitzsimmons-I Don't Feel It Anymore (Song Of The Sparrow).mp3
2011-12-18 15:24 - 2011-12-18 15:24 - 0027648 ____A C:\Users\MFamily\Downloads\project-presentation-important-info.doc
2011-12-18 15:24 - 2011-12-18 15:24 - 0027648 ____A C:\Users\MFamily\Downloads\project-and-presentation-important-message(2).doc
2011-12-18 15:23 - 2011-12-18 15:23 - 0027648 ____A C:\Users\MFamily\Downloads\project-and-presentation-important-message.doc
2011-12-16 07:59 - 2012-02-15 16:17 - 1176576 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll
2011-12-16 07:59 - 2012-02-15 16:17 - 0834048 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll
2011-12-16 07:59 - 2012-02-15 16:17 - 0106496 ____A (Microsoft Corporation) C:\Windows\System32\url.dll
2011-12-16 07:57 - 2012-02-15 16:17 - 0671232 ____A (Microsoft Corporation) C:\Windows\System32\mstime.dll
2011-12-16 07:56 - 2012-02-15 16:17 - 6089728 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll
2011-12-16 07:56 - 2012-02-15 16:17 - 3618304 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll
2011-12-16 07:56 - 2012-02-15 16:17 - 0478208 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll
2011-12-16 07:56 - 2012-02-15 16:17 - 0471040 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll
2011-12-16 07:56 - 2012-02-15 16:17 - 0380928 ____A (Microsoft Corporation) C:\Windows\System32\ieapfltr.dll
2011-12-16 07:56 - 2012-02-15 16:17 - 0270336 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll
2011-12-16 07:56 - 2012-02-15 16:17 - 0193024 ____A (Microsoft Corporation) C:\Windows\System32\iepeers.dll
2011-12-16 07:56 - 2012-02-15 16:17 - 0180736 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll
2011-12-16 07:56 - 2012-02-15 16:17 - 0027648 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll
2011-12-16 06:11 - 2012-02-15 16:17 - 0389632 ____A (Microsoft Corporation) C:\Windows\System32\html.iec
2011-12-16 05:46 - 2012-02-15 16:17 - 1383424 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb
2011-12-15 05:43 - 2006-11-02 03:18 - 0000000 ____D C:\Windows\rescache
2011-12-14 20:46 - 2011-12-14 20:39 - 0017880 ____A C:\Users\MFamily\Desktop\AllMieraChristmasList2011.docx
2011-12-14 16:42 - 2011-12-14 16:42 - 0013901 __ASH C:\Users\MFamily\Downloads\AlbumArt_{FD703EBD-65B0-4679-88A9-B98A63D0BA5D}_Large.jpg
2011-12-14 16:42 - 2011-12-14 16:42 - 0003182 __ASH C:\Users\MFamily\Downloads\AlbumArt_{FD703EBD-65B0-4679-88A9-B98A63D0BA5D}_Small.jpg
2011-12-14 16:41 - 2011-12-14 16:41 - 0015270 __ASH C:\Users\MFamily\Downloads\AlbumArt_{0D3A0C99-1607-4D61-A935-5D19D7CF2B57}_Large.jpg
2011-12-14 16:41 - 2011-12-14 16:41 - 0013596 __ASH C:\Users\MFamily\Downloads\AlbumArt_{92DC2804-E6CB-48E9-944E-AF00965C39D6}_Large.jpg
2011-12-14 16:41 - 2011-12-14 16:41 - 0012881 __ASH C:\Users\MFamily\Downloads\AlbumArt_{EC33BE30-B4E4-44D7-95A0-C260FBC2D69B}_Large.jpg
2011-12-14 16:41 - 2011-12-14 16:41 - 0011587 __ASH C:\Users\MFamily\Downloads\AlbumArt_{EB98CE2C-0BC4-4A41-B681-8CC8451C8827}_Large.jpg
2011-12-14 16:41 - 2011-12-14 16:41 - 0011310 __ASH C:\Users\MFamily\Downloads\AlbumArt_{8BA38921-7446-4482-AB46-1282AAF2267B}_Large.jpg
2011-12-14 16:41 - 2011-12-14 16:41 - 0010450 __ASH C:\Users\MFamily\Downloads\AlbumArt_{93772F45-E6E5-4A84-9059-049B01DCBD38}_Large.jpg
2011-12-14 16:41 - 2011-12-14 16:41 - 0010349 __ASH C:\Users\MFamily\Downloads\AlbumArt_{3DDC81F1-3EF8-4A63-8FA1-6125E5C045B9}_Large.jpg
2011-12-14 16:41 - 2011-12-14 16:41 - 0009176 __ASH C:\Users\MFamily\Downloads\AlbumArt_{541F0A3F-8472-49A6-B486-A9B57FA6AE40}_Large.jpg
2011-12-14 16:41 - 2011-12-14 16:41 - 0008502 __ASH C:\Users\MFamily\Downloads\AlbumArt_{484ED7A8-7B74-4F10-B028-5972C7CC893B}_Large.jpg
2011-12-14 16:41 - 2011-12-14 16:41 - 0007211 __ASH C:\Users\MFamily\Downloads\AlbumArt_{029DA769-BE2B-47CF-ADCE-DE1772C91E2A}_Large.jpg
2011-12-14 16:41 - 2011-12-14 16:41 - 0006698 __ASH C:\Users\MFamily\Downloads\AlbumArt_{83E282C5-EE33-499C-A63F-04A3229DF427}_Large.jpg
2011-12-14 16:41 - 2011-12-14 16:41 - 0003813 __ASH C:\Users\MFamily\Downloads\AlbumArt_{0D3A0C99-1607-4D61-A935-5D19D7CF2B57}_Small.jpg
2011-12-14 16:41 - 2011-12-14 16:41 - 0003132 __ASH C:\Users\MFamily\Downloads\AlbumArt_{92DC2804-E6CB-48E9-944E-AF00965C39D6}_Small.jpg
2011-12-14 16:41 - 2011-12-14 16:41 - 0002959 __ASH C:\Users\MFamily\Downloads\AlbumArt_{EB98CE2C-0BC4-4A41-B681-8CC8451C8827}_Small.jpg
2011-12-14 16:41 - 2011-12-14 16:41 - 0002908 __ASH C:\Users\MFamily\Downloads\AlbumArt_{EC33BE30-B4E4-44D7-95A0-C260FBC2D69B}_Small.jpg
2011-12-14 16:41 - 2011-12-14 16:41 - 0002907 __ASH C:\Users\MFamily\Downloads\AlbumArt_{3DDC81F1-3EF8-4A63-8FA1-6125E5C045B9}_Small.jpg
2011-12-14 16:41 - 2011-12-14 16:41 - 0002840 __ASH C:\Users\MFamily\Downloads\AlbumArt_{8BA38921-7446-4482-AB46-1282AAF2267B}_Small.jpg
2011-12-14 16:41 - 2011-12-14 16:41 - 0002802 __ASH C:\Users\MFamily\Downloads\AlbumArt_{93772F45-E6E5-4A84-9059-049B01DCBD38}_Small.jpg
2011-12-14 16:41 - 2011-12-14 16:41 - 0002335 __ASH C:\Users\MFamily\Downloads\AlbumArt_{541F0A3F-8472-49A6-B486-A9B57FA6AE40}_Small.jpg
2011-12-14 16:41 - 2011-12-14 16:41 - 0002290 __ASH C:\Users\MFamily\Downloads\AlbumArt_{484ED7A8-7B74-4F10-B028-5972C7CC893B}_Small.jpg
2011-12-14 16:41 - 2011-12-14 16:41 - 0002100 __ASH C:\Users\MFamily\Downloads\AlbumArt_{83E282C5-EE33-499C-A63F-04A3229DF427}_Small.jpg
2011-12-14 16:41 - 2011-12-14 16:41 - 0002095 __ASH C:\Users\MFamily\Downloads\AlbumArt_{029DA769-BE2B-47CF-ADCE-DE1772C91E2A}_Small.jpg
2011-12-14 16:41 - 2011-12-14 16:19 - 0010199 __ASH C:\Users\MFamily\Downloads\AlbumArt_{141B1196-A3BE-4B35-AB72-6235D31BA50D}_Large.jpg
2011-12-14 16:41 - 2011-12-14 16:19 - 0002967 __ASH C:\Users\MFamily\Downloads\AlbumArt_{141B1196-A3BE-4B35-AB72-6235D31BA50D}_Small.jpg
2011-12-14 16:41 - 2011-01-25 15:27 - 6867262 ____A C:\Users\MFamily\Downloads\02 4 Minutes.mp3
2011-12-14 16:41 - 2011-01-09 13:33 - 5320309 ____A C:\Users\MFamily\Downloads\03 - Far East Movement - Rocketeer ft. Ryan Tedder of One Republic.mp3
2011-12-14 08:17 - 2012-02-15 16:17 - 0680448 ____A (Microsoft Corporation) C:\Windows\System32\msvcrt.dll
2011-12-12 08:39 - 2011-12-12 08:39 - 0000000 ____D C:\Program Files\Common Files\AVG Secure Search
2011-12-10 14:24 - 2011-12-30 11:54 - 0020464 ____A (Malwarebytes Corporation) C:\Windows\System32\Drivers\mbam.sys

========================= Known DLLs (Whitelisted) ============


========================= Bamital & volsnap Check ============

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

========================= Memory info ======================

Percentage of memory in use: 12%
Total physical RAM: 4085.5 MB
Available physical RAM: 3563.34 MB
Total Pagefile: 3835.67 MB
Available Pagefile: 3649.48 MB
Total Virtual: 2047.88 MB
Available Virtual: 1975.72 MB

======================= Partitions =========================

1 Drive c: () (Fixed) (Total:447.73 GB) (Free:197.62 GB) NTFS ==>[Drive with boot components (obtanied from BCD)]
2 Drive d: (LRMBVOL_EN_DVD) (CDROM) (Total:1.93 GB) (Free:0 GB) UDF
7 Drive i: (WD Passport) (Fixed) (Total:111.79 GB) (Free:58.57 GB) NTFS
8 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

Disk ### Status Size Free Dyn Gpt
-------- ---------- ------- ------- --- ---
Disk 0 Online 466 GB 2520 KB
Disk 1 No Media 0 B 0 B
Disk 2 No Media 0 B 0 B
Disk 3 No Media 0 B 0 B
Disk 4 No Media 0 B 0 B
Disk 5 Online 112 GB 1528 KB

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 448 GB 1024 KB
Partition 2 OEM 18 GB 448 GB

======================================================================================================

Disk: 0
Partition 1
Type : 07
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 5 C NTFS Partition 448 GB Healthy

======================================================================================================

Disk: 0
Partition 2
Type : 12
Hidden: Yes
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 7 LENOVO_PART FAT32 Partition 18 GB Healthy Hidden

======================================================================================================

Partitions of Disk 5:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 112 GB 32 KB

======================================================================================================

Disk: 5
Partition 1
Type : 07
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 0 I WD Passport NTFS Partition 112 GB Healthy

======================================================================================================

==========================================================

Last Boot: 2012-03-08 16:15

======================= End Of Log ==========================

#10 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:10:58 PM

Posted 09 March 2012 - 12:06 AM

Hello

I would like you to run the fix below and when it is complete I need you to rerun combofix and send me the report.

Open notepad. Please copy the contents of the code box below. To do this highlight the contents of the box and right click on it. Paste this into the open notepad. Save it on the flashdrive as fixlist.txt




2 3combootp; C:\Windows\System32\ggsemc.dll [x]
2 3comtftp; C:\Windows\System32\asp.net.dll [x]
2 6to4; C:\Windows\System32\SrvcEPIOMngr.dll [x]
2 a016mdfl; C:\Windows\System32\acs.dll [x]
2 a016mdm; C:\Windows\System32\se44mgmt.dll [x]
2 a016mgmt; C:\Windows\System32\GoBack2K.dll [x]
2 acrotray; C:\Windows\System32\hpt3xx.dll [x]
2 AdfuUd; C:\Windows\System32\rsvchost.dll [x]
2 ADSMService; C:\Windows\System32\btwavdt.dll [x]
2 aexnsclienttransport; C:\Windows\System32\ms_mpu401.dll [x]
2 AFGSp50; C:\Windows\System32\tomcatcws3.dll [x]
2 afs2k; C:\Windows\System32\{a7447300-8075-4b0d-83f1-3d75c8ebc623}.dll [x]
2 alcxsens; C:\Windows\System32\mksupdateint.dll [x]
2 alcxwdm; C:\Windows\System32\epsonbidirectionalservice.dll [x]
2 alertmanager; C:\Windows\System32\winsshd.dll [x]
2 alim1541; C:\Windows\System32\ifxtcs.dll [x]
2 AMDPCI; C:\Windows\System32\db2.dll [x]
2 amoagent; C:\Windows\System32\sansaservice.dll [x]
2 amon; C:\Windows\System32\ATKGFNEXSrv.dll [x]
2 anio; C:\Windows\System32\EU3_USB.dll [x]
2 aolservice; C:\Windows\System32\CTDevice_Srv.dll [x]
2 apfiltrservice; C:\Windows\System32\PPPoEWin.dll [x]
2 application; C:\Windows\System32\EL2000.dll [x]
2 ARCSOFTVIRTUALCAPTURE; C:\Windows\System32\dot4usb.dll [x]
2 asc3550; C:\Windows\System32\mksvirmonsvc.dll [x]
2 ASDR; C:\Windows\System32\bmuservice.dll [x]
2 asp.net_2.0.50727; C:\Windows\System32\iPassPeriodicUpdateService.dll [x]
2 astcc; C:\Windows\System32\clnt_clientman.dll [x]
2 ATIBTCAP; C:\Windows\System32\tnbrlds.dll [x]
2 atitool; C:\Windows\System32\psadd.dll [x]
2 atksgt; C:\Windows\System32\AppnApi.dll [x]
2 atmarpc; C:\Windows\System32\ASMMAP.dll [x]
2 atmeltpm; C:\Windows\System32\arp1394.dll [x]
2 ATNT40K; C:\Windows\System32\cmuda3.dll [x]
2 autocomplete; C:\Windows\System32\puscsrvc.dll [x]
2 AVCamUSB20; C:\Windows\System32\epsonbidirectionalagent.dll [x]
2 AVerBDA; C:\Windows\System32\vaiomediaplatform-videoserver-appserver.dll [x]
2 avg7alrt; C:\Windows\System32\dcevt32.dll [x]
2 avg7rsxp; C:\Windows\System32\TPPWRIF.dll [x]
2 avgarcln; C:\Windows\System32\ersvc.dll [x]
2 avgfwsrv; C:\Windows\System32\avgfwsrv.dll [x]
2 avidsdmservice; C:\Windows\System32\mbackmonitor.dll [x]
2 avpnnic; C:\Windows\System32\tphkdrv.dll [x]
2 avsinc; C:\Windows\System32\dvpapi.dll [x]
2 AX88772; C:\Windows\System32\MSMQ.dll [x]
2 axinstsv; C:\Windows\System32\UMPass.dll [x]
2 axsaki; C:\Windows\System32\XFX_program.dll [x]
2 axsnmsvc; C:\Windows\System32\wmp54gv4svc.dll [x]
2 backupexecdevicemediaservice; C:\Windows\System32\NAL.dll [x]
2 backupexecnamingservice; C:\Windows\System32\P17xfi.dll [x]
2 backuplauncher; C:\Windows\System32\pgpserv.dll [x]
2 BASFND; C:\Windows\System32\idsvc.dll [x]
2 bc_ngn; C:\Windows\System32\nim32.dll [x]
2 bdftdif; C:\Windows\System32\tpsrv.dll [x]
2 bjmcmng; C:\Windows\System32\s716mdfl.dll [x]
2 Blfp; C:\Windows\System32\L8042Kbd.dll [x]
2 blueletscoaudio; C:\Windows\System32\MobilePreInstallerService.dll [x]
2 BlueSoleilCS; C:\Windows\System32\cfgwzsvc.dll [x]
2 bt3cser; C:\Windows\System32\tfsndres.dll [x]
2 bthpan; C:\Windows\System32\PGPsdkDriver.dll [x]
2 btkrnl; C:\Windows\System32\tifsfilter.dll [x]
2 BVRPMPR5; C:\Windows\System32\se2Cnd5.dll [x]
2 bvrp_pci; C:\Windows\System32\websensecpmcommunicationagent.dll [x]
2 C-Dilla; C:\Windows\System32\Udfreadr_xp.dll [x]
2 c-dillacdac11ba; C:\Windows\System32\rpcapd.dll [x]
2 caccprovsp; C:\Windows\System32\prevxagent.dll [x]
2 caisafe; C:\Windows\System32\ql12160.dll [x]
2 ccalib8; C:\Windows\System32\wlankeeper.dll [x]
2 ccsetmgr; C:\Windows\System32\carboncopy32.dll [x]
2 CdaD10BA; C:\Windows\System32\lxcc_device.dll [x]
2 cdudf_xp; C:\Windows\System32\PhilCam8116.dll [x]
2 cdvp; C:\Windows\System32\sglfb.dll [x]
2 centennialclientagent; C:\Windows\System32\pensup.dll [x]
2 cicssfs.scmmc223; C:\Windows\System32\superproserver.dll [x]
2 CiscoVpnInstallService; C:\Windows\System32\naveng.dll [x]
2 clisvc; C:\Windows\System32\forcewarewebinterface.dll [x]
2 clsched; C:\Windows\System32\yats32.dll [x]
2 cm102u32; C:\Windows\System32\se45mdfl.dll [x]
2 cnmpar21; C:\Windows\System32\ctxhttp.dll [x]
2 CoachAud; C:\Windows\System32\tphdexlgsvc.dll [x]
2 compaq_rba; C:\Windows\System32\ATIVXSTW.dll [x]
2 coste; C:\Windows\System32\jsdaemon.dll [x]
2 cportclm; C:\Windows\System32\fastuserswitchingcompatibility.dll [x]
2 cpqrcmc; C:\Windows\System32\quickhealfirewall.dll [x]
2 cqmgserv; C:\Windows\System32\rpskt.dll [x]
2 CTAUDFX.DLL; C:\Windows\System32\se2Dnd5.dll [x]
2 CTAudSvcService; C:\Windows\System32\osanbm.dll [x]
2 ctxhttp; C:\Windows\System32\cvsnt.dll [x]
2 cwafeventrouter; C:\Windows\System32\se2Cunic.dll [x]
2 datunidr; C:\Windows\System32\raidmagt.dll [x]
2 DcCam; C:\Windows\System32\DumaNT.dll [x]
2 dcpflics; C:\Windows\System32\rp_fws.dll [x]
2 dcstor32; C:\Windows\System32\zntport.dll [x]
2 Dell1100_FUService; C:\Windows\System32\FTSER2K.dll [x]
2 digictrl; C:\Windows\System32\FontCache3.0.0.0..dll [x]
2 dimension4; C:\Windows\System32\steamdvr.dll [x]
2 diskeeper; C:\Windows\System32\drvmcdb.dll [x]
2 dlabmfsm; C:\Windows\System32\AmdLLD.dll [x]
2 dlaudf_m; C:\Windows\System32\Xyz777b.dll [x]
2 dlcc_device; C:\Windows\System32\asyncmac.dll [x]
2 dlcq_device; C:\Windows\System32\thotkey.dll [x]
2 DLH5X; C:\Windows\System32\mediaviewer.dll [x]
2 dm1service; C:\Windows\System32\CSDriver.dll [x]
2 DM9102; C:\Windows\System32\cxlpt.dll [x]
2 dmboot; C:\Windows\System32\nsm1mdm.dll [x]
2 dns4meclient; C:\Windows\System32\smbusp.dll [x]
2 downloadmanagerlite; C:\Windows\System32\fcprintservice.dll [x]
2 DSXUSB; C:\Windows\System32\nbservice.dll [x]
2 dtsrvc; C:\Windows\System32\ndasbus.dll [x]
2 DVDVRRdr_xp; C:\Windows\System32\alg.dll [x]
2 EAWDMFD; C:\Windows\System32\btkrnl.dll [x]
2 EL90X; C:\Windows\System32\se2Bunic.dll [x]
2 eliservice; C:\Windows\System32\ccispwdsvc.dll [x]
2 eloggersvc6; C:\Windows\System32\eamon.dll [x]
2 emAudio; C:\Windows\System32\pshost.dll [x]
2 emclisrv; C:\Windows\System32\ipsraidn.dll [x]
2 emitray; C:\Windows\System32\vc8secs.dll [x]
2 emproxy; C:\Windows\System32\SMPLSCSI.dll [x]
2 EntDrv51; C:\Windows\System32\pid_0928.dll [x]
2 enxpsvr; C:\Windows\System32\Spsmqvsm.dll [x]
2 epgspooler; C:\Windows\System32\ctusfsyn.dll [x]
2 epson_pm_rpcv4_01; C:\Windows\System32\tcpip.dll [x]
2 EUSBMSD; C:\Windows\System32\pilogsrv.dll [x]
2 fah@c:+fah+fah-service+fah502-console.exe; C:\Windows\System32\bgs_sdservice.dll [x]
2 fasttx2k; C:\Windows\System32\tnidriver.dll [x]
2 FETNDIS; C:\Windows\System32\atirage3.dll [x]
2 filemon701; C:\Windows\System32\hpqddsvc.dll [x]
2 FINEPIX_PCC; C:\Windows\System32\pcradminserver.dll [x]
2 fireport; C:\Windows\System32\tfsnopio.dll [x]
2 firesvc; C:\Windows\System32\toside.dll [x]
2 framework; C:\Windows\System32\tdtcp.dll [x]
2 Freedom; C:\Windows\System32\wdmaud.dll [x]
2 freepops; C:\Windows\System32\swenum.dll [x]
2 FreeTdi; C:\Windows\System32\wg6n.dll [x]
2 fsbwsys; C:\Windows\System32\NICM.dll [x]
2 fshttps; C:\Windows\System32\useraccess7.dll [x]
2 fsks; C:\Windows\System32\aalogger.dll [x]
2 fsma; C:\Windows\System32\rimmptsk.dll [x]
2 fssfltr; C:\Windows\System32\mskservice.dll [x]
2 FsVga; C:\Windows\System32\TestHandler.dll [x]
2 ftsata2; C:\Windows\System32\btserial.dll [x]
2 FVXSCSI; C:\Windows\System32\tdrpman.dll [x]
2 G400DH; C:\Windows\System32\bgsvcgen.dll [x]
2 gbpoll; C:\Windows\System32\ehstart.dll [x]
2 gdrv; C:\Windows\System32\bthenum.dll [x]
2 gemserv; C:\Windows\System32\PCASp50.dll [x]
2 generichidservice; C:\Windows\System32\cachemanxp.dll [x]
2 giveio; C:\Windows\System32\MagicTune.dll [x]
2 GTPTSER; C:\Windows\System32\ss_bus.dll [x]
2 GTWModem; C:\Windows\System32\videX32.dll [x]
2 guardian2; C:\Windows\System32\StkASSrv.dll [x]
2 ha20x2k; C:\Windows\System32\e100b.dll [x]
2 hcf_msft; C:\Windows\System32\shuttleengine.dll [x]
2 HFACSVC; C:\Windows\System32\hpci.dll [x]
2 hibernation; C:\Windows\System32\ini910u.dll [x]
2 houdinilicenseserver; C:\Windows\System32\brmfrmps.dll [x]
2 hpgate; C:\Windows\System32\SprintRcAppSvc.dll [x]
2 hpzipr12; C:\Windows\System32\MSFWDrv.dll [x]
2 HSFHWALI; C:\Windows\System32\CT20XUT.DLL.dll [x]
2 HSFHWICH; C:\Windows\System32\SWNC8U51.dll [x]
2 hwdatacard; C:\Windows\System32\cpqfcalm.dll [x]
2 iap; C:\Windows\System32\ivscheduler.dll [x]
2 ibmpmdrv; C:\Windows\System32\acdpowerservice.dll [x]
2 ICAM3NT5; C:\Windows\System32\Appn.dll [x]
2 icepack; C:\Windows\System32\DcLps.dll [x]
2 id2scaps; C:\Windows\System32\usprserv.dll [x]
2 ifp800; C:\Windows\System32\prosync1.dll [x]
2 iksysflt; C:\Windows\System32\speakerphone.dll [x]
2 imapi; C:\Windows\System32\ncupdatesvc.dll [x]
2 imaservice; C:\Windows\System32\DevUpper.dll [x]
2 imonnt; C:\Windows\System32\EL90X.dll [x]
2 incdrec; C:\Windows\System32\cdaudio.dll [x]
2 incdrm; C:\Windows\System32\hpci.dll [x]
2 incdsrv; C:\Windows\System32\acpi.dll [x]
2 inotask; C:\Windows\System32\NuidFltr.dll [x]
2 int15; C:\Windows\System32\ssm_mdfl.dll [x]
2 IntelC52; C:\Windows\System32\atimtag.dll [x]
2 IntelC53; C:\Windows\System32\mssqlserveradhelper.dll [x]
2 intelroam; C:\Windows\System32\sysaudio.dll [x]
2 Intels51; C:\Windows\System32\EL2000.dll [x]
2 Invoker; C:\Windows\System32\mapserver6.3.dll [x]
2 iomegaaccess; C:\Windows\System32\cpqdmi.dll [x]
2 IOSLINK; C:\Windows\System32\battc.dll [x]
2 ipodsrv; C:\Windows\System32\ELhid.dll [x]
2 irbus; C:\Windows\System32\DNE.dll [x]
2 irsir; C:\Windows\System32\RecAgent.dll [x]
2 ISAMSvc; C:\Windows\System32\trcboot.dll [x]
2 ivscheduler; C:\Windows\System32\mwagent.dll [x]
2 JiaoIO; C:\Windows\System32\dcstor32.dll [x]
2 jsdaemon; C:\Windows\System32\Si3114r5.dll [x]
2 jtagserver; C:\Windows\System32\sbp2port.dll [x]
2 k750mdm; C:\Windows\System32\se2Cunic.dll [x]
2 kbstuff; C:\Windows\System32\hdaudaddservice.dll [x]
2 keymaestro; C:\Windows\System32\procdd.dll [x]
2 KMW_KBD; C:\Windows\System32\APLMp50.dll [x]
2 KMW_USB; C:\Windows\System32\SaiNtSub.dll [x]
2 konfig; C:\Windows\System32\BTSLBCSP.dll [x]
2 kpfwsvc; C:\Windows\System32\sbservice.dll [x]
2 LHidFilt; C:\Windows\System32\zfdwm.dll [x]
2 licenseservice; C:\Windows\System32\ClntMgmt.sys.dll [x]
2 lmimirr; C:\Windows\System32\pcampr5.dll [x]
2 lmouflt2; C:\Windows\System32\xfactorae1.dll [x]
2 ltck000c; C:\Windows\System32\partmgr.dll [x]
2 lvcomser; C:\Windows\System32\ati2mpaa.dll [x]
2 LVPrcMon; C:\Windows\System32\tsmapip.dll [x]
2 lvuvc; C:\Windows\System32\nimcdlbk.dll [x]
2 LwUsbHid; C:\Windows\System32\wcontrol.dll [x]
2 lxbt_device; C:\Windows\System32\zpnodecollector.dll [x]
2 lxbx_device; C:\Windows\System32\bhmonitorservice.dll [x]
2 lxcj_device; C:\Windows\System32\cavasm.dll [x]
2 lxdmCATSCustConnectService; C:\Windows\System32\{eda5f5d3-9e0f-4f4d-8a13-1d1cf469c9cc}.dll [x]
2 marvinbus; C:\Windows\System32\TBPanel.dll [x]
2 maya70docserver; C:\Windows\System32\yukonwlh.dll [x]
2 ma_cmidi_installerservice; C:\Windows\System32\imonitor.dll [x]
2 mdmxsdk; C:\Windows\System32\ProcObsrv.dll [x]
2 mediaviewer; C:\Windows\System32\w300mdm.dll [x]
2 meiudf; C:\Windows\System32\vetmonnt.dll [x]
2 Memctl; C:\Windows\System32\symc810.dll [x]
2 merakpop3; C:\Windows\System32\adminserver.dll [x]
2 mfcom; C:\Windows\System32\rasl2tp.dll [x]
2 mfebopk; C:\Windows\System32\EntDrv51.dll [x]
2 mgactrl; C:\Windows\System32\viairda.dll [x]
2 mirrorv3; C:\Windows\System32\HPSLPSVC.dll [x]
2 mlkkbdntdriver; C:\Windows\System32\cm102u32.dll [x]
2 mod7700; C:\Windows\System32\actser.dll [x]
2 monfilt; C:\Windows\System32\oraclewebassistant.dll [x]
2 mozybackup; C:\Windows\System32\w3svc.dll [x]
2 MpFilter; C:\Windows\System32\usbohci.dll [x]
2 MQAC; C:\Windows\System32\AGV.dll [x]
2 MRESP50; C:\Windows\System32\hpdskflt.dll [x]
2 MRV6X32P; C:\Windows\System32\pcdrndisuio.dll [x]
2 mrvw245; C:\Windows\System32\SDdriver.dll [x]
2 MSCamSvc; C:\Windows\System32\ATSWPDRV.dll [x]
2 msftesql; C:\Windows\System32\mskssrv.dll [x]
2 msmpsvc; C:\Windows\System32\klif.dll [x]
2 mssql$microsoftsmlbiz; C:\Windows\System32\se58bus.dll [x]
2 mssql$sony_mediamgr; C:\Windows\System32\unrealircd.dll [x]
2 mssqlserverolapservice; C:\Windows\System32\cobbmservice.dll [x]
2 msvsmon90; C:\Windows\System32\avidstartup.dll [x]
2 MTC0001_ESB; C:\Windows\System32\mctskshd.exe.dll [x]
2 MtxDma0; C:\Windows\System32\null.dll [x]
2 mwlsvc; C:\Windows\System32\HSFHWALI.dll [x]
2 mwsarcpkt; C:\Windows\System32\ati2mtag.dll [x]
2 mwssched; C:\Windows\System32\s116bus.dll [x]
2 MxlW2k; C:\Windows\System32\SecureStorageService.dll [x]
2 n3900; C:\Windows\System32\WmaCVideo32.dll [x]
2 naimagent32; C:\Windows\System32\mpfp.dll [x]
2 nbf; C:\Windows\System32\CnxTrLan.dll [x]
2 NCPro; C:\Windows\System32\qcmerced.dll [x]
2 ncupdatesvc; C:\Windows\System32\mssqlserver.dll [x]
2 ndiscm; C:\Windows\System32\p3.dll [x]
2 Ndisipo; C:\Windows\System32\teefer.dll [x]
2 neokdss; C:\Windows\System32\usbcm.dll [x]
2 netddedsdm; C:\Windows\System32\dlartl_n.dll [x]
2 netdevio; C:\Windows\System32\iviaspi.dll [x]
2 netwg311; C:\Windows\System32\openvpnservice.dll [x]
2 ngdbserv; C:\Windows\System32\aclient.dll [x]
2 nhcDriverDevice; C:\Windows\System32\cs429x.dll [x]
2 NICM; C:\Windows\System32\se45nd5.dll [x]
2 nidomainservice; C:\Windows\System32\FirePM.dll [x]
2 nim32; C:\Windows\System32\rtl8029.dll [x]
2 nimxdfk; C:\Windows\System32\vaiomediaplatform-integratedserver-upnp.dll [x]
2 niorbk; C:\Windows\System32\SE2Ebus.dll [x]
2 NIPALK; C:\Windows\System32\hpzid412.dll [x]
2 nipsvc; C:\Windows\System32\dtscsi.dll [x]
2 nipxirmu; C:\Windows\System32\cpucoolserver.dll [x]
2 nisum; C:\Windows\System32\SMCB000.dll [x]
2 nmwcdcm; C:\Windows\System32\Shockprf.dll [x]
2 nod32krn; C:\Windows\System32\mssql$microsoftbcm.dll [x]
2 npkcrypt; C:\Windows\System32\ghostsec.dll [x]
2 nscirda; C:\Windows\System32\s616unic.dll [x]
2 nsm1bus; C:\Windows\System32\rksample.dll [x]
2 nsvcip; C:\Windows\System32\TuneUp.ProgramStatisticsSvc.dll [x]
2 nsvclog; C:\Windows\System32\MA8032C.dll [x]
2 NTIDrvr; C:\Windows\System32\CAM1210.dll [x]
2 ntmssvc; C:\Windows\System32\hsvcmod.dll [x]
2 ntsecure; C:\Windows\System32\sifilter.dll [x]
2 ntsyslog; C:\Windows\System32\msfwsvc.dll [x]
2 nuvaud2; C:\Windows\System32\lvprcsrv.dll [x]
2 nv; C:\Windows\System32\iviVD.dll [x]
2 nv4; C:\Windows\System32\incdrec.dll [x]
2 nvnetbus; C:\Windows\System32\rrspy.dll [x]
2 nvpvrmon; C:\Windows\System32\wsearch.dll [x]
2 nwcworkstation; C:\Windows\System32\rpcnet.dll [x]
2 nwlnkspx; C:\Windows\System32\pdagent.dll [x]
2 NwSapAgent; C:\Windows\System32\U81xmgmt.dll [x]
2 NWSNS; C:\Windows\System32\splitter.dll [x]
2 NxSysMon; C:\Windows\System32\avcgbfl.dll [x]
2 obvious; C:\Windows\System32\AEADIFilters.dll [x]
2 olapserver; C:\Windows\System32\persfw.dll [x]
2 oracleorahomepagingserver; C:\Windows\System32\SMNDIS5.dll [x]
2 oraclesnmppeerencapsulator; C:\Windows\System32\svchost.dll [x]
2 ossrv; C:\Windows\System32\besclient.dll [x]
2 outpostfirewall; C:\Windows\System32\HWIONT.dll [x]
2 p1131vid; C:\Windows\System32\autocomplete.dll [x]
2 P16X; C:\Windows\System32\cpqfcalm.dll [x]
2 PAR1284; C:\Windows\System32\ABVPN2K.dll [x]
2 pavprsrv; C:\Windows\System32\cxlpt.dll [x]
2 pavreport; C:\Windows\System32\belmonitorservice.dll [x]
2 pcidrv; C:\Windows\System32\vsapint.dll [x]
2 pcouffin; C:\Windows\System32\s217mdm.dll [x]
2 pdlnemsg; C:\Windows\System32\adsexpb.dll [x]
2 pdlnshay; C:\Windows\System32\NsTrcNT.dll [x]
2 pdrframe; C:\Windows\System32\WscNetDr.dll [x]
2 pelusblf; C:\Windows\System32\sit_bus.dll [x]
2 penrendezvous; C:\Windows\System32\amsint.dll [x]
2 perc2; C:\Windows\System32\oracle%oracle_home_service%clientcache80.dll [x]
2 persfw; C:\Windows\System32\usbvm321.dll [x]
2 PGPwded; C:\Windows\System32\eventsystem.dll [x]
2 pid_0928; C:\Windows\System32\spooler.dll [x]
2 pinnacleupdatesvc; C:\Windows\System32\W8335XP.dll [x]
2 pktfilter; C:\Windows\System32\scsk4.dll [x]
2 plscsi; C:\Windows\System32\savrt.dll [x]
2 pmem; C:\Windows\System32\oracle_load_balancer_60_client-forms6i.dll [x]
2 pmshellsrv; C:\Windows\System32\interactivelogon.dll [x]
2 Pnp680r; C:\Windows\System32\6to4.dll [x]
2 pop3d32; C:\Windows\System32\raysat3_4_6_18server.dll [x]
2 portmapper; C:\Windows\System32\pdlnatdl.dll [x]
2 procmon10; C:\Windows\System32\starwindservice.dll [x]
2 protectionservice; C:\Windows\System32\pdlndoem.dll [x]
2 pshost; C:\Windows\System32\addfiltr.dll [x]
2 PTDCVsp; C:\Windows\System32\UsbDiag.dll [x]
2 qcdonner; C:\Windows\System32\dbmanagerscheduler.dll [x]
2 ql1240; C:\Windows\System32\usbcm.dll [x]
2 qmofiltr; C:\Windows\System32\quickbooksdb.dll [x]
2 QPCapSvc; C:\Windows\System32\{95808DC4-FA4A-4c74-92FE-5B863F82066B}.dll [x]
2 quickhealfirewall; C:\Windows\System32\SymIMMP.dll [x]
2 RAPIProtocol; C:\Windows\System32\se59mgmt.dll [x]
2 rasirda; C:\Windows\System32\Defrag32b.dll [x]
2 rbfilter; C:\Windows\System32\webupdate.dll [x]
2 RioS30; C:\Windows\System32\fips.dll [x]
2 RMCAST; C:\Windows\System32\dlaudfam.dll [x]
2 rnadirectory; C:\Windows\System32\upsmonservice.dll [x]
2 ROB_V; C:\Windows\System32\tvtfilter.dll [x]
2 roxliveshare; C:\Windows\System32\sfman.dll [x]
2 roxupnpserver; C:\Windows\System32\z800bus.dll [x]
2 roxwatch; C:\Windows\System32\E1000.dll [x]
2 rp32service; C:\Windows\System32\s3savagemx.dll [x]
2 RR2Ctrl; C:\Windows\System32\symantecantibotwatcher.dll [x]
2 rt73; C:\Windows\System32\drmkaud.dll [x]
2 rtl8023; C:\Windows\System32\cm102u32.dll [x]
2 rtl8185; C:\Windows\System32\ppa3.dll [x]
2 rtl8187Se; C:\Windows\System32\CTMFLT.dll [x]
2 rtm; C:\Windows\System32\pci.dll [x]
2 rtport; C:\Windows\System32\backupexecjobengine.dll [x]
2 rvsinst; C:\Windows\System32\DCamUSBMke2.dll [x]
2 rwbackupsrv; C:\Windows\System32\netddedsdm.dll [x]
2 rxmssync; C:\Windows\System32\oracleorahomedatagatherer.dll [x]
2 s117mdfl; C:\Windows\System32\botcbs.dll [x]
2 s217mdfl; C:\Windows\System32\pcouffin.dll [x]
2 s3savagenb; C:\Windows\System32\Exportit.dll [x]
2 s616mdfl; C:\Windows\System32\aamqdispatcher.dll [x]
2 s616obex; C:\Windows\System32\gdrv.dll [x]
2 s616unic; C:\Windows\System32\MREMPR5.dll [x]
2 s716bus; C:\Windows\System32\lxcd_device.dll [x]
2 SABSVC; C:\Windows\System32\k56.dll [x]
2 SaiClass; C:\Windows\System32\spmgr.dll [x]
2 SaiMini; C:\Windows\System32\z800obex.dll [x]
2 SaiNtBus; C:\Windows\System32\SNP2UVC.dll [x]
2 samfilt; C:\Windows\System32\StickyMesger.dll [x]
2 sandboxu; C:\Windows\System32\keriomailserver.dll [x]
2 sbhooksvc; C:\Windows\System32\ikfilesec.dll [x]
2 sbpci; C:\Windows\System32\SiRemFil.dll [x]
2 scanexplicit; C:\Windows\System32\ScsiPort.dll [x]
2 ScFBPNT2; C:\Windows\System32\s716obex.dll [x]
2 SDdriver; C:\Windows\System32\framework.dll [x]
2 SE27mdm; C:\Windows\System32\SE27mdfl.dll [x]
2 SE27mgmt; C:\Windows\System32\UlSata.dll [x]
2 SE2Dmgmt; C:\Windows\System32\kerbkey.dll [x]
2 se2Dnd5; C:\Windows\System32\serenum.dll [x]
2 SE2Emdm; C:\Windows\System32\tversitymediaserver.dll [x]
2 se44mdfl; C:\Windows\System32\mmc_2K.dll [x]
2 se58bus; C:\Windows\System32\SeratoUsb.dll [x]
2 se59bus; C:\Windows\System32\stylexpservice.dll [x]
2 se59mgmt; C:\Windows\System32\v124.dll [x]
2 se59unic; C:\Windows\System32\Sk9920nt.dll [x]
2 server; C:\Windows\System32\adiusbaw.dll [x]
2 service; C:\Windows\System32\nscirda.dll [x]
2 sfusvc; C:\Windows\System32\pae_1394.dll [x]
2 siside; C:\Windows\System32\pdfcreatormessages.dll [x]
2 sisidex; C:\Windows\System32\IBMTPCHK.dll [x]
2 sisnic; C:\Windows\System32\iaimfp0.dll [x]
2 SlWdmSup; C:\Windows\System32\ALYac_PZSrv.dll [x]
2 smartwiservice; C:\Windows\System32\parallel.dll [x]
2 smbios; C:\Windows\System32\BUFADPT.dll [x]
2 SMCB000; C:\Windows\System32\lmab_device.dll [x]
2 smcservice; C:\Windows\System32\SI3112.dll [x]
2 smserial; C:\Windows\System32\s24trans.dll [x]
2 snoopfreesvc; C:\Windows\System32\suservice.dll [x]
2 sonicatheaterinstallerservice; C:\Windows\System32\JavaQuickStarterService.dll [x]
2 sonicwall_netextender; C:\Windows\System32\symantecantibotagent.dll [x]
2 speakerphone; C:\Windows\System32\datunidr.dll [x]
2 SPLITCAM; C:\Windows\System32\websensecamserver.dll [x]
2 sprtsvc_ddoctorv2; C:\Windows\System32\sptisrv.dll [x]
2 spsslm; C:\Windows\System32\avfilter.dll [x]
2 sqlagent$pinnaclesys; C:\Windows\System32\lvpopflt.dll [x]
2 sqlserveragent; C:\Windows\System32\JGOGO.dll [x]
2 SrvcTPIOMngr; C:\Windows\System32\symredrv.dll [x]
2 SRVLOC; C:\Windows\System32\FreeTdi.dll [x]
2 ssfs0509; C:\Windows\System32\snpstd2.dll [x]
2 ssidrv; C:\Windows\System32\symlcbrd.dll [x]
2 ssrtln; C:\Windows\System32\array_utility_service4,0,1,3.dll [x]
2 ss_mdfl; C:\Windows\System32\DFUBTUSB.dll [x]
2 steamdvr; C:\Windows\System32\pmounter.dll [x]
2 streamloadservice; C:\Windows\System32\Wuser32.dll [x]
2 stylexphelper; C:\Windows\System32\pccsmcfd.dll [x]
2 svcwrsssdk; C:\Windows\System32\k750obex.dll [x]
2 swupdtmr; C:\Windows\System32\adaptecstoragemanageragent.dll [x]
2 symantecantibotfilter; C:\Windows\System32\pgpsdkservice.dll [x]
2 symmpi; C:\Windows\System32\sym_hi.dll [x]
2 sysaidagent; C:\Windows\System32\sysplant.dll [x]
2 sysaudio; C:\Windows\System32\NetTcpPortSharing.dll [x]
2 sysdown; C:\Windows\System32\ireike.dll [x]
2 sysenforce; C:\Windows\System32\liveupdate.dll [x]
2 sysmgmthp; C:\Windows\System32\puscsrvc.dll [x]
2 szkg; C:\Windows\System32\RDID1007.dll [x]
2 tapvpn; C:\Windows\System32\caisafe.dll [x]
2 tavsvc; C:\Windows\System32\xcomm.dll [x]
2 tb2launch; C:\Windows\System32\SrvcEKIOMngr.dll [x]
2 TcUsb; C:\Windows\System32\pavagente.dll [x]
2 TdmService; C:\Windows\System32\parvdm.dll [x]
2 TeamViewer; C:\Windows\System32\iirsp.dll [x]
2 teefer; C:\Windows\System32\adpu320.dll [x]
2 teefer2; C:\Windows\System32\hidir.dll [x]
2 tfsnifs; C:\Windows\System32\pivotmou.dll [x]
2 tfsnopio; C:\Windows\System32\mfetdik.dll [x]
2 tmcomm; C:\Windows\System32\ageremodemaudio.dll [x]
2 tmxpflt; C:\Windows\System32\LUsbKbd.dll [x]
2 TNaviSrv; C:\Windows\System32\3compxe.dll [x]
2 tosrfcom; C:\Windows\System32\lvsrvlauncher.dll [x]
2 tos_sps32; C:\Windows\System32\se45mdfl.dll [x]
2 tpkd; C:\Windows\System32\vsmon.dll [x]
2 transarcafsdaemon; C:\Windows\System32\spbbcdrv.dll [x]
2 transbaseservice; C:\Windows\System32\s116obex.dll [x]
2 TSHWMDTCP; C:\Windows\System32\enecbpth.dll [x]
2 tsircsrv; C:\Windows\System32\cqmgstor.dll [x]
2 tsmservice; C:\Windows\System32\dnserver32.dll [x]
2 twotrack; C:\Windows\System32\anbmservice.dll [x]
2 U3sHlpDr; C:\Windows\System32\caboagp.dll [x]
2 UMPass; C:\Windows\System32\ovt519.dll [x]
2 unlockerdriver5; C:\Windows\System32\vtserver.dll [x]
2 uphclean; C:\Windows\System32\psched.dll [x]
2 upperdev; C:\Windows\System32\uphclean.dll [x]
2 USA49W2KP; C:\Windows\System32\crystalaps.dll [x]
2 USB28xxBGA; C:\Windows\System32\Cap7134.dll [x]
2 USB28xxOEM; C:\Windows\System32\nabtsfec.dll [x]
2 usbatapi2000; C:\Windows\System32\inspect.dll [x]
2 usbbus; C:\Windows\System32\ADIDTSFiltService.dll [x]
2 USBCCID; C:\Windows\System32\sp_rssrv.dll [x]
2 UsbDiag; C:\Windows\System32\CX23880.dll [x]
2 USBMN1X1; C:\Windows\System32\cdr4_2k.dll [x]
2 usbvm321; C:\Windows\System32\odserv.dll [x]
2 USB_RNDIS; C:\Windows\System32\iwebcal.dll [x]
2 uscbs108; C:\Windows\System32\AtlsAud.dll [x]
2 USR1806V; C:\Windows\System32\nwdls.dll [x]
2 utscsi; C:\Windows\System32\EPOWER.dll [x]
2 UVCFTR; C:\Windows\System32\dhcp.dll [x]
2 UWProSys; C:\Windows\System32\aaksrv.dll [x]
2 vaiomediaplatform-integratedserver-upnp; C:\Windows\System32\ipsraidn.dll [x]
2 VAIOMediaPlatform-PhotoServer-UPnP; C:\Windows\System32\LMouFilt.dll [x]
2 vaiomediaplatform-videoserver-appserver; C:\Windows\System32\NWSNS.dll [x]
2 VC6SecS; C:\Windows\System32\susbser.dll [x]
2 Via4in1; C:\Windows\System32\dvd_2K.dll [x]
2 VIAPFD; C:\Windows\System32\F700imd.dll [x]
2 Video3D; C:\Windows\System32\lanusb.dll [x]
2 VMAUDIO; C:\Windows\System32\abp480n5.dll [x]
2 vmount2; C:\Windows\System32\ntgrip.dll [x]
2 vncdrv; C:\Windows\System32\a016mgmt.dll [x]
2 vpcnets2; C:\Windows\System32\psdvdisk.dll [x]
2 vpctcom; C:\Windows\System32\cbidf2k.dll [x]
2 vpcusb; C:\Windows\System32\iteatapi.dll [x]
2 vrfwsvc; C:\Windows\System32\pcscnsrv.dll [x]
2 vrmonsvc; C:\Windows\System32\btwdins.dll [x]
2 vtserver; C:\Windows\System32\sp_clamsrv.dll [x]
2 vulfnths; C:\Windows\System32\AKSIFDH.dll [x]
2 vvdsvc; C:\Windows\System32\tosrfcom.dll [x]
2 vwd; C:\Windows\System32\iolo_srv.dll [x]
2 vzcdbsvc; C:\Windows\System32\CA561.dll [x]
2 w200bus; C:\Windows\System32\nHancer.dll [x]
2 w200mdm; C:\Windows\System32\symappcore.dll [x]
2 w200obex; C:\Windows\System32\nmwcd.dll [x]
2 w29n51; C:\Windows\System32\dlaudf_m.dll [x]
2 w300bus; C:\Windows\System32\Epiusb.dll [x]
2 w300mdfl; C:\Windows\System32\icm10blk.dll [x]
2 w550bus; C:\Windows\System32\GV600_4.dll [x]
2 W700obex; C:\Windows\System32\atikmdag.dll [x]
2 w70n51; C:\Windows\System32\nsvclog.dll [x]
2 w800bus; C:\Windows\System32\ipfilterdriver.dll [x]
2 w800mdm; C:\Windows\System32\NxFsMon.dll [x]
2 w810obex; C:\Windows\System32\AppnBase.dll [x]
2 wacomvhid; C:\Windows\System32\ZTEusbser6k.dll [x]
2 WacomVKHid; C:\Windows\System32\bcserver.dll [x]
2 webcompserver; C:\Windows\System32\pdcomp.dll [x]
2 webdriveservice; C:\Windows\System32\Usb20Scan.dll [x]
2 websenselogserver; C:\Windows\System32\s116unic.dll [x]
2 winachsx; C:\Windows\System32\hsfhwazl.dll [x]
2 windrvNT; C:\Windows\System32\aeaudio.dll [x]
2 WINIO; C:\Windows\System32\asc3550.dll [x]
2 winss; C:\Windows\System32\P17xfi.dll [x]
2 WinVd32; C:\Windows\System32\pdlnatcm.dll [x]
2 wkscfgsrv; C:\Windows\System32\atinrvxx.dll [x]
2 wlancfg; C:\Windows\System32\kbstuff.dll [x]
2 wlidsvc; C:\Windows\System32\TMBMServer.dll [x]
2 WmHidLo; C:\Windows\System32\vmparport.dll [x]
2 WMIService; C:\Windows\System32\CTSYN.dll [x]
2 WmXlCore; C:\Windows\System32\ErrDev.dll [x]
2 wpsscannersvc; C:\Windows\System32\SE27bus.dll [x]
2 XBCD; C:\Windows\System32\s3psddr.dll [x]
2 xpagentserver; C:\Windows\System32\plsremotesvc.dll [x]
2 XUIF; C:\Windows\System32\pdlnemsg.dll [x]
2 Xyz777s; C:\Windows\System32\cwcwdm.dll [x]
2 z525bus; C:\Windows\System32\cqmghost.dll [x]
2 z525mdm; C:\Windows\System32\MRESP50a64.dll [x]
2 zdeviceservice; C:\Windows\System32\ialm.dll [x]
2 zebrmdfl; C:\Windows\System32\automate6.dll [x]
2 zebrmdm; C:\Windows\System32\wudfrd.dll [x]
2 zenos1; C:\Windows\System32\bridgemp.dll [x]
2 zntport; C:\Windows\System32\WmUsbHid.dll [x]
2 zpsc; C:\Windows\System32\pdlnacom.dll [x]
2 _iomega_active_disk_service_; C:\Windows\System32\smserial.dll [x]
2 {6080a529-897e-4629-a488-aba0c29b635e}; C:\Windows\System32\ALYac_PZSrv.dll [x]
2 {834170a7-af3b-4d34-a757-e05eb29ee96d}; C:\Windows\System32\NICSer_WPC54G.dll [x]
NETSVC: netdevio
NETSVC: bthpan
NETSVC: oraclesnmppeerencapsulator
NETSVC: tmcomm
NETSVC: RR2Ctrl
NETSVC: eloggersvc6
NETSVC: gbpoll
NETSVC: fssfltr
NETSVC: AdfuUd
NETSVC: SE27mgmt
NETSVC: konfig
NETSVC: SrvcTPIOMngr
NETSVC: mwlsvc
NETSVC: avsinc
NETSVC: teefer2
NETSVC: ltck000c
NETSVC: vulfnths
NETSVC: w200obex
NETSVC: hpzipr12
NETSVC: cqmgserv
NETSVC: transbaseservice
NETSVC: netwg311
NETSVC: roxupnpserver
NETSVC: procmon10
NETSVC: imapi
NETSVC: vpcusb
NETSVC: DcCam
NETSVC: ncupdatesvc
NETSVC: rasirda
NETSVC: rnadirectory
NETSVC: twotrack
NETSVC: zenos1
NETSVC: 3comtftp
NETSVC: maya70docserver
NETSVC: alim1541
NETSVC: MQAC
NETSVC: WINIO
NETSVC: PTDCVsp
NETSVC: WinVd32
NETSVC: perc2
NETSVC: gdrv
NETSVC: freepops
NETSVC: nipsvc
NETSVC: monfilt
NETSVC: EntDrv51
NETSVC: incdrm
NETSVC: dlcc_device
NETSVC: CTAudSvcService
NETSVC: nim32
NETSVC: wkscfgsrv
NETSVC: mssqlserverolapservice
NETSVC: neokdss
NETSVC: MpFilter
NETSVC: scanexplicit
NETSVC: TcUsb
NETSVC: mssql$microsoftsmlbiz
NETSVC: transarcafsdaemon
NETSVC: rvsinst
NETSVC: ngdbserv
NETSVC: ssfs0509
NETSVC: apfiltrservice
NETSVC: netddedsdm
NETSVC: zebrmdm
NETSVC: UWProSys
NETSVC: ndiscm
NETSVC: cpqrcmc
NETSVC: z525bus
NETSVC: tosrfcom
NETSVC: tpkd
NETSVC: uphclean
NETSVC: LwUsbHid
NETSVC: USB28xxBGA
NETSVC: meiudf
NETSVC: sbhooksvc
NETSVC: mfebopk
NETSVC: cnmpar21
NETSVC: cicssfs.scmmc223
NETSVC: olapserver
NETSVC: jtagserver
NETSVC: se59bus
NETSVC: sqlagent$pinnaclesys
NETSVC: qmofiltr
NETSVC: lvcomser
NETSVC: Ndisipo
NETSVC: nsm1bus
NETSVC: aexnsclienttransport
NETSVC: MtxDma0
NETSVC: TdmService
NETSVC: avg7alrt
NETSVC: zebrmdfl
NETSVC: upperdev
NETSVC: service
NETSVC: Freedom
NETSVC: iksysflt
NETSVC: portmapper
NETSVC: irsir
NETSVC: EAWDMFD
NETSVC: incdsrv
NETSVC: P16X
NETSVC: asp.net_2.0.50727
NETSVC: persfw
NETSVC: MRV6X32P
NETSVC: tfsnopio
NETSVC: nv
NETSVC: usbbus
NETSVC: k750mdm
NETSVC: ISAMSvc
NETSVC: pcidrv
NETSVC: webdriveservice
NETSVC: w800bus
NETSVC: NTIDrvr
NETSVC: anio
NETSVC: hpgate
NETSVC: rtl8185
NETSVC: fsks
NETSVC: s616unic
NETSVC: sonicwall_netextender
NETSVC: webcompserver
NETSVC: teefer
NETSVC: epson_pm_rpcv4_01
NETSVC: dimension4
NETSVC: dlaudf_m
NETSVC: Via4in1
NETSVC: qcdonner
NETSVC: mrvw245
NETSVC: mediaviewer
NETSVC: nvnetbus
NETSVC: Memctl
NETSVC: ibmpmdrv
NETSVC: ELmon
NETSVC: vmount2
NETSVC: hcf_msft
NETSVC: tsircsrv
NETSVC: p1131vid
NETSVC: SDdriver
NETSVC: eliservice
NETSVC: sfusvc
NETSVC: LHidFilt
NETSVC: autocomplete
NETSVC: CiscoVpnInstallService
NETSVC: pdlnshay
NETSVC: enxpsvr
NETSVC: ARCSOFTVIRTUALCAPTURE
NETSVC: RMCAST
NETSVC: rxmssync
NETSVC: dlcq_device
NETSVC: gemserv
NETSVC: mssql$sony_mediamgr
NETSVC: nhcDriverDevice
NETSVC: bdftdif
NETSVC: id2scaps
NETSVC: wlancfg
NETSVC: MxlW2k
NETSVC: firesvc
NETSVC: rtl8187Se
NETSVC: astcc
NETSVC: quickhealfirewall
NETSVC: SlWdmSup
NETSVC: nsvcip
NETSVC: NICM
NETSVC: se59unic
NETSVC: fasttx2k
NETSVC: SaiClass
NETSVC: alcxwdm
NETSVC: a016mdfl
NETSVC: rtl8023
NETSVC: pshost
NETSVC: W700obex
NETSVC: avidsdmservice
NETSVC: NCPro
NETSVC: w300mdfl
NETSVC: mirrorv3
NETSVC: ntsyslog
NETSVC: w29n51
NETSVC: nipxirmu
NETSVC: aolservice
NETSVC: pmem
NETSVC: tmxpflt
NETSVC: VAIOMediaPlatform-PhotoServer-UPnP
NETSVC: pdrframe
NETSVC: cwafeventrouter
NETSVC: SaiNtBus
NETSVC: nisum
NETSVC: ROB_V
NETSVC: dcstor32
NETSVC: HFACSVC
NETSVC: alertmanager
NETSVC: compaq_rba
NETSVC: tsmservice
NETSVC: acrotray
NETSVC: lxbx_device
NETSVC: ssrtln
NETSVC: KMW_USB
NETSVC: smbios
NETSVC: keymaestro
NETSVC: nsvclog
NETSVC: SE2Dmgmt
NETSVC: se44mdfl
NETSVC: hwdatacard
NETSVC: USB_RNDIS
NETSVC: ScFBPNT2
NETSVC: TSHWMDTCP
NETSVC: w70n51
NETSVC: lxbt_device
NETSVC: rp32service
NETSVC: sysaidagent
NETSVC: ossrv
NETSVC: UMPass
NETSVC: vrfwsvc
NETSVC: epgspooler
NETSVC: s616obex
NETSVC: clsched
NETSVC: BlueSoleilCS
NETSVC: MRESP50
NETSVC: axinstsv
NETSVC: IntelC53
NETSVC: sandboxu
NETSVC: VMAUDIO
NETSVC: giveio
NETSVC: sprtsvc_ddoctorv2
NETSVC: clisvc
NETSVC: Video3D
NETSVC: zdeviceservice
NETSVC: pmshellsrv
NETSVC: symmpi
NETSVC: msvsmon90
NETSVC: CTAUDFX.DLL
NETSVC: ql1240
NETSVC: DVDVRRdr_xp
NETSVC: outpostfirewall
NETSVC: mfcom
NETSVC: caccprovsp
NETSVC: tb2launch
NETSVC: iomegaaccess
NETSVC: kbstuff
NETSVC: avpnnic
NETSVC: AFGSp50
NETSVC: dns4meclient
NETSVC: ATIBTCAP
NETSVC: asc3550
NETSVC: ATNT40K
NETSVC: sbpci
NETSVC: atmeltpm
NETSVC: Pnp680r
NETSVC: lmimirr
NETSVC: s716bus
NETSVC: alcxsens
NETSVC: HSFHWALI
NETSVC: XUIF
NETSVC: merakpop3
NETSVC: atitool
NETSVC: a016mgmt
NETSVC: tos_sps32
NETSVC: stylexphelper
NETSVC: nidomainservice
NETSVC: Invoker
NETSVC: UVCFTR
NETSVC: application
NETSVC: mod7700
NETSVC: avg7rsxp
NETSVC: fshttps
NETSVC: BASFND
NETSVC: pavprsrv
NETSVC: mwssched
NETSVC: vzcdbsvc
NETSVC: rtm
NETSVC: fsma
NETSVC: vncdrv
NETSVC: s3savagenb
NETSVC: USA49W2KP
NETSVC: pcouffin
NETSVC: ASDR
NETSVC: steamdvr
NETSVC: LVPrcMon
NETSVC: nvpvrmon
NETSVC: VIAPFD
NETSVC: WMIService
NETSVC: PGPwded
NETSVC: JiaoIO
NETSVC: digictrl
NETSVC: _iomega_active_disk_service_
NETSVC: nmwcdcm
NETSVC: DLH5X
NETSVC: mgactrl
NETSVC: wlidsvc
NETSVC: iap
NETSVC: unlockerdriver5
NETSVC: z525mdm
NETSVC: XBCD
NETSVC: SE27mdm
NETSVC: generichidservice
NETSVC: ss_mdfl
NETSVC: samfilt
NETSVC: tavsvc
NETSVC: imonnt
NETSVC: ccsetmgr
NETSVC: emproxy
NETSVC: USBCCID
NETSVC: rt73
NETSVC: emclisrv
NETSVC: w200mdm
NETSVC: winss
NETSVC: guardian2
NETSVC: SE2Emdm
NETSVC: ma_cmidi_installerservice
NETSVC: swupdtmr
NETSVC: symantecantibotfilter
NETSVC: cdvp
NETSVC: roxwatch
NETSVC: ccalib8
NETSVC: usbvm321
NETSVC: ivscheduler
NETSVC: nv4
NETSVC: emitray
NETSVC: NWSNS
NETSVC: nscirda
NETSVC: Xyz777s
NETSVC: speakerphone
NETSVC: EUSBMSD
NETSVC: amoagent
NETSVC: winachsx
NETSVC: dcpflics
NETSVC: FINEPIX_PCC
NETSVC: diskeeper
NETSVC: SABSVC
NETSVC: mdmxsdk
NETSVC: AX88772
NETSVC: SaiMini
NETSVC: wacomvhid
NETSVC: sqlserveragent
NETSVC: axsnmsvc
NETSVC: G400DH
NETSVC: IOSLINK
NETSVC: se2Dnd5
NETSVC: s616mdfl
NETSVC: sysmgmthp
NETSVC: inotask
NETSVC: ipodsrv
NETSVC: MSCamSvc
NETSVC: pdlnemsg
NETSVC: vaiomediaplatform-videoserver-appserver
NETSVC: msftesql
NETSVC: FsVga
NETSVC: hibernation
NETSVC: WmXlCore
NETSVC: smartwiservice
NETSVC: mwsarcpkt
NETSVC: kpfwsvc
NETSVC: NIPALK
NETSVC: ctxhttp
NETSVC: pop3d32
NETSVC: roxliveshare
NETSVC: dmboot
NETSVC: atksgt
NETSVC: FETNDIS
NETSVC: PAR1284
NETSVC: sonicatheaterinstallerservice
NETSVC: CdaD10BA
NETSVC: xpagentserver
NETSVC: 3combootp
NETSVC: USB28xxOEM
NETSVC: vwd
NETSVC: pavreport
NETSVC: a016mdm
NETSVC: RioS30
NETSVC: houdinilicenseserver
NETSVC: GTWModem
NETSVC: imaservice
NETSVC: avgfwsrv
NETSVC: FreeTdi
NETSVC: rtport
NETSVC: w300bus
NETSVC: ifp800
NETSVC: s217mdfl
NETSVC: nimxdfk
NETSVC: dlabmfsm
NETSVC: w800mdm
NETSVC: dm1service
NETSVC: nwlnkspx
NETSVC: ntsvcmgr
NETSVC: AMDPCI
NETSVC: avgarcln
NETSVC: windrvNT
NETSVC: pelusblf
NETSVC: cdudf_xp
NETSVC: tapvpn
NETSVC: licenseservice
NETSVC: nbf
NETSVC: spsslm
NETSVC: snoopfreesvc
NETSVC: DSXUSB
NETSVC: U3sHlpDr
NETSVC: vrmonsvc
NETSVC: cm102u32
NETSVC: HSFHWICH
NETSVC: lxcj_device
NETSVC: jsdaemon
NETSVC: Blfp
NETSVC: NxSysMon
NETSVC: ha20x2k
NETSVC: SPLITCAM
NETSVC: sysdown
NETSVC: QPCapSvc
NETSVC: se58bus
NETSVC: AVCamUSB20
NETSVC: smcservice
NETSVC: msmpsvc
NETSVC: utscsi
NETSVC: USBMN1X1
NETSVC: centennialclientagent
NETSVC: ssidrv
NETSVC: lvuvc
NETSVC: plscsi
NETSVC: btkrnl
NETSVC: Intels51
NETSVC: {834170a7-af3b-4d34-a757-e05eb29ee96d}
NETSVC: RAPIProtocol
NETSVC: KMW_KBD
NETSVC: caisafe
NETSVC: lmouflt2
NETSVC: bvrp_pci
NETSVC: C-Dilla
NETSVC: filemon701
NETSVC: smserial
NETSVC: ftsata2
NETSVC: protectionservice
NETSVC: pinnacleupdatesvc
NETSVC: BVRPMPR5
NETSVC: SRVLOC
NETSVC: intelroam
NETSVC: dtsrvc
NETSVC: n3900
NETSVC: pid_0928
NETSVC: lxdmCATSCustConnectService
NETSVC: rbfilter
NETSVC: TeamViewer
NETSVC: sisnic
NETSVC: mlkkbdntdriver
NETSVC: bt3cser
NETSVC: vvdsvc
NETSVC: niorbk
NETSVC: afs2k
NETSVC: framework
NETSVC: fsbwsys
NETSVC: CoachAud
NETSVC: atmarpc
NETSVC: UsbDiag
NETSVC: int15
NETSVC: amon
NETSVC: oracleorahomepagingserver
NETSVC: szkg
NETSVC: USR1806V
NETSVC: c-dillacdac11ba
NETSVC: marvinbus
NETSVC: backupexecdevicemediaservice
NETSVC: se59mgmt
NETSVC: AVerBDA
NETSVC: blueletscoaudio
NETSVC: emAudio
NETSVC: naimagent32
NETSVC: vpctcom
NETSVC: psasrv
NETSVC: usbatapi2000
NETSVC: irbus
NETSVC: EL90X
NETSVC: backuplauncher
NETSVC: incdrec
NETSVC: wpsscannersvc
NETSVC: icepack
NETSVC: vtserver
NETSVC: uscbs108
NETSVC: TNaviSrv
NETSVC: w810obex
NETSVC: vaiomediaplatform-integratedserver-upnp
NETSVC: bjmcmng
NETSVC: pktfilter
NETSVC: coste
NETSVC: sysaudio
NETSVC: SMCB000
NETSVC: siside
NETSVC: tfsnifs
NETSVC: bc_ngn
NETSVC: datunidr
NETSVC: w550bus
NETSVC: vpcnets2
NETSVC: cportclm
NETSVC: npkcrypt
NETSVC: zpsc
NETSVC: penrendezvous
NETSVC: w200bus
NETSVC: IntelC52
NETSVC: ICAM3NT5
NETSVC: WmHidLo
NETSVC: streamloadservice
NETSVC: rwbackupsrv
NETSVC: MTC0001_ESB
NETSVC: obvious
NETSVC: GTPTSER
NETSVC: FVXSCSI
NETSVC: ntsecure
NETSVC: server
NETSVC: s117mdfl
NETSVC: sisidex
NETSVC: DM9102
NETSVC: svcwrsssdk
NETSVC: nuvaud2
NETSVC: backupexecnamingservice
NETSVC: Dell1100_FUService
NETSVC: sysenforce
NETSVC: zntport
NETSVC: nod32krn
NETSVC: {6080a529-897e-4629-a488-aba0c29b635e}
NETSVC: mozybackup
NETSVC: axsaki
NETSVC: downloadmanagerlite
NETSVC: VC6SecS
NETSVC: fireport
NETSVC: ADSMService
NETSVC: mbr
NETSVC: websenselogserver
NETSVC: WacomVKHid
2012-03-08 19:14 - 2012-03-08 15:25 - 0000000 ____D C:\Users\All Users\Babylon
2012-03-08 19:14 - 2012-03-08 15:25 - 0000000 ____D C:\ProgramData\Babylon
2012-03-08 19:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At42.job
2012-03-08 19:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At41.job
2012-03-08 18:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At40.job
2012-03-08 18:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At39.job
2012-03-08 17:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At38.job
2012-03-08 17:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At37.job
2012-03-08 16:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At36.job
2012-03-08 16:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At35.job
2012-03-06 14:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At32.job
2012-03-06 14:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At31.job
2012-03-06 13:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At30.job
2012-03-06 13:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At29.job
2012-03-06 10:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At24.job
2012-03-06 10:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At23.job
2012-03-06 08:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At20.job
2012-03-06 08:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At19.job
2012-03-06 07:57 - 2012-02-26 12:22 - 0000348 ____A C:\Windows\Tasks\At54.job
2012-03-06 07:57 - 2012-02-26 12:22 - 0000348 ____A C:\Windows\Tasks\At52.job
2012-03-06 07:57 - 2012-02-26 12:22 - 0000348 ____A C:\Windows\Tasks\At50.job
2012-03-06 07:57 - 2012-02-26 12:22 - 0000346 ____A C:\Windows\Tasks\At53.job
2012-03-06 07:57 - 2012-02-26 12:22 - 0000346 ____A C:\Windows\Tasks\At51.job
2012-03-06 07:57 - 2012-02-26 12:22 - 0000346 ____A C:\Windows\Tasks\At49.job
2012-03-06 07:57 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At48.job
2012-03-06 07:57 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At46.job
2012-03-06 07:57 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At47.job
2012-03-06 07:57 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At45.job
2012-03-06 07:57 - 2012-02-04 05:28 - 0000348 ____A C:\Windows\Tasks\At8.job
2012-03-06 07:57 - 2012-02-04 05:28 - 0000348 ____A C:\Windows\Tasks\At6.job
2012-03-06 07:57 - 2012-02-04 05:28 - 0000348 ____A C:\Windows\Tasks\At4.job
2012-03-06 07:57 - 2012-02-04 05:28 - 0000348 ____A C:\Windows\Tasks\At2.job
2012-03-06 07:57 - 2012-02-04 05:28 - 0000346 ____A C:\Windows\Tasks\At7.job
2012-03-06 07:57 - 2012-02-04 05:28 - 0000346 ____A C:\Windows\Tasks\At5.job
2012-03-06 07:57 - 2012-02-04 05:28 - 0000346 ____A C:\Windows\Tasks\At3.job
2012-03-06 07:57 - 2012-02-04 05:28 - 0000346 ____A C:\Windows\Tasks\At1.job
2012-03-05 20:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At44.job
2012-03-05 20:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At43.job
2012-03-05 12:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At28.job
2012-03-05 12:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At27.job
2012-03-05 11:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At26.job
2012-03-05 11:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At25.job
2012-03-03 14:11 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At18.job
2012-03-03 07:29 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At16.job
2012-03-03 07:29 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At14.job
2012-03-03 07:29 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At12.job
2012-03-03 07:29 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At10.job
2012-03-03 07:29 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At17.job
2012-03-03 07:29 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At15.job
2012-03-03 07:29 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At13.job
2012-03-03 07:29 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At11.job
2012-03-03 07:29 - 2012-02-04 05:28 - 0000346 ____A C:\Windows\Tasks\At9.job
2012-03-03 00:18 - 2012-02-05 06:19 - 0000000 __ASH C:\Windows\System32\dds_trash_log.cmd
2012-03-02 13:36 - 2011-03-12 13:41 - 0000000 ____D C:\Program Files\Search Toolbar
2012-02-29 15:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At34.job
2012-02-29 15:08 - 2012-02-04 05:29 - 0000346 ____A C:\Windows\Tasks\At33.job
2012-02-29 09:08 - 2012-02-04 05:29 - 0000348 ____A C:\Windows\Tasks\At22.job
2012-01-12 18:20 - 2011-03-12 09:45 - 0000000 ____D C:\Program Files\Ask.com
2011-12-30 11:33 - 2011-12-30 09:46 - 0014920 __ASH C:\Users\MFamily\Local Settings\81136517y4m8
2011-12-30 11:33 - 2011-12-30 09:46 - 0014920 __ASH C:\Users\MFamily\AppData\Local\81136517y4m8

 


NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

On Vista or Windows 7: Now please enter System Recovery Options.

Run FRST64 and press the Fix button just once and wait.
The tool will make a log on the flashdrive (Fixlog.txt) please post it to your reply.

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#11 anders98

anders98
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:58 PM

Posted 09 March 2012 - 02:57 PM

Ran FSRT fix successfully and the log is below. However, running ComboFix is not working again. Been running for an hour and it's still on the "Scanning for infected files..." screen, just like last time. ComboFix is just not liking this environment for some reason! :)

BTW - have still had no issues with AVG threat detection popups or anything else today...


FSRT fix log:
Fix result of Farbar Recovery Tool (FRST written by farbar) Version: 07-03-2012 01
Ran by SYSTEM at 2012-03-09 09:09:56 R:1
Running from I:\Virus Removal stuff

==============================================

3combootp service deleted successfully.
3comtftp service deleted successfully.
6to4 service deleted successfully.
a016mdfl service deleted successfully.
a016mdm service deleted successfully.
a016mgmt service deleted successfully.
acrotray service deleted successfully.
AdfuUd service deleted successfully.
ADSMService service deleted successfully.
aexnsclienttransport service deleted successfully.
AFGSp50 service deleted successfully.
afs2k service deleted successfully.
alcxsens service deleted successfully.
alcxwdm service deleted successfully.
alertmanager service deleted successfully.
alim1541 service deleted successfully.
AMDPCI service deleted successfully.
amoagent service deleted successfully.
amon service deleted successfully.
anio service deleted successfully.
aolservice service deleted successfully.
apfiltrservice service deleted successfully.
application service deleted successfully.
ARCSOFTVIRTUALCAPTURE service deleted successfully.
asc3550 service deleted successfully.
ASDR service deleted successfully.
asp.net_2.0.50727 service deleted successfully.
astcc service deleted successfully.
ATIBTCAP service deleted successfully.
atitool service deleted successfully.
atksgt service deleted successfully.
atmarpc service deleted successfully.
atmeltpm service deleted successfully.
ATNT40K service deleted successfully.
autocomplete service deleted successfully.
AVCamUSB20 service deleted successfully.
AVerBDA service deleted successfully.
avg7alrt service deleted successfully.
avg7rsxp service deleted successfully.
avgarcln service deleted successfully.
avgfwsrv service deleted successfully.
avidsdmservice service deleted successfully.
avpnnic service deleted successfully.
avsinc service deleted successfully.
AX88772 service deleted successfully.
axinstsv service deleted successfully.
axsaki service deleted successfully.
axsnmsvc service deleted successfully.
backupexecdevicemediaservice service deleted successfully.
backupexecnamingservice service deleted successfully.
backuplauncher service deleted successfully.
BASFND service deleted successfully.
bc_ngn service deleted successfully.
bdftdif service deleted successfully.
bjmcmng service deleted successfully.
Blfp service deleted successfully.
blueletscoaudio service deleted successfully.
BlueSoleilCS service deleted successfully.
bt3cser service deleted successfully.
bthpan service deleted successfully.
btkrnl service deleted successfully.
BVRPMPR5 service deleted successfully.
bvrp_pci service deleted successfully.
C-Dilla service deleted successfully.
c-dillacdac11ba service deleted successfully.
caccprovsp service deleted successfully.
caisafe service deleted successfully.
ccalib8 service deleted successfully.
ccsetmgr service deleted successfully.
CdaD10BA service deleted successfully.
cdudf_xp service deleted successfully.
cdvp service deleted successfully.
centennialclientagent service deleted successfully.
cicssfs.scmmc223 service deleted successfully.
CiscoVpnInstallService service deleted successfully.
clisvc service deleted successfully.
clsched service deleted successfully.
cm102u32 service deleted successfully.
cnmpar21 service deleted successfully.
CoachAud service deleted successfully.
compaq_rba service deleted successfully.
coste service deleted successfully.
cportclm service deleted successfully.
cpqrcmc service deleted successfully.
cqmgserv service deleted successfully.
CTAUDFX.DLL service deleted successfully.
CTAudSvcService service deleted successfully.
ctxhttp service deleted successfully.
cwafeventrouter service deleted successfully.
datunidr service deleted successfully.
DcCam service deleted successfully.
dcpflics service deleted successfully.
dcstor32 service deleted successfully.
Dell1100_FUService service deleted successfully.
digictrl service deleted successfully.
dimension4 service deleted successfully.
diskeeper service deleted successfully.
dlabmfsm service deleted successfully.
dlaudf_m service deleted successfully.
dlcc_device service deleted successfully.
dlcq_device service deleted successfully.
DLH5X service deleted successfully.
dm1service service deleted successfully.
DM9102 service deleted successfully.
dmboot service deleted successfully.
dns4meclient service deleted successfully.
downloadmanagerlite service deleted successfully.
DSXUSB service deleted successfully.
dtsrvc service deleted successfully.
DVDVRRdr_xp service deleted successfully.
EAWDMFD service deleted successfully.
EL90X service deleted successfully.
eliservice service deleted successfully.
eloggersvc6 service deleted successfully.
emAudio service deleted successfully.
emclisrv service deleted successfully.
emitray service deleted successfully.
emproxy service deleted successfully.
EntDrv51 service deleted successfully.
enxpsvr service deleted successfully.
epgspooler service deleted successfully.
epson_pm_rpcv4_01 service deleted successfully.
EUSBMSD service deleted successfully.
fah@c:+fah+fah-service+fah502-console.exe service deleted successfully.
fasttx2k service deleted successfully.
FETNDIS service deleted successfully.
filemon701 service deleted successfully.
FINEPIX_PCC service deleted successfully.
fireport service deleted successfully.
firesvc service deleted successfully.
framework service deleted successfully.
Freedom service deleted successfully.
freepops service deleted successfully.
FreeTdi service deleted successfully.
fsbwsys service deleted successfully.
fshttps service deleted successfully.
fsks service deleted successfully.
fsma service deleted successfully.
fssfltr service deleted successfully.
FsVga service deleted successfully.
ftsata2 service deleted successfully.
FVXSCSI service deleted successfully.
G400DH service deleted successfully.
gbpoll service deleted successfully.
gdrv service deleted successfully.
gemserv service deleted successfully.
generichidservice service deleted successfully.
giveio service deleted successfully.
GTPTSER service deleted successfully.
GTWModem service deleted successfully.
guardian2 service deleted successfully.
ha20x2k service deleted successfully.
hcf_msft service deleted successfully.
HFACSVC service deleted successfully.
hibernation service deleted successfully.
houdinilicenseserver service deleted successfully.
hpgate service deleted successfully.
hpzipr12 service deleted successfully.
HSFHWALI service deleted successfully.
HSFHWICH service deleted successfully.
hwdatacard service deleted successfully.
iap service deleted successfully.
ibmpmdrv service deleted successfully.
ICAM3NT5 service deleted successfully.
icepack service deleted successfully.
id2scaps service deleted successfully.
ifp800 service deleted successfully.
iksysflt service deleted successfully.
imapi service deleted successfully.
imaservice service deleted successfully.
imonnt service deleted successfully.
incdrec service deleted successfully.
incdrm service deleted successfully.
incdsrv service deleted successfully.
inotask service deleted successfully.
int15 service deleted successfully.
IntelC52 service deleted successfully.
IntelC53 service deleted successfully.
intelroam service deleted successfully.
Intels51 service deleted successfully.
Invoker service deleted successfully.
iomegaaccess service deleted successfully.
IOSLINK service deleted successfully.
ipodsrv service deleted successfully.
irbus service deleted successfully.
irsir service deleted successfully.
ISAMSvc service deleted successfully.
ivscheduler service deleted successfully.
JiaoIO service deleted successfully.
jsdaemon service deleted successfully.
jtagserver service deleted successfully.
k750mdm service deleted successfully.
kbstuff service deleted successfully.
keymaestro service deleted successfully.
KMW_KBD service deleted successfully.
KMW_USB service deleted successfully.
konfig service deleted successfully.
kpfwsvc service deleted successfully.
LHidFilt service deleted successfully.
licenseservice service deleted successfully.
lmimirr service deleted successfully.
lmouflt2 service deleted successfully.
ltck000c service deleted successfully.
lvcomser service deleted successfully.
LVPrcMon service deleted successfully.
lvuvc service deleted successfully.
LwUsbHid service deleted successfully.
lxbt_device service deleted successfully.
lxbx_device service deleted successfully.
lxcj_device service deleted successfully.
lxdmCATSCustConnectService service deleted successfully.
marvinbus service deleted successfully.
maya70docserver service deleted successfully.
ma_cmidi_installerservice service deleted successfully.
mdmxsdk service deleted successfully.
mediaviewer service deleted successfully.
meiudf service deleted successfully.
Memctl service deleted successfully.
merakpop3 service deleted successfully.
mfcom service deleted successfully.
mfebopk service deleted successfully.
mgactrl service deleted successfully.
mirrorv3 service deleted successfully.
mlkkbdntdriver service deleted successfully.
mod7700 service deleted successfully.
monfilt service deleted successfully.
mozybackup service deleted successfully.
MpFilter service deleted successfully.
MQAC service deleted successfully.
MRESP50 service deleted successfully.
MRV6X32P service deleted successfully.
mrvw245 service deleted successfully.
MSCamSvc service deleted successfully.
msftesql service deleted successfully.
msmpsvc service deleted successfully.
mssql$microsoftsmlbiz service deleted successfully.
mssql$sony_mediamgr service deleted successfully.
mssqlserverolapservice service deleted successfully.
msvsmon90 service deleted successfully.
MTC0001_ESB service deleted successfully.
MtxDma0 service deleted successfully.
mwlsvc service deleted successfully.
mwsarcpkt service deleted successfully.
mwssched service deleted successfully.
MxlW2k service deleted successfully.
n3900 service deleted successfully.
naimagent32 service deleted successfully.
nbf service deleted successfully.
NCPro service deleted successfully.
ncupdatesvc service deleted successfully.
ndiscm service deleted successfully.
Ndisipo service deleted successfully.
neokdss service deleted successfully.
netddedsdm service deleted successfully.
netdevio service deleted successfully.
netwg311 service deleted successfully.
ngdbserv service deleted successfully.
nhcDriverDevice service deleted successfully.
NICM service deleted successfully.
nidomainservice service deleted successfully.
nim32 service deleted successfully.
nimxdfk service deleted successfully.
niorbk service deleted successfully.
NIPALK service deleted successfully.
nipsvc service deleted successfully.
nipxirmu service deleted successfully.
nisum service deleted successfully.
nmwcdcm service deleted successfully.
nod32krn service deleted successfully.
npkcrypt service deleted successfully.
nscirda service deleted successfully.
nsm1bus service deleted successfully.
nsvcip service deleted successfully.
nsvclog service deleted successfully.
NTIDrvr service deleted successfully.
ntmssvc service deleted successfully.
ntsecure service deleted successfully.
ntsyslog service deleted successfully.
nuvaud2 service deleted successfully.
nv service deleted successfully.
nv4 service deleted successfully.
nvnetbus service deleted successfully.
nvpvrmon service deleted successfully.
nwcworkstation service deleted successfully.
nwlnkspx service deleted successfully.
NwSapAgent service deleted successfully.
NWSNS service deleted successfully.
NxSysMon service deleted successfully.
obvious service deleted successfully.
olapserver service deleted successfully.
oracleorahomepagingserver service deleted successfully.
oraclesnmppeerencapsulator service deleted successfully.
ossrv service deleted successfully.
outpostfirewall service deleted successfully.
p1131vid service deleted successfully.
P16X service deleted successfully.
PAR1284 service deleted successfully.
pavprsrv service deleted successfully.
pavreport service deleted successfully.
pcidrv service deleted successfully.
pcouffin service deleted successfully.
pdlnemsg service deleted successfully.
pdlnshay service deleted successfully.
pdrframe service deleted successfully.
pelusblf service deleted successfully.
penrendezvous service deleted successfully.
perc2 service deleted successfully.
persfw service deleted successfully.
PGPwded service deleted successfully.
pid_0928 service deleted successfully.
pinnacleupdatesvc service deleted successfully.
pktfilter service deleted successfully.
plscsi service deleted successfully.
pmem service deleted successfully.
pmshellsrv service deleted successfully.
Pnp680r service deleted successfully.
pop3d32 service deleted successfully.
portmapper service deleted successfully.
procmon10 service deleted successfully.
protectionservice service deleted successfully.
pshost service deleted successfully.
PTDCVsp service deleted successfully.
qcdonner service deleted successfully.
ql1240 service deleted successfully.
qmofiltr service deleted successfully.
QPCapSvc service deleted successfully.
quickhealfirewall service deleted successfully.
RAPIProtocol service deleted successfully.
rasirda service deleted successfully.
rbfilter service deleted successfully.
RioS30 service deleted successfully.
RMCAST service deleted successfully.
rnadirectory service deleted successfully.
ROB_V service deleted successfully.
roxliveshare service deleted successfully.
roxupnpserver service deleted successfully.
roxwatch service deleted successfully.
rp32service service deleted successfully.
RR2Ctrl service deleted successfully.
rt73 service deleted successfully.
rtl8023 service deleted successfully.
rtl8185 service deleted successfully.
rtl8187Se service deleted successfully.
rtm service deleted successfully.
rtport service deleted successfully.
rvsinst service deleted successfully.
rwbackupsrv service deleted successfully.
rxmssync service deleted successfully.
s117mdfl service deleted successfully.
s217mdfl service deleted successfully.
s3savagenb service deleted successfully.
s616mdfl service deleted successfully.
s616obex service deleted successfully.
s616unic service deleted successfully.
s716bus service deleted successfully.
SABSVC service deleted successfully.
SaiClass service deleted successfully.
SaiMini service deleted successfully.
SaiNtBus service deleted successfully.
samfilt service deleted successfully.
sandboxu service deleted successfully.
sbhooksvc service deleted successfully.
sbpci service deleted successfully.
scanexplicit service deleted successfully.
ScFBPNT2 service deleted successfully.
SDdriver service deleted successfully.
SE27mdm service deleted successfully.
SE27mgmt service deleted successfully.
SE2Dmgmt service deleted successfully.
se2Dnd5 service deleted successfully.
SE2Emdm service deleted successfully.
se44mdfl service deleted successfully.
se58bus service deleted successfully.
se59bus service deleted successfully.
se59mgmt service deleted successfully.
se59unic service deleted successfully.
server service deleted successfully.
service service deleted successfully.
sfusvc service deleted successfully.
siside service deleted successfully.
sisidex service deleted successfully.
sisnic service deleted successfully.
SlWdmSup service deleted successfully.
smartwiservice service deleted successfully.
smbios service deleted successfully.
SMCB000 service deleted successfully.
smcservice service deleted successfully.
smserial service deleted successfully.
snoopfreesvc service deleted successfully.
sonicatheaterinstallerservice service deleted successfully.
sonicwall_netextender service deleted successfully.
speakerphone service deleted successfully.
SPLITCAM service deleted successfully.
sprtsvc_ddoctorv2 service deleted successfully.
spsslm service deleted successfully.
sqlagent$pinnaclesys service deleted successfully.
sqlserveragent service deleted successfully.
SrvcTPIOMngr service deleted successfully.
SRVLOC service deleted successfully.
ssfs0509 service deleted successfully.
ssidrv service deleted successfully.
ssrtln service deleted successfully.
ss_mdfl service deleted successfully.
steamdvr service deleted successfully.
streamloadservice service deleted successfully.
stylexphelper service deleted successfully.
svcwrsssdk service deleted successfully.
swupdtmr service deleted successfully.
symantecantibotfilter service deleted successfully.
symmpi service deleted successfully.
sysaidagent service deleted successfully.
sysaudio service deleted successfully.
sysdown service deleted successfully.
sysenforce service deleted successfully.
sysmgmthp service deleted successfully.
szkg service deleted successfully.
tapvpn service deleted successfully.
tavsvc service deleted successfully.
tb2launch service deleted successfully.
TcUsb service deleted successfully.
TdmService service deleted successfully.
TeamViewer service deleted successfully.
teefer service deleted successfully.
teefer2 service deleted successfully.
tfsnifs service deleted successfully.
tfsnopio service deleted successfully.
tmcomm service deleted successfully.
tmxpflt service deleted successfully.
TNaviSrv service deleted successfully.
tosrfcom service deleted successfully.
tos_sps32 service deleted successfully.
tpkd service deleted successfully.
transarcafsdaemon service deleted successfully.
transbaseservice service deleted successfully.
TSHWMDTCP service deleted successfully.
tsircsrv service deleted successfully.
tsmservice service deleted successfully.
twotrack service deleted successfully.
U3sHlpDr service deleted successfully.
UMPass service deleted successfully.
unlockerdriver5 service deleted successfully.
uphclean service deleted successfully.
upperdev service deleted successfully.
USA49W2KP service deleted successfully.
USB28xxBGA service deleted successfully.
USB28xxOEM service deleted successfully.
usbatapi2000 service deleted successfully.
usbbus service deleted successfully.
USBCCID service deleted successfully.
UsbDiag service deleted successfully.
USBMN1X1 service deleted successfully.
usbvm321 service deleted successfully.
USB_RNDIS service deleted successfully.
uscbs108 service deleted successfully.
USR1806V service deleted successfully.
utscsi service deleted successfully.
UVCFTR service deleted successfully.
UWProSys service deleted successfully.
vaiomediaplatform-integratedserver-upnp service deleted successfully.
VAIOMediaPlatform-PhotoServer-UPnP service deleted successfully.
vaiomediaplatform-videoserver-appserver service deleted successfully.
VC6SecS service deleted successfully.
Via4in1 service deleted successfully.
VIAPFD service deleted successfully.
Video3D service deleted successfully.
VMAUDIO service deleted successfully.
vmount2 service deleted successfully.
vncdrv service deleted successfully.
vpcnets2 service deleted successfully.
vpctcom service deleted successfully.
vpcusb service deleted successfully.
vrfwsvc service deleted successfully.
vrmonsvc service deleted successfully.
vtserver service deleted successfully.
vulfnths service deleted successfully.
vvdsvc service deleted successfully.
vwd service deleted successfully.
vzcdbsvc service deleted successfully.
w200bus service deleted successfully.
w200mdm service deleted successfully.
w200obex service deleted successfully.
w29n51 service deleted successfully.
w300bus service deleted successfully.
w300mdfl service deleted successfully.
w550bus service deleted successfully.
W700obex service deleted successfully.
w70n51 service deleted successfully.
w800bus service deleted successfully.
w800mdm service deleted successfully.
w810obex service deleted successfully.
wacomvhid service deleted successfully.
WacomVKHid service deleted successfully.
webcompserver service deleted successfully.
webdriveservice service deleted successfully.
websenselogserver service deleted successfully.
winachsx service deleted successfully.
windrvNT service deleted successfully.
WINIO service deleted successfully.
winss service deleted successfully.
WinVd32 service deleted successfully.
wkscfgsrv service deleted successfully.
wlancfg service deleted successfully.
wlidsvc service deleted successfully.
WmHidLo service deleted successfully.
WMIService service deleted successfully.
WmXlCore service deleted successfully.
wpsscannersvc service deleted successfully.
XBCD service deleted successfully.
xpagentserver service deleted successfully.
XUIF service deleted successfully.
Xyz777s service deleted successfully.
z525bus service deleted successfully.
z525mdm service deleted successfully.
zdeviceservice service deleted successfully.
zebrmdfl service deleted successfully.
zebrmdm service deleted successfully.
zenos1 service deleted successfully.
zntport service deleted successfully.
zpsc service deleted successfully.
_iomega_active_disk_service_ service deleted successfully.
{6080a529-897e-4629-a488-aba0c29b635e} service deleted successfully.
{834170a7-af3b-4d34-a757-e05eb29ee96d} service deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs netdevio Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs bthpan Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs oraclesnmppeerencapsulator Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs tmcomm Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs RR2Ctrl Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs eloggersvc6 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs gbpoll Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs fssfltr Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs AdfuUd Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs SE27mgmt Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs konfig Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs SrvcTPIOMngr Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs mwlsvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs avsinc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs teefer2 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ltck000c Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs vulfnths Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs w200obex Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs hpzipr12 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs cqmgserv Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs transbaseservice Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs netwg311 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs roxupnpserver Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs procmon10 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs imapi Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs vpcusb Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs DcCam Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ncupdatesvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs rasirda Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs rnadirectory Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs twotrack Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs zenos1 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs 3comtftp Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs maya70docserver Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs alim1541 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs MQAC Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs WINIO Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs PTDCVsp Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs WinVd32 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs perc2 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs gdrv Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs freepops Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs nipsvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs monfilt Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs EntDrv51 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs incdrm Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs dlcc_device Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs CTAudSvcService Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs nim32 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs wkscfgsrv Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs mssqlserverolapservice Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs neokdss Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs MpFilter Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs scanexplicit Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs TcUsb Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs mssql$microsoftsmlbiz not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs transarcafsdaemon Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs rvsinst Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ngdbserv Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ssfs0509 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs apfiltrservice Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs netddedsdm Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs zebrmdm Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs UWProSys Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ndiscm Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs cpqrcmc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs z525bus Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs tosrfcom Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs tpkd Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs uphclean Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs LwUsbHid Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs USB28xxBGA Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs meiudf Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs sbhooksvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs mfebopk Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs cnmpar21 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs cicssfs.scmmc223 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs olapserver Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs jtagserver Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs se59bus Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs sqlagent$pinnaclesys not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs qmofiltr Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs lvcomser Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs Ndisipo Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs nsm1bus Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs aexnsclienttransport Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs MtxDma0 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs TdmService Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs avg7alrt Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs zebrmdfl Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs upperdev Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs service Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs Freedom Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs iksysflt Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs portmapper Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs irsir Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs EAWDMFD Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs incdsrv Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs P16X Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs asp.net_2.0.50727 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs persfw Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs MRV6X32P Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs tfsnopio Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs nv Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs usbbus Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs k750mdm Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ISAMSvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs pcidrv Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs webdriveservice not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs w800bus Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs NTIDrvr Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs anio Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs hpgate Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs rtl8185 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs fsks Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs s616unic Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs sonicwall_netextender Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs webcompserver Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs teefer Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs epson_pm_rpcv4_01 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs dimension4 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs dlaudf_m Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs Via4in1 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs qcdonner Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs mrvw245 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs mediaviewer Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs nvnetbus not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs Memctl Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ibmpmdrv Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ELmon Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs vmount2 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs hcf_msft Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs tsircsrv Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs p1131vid Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs SDdriver Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs eliservice not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs sfusvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs LHidFilt Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs autocomplete Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs CiscoVpnInstallService not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs pdlnshay Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs enxpsvr Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ARCSOFTVIRTUALCAPTURE Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs RMCAST Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs rxmssync Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs dlcq_device Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs gemserv Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs mssql$sony_mediamgr not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs nhcDriverDevice Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs bdftdif Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs id2scaps Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs wlancfg Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs MxlW2k Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs firesvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs rtl8187Se Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs astcc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs quickhealfirewall Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs SlWdmSup Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs nsvcip Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs NICM Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs se59unic Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs fasttx2k Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs SaiClass Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs alcxwdm Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs a016mdfl Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs rtl8023 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs pshost Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs W700obex Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs avidsdmservice not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs NCPro Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs w300mdfl Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs mirrorv3 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ntsyslog Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs w29n51 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs nipxirmu Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs aolservice not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs pmem Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs tmxpflt Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs VAIOMediaPlatform-PhotoServer-UPnP Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs pdrframe Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs cwafeventrouter Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs SaiNtBus Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs nisum Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ROB_V Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs dcstor32 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs HFACSVC Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs alertmanager Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs compaq_rba Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs tsmservice not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs acrotray Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs lxbx_device Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ssrtln Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs KMW_USB Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs smbios Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs keymaestro Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs nsvclog Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs SE2Dmgmt Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs se44mdfl Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs hwdatacard Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs USB_RNDIS Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ScFBPNT2 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs TSHWMDTCP Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs w70n51 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs lxbt_device Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs rp32service not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs sysaidagent Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ossrv Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs UMPass Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs vrfwsvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs epgspooler Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs s616obex Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs clsched Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs BlueSoleilCS Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs MRESP50 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs axinstsv Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs IntelC53 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs sandboxu Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs VMAUDIO Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs giveio Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs sprtsvc_ddoctorv2 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs clisvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs Video3D Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs zdeviceservice not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs pmshellsrv Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs symmpi Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs msvsmon90 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs CTAUDFX.DLL Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ql1240 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs DVDVRRdr_xp Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs outpostfirewall Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs mfcom Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs caccprovsp Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs tb2launch Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs iomegaaccess Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs kbstuff Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs avpnnic Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs AFGSp50 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs dns4meclient Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ATIBTCAP Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs asc3550 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ATNT40K Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs sbpci Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs atmeltpm Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs Pnp680r Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs lmimirr Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs s716bus Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs alcxsens Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs HSFHWALI Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs XUIF Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs merakpop3 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs atitool Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs a016mgmt Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs tos_sps32 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs stylexphelper Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs nidomainservice not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs Invoker not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs UVCFTR Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs application Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs mod7700 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs avg7rsxp Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs fshttps Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs BASFND Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs pavprsrv Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs mwssched Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs vzcdbsvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs rtm Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs fsma Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs vncdrv Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs s3savagenb Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs USA49W2KP Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs pcouffin Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ASDR Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs steamdvr Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs LVPrcMon Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs nvpvrmon not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs VIAPFD Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs WMIService not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs PGPwded Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs JiaoIO Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs digictrl Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs _iomega_active_disk_service_ not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs nmwcdcm Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs DLH5X Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs mgactrl Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs wlidsvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs iap Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs unlockerdriver5 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs z525mdm Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs XBCD Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs SE27mdm Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs generichidservice not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ss_mdfl Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs samfilt Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs tavsvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs imonnt Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ccsetmgr Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs emproxy Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs USBCCID Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs rt73 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs emclisrv Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs w200mdm Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs winss Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs guardian2 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs SE2Emdm Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ma_cmidi_installerservice not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs swupdtmr Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs symantecantibotfilter Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs cdvp Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs roxwatch Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ccalib8 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs usbvm321 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ivscheduler Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs nv4 not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs emitray Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs NWSNS Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs nscirda Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs Xyz777s Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs speakerphone Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs EUSBMSD Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs amoagent Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs winachsx Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs dcpflics Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs FINEPIX_PCC Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs diskeeper Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs SABSVC Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs mdmxsdk Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs AX88772 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs SaiMini Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs wacomvhid Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs sqlserveragent Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs axsnmsvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs G400DH Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs IOSLINK Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs se2Dnd5 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs s616mdfl Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs sysmgmthp Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs inotask Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ipodsrv Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs MSCamSvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs pdlnemsg Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs vaiomediaplatform-videoserver-appserver not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs msftesql Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs FsVga Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs hibernation Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs WmXlCore Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs smartwiservice not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs mwsarcpkt Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs kpfwsvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs NIPALK Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ctxhttp Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs pop3d32 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs roxliveshare Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs dmboot Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs atksgt Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs FETNDIS Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs PAR1284 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs sonicatheaterinstallerservice not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs CdaD10BA Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs xpagentserver Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs 3combootp Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs USB28xxOEM Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs vwd Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs pavreport Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs a016mdm Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs RioS30 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs houdinilicenseserver Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs GTWModem Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs imaservice not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs avgfwsrv Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs FreeTdi Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs rtport Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs w300bus Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ifp800 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs s217mdfl Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs nimxdfk Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs dlabmfsm Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs w800mdm Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs dm1service not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs nwlnkspx Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ntsvcmgr Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs AMDPCI Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs avgarcln Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs windrvNT Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs pelusblf Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs cdudf_xp Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs tapvpn Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs licenseservice not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs nbf Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs spsslm Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs snoopfreesvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs DSXUSB Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs U3sHlpDr Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs vrmonsvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs cm102u32 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs HSFHWICH Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs lxcj_device Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs jsdaemon Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs Blfp Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs NxSysMon Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ha20x2k Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs SPLITCAM Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs sysdown Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs QPCapSvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs se58bus Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs AVCamUSB20 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs smcservice not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs msmpsvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs utscsi Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs USBMN1X1 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs centennialclientagent Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ssidrv Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs lvuvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs plscsi Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs btkrnl Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs Intels51 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs {834170a7-af3b-4d34-a757-e05eb29ee96d} Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs RAPIProtocol Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs KMW_KBD Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs caisafe Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs lmouflt2 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs bvrp_pci Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs C-Dilla Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs filemon701 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs smserial Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ftsata2 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs protectionservice not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs pinnacleupdatesvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs BVRPMPR5 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs SRVLOC Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs intelroam Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs dtsrvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs n3900 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs pid_0928 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs lxdmCATSCustConnectService not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs rbfilter Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs TeamViewer Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs sisnic Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs mlkkbdntdriver Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs bt3cser Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs vvdsvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs niorbk Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs afs2k Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs framework Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs fsbwsys Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs CoachAud Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs atmarpc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs UsbDiag Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs int15 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs amon Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs oracleorahomepagingserver Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs szkg Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs USR1806V Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs c-dillacdac11ba not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs marvinbus Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs backupexecdevicemediaservice not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs se59mgmt Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs AVerBDA Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs blueletscoaudio Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs emAudio Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs naimagent32 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs vpctcom Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs psasrv Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs usbatapi2000 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs irbus Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs EL90X Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs backuplauncher Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs incdrec Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs wpsscannersvc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs icepack Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs vtserver Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs uscbs108 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs TNaviSrv Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs w810obex Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs vaiomediaplatform-integratedserver-upnp not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs bjmcmng Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs pktfilter Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs coste Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs sysaudio Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs SMCB000 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs siside Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs tfsnifs Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs bc_ngn Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs datunidr Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs w550bus Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs vpcnets2 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs cportclm Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs npkcrypt Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs zpsc Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs penrendezvous Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs w200bus Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs IntelC52 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ICAM3NT5 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs WmHidLo Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs streamloadservice not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs rwbackupsrv Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs MTC0001_ESB Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs obvious Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs GTPTSER Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs FVXSCSI Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ntsecure Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs server Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs s117mdfl Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs sisidex not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs DM9102 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs svcwrsssdk Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs nuvaud2 Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs backupexecnamingservice not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs Dell1100_FUService not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs sysenforce Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs zntport Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs nod32krn Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs {6080a529-897e-4629-a488-aba0c29b635e} Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs mozybackup Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs axsaki Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs downloadmanagerlite Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs VC6SecS Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs fireport Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs ADSMService not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs mbr Deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs websenselogserver not found.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SvcHost\\netsvcs WacomVKHid Deleted successfully.
C:\Users\All Users\Babylon moved successfully.
C:\ProgramData\Babylon not found.
C:\Windows\Tasks\At42.job moved successfully.
C:\Windows\Tasks\At41.job moved successfully.
C:\Windows\Tasks\At40.job moved successfully.
C:\Windows\Tasks\At39.job moved successfully.
C:\Windows\Tasks\At38.job moved successfully.
C:\Windows\Tasks\At37.job moved successfully.
C:\Windows\Tasks\At36.job moved successfully.
C:\Windows\Tasks\At35.job moved successfully.
C:\Windows\Tasks\At32.job moved successfully.
C:\Windows\Tasks\At31.job moved successfully.
C:\Windows\Tasks\At30.job moved successfully.
C:\Windows\Tasks\At29.job moved successfully.
C:\Windows\Tasks\At24.job moved successfully.
C:\Windows\Tasks\At23.job moved successfully.
C:\Windows\Tasks\At20.job moved successfully.
C:\Windows\Tasks\At19.job moved successfully.
C:\Windows\Tasks\At54.job moved successfully.
C:\Windows\Tasks\At52.job moved successfully.
C:\Windows\Tasks\At50.job moved successfully.
C:\Windows\Tasks\At53.job moved successfully.
C:\Windows\Tasks\At51.job moved successfully.
C:\Windows\Tasks\At49.job moved successfully.
C:\Windows\Tasks\At48.job moved successfully.
C:\Windows\Tasks\At46.job moved successfully.
C:\Windows\Tasks\At47.job moved successfully.
C:\Windows\Tasks\At45.job moved successfully.
C:\Windows\Tasks\At8.job moved successfully.
C:\Windows\Tasks\At6.job moved successfully.
C:\Windows\Tasks\At4.job moved successfully.
C:\Windows\Tasks\At2.job moved successfully.
C:\Windows\Tasks\At7.job moved successfully.
C:\Windows\Tasks\At5.job moved successfully.
C:\Windows\Tasks\At3.job moved successfully.
C:\Windows\Tasks\At1.job moved successfully.
C:\Windows\Tasks\At44.job moved successfully.
C:\Windows\Tasks\At43.job moved successfully.
C:\Windows\Tasks\At28.job moved successfully.
C:\Windows\Tasks\At27.job moved successfully.
C:\Windows\Tasks\At26.job moved successfully.
C:\Windows\Tasks\At25.job moved successfully.
C:\Windows\Tasks\At18.job moved successfully.
C:\Windows\Tasks\At16.job moved successfully.
C:\Windows\Tasks\At14.job moved successfully.
C:\Windows\Tasks\At12.job moved successfully.
C:\Windows\Tasks\At10.job moved successfully.
C:\Windows\Tasks\At17.job moved successfully.
C:\Windows\Tasks\At15.job moved successfully.
C:\Windows\Tasks\At13.job moved successfully.
C:\Windows\Tasks\At11.job moved successfully.
C:\Windows\Tasks\At9.job moved successfully.
C:\Windows\System32\dds_trash_log.cmd moved successfully.
C:\Program Files\Search Toolbar moved successfully.
C:\Windows\Tasks\At34.job moved successfully.
C:\Windows\Tasks\At33.job moved successfully.
C:\Windows\Tasks\At22.job moved successfully.
C:\Program Files\Ask.com moved successfully.
C:\Users\MFamily\Local Settings\81136517y4m8 moved successfully.
C:\Users\MFamily\AppData\Local\81136517y4m8 not found.

==== End of Fixlog ====

#12 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:10:58 PM

Posted 09 March 2012 - 03:08 PM

Hello

Lets get a deeper look into the system and see if something shows up.

Download and run OTL

Download OTL by Old Timer and save it to your Desktop.
  • Double click on OTL.exe to run it.
  • Under Output, ensure that Minimal Output is selected.
  • Under Extra Registry section, select Use SafeList.
  • Click the Scan All Users checkbox.
  • Click on Run Scan at the top left hand corner.
  • When done, two Notepad files will open.
    • OTL.txt <-- Will be opened and the that I need posted back here
    • Extra.txt <-- Will be minimized - save this one on your desktop in case I ask for it later
  • Please post the contents of OTL.txt in your next reply.

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#13 anders98

anders98
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:58 PM

Posted 09 March 2012 - 05:50 PM

Here's the log from OTL

OTL logfile created on: 3/9/2012 3:05:59 PM - Run 1
OTL by OldTimer - Version 3.2.36.2 Folder = C:\Users\MFamily\Desktopa
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6002.18005)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.24 Gb Total Physical Memory | 2.17 Gb Available Physical Memory | 67.10% Memory free
6.71 Gb Paging File | 5.32 Gb Available in Paging File | 79.29% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 447.73 Gb Total Space | 213.29 Gb Free Space | 47.64% Space Free | Partition Type: NTFS
Drive D: | 111.79 Gb Total Space | 58.57 Gb Free Space | 52.40% Space Free | Partition Type: NTFS
Drive F: | 1.93 Gb Total Space | 0.00 Gb Free Space | 0.00% Space Free | Partition Type: UDF

Computer Name: MIERAFAMILY-PC | User Name: MFamily | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Users\MFamily\Desktop\OTL.exe (OldTimer Tools)
PRC - c:\Program Files\Real\RealPlayer\realplay.exe (RealNetworks, Inc.)
PRC - C:\Program Files\Real\RealPlayer\Update\realsched.exe (RealNetworks, Inc.)
PRC - C:\Program Files\AVG\AVG2012\avgui.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
PRC - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\10.0.6\ToolbarUpdater.exe ()
PRC - C:\Program Files\AVG Secure Search\vprot.exe ()
PRC - C:\Program Files\AVG\AVG2012\avgnsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG2012\avgrsx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG2012\avgcsrvx.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\SUPERAntiSpyware\SASCore.exe (SUPERAntiSpyware.com)
PRC - C:\Program Files\AVG\AVG2012\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\AVG\AVG2012\avgcfgex.exe (AVG Technologies CZ, s.r.o.)
PRC - C:\Program Files\Flip Video\FlipShare\FlipShareService.exe ()
PRC - C:\Program Files\Qwest\Desktop\QwestTouchPointAgent.exe (Qwest Communications)
PRC - C:\Program Files\Babylon\Babylon-Pro\Babylon.exe (Babylon Ltd.)
PRC - C:\Program Files\Common Files\aol\1229737310\ee\aolsoftware.exe (AOL Inc.)
PRC - C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe ()
PRC - C:\Program Files\Common Files\logishrd\LQCVFX\COCIManager.exe ()
PRC - C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe (Intuit Inc.)
PRC - C:\windows\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Trend Micro\OKAVAgent\OKAVAgent.exe (Trend Micro Inc.)
PRC - C:\windows\RtHDVCpl.exe (Realtek Semiconductor)
PRC - C:\Program Files\Lenovo\Healthcare\HealthCare.exe (skyware)
PRC - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe (InterVideo)
PRC - C:\Program Files\Common Files\aol\acs\AOLacsd.exe (AOL LLC)
PRC - C:\Program Files\Southwest Airlines\Ding\Ding.exe (Southwest Airlines)


========== Modules (No Company Name) ==========

MOD - C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10006.dll ()
MOD - C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10007.dll ()
MOD - C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL ()
MOD - C:\ProgramData\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\8b5f54e3b382fc1720c76557ef8c8bc3\System.Management.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\0ac84704dce924c06b1913f7c75e6fde\System.Runtime.Serialization.Formatters.Soap.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\1a5853155c4e5ab3f91cd37da331e89b\System.Web.Services.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\7fd6c62196829d1e2dce5a253145d51a\System.Configuration.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d9f0f1dc8cbdb81f1ba122d77a6ab710\System.Xml.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\65450889f3742aada2a6c0cf8e6173e3\System.Windows.Forms.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\137696d0416b65dbc1561152971488b4\System.Drawing.ni.dll ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\c50133cb67d7c013fa31e1ffb942060b\System.ni.dll ()
MOD - C:\Program Files\AVG Secure Search\vprot.exe ()
MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\b6632a8b2f276a8e31f5b0f6b2006cd1\mscorlib.ni.dll ()
MOD - C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll ()
MOD - C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll ()
MOD - C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe ()
MOD - C:\Program Files\Common Files\logishrd\LQCVFX\COCIManager.exe ()
MOD - C:\Program Files\Yahoo!\Messenger\yui.dll ()
MOD - C:\windows\System32\IcnOvrly.dll ()
MOD - C:\Program Files\Lenovo\Healthcare\Health.dll ()
MOD - C:\windows\System32\igfxTMM.dll ()


========== Win32 Services (SafeList) ==========

SRV - (McComponentHostService) -- File not found
SRV - (vToolbarUpdater) -- C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\10.0.6\ToolbarUpdater.exe ()
SRV - (AVG Security Toolbar Service) -- C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe ()
SRV - (AVGIDSAgent) -- C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe (AVG Technologies CZ, s.r.o.)
SRV - (!SASCORE) -- C:\Program Files\SUPERAntiSpyware\SASCORE.EXE (SUPERAntiSpyware.com)
SRV - (avgwd) -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe (AVG Technologies CZ, s.r.o.)
SRV - (GamesAppService) -- C:\Program Files\WildTangent Games\App\GamesAppService.exe (WildTangent, Inc.)
SRV - (FlipShare Service) -- C:\Program Files\Flip Video\FlipShare\FlipShareService.exe ()
SRV - (LVPrcSrv) -- C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.)
SRV - (IntuitUpdateService) -- C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe (Intuit Inc.)
SRV - (BcmSqlStartupSvc) -- C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe (Microsoft Corporation)
SRV - (OKAV Agent Service) -- C:\Program Files\Trend Micro\OKAVAgent\OKAVAgent.exe (Trend Micro Inc.)
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SRV - (IviRegMgr) -- C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe (InterVideo)
SRV - (AOL ACS) -- C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe (AOL LLC)


========== Driver Services (SafeList) ==========

DRV - (NwlnkFwd) -- File not found
DRV - (NwlnkFlt) -- File not found
DRV - (LVMVDrv) -- File not found
DRV - (LVcKap) -- File not found
DRV - (IpInIp) -- File not found
DRV - (catchme) -- File not found
DRV - (Avgldx86) -- C:\windows\System32\drivers\avgldx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (AVGIDSShim) -- C:\windows\System32\drivers\AVGIDSShim.sys (AVG Technologies CZ, s.r.o. )
DRV - (Avgrkx86) -- C:\Windows\system32\DRIVERS\avgrkx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (Avgmfx86) -- C:\windows\System32\drivers\avgmfx86.sys (AVG Technologies CZ, s.r.o.)
DRV - (SASDIFSV) -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (SASKUTIL) -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (Avgtdix) -- C:\windows\System32\drivers\avgtdix.sys (AVG Technologies CZ, s.r.o.)
DRV - (AVGIDSFilter) -- C:\windows\System32\drivers\AVGIDSFilter.sys (AVG Technologies CZ, s.r.o. )
DRV - (AVGIDSEH) -- C:\Windows\system32\DRIVERS\AVGIDSEH.Sys (AVG Technologies CZ, s.r.o. )
DRV - (AVGIDSDriver) -- C:\windows\System32\drivers\AVGIDSDriver.sys (AVG Technologies CZ, s.r.o. )
DRV - (LVPr2Mon) -- C:\windows\System32\drivers\LVPr2Mon.sys ()
DRV - (LVRS) -- C:\windows\System32\drivers\lvrs.sys (Logitech Inc.)
DRV - (PID_PEPI) Logitech QuickCam IM(PID_PEPI) -- C:\windows\System32\drivers\LV302V32.SYS (Logitech Inc.)
DRV - (pepifilter) -- C:\windows\System32\drivers\lv302af.sys (Logitech Inc.)
DRV - (WinI2C-DDC) -- C:\Windows\system32\drivers\DDCDrv.sys (Nicomsoft Ltd.)
DRV - (regi) -- C:\windows\System32\drivers\regi.sys (InterVideo)
DRV - (wanatw) WAN Miniport (ATW) -- C:\windows\System32\drivers\wanatw4.sys (America Online, Inc.)
DRV - (LVUSBSta) -- C:\windows\System32\drivers\LVUSBSta.sys (Logitech Inc.)
DRV - (PID_08A0) Logitech QuickCam IM(PID_08A0) -- C:\windows\System32\drivers\LV302AV.SYS (Logitech Inc.)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.html
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ie/defaults/sp/msgr9/*http://www.yahoo.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,CustomSearch = http://us.rd.yahoo.com/customize/ie/defaults/cs/msgr9/*http://www.yahoo.com/ext/search/search.html
IE - HKLM\..\URLSearchHook: {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL Toolbar\aoltb.dll (AOL LLC)
IE - HKLM\..\SearchScopes,DefaultScope = {CCC7A320-B3CA-4199-B1A6-9F516DD69829}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKLM\..\SearchScopes\{443789B7-F39C-4b5c-9287-DA72D38F4FE6}: "URL" = http://search.aol.com/aolcom/search?query={searchTerms}&invocationType=tb50TB50CLie7
IE - HKLM\..\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}: "URL" = http://us.yhs.search.yahoo.com/avg/search?fr=yhs-avgb-chrome&type=yahoo_avg_hs2-tb-web_chrome_us&p={searchTerms}


IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope = {CCC7A320-B3CA-4199-B1A6-9F516DD69829}
IE - HKU\.DEFAULT\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKU\.DEFAULT\..\SearchScopes\{443789B7-F39C-4b5c-9287-DA72D38F4FE6}: "URL" = http://search.aol.com/aolcom/search?query={searchTerms}&invocationType=tb50TB50CLie7
IE - HKU\.DEFAULT\..\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}: "URL" = http://us.yhs.search.yahoo.com/avg/search?fr=yhs-avgb-chrome&type=yahoo_avg_hs2-tb-web_chrome_us&p=

{searchTerms}
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope = {CCC7A320-B3CA-4199-B1A6-9F516DD69829}
IE - HKU\S-1-5-18\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKU\S-1-5-18\..\SearchScopes\{443789B7-F39C-4b5c-9287-DA72D38F4FE6}: "URL" = http://search.aol.com/aolcom/search?query={searchTerms}&invocationType=tb50TB50CLie7
IE - HKU\S-1-5-18\..\SearchScopes\{CCC7A320-B3CA-4199-B1A6-9F516DD69829}: "URL" = http://us.yhs.search.yahoo.com/avg/search?fr=yhs-avgb-chrome&type=yahoo_avg_hs2-tb-web_chrome_us&p=

{searchTerms}
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 74 77 2A 01 1E 69 CC 4A B7 EE 2B 84 3C E9 30 41 [binary data]

IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 74 77 2A 01 1E 69 CC 4A B7 EE 2B 84 3C E9 30 41 [binary data]

IE - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar =

http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.html
IE - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://us.rd.yahoo.com/customize/ie/defaults/sp/msgr9/*http://www.yahoo.com
IE - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.ask.com?o=14196&l=dis
IE - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\SOFTWARE\Microsoft\Internet Explorer\Main,XMLHTTP_UUID_Default = 74 77 2A 01 1E 69 CC 4A B7 EE 2B 84 3C E9 30 41 [binary data]
IE - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\..\URLSearchHook: {00000000-6E41-4FD3-8538-502F5495E5FC} - SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-

502F5495E5FC}\InprocServer32 File not found
IE - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
IE - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\..\SearchScopes,DefaultScope = {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}
IE - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=

{referrer:source?}
IE - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/web/{searchTerms}?

babsrc=browsersearch&AF=14542
IE - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask.com/redirect?

client=ie&tb=FWV5&o=14193&src=crm&q={searchTerms}&locale=en_US&apn_ptnrs=FM&apn_dtid=TES002YYUS&apn_uid=BD02E171-E485-412E-8968-34A42AA055C0&apn_sauid=65683CC0-2F16-40CB-9C79-6FDFBCCDB143
IE - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\..\SearchScopes\{23758B0B-0D9F-32A3-A476-D9B1033E7A1E}: "URL" = http://www.bing.com/search?q={searchTerms}&pc=ZUGO&form=ZGAIDF
IE - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\..\SearchScopes\{443789B7-F39C-4b5c-9287-DA72D38F4FE6}: "URL" = http://search.aol.com/aolcom/search?query={searchTerms}

&invocationType=tb50TB50CLie7
IE - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\..\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}: "URL" = http://isearch.avg.com/search?cid={BDEA7924-4AD9-4E35-9DBB-

1C534B3EB1BD}&mid=be043e32bb0a4a11bbda8b7ff239b634-5e83f66162739ff482293624dcf35e7bcc69f6f4&lang=en&ds=AVG&pr=fr&d=2011-12-26 19:29:25&v=9.0.0.23&sap=dsp&q={searchTerms}
IE - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\..\SearchScopes\{DECA3892-BA8F-44b8-A993-A466AD694AE4}: "URL" = http://search.yahoo.com/search?p={searchTerms}
IE - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..keyword.URL: "http://isearch.avg.com/search?cid=%7B3b1f9850-2839-4d6d-9309-a62011e77636%7D&mid=be043e32bb0a4a11bbda8b7ff239b634-

5e83f66162739ff482293624dcf35e7bcc69f6f4&ds=AVG&v=10.0.0.7&lang=en&pr=fr&d=2011-12-26%2019%3A29%3A25&sap=ku&q="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/VirtualEarth3D,version=4.0: C:\Program Files\Virtual Earth 3D\ [2010/09/15 17:37:24 | 000,000,000 | ---D | M]
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=15.0.1.13: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=15.0.1.13: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=15.0.1.13: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll

File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.1.13: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=15.0.1.13: c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll ()
FF - HKLM\Software\MozillaPlugins\@WildTangent.com/GamesAppPresenceDetector,Version=1.0: C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\3\NP_wtapp.dll ()
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@movenetworks.com/Quantum Media Player: C:\Users\MFamily\AppData\Roaming\Move Networks\plugins\npqmp071505000010.dll (Move Networks)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/05/05 05:49:38 | 000,000,000

| ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG2012\Firefox4\ [2012/02/01 09:45:52 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@toolbar: C:\ProgramData\AVG Secure Search\10.0.0.7\
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/02/19 10:25:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/02/23 20:10:55 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\moveplayer@movenetworks.com: C:\Users\MFamily\AppData\Roaming\Move Networks [2009/10/18 18:19:28 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2010/05/05 05:49:38 | 000,000,000

| ---D | M]

[2012/01/26 07:31:47 | 000,000,000 | ---D | M] (No name found) -- C:\Users\MFamily\AppData\Roaming\Mozilla\Extensions
[2012/02/19 10:25:46 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/07/18 16:34:49 | 000,000,000 | ---D | M] (Skype extension for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2012/01/25 06:50:20 | 000,000,000 | ---D | M] (The Browser Highlighter) -- C:\Program Files\Mozilla Firefox\extensions\browserhighlighter@ebay.com
[2012/02/01 09:45:52 | 000,000,000 | ---D | M] (AVG Safe Search) -- C:\PROGRAM FILES\AVG\AVG2012\FIREFOX4
File not found (No name found) -- C:\PROGRAMDATA\AVG SECURE SEARCH\10.0.0.7
File not found (No name found) -- C:\PROGRAMDATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT
[2009/06/25 02:00:50 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2012/02/19 10:25:25 | 000,121,816 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2009/11/19 14:16:28 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\mozilla firefox\plugins\npCouponPrinter.dll
[2012/02/19 10:23:45 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2009/11/19 14:16:29 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\mozilla firefox\plugins\npMozCouponPrinter.dll
[2012/01/16 14:22:44 | 000,003,766 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml
[2010/10/13 11:20:39 | 000,002,226 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
[2012/02/19 10:25:17 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/02/19 10:25:17 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}

{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q=

{searchTerms}
CHR - plugin: Shockwave Flash (Disabled) = C:\Users\MFamily\AppData\Local\Google\Chrome\User Data\PepperFlash\11.1.31.203\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\17.0.963.46\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\17.0.963.46\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\17.0.963.46\pdf.dll
CHR - plugin: Babylon Chrome Plugin (Enabled) = C:\Users\MFamily\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb\1.3_0\BabylonChromePI.dll
CHR - plugin: AVG Internet Security (Enabled) = C:\Users\MFamily\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\12.0.0.1901_0\plugins/avgnpss.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U26 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Microsoft\u00AE Windows Media Player Firefox Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
CHR - plugin: Coupons Inc., Coupon Printer Manager (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npCouponPrinter.dll
CHR - plugin: Coupons Inc., Coupon Printer Manager (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npMozCouponPrinter.dll
CHR - plugin: downloadUpdater (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npdnu.dll
CHR - plugin: 2007 Microsoft Office system (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: AOL Media Playback Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npunagi2.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.99\npGoogleUpdate3.dll
CHR - plugin: MetaStream 3 Plugin (Enabled) = C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll
CHR - plugin: WildTangent Games App Presence Detector (Enabled) = C:\Program Files\WildTangent Games\App\BrowserIntegration\Registered\3\NP_wtapp.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: RealNetworks™ Chrome Background Extension Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
CHR - plugin: RealPlayer™ HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
CHR - plugin: RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = c:\program files\real\realplayer\Netscape6\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = c:\program files\real\realplayer\Netscape6\nprpjplug.dll
CHR - plugin: Move Streaming Media Player (Enabled) = C:\Users\MFamily\AppData\Roaming\Move Networks\plugins\npqmp071505000010.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = c:\program files\real\realplayer\Netscape6\nprjplug.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin

Hosts file not found
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE

\rpbrowserrecordplugin.dll File not found
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (AOL Toolbar Loader) - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL Toolbar\aoltb.dll (AOL LLC)
O2 - BHO: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\10.0.0.7\AVG Secure Search_toolbar.dll ()
O2 - BHO: (Babylon IE plugin) - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
O2 - BHO: (Windows Live Toolbar Helper) - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll File not found
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\10.0.0.7\AVG Secure Search_toolbar.dll ()
O3 - HKLM\..\Toolbar: (Windows Live Toolbar) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll File not found
O3 - HKLM\..\Toolbar: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL Toolbar\aoltb.dll (AOL LLC)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (Windows Live Toolbar) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll File not found
O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL Toolbar\aoltb.dll (AOL LLC)
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (Windows Live Toolbar) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll File not found
O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL Toolbar\aoltb.dll (AOL LLC)
O3 - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
O3 - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\..\Toolbar\WebBrowser: (Windows Live Toolbar) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar

\msntb.dll (Microsoft Corporation)
O3 - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll File

not found
O3 - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\..\Toolbar\WebBrowser: (AOL Toolbar) - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL Toolbar\aoltb.dll (AOL LLC)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe" File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG2012\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [Babylon Client] C:\Program Files\Babylon\Babylon-Pro\Babylon.exe (Babylon Ltd.)
O4 - HKLM..\Run: [Healthcare] C:\Program Files\Lenovo\Healthcare\HealthCare.exe (skyware)
O4 - HKLM..\Run: [HostManager] C:\Program Files\Common Files\aol\1229737310\ee\aolsoftware.exe (AOL Inc.)
O4 - HKLM..\Run: [LogitechQuickCamRibbon] C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe ()
O4 - HKLM..\Run: [QwestTouchPointAgent] C:\Program Files\Qwest\Desktop\QwestTouchPointAgent.exe (Qwest Communications)
O4 - HKLM..\Run: [ROC_roc_dec12] C:\Program Files\AVG Secure Search\ROC_roc_dec12.exe ()
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [SetDefaultSCR] C:\Program Files\Lenovo\Lenovo Screensaver\SetDefaultSCR.exe (Lenovo)
O4 - HKLM..\Run: [TkBellExe] c:\program files\real\realplayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [Unattend0000000001{630DEC53-CECA-49A3-896C-B064A4DC05AA}] C:\Windows\test.bat File not found
O4 - HKLM..\Run: [VeriFaceManager] C:\Program Files\Lenovo\VeriFaceIII\PManage.exe ()
O4 - HKLM..\Run: [vProt] C:\Program Files\AVG Secure Search\vprot.exe ()
O4 - HKLM..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe (Logitech Inc.)
O4 - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe (Logitech)
O4 - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004..\Run: [Messenger (Yahoo!)] C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O4 - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - Startup: C:\Users\MFamily\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DING!.lnk = C:\Program Files\Southwest Airlines\Ding\Ding.exe (Southwest Airlines)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 00 00 00 02 [binary data]
O8 - Extra context menu item: &AOL Toolbar Search - C:\ProgramData\AOL\ieToolbar\resources\en-US\local\search.html File not found
O8 - Extra context menu item: &Windows Live Search - C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation)
O8 - Extra context menu item: Translate this web page with Babylon - C:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
O8 - Extra context menu item: Translate with Babylon - C:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
O9 - Extra Button: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
O9 - Extra 'Tools' menuitem : Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O15 - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\..Trusted Domains: //@surf.mar@/ ([]money in Local intranet)
O15 - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\..Trusted Domains: aol.com ([objects] * is out of zone range - 5)
O15 - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\..Trusted Domains: intuit.com ([ttlc] https in Trusted sites)
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Java Plug-in 1.6.0_05)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 205.171.2.65
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5E5335D4-1F75-4D27-826B-CD8FA4130D91}: DhcpNameServer = 192.168.0.1 205.171.2.65
O18 - Protocol\Handler\bw+0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw+0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw-0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw00 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw00s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw-0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw10 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw10s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw20 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw20s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw30 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw30s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw40 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw40s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw50 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw50s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw60 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw60s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw70 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw70s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw80 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw80s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw90 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bw90s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwa0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwa0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwb0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwb0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwc0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwc0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwd0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwd0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwe0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwe0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwf0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwf0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwg0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwg0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwh0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwh0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwi0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwi0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwj0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwj0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwk0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwk0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwl0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwl0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwm0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwm0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwn0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwn0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwo0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwo0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwp0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwp0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwq0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwq0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwr0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwr0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bws0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bws0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwt0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwt0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwu0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwu0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwv0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwv0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bww0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bww0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwx0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwx0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwy0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwy0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwz0 {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\bwz0s {11c41335-a0a2-4b1a-bd16-88d7b9dbfcd4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)
O18 - Protocol\Handler\offline-8876480 {11C41335-A0A2-4B1A-BD16-88D7B9DBFCD4} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll (Logitech)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\viprotocol {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\10.0.6\ViProtocol.dll ()
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\windows\System32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\program files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O24 - Desktop WallPaper: C:\Users\MFamily\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\MFamily\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 14:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2006/11/02 13:00:00 | 000,000,043 | R--- | M] () - F:\autorun.inf -- [ UDF ]
O33 - MountPoints2\{15e7d99b-91d3-11de-a7a6-00038a000015}\Shell - "" = AutoRun
O33 - MountPoints2\{15e7d99b-91d3-11de-a7a6-00038a000015}\Shell\AutoRun\command - "" = E:\LaunchU3.exe -a
O33 - MountPoints2\{4a16aaaf-d35f-11dd-8600-00038a000015}\Shell\AutoRun\command - "" = .\Encryption Tool\MaxtorEncryption.exe
O33 - MountPoints2\{849d61c3-3e80-11de-85d2-00038a000015}\Shell - "" = AutoRun
O33 - MountPoints2\{849d61c3-3e80-11de-85d2-00038a000015}\Shell\AutoRun\command - "" = E:\LaunchU3.exe -a
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/03/09 15:04:56 | 000,593,920 | ---- | C] (OldTimer Tools) -- C:\Users\MFamily\Desktop\OTL.exe
[2012/03/09 11:48:14 | 000,000,000 | --SD | C] -- C:\ComboFix
[2012/03/09 09:16:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
[2012/03/08 21:21:19 | 000,000,000 | ---D | C] -- C:\FRST
[2012/03/08 20:30:36 | 000,000,000 | ---D | C] -- C:\ProgramData\VeriFace
[2012/03/08 17:04:04 | 000,000,000 | ---D | C] -- C:\ProgramData\WindowsSearch
[2012/03/08 16:37:52 | 000,000,000 | ---D | C] -- C:\ProgramData\MFAData
[2012/03/08 16:32:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
[2012/03/08 16:31:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help
[2012/03/08 16:28:27 | 000,000,000 | ---D | C] -- C:\ProgramData\LogiShrd
[2012/03/08 16:27:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Intuit
[2012/03/08 16:26:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Qwest
[2012/03/08 16:25:50 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe
[2012/03/08 16:25:43 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2012/03/08 16:25:03 | 000,000,000 | ---D | C] -- C:\ProgramData\Real
[2012/03/08 16:23:48 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2012
[2012/03/08 16:23:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Apple
[2012/03/08 16:23:38 | 000,000,000 | ---D | C] -- C:\ProgramData\AOL
[2012/03/06 15:45:45 | 004,730,880 | ---- | C] (AVAST Software) -- C:\Users\MFamily\Desktop\aswMBR.exe
[2012/03/06 15:41:22 | 002,063,920 | ---- | C] (Kaspersky Lab ZAO) -- C:\Users\MFamily\Desktop\tdsskiller.exe
[2012/03/06 12:09:46 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2012/03/06 12:09:46 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2012/03/06 12:09:46 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2012/03/06 12:09:37 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2012/03/06 12:09:05 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/03/06 10:59:24 | 004,427,148 | R--- | C] (Swearware) -- C:\Users\MFamily\Desktop\ComboFix.exe
[2012/03/05 17:14:42 | 000,000,000 | ---D | C] -- C:\Users\MFamily\Desktop\gmer
[2012/03/05 17:00:24 | 000,607,260 | R--- | C] (Swearware) -- C:\Users\MFamily\Desktop\dds.scr
[2012/03/04 01:30:03 | 000,000,000 | ---D | C] -- C:\Users\MFamily\AppData\Roaming\SUPERAntiSpyware.com
[2012/03/04 01:29:18 | 000,000,000 | ---D | C] -- C:\Program Files\SUPERAntiSpyware
[2012/03/04 01:28:17 | 015,125,536 | ---- | C] (SUPERAntiSpyware.com) -- C:\Users\MFamily\Desktop\SUPERAntiSpyware.exe
[2012/02/25 10:53:44 | 000,000,000 | ---D | C] -- C:\Users\MFamily\AppData\Roaming\vlc
[2012/02/25 10:53:21 | 000,000,000 | ---D | C] -- C:\Users\MFamily\AppData\Local\Vivitar Experience Image Manager
[2012/02/25 10:53:14 | 000,000,000 | ---D | C] -- C:\Users\MFamily\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vivitar Experience Image Manager
[2012/02/25 10:52:35 | 000,060,273 | ---- | C] (Open Source Software community project) -- C:\Windows\System32\pthreadGC2.dll
[2012/02/25 10:52:33 | 000,000,000 | ---D | C] -- C:\Program Files\ffdshow
[2012/02/25 10:52:01 | 000,000,000 | ---D | C] -- C:\Program Files\Vivitar Experience Image Manager
[2012/02/19 10:24:04 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2012/02/19 10:24:03 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2012/02/19 10:24:03 | 000,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2012/02/15 17:17:50 | 001,383,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2012/02/15 17:17:50 | 000,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2012/02/15 17:17:50 | 000,471,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2012/02/15 17:17:50 | 000,389,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2012/02/15 17:17:50 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2012/02/15 17:17:50 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2012/02/15 17:17:50 | 000,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2012/02/15 17:17:50 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll
[2012/02/15 17:17:50 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2012/02/15 17:17:46 | 002,044,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Users\MFamily\Documents\*.tmp files -> C:\Users\MFamily\Documents\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/03/09 14:41:38 | 000,593,920 | ---- | M] (OldTimer Tools) -- C:\Users\MFamily\Desktop\OTL.exe
[2012/03/09 14:41:01 | 000,000,270 | ---- | M] () -- C:\Windows\tasks\Check Updates for Windows Live Toolbar.job
[2012/03/09 14:31:20 | 000,000,898 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/03/09 14:23:53 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/03/09 13:44:07 | 000,003,344 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/03/09 13:44:07 | 000,003,344 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/03/09 10:08:00 | 000,000,346 | ---- | M] () -- C:\Windows\tasks\At21.job
[2012/03/09 09:44:58 | 000,000,894 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/03/08 16:40:46 | 091,119,021 | ---- | M] () -- C:\Windows\System32\drivers\AVG\incavi.avm
[2012/03/08 16:37:08 | 000,002,683 | ---- | M] () -- C:\Users\MFamily\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Word 2007.lnk
[2012/03/08 16:02:14 | 3479,494,656 | -HS- | M] () -- C:\hiberfil.sys
[2012/03/08 11:47:41 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK
[2012/03/06 15:34:59 | 004,730,880 | ---- | M] (AVAST Software) -- C:\Users\MFamily\Desktop\aswMBR.exe
[2012/03/06 15:34:33 | 002,063,920 | ---- | M] (Kaspersky Lab ZAO) -- C:\Users\MFamily\Desktop\tdsskiller.exe
[2012/03/06 13:29:51 | 000,651,210 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/03/06 13:29:51 | 000,121,724 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/03/06 10:55:26 | 004,427,148 | R--- | M] (Swearware) -- C:\Users\MFamily\Desktop\ComboFix.exe
[2012/03/06 09:40:52 | 153,165,146 | ---- | M] () -- C:\Windows\MEMORY.DMP
[2012/03/05 16:59:52 | 000,000,000 | ---- | M] () -- C:\Users\MFamily\defogger_reenable
[2012/03/05 16:49:34 | 000,294,216 | ---- | M] () -- C:\Users\MFamily\Desktop\gmer.zip
[2012/03/05 16:48:44 | 000,607,260 | R--- | M] (Swearware) -- C:\Users\MFamily\Desktop\dds.scr
[2012/03/05 16:47:30 | 000,050,477 | ---- | M] () -- C:\Users\MFamily\Desktop\Defogger.exe
[2012/03/05 09:50:33 | 000,001,356 | ---- | M] () -- C:\Users\MFamily\AppData\Local\d3d9caps.dat
[2012/03/04 01:29:21 | 000,001,800 | ---- | M] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2012/03/04 01:28:25 | 015,125,536 | ---- | M] (SUPERAntiSpyware.com) -- C:\Users\MFamily\Desktop\SUPERAntiSpyware.exe
[2012/03/02 23:23:00 | 000,108,032 | ---- | M] () -- C:\Users\MFamily\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/03/02 18:54:29 | 000,008,809 | ---- | M] () -- C:\Users\MFamily\AppData\Roaming\Cabos.plist
[2012/03/01 06:38:41 | 016,654,336 | ---- | M] () -- C:\Users\MFamily\Documents\QDATA.mny
[2012/03/01 06:38:40 | 004,332,332 | R--- | M] () -- C:\Users\MFamily\Documents\QDATA Backup_2012-03-01_063832.mbf
[2012/02/29 18:32:02 | 004,407,914 | R--- | M] () -- C:\Users\MFamily\Documents\QDATA Backup_2012-02-29_183155.mbf
[2012/02/28 17:10:40 | 000,447,677 | ---- | M] () -- C:\Windows\System32\drivers\AVG\iavichjg.avm
[2012/02/27 14:50:34 | 000,770,149 | ---- | M] () -- C:\Users\MFamily\Documents\01012012013120126087.pdf
[2012/02/27 07:38:40 | 004,411,392 | R--- | M] () -- C:\Users\Public\Documents\ESBK.mb
[2012/02/27 07:38:39 | 008,708,096 | R--- | M] () -- C:\Users\Public\Documents\ESBK.mbb
[2012/02/26 11:36:48 | 004,208,922 | R--- | M] () -- C:\Users\MFamily\Documents\QDATA Backup_2012-02-26_113640.mbf
[2012/02/26 10:14:33 | 000,339,711 | ---- | M] () -- C:\Users\MFamily\Documents\022320127918.pdf
[2012/02/25 10:53:15 | 000,001,877 | ---- | M] () -- C:\Users\MFamily\Desktop\Vivitar Experience Image Manager.lnk
[2012/02/24 21:38:01 | 000,000,414 | ---- | M] () -- C:\Windows\tasks\EasyShare Registration Task.job
[2012/02/23 20:10:56 | 000,001,887 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2012/02/19 10:23:45 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deployJava1.dll
[2012/02/19 10:23:45 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2012/02/19 10:23:45 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2012/02/19 10:23:45 | 000,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2012/02/19 10:20:16 | 000,414,368 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl
[2012/02/17 06:32:05 | 000,001,971 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012/02/17 05:41:37 | 000,398,088 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[1 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]
[1 C:\Users\MFamily\Documents\*.tmp files -> C:\Users\MFamily\Documents\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/03/08 16:51:35 | 3479,494,656 | -HS- | C] () -- C:\hiberfil.sys
[2012/03/06 12:09:46 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/03/06 12:09:46 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/03/06 12:09:46 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/03/06 12:09:46 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/03/06 12:09:46 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/03/06 09:40:52 | 153,165,146 | ---- | C] () -- C:\Windows\MEMORY.DMP
[2012/03/05 17:14:08 | 000,294,216 | ---- | C] () -- C:\Users\MFamily\Desktop\gmer.zip
[2012/03/05 16:59:52 | 000,000,000 | ---- | C] () -- C:\Users\MFamily\defogger_reenable
[2012/03/05 16:59:28 | 000,050,477 | ---- | C] () -- C:\Users\MFamily\Desktop\Defogger.exe
[2012/03/04 01:29:21 | 000,001,800 | ---- | C] () -- C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
[2012/03/01 06:38:40 | 004,332,332 | R--- | C] () -- C:\Users\MFamily\Documents\QDATA Backup_2012-03-01_063832.mbf
[2012/02/29 18:32:02 | 004,407,914 | R--- | C] () -- C:\Users\MFamily\Documents\QDATA Backup_2012-02-29_183155.mbf
[2012/02/27 14:50:28 | 000,770,149 | ---- | C] () -- C:\Users\MFamily\Documents\01012012013120126087.pdf
[2012/02/26 11:36:48 | 004,208,922 | R--- | C] () -- C:\Users\MFamily\Documents\QDATA Backup_2012-02-26_113640.mbf
[2012/02/26 10:14:22 | 000,339,711 | ---- | C] () -- C:\Users\MFamily\Documents\022320127918.pdf
[2012/02/25 10:53:15 | 000,001,877 | ---- | C] () -- C:\Users\MFamily\Desktop\Vivitar Experience Image Manager.lnk
[2012/02/25 10:52:35 | 000,057,344 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2012/02/23 20:10:56 | 000,001,887 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2011/06/21 19:20:13 | 000,001,356 | ---- | C] () -- C:\Users\MFamily\AppData\Local\d3d9caps.dat
[2011/03/16 13:34:57 | 000,714,590 | ---- | C] () -- C:\Windows\unins000.exe
[2011/03/12 14:39:28 | 000,202,237 | ---- | C] () -- C:\Windows\unins000.dat
[2010/11/27 18:45:51 | 000,815,104 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2010/11/27 18:45:51 | 000,180,224 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2010/10/13 12:40:05 | 000,008,809 | ---- | C] () -- C:\Users\MFamily\AppData\Roaming\Cabos.plist
[2010/10/13 11:20:49 | 000,098,304 | ---- | C] () -- C:\Windows\System32\redmonnt.dll
[2010/09/20 17:27:44 | 000,108,032 | ---- | C] () -- C:\Users\MFamily\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/08/22 19:35:02 | 000,000,039 | ---- | C] () -- C:\Windows\WININIT.INI
[2010/08/22 17:16:37 | 000,118,784 | R--- | C] () -- C:\Windows\bwUnin-7.2.0.157-8876480SL.exe
[2010/05/05 05:49:21 | 000,023,090 | ---- | C] () -- C:\Windows\hpqins15.dat

========== Alternate Data Streams ==========

@Alternate Data Stream - 981 bytes -> C:\Users\MFamily\Documents\FW_PaintedFloor-SooooCool.eml:OECustomProperty
@Alternate Data Stream - 909 bytes -> C:\Users\MFamily\Documents\Fwd_Fw_Picturewortha1000words!.eml:OECustomProperty
@Alternate Data Stream - 905 bytes -> C:\Users\MFamily\Documents\FW_BeingFatain'tsobad.eml:OECustomProperty
@Alternate Data Stream - 88 bytes -> C:\Users\MFamily\Documents\Kids at Wedding.art:SummaryInformation
@Alternate Data Stream - 824 bytes -> C:\Users\MFamily\Documents\Fwd_Billboardsyouneversee.eml:OECustomProperty
@Alternate Data Stream - 801 bytes -> C:\Users\MFamily\Documents\Fw_Officesigns.eml:OECustomProperty
@Alternate Data Stream - 793 bytes -> C:\Users\MFamily\Documents\Fw_FromGod,Ilovemygirls!!!!.eml:OECustomProperty
@Alternate Data Stream - 792 bytes -> C:\Users\MFamily\Documents\Fw_Fwd_RealImportant!.eml:OECustomProperty
@Alternate Data Stream - 732 bytes -> C:\Users\MFamily\Documents\Fwd_Fw_Thisisbeautiful.eml:OECustomProperty
@Alternate Data Stream - 64 bytes -> C:\Users\MFamily\Desktop\William Fitzsimmons-I Don't Feel It Anymore (Song Of The Sparrow).mp3:TOC.WMV
@Alternate Data Stream - 1409 bytes -> C:\Users\MFamily\Documents\Fw_TheYellowShirt.eml:OECustomProperty
@Alternate Data Stream - 1325 bytes -> C:\Users\MFamily\Documents\Fw_IAMTHANKFUL.eml:OECustomProperty
@Alternate Data Stream - 1299 bytes -> C:\Users\MFamily\Documents\Fw_FW_2BOXESFROMMETOYOU.eml:OECustomProperty

< End of report >

#14 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:10:58 PM

Posted 11 March 2012 - 08:39 AM

Hello

Run this custom script and when it is complete I need to know how the computer is doing

Run OTL Script

  • Double-click OTL.exe to start the program.
  • Copy and Paste the following code into the Posted Image textbox. Do not include the word Code
    :OTL
    IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
    IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
    502F5495E5FC}\InprocServer32 File not found
    IE - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - No CLSID value found
    FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
    FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=15.0.1.13: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll File not found
    FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
    \rpbrowserrecordplugin.dll File not found
    O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll File not found
    O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
    O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll File not found
    O3 - HKU\.DEFAULT\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll File not found
    O3 - HKU\S-1-5-18\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll File not found
    O3 - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\..\Toolbar\WebBrowser: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
    O4 - HKLM..\Run: [] File not found
    O4 - HKLM..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe" File not found
    O4 - HKLM..\Run: [Unattend0000000001{630DEC53-CECA-49A3-896C-B064A4DC05AA}] C:\Windows\test.bat File not found
    O8 - Extra context menu item: &AOL Toolbar Search - C:\ProgramData\AOL\ieToolbar\resources\en-US\local\search.html File not found
    O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (Reg Error: Key error.)
    @Alternate Data Stream - 981 bytes -> C:\Users\MFamily\Documents\FW_PaintedFloor-SooooCool.eml:OECustomProperty
    @Alternate Data Stream - 909 bytes -> C:\Users\MFamily\Documents\Fwd_Fw_Picturewortha1000words!.eml:OECustomProperty
    @Alternate Data Stream - 905 bytes -> C:\Users\MFamily\Documents\FW_BeingFatain'tsobad.eml:OECustomProperty
    @Alternate Data Stream - 88 bytes -> C:\Users\MFamily\Documents\Kids at Wedding.art:SummaryInformation
    @Alternate Data Stream - 824 bytes -> C:\Users\MFamily\Documents\Fwd_Billboardsyouneversee.eml:OECustomProperty
    @Alternate Data Stream - 801 bytes -> C:\Users\MFamily\Documents\Fw_Officesigns.eml:OECustomProperty
    @Alternate Data Stream - 793 bytes -> C:\Users\MFamily\Documents\Fw_FromGod,Ilovemygirls!!!!.eml:OECustomProperty
    @Alternate Data Stream - 792 bytes -> C:\Users\MFamily\Documents\Fw_Fwd_RealImportant!.eml:OECustomProperty
    @Alternate Data Stream - 732 bytes -> C:\Users\MFamily\Documents\Fwd_Fw_Thisisbeautiful.eml:OECustomProperty
    @Alternate Data Stream - 64 bytes -> C:\Users\MFamily\Desktop\William Fitzsimmons-I Don't Feel It Anymore (Song Of The Sparrow).mp3:TOC.WMV
    @Alternate Data Stream - 1409 bytes -> C:\Users\MFamily\Documents\Fw_TheYellowShirt.eml:OECustomProperty
    @Alternate Data Stream - 1325 bytes -> C:\Users\MFamily\Documents\Fw_IAMTHANKFUL.eml:OECustomProperty
    @Alternate Data Stream - 1299 bytes -> C:\Users\MFamily\Documents\Fw_FW_2BOXESFROMMETOYOU.eml:OECustomProperty  
    PRC - C:\Program Files\Babylon\Babylon-Pro\Babylon.exe (Babylon Ltd.)   
    IE - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.ask.com?o=14196&l=dis
    IE - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/web/{searchTerms}?
    IE - HKU\S-1-5-21-2668591486-4013662146-3450637226-1004\..\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}: "URL" = http://websearch.ask.com/redirect?
    [2010/10/13 11:20:39 | 000,002,226 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
    O2 - BHO: (Babylon IE plugin) - {9CFACCB6-2F3F-4177-94EA-0D2B72D384C1} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
    O4 - HKLM..\Run: [Babylon Client] C:\Program Files\Babylon\Babylon-Pro\Babylon.exe (Babylon Ltd.)
    O8 - Extra context menu item: Translate this web page with Babylon - C:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
    O8 - Extra context menu item: Translate with Babylon - C:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
    O9 - Extra Button: Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
    O9 - Extra 'Tools' menuitem : Translate this web page with Babylon - {F72841F0-4EF1-4df5-BCE5-B3AC8ACF5478} - C:\Program Files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll (Babylon Ltd.)
    [2012/03/09 09:16:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon
    
    :files
    C:\windows\tasks\At*.job
    ipconfig /flushdns /c
    :Commands
    [PURITY]
    [EMPTYTEMP]
    [emptyjava]
    [EMPTYFLASH]
    [RESETHOSTS]
    
  • Then click the Run Fix button at the top.
  • Click Posted Image.
  • OTL may ask to reboot the machine. Please do so if asked.
  • The report should appear in Notepad after the reboot.Copy and Paste that report in your next reply.

Let me know How things are doing

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#15 anders98

anders98
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:09:58 PM

Posted 11 March 2012 - 11:13 AM

Hi there,

I ran OTL with the script from above, it seemed like it was working ok, but I stepped away from the computer for a few minutes and when I got back, I had the "This program had an unexpected error" message and my only option was to close the program. Not sure how far it got since I did not get a log file from it. Should I try running it again? Run it in safe mode?

Thanks!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users